Today's patches killed TCP/IP

Archived from groups: microsoft.public.win2000.general,microsoft.public.windowsupdate,microsoft.public.win2000.networking (More info?)

I have a server farm of about 50 servers (2k and 2k3). On 2 of my 2K
servers, todays updates killed TCP/IP (I am assuming it is Security Bulletin
MS05-019)

Both of these servers have QLogic HBAs installed. I was able to get one
back up and running by uninstalling TCP/IP, uninstalling MS05-019, then
re-installing TCP/IP. One is still dead.

I am afraid of installing this patch on my other servers with HBAs for fear
of killing them.

Anyone?
20 answers Last reply
More about today patches killed
  1. Archived from groups: microsoft.public.win2000.general,microsoft.public.windowsupdate,microsoft.public.win2000.networking (More info?)

    Support for security updates is always free. Call them at 1-866-PCSAFETY

    http://www.microsoft.com/technet/security/bulletin/MS05-019.mspx

    --
    Regards,

    Dave Patrick ....Please no email replies - reply in newsgroup.
    Microsoft Certified Professional
    Microsoft MVP [Windows]
    http://www.microsoft.com/protect

    "Blake" wrote:
    |I have a server farm of about 50 servers (2k and 2k3). On 2 of my 2K
    | servers, todays updates killed TCP/IP (I am assuming it is Security
    Bulletin
    | MS05-019)
    |
    | Both of these servers have QLogic HBAs installed. I was able to get one
    | back up and running by uninstalling TCP/IP, uninstalling MS05-019, then
    | re-installing TCP/IP. One is still dead.
    |
    | I am afraid of installing this patch on my other servers with HBAs for
    fear
    | of killing them.
    |
    | Anyone?
    |
    |
  2. Archived from groups: microsoft.public.win2000.general,microsoft.public.windowsupdate,microsoft.public.win2000.networking (More info?)

    Their support isn't free for server OSes.

    We called today and their first question was ' how would you like to pay for
    this call?'

    :(

    "Dave Patrick" <mail@Nospam.DSPatrick.com> wrote in message
    news:uSQOpSEQFHA.2356@TK2MSFTNGP14.phx.gbl...
    > Support for security updates is always free. Call them at 1-866-PCSAFETY
    >
    > http://www.microsoft.com/technet/security/bulletin/MS05-019.mspx
    >
    > --
    > Regards,
    >
    > Dave Patrick ....Please no email replies - reply in newsgroup.
    > Microsoft Certified Professional
    > Microsoft MVP [Windows]
    > http://www.microsoft.com/protect
    >
    > "Blake" wrote:
    > |I have a server farm of about 50 servers (2k and 2k3). On 2 of my 2K
    > | servers, todays updates killed TCP/IP (I am assuming it is Security
    > Bulletin
    > | MS05-019)
    > |
    > | Both of these servers have QLogic HBAs installed. I was able to get one
    > | back up and running by uninstalling TCP/IP, uninstalling MS05-019, then
    > | re-installing TCP/IP. One is still dead.
    > |
    > | I am afraid of installing this patch on my other servers with HBAs for
    > fear
    > | of killing them.
    > |
    > | Anyone?
    > |
    > |
    >
    >
  3. Archived from groups: microsoft.public.win2000.general,microsoft.public.windowsupdate,microsoft.public.win2000.networking (More info?)

    It makes no difference. Did you mention the article and purpose of the call?

    --
    Regards,

    Dave Patrick ....Please no email replies - reply in newsgroup.
    Microsoft Certified Professional
    Microsoft MVP [Windows]
    http://www.microsoft.com/protect

    "Blake" wrote:
    | Their support isn't free for server OSes.
    |
    | We called today and their first question was ' how would you like to pay
    for
    | this call?'
    |
    | :(
  4. Archived from groups: microsoft.public.win2000.general,microsoft.public.windowsupdate,microsoft.public.win2000.networking (More info?)

    Small detail:
    the majority of Windows licences are sold outside the US-Canada.

    I bought one of those licences overhere in Belgium,
    at a much higher price than a US customer would pay.

    The last time I needed support for a security update
    I spent +30 minutes on a regular Belgian toll-line to Brussels.

