Norton 2009 products released...

New versions of Norton Antivirus and Norton Internet Security. Redesigned from the ground up. They are supposed to install quickly, uninstall cleanly and run so light that you should not be able to tell they are there at all.

As it's new, there is no large sampling out there to know exactly how well they have accomplished their goal. But it's good to know someone at Symantec understands what a mess they had been in.

Anyone who posts/reads this BB knows how much of a Norton hater I have been. But that said, I plan to test this new version to see how much of a change it really is.

BTW... In no way do I endorse Norton 360. It still consists of the old bloated code.

http://www.symantec.com/norton/produ...stproducts.jsp

Even, if you pay me....LOL

It's too good to be true.

Hmmm. NAV2009 Upgrade, Renew or Full version--same price.

Redesigned from the ground up.

So does that mean they admit they had a faulty product?

Does it mean they were lying when they said it was the best or does it mean they were too incompetent to know?

Lying? I doubt we'll hear anything from that direction. But faulty? Maybe not quite that far but they absolutely admit things got out of hand. Supposedly, on a fresh install, from the first click to being fully installed is no more than 1 minute. Manual scan times are supposed to rival (or better) anything in the industry. Updates are as often as 10 to 20 per hour.

I am going to test NIS 2009 in a couple of days. It may well prove very interesting... :)

Jim: It's my understanding that a current NAV 2008 license is good for 2009. And while, if I were you, I would do a clean install, you are supposed to be able to do an over the top without issue...

HAN--Always appreciate your posts.
But not sure what you mean by "It's my understanding that a current NAV 2008 license is good for 2009". Any financial benefit? I have a 2008 license.
"I would do a clean install, you are supposed to be able to do an over the top without issue..."
I always unininstall a previous NAV using the Norton Removal Tool before installing a new version. That would seem to be even more prudent this year after what you say about the major changes in NAV 2009.
See, I always told you it was a good program. :)

Jim: To clarify, based on what I've read over at dslreports, if you want to upgrade to 2009, you can do so. Your 2008 NAV license is good for NAV 2009.

Quote:

---

See, I always told you it was a good program.

---

Was? :D Well, I still don't think so. But maybe now, it is... ;) (I still plan to test it within the next few days when I can set some time aside.)

Hi all, I am new to this Forum I found it from a link at the anandtech forums a week or two ago and I have been lurking since to get the feel of the community here, and I like what I see and thought I could contribute. I was involved in the beta testing of NAV 2009 and was impressed with the changes that have been made for me even though it was beta it was stable and much faster than previous versions, The new update system is faster and gets you new definitions at least every 15 min. The memory footprint was very small and I liked the silent mode one click to have it not update and move itself to the background during video encoding was great. I also see they have increased to 1 year of free support in the public release version.These are just my personal observations I do not work for Symantec or have any financial interest in them but I also believe in acknowledging a when a manufacturer listens and tries to improve a product based on customer feedback. A good debate after all if it is honest and not biased by what was but is based on fact can only benefit both sides.
Amos :)

Welcome Amos! :D I think you'll find us a pretty good bunch. This was one of the first (if not THE first) PC info sites I started out with 6 years ago. Trust me, that if it wasn't friendly and helpful, I wouldn't have stuck around so long...

HAN--The DSL page about NAV2009 seems to be http://www.dslreports.com/forum/r210...ne-Now-On-Sale
But it seems to talk mostly about downloading the trial of the 2009 product. It is not completely clear how long that will remain valid using the 2008 key.

Jim: Yes, that's the thread. My impression wasn't that most were trialing 2009. I thought that most were licensed users already with 2008. :confused:

I guess the best way to clear this up... I'd call or email Symantec support and ask them if 2008 can move up to 2009 with no restrictions.

I contacted them yesterday by e-mail this morning they replied that "You can upgrade your Norton 2008 product to the same Norton 2009 product with no additional charge and use the remainder of the subscription period on the latest 2009 product" The only difference in the trial and the full product is the activation key so install ing the trial and using an existing key it will last until the subscription for that key expires...at least that is how it usually works.

