Products
Applications
Support
Company
How To Buy
Skip to main content (Press Enter).
Sign in
Skip auxiliary navigation (Press Enter).
Register
Skip main navigation (Press Enter).
Toggle navigation
Search Options
Home
My Communities
Communities
All Communities
Enterprise Software
Mainframe Software
Symantec Enterprise
Blogs
All Blogs
Enterprise Software
Mainframe Software
Symantec Enterprise
Events
All Events
Enterprise Software
Mainframe Software
Symantec Enterprise
VMware
Water Cooler
Groups
Enterprise Software
Mainframe Software
Symantec Enterprise
Members
Endpoint Protection
View Only
Community Home
Threads
Library
Events
Members
Back to discussions
Expand all
|
Collapse all
sort by most recent
sort by thread
A new virus has been found which symantec is unable to detect
Jump to
Best Answer
Migration User
Jun 09, 2009 12:32 AM
A new virus has been found which symantec is unable to detect .this virus keep trying to access the floppy ...
Migration User
Jun 09, 2009 01:32 AM
I had the same experience as yours before when I'am using SEP mr1. Unable to shutdown the computer.We ...
Migration User
Jun 09, 2009 01:36 AM
Just to make sure I advise also to 1. remove the infected computers on the network 2. Make sure ...
pete
Jun 09, 2009 01:46 AM
hi all, I agree that the systems should be updated and scanned in safe mode, however if the sample ...
Migration User
Jun 09, 2009 04:04 AM
Also try to check inase you can any instances of viruses running in processes, Autorun.inf files as ...
Migration User
Jun 09, 2009 07:16 AM
We are using SEP11MR4 I am 100% sure that this is anew threat.
Migration User
Jun 09, 2009 11:09 PM
If you submitted file to Symantec and it is indeed infected, you should get RapidResponse definitions ...
Migration User
Jun 09, 2009 11:46 PM
till today no response from symantec. don't know what they are doing.other antivirus detecting the ...
Migration User
Jun 10, 2009 09:15 PM
Hi All, I have already submited the file to security response team with track number #11374748, Yesterday, ...
Migration User
Jun 11, 2009 03:02 PM
Best Answer
At last after 5 days symantec detected filename: iitqq.exe machine: Machine result: This file is ...
Migration User
Jun 12, 2009 12:36 AM
I have received new definition updated and can detect virus in my office (W32. Rontrokbro.mm), but ...
Migration User
Jun 12, 2009 01:28 AM
W32.Rontokbro@mm is a mass-mailing worm that causes system instability. Pending analysis means needs ...
Migration User
Jun 22, 2009 01:54 AM
thanks for bringing this one up.. great work...
1.
A new virus has been found which symantec is unable to detect
0
Recommend
Migration User
Posted Jun 09, 2009 12:32 AM
Reply
Reply Privately
Options Dropdown
A new virus has been found which symantec is unable to detect .this virus keep trying to access the floppy drive and prevents the user from shutting down the pc. I have already submited the file to security response team.
2.
RE: A new virus has been found which symantec is unable to detect
0
Recommend
Migration User
Posted Jun 09, 2009 01:32 AM
Reply
Reply Privately
Options Dropdown
I had the same experience as yours before when I'am using SEP mr1. Unable to shutdown the computer.We think that It was the virus the causes the problem but upon submitting the diagnostic tool to symantec security response there was infected files found. Symantec support suggested to upgrade the SEP version. Then successfull migrate has been made and now all computers were able to shutdown properly. What version are you using?thanks
3.
RE: A new virus has been found which symantec is unable to detect
0
Recommend
Migration User
Posted Jun 09, 2009 01:36 AM
Reply
Reply Privately
Options Dropdown
Just to make sure I advise also to
1. remove the infected computers on the network
2. Make sure virus definition is updated
3. Run full scan in safe mode
4.
