Re: What infection might these "symptoms" indicate?

From: cquirke (MVP Win9x) (cquirkenews_at_nospam.mvps.org)
Date: 07/11/04 

Date: Sun, 11 Jul 2004 13:24:45 +0200

On Wed, 7 Jul 2004 18:22:26 +0000 (UTC), Cliff Wragg

>Eventually, we found that he had 4 trojans on board (BOClean was the
>only program that could catch them). They were: wserv32, pornkey,
>keylogger and netsky. One or all of them shut down all the protection
>such as ZoneAlarm and Norton and AVG.

>After many attempts to cure the problem, we had to reformat the drive
>and reinstall XP. The damage was too great.

I'd re-phrase that as: XP's maintainability was too useless. Unless
you're talking about payload damage?

>Even then, I had to do it twice because first time I reimported the
>rogue emails when I restored his data. (I needed to scan the
>back-up CD and avoid the culprits)

This highlights the importance of clean, pure data backups.

You have to dance around:
  - email apps that hide attachments in mailboxes (most of them)
  - MS duhfaults that use "My Documents" for IE, MSN etc.

>-------------------- ----- ---- --- -- - - - -
   No, perfection is not an entrance requirement.
   We'll settle for integrity and humility
>-------------------- ----- ---- --- -- - - - -

Loading