Hello,
To catch the file, zip the container Folder and when you open the zipped folder, you may see the Threat file in it.
Submit the .zip folder to Symantec Security Response Team on
https://submit.symantec.com/websubmit/essential.cgi
I would suggest you to work on the Steps provided in the Article:
What to do when you suspect that a Symantec AntiVirus product is not detecting viruses
http://www.symantec.com/docs/TECH99222
Scanning a file with a competitor's antivirus program detects a virus, but scanning with Symantec AntiVirus or Symantec Endpoint Protection does not
http://www.symantec.com/docs/TECH98929
We also offer a self-service site to analyze files, at http://www.threatexpert.com, which can give you more information on the files you submit to it.
Check this Thread with similar Issue: https://www-secure.symantec.com/connect/forums/folder-getting-created-folderexe
Are you running all the latest Microsoft updates and security patches on the machine?
Make sure you have the Latest Microsoft updates and security patches on ALL the machines.
The symptoms sounds like W32.SillyFDC to me.
- Run a scan in safe mode with networking to remove the virus. (Make sure SEP is updated with the Latest definitions)
- Disable System Restore before you do this as the virus alse creates entries in the System Restore Points store volumes.
- Disable Autoplay for ALL DRIVES Via a GPO (If you're on a domain), and
- Disable SImple File Sharing if it's enabled to prevent the infection from propogating itself by binding to files.
- Secondly, Submit these files to the Symantec Security Response and they will get detected. https://submit.symantec.com/essential
Using Symantec Support Tool, how do we Collect the Suspicious Files and Submit the same to Symantec Security Response Team.
Hope that helps!!