How to clear out corrupted definitions for a Symantec Endpoint Protection client manually


Problem


How to fix and rebuild corrupted definitions for a Symantec Endpoint Protection (SEP) client.

Error: "Virus definitions are missing on this computer. This computer will remain unprotected until definitions are downloaded from the network. Contact your system administrator for help updating your virus definitions"

Solution: Instructions for 64-bit Operating Systems:

For Windows Vista/Server 2008/Windows 7
    1. Stop the Symantec Endpoint Protection Services:
    2. Click StartRun, type in smc -stop, and push Enter.
      1. Click the Start button.
      2. In the search bar type services and then press Enter.
        Note: If the User Account Control prompt pops up click Continue.
      3. Right-click Symantec Endpoint Protection and click Stop.
        Note: If you are unable to stop the Symantec Management Client you will need to temporarily disable Tamper Protection. Please see the Technical Information at the bottom of this document for instructions.
    3. Delete the data from the Definition folders:
      • Virus Definitions
        C:\ProgramData\Symantec\Definitions\VirusDefs\
        - Delete all files and subfolders


        WARNING: In the next steps you will edit the Windows registry. Back up the registry before you make any changes to it, because incorrect changes to the registry can result in permanent data loss or corrupted files. Modify only the registry values that are specified. For instructions, see How to back up the Windows registry.
    4. Delete the data from the registry:
      1. Click the Start button
      2. Type regedit and press Enter
      3. Navigate to:
        HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Symantec\SharedDefs
      4. Delete the following values:
        1. SRTSP
        2. NAVCORP_70
        3. DEFWATCH_10
        4. SepCache3
        5. SepCache2
        6. SepCache1
    5. Restart the Symantec Endpoint Protection Services stopped in the previous step, 3.c.
    6. Click StartRun, type in smc -start, and push Enter.
      1. Maximize the Services window.
      2. Right-click Symantec Endpoint Protection and click Start.



Comments

Popular posts from this blog

Enterprise CA option is greyed out / unavailable

Rearm the Office 2013 installation

MP has rejected registration request due to failure in client certificate