Symantec Endpoint Protection (SEP) 14.2 client has malfunctioning components
This condition can occur on systems where the startup is slow compared to a typical system and the boot phase lasts longer than normal. In situations where devices are taking longer than normal to boot up, ccSvcHst may be prevented from loading the rest of the SEP components normally because the device is still in the booting phase. Certain SEP components won't be loaded in the systems booting phase to preserve system performance.
Symantec Endpoint Protection (SEP) 14.2 and later clients may have one or more components listed as malfunctioning on startup. On devices where this issue repeatedly occurs, a registry key can be applied to systems to solve this issue.
On affected devices:
If there are multiple devices this registry key needs to be applied to, a Host Integrity policy can be used to add the key following the steps below.