How does this malware target the system?

How does this malware target the system?
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Anti-Virus Software    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
How does this malware target the system? Victek 06-22-2008
Posted by Victek on June 22, 2008, 11:32 am
If you were  Registered and logged in, you could reply and use other advanced thread options
I recently reinstalled Windows XP for a customer with a badly infected
system. I didn't do a repair - I deleted the partition and did a complete
reinstall. The first time I opened Internet Explorer 6 on the system I got
a pop-up for XP Antivirus 2008, which the customer was getting before the
reinstall. When this happened the system already had SP2 and Trend Micro
2008 fully updated. Is it possible for this malware to hide somewhere and
survive a complete reinstall? Is the customer's IP address is being
targeted? Poisoned DNS? Any ideas appreciated.


Posted by Sohtyaelehtreklats on June 22, 2008, 12:14 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
You did a clean install was it a clean install that included SP2 or was SP2
installed after the install? If the former then it could be DNS. Or did you
restore any backed up files you made before the install, if so then they may
have been infected.


--
Stalking is a Crime
Stalking charges are serious and
almost every state now has a strict stalking law.




>I recently reinstalled Windows XP for a customer with a badly infected
>system. I didn't do a repair - I deleted the partition and did a complete
>reinstall. The first time I opened Internet Explorer 6 on the system I got
>a pop-up for XP Antivirus 2008, which the customer was getting before the
>reinstall. When this happened the system already had SP2 and Trend Micro
>2008 fully updated. Is it possible for this malware to hide somewhere and
>survive a complete reinstall? Is the customer's IP address is being
>targeted? Poisoned DNS? Any ideas appreciated.


Posted by Bullwinkle on June 22, 2008, 4:19 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
Did you format the disk before installing Windows XP. if you didn't you only
deleted the directory where windows sits.

If you want to do a clean install you need to format the disk during the
install.

Regards,

>I recently reinstalled Windows XP for a customer with a badly infected
>system. I didn't do a repair - I deleted the partition and did a complete
>reinstall. The first time I opened Internet Explorer 6 on the system I got
>a pop-up for XP Antivirus 2008, which the customer was getting before the
>reinstall. When this happened the system already had SP2 and Trend Micro
>2008 fully updated. Is it possible for this malware to hide somewhere and
>survive a complete reinstall? Is the customer's IP address is being
>targeted? Poisoned DNS? Any ideas appreciated.



Posted by Gaz on June 22, 2008, 4:57 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
Bullwinkle wrote:
> Did you format the disk before installing Windows XP. if you didn't
> you only deleted the directory where windows sits.
>
> If you want to do a clean install you need to format the disk during
> the install.
>
> Regards,
>

The OP said he did a format and a clean install.

Gaz



Posted by Victek on June 22, 2008, 11:15 pm
If you were  Registered and logged in, you could reply and use other advanced thread options

> Did you format the disk before installing Windows XP. if you didn't you
> only
> deleted the directory where windows sits.
>
> If you want to do a clean install you need to format the disk during the
> install.
>
> Regards,
>
I deleted the partition (actually two partitions), created a new partition
and "quick formatted". Quick formatting was possible because the two old
partitions were NTFS. It's a lot faster, but I know it doesn't actually go
through and overwrite every sector.


Similar ThreadsPosted
System Restore and malware. January 4, 2006, 11:20 am
Re: Has David Lipman been providing malware to known malware criminals? March 24, 2007, 7:10 pm
Re: Has David Lipman been providing malware to known malware criminals? March 24, 2007, 7:15 pm
Re: Has David Lipman been providing malware to known malware criminals? March 26, 2007, 8:28 am
least system hog recommendation? January 26, 2006, 8:50 am
OT: System utilities August 23, 2006, 12:15 pm
F-Secure is system hog October 14, 2006, 3:00 am
what to do when system will not load October 30, 2006, 3:51 pm
AVG...is it slow or is it my system? March 24, 2007, 4:56 pm
System Shutdown? March 28, 2007, 10:18 pm

The site map in XML format XML site map

Contact Us | Privacy Policy