MAP
May 2nd 04, 07:33 PM
>-----Original Message-----
>
>Ok, I'm a little confused here.
>
>WinXP/pro.
>
>I spent about 5 hours struggling with one of the GOABOT
virus/worm
>variants, and finally WON, but only to accidentally
delete outright one
>of the infected files.
>
>But I'm confused as to what that file is doing in WinXP
in the first
>place.
>
> C:\Windows\System32\microsoft.exe
>
>It was labeled by my "Startup Control Panel" (freeware)
as part of the
>software updating mechanism.
>
>But on google, all I see are references to it being used
in
>Win98/98SE/ME as some sort of matching mechanism between
file types and
>applications.
>
>Q's:
>
>1. Besides asking here, is there a way to find out
whether or not the
>file is part of XP, or just something that the virus
dropped in to look
>like it belonged?
>
>and
>
>2. Suppose it /is/ a sensible thing to keep. Is there a
place within
>microsoft to download any odds and ends file that is
missing on my
>system?
>
>THANKS!
>
>
>
>--
>While using is ok, actually /writing/ free software is a
disingenuous
>activity. You can afford to write software for free
only because of
>someone else somewhere actually paying for it. Just say
no.
>
>
>.
>
microsoft.exe is a rat,"Remote Administration Tool" Which
is not good. Someone may be able to control your computer
and do whatever they wish to it.There are more iyems you
need to delete other than microsoft.exe.
Stop these running processes,
microsoft.exe
microsoftz.exe
pitfall armlock.exe
pitfall.exe
psa.exe
Remove these files with explorer"search for them if need
be"
manual.txt
microsoft.exe
microsoftz.exe
pitfall armlock.exe
pitfall.exe
psa.exe
What is a RAT
RAT: (Remote Administration Tool) A Trojan that when run,
provides an attacker with the capability of remotely
controlling a machine via a "client" in the attacker's
machine, and a "server" in the victim's machine
>
>Ok, I'm a little confused here.
>
>WinXP/pro.
>
>I spent about 5 hours struggling with one of the GOABOT
virus/worm
>variants, and finally WON, but only to accidentally
delete outright one
>of the infected files.
>
>But I'm confused as to what that file is doing in WinXP
in the first
>place.
>
> C:\Windows\System32\microsoft.exe
>
>It was labeled by my "Startup Control Panel" (freeware)
as part of the
>software updating mechanism.
>
>But on google, all I see are references to it being used
in
>Win98/98SE/ME as some sort of matching mechanism between
file types and
>applications.
>
>Q's:
>
>1. Besides asking here, is there a way to find out
whether or not the
>file is part of XP, or just something that the virus
dropped in to look
>like it belonged?
>
>and
>
>2. Suppose it /is/ a sensible thing to keep. Is there a
place within
>microsoft to download any odds and ends file that is
missing on my
>system?
>
>THANKS!
>
>
>
>--
>While using is ok, actually /writing/ free software is a
disingenuous
>activity. You can afford to write software for free
only because of
>someone else somewhere actually paying for it. Just say
no.
>
>
>.
>
microsoft.exe is a rat,"Remote Administration Tool" Which
is not good. Someone may be able to control your computer
and do whatever they wish to it.There are more iyems you
need to delete other than microsoft.exe.
Stop these running processes,
microsoft.exe
microsoftz.exe
pitfall armlock.exe
pitfall.exe
psa.exe
Remove these files with explorer"search for them if need
be"
manual.txt
microsoft.exe
microsoftz.exe
pitfall armlock.exe
pitfall.exe
psa.exe
What is a RAT
RAT: (Remote Administration Tool) A Trojan that when run,
provides an attacker with the capability of remotely
controlling a machine via a "client" in the attacker's
machine, and a "server" in the victim's machine