rtvscan.exe runtime error on startup, SAV Corp

I've been searching all over the internet for this issue.  It seems many people have had to deal wth it, but I could not find any solutions.

I am running Symantec Antivirus Corporate Edition 10.1.5.5000 and on serveral of my workstations I am getting a runtime error on startup caused by rtvscan.  Something will not let the Symantec Antivirus service start.  When I try to start it manually I get the same error and the service stops.  I tried unistalling the program and reinstalling, but I still get the same message.
Mrossman4Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

xmachineCommented:
Hi,

Most SAV 10.1.5.x bugs have been fixed with 10.1 MR6 (10.1.6.x). To solve them you need to upgrade. Check the following KB article:

http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/2007647555649398?Open&src=w


Symantec Certified Specialist
0
jimmymcp02Commented:
that issue is fixed in 10.1.5010
 
But right after that you will other errors.
You might want to consider installing 10.1.8
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Mrossman4Author Commented:
Thanks jimmymcp02.

Do you know the link where I can download the newest version?  Is there a way SAV Corp can keep itself up to date?
0
Redefine Your Security with AI & Machine Learning

The implications of AI and machine learning in cyber security are massive and constantly growing, creating both efficiencies and new challenges across the board. Check out our on-demand webinar to learn more about how AI can help your organization!

jimmymcp02Commented:
0
jimmymcp02Commented:
Oh i forgot to answer your second question....
Is there a way SAV Corp can keep itself up to date
virus definitions yes.
Maintanance releases or patches no....you need to get it from the site above
0
Mrossman4Author Commented:
I went to the link to download the latest version and it looks like it is now:
Symantec_Endpoint_Protection_11.0.4202_MR4_MP2_AllWin_EN_CD1.zip

Is this just the newest version of SAV CORP?
0
jimmymcp02Commented:
no.... that end point.... you do not want that one.... thats a whole new av....  if you want to test end deploy later that fine but if you want to download a temp fix go to 10.1.8 then deploy it
0
Mike4CCMCommented:
Delete existing instance of WMI object root\securitycenter:AntivirusProduct using "wbemtest" utility or any  utility you like from "WMI Tools" package. Then reinstall Symantec product

Here are the steps:

" Go to a command prompt and run wbemtest
" Click the Connect button
" Replace root\default with root\securitycenter and click Connect
" You will be returned to the original screen, now click the Enum Classes button, leave the Superclass info box that appears as is (empty) and click OK
" On the Query Results screen, highlight AntivirusProduct and choose the Delete button.
" Close the Query windows and exit wbemtest
" Now either reinstall or repair Symantec Antivirus Corporate Edition
0
Mike4CCMCommented:
I forgot to mention, this resolved install issues with both Endpoint and Corp editions.
0
gregwestCommented:
Mike4CCM's solution worked great.  I had a user who got infected with some kind of malware that replaced the legitimate SAV solution and disabled it.  I cleaned the machine with Malwarebytes, but the RTVScan.exe registry keys were probably still corrupted.  I tried repairing and removing the SAV 10.1.8 installation and I kept getting the runtime error after boot-up.

I used his procedure below:

Mike4CCM
10.13.2009 at 07:47AM PDT, ID: 25560522
Delete existing instance of WMI object root\securitycenter:AntivirusProduct using "wbemtest" utility or any  utility you like from "WMI Tools" package. Then reinstall Symantec product

Here are the steps:

" Go to a command prompt and run wbemtest
" Click the Connect button
" Replace root\default with root\securitycenter and click Connect
" You will be returned to the original screen, now click the Enum Classes button, leave the Superclass info box that appears as is (empty) and click OK
" On the Query Results screen, highlight AntivirusProduct and choose the Delete button.
" Close the Query windows and exit wbemtest
" Now either reinstall or repair Symantec Antivirus Corporate Edition

After doing a repair, the SAV installatin worked normally again.  Good job Mike4CCM!
      
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Anti-Virus Apps

From novice to tech pro — start learning today.