MobilePCDR
asked on
Infection or Bug?
Hello,
I have a server running Server 2003 Standard that I manage. The company also has a person who handles their rental software. Ever since he took over, setup SQL on the server and has had login rights, the server has had two virus infections. Now it's happening again, and what usually tips me off is there will be tons of cmd.exe in the task manager, and a cmd.exe error followed by a cacls.exe error that appears repeatedly. Evertime I have done the clean, it pulls files out of the SQL directories. I am starting to have my doubts as to whether or not it's truly been infected, or if SQL is causing a bug and maybe the anti-virus (Avast) is seeing SQL files as being suspicious. Any help is greatly appreciated!
Anthony
I have a server running Server 2003 Standard that I manage. The company also has a person who handles their rental software. Ever since he took over, setup SQL on the server and has had login rights, the server has had two virus infections. Now it's happening again, and what usually tips me off is there will be tons of cmd.exe in the task manager, and a cmd.exe error followed by a cacls.exe error that appears repeatedly. Evertime I have done the clean, it pulls files out of the SQL directories. I am starting to have my doubts as to whether or not it's truly been infected, or if SQL is causing a bug and maybe the anti-virus (Avast) is seeing SQL files as being suspicious. Any help is greatly appreciated!
Anthony
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
I hope all is well with this guy...MobilePCDR. However, I would like to know how it all turned out. I've been in his/her position and that's why I offered my comments.
Naerwen
Naerwen
Configure Avast to skip the SQL directories where it usually finds viruses
Then scan your system with a different virus scanner, e.g. Trend micro online virusscanner:
http://housecall.trendmicro.com/