msgidx_73178

From fingerz@woh.rr.com Thu Oct 25 16:16:09 2012
Subject:RE: OT ANTIVIRUS too often malicious warnings

YMMV.

I'm an IT Admin for my day job and I dropped Symantec on our network and
went with another.Too many problems and it eats system resources alive(a
little more than the others in my opinion) I'm surprised the support you got
was in the U.S. everytime I call I get someone that I can't understand on
the other end.No offense to anyone but it's the truth.I'd drop Symantec like
a cold potato.

Brian In Ohio

From: CloneWheel@yahoogroups.com [mailto:CloneWheel@yahoogroups.com] On
Behalf Of mark k
Sent: Wednesday, October 24, 2012 8:16 PM
To: CloneWheel@yahoogroups.com
Subject: Re: [CWSG] OT ANTIVIRUS too often malicious warnings

Rafael,

I have Symantec SEP on my machines (corporate version of Nortons). I
recently got a worm on one machine that hi-jacked my browsers and pushed
very google link to a rapid succession of pay per click sites. My research
indicated that I had recent mutation of worm that had been around for 3 or 4
years. The were tips on how to remove it but this involved system level
editing of core Windows dll's. I found a utility that Kaspersky had
released that automated the process and had cleaned the machine and fixed it
inside the 2 hours it took Symantecs engineers in SF to call me back after
logging the issue via their corporate "Gold" level support service.

Rather embarrasing call for Symantec, I had traced the infection to a
specific file that I had downloaded that was spoof of the legitimate file I
thought I was downloading and immediately deleted it, Symantec requested a
copy of the payload so they could update their signature file which I said I
would have to download again and I was not prepared to take the risk as
Symantec did not recognise its signature. I asked why it was not recognised
by SEP as there were web reports of this mutation's existence going back 6
months and suggested they note that the problem was solved by the Kaspersky
utility and to refer to Kaspersky's website for further information.

Based on this experience as you would already know not to use
Symnatec/Nortons I would suggest Kaspersky. (they also happen to the main
sponser of the NRL team I support!!)

Cheers

Mark

[Non-text portions of this message have been removed]

[Non-text portions of this message have been removed]