|
Posted by =?Utf-8?B?SGFtbWV0dA==?= on January 23, 2007, 2:56 am
If you were Registered and logged in, you could reply and use other advanced thread options
--
Ahmed Athif
(MCSA:Security, MCSE:Security, CCNA,CCNP,CCSP, Security+)
"David H. Lipman" wrote:
>
> | I booted the server from something called Winternal ERD Commander 2005. I can
> | get access to windows file system now.
> |
> | I scanned the server with Nod32 on-demand scanner. Every executable file in
> | the windows directory and sub directories were infected with Win32/Parite.B
> |
> | when i try to log on to Windows, the computer automatically logs. I tried to
> | log on from Safe Mode as well, but that didn't work.
> |
> | Any advice will be highly appreciated.
> |
> | Thank you
> |
> | Ahmed Athif
> | (MCSA:Security, MCSE:Security, CCNA,CCNP,CCSP, Security+)
> | --------------------------------------
> |
>
> The Parite is a True file infecting virus and spreads quite well. In fact, I
have actually
> seen Trojans infected with it.
>
> Someone wasn't using the server as a server, They were using it as a
workstation and didn't
> practice Safe Hex. You have an issue here that needs to be resolved ASAP.
>
> Follow Malke's advice !
>
> --
> Dave
> http://www.claymania.com/removal-trojan-adware.html
> http://www.ik-cs.com/got-a-virus.htm
>
>
>
Hi Dave and Malke,
Thank you very much for your advice. I have restored the server from backups
1 month old. And there was a serious flaw on the network, which I've been
able to track and fix. Once again, thank you
Regards,
| 
XML site map