G
Guest
Hi,
Ive noticed that a lot of files in my system 32 folder are showing up as a
white icon as if its unrecognised.
The other problem I have noticed is that my sytem restore is not working
either.
Is there anyway I can use system restore via command promt or would I need
to do a full re-install of windows xp.
I only did this 2 weeks ago due to what I think was a virus.
I have looked up information on the microsoft website and Im thinking that I
have the sasser worm because I have lsass.exe in my task manager and it will
not allow me to stop the process.
I have tried the information on the jupiter jones website and downloaded the
sasser removal tool from microsoft but it says Im not infected.
I have also ran my virus scanner and have tried a few of the online ones but
they all say Im not infected.
I have also had a program try to access the internet called spoolsvc.exe,
when I first allowed it it stopped all connections to the internet but I have
blocked it now.
I also looked for the file (spoolsvc.exe) in the folder my firewall reports
to be C/windows/system32 but the only file I have in there is spoolsv.exe
which again is a white icon which looks to be unrecognised along with about
50 other files which are showing the same icon.
I have windows sp 1 & 2 and have all the updates that they have posted.
Could the framework update have anything to do with this problem?
Sorry this is so long but Im just trying to provide as much info as possible.
Thanks very much for any help,
Michael Neath
Ive noticed that a lot of files in my system 32 folder are showing up as a
white icon as if its unrecognised.
The other problem I have noticed is that my sytem restore is not working
either.
Is there anyway I can use system restore via command promt or would I need
to do a full re-install of windows xp.
I only did this 2 weeks ago due to what I think was a virus.
I have looked up information on the microsoft website and Im thinking that I
have the sasser worm because I have lsass.exe in my task manager and it will
not allow me to stop the process.
I have tried the information on the jupiter jones website and downloaded the
sasser removal tool from microsoft but it says Im not infected.
I have also ran my virus scanner and have tried a few of the online ones but
they all say Im not infected.
I have also had a program try to access the internet called spoolsvc.exe,
when I first allowed it it stopped all connections to the internet but I have
blocked it now.
I also looked for the file (spoolsvc.exe) in the folder my firewall reports
to be C/windows/system32 but the only file I have in there is spoolsv.exe
which again is a white icon which looks to be unrecognised along with about
50 other files which are showing the same icon.
I have windows sp 1 & 2 and have all the updates that they have posted.
Could the framework update have anything to do with this problem?
Sorry this is so long but Im just trying to provide as much info as possible.
Thanks very much for any help,
Michael Neath