Security Basics mailing list archives
RE: Question for all
From: "Glenn Pearl" <glennp () datasync com>
Date: Mon, 4 Aug 2003 10:20:46 -0500
I have found Mike Lin's "Startup Control Panel" applet to be indispensable for controlling 95% of startup applications. It runs on any Windows OS, showing startup folders and registry entries. It does not show services on any NT-based system (NT, 2K, XP), but does show services on 9x. Get it here, and toss Mike a few bucks. He's working his way through MIT, although his job at IBM is helping, I'm sure. www.mlin.net Check out some of his other utilities, too. Regards, Glenn Pearl
-----Original Message----- From: Bob Walker [mailto:bobwalker8 () comcast net] Sent: Sunday, August 03, 2003 11:54 PM To: 'KoRe MeLtDoWn'; Jeffrey.Flory2 () LACKLAND AF MIL;
security-basics () securityfocus com;
incidents () securityfocus com Subject: RE: Question for all Hamish While I am a huge fan of the msconfig utility in windows machines, it doesn't work in win2k. Doesn't even exist. My advice would be to go the safe mode route, as you suggested. Another possible avenue (for advanced users only though), would be to go to administrative tools, computer management, and remove the offending service there. Bob -----Original Message----- From: KoRe MeLtDoWn [mailto:koremeltdown () hotmail com] Sent: Friday, August 01, 2003 2:44 PM To: Jeffrey.Flory2 () LACKLAND AF MIL; security-basics () securityfocus com; incidents () securityfocus com Subject: Re: Question for all Hi there Jeffery, Backdoor.Trojan is a generec term used by norton to identify any
trojan
or suspected trojan that does not have specific information on their dat database, but contains trojan-like signatures. Have you tried booting into safe mode and removing the trojan? Also,
try
clicking your start button, then run and type msconfig. Take the
trojan
out of the "bootup/Startup (one of the two)" tab. The reason you delete it in safemode is because windows only starts essential services while in safe mode - it will not start your trojan horse unless it is REALLY smart, which im sure it isn't... Give that a go, and good luck, Hamish Stanaway
--------------------------------------------------------------------------- ----------------------------------------------------------------------------
Current thread:
- Re: Question for all, (continued)
- Re: Question for all Shaun Colley (Aug 01)
- RE: Question for all Cameron Losco (Aug 01)
- Re: Question for all Morton B. Maser (Aug 05)
- Re: Question for all Nick Bennett (Aug 06)
- Backdoor.Trojan and payload.dat Lee Seidman (Aug 06)
- Re: Question for all stephen at unix dot za dot net (Aug 08)
- RE: Question for all Jason Armstrong (Aug 01)
- RE: Question for all McCleskey, David (Aug 01)
- Re: Question for all KoRe MeLtDoWn (Aug 01)
- RE: Question for all Bob Walker (Aug 04)
- RE: Question for all Glenn Pearl (Aug 04)
- RE: Question for all Bob Walker (Aug 04)
- Re: Question for all Chris Berry (Aug 01)
- Re: Question for all Brad Mills (Aug 04)
- RE: Question for all George Peek (Aug 04)
- RE: Question for all Chris Berry (Aug 04)
- Re: Question for all Ansgar Wiechers (Aug 06)
- RE: Question for all Ramsinghani, Aashish (EM, GECIS) (Aug 06)
- RE: Question for all Ricardo Ceballos (Aug 06)