Endpoint Protection

Hi Guys,

I'm in the test pilot for Symantec Endpoint but have noticed something. It seems that at random intervals Symantec will just stop the services which means Symantec will just stop all together. I have been trying to monitor it but it seems to happen at random. 

I ran a debug and read though the logs. I then did the classic google etc and did find similar issues but none that matched. Below I have posted just a section of the log file. If you could help, please do let me know.

Im running Windows 10 and Symantec is on version 12.x.

Thank you in advance.

Log File:

2016/09/06 08:10:57.318 [1840:3492] Notification Type is 0
2016/09/06 08:10:57.318 [1840:3492] Interface Index: 10
2016/09/06 08:10:57.380 [1840:4264] <ParseHTTPStatusCode:>404=>404 Not Found
2016/09/06 08:10:57.380 [1840:4264] AH: Setting the Browser Session end option & Resetting the URL session ..
2016/09/06 08:10:57.442 [1840:4264] <ParseHTTPStatusCode:>404=>404 Not Found
2016/09/06 08:10:57.442 [1840:4264] AH: Setting the Browser Session end option & Resetting the URL session ..
2016/09/06 08:10:57.442 [1840:3932] SmcNotifyStopServStatus: Command line password verified.
2016/09/06 08:10:57.458 [1840:3932] SepManagementClient is stopping. Starting cleanup.
2016/09/06 08:10:57.458 [1840:3932] Service is shutting down
2016/09/06 08:10:57.458 [1840:3932] CProfileMgrManPlugin::ReceiveMessage: enter
2016/09/06 08:10:57.458 [1840:3932] ProfileMgrMan: ReceiveMessage with msg id 458754
2016/09/06 08:10:57.458 [1840:3932] CProfileMgrManPlugin::ReceiveMessage: exit
2016/09/06 08:10:57.458 [1840:3932] AVMan: Entering ReceiveMessage with msg id 458754
2016/09/06 08:10:57.458 [1840:3932] AVMan: Disabled event forwarding.
2016/09/06 08:10:57.458 [1840:3932] AVMan: Leaving ReceiveMessage
2016/09/06 08:10:57.458 [1840:3932] LUMan: Entering ReceiveMessage with id 0x70002
2016/09/06 08:10:57.458 [1840:3932] LUMan: SMC notified LuMan that it is stopping
2016/09/06 08:10:57.458 [1840:3932] AtpiMan: Entering ReceiveMessage with msg id 458754
2016/09/06 08:10:57.458 [1840:3932] AtpiMan: Leaving ReceiveMessage
2016/09/06 08:10:57.458 [1840:3932] BashMan: Entering ReceiveMessage with msg id 458754
2016/09/06 08:10:57.458 [1840:3932] BashMan: Leaving ReceiveMessage
2016/09/06 08:10:57.458 [1840:3932] CidsMan: Entering ReceiveMessage with msg id 458754
2016/09/06 08:10:57.458 [1840:3932] CidsMan: Leaving ReceiveMessage
2016/09/06 08:10:57.458 [1840:3932] NETSECMAN: Entering ReceiveMessage with msg id 458754
2016/09/06 08:10:57.458 [1840:3932] NetSecMan: Entering CNetSecCommandController::CNetSecCommandControllerThread::PrepareDestroy
2016/09/06 08:10:57.458 [1840:3932] NetSecMan: Invalid terminate event handle value in PrepareDestroy
2016/09/06 08:10:57.458 [1840:3932] NetSecMan: Failed in NetSecManControlThread::PrepareDestroy
2016/09/06 08:10:57.458 [1840:3932] NetSecMan: Failed in PrepareDestroy for NetSecCommandController
2016/09/06 08:10:57.458 [1840:3932] NETSECMAN: Leaving ReceiveMessage
2016/09/06 08:10:57.458 [1840:3932] RebootMgrMan: Entering ReceiveMessage with msg id 458754
2016/09/06 08:10:57.458 [1840:3932] RebootMgrMan: Leaving ReceiveMessage
2016/09/06 08:10:57.458 [1840:3932] RepMgtMan: Entering ReceiveMessage with msg id 458754
2016/09/06 08:10:57.458 [1840:3932] RepMgtMan: Leaving ReceiveMessage
2016/09/06 08:10:57.458 [1840:3932] SubmissionsMan: Entering ReceiveMessage with msg id 458754
2016/09/06 08:10:57.458 [1840:3932] SubmissionsMan: Leaving ReceiveMessage
2016/09/06 08:10:57.458 [1840:3932] ElamManPlugin: Entering ReceiveMessage with msg id 458754
2016/09/06 08:10:57.458 [1840:3932] ElamManPlugin: Leaving ReceiveMessage
2016/09/06 08:10:57.458 [1840:3932] Saving SMC State
2016/09/06 08:10:57.458 [1840:3932] Skip saving state because Engine is not running
2016/09/06 08:10:57.474 [1840:3932] CProfileMgrManPlugin::Enable: enter
2016/09/06 08:10:57.474 [1840:3932] enable=false