Amos

I also asked Symantec saying I had NAV 2008, and this is the response.
"I would like to inform you that, Symantec is providing free Upgrade to Norton 2009 product for Norton 2006/2007 customers who have valid subscription provided they are using Windows XP/Vista Operating System. When you download this update, the remaining subscription days from your Norton 2006/2007 product would be automatically transferred to Norton 2009 product."
It seems agreed that the free part is only for the remaining part of the prior NAV's subscription. There seems a little confusion about which prior NAV products have this option. I tend to agree with MadAmosMalone's info since there was more confusion in other parts of the email I got. (I suspect it came from India.)

Well, it's a slow Saturday night... :) So I downloaded Norton Internet Security 2009 and loaded it up on my XP Pro SP3 laptop.

Pros:

It loaded blazingly fast. Symantec says a minute and while I didn't time it, it seemed like less than a minute. Amazing for a product that's an AV and a firewall. And it did not require a reboot to run.

Updates and the way it updates are much different than the old Norton programs. LiveUpdate is now part of the program. Definition updates seem to trickle out from Symantec every 5 minutes or so. It may not be that often but it sure seems like it. (After initial testing, I turned off auto LiveUpdate. I need to pick and choose my update times at home (I'm on very slow dialup and need to control everything that connects... both what and when.)) But even manually updating proves that updates are coming from Symantec every few minutes. Kind of unbelievable when I've been used to only 2 or 3 a day.

CPU activity, number of processes and RAM usage are much lower than before. To help monitor NIS 2009's usage, it now includes a CPU Usage bar chart. As I type this, NIS 2009 is using 0% CPU and around 10.5 MB of RAM. Only 2 processes show up under TaskManager. Excellent results!

A full system scan took just under 17 minutes for 15 GB. Very quick!

I ran the firewall against GRC's ShieldsUp and it tested stealth for the main 1056 ports test.

I also tested NIS 2009 while running under my Limited User account. While the main interface is blocked from changes when running under a limited account (which is a good idea), NIS 2009 can still download and update virus and filter definitions. A key thing that needs to happen.

The home menu screen gives a nice overall report of current program conditions. When running from an admin account, you can drill down from here to reach the more advanced settings.

Cons:

By far the most serious... 2 freeze-ups so far. One at shut down and one at boot. Both froze on the desktop image. In both cases, I had to hold down the power button to kill the PC to be able to start over. (This is on a month old Dell laptop that ran fine before this on NOD32 and free ZoneAlarm (both completely removed before installing NIS.) Not good!

In some areas, the advanced portion of the interface menu is not the easiest to grasp. If you want to tweak something, plan on spending some time. (Although to be honest, most users probably won’t change much.) One example, if you wish to disable an item as I did (outbound email scanning), the tray icon turned red and it wasn’t the easiest thing to figure out how to make it green again. (I needed to find the “Ignore” link.)

Since I’m new to NIS 2009, there are probably tweaks I’ve missed. But by default, downloading zipped copies of the eicar.com test file did not trigger an alert. Only the fully extracted file set off an alarm. (By comparison. NOD32, Kaspersky, Trend Micro, Avast and more do this without any setup changes.) IMO, the scanning of archive downloads should be a default behavior. It seems to me that preventing a bad download to start with is much safer than catching it only at execution.

I’m probably spoiled by ZoneAlarm, but I can’t find a way to have the firewall always ask the user for permission to allow a specific program to have access to the web. It’s either Allow or Block. (This isn’t a serious issue and it’s probably this way for many firewalls. But I like the flexibility to always Allow, Deny or Ask.)

These are my first impressions. I plan to keep NIS on my laptop for a few more days to give it a more compete workout. So more later...

Better report than I expected but, yeah, the freezups would be a showstopper so we await more on your experience.

thanks for being a guinea pig :)

Well, we really won't know anything until we have a bunch of people, who'll be using it for a while, and we have to see, if TWO main Norton's issues were really addressed:
1. If it works flawlessly with Windows, and all other applications, not causing any conflicts.
2. How good its protection is. We all know how many people were visiting malware section on this board, and tens of others, because they were using Norton, and its protection was close to null.

I had no freezeups while using it during the beta program so I am hopefull the final release is also ok. I am downloading the final version today and will let you know how it goes upgrading using a current 2008 license with ~80 days left on it. I have read the forums at dslreports and so far no major issues reported there.
Amos

Just bought and installed on my laptop, NIS 2009 over 2008, so far looks nice, no trouble so far.

Actually had to buy from the USA symantec store, the uk store does not list 2009 only Norton360 and 2008.

