This has been a week from hell. I highly recommended this product to a customer of mine and have installed it on the servers and workstations a couple of weeks ago. A few days ago, they got hit with spam and apparently myDoom and Bagle came through some emails and infected the PC's. That caused the network to stop functioning and caused the mail server to shut down it's exchange and SMTP services.
I did not know what the problem could be at first. I shutdown the workstations causing enormous amount of traffic. On the server, when I started the exchange services, they came up fine. Then I started the SMTP service and it started. But for some reason I couldn't connect to port 25 from outside. So I looked at the services again and the SMTP service was stopped. I started it again, waited 5 seconds and clicked refresh. Sure enough, the service stopped. It didn't report any errors to the event viewer or on the screen.
I renamed the mailroot folder to mailrootOLD and the service started. I scanned the mailrootOLD folder w/Avast and it said it was clean. I downloaded stinger.exe from McAfee and it found 5 worms in that folder. Once the worms were cleaned with stinger.exe, the service started with the old folder, once renamed back to mailroot.
The workstations were running Avast Professional. According to some users, Avast would notify that it found a virus, and they would try to delete it, then it notified tghem again. After a few attempts to delete it, it stopped notifying them. Whether it was notifying them of the doom or bagle worm is still unknown. But, running stinger.exe on the workstations found the worms residing on the hard drive.
I really looked like crap in front of my customer. I ended up uninstalling Avast from the servers and the workstations and purchasing eTrust. I do not know if it's a GREAT anti-virus, but after installing it, it found viruses and kept the system stable for a day now without interruptions. I am extremely dissappointed.
I ran the trial in our lab, and it seems OK, but not sure if the lab recived any infections to begin with. Avast deffenitely found some trojans.
But that is the story of Avast!. And Avast! no more!