2016/09/06 08:10:57.474 [1840:3932] CProfileMgrManPlugin::Enable: exit
2016/09/06 08:10:57.474 [1840:3932] AVMan: Entering Enable -- enable=false
2016/09/06 08:10:57.474 [1840:3932] AVMan: Disabled event forwarding.
2016/09/06 08:10:57.474 [1840:3932] GUProxy: Enable called.
2016/09/06 08:10:57.474 [1840:3932] GUProxy: Enable
2016/09/06 08:10:57.505 [1840:4264] <ParseHTTPStatusCode:>404=>404 Not Found
2016/09/06 08:10:57.505 [1840:4264] AH: Setting the Browser Session end option & Resetting the URL session ..
2016/09/06 08:10:57.536 [1840:3932] AtpiMan: Entering Enable -- enable=false
2016/09/06 08:10:57.536 [1840:3932] BashMan: Entering Enable -- enable=false
2016/09/06 08:10:57.536 [1840:3932] CidsMan: Entering Enable -- enable=false
2016/09/06 08:10:57.536 [1840:3932] NETSECMAN: Entering Enable -- enable=false
2016/09/06 08:10:57.536 [1840:3932] RebootMgrMan: Entering Enable -- enable=false
2016/09/06 08:10:57.536 [1840:3932] RepMgtMan: Entering Enable -- enable=false
2016/09/06 08:10:57.536 [1840:3932] SubmissionsMan: Entering Enable -- enable=false
2016/09/06 08:10:57.536 [1840:3932] ElamManPlugin: Entering Enable -- enable=false
2016/09/06 08:10:57.536 [1840:3932] Enter SepManagementClient UnInitialize
2016/09/06 08:10:57.536 [1840:3932] Unregister from LicenseMan notification
2016/09/06 08:10:57.536 [1840:3560] Ending Auto location ThreadID = 3560
2016/09/06 08:10:57.552 [1840:2788] Enter CSmcCCPlugin::PrepareDestroy()
2016/09/06 08:10:57.552 [1840:2788] Stopping smc service.
2016/09/06 08:10:57.552 [1840:2788] Exit CSmcCCPlugin::PrepareDestroy()
2016/09/06 08:10:57.552 [1840:2788] Enter CSmcCCPlugin::Destroy()
2016/09/06 08:10:57.552 [1840:2788] 71C7BEB8
2016/09/06 08:10:57.567 [1840:4264] <ParseHTTPStatusCode:>404=>404 Not Found
2016/09/06 08:10:57.567 [1840:4264] AH: Setting the Browser Session end option & Resetting the URL session ..
2016/09/06 08:10:57.583 [1840:3932] Stopping SyLink...
2016/09/06 08:10:57.583 [1840:3932] <SyLink>Stop begin.---->
2016/09/06 08:10:57.583 [1840:3932] <SyLink>Stopping LU download Thread.
2016/09/06 08:10:57.583 [1840:4748] [Content]<LUMaintenanceThread:> stopping
2016/09/06 08:10:57.583 [1840:3932] <SyLink>LU download Thread stopped.
2016/09/06 08:10:57.583 [1840:3932] <SyLink>Stop Main Thread.
2016/09/06 08:10:57.598 [1840:4260] <SyLink>***** Main Thread Exit ****
2016/09/06 08:10:57.598 [1840:3932] <SyLink>Main Thread stopped.
2016/09/06 08:10:57.598 [1840:3932] <SyLink>Stopping heartbeat Thread.
2016/09/06 08:10:57.630 [1840:4264] AH: (InetWaiting) urgent exit event.
2016/09/06 08:10:57.630 [1840:4264] Sylink:(EXCEPTION, err=2) AH: failed to send request...
2016/09/06 08:10:57.630 [1840:4264] [Command] Failed to download one or more commands from SEPM: 92DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA2092DC0485AC1B9B410110BD4781F2E0715F594A34AC1B9B410110BD478AE0AA20
2016/09/06 08:10:57.630 [1840:4264] CAsyncHttpConnection::Close - Request: HttpOpenRequest; CtrlBlk: 02C5E748 time: 0
2016/09/06 08:10:57.645 [1840:3932] <SyLink>Heartbeat thread stopped, Heartbeat=1800
2016/09/06 08:10:57.645 [1840:3932] <SyLink>Heartbeat Thread stopped.
2016/09/06 08:10:57.645 [1840:3932] <SyLink>Start Stopping Downloading Thread
2016/09/06 08:10:57.645 [1840:3932] <SyLink>Downaloding Thread stopped.
2016/09/06 08:10:57.645 [1840:3932] <SyLink>Save sylink settings.
2016/09/06 08:10:57.645 [1840:3932] <SyLink><-----Stop completed!
2016/09/06 08:10:57.645 [1840:3932] Lock held for 63ms
2016/09/06 08:10:57.645 [1840:3932] Deleting SyLink...
2016/09/06 08:10:57.645 [1840:3932] <SyLink>Destructor called!
2016/09/06 08:10:57.645 [1840:3932] <SyLink>Stop begin.---->
2016/09/06 08:10:57.645 [1840:3932] <SyLink><-----Already stopped.Stop End.
2016/09/06 08:10:57.661 [1840:3932] Lock held for 15ms
2016/09/06 08:10:57.661 [1840:3932] Entering PluginManagerImplementation::Terminate()
2016/09/06 08:10:57.661 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\NacManager.plg)
2016/09/06 08:10:57.661 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\NacManager.plg) done
2016/09/06 08:10:57.661 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\SymElamMan.plg)
2016/09/06 08:10:57.661 [1840:3932] CSmcPluginBase::Terminate()
2016/09/06 08:10:57.661 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\SymElamMan.plg) done
2016/09/06 08:10:57.661 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\SubmissionsMan.plg)
2016/09/06 08:10:57.661 [1840:3932] SubmissionsMan: Entering Terminate
2016/09/06 08:10:57.661 [1840:3932] CSmcPluginBase::Terminate()
2016/09/06 08:10:57.661 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\SubmissionsMan.plg) done
2016/09/06 08:10:57.661 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\RepMgtMan.plg)
2016/09/06 08:10:57.661 [1840:3932] RepMgtMan: Entering Terminate
2016/09/06 08:10:57.661 [1840:3932] RepMgtMan: Leaving Terminate
2016/09/06 08:10:57.661 [1840:3932] CSmcPluginBase::Terminate()
2016/09/06 08:10:57.661 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\RepMgtMan.plg) done
2016/09/06 08:10:57.661 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\RebootMgrMan.plg)
2016/09/06 08:10:57.661 [1840:3932] RebootMgrMan: Entering Terminate
2016/09/06 08:10:57.661 [1840:3932] CSmcPluginBase::Terminate()
2016/09/06 08:10:57.661 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\RebootMgrMan.plg) done
2016/09/06 08:10:57.661 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\NetSecMan.plg)
2016/09/06 08:10:57.661 [1840:3932] NETSECMAN: Entering Terminate
2016/09/06 08:10:57.661 [1840:3932] NetSecMan: Entering CNetSecCommandController::CNetSecCommandControllerThread::Destroy
2016/09/06 08:10:57.661 [1840:3932] CSmcPluginBase::Terminate()
2016/09/06 08:10:57.661 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\NetSecMan.plg) done
2016/09/06 08:10:57.661 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\CIDSMan.plg)
2016/09/06 08:10:57.661 [1840:3932] CSmcPluginBase::Terminate()
2016/09/06 08:10:57.661 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\CIDSMan.plg) done
2016/09/06 08:10:57.661 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\BashMan.plg)
2016/09/06 08:10:57.661 [1840:3932] BashMan: Entering Terminate
2016/09/06 08:10:57.661 [1840:3932] CSmcPluginBase::Terminate()
2016/09/06 08:10:57.661 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\BashMan.plg) done
2016/09/06 08:10:57.661 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\AtpiMan.plg)
2016/09/06 08:10:57.661 [1840:3932] AtpiMan: Entering Terminate
2016/09/06 08:10:57.661 [1840:3932] CSmcPluginBase::Terminate()
2016/09/06 08:10:57.661 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\AtpiMan.plg) done
2016/09/06 08:10:57.661 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\DevMan.plg)
2016/09/06 08:10:57.661 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\DevMan.plg) done
2016/09/06 08:10:57.661 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\SfMan.plg)
2016/09/06 08:10:57.661 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\SfMan.plg) done
2016/09/06 08:10:57.661 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\LUMan.plg)
2016/09/06 08:10:57.661 [1840:3932] LUMan: Entering Terminate
2016/09/06 08:10:57.677 [1840:3932] LUMan: Waiting for command thread 3208 to complete...
2016/09/06 08:10:57.677 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\LUMan.plg) done
2016/09/06 08:10:57.677 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\GUProxy.plg)
2016/09/06 08:10:57.677 [1840:3932] GUProxy: Terminate called.
2016/09/06 08:10:57.677 [1840:3932] GUProxy: Terminate
2016/09/06 08:10:57.677 [1840:3932] GUProxy - StopGupPolicyThread() HTHREAD=0,Event=0
2016/09/06 08:10:57.677 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\GUProxy.plg) done
