You are here: silicon.com > Software > Malware

Malware

CA antivirus deletes Windows component

Oops...

Tags: lsass.exe, windows 2003, etrust, microsoft windows

Printer Friendly Email Story RSS

By Will Sturgeon

Published: 4 September 2006 11:55 BST

Some Windows 2003 users have been experiencing problems with the operating system recently after antivirus software from CA wrongly detected part of the operating system as malware.

At the heart of the problem is part of Windows' in-built security, a file called Lsass.exe. This was wrongly detected as a virus by CA's eTrust software and was deleted, causing some servers to crash and fail to reboot.

CA claims to have quickly spotted and remedied the problem and has advised affected users to find out how to fix it here. Users can also get the latest, amended update from the CA website.

The cause of the confusion seems to be Lsass.exe being mistaken for the Trojan Win32/Lassrv.B.

Lassrv.B was discovered in the wild on 24 August and was rated as a very low threat. The problem for Windows 2003 and eTrust users occurred in a subsequent signature update from CA on Friday 1 September.

Add Comment Add comment  Printer Friendly Print story   Email Story Email story   RSS
In
Applications

Operating Systems

SOA/Web Services

Malware

Security Strategy


Related Links

Trojan nasties raid passwords

CA software poses "critical" security risk

CA giving it the big 'IAM'

Spam: CA plans to kick it to the Qurb

Cyber attack flaw blights antivirus engine

CA spends on access management

  1. Zones
  2. Management
  3. Networks
  4. Software
  5. IT Services
  6. Hardware
  1. Verticals
  2. Public Sector
  3. Financial Services
  4. Retail & Leisure

Naked CIO Naked CIO: Should you monitor staff? Somebody's watching you

Elinor Mills Why 1970s hackers had 'whiz kid' status Q&A: Kevin Mitnick - blackhat hacker turned good guy

SMS flaw leaves iPhone vulnerable to attack

Why Google's security arm doesn't have a war room

ATM hack talk pulled from security conference

PayPal techies hit fraudsters where it hurts

SMEs on target list for UK cyber attack group


  • Jobs
Security Manager

McAfee Antivirus Manage, maintain and support the anti-virus software to ensure that any files distributed across the networks including e-mail ...

Senior Server Administrator

Respond to and fix calls escalated to the Server Support AHD queue within SLA. Perform Anti-Virus administration and ensure definition updates are ...

Senior Infrastructure Engineer

It offers a real opportunity for an ambitious and dynamic person to progress their career ina leading edge IT environment.Role SummaryWork with a ...

Agenda Setters 2008
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.

The Financial Close: Optimizing Performance and Driving Financial Excellence

Enterprise Performance Management - Financial Excellence and Beyond

A complete view of the enterprise

Making the Business Case for HR Investments

Martin Brokers cashes in on back-up swap

VocaLink makes virtualisation pay

Sony Pictures sets sights on best IT Oscar

Co-op Group kicks "server sprawl" into touch

Arts Council gets tech troubleshooting boost

Torex tech treats Thorntons to quicker sales

Stories from the web...


Large Hadron Collider's grid gets stressed

Heatwave? No sweat for CIOs

Has in-flight entertainment got wings in the iPod era?

MoD inks £231m deal to boost comms

Take a trip to the future of air travel

Orange launches managed videoconferencing




Quick Sitemap Links: