Jump to content

Norton AntiVirus: Difference between revisions

From Wikipedia, the free encyclopedia
Browse history interactively
[pending revision][pending revision]
← Previous editNext edit →
Content deleted Content added
VisualWikitext
Line 56: Line 56:
The security status and settings are now displayed in a single main interface. A CPU usage monitor displays the total CPU utilization and Norton's CPU usage in the main interface. Other features include [[Norton Insight]], a whitelisting technology which cuts scanning times by mapping known safe files using information from an online database. <sub><ref name="g2g09review">{{cite web|url=http://www.geekstogo.com/2009/01/05/norton-internet-security-2009-review/#more-777|title=Norton Internet Security 2009|last=Tal|date=January 5, 2009|publisher=geekstogo.com|language=EN|accessdate=2009-01-07}}</ref></sub> To address malware response times, Pulse Updates deliver updates 5 to 15 minutes. <ref name="AV-test"/>
The security status and settings are now displayed in a single main interface. A CPU usage monitor displays the total CPU utilization and Norton's CPU usage in the main interface. Other features include [[Norton Insight]], a whitelisting technology which cuts scanning times by mapping known safe files using information from an online database. <sub><ref name="g2g09review">{{cite web|url=http://www.geekstogo.com/2009/01/05/norton-internet-security-2009-review/#more-777|title=Norton Internet Security 2009|last=Tal|date=January 5, 2009|publisher=geekstogo.com|language=EN|accessdate=2009-01-07}}</ref></sub> To address malware response times, Pulse Updates deliver updates 5 to 15 minutes. <ref name="AV-test"/>


Existing subscribers of Norton AntiVirus, with an active subscription can download the latest version without having to pay an upgrade fee.<ref>{{cite web|Url=http://www.symantec.com/home_homeoffice/support/special/upgrade2007/vista/migration_start.jsp?site=nuc|accessdate=2009-03-18|Publisher=Symantec}}</ref>
Existing subscribers of Norton AntiVirus, with an active subscription can download the latest version without having to pay an upgrade fee.<ref>{{cite web|url = http://www.symantec.com/home_homeoffice/support/special/upgrade2007/vista/select_product.jsp?site=nuc|accessdate=2009-03-18|title=Norton Update Center|Publisher=Symantec}}</ref>


==Macintosh edition==
==Macintosh edition==

Revision as of 02:49, 18 March 2009

‎Norton AntiVirus
Developer(s)Symantec Corporation
Stable release
2009 or 16.5.0.134 (Windows Edition), 11.0 (Mac Edition)
Operating systemMicrosoft Windows, Mac OS X
TypeAntivirus
LicenseProprietary
WebsiteNorton AntiVirus Homepage

Norton AntiVirus, developed by Symantec Corporation, provides malware prevention and removal. It is distributed as a download, a box copy, or preinstalled on computers as OEM software. Norton AntiVirus and its brother product, Norton AntiVirus, combined, hold a 61% antivirus market share, as of 2007. Major competitors include CA, Trend Micro, and Kaspersky Lab. [1]

Norton AntiVirus's malware protection uses both signatures and heuristics. Other features include e-mail spam filtering. It is compatible with Microsoft Windows and Mac OS X. Version 16.5.0.134 is the latest build available.

System Requirements

Windows XP Service Pack 2 (32-bit only) Windows Vista (32/64-bit)
Processor Intel Pentium 300 MHz (or equivalent) Intel Pentium 800 MHz (or equivalent)
RAM 256 MB 512 MB
Free hard drive space 150 MB 150 MB

The Norton Recovery Tool, 512 MB of RAM is required. The Norton Recovery Tool facilitates malware removal and recovery via bootable CD, outside the Windows environment. [2]

Version History (Windows)

Version 2006 (13.0)

The redesigned main graphical user interface, dubbed the "Norton Protection Center" aggregates information in a central user interface.[3] CNET reports the Norton Protection Center, while useful, attempts to advertise additional products. To further facilitate detection of zero-day malware, Bloodhound disassembles a variety of programming languages, and scans code for malicious instructions using predefined algorithms. [4] Internet Explorer homepage hijacking protection was introduced in this release as well; however notably missing is search engine hijacking protection. CNET highlighted Norton AntiVirus 2006's noticeable impact on system performance. [3]

Version 2007 (14.0)

Norton AntiVirus was released on September 12, 2007. Symantec revised Norton AntiVirus with the goal of reducing high system resource utilization. [5] Windows Vista compatibility was introduced in this release as well. Despite having about 80% of the code rewritten, CNET reports mixed results in performance testing. [6] New features include a tabbed interface, eliminating the need to have separate windows open for the Norton Protection Center and for configuring the settings. [6] Symantec extended its Veritas VxMS rootkit detection technology, allowing Norton AntiVirus 2007 to inspect files within directories to files on the volume level, detecting abnormalities or inconsistencies. [6]

Version 2008 (15.0)

Norton AntiVirus 2008 was released on August 28, 2007. Emphasizing malware prevention, new features include SONAR, which looks for suspicious application behavior. "Browser Defender" blocks attackers from leveraging Internet Explorer exploits [7] It uses heuristics to analyze ActiveX, JavaScript, and VBScript code executing from within Internet Explorer. [8]

Version 2009 (16.0)

Norton AntiVirus 2009 was released on September 8, 2008. Addressing performance issues, over 300 changes were made, with a "zero-impact" goal. [9] [10] Benchmarking conducted by PassMark Software highlights its 47 second install time, 32 second scan time, and 5 MB memory utilization. [11]

The security status and settings are now displayed in a single main interface. A CPU usage monitor displays the total CPU utilization and Norton's CPU usage in the main interface. Other features include Norton Insight, a whitelisting technology which cuts scanning times by mapping known safe files using information from an online database. [12] To address malware response times, Pulse Updates deliver updates 5 to 15 minutes. [13]

Existing subscribers of Norton AntiVirus, with an active subscription can download the latest version without having to pay an upgrade fee.[14]

Macintosh edition

Norton AntiVirus 11 for Mac introduced support for Mac OS X v10.5 Leopard platform, with the capability to detect both Macintosh and Windows malware. Other features include a vulnerability scanner, which blocks attackers from leveraging software exploits.[15] Norton AntiVirus 11 also includes the ability to scan within compressed or archived files, such as Time Capsule volumes. Operating requirements call for Macintosh OS X v10.4.10.[16] A PowerPC or an Intel Core processor, 128 MB of RAM, and 100 MB of free hard disk space are also required. Norton AntiVirus Dual Protection for Mac is intended for Macintosh users with Windows running on their systems, using Boot Camp or virtualization software such as VMWare Fusion. It provides a license for both Norton AntiVirus 11 with Norton AntiVirus 2009. System requirements for Norton AntiVirus 2009 are listed above[17][18]

Criticisms

Product support

Retail customers report slow and indifferent service on bugs. Examples include a faulty error message that valid subscriptions have expired. [19] Users received an error that stated "Your virus protection cannot be updated." This error occurred after an update to the software and refused to allow daily updates via Intelligent Updater. [20] Though the bug was reported in 2004, it was not corrected for the 2005 or 2006 versions.

Another incident occurred in May 2007, when Norton Antivirus flagged components of the Pegasus e-mail client as malicious, rendering the program corrupted. [21] Symantec customer service addressed the problem by running through a checklist of troubleshooting steps which were not always successful, perhaps indicating a need for a more thorough understanding of the product on the company's behalf.

Faulty update

On July 25, 2006, Symantec released a faulty update for Norton AntiVirus 2006 users. Users reported an onscreen message stating "Norton AntiVirus 2006 does not support the repair feature. Please uninstall and reinstall.". [22] Symantec claimed the faulty update was downloaded to customers between 1:00 PM and 7:00 PM on July 25, 2006. Symantec developed a workaround tool and has listed troubleshooting steps, available here. The company released a statement, stating they expected to deliver a repair patch to affected users by Monday, July 31, 2006." [23]

Aggressive Subscription Marketing

- If you choose not to update your subscription, after 90 days you get a pop-up reminder which is (a) always on top and (b) won't go away. Symantec customer service acknowledges this as both "a design feature" and a "friendly reminder". The feature occurs despite the user electing to disable alerts. Symantec also acknowledge the only way to get rid of this pop-up, which effectively disables your computer by obscuring nearly 1/4 of the screen, is to pay Symantec further money to upgrade or update subscription, or to uninstall software one has purchased the full rights to use.

