If you have Adobe Acrobat installed on the PureMessage server, uninstall it before upgrading or installing PureMessage.
This is because certain versions of Adobe Acrobat, when installed on the PureMessage server, can cause the Sophos PureMessage scanner service (PMScanner.exe) to terminate unexpectedly, or hang, or leak memory. To minimize the risk of encountering problems with Adobe Acrobat, content scanning inside PDF files has been disabled by default for new installations.
MYDBSERVER\SOPHOS
The installer may fail with an error Setup was unable to create the PureMessage databases.
This can happen if, in the past, you have uninstalled the SOPHOS database instance from Microsoft SQL Server or uninstalled Microsoft SQL Server itself. In this case, delete the following files from the MS_SQL_INSTALL_FOLDER\MSSQL.X\MSSQL\Data folder.
When PureMessage installs Microsoft SQL Server Express 2005 on Microsoft Essential Business Server 2008 or Microsoft Small Business Server 2008, the SQL Express installer will display the following warning:
Warning 28123. Warning: SQL Server Setup cannot install this feature because a different edition of this feature is already installed.
This warning can be safely ignored.
When using a database on a different computer (that is, a remote database or virtual Microsoft SQL Server instance on the same cluster but a different node) the PureMessage service may sometimes fail to connect to the database because Windows authentication has failed.
Possible reasons are:
Contact Sophos technical support for more help to identify the problem, or to use SQL Server authentication instead of Windows authentication.
Tags added to email subject lines (if you set up Email tagging) may be displayed as question marks.
This occurs when all the following conditions apply:
For messages sent from Outlook Web Access with Exchange 2003, the issue can be resolved by modifying the registry value UseRegionalCharset in key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MSExchangeWEB\OWA to zero. See http://support.microsoft.com/kb/830827 for details.
The \Temp folder under the PureMessage installation folder is also automatically excluded from virus scanning. However, when PureMessage is uninstalled this exclusion setting will be removed from Sophos Anti-Virus.
During installation, you may notice a few errors in the Event log as described below.
These errors are reported when PureMessage installer attempts to detect the presence of Visual C++ redistributables. These errors can be safely ignored.
Source | Event ID | Description |
---|---|---|
SideBySide | 59 | Generate Activation Context failed for C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\{A4D87BE1-AFC4-461B-A66C-AFA239935F57}\VCRedist64Test.dll. Reference error message: The referenced assembly is not installed on your system. |
SideBySide | 59 | Resolve Partial Assembly failed for Microsoft VC80.CRT. Reference error message: The referenced assembly is not installed on your system. |
SideBySide | 32 | Dependant Assembly Microsoft VC80.CRT could not be found and last error was The referenced assembly is not installed on your system. |
During installation on a cluster, you may notice a few errors in the event log as described below.
These errors are reported because the PureMessage cluster resource DLL is not present on all nodes during installation. After PureMessage is installed on all nodes, these errors will no longer be reported. These errors can be ignored safely.
On Windows 2008, you may notice warnings in the event log from the Microsoft Defender Real-Time Protection agent as described below.
Please choose to allow Sophos applications.
Description: Windows Defender Real-Time Protection agent has detected changes. Microsoft recommends you analyze the software that made these changes for potential risks. You can use information about how these programs operate to choose whether to allow them to run or remove them from your computer. Allow changes only if you trust the program or the software publisher. Windows Defender can't undo changes that you allow. For more information please see the following: Path Found: file:C:\Windows\tasks\Sophos-PureMessage-StoreMonitorHealthCheckTask.job; file:C:\Program Files\Sophos\PureMessage\bin\FireJob.exe; taskscheduler:C:\Windows\tasks\Sophos-PureMessage-StoreMonitorHealthCheckTask.job Alert Type: Unclassified software
Files left behind after the uninstallation of PureMessage:
The quarantine directory INSTALLDIR\Quarantine is left behind on the server. This enables you to retain quarantined items during uninstallation and reinstallation of PureMessage. If you no longer need the quarantined items, delete this directory.
On an SCC cluster, the Quarantine folder can be found on the shared drive under SHAREDDRIVE\Sophos\PureMessage\Quarantine.
The logs directory INSTALLDIR\Logs is left behind on the server. If you no longer need the log files, delete this directory.
On an SCC cluster, the Logs folder can be found on the shared drive under SHAREDDRIVE\Sophos\PureMessage\Logs.
The file PMClustResTypeXXXX.dll is left behind in the C:\WINDOWS\system32\ folder. This is the PureMessage cluster resource DLL that can be deleted from all nodes in a cluster after PureMessage is uninstalled from all the nodes.
On an SCC cluster, the following folders are left behind on the shared drive:
SHAREDDRIVE\Sophos\PureMessage\Config SHAREDDRIVE\Sophos\PureMessage\ReportsPending
These folders can be deleted after uninstalling PureMessage from all nodes.
For technical support, visit http://www.sophos.com/support.
If you contact technical support, provide as much information as possible, including the following:
Copyright © 2009 Sophos Group. All rights reserved. No part of this publication may be reproduced, stored in a retrieval system, or transmitted, in any form or by any means, electronic, mechanical, photocopying, recording or otherwise unless you are either a valid licensee where the documentation can be reproduced in accordance with the licence terms or you otherwise have the prior permission in writing of the copyright owner.
Sophos and Sophos Anti-Virus are registered trademarks of Sophos Plc and Sophos Group. All other product and company names mentioned are trademarks or registered trademarks of their respective owners.
This product uses parts of the iMatix SFL, Copyright © 1991-2000 iMatix Corporation <http://www.imatix.com>.
Copyright © 2004-2005, Mathew Hall
All rights reserved.
Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met:
THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.