• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 217
  • Last Modified:

w32.hllw.gaobot.gen virus on our network

I have just been notified that our network is infected with w32.hllw.gaobot.gen virus.  I have downloaded the removal tool but wondering...if I run this tool on my systems that have been disconnected from the network, and load the MS patches on them will this in fact take care of the virus or will my systems become re-infected again?  Please hurry with a response!  Thanks so much!!!  SCUD1
0
SCUD1
Asked:
SCUD1
  • 3
  • 2
1 Solution
 
envoguecomputersCommented:
You seem to have it right. Disconnect all of the network computers from the network, apply the removal tool and whatever related patches there are and once you've finished doing this to all of them, reconnect them to the network!

You should maybe check for spyware as well. Go to www.download.com and search for ad aware. Download Ad Aware Se Personal and run that on the infected systems as well.
0
 
computermaster_zCommented:
   First,update your scan engine to the newest.
    Second,you must to scan all of your PC(in your LAN),and I recommend you scan your PC in Safe mode,and disconnect network.
    Third,apply all of Microsoft's patch.
    In the end,witch Antivirus software was installed?
    Good lucky!
0
 
SCUD1Author Commented:
We are running Symantec Corporate Ed.  My servers are all fine...they have been update on a regular basis but ran the removel tool just in case.  The results came back clean.  I'm curious as to how this got past our firewall, and symantec?  Unless someone brought it in from another source...floppy disk or cd.  Anyway...I appreciate your help.  I will start on this right away as we have 380 workstations in our network.  Long night ahead of me!!!  Oh yeah...can you help me with one more thing?  How do I get MS updates to save to a cd?  Silly question, I know.  New at this!!!
Thanks so much!!!
SCUD1
0
Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

 
envoguecomputersCommented:
You can download the updates from the download section of www.microsoft.com and select Save to disk, then burn them to a CD! You'll just need the update number (Q with 6 digits)
0
 
SCUD1Author Commented:
Thank you so much for your help.  I will attempt to close out this question so that you can receive your well deserved points.  Thanks again!!!
SCUD1
0
 
SCUD1Author Commented:
Ok...I have disconnected the workstation from the network, ran the removal tool, installed the two patches the removal is calling to be installed, rebooting the computer, reconnecting to the network, getting onto the internet and just to be sure I disconnected the workstation from the network and ran the tools once again only to find out the workstation is still infected or reinfected.  What is it that I need to do to get rid of this thing?????  I'm totally desparate now!!!!
SCUD1
0

Featured Post

Hire Technology Freelancers with Gigs

Work with freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely, and get projects done right.

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now