Uninstallation

Both Norton AntiVirus and Norton Internet Security have been criticized for refusing to uninstall completely, leaving unnecessary files behind. [24] [25] Another issue is versions prior to 2009 installed a separate LiveUpdate component. The LiveUpdate component is purposely left behind to update other installed Norton-branded products, if present. [26] In response, Symantec developed the Norton Removal Tool to remove leftover registry keys and values along with files and folders. [27] However, neither route of uninstallation will remove subscription data. [28]

Incompatibilities with ZoneAlarm

Norton AntiVirus 2007 will not install alongside ZoneAlarm. This incompatibility has caused annoyance for Norton customers who purchased Norton AntiVirus 2007 with no prior warning or notice of the incompatibility. [29] Symantec recommends removing ZoneAlarm, then reinstall with the "Internet Worm Protection" feature disabled, which controls what applications and the protocols which can be used accessing the Internet.

FBI cooperation

Symantec agreed to cooperate with the FBI by whitelisting Magic Lantern, a keylogger designed to capture cryptographic keys, or passwords, to encrypted files on a host computer. [30][31][32][33] However, industry leaders have voiced concerns concerning privacy, arguing Magic Lantern may be used by hackers outside the law.

Graham Cluley, a technology consultant from Sophos, claims "We have no way of knowing if it was written by the FBI, and even if we did, we wouldn’t know whether it was being used by the FBI or if it had been commandeered by a third party". [34] Another reaction from this came from Marc Maiffret, chief technology officer and cofounder of eEye Digital Security who states: "Our customers are paying us for a service, to protect them from all forms of malicious code. It is not up to us to do law enforcement's job for them so we do not, and will not, make any exceptions for law enforcement malware or other tools."[35]

FBI spokesman Paul Bresson, in response if Magic Lantern needed a court order to deploy, "Like all technology projects or tools deployed by the FBI it would be used pursuant to the appropriate legal process."

Eric Chien, a lead researcher at Symantec, emphasized being able to identify "modified versions". [36] Magic Lantern has not been spotted in-the-wild yet. [37] [38]

PIFTS.exe

On March 10, 2009, users of Norton Antivirus started experiencing a firewall warning that a file called PIFTS.exe was trying to connect to the internet. Postings to Norton's discussion forums were deleted by Norton employees, prompting widespread claims of a conspiracy.[39][40]

Critical Reception

  • Norton AntiVirus 2009 detected 97.9% of malware in AV-comparative's August 2008 test.[41]
  • Norton AntiVirus 2009 detected 44% of malware in AV-comparative's November 2008 heuristics test.[41]
  • Norton AntiVirus 2009 had the second least impact on system performance in AV-comparative's latest performance test.[41]
  • Norton Internet Security 2009 beta detected 98.7% of viruses and 95.4% of spyware and adware in AV-test's latest test.[13]

Note: Norton AntiVirus 2009 and Norton Internet Security 2009 share the same malware detection engine. Thus, malware detection results for one product apply to the later.

