Video Screencast Help

folder.exe virus removal

Created: 14 Aug 2012 • Updated: 14 Aug 2012 | 6 comments

my all network pc infected to anything usb device inside data folder he create to folder .exe

Discussion Filed Under:

Comments 6 CommentsJump to latest comment

K33's picture

Update your system latest Defination.

If not, there are useful some tools that are provided by Symantec for help with finding those hard to detect threats.

1.       The Power Eraser Tool eliminates deeply embedded and difficult to remove threats that traditional virus scanning doesn't always detect.

2. The SERT (Symantec Endpoint Recovery Tool)is useful in situations where computers are too heavily infected for the Symantec Endpoint Protection client installed upon them to clean effectively.

3. The Load point Analysis Tool generates a detailed report of the programs loaded on your system. It is helpful in listing common loadpoints where threats can live.

Rapid Release Virus Definitions –

Power Eraser tool –

How To Use the Symantec Endpoint Recovery Tool with the Latest Virus Definitions

Support Tool with Power Eraser Tool included –

How to use the Load Point Analysis within the Symantec Support Tool to help locate suspicious files

If you are unable to remove the threat(s) from your systems, please submit the suspected files to Symantec or ThreatExpert for analysis. New signatures will be created and included in future definition sets for detection.

Check this fourms........

cus000's picture

More information needed.... what AV are you using? SAV/SEP.... and what version?

Try run SEP Support tool... capture the sample and submit to Symantec... my wild guess this could be W32.lmaut....

SameerU's picture

Please submit the suspicious files to Symantec Security Response


ABN's picture

Hello Supportit,

As first action of business kindly disable Autorun in your network.

The below link may help.

Once done, a full system scan with latest definitions (preferably rapid release) will help.

Mithun Sanghavi's picture


Check this Thread with similar Issue:

Are you running the SEP 12.1 client with latest definitions and carry all the latest Microsoft updates and security patches on the machine?

The symptoms sounds like W32.SillyFDC to me.

  1. Run a scan in safe mode with networking to remove the virus. (Make sure SEP is updated with the Latest definitions)
  2. Disable System Restore before you do this as the virus alse creates entries in the System Restore Points store volumes.
  3. Disable Autoplay for ALL DRIVES Via a GPO (If you're on a domain), and
  4. Disable SImple File Sharing if it's enabled to prevent the infection from propogating itself by binding to files.
  5. Secondly, Submit these files to the Symantec Security Response and they will get detected.

Using Symantec Support Tool, how do we Collect the Suspicious Files and Submit the same to Symantec Security Response Team.

Hope that helps!!

Mithun Sanghavi
Associate Security Architect


Don't forget to mark your thread as 'SOLVED' with the answer that best helped you.