Posted on 10/15/2019 1:58:53 PM PDT by dayglored
The wrong kind of intrusion protection
Symantec has acknowledged an issue with an update to its Endpoint Protection Client that causes a Windows kernel exception after users this morning came down with a mild case of Blue Screen of Death.
A Reg reader who got in touch about the problem confirmed "multiple" businesses running Symantec were getting hit with the BSOD stick.
According to the support note TECH256643:
When run LiveUpdate, Endpoint Protection Client gets a Blue Screen Of Death (BSOD) indicates IDSvix86.sys/IDSvia64.sys is the cause of the exception BAD_POOL_CALLER (c2) or KERNEL_MODE_HEAP_CORRUPTION (13A).
When BSOD happens, Intrusion Prevention signature version is 2019/10/14 r61.
Users took to Twitter to report the issue.
The solution, presuming you can persuade Windows to boot successfully, is either to run a further update to get release R62 of the bad Intrusion Protection signature, or roll back to an earlier one.
Symantec said it was aware of the issue and would update the support doc "when new information becomes available".
It is not yet clear which versions of Windows are affected.
Thanks to Reg reader Tarjei Utnes for the tip. ®
A couple of utilities I’ve had good success with are CC Cleaner and System Mechanic.
Thank you.
I’ll try anything.
One of these days I’ll get up the nerve to tear apart my beloved deceased Alienware 18 and try to get it running again.
Sending this POS as a “replacement” was a cruel joke.
Back in the day, Norton Utilities (the original ones, from Norton) were awesome. After Norton sold out to Symantec, the suck commenced, and never improved so far as I can see.
McAfee / Norton / Symantec ARE viruses.
Tell me about it, I deal with it all the time cuz that’s the software the federal government uses. Totally useless and constantly causes problems. Many people tried to tell them to no avail.
Do you have an adblocker installed question mark
Yup
We have Sophos at work. Caused a major blow out after some WU loaded. Can’t remember the KBs. could have been caught in time but they promoted this inept woman to helpdesk who knows NOTHING about computers and she was getting these calls the afternoon before. Failed to put two and two together.
i was on call and got a call at 1 a.m. from the county lockup saying all the workstations were frozen. Had to get the upper echelon of sys admins to reverse course on the WSUS. Something i managed earlier but it was taken away from me although everything went smoothly for over 3 years.
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.