Symantec Endpoint Protection (SEP) graphical user interface (GUI) does not load with Avecto Defendpoint Client (Privilege Guard) installed on the computer.
Avecto Defendpoint Client (Privilege Guard) provides a policy based approach to privilege management. All users log on with standard user accounts and Privilege Guard assigns the necessary rights and privileges to applications.
Avecto Defendpoint Client client hooks in to Symantec Endpoint Protection binary files which does not allow the graphical user interface to load.
The following issues occur when Avecto Defendpoint Client injects, or hooks, into Symantec application and/or services.
Modify the registry on the computer to add the SEP path to the Avecto Defendpoint client injection/hook exclusion list.
Note: Symantec recommends that you backup the registry (http://support.microsoft.com/kb/256986) before you make modifications to it.
HKEY_LOCAL_MACHINE\SOFTWARE\Avecto\Privilege Guard Client
.HookExclusions
(or use the existing key, if it is already present), and then double-click the value. C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\[VERSION]\Bin
C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\[VERSION]\Bin64
C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.7004.6500.105\Bin
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Avecto\Privilege Guard Client
to ensure that you also exclude 32-bit processes.