I need a solution
Since turning on heuristic scans (aka bloodhound detection) in SEP 11, we occasionally get random email notifications for valid exes that are being picked up and then left alone one example is in the alert below:
At least one security risk found:
Risk name: (Unknown)
File path: c:\impsql\progress\bin\prowin32.exe
Event time: 2013-03-05 06:58:39 GMT
Database insert time: 2013-03-05 07:00:43 GMT
Action taken on risk: Details pending
How can we stop this from happening, it doesn't do any harm but just alerts each time it finds it. Can Symantec update defs if I send a copy of this file so it doesn't keep happening or is the only way to make a centralised exception for truscan proactive threats.