Hi,
Tamper protection and Download protection are not actually the same, check the below definitions.
Tamper protection:
Tamper Protection provides real-time protection for Symantec applications that run on servers and clients. It prevents non-Symantec processes such as worms, Trojan horses, viruses, and security risks, from affecting Symantec resources. You can configure the software to block or log attempts to modify Symantec resources.
Download protection:
Download Protection is part of Auto-Protect and gives Symantec Endpoint Protection the ability to track URLs. The URL tracking is required for several policy features.
If you install Symantec Endpoint Protection without Download Protection, Download Insight has limited capability. Browser Intrusion Prevention and SONAR require Download Protection.
The option also requires Download Protection.
I feel definitions might have corrupted in this case however to decide definitions are corrupted look into the following location:
%programfiles%\Common Files\Symantec Shared\VirusDefs
If there are up to 3 numbered folders, this is the normal behavior of a SEP client.
Also, having more than 3 folders is not always a cause for concern, though if there is a high number of virus defs folders retained for a long period of time, it may indicate underlying virus definition corruption.
This article can give provide more details: How to determine if virus definitions of Symantec Endpoint Protection client (SEP) 11 or 12 Small Business Edition, are corrupted
http://www.symantec.com/docs/TECH97677
If definitions are corrupted can try to clear it manually. Follow this article: How to clear out definitions for a Symantec Endpoint Protection 12.1 client manually
http://www.symantec.com/docs/HOWTO59193
Try to repair the SEP clients through control panel/programs & features as well.