Endpoint Protection Cloud

Expand all | Collapse all

Threat Detected on a drive that doesn't exist?

  • 1.  Threat Detected on a drive that doesn't exist?

    Posted 06-20-2019 04:31 PM

    Hello-

     

    We are receiving the following threat detections on a particular PC:

     

    Resolved Threats:
    No risks have been resolved

    Unresolved Threats:
    Trojan.Gen.MBT
     Type: Anomaly
     Risk: High (High Stealth, High Removal, High Performance, High Privacy)
     Categories: Virus
     Status: Remove Failed
     -----------
     1 Infected File
    D:\DHL_Label_Scan _  June 19 2019 at 2.21_06455210_PDF.exe - Failed
     1 Browser Cache

     

    Heur.AdvML.C
     Type: Anomaly
     Risk: High (High Stealth, High Removal, High Performance, High Privacy)
     Categories: Heuristic Virus
     Status: Remove Failed
     -----------
     1 Infected File
    D:\DHL_Label_Scan _  June 19 2019 at 2.21_06455210_PDF.exe - Failed
     1 Browser Cache

     

    The problem here is, there is no CD/DVD in the optical drive and there is no Drive D: on the machine -- see attachment. I do recognize the filename as it was an attachment included in a spam email that was never opened and has since been deleted.

     

    Any ideas on how to clear these alerts?..



  • 2.  RE: Threat Detected on a drive that doesn't exist?

    Posted 06-20-2019 07:27 PM

    Maybe a USB drive? EIther way at some point something was plugged in that mapped to D: and if that was the case that same device will need to be plugged back in and re-scanned to clear it. This has been the case for as long as I can remember with this product.



  • 3.  RE: Threat Detected on a drive that doesn't exist?

    Posted 06-20-2019 09:38 PM

    Hi Brian-

     

    It was actually mounted to D: at some point on accident by the user but I unmounted it today to get rid of the file.. now that the file is deleted, surely there has to be a way to clear these alerts if the file in question is no longer available?

     



  • 4.  RE: Threat Detected on a drive that doesn't exist?

    Posted 06-21-2019 08:06 AM

    It needs to be mounted again and a scan run. If the scan determines it's clean it should clear the alert.



  • 5.  RE: Threat Detected on a drive that doesn't exist?

    Posted 06-21-2019 08:28 AM