We have had some machines that have SEP installed, we are mostly current, but there are a few stand outs. The stand outs manifest this way. 1. They will NOT upgrade past the version they are one. 2. For some reason there is a trust relationship, which forces me to remove and re add them to our domain.
Every single one of these PC's are heavily infected and the old version of SEP didn't do a thing to clean it up. The clients do communicate with the manager and get definition updates, but it is as if SEP doesn't work at all. I have to Remove and RE add the PC to the domain. Once I do, I run cleanwipe, then install the most recent version of SEP. Most of the time I have to run Malwarebytes in order to remove the threats.
This is what was found on the most recent PC with this issue
| Trojan.Zbot |
| Trojan.Maljava |
| Trojan.Maljava |
| Trojan.Maljava |
| Trojan.Maljava |
| Trojan.Maljava!gen35 |
| W32.Fujacks.CE!html |