Endpoint Protection

Hello,

I am not sure if you are talking about Backdoor.Ploutus which has been added to the definitions on 09/04/13.

http://www.symantec.com/security_response/definitions/rapidrelease/detail.jsp?relid=2013-09-04

Every Antivirus company has its own naming conventions.

The best way to understand if Symantec Endpoint Protection is detecting this Threat or not is by submiting the files to the Symantec Security Response Team.

How to collect and submit to Symantec Security Response suspicious files found by the SymHelp utility

http://www.symantec.com/docs/TECH203027

Secondly, check these Articles:

Naming convention for statically named virus definition update files

http://www.symantec.com/docs/TECH161663

Virus Naming Conventions

http://www.symantec.com/security_response/virusnaming.jsp

Hope that helps!!!

What AV product detected this?

I see rapid release defs for it on 9/4/13 so I would assume yes

ftp://ftp.symantec.com/AVDEFS/symantec_antivirus_corp/rapidrelease/whatsnew.txt

"Thumbs up" to the above- please submit a file to Security Response or an MD5 if you'd like to check if there is a signature to detect that.

Many thanks!

Mick

Do you need more assistance with your problem or were you able to get it resolved?

If you could post an update for followers of this thread that would be most helpful.

Otherwise, if resolved, you can close the thread out by clicking the "Mark as solution" link at the bottom left on the most helpful post. If multiple posts helped to solve your problem, please click the "Request split solution" link at the bottom left, select the most helpful posts and click the "Submit" button. This will benefit admins looking for a resolution to the same problem.

Thanks and take care,
Brian

Submit using the following link.

https://www-secure.symantec.com/connect/articles/using-symantec-help-symhelp-tool-how-do-we-collect-suspicious-files-and-submit-same-symante