McAfee Buffer Overflow - please help

Discussion in 'Virus Information' started by msen, Dec 31, 2007.

  1. msen

    msen Guest

    I went to a website recently and since then I am getting random pop up windows.
    I also got the following message:

    "To maintain system stability windows must restore original version of these
    files.

    Insert your window xp professional cd2 now"

    Once I inserted the CD2, the message disappeared but the windows are still
    appearing on internet along with the following warning:

    McAfee has automatically blocked a buffer overflow.
    Details
    Detection:
    File: C:\WINDOWS\Explorer.EXE
    More Info
    Buffer overflows occur when suspect programs or processes try to store more
    data in a buffer (temporary data storage area) on your computer than its
    limit, corrupting or overwriting valid data in adjacent buffers.

    I have Dell Dimension E510 with Windows XP and IE 7
     
    msen, Dec 31, 2007
    #1
    1. Advertisements

  2. msen

    Malke Guest

    Your computer is infected and you need to clean it up. Go through these
    general malware removal steps systematically -
    http://www.elephantboycomputers.com/page2.html#Removing_Malware

    Include scanning with David Lipman's Multi_AV and follow instructions to
    do all scans in Safe Mode.

    http://www.elephantboycomputers.com/page2.html#Multi-AV - instructions
    http://www.pctipp.ch/downloads/sicherheit/35905/multi_av_scanning_tool.html
    - download site

    The site is in German but David's tool is in English so don't let that
    worry you. Scroll all the way down to almost the bottom of the page and
    you'll see a box titled "Infos Zum Download - Multi-AV Scanning Tool".
    You'll see "Download von www pctipp.ch" and the live link to download
    Multi_AV.

    You can also check to see if there are targeted removal steps for your
    malware here:
    Bleeping Computer removal how-to's -
    http://www.bleepingcomputer.com/forums/forum55.html

    When all else fails, run HijackThis and post your log in one of the
    specialty forums listed at the first link above (not here, please).

    Standard caveat: If the procedures look too complex - and there is no
    shame in admitting this isn't your cup of tea - take the machine to a
    professional computer repair shop (not your local version of
    BigComputerStore/GeekSquad). Please be aware that not all local shops
    are skilled at removing malware and even if they are, your computer may
    be so infested that Windows will need to be clean-installed. Have all
    your data backed up before you take the machine into a shop.


    Malke
     
    Malke, Dec 31, 2007
    #2
    1. Advertisements

  3. I hope this case is not connected with this :)

    http://msmvps.com/blogs/v_scherbina/archive/2007/12/27/explorer-exe-is-in-danger.aspx
     
    Volodymyr Shcherbyna, Dec 31, 2007
    #3
  4. msen

    Malke Guest

    Unlikely since the OP said he has McAfee.


    Malke
     
    Malke, Dec 31, 2007
    #4
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.