troubleshooting Question

W32.Downadup

Avatar of Stuart Oram
Stuart OramFlag for United Kingdom of Great Britain and Northern Ireland asked on
VulnerabilitiesWindows Server 2003
6 Comments1 Solution649 ViewsLast Modified:
Various machines infected with W32.Downadup (seems to have spread over network). SAV10 is deleting instances of the files it finds, but they keep reappearing, so the root cause is still around. Run Malwarebytes Anti-Malware as suggested on another thread & it has found machine to be clean. Followed Symantec's removal instructions & Used a F-Secure removal tool that didn't find any instances.

Firewalls indicating the malware isn't trying to make any outbound connections, so am OK in that sense at the moment, but would like to find & remove root cause. Any ideas?

I've used SAV10, Windows Defender, Malwarebytes, Ad-Aware......
Join the community to see this answer!
Join our exclusive community to see this answer & millions of others.
Unlock 1 Answer and 6 Comments.
Join the Community
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 6 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros