WinXP SP 3 - SEP 11 -Antivirus/Antispyware, Proactive threat protection, Network Threat protection - LAN includes NetWare, Windows and Linux boxes - 200 or so client workstations - Restaged 150 or so workstations about three months ago, GHOSTed from reference machines, zero problems.
One workstation having "tree or server" issues when attempting NetWare login. Get to desktop and it turns out that SEP is perceiving server traffic as "threats." This has not been an issue prior to a week or so ago, and is only an issue on this one machine. When I disable Network Threat Protection, problems go away.
Re-ghosted machine, and it has the same problem. Machine I ghosted it from has no problems. Can't uninstall SEP manually on the problem client (?)
Changed SEP policy on the server to "whitelist" server IPs. Manually updated policy on the problem client. Has not made a difference yet. Only thing that works is disabling Network Threat Protection on the individual client. A-not secure B-cumbersome for the user
What the heck is going on?