From: George Hester (email@example.com)
- Next message: Gary: "WinXP and IP"
- Previous message: Karl Levinson [x y] mvp: "Re: I just want to thank everyone here for all that was done"
- In reply to: taco: "Re: w32com.exe"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "George Hester" <firstname.lastname@example.org> Date: Mon, 30 Dec 2002 17:08:27 -0500
servwin.exe is likely just Serv-U renamed. Look in HKLM\Software\Serv-U you likely have that there.
Also look in C:\WINNT\System32\drivers for a file called services.exe. Do Properties you will find it is called fscan. Remove it from there.
Also look in C:\WINNT\system32 for files of type .js. You are looking for:
This comes from having SQL sa account with null password.
-- George Hester __________________________________ "taco" <email@example.com> wrote in message news:3E10908F.firstname.lastname@example.org... > I have the same file an same socket problems. Today a program > servwin.exe is installed and I suppose this is an other thread of the > same problem. I could not find serious information on the name > "servwin.exe". According the infornation of mcafee on W32/Cblade.worm.gen > it is SQL server related. I' do have SQL server. More information is > welcome. > > > > George Hester wrote: > > > Anyone really know what this is? Hunches are fine actually though I'd really like to know and so does someone in Germany. No AV knows; no Anti-Trojan knows; Google don't know either. But it exists I have it and causes a socket problem at shutdown. I suppose I could let it fire up again and be more specific but nah ain't doing that. > > > > >