[Snort-users] Infected? Help Me Find Out!

Jason Withrow jwithrow at ...422...
Tue Sep 18 23:01:02 EDT 2001

It appears I was not fully infected.
Perhaps due to the fact that I unmapped ida's and idq's and no folders
had execute permissions?
All I had was a crap load of weird file in my scripts folder and I also
had the admin.dll on c and d.
None of the other files or regKeys were found, and a look at the logs
shows no 200 status returns.
- J
-----Original Message-----
From: snort-users-admin at lists.sourceforge.net
[mailto:snort-users-admin at lists.sourceforge.net] On Behalf Of Greg
Sent: Tuesday, September 18, 2001 11:36 PM
To: snort-users at lists.sourceforge.net
Subject: RE: [Snort-users] Infected? Help Me Find Out!
Possibly true, but not much help. 
-----Original Message----- 
From: Brian [mailto:bmc at ...950...] 
Sent: Wednesday, 19 September 2001 12:50 PM 
To: Jason Withrow 
Cc: snort-users at lists.sourceforge.net 
Subject: Re: [Snort-users] Infected? Help Me Find Out! 
According to Jason Withrow: 
> Anyone know the complete removal process? I think I got it all, but
> knows. 
Unplug network cable.  
Plug in network cable. 
Snort-users mailing list 
Snort-users at lists.sourceforge.net 
Go to this URL to change user options or unsubscribe: 
Snort-users list archive: 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20010918/35493012/attachment.html>

More information about the Snort-users mailing list