cancel
Showing results for 
Search instead for 
Did you mean: 
kokosz
Level 7
Report Inappropriate Content
Message 1 of 1

McAfee detects tojan during Sharepoint Crawl

Dear All,

I have a question in our company we recently notice that there is following problem

I have a file which were detected by McAfee as trojan during every crawl of my SharePoint 2013 site. (every 15min)

McAfee try to remove it but it does not succeed.

I have the entry about : 1st time System:Remote E:\Program Files\Microsoft Office Servers\15.0\Data\Office Server\Applications\a2003b29-4abd-4cfe-b85e-2c6c6600b17e-crawl-0\gthrsvc\6e\0x2b26e.doc\word/embeddings/oleObject1.bin

then: C:\Program Files\Microsoft Office Servers\15.0\bin\mssdmn.exe E:\Program Files\Microsoft Office Servers\15.0\Data\Office Server\Applications\gthrsvc\flt10396_7664.doc\word/embeddings/oleObject1.bin

Is it possible to find which is the file ? I see that it's a doc file. However I cannot find out where it is what is the name of the file.

Is it possible to find the name of the file with the crawl identifier ? like flt10396_7664.doc

Additional information is : that it firs happened on 9th of December at 2AM.

Thank you for your Help

More McAfee Tools to Help You
  • Subscription Service Notification (SNS)
  • How-to: Endpoint Removal Tool
  • Support: Endpoint Security
  • eSupport: Policy Orchestrator
  • Community Help Hub

      New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

    • Find Forum FAQs
    • Learn How to Earn Badges
    • Ask for Help
    Go to Community Help

    Join the Community

      Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

    • Get helpful solutions from McAfee experts.
    • Stay connected to product conversations that matter to you.
    • Participate in product groups led by McAfee employees.
    Join the Community
    Join the Community