http://www.dba.5341.com/
http://www.dba.5341.com/
If you are using McAfee antivirus software on your win32 Oracle servers - check your logs.
It attempted to remove files such as Dell OpenManage, Cygwin, perl, Sysinternals pstools suite.
Basically, anything that was in the PATH environment variable was targeted.
Not only did it attempt to remove files in the %ORACLE_HOME%\bin directory, but also in the .patch_storage folder - so as far as oracle files, this was not limited to the PATH environment variable.
This was also capable of navigating mapped drives, so if you had a file server setup as a common install location, if filesystem permissions permitted modification of such files, you'll want to refresh the installation files from the downloaded, compressed source file.
More info to follow - I haven't even made coffee yet.
Paul
NAI/McAfee today released pattern version 4716 only hours after 4715 had come out. Pattern 4715 triggered false positive virus alerts for "W95/CTX" on a number of files that are part of quite prominent third party products. Good for you if you have your AV configured to "quarantine" bad files and not to delete them outright, this makes restoring the chewed up files after a false positive considerably faster. Nevertheless, things like this can get messy pretty quickly if the AV scanner starts to quarantine vital components of your environment.