PSUSteeler said:I'm using Symantec AntiVirus, and Defender is attempting to tamper with it.
So far, it's been blocked (and the only program attempting to tamper with
Symantec). Why is it doing this? Mind you, I'm not a computer expert.
Alan D said:I'm not a computer expert either, but until recently, I've been running
Norton AV 2005 together with Defender, and Norton's logs were full of
encounters with Defender, and statements that Norton had blocked them. I
presume that Norton sees Defender's behaviour as threatening, while
Defender
sees Norton's files as just another set of files that need scanning. As
far
as I can tell, this daily battle had no significant effect on the running
of
my computer, so if I were you, I wouldn't concern myself about it.
For information, however, I've just got rid of Norton and replaced it with
AVG's new Internet Security suite, and it gets on with Defender as if they
were old pals.
Robin said:get another virus protection other than Norton <g>
heck, you can always trial AVG- they allow you to trial it for a month free
not always going to be their product that gets picked in this competitive
field. Why tolerate wasted cpu cycles endlessly attempting to examine
Norton files by blocked RTPs?
The problem is that Windows Defender is 'interfering with' Symantec
-- that is, it keeps on trying to open Symantec files --
even though I have cited each of them (there are four folders)
under Windows Defender's
AdvancedOptions>DoNotScanTheseFilesOrLocations.
That makes this Windows Defender's bug, rather than a
[possible] problem with Symantec or Norton. I agree that
Symantec/Norton should have an 'ignore' list, but,
by offering the option above, Micro$oft claims to HAVE the
corresponding list.
Dave M said:If you were running SpySweeper for example, you'd see that Norton also
detects "tamper" alerts for Webroot's real time protection as it does
for Defender. The problem here is Norton should have included the
capability for a user to specifically ignore scans from other than it's
own Anti-Spyware from these alerts, but that wouldn't be conducive to
selling more Norton. It's obvious that people are free to pick and
choose their own best of breed protections, and Symantec needs to
recognize that that's not always going to be their product that gets
picked in this competitive field. Why tolerate wasted cpu cycles
endlessly attempting to examine Norton files by blocked RTPs?
I eventually got fed up with this nonsense and disabled "protection for
my Symantec product" in AV miscellaneous options, which is something I
would normally not choose to do if the appropriate exclusions were
available. It does silence the reporting process and the inefficiency,
although I realize doing that leaves me potentially more vulnerable.
Yet, how would I pick out a real tamper attempt from thousands of these
records generated daily? Hummm... what to do when renewal time rolls
around...
Dave M said:I think we'd have to agree to disagree on this one... the Symantec problem
is not unique to Windows Defender RTP alone, but also occurs with
SpySweeper and who knows what other AS products running RTP (see my
response to your other post.) Therefore, I conclude that Symantec needs to
fix a problem that they created starting with their 2005 release of not
allowing for third party active protection scanners in anyone's security
mix.
What I think we'd both agree on is that this alert is a waste of CPU
cycles, when thousands of alerts and blocks are performed in any given day.
It's basically a shame when consumers are caught in the middle of a rush
for our loyalty and our cash.
--
Regards, Dave
The problem is that Windows Defender is 'interfering with' Symantec
-- that is, it keeps on trying to open Symantec files --
even though I have cited each of them (there are four folders)
under Windows Defender's
AdvancedOptions>DoNotScanTheseFilesOrLocations.
That makes this Windows Defender's bug, rather than a
[possible] problem with Symantec or Norton. I agree that
Symantec/Norton should have an 'ignore' list, but,
by offering the option above, Micro$oft claims to HAVE the
corresponding list.
Dave M said:If you were running SpySweeper for example, you'd see that Norton also
detects "tamper" alerts for Webroot's real time protection as it does
for Defender. The problem here is Norton should have included the
capability for a user to specifically ignore scans from other than it's
own Anti-Spyware from these alerts, but that wouldn't be conducive to
selling more Norton. It's obvious that people are free to pick and
choose their own best of breed protections, and Symantec needs to
recognize that that's not always going to be their product that gets
picked in this competitive field. Why tolerate wasted cpu cycles
endlessly attempting to examine Norton files by blocked RTPs?
I eventually got fed up with this nonsense and disabled "protection for
my Symantec product" in AV miscellaneous options, which is something I
would normally not choose to do if the appropriate exclusions were
available. It does silence the reporting process and the inefficiency,
although I realize doing that leaves me potentially more vulnerable.
Yet, how would I pick out a real tamper attempt from thousands of these
records generated daily? Hummm... what to do when renewal time rolls
around...
--
Regards, Dave
PSUSteeler wrote:
I'm using Symantec AntiVirus, and Defender is attempting to tamper with
it. So far, it's been blocked (and the only program attempting to
tamper with Symantec). Why is it doing this? Mind you, I'm not a
computer expert.
Hesch said:Sorry, I will NOT agree. Micro$oft has provided "Windows Defender's
AdvancedOptions>DoNotScanTheseFilesOrLocations", but seems to be
ignoring it. Again, "That makes this Windows Defender's bug", no matter
what additional function we CAN agree Symantec/Norton should provide.
Dave M said:I think we'd have to agree to disagree on this one... the Symantec problem
is not unique to Windows Defender RTP alone, but also occurs with
SpySweeper and who knows what other AS products running RTP (see my
response to your other post.) Therefore, I conclude that Symantec needs to
fix a problem that they created starting with their 2005 release of not
allowing for third party active protection scanners in anyone's security
mix.
What I think we'd both agree on is that this alert is a waste of CPU
cycles, when thousands of alerts and blocks are performed in any given day.
