w32.hllw.gaobot.gen virus on our network

I have just been notified that our network is infected with w32.hllw.gaobot.gen virus.  I have downloaded the removal tool but wondering...if I run this tool on my systems that have been disconnected from the network, and load the MS patches on them will this in fact take care of the virus or will my systems become re-infected again?  Please hurry with a response!  Thanks so much!!!  SCUD1
SCUD1Asked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
envoguecomputersConnect With a Mentor Commented:
You seem to have it right. Disconnect all of the network computers from the network, apply the removal tool and whatever related patches there are and once you've finished doing this to all of them, reconnect them to the network!

You should maybe check for spyware as well. Go to www.download.com and search for ad aware. Download Ad Aware Se Personal and run that on the infected systems as well.
0
 
computermaster_zCommented:
   First,update your scan engine to the newest.
    Second,you must to scan all of your PC(in your LAN),and I recommend you scan your PC in Safe mode,and disconnect network.
    Third,apply all of Microsoft's patch.
    In the end,witch Antivirus software was installed?
    Good lucky!
0
 
SCUD1Author Commented:
We are running Symantec Corporate Ed.  My servers are all fine...they have been update on a regular basis but ran the removel tool just in case.  The results came back clean.  I'm curious as to how this got past our firewall, and symantec?  Unless someone brought it in from another source...floppy disk or cd.  Anyway...I appreciate your help.  I will start on this right away as we have 380 workstations in our network.  Long night ahead of me!!!  Oh yeah...can you help me with one more thing?  How do I get MS updates to save to a cd?  Silly question, I know.  New at this!!!
Thanks so much!!!
SCUD1
0
Upgrade your Question Security!

Your question, your audience. Choose who sees your identity—and your question—with question security.

 
envoguecomputersCommented:
You can download the updates from the download section of www.microsoft.com and select Save to disk, then burn them to a CD! You'll just need the update number (Q with 6 digits)
0
 
SCUD1Author Commented:
Thank you so much for your help.  I will attempt to close out this question so that you can receive your well deserved points.  Thanks again!!!
SCUD1
0
 
SCUD1Author Commented:
Ok...I have disconnected the workstation from the network, ran the removal tool, installed the two patches the removal is calling to be installed, rebooting the computer, reconnecting to the network, getting onto the internet and just to be sure I disconnected the workstation from the network and ran the tools once again only to find out the workstation is still infected or reinfected.  What is it that I need to do to get rid of this thing?????  I'm totally desparate now!!!!
SCUD1
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.