Jonathan,
Once your have a server get infected with any virus, Microsoft recommends
that you format and rebuild that server from scratch because we cannot
guarantee that server's integrity. Even though the virus has been
"cleaned", we cannot know for certain what other trojans may be in place
that will cause you issues down the road. In addtion, the damage that has
already been done by changes that the virus has made are still in place and
may cause you many hardships in the longrun.
If your users are having access problems, it is probably because your
default domain, default domain controller and/or local security policies
have been modified by the virus. This is not an unusual byproduct of a
virus. If you have another domain controller in a different domain that is
working properly, you can compare the settings of each of these policies'
"user rights assignment" with the domain that is not working and manually
make some changes to try and get the non-working domain's policies to match
up with a working domain. We have a utility (recreatedefpol) that you can
run on your domain controller to reset these policies back to the default.
However, you will need call into Microsoft and open a support incident with
us so we can make sure that this is what you need.
Best Regards,
Ray Lava
Microsoft Corporation
This posting is provided "AS IS" with no warranties, and confers no rights
