We have SEP SBE 12.1.2 recently installed in sever windows 2008 r2 and 3 endpoitns (windows 7, 32bit and 64 bit).
SEP blocks (or tries) some svchost.exe executions, but I can not tell which svchost.exe it is,
the moment SEP does the blocking.
How can I see the blocked svchost.exe, which can be a windows system executable
and how do I configure the SEP ?
I had problems with the SEP installation (everything ok) and problems with our main application that interfaces with fax, emails etc.
They were solved by allowing ip traffic in the firewall setting, at the end.