Hi, Jeff. Two of our clients' networks were hit with this today. Its a DCOM RPC exploit. Here's more info: http://securityresponse.symantec.com/avcenter/security/Content/8205.htm l >Thanks all for the suggestions - more info and on 1 of the 2 machines >doing it in the same house: > >Error: > >Remote Procedure Call terminated unexpectedly. > >Initiated by NT / Authority system. Cheers, Heather Quinn info at windyhilldesign.com www.windyhilldesign.com