Endpoint Protection

Dear All

If i found the suspicious file or virus, how does we send to Symantec Lab?
via web access or/and Having any some submission-email?

What is the best way to send the file? and how are their respone time?

Thank you

Hi
If you want to submit suspicios file or virus to symantec security response team. use this link.
https://submit.symantec.com/websubmit/retail.cgi
Zip the infected files, fill up the form. after submission symantec will send tracking number to your e-mail ID immediately.
This is confirmation mail of submission only.
Another e-mail will come with closing, if symantec find your submitted file was virus, then symantec will provide virus definition updates,

regards
Ajeet

what kind of support you have from symantec

https://submit.symantec.com/gold  or /basic /essential depending on your support contract of no contract then /retail 

1. i've registered in partner net for Symantec partner

2. and we are using SEP11 in our company too.

What is higher piority support between Partner net and End-user?

Symantec Platinum Partners deliver the highest value to their customers.

For more information go through this link.
http://www.symantec.com/partners/programs/channel/index.jsp

Log on https://partnernet.symantec.com
click on Technical Support - here you can see your Partnet level.

regards
Ajeet

i'm just registerd partner level

Hi Vee_Zza,

I would suggest to contact Support before you submit any file to Security team. As this the a proper procedure and channel for Submitting Suspecious Files.

did u checked ur partner level, open the https://partnernet.symantec.com
click on Technical Support - here you can see your Partnet level.

You may submit a file via scan and deliver or by excluding the original location of the sample and restoring it, then using the submission site below.

To submit a file directly from the Quarantine of Symantec Endpoint Protection:

Title: 'How to submit file(s) from quarantine using the new user interface within Symantec Endpoint Protection 11.0'
Document ID: 2007031308253048
> Web URL: http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/2007031308253048?Open&seg=ent

To create exceptions for the original location of the file in Symantec AntiVirus Corporate Edition to restore from Quarantine and manually submit the file:

Title: 'Excluding specific drives and folders from Symantec AntiVirus scans'
Document ID: 2002092413394848
> Web URL: http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/2002092413394848?Open&seg=ent

To manually upload a file that is being flagged as a threat and you see as a false positive to Symantec Security Response, please follow the manual submission process at the following URL:
https://submit.symantec.com/gold/

(If you do not have a Technical Contact Id, call Symantec Tech Support... Ask for the same...)

Few More Articles:

Title: 'Common loading points for viruses, worms, and Trojan horse programs on Windows NT/2000/XP/2003'
Document ID: 2001060517115206
> Web URL: http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/2001060517115206?Open&seg=ent

Title: 'Common loading points for viruses, worms, and Trojan horse programs on Windows 98/95/3.1x'
Document ID: 1999052415383948
> Web URL: http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/1999052415383948?Open&seg=ent