Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

Masive Virus attack has left server inaccessible

Posted on 2006-07-21
5
Medium Priority
?
203 Views
Last Modified: 2010-04-18
Hello all,
  I recently was asked to look into why a Windows Server Standard Edition 2003 would not complete the logon process.  After a few questions about leading up to this situation is I was told that they were infected by at least 75 downloader and trojan type viruses.  I was able to load Norton AV 10. and clean most of them however I got stuck with the userinit.exe failed to load.  I followed several papers pertaining to this fix yet none of them work.  The server would still boot to safe mode however,  was unable to clear userinit.exe issue.  Ran highjackthis and removed several definite issues but after the re-boot still not loading in full mode.  also, now safe mode does not load hangs after login.  Resturant is in a pickle.  I am extremly close to giving up and doing a complete format and rebuild.  Any ideas?
Thanks,
Matt
0
Comment
Question by:Claimtrust
  • 2
4 Comments
 
LVL 48

Expert Comment

by:Jay_Jay70
ID: 17158386
try performing a repair install straight off the disk, is replaces all your system files and gives you a clean install without data loss
0
 

Author Comment

by:Claimtrust
ID: 17158449
JAy Jay70,
Thanks for the info, I was already thinking that as well.  Going back tonight at 11:00 and will perfom this task.  Will post results.
0
 

Author Comment

by:Claimtrust
ID: 17160335
Ok All,
  It is now Saturday morning @ 11:00 I just woke up after 3 hours of sleep and after 7 straight hours of battling this Virus attack from you know were. I did  attempt to go with Jay Jay70's suggestion as I also thought of that however, the install could not even detect a previous version of windows installed.  My only choice was to do a complete format and re-instsall of both the 2003 Server OS and the resturant software.  Clients are happy and I was also able to keep there last 4 days of data that they were unable to print because of there issue.

No points are to be awarded and this question needs to be closed.
Thanks,
Claimtrust-Matt
0
 

Accepted Solution

by:
CetusMOD earned 0 total points
ID: 17631260
PAQed with points refunded (500)

CetusMOD
Community Support Moderator
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

On July 14th 2015, Windows Server 2003 will become End of Support, leaving hundreds of thousands of servers around the world that still run this 12 year old operating system vulnerable and potentially out of compliance in many organisations around t…
A quick step-by-step overview of installing and configuring Carbonite Server Backup.
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an anti-spam), the admin…
As many of you are aware about Scanpst.exe utility which is owned by Microsoft itself to repair inaccessible or damaged PST files, but the question is do you really think Scanpst.exe is capable to repair all sorts of PST related corruption issues?

571 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question