    MS simply does not offer toll-free support lines
    for patches outside the USA/CAN

    I even had some trouble convincing the Dutch speaking MS operator that I did
    not
    need a credit card to get help with the security patch that
    made my XP unbootable.


    "Dave Patrick" <mail@Nospam.DSPatrick.com> schreef in bericht
    news:uSQOpSEQFHA.2356@TK2MSFTNGP14.phx.gbl...
    > Support for security updates is always free. Call them at 1-866-PCSAFETY
    >
    > http://www.microsoft.com/technet/security/bulletin/MS05-019.mspx
    >
    > --
    > Regards,
    >
    > Dave Patrick ....Please no email replies - reply in newsgroup.
    > Microsoft Certified Professional
    > Microsoft MVP [Windows]
    > http://www.microsoft.com/protect
    >
    > "Blake" wrote:
    > |I have a server farm of about 50 servers (2k and 2k3). On 2 of my 2K
    > | servers, todays updates killed TCP/IP (I am assuming it is Security
    > Bulletin
    > | MS05-019)
    > |
    > | Both of these servers have QLogic HBAs installed. I was able to get one
    > | back up and running by uninstalling TCP/IP, uninstalling MS05-019, then
    > | re-installing TCP/IP. One is still dead.
    > |
    > | I am afraid of installing this patch on my other servers with HBAs for
    > fear
    > | of killing them.
    > |
    > | Anyone?
    > |
    > |
    >
    >
  5. Archived from groups: microsoft.public.win2000.general,microsoft.public.windowsupdate,microsoft.public.win2000.networking (More info?)

    The way it normally works in this regard is you pay first and if the issue is determined to be from a security update then they re-imburse. That doesn't happen very often.

    --
    George Hester
    _________________________________
    "Dave Patrick" <mail@Nospam.DSPatrick.com> wrote in message news:eJr9JHHQFHA.2580@TK2MSFTNGP10.phx.gbl...
    > It makes no difference. Did you mention the article and purpose of the call?
    >
    > --
    > Regards,
    >
    > Dave Patrick ....Please no email replies - reply in newsgroup.
    > Microsoft Certified Professional
    > Microsoft MVP [Windows]
    > http://www.microsoft.com/protect
    >
    > "Blake" wrote:
    > | Their support isn't free for server OSes.
    > |
    > | We called today and their first question was ' how would you like to pay
    > for
    > | this call?'
    > |
    > | :(
    >
    >
  6. Archived from groups: microsoft.public.win2000.general,microsoft.public.windowsupdate,microsoft.public.win2000.networking (More info?)

    Actually, no. Calls to the security number are free, always have been and
    always will be. If you call the regular support lines then what you suggest
    is what happens.

    --
    Richard G. Harper [MVP Shell/User] rgharper@gmail.com
    * In fond memory ... Alex, you shall be sorely missed
    * http://www.aumha.org/alex.htm


    "George Hester" <hesterloli@hotmail.com> wrote in message
    news:OG0l7RqQFHA.248@TK2MSFTNGP15.phx.gbl...
    The way it normally works in this regard is you pay first and if the issue
    is determined to be from a security update then they re-imburse. That
    doesn't happen very often.

    --
    George Hester
    _________________________________
    "Dave Patrick" <mail@Nospam.DSPatrick.com> wrote in message
    news:eJr9JHHQFHA.2580@TK2MSFTNGP10.phx.gbl...
    > It makes no difference. Did you mention the article and purpose of the
    > call?
    >
    > --
    > Regards,
    >
    > Dave Patrick ....Please no email replies - reply in newsgroup.
    > Microsoft Certified Professional
    > Microsoft MVP [Windows]
    > http://www.microsoft.com/protect
    >
    > "Blake" wrote:
    > | Their support isn't free for server OSes.
    > |
    > | We called today and their first question was ' how would you like to pay
    > for
    > | this call?'
    > |
    > | :(
    >
    >
  7. Archived from groups: microsoft.public.win2000.general,microsoft.public.windowsupdate,microsoft.public.win2000.networking (More info?)

