I have a lot machines reporting back that a process called LVPrcSrv.exe which is the caller process is trying to change an Altiris process? Can someone verify for me this is what I am reading? When I look up that process it has something to do with Logitech cams. This is showing up on a lot of our systems.
Domain name:
Dysart
Site name:
DISTRICT
API:
Action:
Block
Test mode:
No
Windows domain:
User
SYSTEM
Server name:
DSTSEPM01
Group name:
My Company\Sites\CSES\CSES\Laptops\E3 Laptops
Computer Name
Current:
CSESCNU7301R79
When event occurred:
CSESCNU7301R79
Event type:
Tamper Protection
Event time:
04/17/2010 09:01:22
Severity:
Minor
Begin time:
04/17/2010 09:01:22
End time:
04/17/2010 09:01:22
Rule name:
Alert:
Yes
Send SNMP trap:
Caller Process ID:
540
Caller Process Name:
C:/Program Files/Common Files/LogiShrd/LVMVFM/LVPrcSrv.exe
Target:
C:/Program Files/Altiris/Altiris Agent/AeXAgentUIHost.exe
User name:
SYSTEM
Description:
"C:\Program Files\Altiris\Altiris Agent\AeXAgentUIHost.exe"