Video Screencast Help
Symantec to Separate Into Two Focused, Industry-Leading Technology Companies. Learn more.

Everytime scan deletes tracking cookie

Created: 22 Apr 2009 • Updated: 21 May 2010 | 14 comments
binayak's picture

I am running SEP 11.0.4000.2295 with latest update. At the time of schedule scanning everytime I am getting the following result from one of the client machine:

Tracking Cookie --> deleted
File Type  --> Unavailble
Risk Type  --> Trackware
Original Location  ---> Unavailable

Is there any way to solve this issue?

Comments 14 CommentsJump to latest comment

mon_raralio's picture

I'm not sure if this is a solution.
AV detect the tracking cookie. It will always delete that. Tracking cookies store information for websites visited by a user.
And the way it works is somewhat similar to the way spyware works. Try disabling cookies in your web browser and create exemptions for web sites you want to have cookies stored.

“Your most unhappy customers are your greatest source of learning.”

vikram3500's picture

 Well the issue in disabling cookies will mean some webpages wont load correctly. I guess we have been living with this ever since Symantec Client Security came out continuing to SEP. We just allow it to get deleted.

Else create exemptions for all cookies stored.

binayak's picture

Well, the strange thing is that after scan is completed if I againg run the full scan it is showing the same result. If the tracking cookie would have been deleted then why it is coming again?

Ajit Jha's picture

Check the setting for the cookies in Antivirus and Antispyware policies. Change the Action to Delete and Quarentine

Regard's

Ajit Jha

Technical Consultant

ASC & STS

mon_raralio's picture

You could check the history of the web browser - check the web sites visited.
I'm using both IE and Firefox and only visit sites I need to visit. I rarely use it for surfing and only received the alert for tracking cookie only once. I guess it's for Google or some other site.

“Your most unhappy customers are your greatest source of learning.”

binayak's picture

Dear Mr. Ajitjha, I changed everything to Clean and Delete and that's why SEP is deleting that cookie once unable to clean.

binayak's picture

Hi mon_roralio, I am using Internet Explorer and I visit only limited valid sites, so there is no chance to browse unethical sites. I searched the history and it is showing only valid sites.

mon_raralio's picture

Well, some of the sites you're visiting tracks your movement, either storing login information, pages visited within the site and of searches made. It's not threatening to the security of your PC/network. And it's not wether the sites are valid or invalid. They could also be a victim of malicious code although that's a rarity for me nowadays although I got a misleading pop-up ad on one of the popular social sites at home.

Just to be sure, you may also want to cross-check the sites with Safeweb. It's a Norton/Symantec site for rating the sites based on threats present.

“Your most unhappy customers are your greatest source of learning.”

binayak's picture

Thanks mon_raralio for your clarification. Is there no way to stop this kind of thing without putting the Cookie in the exception?

mon_raralio's picture

Sorry binayak, but that is one of the drawback with AVs in handling tracking cookies.
The only way is to add the folder in the list of exemptions but it would allow malicious sites to download their cookies and do tracking of their own. If you want, you can add the sites in your trusted sites list but that won't be much of help. I haven't received the alert in a while. I'll post here when that happens. :D

“Your most unhappy customers are your greatest source of learning.”

MotorMuis's picture

I have the same problem on both of my computers when using nLite.

Windows XP x64 Bit
Service Pack 2
Hotfixes
Dell Drivers
Slipstreamed with nLite
Installed Endpoint Protection
Tracking Cookie - didn't even open a webpage

Windows XP 32 bit
Service Pack 3
Hotfixes
Sony Drivers
Slipstreamed with nLite
Installed Endpoint Protection
Tracking Cookie - didn't even open a webpage

mon_raralio's picture

Tracking cookies also are being stored by search engines to your PC. Whenever you change settings (default language) or search history. This mostly happens when your search field auto-completes.

“Your most unhappy customers are your greatest source of learning.”

mon_raralio's picture

In computing, a cookie (also browser cookie, computer cookie, tracking cookie, web cookie, internet cookie, and HTTP cookie) is a small string of text stored on a user's computer by a web browser. A cookie consists of one or more name-value pairs containing bits of information such as user preferences, shopping cart contents, the identifier for a server-based session, or other data used by websites.

Cookies are subject to a number of misconceptions, mostly based on the erroneous notion that they are computer programs that run on a user's computer. In fact, cookies are simple pieces of text data that affect the operation of a web server, not the client, and do so in very specific ways. In particular, they are neither spyware nor viruses, although cookies from certain sites are described as spyware by many anti-spyware products because they can allow users to be tracked when they visit various sites.

“Your most unhappy customers are your greatest source of learning.”

MRPCGeek's picture

I also noticed each time I would scan my c: drive, the same message regarding Trackware would appear.  I could scan several times in succession and it would always state that it was deleted, and yet it would remain.

Since I use IE 8.0, I tried to use Internet options to delete the cookies.  I even tried to open the temporary Internet cache folder and delete them manually.  What I found was there were several that I could not delete.  Next I tried to move the cache location to another drive.  the 13 cookie files moved with the location.  I then tried again to delete them.  I could not.

OK, the story is getting too long.  There is a setting in IE 8.0 called, "Preserve Favorites Website Data" found under the browsing history options.  Uncheck it.  Then delete the cookies.  All cookies will be deleted.  Then run the Scan again.  Behold, the scan is clean and no more message regarding the trackware.

The reason the scan could not delete them is because it was directly trying to violate what the OS (IE in this case) was telling it preserve.