    The calls are free they always are. The support costs $

    --
    George Hester
    _________________________________
    "Richard G. Harper" <rgharper@email.com> wrote in message news:un1z2PsQFHA.3596@TK2MSFTNGP15.phx.gbl...
    > Actually, no. Calls to the security number are free, always have been and
    > always will be. If you call the regular support lines then what you suggest
    > is what happens.
    >
    > --
    > Richard G. Harper [MVP Shell/User] rgharper@gmail.com
    > * In fond memory ... Alex, you shall be sorely missed
    > * http://www.aumha.org/alex.htm
    >
    >
    >
    > "George Hester" <hesterloli@hotmail.com> wrote in message
    > news:OG0l7RqQFHA.248@TK2MSFTNGP15.phx.gbl...
    > The way it normally works in this regard is you pay first and if the issue
    > is determined to be from a security update then they re-imburse. That
    > doesn't happen very often.
    >
    > --
    > George Hester
    > _________________________________
    > "Dave Patrick" <mail@Nospam.DSPatrick.com> wrote in message
    > news:eJr9JHHQFHA.2580@TK2MSFTNGP10.phx.gbl...
    > > It makes no difference. Did you mention the article and purpose of the
    > > call?
    > >
    > > --
    > > Regards,
    > >
    > > Dave Patrick ....Please no email replies - reply in newsgroup.
    > > Microsoft Certified Professional
    > > Microsoft MVP [Windows]
    > > http://www.microsoft.com/protect
    > >
    > > "Blake" wrote:
    > > | Their support isn't free for server OSes.
    > > |
    > > | We called today and their first question was ' how would you like to pay
    > > for
    > > | this call?'
    > > |
    > > | :(
    > >
    > >
    >
    >
  8. Archived from groups: microsoft.public.win2000.general,microsoft.public.windowsupdate,microsoft.public.win2000.networking (More info?)

    Sorry, you're still wrong.

    --
    Richard G. Harper [MVP Shell/User] rgharper@gmail.com
    * In fond memory ... Alex, you shall be sorely missed
    * http://www.aumha.org/alex.htm


    "George Hester" <hesterloli@hotmail.com> wrote in message
    news:OQDt3msQFHA.2736@TK2MSFTNGP09.phx.gbl...
    The calls are free they always are. The support costs $

    --
    George Hester
    _________________________________
    "Richard G. Harper" <rgharper@email.com> wrote in message
    news:un1z2PsQFHA.3596@TK2MSFTNGP15.phx.gbl...
    > Actually, no. Calls to the security number are free, always have been and
    > always will be. If you call the regular support lines then what you
    > suggest
    > is what happens.
    >
    > --
    > Richard G. Harper [MVP Shell/User] rgharper@gmail.com
    > * In fond memory ... Alex, you shall be sorely missed
    > * http://www.aumha.org/alex.htm
    >
    >
    >
    > "George Hester" <hesterloli@hotmail.com> wrote in message
    > news:OG0l7RqQFHA.248@TK2MSFTNGP15.phx.gbl...
    > The way it normally works in this regard is you pay first and if the issue
    > is determined to be from a security update then they re-imburse. That
    > doesn't happen very often.
    >
    > --
    > George Hester
    > _________________________________
    > "Dave Patrick" <mail@Nospam.DSPatrick.com> wrote in message
    > news:eJr9JHHQFHA.2580@TK2MSFTNGP10.phx.gbl...
    > > It makes no difference. Did you mention the article and purpose of the
    > > call?
    > >
    > > --
    > > Regards,
    > >
    > > Dave Patrick ....Please no email replies - reply in newsgroup.
    > > Microsoft Certified Professional
    > > Microsoft MVP [Windows]
    > > http://www.microsoft.com/protect
    > >
    > > "Blake" wrote:
    > > | Their support isn't free for server OSes.
    > > |
    > > | We called today and their first question was ' how would you like to
    > > pay
    > > for
    > > | this call?'
    > > |
    > > | :(
    > >
    > >
    >
    >
  9. Archived from groups: microsoft.public.win2000.general,microsoft.public.windowsupdate,microsoft.public.win2000.networking (More info?)

    Ditto el wrongo.

