Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1476
  • Last Modified:

How remove w32.netsky.p virus

I have Win2k server infected with w32.netsky.p virus.Virus definitions for symantec gets updated daily .  
 I have already run Fixnetsky tool to remove this virus .It takes effect for certain moment but next day virus strikes again.
 please give some solutuion to remove this virus.
0
dnitin
Asked:
dnitin
3 Solutions
 
CrazyOneCommented:
Use one of these and...

MSCONFIG for Win 2000
http://www.insideproject.com/showguide.cfm?guideid=31
http://www.insideproject.com/downloads/msconfig2k/msconfig.zip

StartupCop
http://www.pcmag.com/article2/0,4149,2173,00.asp

AutoRuns
http://www.sysinternals.com/ntw2k/source/misc.shtml#autoruns

Startup Control Panel
http://www.mlin.net/StartupCPL.shtml
and
StartupMonitor
http://www.mlin.net/StartupMonitor.shtml


Try this

Sart > Run msconfig
Click on the tab marked "Startup"
Click the Disable All button.

If the problem no longer persists then one of the items in the starup is the culprit you just need to track it down.
0
 
jvuzCommented:
Do acheck with Stinger:

http://vil.nai.com/vil/stinger/
0
 
webtransCommented:
well my 2 cents advice would be to do the following

PLEASE DISABLE THE SYSTEM restore first
empty recycle bin
check ur email DB with something like avp from www.avp.ch (symantec does not actually open the email DB file)
and download started from http://www.download.com/StartEd/3000-2094-10211870.html?tag=lst-0-1
i guess those combined should do more than solving ur problem
urs
0
Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

 
CrazyOneCommented:
UMMM webtrans Syetem Restore does not exist on Win2000 and yes Norton does scan the DB Files.
0
 
webtransCommented:
well
norton can not tell u which email have the virus as far as i know
0
 
CrazyOneCommented:
>>>norton can not tell u which email have the virus as far as i know

IT dependends on what version. 2003 and 2004 can.
0
 
webtransCommented:
well i have 2003
it can tell for incoming emails
not the ones that was recieved before
i mean scan the pst file
or the dbx file
0
 
CrazyOneCommented:
Yeah if scanning from Norton on all files but it does offer the option to scan incoming mail and you can set priorties in Norton to tell if what type of files you want it to scan.
0
 
acmpCommented:
Hi,

Netsky.p spreads via email and P2P apps, I'd suggest you check the server for any 'unwanted' apps like Kazaa or BearShare.

If the server is not used for viewing emails then I don't think it is at risk from email infection as the server will not actually open any attachments.

The server may also be infected by another PC on your network.  I would suggest your run stinger on all your PC's.  you can add it to your login script if necessary. Get stinger from http://vil.nai.com/vil/stinger.


To run stinger use <code>\\server\share\stingerxxx /GO /Log /Silent</code>

best of luck

acmp<><
0
 
gemchestCommented:
Hi dnitin,

Since you've removed and it keeps coming back, perhaps you've not patched your system properly.

http://www.microsoft.com/technet/security/bulletin/MS01-020.mspx

Anyway if you're enabling sharing of files, maybe you can disable with your network forawhile so you can find the source that keep attacking your network server. Also, off all P2P shares as this virus will propagate thru these networks.
Patch up all the computers within the network should be able to curb the spreading and it should be fine. Lastly, set your corp Norton AV to detect all probable emails with virus.

Cheers,
Luis
0

Featured Post

Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now