- c:\windows\system32\net.exe
- c:\windows\system32\netsh.exe
- c:\windows\system32\reg.exe
Community Forums lit up like a Christmas tree however CA was slow to respond or acknowledge there was a false positive problem. Late Thursday afternoon a notice was posted on CA's Virus Signature Update site indicating there was a problem, urging users to follow these steps in resolving this situation.
Community Forum users stepped up to the plate indicating this situation to be a false positive problem and suggesting short term fixes one of which was to disable Real Time Anti Virus Scan which seemed to be the culprit in this fiasco. Short term or not disabling any Anti Virus is a recipe for disaster. However in this case because CA was dragging its heels this fix was the best solution at the time. CA should take a page from it user Community and step up to the plate quicker with solid answers when users ask questions. Many users were frustrated and vented their frustration and disappointment in CA's handling of this situation. Amongst the tidal wave of forum posts users were trying all sorts of solutions thinking this was a real virus threat. Some went to the extreme of restoring entire systems to previous image backups only to be back in the same spot after updating CA signature file version 6604. Others not so quick on the trigger took time to investigate in detail before attempting such drastic measures. But in any case scenarios like these waste everyone's time, effort and in some cases data as many reported blue screens or problems booting after CA Anti-Virus happily quarantined Windows System files.
Situations like this prove several things;
1. Disaster strikes when you don't have a good backup.
2. Quality Assurance Cycles are way too short or non existent
3. Windows users have been conditioned to eradicate anything when they see the words VIRUS and INFECTED. not giving the process much scrutiny before proceeding to restore from backup.
#1 is easy to fix... BACKUP regularly. Disk is cheap there is no excuse.
#2 is harder to control by users but hopefully CA has learned something from this situation. If not someone most certainly got fired today.
#3 False Positives do happen people; they've been with us since the very first Anti-Virus snake oil sales man conned you into buying his software many years ago. Unfortunately this is today's reality in the Windows universe. However please scrutinize and be informed before doing anything drastic.
For CA today was a BAD day, for us mortals Today was just another day in the Windows-verse hopefully none of you have lost much data but cheer up tomorrow is another day.
No comments:
Post a Comment