From: "nass"
| How is that?
| You can't get lsass.exe going nuts from outside the PC!
| You can get the protection software defences going Mad in usage but not
| lsass.exe.
| HTH,
| nass
| ---
|
http://www.nasstec.co.uk
Sure you can. The same way the Lovsan/Blaster did to RPC/RPCSS via TCP port.
The Sasser worm did it to LSASS via TCP port 445.
Now you have trojans and worms doing it based upon the vulnerability described in MS08-067
--
Dave
http://www.claymania.com/removal-trojan-adware.html
Multi-AV -
http://www.pctipp.ch/downloads/dl/35905.asp