Saturday, 7 September 2013

Norton AntiVirus (2014)

Pros New technology handles corrupted critical files. Installer remediates some potential problems. Very effective malicious URL blocking, exploit blocking, and antiphishing. Good malware cleanup scores. Remote monitoring via network map.

Cons Despite corrupted-file technology, scan disabled two infested test systems, requiring tech support intervention. Average malware blocking scores. Bottom Line Symantec focuses on protecting against malware at every level, and the latest Norton AntiVirus (2014) does more than ever to block real-world malware attacks. This focus costs it points in static antivirus testing, but the product is effective. I use it myself.

By Neil J. Rubenking

Early computer viruses under MS-DOS were simple things, chunks of code appended to executable COM files. Norton Antivirus was there, starting in 1990, working to wipe out these nasty infections. Norton AntiVirus (2014) continues to do the job, growing and evolving to face ever more complex types of malicious code.

Compare Selected

Like Bitdefender, Kaspersky, and a few others, Symantec has stopped using a year or version number for its Norton product line. I've appended "(2014)" for the simple purpose of distinguishing this product from earlier versions.

Big, touch-friendly buttons on the main window let you quickly launch a scan or check for updates. An info panel monitors CPU usage (overall and specifically by Norton). The product comes configured for the best balance between security and performance, so most users won't need to dig into the product's settings.

A New Technique
When I met with Symantec representatives prior to this review, they explained a truly impressive new feature that's been added to the current version. Sometimes malware infests essential Windows components, in effect taking them hostage. The antivirus can't quarantine the infected file without disabling Windows. The best solution would be to replace the file with a clean copy of the original, but licensing issues prevent doing so directly.

To clean up this kind of problem, the product first consults the immense Norton Insight database to locate the corresponding clean file, then runs a cloud-based comparison against the infected edition. It supplies the local Norton installation with a file that represents the difference between the two—in effect, a set of instructions for changing the corrupted file back to its clean equivalent. Once the clean file has been verified, the cleanup is complete.

I frequently run into big problems with antivirus products that get too aggressive and delete important Windows files. I'm really impressed with the cleverness of this technology.

Installation Ups and Downs
The installer for Norton AntiVirus checks for problems and, when possible, solves them. For example, on one test system it detected an illegitimate proxy installation and offered to remove it. Doing so saved it from a host of post-install connection troubles.

When malware has rendered a system unbootable, or when ransomware actively blocks access to the system, the Norton Bootable Recovery Tool offers two ways to save the day. You can run Norton Power Eraser, an aggressive malware-killing tool, or run an advanced recovery scan. This tool easily wiped out ransomware on one test system, allowing installation of the full product.

SecurityWatch

On the flip side, the new cleanup technology I described didn't prevent Norton from damaging two test systems to the point they would not boot. On one system, Norton's Auto-Protect flagged a number of files immediately after installation and requested a reboot to finish cleanup. After reboot, it went into an endless logon/logoff loop. The other system couldn't update, activate, or call on its built-in support. On advice from tech support I tried Norton Power Eraser, and when that didn't help, Norton Bootable Recovery Tool. This system ended up in the same kind of logon/logoff loop.

Getting these problems fixed required several hours of interaction with tech support, including remote-access diagnostics and repair, which was rather disappointing. Both systems did eventually get fixed, but it took a lot of work. I rate the installation experience at two stars.


View the original article here

No comments:

Post a Comment