    --
    Regards,

    Dave Patrick ....Please no email replies - reply in newsgroup.
    Microsoft Certified Professional
    Microsoft MVP [Windows]
    http://www.microsoft.com/protect

    "George Hester" wrote:
    The calls are free they always are. The support costs $

    --
    George Hester
  10. Archived from groups: microsoft.public.win2000.general,microsoft.public.windowsupdate,microsoft.public.win2000.networking (More info?)

    Microsoft has 1-800 numbers many of them. I don't think the op can access them though. So although you may think I am wrong believe it when push comes to shove what I said will happen. Microsoft has first to determine the issue is a result of a security fix and when they do that the Credit Card will be reimbursed. But note that can take months.

    --
    George Hester
    _________________________________
    "George Hester" <hesterloli@hotmail.com> wrote in message news:OQDt3msQFHA.2736@TK2MSFTNGP09.phx.gbl...
    The calls are free they always are. The support costs $

    --
    George Hester
    _________________________________
    "Richard G. Harper" <rgharper@email.com> wrote in message news:un1z2PsQFHA.3596@TK2MSFTNGP15.phx.gbl...
    > Actually, no. Calls to the security number are free, always have been and
    > always will be. If you call the regular support lines then what you suggest
    > is what happens.
    >
    > --
    > Richard G. Harper [MVP Shell/User] rgharper@gmail.com
    > * In fond memory ... Alex, you shall be sorely missed
    > * http://www.aumha.org/alex.htm
    >
    >
    >
    > "George Hester" <hesterloli@hotmail.com> wrote in message
    > news:OG0l7RqQFHA.248@TK2MSFTNGP15.phx.gbl...
    > The way it normally works in this regard is you pay first and if the issue
    > is determined to be from a security update then they re-imburse. That
    > doesn't happen very often.
    >
    > --
    > George Hester
    > _________________________________
    > "Dave Patrick" <mail@Nospam.DSPatrick.com> wrote in message
    > news:eJr9JHHQFHA.2580@TK2MSFTNGP10.phx.gbl...
    > > It makes no difference. Did you mention the article and purpose of the
    > > call?
    > >
    > > --
    > > Regards,
    > >
    > > Dave Patrick ....Please no email replies - reply in newsgroup.
    > > Microsoft Certified Professional
    > > Microsoft MVP [Windows]
    > > http://www.microsoft.com/protect
    > >
    > > "Blake" wrote:
    > > | Their support isn't free for server OSes.
    > > |
    > > | We called today and their first question was ' how would you like to pay
    > > for
    > > | this call?'
    > > |
    > > | :(
    > >
    > >
    >
    >
  11. Archived from groups: microsoft.public.win2000.general,microsoft.public.windowsupdate,microsoft.public.win2000.networking (More info?)

    Quoted from any security bulletin;

    Support:
    Customers in the U.S. and Canada can receive technical support from
    Microsoft Product Support Services at 1-866-PCSAFETY. There is no charge for
    support calls that are associated with security updates.

    International customers can receive support from their local Microsoft
    subsidiaries. There is no charge for support that is associated with
    security updates. For more information about how to contact Microsoft for
    support issues, visit the International Support Web site.

    --
    Regards,

    Dave

    Dave Patrick ....Please no email replies - reply in newsgroup.
    Microsoft Certified Professional
    Microsoft MVP [Windows]
    http://www.microsoft.com/protect

    "George Hester" wrote:
    Microsoft has 1-800 numbers many of them. I don't think the op can access
    them though. So although you may think I am wrong believe it when push
    comes to shove what I said will happen. Microsoft has first to determine
    the issue is a result of a security fix and when they do that the Credit
    Card will be reimbursed. But note that can take months.

    --
    George Hester
  12. Archived from groups: microsoft.public.win2000.general,microsoft.public.windowsupdate,microsoft.public.win2000.networking (More info?)

    I understand that. But Microsoft has to first determine the issue WAS from a security update. If it wasn't do you think THEN they are going to ask you to pay for the support that was given? I doubt it. Microsoft charges first then re-imburses later. Been there done that.

    There is one way to avoid these support charges and only one that I know of. But just calling their Support Center with a security update issue is not one of them.

