Symantec Antivirus Corporate Edition 10.1.9.9000 on XP Professional SP3. Micro defs up to date.
We're seeing an increasing frequency in Symantec Auto Protect and manual scans deleting or quarantining infected files on our systems, only to discover subsequent scans by other third party antivirus applications such as MalwareBytes revealing files and/or registry settings left behind after the Symantec scan. For example, this morning Symantec's Auto Protect scan detected and "Cleaned by deletion" a file associated with Backdoor.Tidserv on one of our workstations. Follow up Symantec scans revealed no further infection, but a MalwareBytes scan uncovered several infected files and registry settings not detected in the Symantec scan. I've attached the Malwarebytes log if anyone is interested.
Has anyone else run into this before? I realize some antivirus/spyware software often packs results with inconsequential information in order to make it appear its scan engine is more effective. I also understand Symantec scans may pick up on risks as "looks like" and only due a basic clean of the file. Bottom line, though, is the powers that be here are beginning to question the effectiveness of the product.
Thanks for any feedback on the topic.