Restoring WindowsXP SP2 Firewall service after malicious software attack
- From: "Polanski24" <infodate@xxxxxxxx>
- Date: 12 Jul 2006 07:00:05 -0700
Hello!
My computer (WinXP SP2 fully patched - including yesterdays patches)
was compromised today with brand new attack vector which has done the
following:
1. Disabled built in WinXP firewall
2. Downloaded several trojans
3. Crashed system with bluescreen of death
4. After system reboot several applications were infected with trojans
5. Permanently damaged WinXP firewall by uninstalling its service
6. Damaged internet connection sharing service
This new vector was send to KasperskyLabs and confirmed to be new
malicious software (lab singature [KLAB-1097372]).
I am still trying to recover full system functionality after attack and
have performed several scans with:
1) rootkit detectors,
2) anitvirus software.
3) sfc tool which was used to restore original windows files
Tried to reinstall SP2 as well (orirginal system was SP1) but it did
not help in restoring firewall and internet connection sharing
services.
Anyone have an idea how to restore original firewall/internet
connection services? MS documentation is obviously missing in that area
and I would prefer to avoid system reinstallation or repair
installation.
.
- Follow-Ups:
- Prev by Date: Re: Cannot update hosts file.
- Next by Date: Re: looking for a suitable proxy
- Previous by thread: Microsoft Windows Malicious Software Removal Tool
- Next by thread: Re: Restoring WindowsXP SP2 Firewall service after malicious software attack
- Index(es):
Relevant Pages
|
|