    --
    George Hester
    _________________________________
    "Dave Patrick" <mail@Nospam.DSPatrick.com> wrote in message news:eJUSDk5QFHA.2384@tk2msftngp13.phx.gbl...
    > Quoted from any security bulletin;
    >
    > Support:
    > Customers in the U.S. and Canada can receive technical support from
    > Microsoft Product Support Services at 1-866-PCSAFETY. There is no charge for
    > support calls that are associated with security updates.
    >
    > International customers can receive support from their local Microsoft
    > subsidiaries. There is no charge for support that is associated with
    > security updates. For more information about how to contact Microsoft for
    > support issues, visit the International Support Web site.
    >
    > --
    > Regards,
    >
    > Dave
    >
    > Dave Patrick ....Please no email replies - reply in newsgroup.
    > Microsoft Certified Professional
    > Microsoft MVP [Windows]
    > http://www.microsoft.com/protect
    >
    > "George Hester" wrote:
    > Microsoft has 1-800 numbers many of them. I don't think the op can access
    > them though. So although you may think I am wrong believe it when push
    > comes to shove what I said will happen. Microsoft has first to determine
    > the issue is a result of a security fix and when they do that the Credit
    > Card will be reimbursed. But note that can take months.
    >
    > --
    > George Hester
    >
    >
  13. Archived from groups: microsoft.public.win2000.general,microsoft.public.windowsupdate,microsoft.public.win2000.networking (More info?)

    So you're saying you don't believe what you read on the page. "There is no
    charge for support calls that are associated with security updates." OK

    First point. 1-866-PCSAFETY probably only nets you support for security
    updates.
    Second point. When you tell them you install it, it is broke. You uninstall
    it, it is fixed.

    You think they're going to send you to paid support? I think you have left
    reality George.

    --
    Regards,

    Dave

    Dave Patrick ....Please no email replies - reply in newsgroup.
    Microsoft Certified Professional
    Microsoft MVP [Windows]
    http://www.microsoft.com/protect

    "George Hester" wrote:
    I understand that. But Microsoft has to first determine the issue WAS from
    a security update. If it wasn't do you think THEN they are going to ask you
    to pay for the support that was given? I doubt it. Microsoft charges first
    then re-imburses later. Been there done that.

    There is one way to avoid these support charges and only one that I know of.
    But just calling their Support Center with a security update issue is not
    one of them.

    --
    George Hester
  14. Archived from groups: microsoft.public.win2000.general,microsoft.public.windowsupdate,microsoft.public.win2000.networking (More info?)

    Maybe so. All I can say is the proof is in the pudding.

    --
    George Hester
    _________________________________
    "Dave Patrick" <mail@Nospam.DSPatrick.com> wrote in message news:uunFmE7QFHA.1500@TK2MSFTNGP09.phx.gbl...
    > So you're saying you don't believe what you read on the page. "There is no
    > charge for support calls that are associated with security updates." OK
    >
    > First point. 1-866-PCSAFETY probably only nets you support for security
    > updates.
    > Second point. When you tell them you install it, it is broke. You uninstall
    > it, it is fixed.
    >
    > You think they're going to send you to paid support? I think you have left
    > reality George.
    >
    > --
    > Regards,
    >
    > Dave
    >
    > Dave Patrick ....Please no email replies - reply in newsgroup.
    > Microsoft Certified Professional
    > Microsoft MVP [Windows]
    > http://www.microsoft.com/protect
    >
    > "George Hester" wrote:
    > I understand that. But Microsoft has to first determine the issue WAS from
    > a security update. If it wasn't do you think THEN they are going to ask you
    > to pay for the support that was given? I doubt it. Microsoft charges first
    > then re-imburses later. Been there done that.
    >
    > There is one way to avoid these support charges and only one that I know of.
    > But just calling their Support Center with a security update issue is not
    > one of them.
    >
    > --
    > George Hester
    >
    >
  15. Archived from groups: microsoft.public.win2000.general,microsoft.public.windowsupdate,microsoft.public.win2000.networking (More info?)

    I appreciate the time, guys, but this isn't helping.

    Uninstalling didn't fix the problem. (that was the first thing I tried). I
    have 50 servers, 9 of them with QLogic HBAs (for connecting to our SAN). I
    ran the updates on 10 of these servers. 8 worked fine. The 2 I ran that
    have HBAs had no network access after reboot. IPCONFIG reported that the
    machine had no TCP/IP capability. I removed the patches - nothing. I
    uninstalled/re-installed TCP/IP - nothing. I re-applied SP 4. Nothing. I
    have been afraid to apply the patches to the other servers for fear of
    killing them.

