AVLog Folder

I have several pc's on our network that all of a sudden now have a folder at the root of C that is called
AVLog

C:\AVLog

In this folder are many files like RXI3223.08

Any idea what this is or what is causing it?

We use McAfee for antivirus.

Thanks
LVL 1
Wildone63Asked:
Who is Participating?
 
Neil RussellConnect With a Mentor Technical Development LeadCommented:
Any feedback?
0
 
Neil RussellTechnical Development LeadCommented:
I suspect that you MAY have an infection. Download and install and run Malwarebytes.
http://www.malwarebytes.org/ 
0
 
Wildone63Author Commented:
I have Malwarebytes. Used it for along time now. It comes up clean.
0
Improved Protection from Phishing Attacks

WatchGuard DNSWatch reduces malware infections by detecting and blocking malicious DNS requests, improving your ability to protect employees from phishing attacks. Learn more about our newest service included in Total Security Suite today!

 
Neil RussellTechnical Development LeadCommented:
How many files exist in this folder? how frequently are they created? have you looked at there contents at all?
0
 
Wildone63Author Commented:
some have only a few some have hundreds. Can't look at the contents.
0
 
Neil RussellTechnical Development LeadCommented:
Why cant you?
0
 
Wildone63Author Commented:
they seem to be binary files. So if you open it in note pad it is just jibberish
0
 
Neil RussellTechnical Development LeadCommented:
and the frequency of creation?
Can you rename the folder to C:\AVLog.old ?
 
0
 
Wildone63Author Commented:
The frequency seems to be different on different machines. some once an hour some once every other day and everything in between,

Yes I can rename, and or delete, it comes back
0
 
Neil RussellTechnical Development LeadCommented:
Ok if you can rename it you should be able to alter permissins on it. Change the security permissions and make it READ ONLY for every account listed on the security tab. Leave the PC to run for a while and see if you either get any errors on screen or recorded in the eventlog. Might give away whats using it.
0
 
Wildone63Author Commented:
Well as you suggested I made the folder read only. I have two errors in the event log from this am. They are from my McAfee AV-Diagnostics. So.... I am assuming that the AVLog folder is something from McAfee. The errors are very cryptic and do not mean anything to me. But it does look like part of it is an error opening. (the read only folder I am assuming.)

So I will go down that track and see if I can find anything from Mcafee.

Thanks for your help.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.