Video Screencast Help
Symantec Appoints Michael A. Brown CEO. Learn more.

New risk found: Downloader.Dromedan.

Created: 22 Aug 2014 • Updated: 25 Aug 2014 | 6 comments
This issue has been solved. See solution.

Hi,

I'm receiving a New Risk Found Notification on a daily basis, and I can't seem to find what's infected. The message refers to a detection found 04\08\2014, and is coming from a Mac. I did several full scans, including any USB backup disks the user has connected, but nothing is found. Quarantine folder is empty, and for testing purposes has been recreated. The file the report refers to isn't present anyway.

I'm puzzled as to why this detection is reported each day, and I would like to silence this particular notification assuming it's a false detection. Any advice?

 

Thanks.

 

 

xxx

Downloader.Dromedan
Security risk

1

04/08/2014 13:30:52

Default
xxx
My Company

Left alone
Auto-Protect

\Volumes\\Data Records\Message Sources\0T\0B\0M\7K\x27_7631.olk14MsgS

Operating Systems:

Comments 6 CommentsJump to latest comment

.Brian's picture

Seems like the notification is "stuck"

What's the exact SEPM and client version?

Please click the "Mark as solution" link at bottom left on the post that best answers your question. This will benefit admins looking for a solution to the same problem.

Vespernl's picture

SEPM: 12.1.4013.4013

Client: Symantec Endpoint Protection for Mac:12.1.4013.4013

 

.Brian's picture

Have you tried deleting and re-creating the notification?

Please click the "Mark as solution" link at bottom left on the post that best answers your question. This will benefit admins looking for a solution to the same problem.

SOLUTION
Rafeeq's picture

delete the notification and create a new one...

Vespernl's picture

I have recreated the notification and reinstalled the SEP Mac client, will report back whether this has solved the issue. Thanks.

Vespernl's picture

I haven't recieved any further false notification reports, recreating the report was the solution.. Thanks all :)