References

  1. ^ "Channel Best-Sellers: Winning Security Players". CRN Staff. United Business Media LLC. November 23, 2007. Retrieved 2009-03-09.
  2. ^ "Download Norton Recovery Tool ISO to Create a Norton Rescue CD". Raymond.CC Blog. Retrieved 2009-02-26.
  3. ^ a b by sralls on October 3, 2005. "Norton AntiVirus 2006 Internet security and firewall reviews - CNET Reviews". Reviews.cnet.com. Retrieved 2009-02-23.{{cite web}}: CS1 maint: numeric names: authors list (link)
  4. ^ "Bloodhound". Symantec. Retrieved 2009-02-23.
  5. ^ Reviewed by: Robert Vamosi. "Norton AntiVirus 2007 Internet security and firewall reviews - CNET Reviews". Reviews.cnet.com. Retrieved 2009-02-23.
  6. ^ a b c Reviewed by: Robert Vamosi. "Norton AntiVirus 2007 Internet security and firewall reviews - CNET Reviews". Reviews.cnet.com. Retrieved 2009-02-23.
  7. ^ http://pcworld.co.nz/pcworld/pcw.nsf/feature/D797C6B246A7ECA5CC25734600732321
  8. ^ "Symantec unveils Browser Defender in its 2008 consumer security software". Gregg Keizer. Fairfax New Zealand Limited. August 30 2007. Retrieved 2009-03-07. {{cite web}}: Check date values in: |date= (help)
  9. ^ "Symantec Launches Norton Antivirus 'Gaming Edition'". PC Magazine. Retrieved 2009-02-24.
  10. ^ "Symantec Launches Fastest Security Products in the World". Marketwire, Incorporated. September 9, 2008. Retrieved 2009-03-04.
  11. ^ http://www.passmark.com/ftp/antivirus_09-performance-testing-ed3.pdf
  12. ^ Tal (January 5, 2009). "Norton Internet Security 2009". geekstogo.com. Retrieved 2009-01-07.
  13. ^ a b c http://www.av-test.org
  14. ^ "Norton Update Center". Retrieved 2009-03-18. {{cite web}}: Unknown parameter |Publisher= ignored (|publisher= suggested) (help)
  15. ^ "Norton AntiVirus 11 for Leopard Announced". PC World Communications, Inc. December 10, 2007. Retrieved 2009-02-28.
  16. ^ "Norton Antivirus 11.0 for Mac". about.com. Retrieved 2009-02-24.
  17. ^ "Norton AntiVirus 11 for Mac". Symantec. Retrieved 2009-02-24.
  18. ^ "Norton AntiVirus Dual Protection for Mac". Symantec. Retrieved 2009-02-24.
  19. ^ [1]
  20. ^ http://service1.symantec.com/SUPPORT/sharedtech.nsf/0/3a154213bd3ad4cc88256a370054cab6?OpenDocument
  21. ^ http://www.tnpcnewsletter.com/blog/2007/05/18/pegasus-email-client-being-flagged-as-a-trojan-program/
  22. ^ "Faulty Update Stymies Norton Users". The Washington Post Company. 2009. Retrieved 2009-02-26.
  23. ^ Symantec ships faulty Norton AntiVirus 2006 update - Alpha Blog - alpha.cnet.com
  24. ^ "Symantec uninstaller may not finish the job". Scott Dunn. WindowsSecrets.com. February 7, 2008. Retrieved 2009-03-05.
  25. ^ "How can I fully remove Norton Antivirus from my system?". Dave Taylor. Retrieved 2009-02-23.
  26. ^ "PCWorld". PCWorld. Retrieved 2009-02-23.
  27. ^ "Download and run the Norton Removal Tool". Symantec Corporation. Retrieved 2009-02-23.
  28. ^ "How to Completely uninstall Symantec Norton SystemWorks, AntiVirus, or Personal Firewall and Reset your LiveUpdate Subscription". William Giordano. http://quarterbacks.org/. Retrieved 2009-03-05. {{cite web}}: External link in |publisher= (help)
  29. ^ Norton AV versus Zone Alarm - can't you have both? | Ask Jack | Guardian Unlimited
  30. ^ "Magic Lantern (software) - Wikipedia, the free encyclopedia". En.wikipedia.org. Retrieved 2009-02-23.
  31. ^ http://www.kaspersky.com (2001-12-11). "The FBI's "Magic Lantern" Shines Bright". Kaspersky.com. Retrieved 2009-02-23. {{cite web}}: External link in |author= (help)
  32. ^ "FBI Has a Magic Lantern". Usgovinfo.about.com. Retrieved 2009-02-23.
  33. ^ "The FBI's Magic Lantern". Worldnetdaily.com. 2001-11-28. Retrieved 2009-02-23.
  34. ^ Jackson, William (2001-12-06). "Antivirus vendors are wary of FBI's Magic Lantern - Government Computer News". Gcn.com. Retrieved 2009-02-23.
  35. ^ McCullagh, Declan (2007-07-17). "Will security firms detect police spyware? - CNET News". News.cnet.com. Retrieved 2009-02-23.
  36. ^ http://www.theregister.co.uk/2001/11/27/av_vendors_split_over_fbi/
  37. ^ "Symantec pledges to acquiese to FBI backdoor demands". Politech. November 28, 2001. Retrieved 2009-03-05.
  38. ^ Shane Coursen (2001-12-03). "'Magic Lantern' Rubs the Wrong Way". Securityfocus.com. Retrieved 2009-02-23.
  39. ^ http://voices.washingtonpost.com/securityfix/2009/03/symantec_users_complain_of_mys.html
  40. ^ http://isc.sans.org/diary.html?storyid=5992
  41. ^ a b c http://www.av-comparatives.org
Retrieved from "https://en.wikipedia.org/w/index.php?title=Norton_AntiVirus&oldid=278021289"