Issue abstract:
In reviewing my Security History logs, it seems like something is sporadically enabling/disabling my “Intrusion Signatures” and “Remote Access Protection” setting
Detailed description:
I was reviewing my Security History and noticed log entries for the following settings turning off and on:
“Intrusion Signatures” and “Remote Access Protection”
(Sample screen shots below)
I did not make any of these changes myself. Wondering what is happening here?
Product & version number:
Norton 360
25.1.9816 (build 25.1.9816.914)
OS details: Windows 11 Pro, 24H2
What is the error message you are seeing?
Refer to screen shots
If you have any supporting screenshots, please add them:
Sample screen shot of recent log
Thanks in advance.
I get these same items in History but mine are consistant. They are disabled on shutdown, why this recorded dont know , surely on shutdown, everthing is disabled.
On boot or restart these are then recorded as enabled - yours seem to have lost their way for some reason. Logically I suppose they would be disabled on boot until they are subsequently enabled.
This morning, they were enabled 20 seconds after the first history item, last night disabled in last entry of day on shutdown.
I have been getting them too. I did do a Startup scan after my initial setup. Does Norton turn them off to do the scan?
Sometimes I see one or the other turned off or both for up to 1-5 minutes before they are turned back on.
I completely wiped my new PC after seeing this and reset windows and reloaded Norton. I did not do a startup scan. I have not seen it happen again yet, but it’s just been a couple days.
I am also seeing multiple “identifying..” network connections in the history. Have you been getting that?
Seems like this might not be the case for me. The timestamps do not coincide with my start up/shut down times.
I am not sure if Norton turns them off to do the scan. Hopefully someone else can confirm.
Maybe I’ll try resetting and reloading Norton. Have you noticed the issue happen again?
I just checked mine, and did notice a couple “Identifying…” network connections in my history, not sure what this could be either.
The last few days, while watching Netflix on my HP computer (Windows 10), a jumbled full screen pops up and the computer shuts down. Happened a couple of times and a found “Intrusion Signature Enabled” and “Remote Access Protection Enabled” in the Norton Security History log.
Is Netflix trying to access the computer and Norton kicks them out, thinking it is an illegit intrusion? (I have a valid Netflix subscription, and I am able to watch streaming shows for an hour or so).
Is this a Norton setup issue, and if yes, how to fix it.
P.S.
Starting happening the last couple of days only; no issue before when watching Netflix on that computer.
I do not have VPN turned on since I am protected through my Xfinity gateway.
I did a full scan of the computer and checked performance: no virus or such, no computer performance issue.
I am able to watch the Netflix show on TV.
Check to see if these occurrences coincide with a LiveUpdate. Could be that the features are disabled to get updated.
if you have windows 11, check in device security to see if Secure Boot icon is present and turned on. I picked up a virus a few days ago that turned it off, also the history showed the remote protections turned on and off twice in quick succession. i completely wiped the pc and reloaded windows from an external source. So far secure boot has stayed on, but I noticed that the “Kernel-mode hardware enforced stack protection” was turned off. I turned it on, which required a restart, and the remote access protection cycled off and back on in the history. Not sure why or when Kernal mode was turned off. Should it have been on by default after reloading windows 11?
