Re: Solved the problem!
From: Richard Muller (RichardLMullerDELETE_at_comcast.net)
Date: 11/28/03
- Next message: Dave Taylor: "Re: Lock down clock changes"
- Previous message: anonymous_at_discussions.microsoft.com: "Re: downloads"
- In reply to: Karl Levinson [x y] mvp: "Re: Solved the problem!"
- Next in thread: Karl Levinson [x y] mvp: "Re: Solved the problem!"
- Reply: Karl Levinson [x y] mvp: "Re: Solved the problem!"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 28 Nov 2003 09:38:08 -0500
Hi Karl,
> Wait a minute.
Thanks for taking the trouble to go an extra mile in looking into my
problem, especially for the www.grisoft.com link, and the other security
links as well. I didn't know about the existence of most of them.
> ... you probably had a virus or an intruder.
I thought that was the likely cause of my symptom until:
(i) I discovered that the file soaking up the cpu cycles was located in
inetpub; and
(ii) I recalled that I have recently deleted a number of files from that
folder thinking that I wasn't using IIS on this workstation, only on my
Win2000AS server.
(iii) The problem disappeared immediately after I restored the files I had
foolishly deleted
> For example, I'm guessing that you don't have antivirus
Quite true. I had been running McAfee, which I thought did a great job.
However, when I purchased the right for another year's downloads of
upgrades, their software got hosed and their tech support was anable to
provide useful advice. So I canned it, started relying on MailWasherPro and
a cautious approach to downloads.
> ... or that your antivirus isn't set to download updates automatically
every week
I do get automatic indication that a relevant critical update is available
for download/install. I don't know if the frequency is "every week,"
however.
> ... you may not have a firewall
I do: my cable modem feed a LinkSys router that has all ports shut down
against any traffic that not responsive to a message that my network
originated.
> ... haven't installed all the latest patches on your computer.
I think I am up-to-date on that score.
> www.grisoft.com is free antivirus
That was great to learn. I have installed it and it confirmed that subject
workstation is virus-free.
> www.kerio.com or www.sygate.com are free firewalls
Do you aqree that they're unnecessary in light of the LinkSys router at the
"gateway" to my network.
> http://windowsupdate.microsoft.com should be visited more or less once a
> month to get all the latest updates.
Thanks for this suggestion. I assumed that the automatic warnings were
enough. From now on, I'll start doing that for every computer on the first
of the month (along with sending in my mortgage payment) at the first of
every month.
> You might also want to consider the hardening checklists at
> www.microsoft.com/technet/security and
> http://securityadmin.info/faq.asp#harden
I'll start checking this out. I looked at them initially: they look great.
> Going to the following site might help you confirm what was done and that
> everything malicious has really been removed:
> http://securityadmin.info/faq.asp#hacked
Ditto.
So, again, many thanks for all your guidance.
Best wishes,
Richard Muller
- Next message: Dave Taylor: "Re: Lock down clock changes"
- Previous message: anonymous_at_discussions.microsoft.com: "Re: downloads"
- In reply to: Karl Levinson [x y] mvp: "Re: Solved the problem!"
- Next in thread: Karl Levinson [x y] mvp: "Re: Solved the problem!"
- Reply: Karl Levinson [x y] mvp: "Re: Solved the problem!"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
