Endpoint Protection Cloud

Hello-

We are receiving the following threat detections on a particular PC:

Resolved Threats:
No risks have been resolved

Unresolved Threats:
Trojan.Gen.MBT
 Type: Anomaly
 Risk: High (High Stealth, High Removal, High Performance, High Privacy)
 Categories: Virus
 Status: Remove Failed
 -----------
 1 Infected File
D:\DHL_Label_Scan _  June 19 2019 at 2.21_06455210_PDF.exe - Failed
 1 Browser Cache

Heur.AdvML.C
 Type: Anomaly
 Risk: High (High Stealth, High Removal, High Performance, High Privacy)
 Categories: Heuristic Virus
 Status: Remove Failed
 -----------
 1 Infected File
D:\DHL_Label_Scan _  June 19 2019 at 2.21_06455210_PDF.exe - Failed
 1 Browser Cache

The problem here is, there is no CD/DVD in the optical drive and there is no Drive D: on the machine -- see attachment. I do recognize the filename as it was an attachment included in a spam email that was never opened and has since been deleted.

Any ideas on how to clear these alerts?..

Maybe a USB drive? EIther way at some point something was plugged in that mapped to D: and if that was the case that same device will need to be plugged back in and re-scanned to clear it. This has been the case for as long as I can remember with this product.

Hi Brian-

It was actually mounted to D: at some point on accident by the user but I unmounted it today to get rid of the file.. now that the file is deleted, surely there has to be a way to clear these alerts if the file in question is no longer available?

It needs to be mounted again and a scan run. If the scan determines it's clean it should clear the alert.

You may need to resolve the risk: https://support.symantec.com/content/unifiedweb/us/en/article.TECH249837.html