Hi All,

I have to implement a use case where the SEP Live update should not coincide with the SEP active scan, full scan or background scan(scheduled).

For this i prefer first to check that is any kind of scan running in my Windows 10 machine.

I want to know what is SEP active scan, full scan or background scan(scheduled) process name displayed in "tasklist" command, so that i can use it for my check.

I am using  SEP 12.1.6 and have very hard access restrictions on my system.

If you have some solution, please provide.

Please note that i can use only command line options.

If you have some other easy solution, please provide.

Scans run under the ccSvcHst.exe process. If you don't want LiveUpdate running during a scan then make sure you disable the LiveUpdate schedule in the policy and ensure that the client is only getting the necessary updates from the SEPM.

Thank you Brian for your response. From your response it seems that there is no particular process name that i can use to check that whether scan is running or not. Moreover ccSvcHst.exe may also be performing some other tasks, so it can not be used explicitly.

Actually my use case is like Allow Live Update through a desktop shortcut only when any kind of scan is not running.

In past i have seen that if Live Update coincides with the scan it fails. I basically want to prevent such situation.

You could try scripting seoliveupdate.exe:

http://www.symantec.com/docs/TECH162235

Thank you for notifying Brain.

I have been using the same only "C:\Program Files (x86)\Symantec\Symantec EndPoint Protection\SepLiveUpdate.exe".

But the problem is it fails to run when any kind of scan is running in the system.

I just want to prevent it and i can not change setting through SEP User Interface.

Thank you Brian for notifying.

I have been using the same "C:\Program Files (x86)\Symantec\Symantec EndPoint Protection\SepLiveUpdate.exe".

But the problem is when i execute it and any kind of scan is running, it fails.

I just want to avoid it in my script.

Also, i can not make any changes through SEP User Interface.

If possible can you let me know with what error code "SepLiveUpdate.exe" fails if any scan is running in background? So that i can use it in my script and can display some graceful exit message like: "SEP scan is in progress, please execute LiveUpdate after some time."

Other my above comment, i also have to prevent executing  "SepLiveUpdate.exe" if virus pattern file update is running in background.

Is there any available SEP command that i can use to check that whether any scan or virus pattern file update is running in background?

If so, i can use it to prevent both of theses cases.

Can you monitor the event log for the scan in progress Events, when you Run liveupdate, check if Scan is started..

Symantec Endpoint Protection 12.1.x event log entries

https://support.symantec.com/en_US/article.TECH186925.html

Hi Rafeeq,

Actually the system i am using comes with many access restrictions, so i will notify once i am able to test with your solution.

Other than that, i want to know how to check that whether any automatic update related to SEP is running in background?

I just got to know that i also have to prevent executing "SepLiveUpdate.exe" if any automatic update is running in background.

Checking whether a process for it is running or finding it out by error code returned in execution failure of "SepLiveUpdate.exe" is more preferable for me.

Any updates related to my last query?