Google Chrome Extension Fails to Install with UPM – 'An error has occurred. Could not move extension directory into profile'

Add C:Users*AppDataLocalGoogleChromeUser DataDefaultExtensionsTemp as a Windows Defender Path Exclusion on the VDA.

This can be accomplished through a Computer Group Policy. The Path Exclusion policy setting can be found in Computer Configuration > Policies > Administrative Templates > Windows Components > Windows Defender > Exclusions > Path Exclusions.

After applying the Path Exclusion, restart the VDA.

To confirm that the Defender Path Exclusion is set, run ‘Get-MpPreference’ in Powershell. The new Defender Path Exclusion should be listed under ExclusionPath.


Still see issues with Windows 10 Virus & Threat Protection showing “status unavailable”

I need a solution

Hello All,

We’re still seeing the issue described in this post:

… but the post was marked as resolved and closed?

The issue:

Windows Defender Security Center – Virus & Threat Protection – Current Threats/Protection Settings/Protection Updates – all show “Status Unavailable”


Windows 10 Enterprise – Version 10.0.17763  Build 17763

Symantec Endpoint Protection – Version 14.2.3335.1000 Build 3335




Verbose output for sav manualscan

I need a solution


I am trying to see the results of a Symantec AV manual scan with results printed out for each file scanned. My goal is to ultimately parse this output for file name and the associated threat that’s identified, if any. Other scanners have made this fairly easy with a verbose output toggle or alternate command line function.


Windows Defender

Scan starting...
Scan finished.
Scanning C:Usersuserfiles found 1 threats.

<===========================LIST OF DETECTED THREATS==========================>
----------------------------- Threat information ------------------------------
Threat                  : Virus:DOS/EICAR_Test_File
Resources               : 3 total
    file                :
    file                :
    file                :


SAVScan virus detection utility
Version 5.47.0 [Linux/AMD64]
Virus data version 5.50, April 2018
Includes detection for 19304857 viruses, Trojans and worms
Copyright (c) 1989-2018 Sophos Limited. All rights reserved.

System time 11:31:12 AM, System date 14 November 2018

Quick Scanning

>>> Virus 'EICAR-AV-Test' found in file files/
>>> Virus 'EICAR-AV-Test' found in file files/
>>> Virus 'EICAR-AV-Test' found in file files/

8 files scanned in 8 seconds.
3 viruses were discovered.
3 files out of 8 were infected.
If you need further advice regarding any detections please visit our
Threat Center at:
End of Scan.

Back to Symantec

Is there any function for Symantec (either on Linux or Windows) that emulates the above? So far I have had no success. The closest thing is enabling vpdebug and checking the log file, but this is quite clunky and doesn’t really contain the output I need (see attached). Seems like a simple task that a virus scanner should offer, but if it does then it certainly isn’t easy to find.



How to open Endpoint client settings on Win 7 computers?

I need a solution

We’re currently on a trial of Endpoint Protection Small Business Edition, and are having problems opening up the main config windows for SEP on Windows 7 systems. On Windows 10 systems you can access this by going to Settings > Windows Defender Security Center > clicking “Open Symantec Endpoint Protection” (screenshot here I have no clue what this window is called. It’s just named “Symantec Endpoint Protection”…

On Windows 7 computers there are no similar settings to navigate to. How do you open the same settings window on Windows 7 computers? (To specify, I do not mean the sys tray status window, which is available on both Win 7 and Win 10 computers).  Did the developers forget to implement a way to do this on Win 7?

I’ve tried to run NortonSecurity.exe with identical arguements (as shown in Process Explorer), but it’s clearly not designed to be launched this way (nothing happens).



Can SEP work together with Windows Defender

I need a solution


My client machine is installed with Symantec Endpoint Protection Ver14 and is running. Will there be any conflict if “Windows Defender service” is running at the same time? If no conflict, why I am not able to start up “Windows Defender Service” at the windows service tab?


Suan Leng



windows defender block endpoint service installation

I need a solution


I am trying to install SBE cloud on windows 10 after the upgrade from 8.1. Now when i try to install it install the agent but windows defender blocks the endpoint service to be installed. i try to add services from hostedendpoint portal, it failed and was blocked by defender. I disabled windows defender and reinstall, still blocked. The funny thing is when i try to uninstall with CEDAR, defender even blocks the uninstall action. CEDAR stays upto 30% and does nothing for more than 45 minutes

any suggestions?



  • No Related Posts

Microsoft Mends Critical Windows 10 Security Error Impacting Windows Defender

A horde of security update has been launched by Microsoft to rectify a serious remote execution susceptibility that mainly impacts the Windows Defender on platforms of Windows Server and Windows. The problem, logged as CVE2018-0986, subsists in Microsoft Malware Protection Engine also effects the Microsoft Forefront EndPoint Protection 2010, Windows Intune Endpoint Protection, Microsoft Security Essentials, and Microsoft Exchange Server 2016 & 2013.

Enterprise end-users and administrators will not need installing the updates manually as there are inbuilt tools to install the updates automatically within 48 Hours of their launch. The new updates are not a fraction of the monthly security update of Microsoft. Nevertheless, it strengthens security across a range of Windows platforms, comprising Windows Server 2012 and Windows 10.

While unfolding the susceptibility on its Security TechCenter, the company said, “An attacker who effectively subjugated this susceptibility can run arbitrary code in the LocalSystem account’s security context and take command of the system. An intruder can then set up programs; generate new accounts with complete user rights; or change, delete, or view data.”

Microsoft draws attention to that there are “several means” that a particularly crafted document can be positioned by the attacker. Furthermore, it can be conveyed through an email, an instant messenger message, website, or even via a website that host or allows user-provided material.

Microsoft notes, “If real-time scanning is not activated, the intruder would have to wait till a programmed scan happens in order for the susceptibility to be subjugated. All systems operating on an impacted antimalware software version are mainly at risk.”

The security updates fundamentally rectify the way in which the Microsoft Malware Protection Engine scans particularly created documents. Additionally, the susceptible Microsoft Malware Protection Engine variant 1.1.14600.4 has been upgraded to variant 1.1.14700.5.


Does SEP support or provide an alternative to ‘Controlled Folder Access’ feature?

I need a solution

Hi all,

Does Symantec offer an alternative to the Controlled Folder Access feature in Windows Defender Exploit Guard deployed with Windows 10 Fall Creators Update?…

Our security audit is recommending we turn it on, but as we’re using SEP, it’s disabled. Is there a way to use feautres within SEP to replicate this functionality?





Uninstalled SEP 14.x and Windows 10 Defender will not start

I do not need a solution (just sharing information)

I just uninstalled Endpoint Protection, rebooted, and now Windows 10 Defender will not start.  When I go to the Windows Defender Security Center – Virun and Threat protection shows that the service has stopped.  When I select the Restart Now button I get a message saying “Unexpected error. Sorry, we ran into a problem.”  I’ve tried going into Services and maually restarting it and there I get a message “Windows could not start the service, Erro 577 Windows cannot verify the digital signature for this file…”  

Any ideas on what to try?