Blog - Rbot.aja worm exterminated

Serrated Software

| Login

July 23, 2008

Home

Blog

Blog

Minimize

You must be logged in and have permission to create or edit a blog.

Search

Rbot.aja worm exterminated

Minimize

Location: Blogs Living in Software Development
Posted by: host	2/27/2007 10:41 PM
I put in a support call with my host and I just got a cheery response. Unfortunately, your server has already been compromised. We found WINNT/system32/rdriv.sys. The rdriv.sys is the Rbot.aja worm. The only recourse, at this point, is to reload your operating system on a new primary hard drive. The virus attacks a weakness in the SMTP service in older versions of Mailenable. The search has come to an end and the misbehaving of applications will cease.

Permalink \| Trackback

Comments (0) Add Comment

Your name:
Title:
Comment:

Add Comment Cancel

Blog

Minimize

	View All Recent Entries
	Living in Software Development

Blog

Minimize

Keywords

Phrase

Blog

Minimize

Archive

July 2008

Sun

Mon

Tue

Wed

Thu

Fri

Sat

Monthly

June, 2008

May, 2008

December, 2007

November, 2007

September, 2007

August, 2007

April, 2007

February, 2007

January, 2007

December, 2006

November, 2006

October, 2006

July, 2006