Hello. I work at an Corporation down here in Puerto Rico in the IT
department, we have come across a very strange and serious problem, that i
would appreciate any and all insight or solutions in.
Over the past few weeks I had noticed that for some reason or another a
particular application(EXTRA!emu program) was(my assumption atm) being
desasociated from the OS therefore not being able to run files associated to
that program. A simple reinstall would fix the problem, so at that particular
moment we didnt give it much attention however I was concerend about it but
had other more pressing issues to deal with. Last week one of our main
Apps(PremierII) for a department that is launched from a webpage in our
intranet stoped working , and after a couple of ours with the apps
techsupport we couldnt find a solution.
Yesterday however I was assigned to try and fix this applications problem,
and came across something very suspicious. The application is accessed by all
the Users from one of our servers(it resides there). When i went to the
server to look at the files of the application I was able to see that there
was still one user using it and i was unable to check some of the files
associated with it and try to see if they were corrupted. So i called up to
the Dept. and asked for the user to log off from this application which he
had been connected to for over 5 days, When he does disconnect I see the
applications .exe file disapear from the Folder view aswell as all the .ocx
files that it uses. This explained to me why other ppl couldnt access the
application(and why no one could figure out what exactly was going on since
the OS still showed the app and its file being there). So after a reinstall
of the APP everything went back to normal. So once I saw this right in front
of me It came clear to me that the application that I belived wsa being
disasociated from the OS in the past few weeks, actually suffered from the
same problem this current application had.
Anyways I am trying to find any information ppl may have on anything of this
kind happening to them, or something I may try to stop this from happening.
In our Corporation we run Trend Micro Officescan and all our machines are up
to date on the definitions. I have yet to see Officescan find a virus on the
server, or any of the terminals(Extra! app) that were afected by this problem
the weeks prior to the big incident(PremierII).
Any help will trully be appreciated.
Thank you