Solved

Masive Virus attack has left server inaccessible

Posted on 2006-07-21
5
197 Views
Last Modified: 2010-04-18
Hello all,
  I recently was asked to look into why a Windows Server Standard Edition 2003 would not complete the logon process.  After a few questions about leading up to this situation is I was told that they were infected by at least 75 downloader and trojan type viruses.  I was able to load Norton AV 10. and clean most of them however I got stuck with the userinit.exe failed to load.  I followed several papers pertaining to this fix yet none of them work.  The server would still boot to safe mode however,  was unable to clear userinit.exe issue.  Ran highjackthis and removed several definite issues but after the re-boot still not loading in full mode.  also, now safe mode does not load hangs after login.  Resturant is in a pickle.  I am extremly close to giving up and doing a complete format and rebuild.  Any ideas?
Thanks,
Matt
0
Comment
Question by:Claimtrust
  • 2
5 Comments
 
LVL 48

Expert Comment

by:Jay_Jay70
ID: 17158386
try performing a repair install straight off the disk, is replaces all your system files and gives you a clean install without data loss
0
 

Author Comment

by:Claimtrust
ID: 17158449
JAy Jay70,
Thanks for the info, I was already thinking that as well.  Going back tonight at 11:00 and will perfom this task.  Will post results.
0
 

Author Comment

by:Claimtrust
ID: 17160335
Ok All,
  It is now Saturday morning @ 11:00 I just woke up after 3 hours of sleep and after 7 straight hours of battling this Virus attack from you know were. I did  attempt to go with Jay Jay70's suggestion as I also thought of that however, the install could not even detect a previous version of windows installed.  My only choice was to do a complete format and re-instsall of both the 2003 Server OS and the resturant software.  Clients are happy and I was also able to keep there last 4 days of data that they were unable to print because of there issue.

No points are to be awarded and this question needs to be closed.
Thanks,
Claimtrust-Matt
0
 

Accepted Solution

by:
CetusMOD earned 0 total points
ID: 17631260
PAQed with points refunded (500)

CetusMOD
Community Support Moderator
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

by Batuhan Cetin In this article I will be guiding through the process of removing a failed DC metadata from Active Directory (hereafter, AD) using the ntdsutil tool in a Windows Server 2003 environment. These steps are not necessary in a Win…
A quick step-by-step overview of installing and configuring Carbonite Server Backup.
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…
In a recent question (https://www.experts-exchange.com/questions/29004105/Run-AutoHotkey-script-directly-from-Notepad.html) here at Experts Exchange, a member asked how to run an AutoHotkey script (.AHK) directly from Notepad++ (aka NPP). This video…

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question