Re: Help various virus attacks

From: David H. Lipman (DLipman~nospam~_at_Verizon.Net)
Date: 04/26/05 

Date: Tue, 26 Apr 2005 17:21:58 -0400

From: "tiger-lily" <tiger_lily_59@hotmail.com>

| I have just reinstalled XP on my daughters laptop because she had so much on
| it. I first of all got a pop up saying "Buffer overflow in mesanger
| service causes unexpected shutdown, virus infection and remote code
| execution. affected softwear. Your system is infected download patch from
| www.updatenow.org" I didn't follow these instructions. instead I went
| online to reinstall NAV. Since then the laptop has gone mad, trying to send
| emails but not getting through. Various pop ups and tools bars adding
| themselves and here are some of the viruses being reported even as Norton
| was trying to update:
|
| bloodhound.w32.ep
| w32.mytub.ah@mm
| Hacktool.rootkit (loads of times)
| download.trojan
| bat.trojan
|
| can someone please help me out here. should I do another complete
| re-install or is this not going to help. Does anyone have any idea what
| happened here.
|
| thanks in advance
|
| Michelle
|

Hi Michelle:

Since you just did an install, I would say YES -- re-install WinXP SP2.

What I suggest is that you have ALL software on media and NOT connect the PC to the Internet
untill FireWall and Anti Virus software are installed and configured.

If you are connected to Broadband Internet I suggest a Cable/DSL Router such as the linksys
BEFSR41. It will act as a simplistic FireWall and block hackers and Internet worms from
taking adavantage of unpatched OS vulnerabilities. As always, I also suggest blocking both
TCP and UD Ports 135 ~ 139 and 445.

I presume that while you were updating the system, you were compromised by an download
Trojan taking advantage of a OS vulnerability that was still unpatched. 

-- 
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm

Relevant Pages

  • Re: Major IE Issues...HELP!
    ... As you can not download these programs from the Internet, ... And be sure to use the HijackThis. ... Winsock Fix Utility ... Everything I've read says that you have to reinstall XP, ...
    (microsoft.public.windows.inetexplorer.ie6.browser)
  • OE blanks out all text in body of messages
    ... Clear Temporary Internet Files and the Temp folder. ... How to Reinstall or Repair Internet Explorer and Outlook Express in Windows ... Alternative download pages for Ad-Aware, Spybot, HijackThis and CWShredder ...
    (microsoft.public.windows.inetexplorer.ie6_outlookexpress)
  • RE: tcp/ip problem
    ... > internet via DSL, ... > service named nipientd (no hits on google). ... > reinstall procedure in kb811259 does not correct the problem. ... > going to try is to replace the appropriate inf files and delete the matching ...
    (microsoft.public.windowsxp.general)
  • Re: Vista 64 slooow application launch
    ... I'm having exactly the same issue, but then on the 32-bits version of Windows ... I recently had to reinstall my PC and since then i've got 3 very irritating ... Internet Explorer, to an empty Notepad or a game). ... Mind that this problem occured on a clean installation of Windows Vista Home ...
    (microsoft.public.windows.vista.performance_maintenance)
  • Re: RED X & Verizon
    ... I tried the Verizon site on an eMac at work with OSX and IE 5.2. ... Well, actually it would load, reload, reload... ... should then reinstall SP2 and visit Windows Update. ... Go to Internet Options> Security> Internet Zone, ...
    (microsoft.public.windows.inetexplorer.ie6.browser)