We recently got hit by a virus that hid all the folders on the fileserver and replaced them with (old folder name).exe. All about 240kb in size. The virus also left three files sexy.exe porn.exe and x.exe. It didn't spread through out the file server. It stayed on one share. We are using Sysmenatec Endpoint protection 11.0.07000.975 with updated definitions.
File system autoprotect is on and scans all files.
To get rid of this we ended up downloading Norton NPE.exe and it took care of the virus.
Symantec owns Norton, correct?
WHY didn't autoprotect catch this virus. Shouldn't the power of NPE be incorporated into the company that bought it?? Do I have Symantec configured improperly. Management want to get rid of Symantec. I don't, but I think Symantec should have blocked this from the begining.
Help
Thanks