Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 1 subscriber
  • Views 13803 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Remove Sophos

ajcke

I need to remove Sophos from my environment. What can I do to push this out?

Console Version: 5.0.0.8

Client File Version: 2.7.1.283

AD environment

2008 R2 Servers

XP and Win7 Client Machines

:26519


This thread was automatically locked due to age.
  • 0

    For any MSI removal: MSIEXEC uninstall commands set to silent in a script such as a batch file running as an administrative user.  If you have nothing better to push this out, you could use an AD startup script (disable tamper protection first in the policy).  

    Maybe this "uninstall task" can be a task that runs prior to the next product being installed however that's deployed.  You may have to test this to ensure you can uninstall one product and install another without a reboot.

    Otherwise I assume you are replacing Sophos, in which case, the other vendor might have the equivalent on the Sophos CRT application.  

    Can I ask the reason you're uninstalling?  

    Jak

    :26527
  • 0

    You are correct. The reason for uninstalling is to install another product. SCCM 2012 Endpoint Protection is being deployed, but it does not support removing Sophos. 

    :26537
  • 0

    If you look in the uninstall keys of the registry:

    "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\"

    and 

    "HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall" if on 64-bit

    You will find the installed software.  Most will have an "UninstallString" value.  

    For example Patch agent is:
    MsiExec.exe /X{2FB80981-C6B6-4FCA-BC65-24437DF4C8CB}

    SCF:

    MsiExec.exe /X{12C00299-B8B4-40D3-9663-66ABEA3198AB}

    SAU:

    MsiExec.exe /X{15C418EB-7675-42be-B2B3-281952DA014D}

    etc..

    So these command will uninstall that application.  To run them in quiet mode you can add switches:  Msiexec switches

    http://www.microsoft.com/resources/documentation/windows/xp/all/proddocs/en-us/msiexec.mspx?mfr=true

    So you could create a batch file that will call the uninstall of each comonent in turn.  The GUIDs maybe be version specific if the version of SAV go back along way.  Once you have tested the batch file on a test machine or two you could deploy to multiple machines as long as it runs with administrative rights.  Remember to disable Tamper protection before.

    Regards,

    Jak

    :26551
  • 0

    Hi,

    Maybe You should use a product that can uninstall (migrate) ur current AV. :smileywink:

    regards,

    xTiNcTion

    :26559