2016/09/06 08:10:57.677 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\AVMan.plg)
2016/09/06 08:10:57.677 [1840:3932] AVMan: Entering Terminate
2016/09/06 08:10:57.677 [1840:1252] AVMan: log forwarding shutting down
2016/09/06 08:10:57.677 [1840:3932] AVMan: in AvPluginImplDeinit
2016/09/06 08:10:57.677 [1840:3932] AVMan: in AvPluginImplDeinit
2016/09/06 08:10:57.677 [1840:3932] AVMan: Leaving Terminate
2016/09/06 08:10:57.677 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\AVMan.plg) done
2016/09/06 08:10:57.677 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\ProfileMgrMan.plg)
2016/09/06 08:10:57.677 [1840:3932] CProfileMgrManPlugin::Terminate: enter
2016/09/06 08:10:57.677 [1840:3932] CSmcPluginBase::Terminate()
2016/09/06 08:10:57.677 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\ProfileMgrMan.plg) done
2016/09/06 08:10:57.677 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\LocalRep.plg)
2016/09/06 08:10:57.677 [1840:3932] CSmcPluginBase::Terminate()
2016/09/06 08:10:57.677 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\LocalRep.plg) done
2016/09/06 08:10:57.677 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\CommonMan.plg)
2016/09/06 08:10:57.677 [1840:3932] CSmcPluginBase::Terminate()
2016/09/06 08:10:57.677 [1840:3932] Plugin::Terminate(C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin\CommonMan.plg) done
2016/09/06 08:10:57.677 [1840:3932] Stop TridentEngine... 58649937
2016/09/06 08:10:57.677 [1840:3932] TridentEngine Stopped.
2016/09/06 08:10:57.677 [1840:3932] stop trident engine... successful
2016/09/06 08:10:57.677 [1840:3932] delete trident engine...
2016/09/06 08:10:57.817 [1840:3932] TSE stopped.
2016/09/06 08:10:57.817 [1840:3932] delete SMC State...
2016/09/06 08:10:57.833 [1840:3932] [Command] Serializing commands to disk
2016/09/06 08:10:57.833 [1840:3932] [Command] No commands to serialize
2016/09/06 08:10:57.848 [1840:3932] chmod on file C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Data\State\SerState.dat to read/write.
2016/09/06 08:10:57.848 [1840:3932] delete netport...
2016/09/06 08:10:57.848 [1840:3932] Disable damper...
2016/09/06 08:10:57.848 [1840:3932] Exit SepManagementClient UnInitialize
2016/09/06 08:10:58.052 [1840:3932] Deleted Sylog object successfully.
2016/09/06 08:10:58.052 [1840:3932] Error getting ISEPPolicyMonitor object.
2016/09/06 08:10:58.052 [1840:3932] Exit ServiceStart
2016/09/06 08:10:58.052 [1840:2788] 71C7BF0C
2016/09/06 08:10:58.052 [1840:2788] Exit CSmcCCPlugin::Destroy()
2016/09/06 08:10:58.068 [1840:3368] Inside ~CSmcCCPlugin()
2016/09/06 08:10:58.068 [1840:3368] Inside ~CSmcWorkerThread
2016/09/06 08:10:59.551 [6776:7704] Exit StopService. SUCCESS
2016/09/06 08:10:59.551 [6776:7704] Successfully stopped the service.
2016/09/06 08:10:59.551 [6776:7704] Exit SymProtectedStopService.
2016/09/06 08:10:59.551 [6776:7704] Successfully stopped SepMasterService
2016/09/06 08:10:59.566 [6776:7704] There are no outstanding instances of ccSvcHst running.
2016/09/06 08:10:59.566 [6776:7704] Smc password verified successfully.
2016/09/06 08:10:59.566 [6776:7704] Command line has been handled
2016/09/06 08:10:59.738 [5420:5320] Entering the command line handler
2016/09/06 08:10:59.738 [5420:5320] Service request event handle: 00000290
2016/09/06 08:10:59.738 [5420:5320] Sending CLCMD_STOPSERVICE_PASSWORD command
2016/09/06 08:11:29.733 [5420:5320] Command line request timed out
2016/09/06 08:11:29.733 [5420:5320] Smc password verification failed.
2016/09/06 08:11:29.733 [5420:5320] Command line has been handled
2016/09/06 11:52:11.959 [9412:11764] Entering the command line handler
2016/09/06 11:52:11.959 [9412:11764] Service request event handle: 00000210

What is the exact version of SEP on this Windows 10 install? Is the client losing connection to the SEPM?

Download and run the SymDiag tool for further error checking on the affected client:

Download SymDiag to detect Symantec product issues