At the bottom of the page it mentions you can only buy if from America or Canada, but no problems other than having to select GreatBritain (no United Kingdom) on my credit card info ( I am in NI which is in the UK and not part of GB )

Like the interface so far, and when you ask it to stop a scan it does so at once, unlike the old 2008 where you could click stop and make a cup of time while it decided if it wanted to stop or not.

Never really had problems with the old version I must admit, but no freezes so far so good!

A little more info... I did some digging and there is no way to switch on archive scanning in real-time. Plus, I also did some checking to see if NIS 2009 used either a Winsock tie-in or a local proxy to scan HTTP web traffic. The answer is no, it does not.

So, based on these answers, it's clear that Symantec doesn't feel that archive scanning is important until it's either decompressed or manually scanned.

Personally, I feel it's better to scan early rather than later. But it's just my opinion... ;)

Here is a reply from someone at Symantec to my post at dslreports concerning HTTP scanning and new NIS 2009...

Quote:

---

Hello everybody,

I work at Symantec and in the past I have worked on the team that builds our HTTP or Web scanning engines. I just wanted to clear up some confusion about whether or not Norton products have Web scanning engines.

The short answer is "yes" we do. In fact there are 5 independent engines that scan HTTP content.

1) There is the Intrusion Prevention (IPS) engine that scans for all types of HTTP based exploits. The engine has many 100s of generic vulnerability signatures that dont need to change often if at all since they target the vulnerability condition which doesn't change rather than the shell-code which does. New ones are added almost weekly. The list of signatures can be found at »www.symantec.com/avcenter/attack_sigs/. Look under "H". Every signature prefixed with "HTTP_" is being scanned on HTTP traffic. Its also important to note that the IPS engine scans ALL traffic coming into or going out of your machine, not just HTTP.

2) Browser Protection - This engine is specifically targeted at obfuscated JScript/VBScript HTTP content that exploits vulnerabilities in ActiveX, DOM or even specific data-types like VML. Highly obfuscated attacks are difficult if not impossible to reliably detect by scanning network traffic or by scanning the files in the IE cache. Hence this uses a totally different approach to the problem. But the bottom line is that it is still will block content coming over HTTP before it exploits the browser.

3) Anti-Phishing Engine - Also scans HTTP content looking for phishing page characteristics.

4) Privacy Scanning engine
5) Parental Controls.

Engines 1 and 2 are targeted at blocking malware from automatically infecting your machine when you visit an infected web page. aka drive-by downloads.

NIS/NAV doesn't scan incoming HTTP traffic for a malicious PE files (portable executable file i..e exe, com etc). We dont see the value in doing that because ultimately that file will hit the disk and when it does, our real-time scanner Auto-Protect will catch it. Hence, as some users have reported, if you try to download eicar.zip from a remote site, it wont be detected until you open the zip up and extract the eicar.com. AutoProtect will detect and block it before you can execute it.

Hope this helps.

Best,

Shane.

---

Well, after a few days, some final thoughts (I removed NIS tonight to test another antivirus)...

Since I began to tinker with PCs a few years back, I have never seen anything quite like this. A program that had (IMO) some fairly serious flaws* has been totally re-written and given a new start. I have been amazed many times over the last few days. (Keep in mind that this is coming from a self proclaimed Norton hater!)

I unhesitatingly recommend Norton Internet Security 2009. I also feel comfortable in recommending Norton Antivirus 2009 (as it apparently has the basic same code (minus the firewall and it's associated filtering.)

I'm impressed enough to say that while I currently run NOD32 on my home PCs, I am heavily considering switching to Norton 2009. IMO, it's that good.

*Items that come to mind as I type this... Older versions of Norton ran slow, it slowed the performance of the PC it was installed on, it had at least 3 separately installed components, many users had persistent download problems with Live Update, and on and on.

Quote:

---

Originally Posted by HAN

...
Cons:

By far the most serious... 2 freeze-ups so far. One at shut down ...

---

Sure that was a freeze and not an extremely slow shutdown?
I ask, since I encountered reeally slow shutdown with Kaspersky Internet Security 2009.
I suspect it was conflicting with UPHClean clashing with KIS...
Removed UPHClean and problem appears to have been settled.

