Unable to kill Symantec Backup Exec for Windows Servers (BEWS) processes on a system running Symantec AntiVirus Corporate Edition 10.x

Document ID: 288444
http://support.veritas.com/docs/288444

E-Mail this document to a colleague

Details:

Cause:

The Backup Exec processes may be blocked by Symantec AntiVirus Tamper Protection. Tamper Protection is a new feature in Symantec AntiVirus Corporate Edition 10.x and Symantec Client Security 3.x. Tamper Protection provides real-time protection for Symantec applications. It prevents Symantec processes and internal objects from being attacked or affected by non-Symantec processes such as worms.

When the Backup Exec processes are blocked by Tamper Protection, the server application log reports the following Event ID:

Event ID 45:

SYMANTEC TAMPER PROTECTION ALERT

Target: C:\Program Files\Symantec\Backup Exec\((BEWS PROCESS))

Event Info: Suspend Thread

Action Taken: Blocked

Workaround:

To resolve this issue, disable Symantec Tamper Protection:

1. Perform the following:

On a client installation: Right-click a server or server group, and then click All Tasks > Symantec AntiVirus > Client Tamper Protection Options.

On a server installation: Right-click a server or server group, and then click All Tasks > Symantec AntiVirus > Server Tamper Protection Options.

2. Uncheck Enable tamper protection. (Figure 1)

Figure 1

For additional information refer to the following document:

Document URL: http://entsupport.symantec.com/docs/n2005033111081548

Related Documents:

http://support.veritas.com/docs/307248

Supplemental Material:

System: Ref.#	Description
ETrack: 1175320	If Symantec anti virus is installed, then user is not able to kill any BE processes from task manager.
Event ID: 45	SYMANTEC TAMPER PROTECTION ALERT

Products Applied:
Backup Exec for Windows Servers 10d (10.1), 10d (10.1) 5629, 11d (11.0), 11d (11.0) 6235, 11d (11.0) 7170, 12.0, 12.5

Last Updated: October 01 2009 04:31 AM GMT
Expires on: 10-01-2010

Subscribe to receive critical updates about this document

Subjects:
Backup Exec for Windows Servers
Application: Troubleshooting

Languages:
English (US)

Operating Systems:
Windows 2000

Advanced Server, Datacenter Server, Server

Windows Server 2003

DataCenter, Enterprise Server, R2, Standard Server

Symantec World Headquarters:
20330 Stevens Creek Blvd. Cupertino, CA 95014
World Wide Web: http://www.symantec.com,
Tech Support Web: http://entsupport.symantec.com,
E-Mail Support: http://seer.entsupport.symantec.com/email_forms,
FTP: ftp://ftp.entsupport.symantec.com or http://ftp.entsupport.symantec.com

THE INFORMATION PROVIDED IN THE SYMANTEC SOFTWARE KNOWLEDGE BASE IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. SYMANTEC SOFTWARE DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. IN NO EVENT SHALL SYMANTEC SOFTWARE OR ITS SUPPLIERS BE LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL DAMAGES,EVEN IF SYMANTEC SOFTWARE OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING LIMITATION MAY NOT APPLY.