It's basically a shame when consumers are caught in the middle of a rush
for our loyalty and our cash.
--
Regards, Dave
The problem is that Windows Defender is 'interfering with' Symantec
-- that is, it keeps on trying to open Symantec files --
even though I have cited each of them (there are four folders)
under Windows Defender's
AdvancedOptions>DoNotScanTheseFilesOrLocations.
That makes this Windows Defender's bug, rather than a
[possible] problem with Symantec or Norton. I agree that
Symantec/Norton should have an 'ignore' list, but,
by offering the option above, Micro$oft claims to HAVE the
corresponding list.
:
If you were running SpySweeper for example, you'd see that Norton also
detects "tamper" alerts for Webroot's real time protection as it does
for Defender. The problem here is Norton should have included the
capability for a user to specifically ignore scans from other than it's
own Anti-Spyware from these alerts, but that wouldn't be conducive to
selling more Norton. It's obvious that people are free to pick and
choose their own best of breed protections, and Symantec needs to
recognize that that's not always going to be their product that gets
picked in this competitive field. Why tolerate wasted cpu cycles
endlessly attempting to examine Norton files by blocked RTPs?
I eventually got fed up with this nonsense and disabled "protection for
my Symantec product" in AV miscellaneous options, which is something I
would normally not choose to do if the appropriate exclusions were
available. It does silence the reporting process and the inefficiency,
although I realize doing that leaves me potentially more vulnerable.
Yet, how would I pick out a real tamper attempt from thousands of these
records generated daily? Hummm... what to do when renewal time rolls
around...
--
Regards, Dave
PSUSteeler wrote:
I'm using Symantec AntiVirus, and Defender is attempting to tamper with
it. So far, it's been blocked (and the only program attempting to
tamper with Symantec). Why is it doing this? Mind you, I'm not a
computer expert.
< < < < < < earlier text removed - it appears elsewhereEric in Italy said:In desperation with Symantec's technical support (five tech requests and one
long telephone call at my expense):
Not strictly on the mainstream of your threads but having paid for and then
after five NAV 2007 downloads/uninstall/reinstall, etc. using all the 'tools'
Symantec recommend NAV will not install recognising my new subscription [0
days remianing, etc] (the actual program SEEMS to work as it's in NAV 2007
format) my latest advice is uninstall ALL of MS Defender (which I've done
using Control Panel / Remove progs, etc. but there's probably something
remaining). How do I get rid of the remains and then I'll try to
re-download, yet again, another NAV 2007. Apart from advising me to change
AV supplier (!) any ideas? - I dread this time of year as it's the time I
have to renew my NAVs and it takes AGES (non cable connection). I see also
on another thread that the same problem seems to apply to a CD version.
Thanks, Eric
Hesch said:Sorry, I will NOT agree. Micro$oft has provided "Windows Defender's
AdvancedOptions>DoNotScanTheseFilesOrLocations", but seems to be
ignoring it. Again, "That makes this Windows Defender's bug", no matter
what additional function we CAN agree Symantec/Norton should provide.
Hesch said:I am NOT currently delving into the internal intricacies of ANY products but
my own, so I cannot be of use to you, Eric. Please note that I believe
Symantec's products are behaving quite properly BASED ON WHAT I KNOW OF
their PUBLISHED RULES. It is Micro$oft's Windows Defender that is
misbehaving. Unfortunately, Dave and Robin (who seem to be more current on
these internals kind of thing) are not responding to that view of the
matter.
I believe this may be encouraging M$ to ignore their culpability, for the
moment.
I agree with them, however, that Symantec (and any other AV producer wanting
to
claim similar high status) should add their own 'ignore this annoyance' lists.
Good luck to us all, and Peace - Hesch
< < < < < < earlier text removed - it appears elsewhereEric in Italy said:In desperation with Symantec's technical support (five tech requests and one
long telephone call at my expense):
Not strictly on the mainstream of your threads but having paid for and then
after five NAV 2007 downloads/uninstall/reinstall, etc. using all the 'tools'
Symantec recommend NAV will not install recognising my new subscription [0
days remianing, etc] (the actual program SEEMS to work as it's in NAV 2007
format) my latest advice is uninstall ALL of MS Defender (which I've done
using Control Panel / Remove progs, etc. but there's probably something
remaining). How do I get rid of the remains and then I'll try to
re-download, yet again, another NAV 2007. Apart from advising me to change
AV supplier (!) any ideas? - I dread this time of year as it's the time I
have to renew my NAVs and it takes AGES (non cable connection). I see also
on another thread that the same problem seems to apply to a CD version.
Thanks, Eric
Hesch said:Sorry, I will NOT agree. Micro$oft has provided "Windows Defender's
AdvancedOptions>DoNotScanTheseFilesOrLocations", but seems to be
ignoring it. Again, "That makes this Windows Defender's bug", no matter
what additional function we CAN agree Symantec/Norton should provide.
:
I think we'd have to agree to disagree on this one... the Symantec problem
is not unique to Windows Defender RTP alone, but also occurs with
SpySweeper and who knows what other AS products running RTP (see my
response to your other post.) Therefore, I conclude that Symantec needs to
fix a problem that they created starting with their 2005 release of not
allowing for third party active protection scanners in anyone's security
mix.
What I think we'd both agree on is that this alert is a waste of CPU
cycles, when thousands of alerts and blocks are performed in any given day.
It's basically a shame when consumers are caught in the middle of a rush
for our loyalty and our cash.
< < < < < < if you think it could POSSIBLY be of interest. - Hesch