Endpoint Protection

 View Only
Expand all | Collapse all

Corrupted Virus Definition

  • 1.  Corrupted Virus Definition

    Posted Sep 03, 2012 10:57 PM

    Hi! I just want to know if there is an automatic or easier way of clearing out corrupted definitions. We have branches in our environment and manually deleting their definitions will take up so much time. Our SEPM definitions are not corrupted and we have approximately 13,000 clients in our environment.

     

    I would appreciate any help/suggestion



  • 2.  RE: Corrupted Virus Definition
    Best Answer



  • 3.  RE: Corrupted Virus Definition

    Posted Sep 03, 2012 11:35 PM

    Hi Aishish,

    Thanks so much for the articles. Our SEPM definitions are not corrupted. Also, I want to know if we try to run the Rx4DefsSEP tool on a client machine that gets update to the GUP, do we have to run an intelligent updater after running the tool or the client will get the latest definition to the GUP machine?



  • 4.  RE: Corrupted Virus Definition

    Posted Sep 03, 2012 11:48 PM

    HI,

    The "Rx4DefsSEP" utility is used to completely remove and replace definitions on a 32-bit or 64-bit Symantec Endpoint Protection 11 client. Please note that this tool will not replace definitions on the Symantec Endpoint Protection Manager (SEPM).
     

    http://www.symantec.com/business/support/index?page=content&id=TECH93036&locale=en_US

     

    http://www.symantec.com/business/support/index?page=content&id=TECH105038



  • 5.  RE: Corrupted Virus Definition

    Broadcom Employee
    Posted Sep 03, 2012 11:53 PM

     This utility will replace the current definitions with a specific set of definitions and the definitions it places on the computer may be out of date. It is recommended that LiveUpdate be run on unmanaged clients after repairing the definitions with this utility. Managed clients should retrieve the latest definitions automatically from their parent server if so configured



  • 6.  RE: Corrupted Virus Definition

    Posted Sep 04, 2012 01:23 AM

    Hi Pete,

        What if we just manually removed the definitions, will the client automatically get latest update from the SEPM/GUP?



  • 7.  RE: Corrupted Virus Definition

    Posted Sep 04, 2012 01:29 AM

    Yes.

    If we  manually removed the definitions Managed client automatically get update SEPM server /Gup.

    It's depend your heart beat setting



  • 8.  RE: Corrupted Virus Definition

    Broadcom Employee
    Posted Sep 04, 2012 01:36 AM

    yes, if the LU policy is meant to get the updates from SEPM/GUP, after the client communicates with SEPM based on it's heart beat interval the client will take the new content if available.



  • 9.  RE: Corrupted Virus Definition

    Posted Sep 04, 2012 03:35 AM

    Some of our branches have 4 hours heartbeat interval and transferring the intelligent updater to few of our branches takes up more than hour. Also, I read that the Rx4DefsSEP is an unsupprted tool. Is there other way of clearing out definitions other than manually removing definitions and using Rx4DefsSEP utility?



  • 10.  RE: Corrupted Virus Definition

    Posted Sep 04, 2012 03:53 AM

    hi,

    this utility are available different version 32 bit or 64 bit.

    If you want to use this utility you can download both version.

    The "Rx4DefsSEP" utility is used to completely remove and replace definitions on a 32-bit or 64-bit Symantec Endpoint Protection 11 client. Please note that this tool will not replace definitions on the Symantec Endpoint Protection Manager (SEPM).

    http://www.symantec.com/business/support/index?page=content&id=TECH93036&locale=en_US

    Edit..

    How to Backdate Virus Definitions in Symantec Endpoint Protection Manager

    http://www.symantec.com/docs/TECH102935

    Check this thread

    https://www-secure.symantec.com/connect/forums/how-clean-previous-virus-definition-sep125



  • 11.  RE: Corrupted Virus Definition

    Posted Sep 04, 2012 05:33 AM

    Yes Rx4Defs is unsupported though it is being used for years now(different versions). You can check the below and script them.

     

    How to clear out corrupted definitions for a Symantec Endpoint Protection Client manually

    http://www.symantec.com/business/support/index?page=content&id=TECH103176

     

    How to clear out definitions for a Symantec Endpoint Protection 12.1 client manually

    http://www.symantec.com/business/support/index?page=content&id=HOWTO59193