I'm happy to use this medium as this forum solved my previous issue. Thanks
I need solution to prevent Shortcut virus for my Computer Lab. We're using Symantec SEP Version 12.1.2015. For your information some of the CPUs are not running any rollback system due to research project purpose.
My company did give me a Symantec power eraser to remove this virus, but I believe that Symantec could do something beyond than this. More prevention rather than cure, beside the power eraser is not work for shortcut virus.
For my temporary solution I use a few software to clean out our tam-drive, like Smad AV & 360 Network security. For permanently clear up the short cut I have to use tool like Unlocker to delete file named “WScript.exe” in c:windows/system32.
Please guide me,
UNIVERSITY TUNKU ABDUL RAHMAN
Kindly update the system with latest defintion and patches
Microsoft Windows Shortcut 'LNK/PIF' Files Automatic File Execution
Microsoft Security Bulletin MS10-046/ (KB2286198)
Microsoft Windows Server Service RPC Handling Remote Code Execution
Nortel Response to Microsoft Security Bulletin MS08-067/ (KB958644)
Eliminating viruses and security risks
|Article:HOWTO27280|||||Created: 2010-01-08|||||Updated: 2010-01-15|||||Article URL http://www.symantec.com/docs/HOWTO27280|
See some of thread
I would suggest you that you can run the symhelp utility on the system where you have seen the issue.
Symhelp is one of the troubleshoot software which work with all in one facility.
It can be verify the system for the corruption of symantec and provide the troubleshoot as well as it can scan the system for the virus and clean it.
If in case it can't be clean it as the virus come new in network then it can collect the information from system and then after that you can submit that report to symantec. They can analysis and provide the rapid release defintion against that virus.
For my suggestion you can run it on that sytem
|Article:TECH215519|||||Created: 2014-03-03|||||Updated: 2014-07-10|||||Article URL http://www.symantec.com/docs/TECH215519|