Quote:

---

Originally Posted by Shinma

Sure that was a freeze and not an extremely slow shutdown?
I ask, since I encountered reeally slow shutdown with Kaspersky Internet Security 2009.
I suspect it was conflicting with UPHClean clashing with KIS...
Removed UPHClean and problem appears to have been settled.

---

Yeah, it's possible. When it comes to patience, I'm not always over endowed. :D The 2 issues I noted were the only ones I ever had, so that by the end of my test, I no longer considered them an issue.

As for UPHClean, I've read it can have issues. Apparently it can be ran with command line shutdown parameters to bypass issues like that. But in my own case, I've never really checked into doing so.

Thanks for the response.

Friend required a decent AntiVirus,
so I installed KIS into his notebook.
As a result, I had to troubleshoot.

It's too late to edit my post but UPHClean parameters are modified by registry entries, not the command line. (In case anyone cares... :D)

It will also be interesting what av-comparatives score Norton 2009. In the tests done in may (on V15 of Norton which is Norton 2008 I believe), Norton received just 18% success in the proactive tests. The next test results will be in November.

Han - also had the freeze up problem - and went back to NAV2008.
I have a router and set up it's protection .... so I uninstalled Zone Alarm and installed NAV2009. Seems ok now. Running windows firewall (XP SP3).
Bye the way Windows Security Center and Norton Protection do not recognize NAV2009 yet. Need Fix. Should come soon, I hope.
Ken

KLR: I had one more freeze during a shutdown. After tinkering a bit with my copy of Superantispyware Pro, I turned off it's 1st Chance protection (which scans at boot and at shutdown.) Since doing that, boot ups and shutdowns are now extremely fast and I have seen no signs of freezes. My speculation is that NIS 2009 may have been interacting a bit with 1st Chance. IMO, disabling 1st Chance was not a critical thing...

I have read elsewhere that some have reported that NAV 2009 and ZA 7.x may not run together well. I don't know exactly what the issue is and how wide spread it may be. Since I went with NIS 2009, I never found out if NAV and ZA 6.x would have been ok (I have been running ZA free version 6.x for quite a while.)

I'm surprised that NAV 2009 doesn't show up under Security Center. It's possible that your Security Center cache may need to be cleared. (I never checked to see if NIS 2009 shows up in Security Center. I always disable Security Center on XP.)

I just had a quick look and NAV2009 shows up in security center on both my systems that are running it. one was updated from 2008 the other was a clean install, this is with XPsp3

Hmmm... Sounds like KLR's Security Center may be "stuck". Here are some Google results for resetting it.
http://www.google.com/search?hl=en&c...et&btnG=Search

Han - reset tool did not work - think it may be NSW2008 inability to see NAV2009 that also affects Security Center.
Ken

Yes, that could certainly be part of the issue...

Quote:

---

Originally Posted by HAN

Well, it's a slow Saturday night... :) So I downloaded Norton Internet Security 2009 and loaded it up on my XP Pro SP3 laptop.

Pros:

It loaded blazingly fast. Symantec says a minute and while I didn't time it, it seemed like less than a minute. Amazing for a product that's an AV and a firewall. And it did not require a reboot to run.

Updates and the way it updates are much different than the old Norton programs. LiveUpdate is now part of the program. Definition updates seem to trickle out from Symantec every 5 minutes or so. It may not be that often but it sure seems like it. (After initial testing, I turned off auto LiveUpdate. I need to pick and choose my update times at home (I'm on very slow dialup and need to control everything that connects... both what and when.)) But even manually updating proves that updates are coming from Symantec every few minutes. Kind of unbelievable when I've been used to only 2 or 3 a day.

CPU activity, number of processes and RAM usage are much lower than before. To help monitor NIS 2009's usage, it now includes a CPU Usage bar chart. As I type this, NIS 2009 is using 0% CPU and around 10.5 MB of RAM. Only 2 processes show up under TaskManager. Excellent results!

A full system scan took just under 17 minutes for 15 GB. Very quick!

I ran the firewall against GRC's ShieldsUp and it tested stealth for the main 1056 ports test.

I also tested NIS 2009 while running under my Limited User account. While the main interface is blocked from changes when running under a limited account (which is a good idea), NIS 2009 can still download and update virus and filter definitions. A key thing that needs to happen.

The home menu screen gives a nice overall report of current program conditions. When running from an admin account, you can drill down from here to reach the more advanced settings.

