1 Reply Latest reply on Dec 5, 2012 9:12 AM by Mjabraoui

    Compiled AutoIt scripts deleted by LDAV

    Apprentice

      Since last Friday (2012/11/30) LDAV deleted some of our compiled AutoIt scripts. The worst thing was that it deleted our domain logon script too, which happened to be an AutoIt generated Exe.

       

       

      avservice.log: Fri, 30 Nov 2012 15:28:01 EVENT_PREDETECT called: Name = \\***.com\files\NETLOGON\logon.exe, Virus = HEUR:Trojan.Win32.Generic

       

       

      Our scripts are not UPX compressed (#AutoIt3Wrapper_UseUpx=n).

       

       

      Did anyone have the same issue?

       

       

      LDMS 9.0 SP3

        • 1. Re: Compiled AutoIt scripts deleted by LDAV
          Mjabraoui Rookie

          I have the same problem : LDAV deleted some of our compiled AutoIt exe . 

          LDMS 9.0 SP3

           

          Wed, 05 Dec 2012 14:00:55 Event: 20, event map for 35425.\\osmoz\installations\Paquets\Xnview\I_XP_XnView_V1.95.4\I_xp_xnview.exe not found

          Wed, 05 Dec 2012 14:00:55 EVENT_PREDETECT called: Name = \\osmoz\installations\Paquets\Xnview\I_XP_XnView_V1.95.4\I_xp_xnview.exe, Virus = HEUR:Trojan.Win32.Generic

          Wed, 05 Dec 2012 14:00:55 Event: 20, event map for 35427.\\osmoz\installations\Paquets\Xnview\I_XP_XnView_V1.95.4\I_xp_xnview.exe not found

          Wed, 05 Dec 2012 14:00:55 EVENT_PREDETECT called: Name = \\osmoz\installations\Paquets\Xnview\I_XP_XnView_V1.95.4\I_xp_xnview.exe, Virus = HEUR:Trojan.Win32.Generic

          Wed, 05 Dec 2012 14:00:56 Event: 20, event map for 35427.\\osmoz\installations\Paquets\Xnview\I_XP_XnView_V1.95.4\I_xp_xnview.exe not found

          Wed, 05 Dec 2012 14:00:56 EVENT_PREDETECT called: Name = \\osmoz\installations\Paquets\Xnview\I_XP_XnView_V1.95.4\I_xp_xnview.exe, Virus = HEUR:Trojan.Win32.Generic

          Wed, 05 Dec 2012 14:00:56 Event: 8, event map for 35427.\\osmoz\installations\Paquets\Xnview\I_XP_XnView_V1.95.4\I_xp_xnview.exe not found

          Wed, 05 Dec 2012 14:00:56 Event: 64, event map for 35427.\\osmoz\installations\Paquets\Xnview\I_XP_XnView_V1.95.4\I_xp_xnview.exe not found

          Wed, 05 Dec 2012 14:00:56 Event: 37, event map for 35427.\\osmoz\installations\Paquets\Xnview\I_XP_XnView_V1.95.4\I_xp_xnview.exe not found

          Wed, 05 Dec 2012 14:14:17 Clearing scan files for channel 8128

          Wed, 05 Dec 2012 14:14:17 Finished clearing scan files.

          Wed, 05 Dec 2012 14:14:17 Starting: "C:\Program Files (x86)\LANDesk\LDClient\antivirus\avservice.exe" /channel=8128 /usedforupdate

          Wed, 05 Dec 2012 14:17:49 the max log size set to 10485760

          Wed, 05 Dec 2012 14:17:49 Creating update event

          Wed, 05 Dec 2012 14:17:49 Setting update event

          Wed, 05 Dec 2012 14:17:49 2492: Windows Platform 2, version 6.1 Service Pack 1

          Wed, 05 Dec 2012 14:17:49 2492: Service started