Endpoint Protection

I need help.

I have Thumb Drive which has W32.Pilleuz virus. It creates Folder.tmp as hidden in my Thumb Drive.

However, when i try to copy that file to my pc which has SEP 11, It detect as a W32.Pilleuz virus and block it from run and delete the tmp.exe behind the Folder.tmp file.

I try to scan the file in my thumb drive manually using my pc's SEP 11 but it does not detect any virus.

I stuck with this problem with SEP11 since it does detect the harm but does not remove the whole infected files from the source.

How do i resolve this problem, since most of the Thumb Drive in my office do has this viruses.

Does Symantec Endpoint Protection or Symantec Antivirus Scan USB flash drives?

Symantec Antivirus does not currently run an automatic System Scan on the contents of flash drives when they are first plugged in. A manual scan on the contents of a flash drive can be initiated by right-clicking on the drive in My Computer and choosing Scan for Viruses.

http://www.symantec.com/business/support/index?page=content&id=TECH102573&actp=search&viewlocale=en_US&searchid=1297442675548

Thank you cycletech for the reply.

Yes, i have use the manually right click on the flash drive to scan the whole flash drive and also for specific file folder.tmp.

However the result is none virus detected.

However if i double click the file or transfer it to my pc, it will detect it clean it.

My problem is how do i clean up the virus file from my flash drive with SEP?

delete the file from the flash drive if it is not needed.

also disable autorun from the USB .

Hi pete,

Yes, thats the last choice i have done.

However i do hope SEP 11 will detect and remove the file from the flash drive once scanned.

This is because other antivirus like antivir and avg that i have tested do remove that file it scanned. Please give back my trust to SEP. Most of my problem with the virus file on flash drive that scan with SEP will get this output.

Please do technical SEP could advice me on what is the config that i need to do to make it remove the file from the flash drive once manuall scanned it.

Are you running the Security Response recommended settings in your SEP environment?

The default behavior for Symantec Endpoint Protection does not fully utilize the protection offered by Symantec Endpoint Protection and can be modified to more aggressively scan and protect in the cases of a detection. This document explains the ways in which you can modify the relevant settings.

Security Response recommends the following Scan Settings

 

Security Response recommends the following setting changes to Truscan for best protection

 

http://www.symantec.com/business/support/index?page=content&id=TECH122943&locale=en_US

Make sure your USB is in NTFS format. Try upgrading SEP definitions and Open USB Drive and then SCAN it.