Results 1 to 3 of 3

Thread: [RESOLVED] Tracking the person who keeps infecting with VBS.LOVELETTER

Thread Tools
Display
- Switch to Linear Mode
- Switch to Hybrid Mode
- Threaded Mode

Threaded View

Previous Post

Next Post

February 6th, 2001, 09:27 PM #3
thirdfey

View Profile

View Forum Posts
Registered User

Join Date

Jun 2000

Location

Pinehurst, NC USA

Posts

1,887
are you auditing your network? if so, the vbs virus goes out and looks for every drive either local or mapped to rename the picture files and such, so setup auditing to track down when files are changed. to make this easier on your security log setup a dummy folder with a bunch of file types that the virus attacks and audit up the but. So the next time you get hit with the virus and gets to the folder in a network drive, you can see in the security log the username that did it, setup a dummy folder in each of your shares if need be. That should do it for you I would think.

------------------
we are number one, all others are number two......or lower

I'd rather be riding my motorcycle
"I gotta have more cowbell, baby" Bruce Dickinson(Christopher Walken)
Reply With Quote

Quick Navigation Spyware & Antivirus - Security Top

« Previous Thread | Next Thread »

Bookmarks

Bookmarks

Posting Permissions

You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
[VIDEO] code is On
HTML code is Off

All times are GMT -5. The time now is 02:46 AM.