Re: Computers got Hacked?? Please Help!!!
From: Karl Levinson [x y] mvp (levinson_k_at_despammed.com)
Date: Sun, 19 Sep 2004 10:11:54 -0400
"itsupport" <firstname.lastname@example.org> wrote in message
> I'm sorry if this is not the right forum to post this.
> 2 days ago, something strange has happened to our work computers. It
> happened to our windows 2003 server and several other users' pcs (win2K
> win XP). cmd.exe window will pop up but no scripts is shown. Then, IE will
> opened by itself and goes to websites like rotten.com showing gross pics,
> google and etc. Also, sometimes Solitaire, Calculator, My Documents will
> opened too. This happends randomly throughout the day.
This doesn't sound like most viruses. Could be an internal prank by someone
there, or a remote control Trojan. Make sure your network has a firewall,
and that your anti-virus has been updated in the past week.
AV can be disabled by attackers so that it looks like it is still working.
Try running a second opinion AV scan by going to
Also, Windows root kit functionality can hide viruses from the locally
logged in user... try using a known virus free computer to scan other
computers across the network using a Windows netowrking share and regular
anti-virus. You could also use an anti-virus boot floppy disk from your
antivirus vendor or a free live boot rescue CD from BitDefender.
If these don't help, see here: