If Symantec doesn’t detect it, and it past all its layers of security, starting with the Firewall and Intrusion Prevension System, then SONAR and Antibot, then Norton Insight, then it is probably not a virus or an inactive one, which you should not be worried about. I would just remove the files.
tsilo wrote:
Hi all
I have 3 undetected by Symantec viruses (backdoor, worm an adware), when I discovered them (it was about month ago) I submitted them to Symantec by web submission, with my NIS 2009 quarantine and to virustotal.com... but after month these samples aren't detected yet... so what's wrong?
Please PM the files to me. let's see what I can do
Hi tsilo
Hope your not feeling too frustrated at this point. Here's what you have to do.
1. Submit the files to Symantec for analysis here.* I don't doubt they are in fact Malware/Adware, but probably haven't been discovered by Symantec yet and added to their definitions base.
2. After you submit the files for analysis, you will receive a tracking number almost immediately. Then, allow up to 48 hours for your submissions to be analysed, and you will be notified by Symantec Security Response whether the files are malicious, and if so, they will add the definitions to the data base and then your NIS09 will pick them up and remove them.
Let us know how you get on.
* You may upload multiple files at once by using WinZip or a similar application.
A zipped file should not be password-protected. The maximum size for one
submission is 10MB. Please submit no more than 9 files in any zip file
regardless of size.
Message Edited by johna on 10-06-2008 03:58 PM
HI johna
I already did this.. month (!!!) ago. I also send to Symantec these files via e-mail... results are same.
Now i am not home, when I will, I can send these files to evaryone who want..
Can you send the files to Symantec again through the link I provided, and supply us with the tracking number please, or even better, do you still have the tracking number of when you first submitted them, or the reply you received from Symantec Security Response?
Are you sure you submitted via the link I provided, and not through NIS09?
Thanks
Edit: I've sent you a PM with my email so you can send the files to me.
Message Edited by johna on 10-06-2008 04:48 PM
I have two of them:
1. Tracking #9933620
2. Tracking #9934168
Hi tsilo
I have escalated this matter for you, can you please advise when you receive a reply for these tracking numbers, thanks.
Also, if it isn't too much trouble, would you mind submitting the malware again through the link I provided, and advise of any response you receive.
Thanks for your help and patience.
I suspect he’s not as interested in removing them as knowing why Norton didn’t detect them. He already mentioned that he was not infected.
No doubt, but thanks.
Tech0utsider wrote:
If Symantec doesn't detect it, and it past all its layers of security, starting with the Firewall and Intrusion Prevension System, then SONAR and Antibot, then Norton Insight, then it is probably not a virus or an inactive one, which you should not be worried about. I would just remove the files.
I'd an active virus running at every boot doing suspicious activities on my PC for atleast a week which is detected by other vendors like Panda, Trend and PrevX which NIS09 did nothing about - not an inch. I really noticed it when testing my made up freeware-suite which included ThreatFire, and where it would react and explain its activities. I think it's a worm/bot type of malware which you could say "syncronized" by making backups of itself on removable devices or vice versa (in your Windows-folder). Even if Symantec claims that Anti-Bot is integrated in their 2009 software and that they had better results in comparison it's been proven in another topic that running Anti-Bot detected a threat which the full 2009 software would not. I don't know if Anti-Bot would've helped me in my case, but the full suite did not.
johan I sent you these malwares, please chek your e-mail…
Maybe they were removed by a virus scanner…but then if he uses yahoo, which uses Symantec, it shouldn’t block them.
Is there any news?? samples are still undetected…
Still waiting for a reply, shouldn’t be much longer.
Norton sufficently protects avg. users that don’t purposely download malware or stress Norton’s AV engine. That comprises of 99.999999% of the people that use Norton. As for the rest, majority rules!
Norton sufficently protects avg. users that don’t purposely download malware or stress Norton’s AV engine. That comprises of 99.999999% of the people that use Norton. As for the rest, majority rules!
If only that were true! It is the average user who does purposely download malware – only without knowing he or she is doing so. And, yes, it’s for the likes of them that Norton really exists.
Well, I mean purposely downloading malware, such as cracks and rouges from google.
I knew that.
After such long period these files are still undetected… and I have more samples that are also undetected…
Hi tsilo
If you would post the tracking numbers, and the details, we can have it looked into for you.
Thanks!