There are four kinds of content that are distributed in files: All content can be found on the Symantec Security Response definitions page.For more information about the protection features and definition sets used in Symantec Endpoint Protection 14.0, review the following documents: The certified definitions file updates the virus and spyware definitions on the Symantec Endpoint Protection Manager.If the client is not able to download the definition from the GUP due to the amount of time it takes or if the GUP is unavailable, it will then default to pulling definitions from the SEPM.This is to insure that definitions are available to the client even if GUPs are unavailable.The purpose of the Rapid Release virus definitions is to make the newest definitions available quickly.To troubleshoot the failure of the Symantec Endpoint Protection 12.1 (SEP) client to operate correctly or update its definitions, it can be helpful to remove potentially corrupted definitions from the client.
Note: Disable Tamper Protection on the client before executing the following procedure to avoid getting an "Access is denied" error.
These definitions have been through rigorous Quality Assurance (QA) testing and are recommended for regular use.
About Rapid Release virus definitions Several times a day, Symantec Security Response compiles all new detections into a new Rapid Release virus file.
If a client is not receiving updates automatically, follow this process.
Use certified virus definitions, Network-Based Protection, or Behavior-Based Protection files to update content on the Symantec Endpoint Protection Manager when it cannot access either the Internet or a Live Update Administrator (LUA) server.