SEP & SAV unable to detect Recycled.scr a.k.a W32.SillyFDC
Updated: 10 Oct 2010 | 10 comments
This issue has been solved. See solution.
Hi All,
I need some input on how to detect this risk using SEP/SAV ? I'm using SAV with def dated 9/8/2010 rev 2 while my user is using SEP with latest def.
I've taken the source file, recycled.scr in zip and custom scan it but SAV failed to detect anything malicious.
Does it necessary to restart PC in Safe Mode and rescan again? If yes, please exlaborate why safe mode is needed.
Thank you!
regards
discussion Filed Under:
Comments
How do you confirmed it is
How do you confirmed it is affected with W32.SillyFDC?
Safe mode scanning is always recommendable because many viruses will not be able to work in safe mode or they will be less functional in safe mode.So the possibility of detection is more.
Please don't forget to mark your thread solved with whatever answer helped you : ) Thanks & Regards Aravind
Hi AravindKM, Thanks for the
Hi AravindKM,
Thanks for the reply. I've sent the zipped sample to Symantec to analyse, so here's the result:
We have processed your submission (Tracking #17309570) and your submission is now closed. The following is a report of our findings for the files in your submission:
File: Recycled.zip
Machine: Machine
Determination: Please see the developer notes.
File: Recycled.scr
Machine: Machine
Determination: This file is detected as 'W32.SillyFDC, ' with our existing Rapid Release definition set.
URL: http://www.symantec.com/avcenter/venc/data/w32.sillyfdc.html
I'll scan again the sample on my PC using safe-mode !
regards
Update your PC using Rapid
Update your PC using Rapid Release definition set first then scan in safe mode.....
Please don't forget to mark your thread solved with whatever answer helped you : ) Thanks & Regards Aravind
You can download Rapid
You can download Rapid Release Virus Definitions from this link
Please don't forget to mark your thread solved with whatever answer helped you : ) Thanks & Regards Aravind
I'm downloading it right now..
I've tried re-scan using SAV while in Safe Mode using current def, alas still nothing appear.
Now i'm waiting for the Rapid Release download to finish, hopefully this would do.
regards
Try it.Best of luck..
Try it.Best of luck..
Please don't forget to mark your thread solved with whatever answer helped you : ) Thanks & Regards Aravind
Thanks again, it works beautifully!
I've downloaded this one http://definitions.symantec.com/defs/rapidrelease/... as am using SAV.
Works perfectly without the need of SafeMode!
regards,
Happy to hear your problem
Happy to hear your problem got solved.I think it is a new variant .That is why it was not able to detect.In my experience without same mode most of the case virus will be detected but it is always recommendable to scan in safe mode ,that is why I suggested for the same.....
Please don't forget to mark your thread solved with whatever answer helped you : ) Thanks & Regards Aravind
failed to detect
hi...i also have the same problem..i follow the ways u posted to update my server and clients side definition but the endpoint look like as previous cant detect the recycled.scr...
Submit it to symantec.It may
Submit it to symantec.It may be new virus/ variant.
Please don't forget to mark your thread solved with whatever answer helped you : ) Thanks & Regards Aravind
Would you like to reply?
Login or Register to post your comment.