Re: Sasser like symptoms
anonymous_at_discussions.microsoft.com
Date: 07/29/04
- Next message: Malke: "Re: emails"
- Previous message: anonymous_at_discussions.microsoft.com: "Backdoor.Agent.B"
- In reply to: Lanwench [MVP - Exchange]: "Re: Sasser like symptoms"
- Next in thread: Haus: "Re: Sasser like symptoms"
- Reply: Haus: "Re: Sasser like symptoms"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 29 Jul 2004 12:48:08 -0700
Stinger got it! Thanks!
For the record (should this help others) it was the
W32/Sdbot.worm.gen.h virus
stinger detected and deleted file WINNT\system32\ntce.exe
promise will go hunt down firewall before taking that
machine back online. Thanks for the help.
>-----Original Message-----
>1) Get a firewall in place ASAP - don't connect to the
Internet without it,
>even for a second
>2) Try running the McAfee Stinger tool (available for
download from their
>website).
>
>
>Gill wrote:
>> i have sasser like symptoms on my home Win2000 pc but am
>> uncertain i have correctly diagnosed the exact culprit.
I
>> do get the winnt/system32/lsass.exe 128 error and auto
>> rebooting but have none of the related avserve files or
>> processes running?
>> Is this sasser or something else related. having spent
>> hours running Norton, spybot and the blasterworm removal
>> tool to no avail before trekking out to an internet cafe
>> to google for an answer i'm loathe to keep running round
>> this hamster wheel without making sure i'm now about to
>> treat the right thing. Can anyone advise?
>
>
>.
>
- Next message: Malke: "Re: emails"
- Previous message: anonymous_at_discussions.microsoft.com: "Backdoor.Agent.B"
- In reply to: Lanwench [MVP - Exchange]: "Re: Sasser like symptoms"
- Next in thread: Haus: "Re: Sasser like symptoms"
- Reply: Haus: "Re: Sasser like symptoms"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