    I called MS - they said 'how do you want to pay for this call'.

    I don't think anyone disagrees, Dave, that MS says what you posted (that the
    calls are free). However, actually calling them gets a different response.

    I know have 40 unpatched machines.


    "Dave Patrick" <mail@Nospam.DSPatrick.com> wrote in message
    news:uunFmE7QFHA.1500@TK2MSFTNGP09.phx.gbl...
    > So you're saying you don't believe what you read on the page. "There is no
    > charge for support calls that are associated with security updates." OK
    >
    > First point. 1-866-PCSAFETY probably only nets you support for security
    > updates.
    > Second point. When you tell them you install it, it is broke. You
    > uninstall
    > it, it is fixed.
    >
    > You think they're going to send you to paid support? I think you have left
    > reality George.
    >
    > --
    > Regards,
    >
    > Dave
    >
    > Dave Patrick ....Please no email replies - reply in newsgroup.
    > Microsoft Certified Professional
    > Microsoft MVP [Windows]
    > http://www.microsoft.com/protect
    >
    > "George Hester" wrote:
    > I understand that. But Microsoft has to first determine the issue WAS
    > from
    > a security update. If it wasn't do you think THEN they are going to ask
    > you
    > to pay for the support that was given? I doubt it. Microsoft charges
    > first
    > then re-imburses later. Been there done that.
    >
    > There is one way to avoid these support charges and only one that I know
    > of.
    > But just calling their Support Center with a security update issue is not
    > one of them.
    >
    > --
    > George Hester
    >
    >
  16. Archived from groups: microsoft.public.win2000.general,microsoft.public.windowsupdate,microsoft.public.win2000.networking (More info?)

    OK, I mis-understood. I thought removing ms05-019 was part of your fix. You
    might try removing the NIC from Device Manager, restarting the machine. The
    Found New Hardware wizard should start and reinstall the hardware. Seems
    you've nothing to lose anyway.

    --
    Regards,
    Dave

    -------------
    Dave Patrick ....Please no email replies - reply in newsgroup.
    Microsoft Certified Professional
    Microsoft MVP [Windows]
    http://www.microsoft.com/protect

    "Blake" wrote:
    |I appreciate the time, guys, but this isn't helping.
    |
    | Uninstalling didn't fix the problem. (that was the first thing I tried).
    I
    | have 50 servers, 9 of them with QLogic HBAs (for connecting to our SAN).
    I
    | ran the updates on 10 of these servers. 8 worked fine. The 2 I ran that
    | have HBAs had no network access after reboot. IPCONFIG reported that the
    | machine had no TCP/IP capability. I removed the patches - nothing. I
    | uninstalled/re-installed TCP/IP - nothing. I re-applied SP 4. Nothing.
    I
    | have been afraid to apply the patches to the other servers for fear of
    | killing them.
    |
    | I called MS - they said 'how do you want to pay for this call'.
    |
    | I don't think anyone disagrees, Dave, that MS says what you posted (that
    the
    | calls are free). However, actually calling them gets a different
    response.
    |
    | I know have 40 unpatched machines.
  17. Archived from groups: microsoft.public.win2000.general,microsoft.public.win2000.networking,microsoft.public.windowsupdate (More info?)

    "George Hester" <hesterloli@hotmail.com> wrote in message
    news:#YwlowdTFHA.2096@TK2MSFTNGP14.phx.gbl...
    Hi Herb:

    http://www.sysinternals.com/ntw2k/freeware/rootkitreveal.shtml

    >Well I can tell you if someone said to me you are urinating alot; you have
    a dry mouth
    >and fruity breadth; you feel always run down; and have an unquenchable
    thirst sounds
    >like you have Diabetes I'd say I probably do if I had those symptoms.

    (The above doesn't seem to have anything to do with what I wrote, so
    maybe it was in reference to something earlier in the thread.)

    > This article almost exactly described what I experienced. I'd say it was
    a User Mode RootKit but the Kernel also sounded right the Registry issues.


