From: "nass"


| How is that?

| You can't get lsass.exe going nuts from outside the PC!
| You can get the protection software defences going Mad in usage but not
| lsass.exe.
| HTH,
| nass
| ---
| http://www.nasstec.co.uk

Sure you can. The same way the Lovsan/Blaster did to RPC/RPCSS via TCP port.

The Sasser worm did it to LSASS via TCP port 445.

Now you have trojans and worms doing it based upon the vulnerability described in MS08-067

--
Dave
http://www.claymania.com/removal-trojan-adware.html
Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp