Video Screencast Help

virus file in system

Created: 22 Mar 2013 • Updated: 02 Apr 2013 | 7 comments
This issue has been solved. See solution.

Dear Team

I have found one file which is not detected by symantec even client and server is updated. This can slowup the system and ome time freeze it.

Please assist to clear it.

Comments 7 CommentsJump to latest comment

_Brian's picture

You will  need to submit the sample to security response

http://www.symantec.com/security_response/submitsa...

Please see this thread for some alternate tools to help remove the threat

https://www-secure.symantec.com/connect/forums/you...

Please click the "Mark as solution" link at bottom left on the post that best answers your question. This will benefit admins looking for a solution to the same problem.

SOLUTION
W007's picture

hello,

You can submit file for symantec support

Check this one of mithun artical how to submit file

https://www-secure.symantec.com/connect/articles/using-symantec-help-symhelp-tool-how-do-we-collect-suspicious-files-and-submit-same-symante

 

Don't forget to mark your thread as 'SOLVED' with the answer that best helped you.

Mithun Sanghavi's picture

Hello,

Submit these suspicious Threat files on - 

https://submit.symantec.com/essential

and 

http://www.threatexpert.com

Secondly, I would suggest you to work on the below Articles:

Using Symantec Help (SymHelp) Tool, how to Collect the Suspicious Files and Submit the same to Symantec Security Response Team.

http://www.symantec.com/docs/TECH203027

Hope that helps!!

Mithun Sanghavi
Senior Consultant
MIM | MCSA | MCTS | STS | SSE | SSE+ | ITIL v3

Don't forget to mark your thread as 'SOLVED' with the answer that best helped you.

W007's picture

Hello,

First you can submit the file in virus total site and check if can detect the virus in other av not in symantec then you can submitted to symantec on above process link. otherwise check the patches and defination are updated or not.

https://www.virustotal.com/en/

 

Don't forget to mark your thread as 'SOLVED' with the answer that best helped you.

Chetan Savade's picture

Hi,

I would suggest to scan the system with Symantec power eraser to detect threat and remove them

http://www.symantec.com/theme.jsp?themeid=spe-user...

It might be your assumption only 1 file is suspicious but there can be multiple

You should run the Symhelp tool to find out suspicious files available on the System.

Symantec Help (SymHelp): http://www.symantec.com/docs/TECH170752

Submit all those suspicious files to the Symnatec at the following id

https://submit.symantec.com/essential

You would receive tracking id, you can PM me the tracking id.

Update the system with latest windows patches & Service pack, update all third party application.

Make sure all the SEP features are installed & having most current definitions. (Virus & Spyware /PTP/NTP)

Always follow the best practice: http://www.symantec.com/docs/TECH122466

Chetan Savade
Technical Support Engineer, Endpoint Security
Enterprise Technical Support
CCNA | CCNP | MCSE | SCTS |

Don't forget to mark your thread as 'SOLVED' with the answer that best helps you.<

Mick2009's picture

"Thumbs up" to the good advice, above. 

This new article may be of interest- if you see one suspicious, undetected file, there may be more.  Your SEPM can help you find them.

Using SEPM Alerts and Reports to Combat a Malware Outbreak
https://www-secure.symantec.com/connect/articles/using-sepm-alerts-and-reports-combat-malware-outbreak

With thanks and best regards,

Mick