I recently had NIS 2011 installed by Norton tech support remotely as a fix for update problems in NAV. The tech removed NAV and installed NIS. All is now fine except a once weekly full scan refuses to run (missed 3 times now). I have examined the forum posts and looked in scheduled tasks; all settings seem OK, running XP prof. SP3. However when I look in the scheduled tasks folder at the status it says could not start. A look at the tasks log and event logs show the following:
"Norton Internet Security - Anthony Salerno - Full System Scan.job" (navw32.exe) 4/3/2011 2:00:10 AM ** ERROR **
The attempt to log on to the account associated with the task failed, therefore, the task did not run. The specific error is: 0x80041314: The task has been configured with an unsupported combination of account settings and run time options. Verify that the task's Run-as name and password are valid and try again.
I do not use a password but attempted to enter null password and apply new settings with this error (By the way all this is occurring in an admin account):
"An error has occurred while attempting to set task account information. The specific error is: 0x80070005: Access is denied. You do not have permission to perform the requested operation."
These event log entries occurred at the same time as the above entry:
Event Type: Failure Audit
Event Source: Security
Event Category: Policy Change
Event ID: 615
Date: 4/3/2011
Time: 2:00:10 AM
User: NT AUTHORITY\NETWORK SERVICE
Computer: COMPAQAMD644000
Description:
IPSec Services: IPSec Services failed to get the complete list of network interfaces on the machine. This can be a potential security hazard to the machine since some of the network interfaces may not get the protection as desired by the applied IPSec filters. Please run IPSec monitor snap-in to further diagnose the problem.
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Event Type: Information
Event Source: Automatic LiveUpdate Scheduler
Event Category: Scheduler Events
Event ID: 101
Date: 4/3/2011
Time: 2:00:10 AM
User: NT AUTHORITY\SYSTEM
Computer: COMPAQAMD644000
Description:
Information Level: success
Rolling back the schedule; execution will occur at approximately 2:05 AM.
Event Type: Information
Event Source: Service Control Manager
Event Category: None
Event ID: 7036
Date: 4/3/2011
Time: 2:00:11 AM
User: N/A
Computer: COMPAQAMD644000
Description:
The Windows Image Acquisition (WIA) service entered the running state.
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Event Type: Information
Event Source: Tcpip
Event Category: None
Event ID: 4202
Date: 4/3/2011
Time: 2:00:12 AM
User: N/A
Computer: COMPAQAMD644000
Description:
The system detected that network adapter Broadcom 802.11b/g WLAN - Packet Scheduler Miniport was disconnected from the network, and the adapter's network configuration has been released. If the network adapter was not disconnected, this may indicate that it has malfunctioned. Please contact your vendor for updated drivers.
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 00 00 00 00 02 00 50 00 ......P.
0008: 00 00 00 00 6a 10 00 40 ....j..@
0010: 02 00 00 00 00 00 00 00 ........
0018: 00 00 00 00 00 00 00 00 ........
0020: 00 00 00 00 00 00 00 00 ........
In addition to these I examined the list of installed programs and to my surprise Norton antivirus is still listed and C:\Program Files\Norton AntiVirus\IWP and navapsvc(3).exe remains. This is the auto protect service for NAV. Could this be blocking the scheduled full scan? Also, live Update 3.0 is listed. There is a corresponding C:\Program Files\Symantec\LiveUpdate folder with newly modified files indicating it is being used. Is this a separate part of NIS or a leftover from NAV? If leftover can I just uninstall these using Windows in Safe Mode?