Cons:

By far the most serious... 2 freeze-ups so far. One at shut down and one at boot. Both froze on the desktop image. In both cases, I had to hold down the power button to kill the PC to be able to start over. (This is on a month old Dell laptop that ran fine before this on NOD32 and free ZoneAlarm (both completely removed before installing NIS.) Not good!

In some areas, the advanced portion of the interface menu is not the easiest to grasp. If you want to tweak something, plan on spending some time. (Although to be honest, most users probably won’t change much.) One example, if you wish to disable an item as I did (outbound email scanning), the tray icon turned red and it wasn’t the easiest thing to figure out how to make it green again. (I needed to find the “Ignore” link.)

Since I’m new to NIS 2009, there are probably tweaks I’ve missed. But by default, downloading zipped copies of the eicar.com test file did not trigger an alert. Only the fully extracted file set off an alarm. (By comparison. NOD32, Kaspersky, Trend Micro, Avast and more do this without any setup changes.) IMO, the scanning of archive downloads should be a default behavior. It seems to me that preventing a bad download to start with is much safer than catching it only at execution.

I’m probably spoiled by ZoneAlarm, but I can’t find a way to have the firewall always ask the user for permission to allow a specific program to have access to the web. It’s either Allow or Block. (This isn’t a serious issue and it’s probably this way for many firewalls. But I like the flexibility to always Allow, Deny or Ask.)

These are my first impressions. I plan to keep NIS on my laptop for a few more days to give it a more compete workout. So more later...

---

I'm having a similar problem and was wondering if you had any advice. I downloaded NIS 2009 as an "upgrade" at the end of my subscription (26 days left!) and it's causing freeze-up problems. It works fine for a while, but then my CPU Usage spikes to 100% and freezes up everything. The Norton meters don't attribute it to Norton, and I don't see any oddities in the processes according to Task Manager (I opened it before "the freeze"). The problem went away when I uninstalled Norton. Any suggestions on how to diagnose this problem (for a non-techie)?

If you ask me, uninstalling it was probably the best way to fix it. If so many people experience the same problem, it's probably not worth the trouble.

FWIW, Anti Viruses are judged on all aspects, not just detecting and removing viruses. Their is ease of use, speed of scanner, footprint and many more things to take into consideration. If Norton doesn't fix such a big flaw in its program, then it is simply considered a bad program.

The problem you are having is not the norm, I have now 4 computers running NAV2009 with zero problems all are Xp sp3. I would make sure you have your activation key then download the Norton removal tool from
http://tinyurl.com/3nlr96 run it and then reinstall your Norton 2009. It is also possible that you have a conflict with another software I would turn off any thing like Teatimer or other antispyware that may be interfering until after the Norton install is done. If this doesn't help I would contact Norton support and see if they can help.

I had freeze up problems until I did a CLEAN uninstall of Zone Alarm.

http://forum.zonelabs.org/zonelabs/b...ssage.id=81451

No problems since with NAV2009.
Ken

I agree that a clean install of any AV is crucial. :)

BrxBy, I would first download the Norton Removal Tool http://service1.symantec.com/Support...05033108162039
Then, I would uninstall NIS 2009 using the normal Add/Remove Programs. Next, reboot. Then run the NRT and reboot again. Finally, reinstall NIS 2009.

** Be aware that the NRT removes ALL Norton products. So if you have System Works, Ghost, etc., the NRT will remove them too. If you have them, be sure you have the discs to reinstall them if you need to.**

A followup to my occasional hanging boots...

I have been running NIS 2009 on both of my PCs. In general, everything has been as I described earlier... very good. That said, my new Dell continued to have an occasional hang during boot. Since I had installed NIS before (I had restored back to an earlier PC image between my initial test and the final purchased installation), I had already tested it on the Dell with 2 separate installations (from 2 separate downloads.)

I checked over at the Norton support forum for any advice and they suggested turning off the real-time component of Superantispyware. I wasn't crazy about doing so but I did. And... it made no difference. (I never had any CPU spikes or anything like that.) So, I finally came to the conclusion that for whatever reason, NIS 2009 and the Dell just weren't mixing. So I rolled back to my pre-NIS image and stayed with my previous NOD32 (I did change the firewall from free ZoneAlarm 6.x to Comodo 3.x) That combination has proven to work together very well.

As for my HP PC, I am staying with NIS 2009 on it and it continues to run great.