Endpoint Protection

 View Only

  • 1.  Active Detection of Virus's

    Posted Oct 05, 2009 05:36 AM
    Hi,

    I'm running SEP MR4 at the moment but i'm a bit confused on the pre-action taken by virus detection engine.

    On a few workstations now SEP seems to let the virus's in and install themselves and then detects them?.

    The freeware version of Malwarebytes finds the virus's straight away.

    To test this I downloaded a file knowing the virus payload it had (zipped).

    I scanned the file using SEP and it found nothing. Didnt even detected it was there!!!!
    I then scanned it using Malwarebytes and it found and deleted the entry.

    Now this kinda worries me because if SEP is not detecting the virus's out there then whats the point of having it!

    Has anyone else had problems with SEP not detecting virus's?

    Thanks


  • 2.  RE: Active Detection of Virus's
    Best Answer

    Posted Oct 05, 2009 06:46 AM
    You'll have this complain with every AV softwares.As all don't have the same Signatures.There would be many that SEP would detect MBAM won't and MBAM will and SEP Won't end of the day you submit the ones that SEP doesn't and even SEP will detect it.
    https://submit.symantec.com/basic


  • 3.  RE: Active Detection of Virus's

    Posted Oct 05, 2009 07:23 AM
    Hi,

    We appreciate your concern and the proactive effort to test the effectiveness of the search enigne. I think you must submit this file to symantec's security response team. So they can analyze it and provide definitions if they do not exist already.

    Best,
    Aniket