Submitting information about detections to Symantec Security Response
We can configure your computer to automatically submit information about detections to Symantec Security Response for analysis.
Symantec Response and the Global Intelligence Network use this submitted information to quickly formulate responses to new and developing security threats. The data that you submit improves Symantec's ability to respond to threats and customize protection. Symantec recommends that you always allow submissions.
We can choose to submit any of the following types of data:
■ File reputation
Information about files that are detected based on their reputation. The information about these files contributes to the Symantec Insight reputation database to help protect your computers from new and emerging risks.
■ Antivirus detections
Information about virus and spyware scan detections.
■ Antivirus advanced heuristic detections
Information about potential threats detected by Bloodhound and other virus and spyware scan heuristics. These detections are silent detections that do not appear in the Risk log. Information about these detections is used for statistical analysis.
■ SONAR detections
Information about threats that SONAR detects, which include high or low risk detections, system change events, and suspicious behavior from trusted applications.
■ SONAR heuristics
SONAR heuristic detections are silent detections that do not appear in the Risk log. This information is used for statistical analysis. We can also manually submit a sample to Response from the Quarantine.
We can enable your computer to submit information about detected threats to Symantec Security Response. Symantec Security Response uses this information to protect your client computers from new, targeted, and mutating threats. Any data we submit improves Symantec's ability to respond to threats and customize protection for your computer. Symantec recommends that you submit as much detection information as possible.
We can manually submit a sample to Symantec Response from the Quarantine page. The Quarantine page also lets you determine how items are submitted to Symantec Security Response.
To configure submissions to Symantec Security Response
1) Select Change Settings > Client Management.
2) On the Submissions tab, check Let this computer automatically forward selected anonymous security information to Symantec. This option lets Symantec Endpoint Protection submit information about the threats that are found on our computer.
Symantec recommends that you keep this option enabled.
3 Select the types of information to submit:
■ File reputation
■ Antivirus detections
■ Antivirus advanced heuristic detections
■ SONAR detections
■ SONAR heuristics
SONAR heuristic detections are silent detections that do not appear in the Risk log. This information is used for statistical analysis.
4) Enable Allow Insight lookups for threat detection to allow Symantec Endpoint Protection to use Symantec's reputation database to make decisions about threats.
Insight lookups are enabled by default. Symantec recommends that we allow Insight lookups. Disabling this feature disables the Download Insight and may impair the functionality of SONAR and Insight Lookup.
However, we can disable this option if you do not want to allow Symantec to query Symantec Insight.