RE: A new virus has been found which symantec is unable to detect
0
Recommend
Broadcom Employee
pete
Posted Jun 09, 2009 01:46 AM
Reply
Reply Privately
Options Dropdown
hi all,
I agree that the systems should be updated and scanned in safe mode, however if the sample submitted by Bijay is going to new variant then we need to wait till rapied definition is released. Assuming that Bijay has followed the best practise in identifying/removing the threats.
Cheers
Pete
5.
RE: A new virus has been found which symantec is unable to detect
0
Recommend
Migration User
Posted Jun 09, 2009 04:04 AM
Reply
Reply Privately
Options Dropdown
Also try to check inase you can any instances of viruses running in processes, Autorun.inf files as well as any entries in the registry.
Incase you found any such instances, try to submit the samples to
https://submit.symantec.com/gold
Rgrds,
SAM
6.
RE: A new virus has been found which symantec is unable to detect
0
Recommend
Migration User
Posted Jun 09, 2009 07:16 AM
Reply
Reply Privately
Options Dropdown
We are using SEP11MR4
I am 100% sure that this is anew threat.
7.
RE: A new virus has been found which symantec is unable to detect
0
Recommend
Migration User
Posted Jun 09, 2009 11:09 PM
Reply
Reply Privately
Options Dropdown
If you submitted file to Symantec and it is indeed infected, you should get RapidResponse definitions rather quickly. If you don't want to wait, download Malware Bytes and scan your system, most likely it will clean the infection for you.
8.
RE: A new virus has been found which symantec is unable to detect
0
Recommend
Migration User
Posted Jun 09, 2009 11:46 PM
Reply
Reply Privately
Options Dropdown
till today no response from symantec. don't know what they are doing.other antivirus detecting the virus.
9.
RE: A new virus has been found which symantec is unable to detect
0
Recommend
Migration User
Posted Jun 10, 2009 09:15 PM
Reply
Reply Privately
Options Dropdown
Hi All,
I have already submited the file to security response team with track number #11374748, Yesterday, 10 jul 2009 02.00 pm.
Usually when we accept feedback from symantec about our request have been processed ?
Tx
10.
RE: A new virus has been found which symantec is unable to detect
Best Answer
0
Recommend
Migration User
Posted Jun 11, 2009 03:02 PM
Reply
Reply Privately
Options Dropdown
At last after 5 days symantec detected
filename: iitqq.exe
machine: Machine
result: This file is detected as Trojan Horse.
http://www.symantec.com/avcenter/venc/data/trojan.horse.html
Virus definition detail:
Sequence Number Greater Than: 96601
Defs Version: 110610bm
Extended Version: 06/10/2009 rev.65
11.
RE: A new virus has been found which symantec is unable to detect
0
Recommend
Migration User
Posted Jun 12, 2009 12:36 AM
Reply
Reply Privately
Options Dropdown
I have received new definition updated and can detect virus in my office (W32. Rontrokbro.mm),
but action status "Pending Analysis", what meaning about that ?
Because in SEP Manager Console, can't monitor Computer with status "Pending Anaysis"
Tx
12.
RE: A new virus has been found which symantec is unable to detect
0
Recommend
Migration User
Posted Jun 12, 2009 01:28 AM
Reply
Reply Privately
Options Dropdown
W32.Rontokbro@mm
is a mass-mailing worm that causes system instability.
Pending analysis means needs further checking. A user still needs to take action to complete the remediation of a risk on a computer. Manual intervention is still needed to reboot and scan the PC from safe mode.
Thanks...
13.
RE: A new virus has been found which symantec is unable to detect
0
Recommend
Migration User
Posted Jun 22, 2009 01:54 AM
Reply
Reply Privately
Options Dropdown
thanks for bringing this one up..
great work...
×
New Best Answer
This thread already has a best answer. Would you like to mark this message as the new best answer?
Copyright 2019. All rights reserved.
Powered by Higher Logic