    > I ran his scan tool and it seems I have some issues on a drive that I can
    remove from Windows 2000. It's a FAT16 drive and the files it contains look
    like source files. So I really don't know what this means if anything.
    I've removed it from Windows 2000 I'll be running the tool again later but I
    think I have a clean bill of health. Thanks for that RootKit description.
    I actually knew about this but never had the need to investigate it.

    Glad to help.
  18. Archived from groups: microsoft.public.win2000.general,microsoft.public.win2000.networking,microsoft.public.windowsupdate (More info?)

    What it means is if you have the symptoms a diagnosis may be in order. You doubted that a RootKit could be a part of malware. I had the symptoms and so chances are RootKit as diagnosis is NOT so far fetched. That's the reason for my analogy. Sorry it escaped you.

    --
    George Hester
    _________________________________
    "Herb Martin" <news@LearnQuick.com> wrote in message news:#Py7u6iTFHA.3696@TK2MSFTNGP15.phx.gbl...
    > "George Hester" <hesterloli@hotmail.com> wrote in message
    > news:#YwlowdTFHA.2096@TK2MSFTNGP14.phx.gbl...
    > Hi Herb:
    >
    > http://www.sysinternals.com/ntw2k/freeware/rootkitreveal.shtml
    >
    > >Well I can tell you if someone said to me you are urinating alot; you have
    > a dry mouth
    > >and fruity breadth; you feel always run down; and have an unquenchable
    > thirst sounds
    > >like you have Diabetes I'd say I probably do if I had those symptoms.
    >
    > (The above doesn't seem to have anything to do with what I wrote, so
    > maybe it was in reference to something earlier in the thread.)
    >
    > > This article almost exactly described what I experienced. I'd say it was
    > a User Mode RootKit but the Kernel also sounded right the Registry issues.
    >
    >
    > > I ran his scan tool and it seems I have some issues on a drive that I can
    > remove from Windows 2000. It's a FAT16 drive and the files it contains look
    > like source files. So I really don't know what this means if anything.
    > I've removed it from Windows 2000 I'll be running the tool again later but I
    > think I have a clean bill of health. Thanks for that RootKit description.
    > I actually knew about this but never had the need to investigate it.
    >
    > Glad to help.
    >
    >
    >
  19. Archived from groups: microsoft.public.win2000.general,microsoft.public.win2000.networking,microsoft.public.windowsupdate (More info?)

    >"George Hester" <hesterloli@hotmail.com> wrote in message
    news:eyBSrUsTFHA.3152@TK2MSFTNGP12.phx.gbl...
    > What it means is if you have the symptoms a diagnosis may be in order.

    Got that part.

    > You doubted that a RootKit could be a part of malware.

    No me -- you were reading someone else's comments and replying
    to mine.

    > I had the symptoms and so chances are RootKit as diagnosis is
    > NOT so far fetched. That's the reason for my analogy. Sorry it escaped
    you.


    Which is the reason I suggested you download the RootKit Revealer.

    See, I was assuming you knew what you were doing. (You sounded
    like it.)
  20. Archived from groups: microsoft.public.win2000.general,microsoft.public.win2000.networking,microsoft.public.windowsupdate (More info?)

    Not always.

    --
    George Hester
    _________________________________
    "Herb Martin" <news@LearnQuick.com> wrote in message news:OHz3uAuTFHA.3636@TK2MSFTNGP14.phx.gbl...
    > >"George Hester" <hesterloli@hotmail.com> wrote in message
    > news:eyBSrUsTFHA.3152@TK2MSFTNGP12.phx.gbl...
    > > What it means is if you have the symptoms a diagnosis may be in order.
    >
    > Got that part.
    >
    > > You doubted that a RootKit could be a part of malware.
    >
    > No me -- you were reading someone else's comments and replying
    > to mine.
    >
    > > I had the symptoms and so chances are RootKit as diagnosis is
    > > NOT so far fetched. That's the reason for my analogy. Sorry it escaped
    > you.
    >
    >
    > Which is the reason I suggested you download the RootKit Revealer.
    >
    > See, I was assuming you knew what you were doing. (You sounded
    > like it.)
    >
    >
Ask a new question

Read More

Microsoft TCP/IP Servers Windows