Re: netsec.dll -- anyone heard of?
From: Damon Xu[MSFT] (damonx_at_online.microsoft.com)
Date: 06/04/03
- Next message: Dave G: "Re: Problem signing openSSL certificate request"
- Previous message: Steve Jack: "Re: OU GPO's"
- In reply to: Todd Denlinger: "Re: netsec.dll -- anyone heard of?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 04 Jun 2003 16:52:54 GMT
Hi Todd,
Thanks for the reply! I'm glad to hear that the information is helpful. If
you find that your issue has not been fully resolved, please let me know by
adding a post to the thread.
We look forward to helping you in the future.
Sincerely,
Damon Xu
MCSE2000, MCDBA2000
Microsoft Partner Online Support
Get Secure! - www.microsoft.com/security
====================================================
When responding to posts, please Reply to Group via your newsreader so
that others may learn and benefit from your issue.
====================================================
This posting is provided AS IS with no warranties, and confers no rights.
--------------------
| From: "Todd Denlinger" <todd@psiware.com>
| References: <00c001c329e0$7a173420$a101280a@phx.gbl>
<cIqgi2hKDHA.2284@cpmsftngxa06.phx.gbl>
| Subject: Re: netsec.dll -- anyone heard of?
| Date: Wed, 4 Jun 2003 08:19:09 -0500
| Lines: 101
| X-Priority: 3
| X-MSMail-Priority: Normal
| X-Newsreader: Microsoft Outlook Express 6.00.2800.1158
| X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165
| Message-ID: <OxR8lvpKDHA.452@TK2MSFTNGP11.phx.gbl>
| Newsgroups: microsoft.public.win2000.security
| NNTP-Posting-Host: 207.8.15.134
| Path: cpmsftngxa06.phx.gbl!TK2MSFTNGP08.phx.gbl!TK2MSFTNGP11.phx.gbl
| Xref: cpmsftngxa06.phx.gbl microsoft.public.win2000.security:893
| X-Tomcat-NG: microsoft.public.win2000.security
|
| Thank you Damon,
|
| I have done so.
|
| Todd
|
| "Damon Xu[MSFT]" <damonx@online.microsoft.com> wrote in
| message news:cIqgi2hKDHA.2284@cpmsftngxa06.phx.gbl...
| > Hi Todd,
| >
| > Thank you for posting!
| >
| > According to your post, I understand that the file
| netsec.dll is infected
| > with a virus.
| >
| > Based on my research, the netsec.dll is not a Microsoft
| system file. In
| > addition, I searched for this file on Internet but did not
| get any
| > information. This file may be created by virus or the
| other third party
| > program.
| >
| > I suggest you rename this file to netsec.old and test the
| system to make
| > sure that the system works fine. After that, you may
| remove this file.
| >
| > Hope this helps!
| >
| > Have a great day!
| >
| > Sincerely,
| >
| > Damon Xu
| > MCSE2000, MCDBA2000
| > Microsoft Partner Online Support
| >
| >
| > Get Secure! - www.microsoft.com/security
| >
| > ====================================================
| > When responding to posts, please Reply to Group via your
| newsreader so
| > that others may learn and benefit from your issue.
| > ====================================================
| > This posting is provided AS IS with no warranties, and
| confers no rights.
| > --------------------
| > | Content-Class: urn:content-classes:message
| > | From: "Todd Denlinger" <todd@psiware.com>
| > | Sender: "Todd Denlinger" <todd@psiware.com>
| > | Subject: netsec.dll -- anyone heard of?
| > | Date: Tue, 3 Jun 2003 07:57:39 -0700
| > | Lines: 23
| > | Message-ID: <00c001c329e0$7a173420$a101280a@phx.gbl>
| > | MIME-Version: 1.0
| > | Content-Type: text/plain;
| > | charset="iso-8859-1"
| > | Content-Transfer-Encoding: 7bit
| > | X-Newsreader: Microsoft CDO for Windows 2000
| > | X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4910.0300
| > | Thread-Index: AcMp4HoXgyS30JFEToiuJKZ1XmxnOg==
| > | Newsgroups: microsoft.public.win2000.security
| > | Path: cpmsftngxa06.phx.gbl
| > | Xref: cpmsftngxa06.phx.gbl
| microsoft.public.win2000.security:823
| > | NNTP-Posting-Host: TK2MSFTNGXA09 10.40.1.161
| > | X-Tomcat-NG: microsoft.public.win2000.security
| > |
| > | I have a .dll on my server in the system32 folder that
| is
| > | showing up as being infected with the Backdoor.krei
| > | trojan by Norton Antivirus. However I can find no
| > | information about this file (netsec.dll) anywhere on the
| > | web.
| > |
| > | I have isolated the file from my system. And I see no
| > | other symptoms of the backdoor.krei trogan. So I'm
| > | wondering if this is a false positive by norton. There
| > | is no information on the symantec web site about the
| .dll.
| > |
| > | Examining the .dll file properties it appears to be a
| > | microsoft file with the following description: Internet
| > | Protocol Security Helper Functions, v5.0.2174.1
| > |
| > | From looking at my backup logs, it seems to have been on
| > | my system for sometime. I'm just now getting an
| infected
| > | warning.
| > |
| > | Does anyone know of this file or have any suggestions?
| > |
| > | Thanks,
| > | Todd
| > |
| >
|
|
|
- Next message: Dave G: "Re: Problem signing openSSL certificate request"
- Previous message: Steve Jack: "Re: OU GPO's"
- In reply to: Todd Denlinger: "Re: netsec.dll -- anyone heard of?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
