Video Screencast Help

Corrupted Virus Definition

Created: 03 Sep 2012 • Updated: 06 Sep 2012 | 10 comments
MarauderBlood's picture
This issue has been solved. See solution.

Hi! I just want to know if there is an automatic or easier way of clearing out corrupted definitions. We have branches in our environment and manually deleting their definitions will take up so much time. Our SEPM definitions are not corrupted and we have approximately 13,000 clients in our environment.

 

I would appreciate any help/suggestion

Comments 10 CommentsJump to latest comment

MarauderBlood's picture

Hi Aishish,

Thanks so much for the articles. Our SEPM definitions are not corrupted. Also, I want to know if we try to run the Rx4DefsSEP tool on a client machine that gets update to the GUP, do we have to run an intelligent updater after running the tool or the client will get the latest definition to the GUP machine?

pete_4u2002's picture

 This utility will replace the current definitions with a specific set of definitions and the definitions it places on the computer may be out of date. It is recommended that LiveUpdate be run on unmanaged clients after repairing the definitions with this utility. Managed clients should retrieve the latest definitions automatically from their parent server if so configured

MarauderBlood's picture

Hi Pete,

    What if we just manually removed the definitions, will the client automatically get latest update from the SEPM/GUP?

Ashish-Sharma's picture

Yes.

If we  manually removed the definitions Managed client automatically get update SEPM server /Gup.

It's depend your heart beat setting

Thanks In Advance

Ashish Sharma

 

 

pete_4u2002's picture

yes, if the LU policy is meant to get the updates from SEPM/GUP, after the client communicates with SEPM based on it's heart beat interval the client will take the new content if available.

MarauderBlood's picture

Some of our branches have 4 hours heartbeat interval and transferring the intelligent updater to few of our branches takes up more than hour. Also, I read that the Rx4DefsSEP is an unsupprted tool. Is there other way of clearing out definitions other than manually removing definitions and using Rx4DefsSEP utility?

Ashish-Sharma's picture

hi,

this utility are available different version 32 bit or 64 bit.

If you want to use this utility you can download both version.

The "Rx4DefsSEP" utility is used to completely remove and replace definitions on a 32-bit or 64-bit Symantec Endpoint Protection 11 client. Please note that this tool will not replace definitions on the Symantec Endpoint Protection Manager (SEPM).

http://www.symantec.com/business/support/index?page=content&id=TECH93036&locale=en_US

Edit..

How to Backdate Virus Definitions in Symantec Endpoint Protection Manager

http://www.symantec.com/docs/TECH102935

Check this thread

https://www-secure.symantec.com/connect/forums/how-clean-previous-virus-definition-sep125

Thanks In Advance

Ashish Sharma

 

 

Ashish-Sharma's picture

HI,

The "Rx4DefsSEP" utility is used to completely remove and replace definitions on a 32-bit or 64-bit Symantec Endpoint Protection 11 client. Please note that this tool will not replace definitions on the Symantec Endpoint Protection Manager (SEPM).
 

http://www.symantec.com/business/support/index?page=content&id=TECH93036&locale=en_US

 

http://www.symantec.com/business/support/index?page=content&id=TECH105038

Thanks In Advance

Ashish Sharma

 

 

NRaj's picture

Yes Rx4Defs is unsupported though it is being used for years now(different versions). You can check the below and script them.

 

How to clear out corrupted definitions for a Symantec Endpoint Protection Client manually

http://www.symantec.com/business/support/index?page=content&id=TECH103176

 

How to clear out definitions for a Symantec Endpoint Protection 12.1 client manually

http://www.symantec.com/business/support/index?page=content&id=HOWTO59193