wnrot.exe
From: Tlake (Tlake_at_discussions.microsoft.com)
Date: 08/25/04
- Next message: BG250: "Re: Not Sasser?!"
- Previous message: Diana Smith [MSFT]: "RE: bloodhound.exploit.6"
- Next in thread: Malke: "Re: wnrot.exe"
- Reply: Malke: "Re: wnrot.exe"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 25 Aug 2004 06:27:12 -0700
I have a file called wnrot.exe in windows\system32 set to load at boot.
Prevents launch of msconfig, regedit, edit.com and prevents AOL 9.0 from
starting fully. Also prevents installation of AVG.
When started in safe mode, Virus does not load.
Virus also appears to load nvsvc32.exe (NVIDIA graphics driver file)
AVG reports file clean. Virus is stopped from fully loading by using
taskkill /im wnrot* /f /t in an infinite loop batch file.
No hits on Google, Microsoft or Securityadmin.info
Please Reply.
System Specs.
Windows XP Professional Laptop
Pentium 4 2.4ghz
40gb HDD
No FDD
CD RW
- Next message: BG250: "Re: Not Sasser?!"
- Previous message: Diana Smith [MSFT]: "RE: bloodhound.exploit.6"
- Next in thread: Malke: "Re: wnrot.exe"
- Reply: Malke: "Re: wnrot.exe"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
