Re: svchosting.exe -> Backdoor.Sdbot
From: Jurren Bouman (jurren_at_hotmail.com)
Date: 07/30/04
- Next message: Little Neddie: "Re: Zone alarm update."
- Previous message: Jurren Bouman: "Re: deleted files ffrom virus scan"
- In reply to: Ken: "svchosting.exe -> Backdoor.Sdbot"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 30 Jul 2004 10:22:13 +0200
Ken wrote:
> Got totally caught by this guy yesterday. Slammed most
> of my machines. Network came to a hault. Now many of my
> servers won't show their IPC$ shares. You can "net share
> ipc$" but that will only bring it back for a few minutes
> and then it goes away again. Still misterious dropped
> connections with servers even with good network response
> and ping times.
See:
http://vil.nai.com/vil/content/v_99410.htm
http://securityresponse.symantec.com/avcenter/venc/data/backdoor.sdbot.html
Removal tool:
"McAfee AVERT Stinger"
http://vil.nai.com/vil/stinger/
-- Jurren Bouman MVP Security - Windows "Microsoft Trustworthy Computing: Security" http://www.microsoft.com/security/default.mspx
- Next message: Little Neddie: "Re: Zone alarm update."
- Previous message: Jurren Bouman: "Re: deleted files ffrom virus scan"
- In reply to: Ken: "svchosting.exe -> Backdoor.Sdbot"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
Loading
