Just updated the clients with new revision 2010-11-02 rev.008
Seems as if it detected the viruses on one of the infectedclients but couldnt clean them for some reason?
Client AV notification:
Scan type: Auto-Protect Scan
Event: Risk Found!
Security risk detected: Trojan.FakeAV!gen39
File: C:\Documents and Settings\jjones\Application Data\Microsoft\svchost.exe
Location: C:\Documents and Settings\jjones\Application Data\Microsoft
Computer: ACCTWHSG User: SYSTEM
Action taken: Pending Side Effects Analysis : Access denied
Date found: Tuesday, November 02, 2010 3:42:32 PM
SEPM Notification:
Action taken is: Details Pending and Left Alone???
SYSTEM
10.1.20.156 |
Trojan.FakeAV!gen39
Viral |
1 |
11/02/2010 14:43:44 |
|
Cleaned
Auto-Protect scan |
C:\Documents and Settings\jjones\Local Settings\Temp\dwm.exe |
10.1.20.156 |
Trojan.FakeAV!gen39
Viral |
1 |
11/02/2010 14:43:37 |
|
Details pending
Auto-Protect scan |
C:\Documents and Settings\jjones\Local Settings\Temp\dwm.exe |
SYSTEM
10.1.20.156 |
Trojan.FakeAV!gen39
Viral |
1 |
11/02/2010 14:43:21 |
|
Left alone
Auto-Protect scan |
C:\Documents and Settings\jjones\Application Data\Microsoft\svchost.exe |
|