Has anyone come across a problem whereby a server or PC have been made unusable due to the program STNETLIB.EXE loading +2000 time in the task manager and crashing the server.
I have a Windows SBS 2003 server running Symantec AV and SSC 10.2.
The process called STNETLIB.EXE is appearing in nuremous places in the registry and the actual file is shown as hidden in the c:\windows folder.
The virus (or whatever it is) is doing the following:-
1. Autospawing and creating thousands of processes in the task manager, eventually crashing the server.
2. Adding Intel Physical Routine 1.2A =C:\WINDOWS\stnetlib.exe all over the registry.
2. Disabling the ability to 'view hidden files' within explorer.
3. Changing the HOSTS file to point all AV provider web pages and liveupdates to 0.0.0.0
A full AV scan does pick up a file called HTTP.DLL which is imediately 'cleans by deletion' but it does not pickup STNETLIB.EXE
Have anyone come across this as I am struggling for a cure!!
Any help grately appreciated.
Chris