Their are two reasons for the old virus definitions.
1. the clients is unable to communicate with the server to get the update using port 2967.
To check the communication please follow the steps.
* On the server machine.
- open command prompt
- type telnet <client name> 2967 and press enter.
- it should open a blank command prompt window.
- if it is not working you need to open the port 2967 on the server or firewall or client
* On the client machine.
- open command prompt
- type telnet <server name> 2967 and press enter.
- it should open a blank command prompt window.
- if it is not working you need to open the port 2967 on the server or firewall or client.
- click on start and run.
- compare the root certificate on the server(\\<server>\vphome\pki\roots) and the cline(c:\program files\Symantec Antivirus\pki\roots.
2. The old virus definition is corrupted.
- stop symantec antivirus services.
- stop symantec antivirus Definition watcher.
- delete old virus defs(yyyymmdd.xxx) from "C:\Program Files\Common Files\Symantec Shared\VirusDefs"
- empty "C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\Downloads" folder
- delete all <number>.product.inventory and <number>.setting files from "C:\Documents and Settings\All
Users\Application Data\Symantec\LiveUpdate" folder.
- empty "C:\Documents and Settings\All Users\Application Data\Symantec\Symantec AntiVirus Corporate
Edition\7.5\I2_LDVP.VDB" folder.
- go to "C:\Documents and Settings\All Users\Application Data\Symantec\Symantec AntiVirus Corporate Edition\7.5\ delete *.vdb or *.xdb files not folders.
- start the symantec service.
- start the symantec antivirus definition watcher.
- run a liveupdate..