Our lovely symantec av corp is having a hard time catching that antirivusxp 2008 or 2009.
in the past month we've had about 8 systems get that nasty stuff. I called symantec and they asked if we had the latest definitions and they provided us with a tool which was useless....bottom line, doubt they know how to contain it.
Our workstations are managed and the virus defs are up to date, I make it a point in checking everyday that all workstations have the latest.
What i've noticed is that the SAV on the infected systems catch a file or two within quarantine, but the registry is still infected, folders in Program Files with the EXE exist and the IE7 browser gets hijacked.
What is going on?!?! Is there something going on with SAV 10.1.5 and this malware? Should I enable a setting somewhere in the management console?
What is your experience with this pesky malware?
Thanks for your input/help,
ceez
in the past month we've had about 8 systems get that nasty stuff. I called symantec and they asked if we had the latest definitions and they provided us with a tool which was useless....bottom line, doubt they know how to contain it.
Our workstations are managed and the virus defs are up to date, I make it a point in checking everyday that all workstations have the latest.
What i've noticed is that the SAV on the infected systems catch a file or two within quarantine, but the registry is still infected, folders in Program Files with the EXE exist and the IE7 browser gets hijacked.
What is going on?!?! Is there something going on with SAV 10.1.5 and this malware? Should I enable a setting somewhere in the management console?
What is your experience with this pesky malware?
Thanks for your input/help,
ceez