This is what I do too, with the same products. If
something still seems “off” at that point, it’s a rebuild.
Jon Galbreath
MCSE/Security+
Systems Administrator
International Studies and Programs
Ph: 517-884-2144
From: MSU Network
Administrators Group [mailto:[log in to unmask]] On Behalf Of Kramer,
Jack
Sent: Thursday, June 11, 2009 2:09 PM
To: [log in to unmask]
Subject: Re: [MSUNAG] Enterprise antivirus / anti-malware
Agreed on the idea of combined scanners
– We pair VIPRE for standard scans with MalwareBytes Anti-Malware as a
recovery tool. VIPRE keeps most threats away but anything that makes it through
usually falls to the dose of a deep scan from both programs.
----
Jack Kramer
Computer Systems Specialist
University Relations, Michigan State University
w: 517-884-1231 / c: 248-635-4955
From: Laurence Bates <[log in to unmask]">[log in to unmask]>
Reply-To: Laurence Bates <[log in to unmask]">[log in to unmask]>
Date: Tue, 9 Jun 2009 17:50:13 -0400
To: <[log in to unmask]">[log in to unmask]>
Subject: Re: [MSUNAG] Enterprise antivirus / anti-malware
I wish that there were a simple solution to this problem but my
sense is that none of the current products do a good enough job on their own.
We always run NOD32 (for its simplicity) and Windows Defender for its
notification of new events like pending registry changes. On some machines we
also run the free versions of Spybot Search and Destroy (for its adware
detection) and PrevX for its detection of rootkits.
Laurence Bates
From: MSU Network Administrators Group [mailto:[log in to unmask]] On Behalf
Of Hoort, Brian
Sent: Tuesday, June 09, 2009 4:00 PM
To: [log in to unmask]">[log in to unmask]
Subject: [MSUNAG] Enterprise antivirus / anti-malware
Greetings:
We’re considering switching centrally managed anti-virus, again.
For years we used Symantec/Norton Corporate Edition. Our complaints
with it in the past were that it was bloated, and it was becoming less
effective at detecting modern threats. (I suspect this is still true to some
degree). Worst of all it would get hung up on updates and stop getting
definitions, requiring manual intervention by a technician. Currently
we’re using NOD32. While it’s client is slim and trim, detection of
recent threats has also been lacking, and the documentation is poor, seemingly
a translation from another language. I’ve read that Norton was
rewritten for the current version and that it has been reviewed rather highly.
Of course these reviews are focused on the consumer product.
Question 1: For those of you currently using Symantec Norton Corporate Edition,
would you recommend the new version? Is it still getting hung-up on
definitions updates?
Similarly, I’m wondering what you folks think of all-in-one products vs.
a mixture. The products which I’ve used in the past that originated
as anti-virus, signature-based products have done poorly with new threats
(AntiVirus 2009 scareware, etc.). One thought I’ve tossed around is
running an anti-virus and a dedicated anti-mal-ware (e.g. PrevX, MalWareBytes
etc.).
Question 2: Are any of you running multiple products for anti-virus and
anti-malware? Which ones? How’s that working for you?
Thanks for your time.
Brian Hoort
Department of Agricultural, Food, and Resource Economics’ Computer
Service
Michigan State University
(517) 355-4701
[log in to unmask]">[log in to unmask]
Skype: brian_hoort