GPIA7R wrote: »
Thanks for the suggestions so far.
We've been knocking IT people off throughout the day and cleaning them up. Still got all these users out there (around 700 PC's) with that .exe and various bad registry entries just waiting to kick it off.
Seems like with the IT people cleaned up, the pushing around has stopped (or at least waned because users don't have permissions to write to other users folders). Now to wait on a patch or solution... or make our own script to clean up the files. While it spread fast and persistantly hit everyone in the company... there doesn't SEEM to be damage at this very moment... but for those that had the file actually run, we can't be sure of what it was doing (50-100% CPU use)