Endpoint Protection

Risk,Action,Count,Filename,Risk Type,Original Location,Computer,User,Status,Current Location,Primary Action,Secondary Action,Logged By,Action Description,Date
Bloodhound.Olexe,Quarantined,1,APQ63FA.tmp,Heuristics,C:\ProgramData\Symantec\SRTSP\Quarantine\,SD-DC03,dilberc,Infected,Quarantine,Quarantine,Delete,Auto-Protect scan,The file was quarantined successfully.,7/6/2007 9:12:07 AM
Trojan Horse,Quarantined,2,APQ3579.tmp,File,C:\ProgramData\Symantec\SRTSP\Quarantine\,SD-DC03,dilberc,Infected,Quarantine,Quarantine,Delete,Auto-Protect scan,The file was quarantined successfully.,7/6/2007 9:11:56 AM
Bloodhound.Olexe,Quarantined,1,APQD8E.tmp,Heuristics,C:\ProgramData\Symantec\SRTSP\Quarantine\,SD-DC03,dilberc,Infected,Quarantine,Quarantine,Delete,Auto-Protect scan,The file was quarantined successfully.,7/6/2007 9:11:45 AM
Trojan Horse,Quarantined,2,APQDFD9.tmp,File,C:\ProgramData\Symantec\SRTSP\Quarantine\,SD-DC03,dilberc,Infected,Quarantine,Quarantine,Delete,Auto-Protect scan,The file was quarantined successfully.,7/6/2007 9:11:36 AM
Bloodhound.Olexe,Quarantined,1,APQB66F.tmp,Heuristics,C:\ProgramData\Symantec\SRTSP\Quarantine\,SD-DC03,dilberc,Infected,Quarantine,Quarantine,Delete,Auto-Protect scan,The file was quarantined successfully.,7/6/2007 9:11:24 AM
Trojan Horse,Quarantined,2,APQ8740.tmp,File,C:\ProgramData\Symantec\SRTSP\Quarantine\,SD-DC03,dilberc,Infected,Quarantine,Quarantine,Delete,Auto-Protect scan,The file was quarantined successfully.,7/6/2007 9:11:13 AM
Bloodhound.Olexe,Quarantined,1,APQ5A3B.tmp,Heuristics,C:\ProgramData\Symantec\SRTSP\Quarantine\,SD-DC03,dilberc,Infected,Quarantine,Quarantine,Delete,Auto-Protect scan,The file was quarantined successfully.,7/6/2007 9:11:02 AM
Trojan Horse,Quarantined,2,APQ28AF.tmp,File,C:\ProgramData\Symantec\SRTSP\Quarantine\,SD-DC03,dilberc,Infected,Quarantine,Quarantine,Delete,Auto-Protect scan,The file was quarantined successfully.,7/6/2007 9:10:51 AM

I have the exact same problem, The same version of Symantec and virtually the same Trojans that appear in the quarantine directory as you.
Did you find out what the problem was?

Dean Parish

Log a case with Symantec and ask for symdeltemp.exe. If this is a false positive, That might resolve the problem.

It happens to our PCs when we do a full system scan. We're using SAV 10

I think it has to do with how SAV handles the quarantine folder. All the files in the quarantine are not encrypted - i.e. they retain the same file structure but with a different file name to prevent accidentally running the malware through some other programs. Naturally, when you run a full scan and passes through this folder. You'd have alerts again.

I suggest you delete the files in the quarantine folder through the client security. Your user being internet savvy would probably have cookies, webpages, scripts of pop-ups, etc in quarantine.

If you want to go a bit further, add the folder to your exemptions and change the way your AV deals with files of whatever extension that was the files quarantined and have them be deleted as a first action.

Hi darish,

Pls submit some samples to Symantec team. When you get the tracking number , log a case with them and ask them about it.

Rgrds,
SAM