Solved

How do I rectify buffer overflow related message everytime on Xp notebook?

Posted on 2009-05-10
8
2,555 Views
Last Modified: 2013-12-09
Hi there,
Every time, I boot my notebook there is a BO heap, buffer overflow message, which I ve no luck trying to clean/delete via my AV client- McAfeeVirusScanEnterprise8_5_0i
ow to overcome these buffer-overflow messages?

I'm also unable to initiate a windows update via web browser INternet Explorer.
Attached system specs and AV BO heap messages.
Kindly advise how to circumvent this issue, apart from formatting the notebook..
Awaiting earliest reply.Thank you


sysprops.JPG
McAfeeVirusScanEnterprise8-5-0i.JPG
0
Comment
Question by:juggernaut78
8 Comments
 

Author Comment

by:juggernaut78
ID: 24349139
The MCafree related BO heap messages read as:

"Name: "  C:\windows\system32\services.exe:ADVAPI32.RegOpenKeyA
 
"Detected as:" BO: Writeable BO: Heap
 
"Application:" C:\Windows\system32\service.exe
0
 
LVL 3

Expert Comment

by:flopez235
ID: 24349574
According the McAfee KB, this is a valid BO occurring when a process is trying to utilize the MSJAVA.DLL.  It says if you have DEP turned on, DEP will block this from occurring and McAfee will not detect this.

However, after a google search of your BO issue, read the following:
http://www.geekstogo.com/forum/NTOSKRNL-HOOK-and-USB-port-not-recognize-any-Ext-storage-t234449.html

Hope this helps.


0
 

Author Comment

by:juggernaut78
ID: 24361048
Thank you for your prompt reply flopez235, but I'm still not able to solve this issue.
 
0
Use Case: Protecting a Hybrid Cloud Infrastructure

Microsoft Azure is rapidly becoming the norm in dynamic IT environments. This document describes the challenges that organizations face when protecting data in a hybrid cloud IT environment and presents a use case to demonstrate how Acronis Backup protects all data.

 
LVL 3

Expert Comment

by:flopez235
ID: 24365507
Buffer Overflow errors occur because there is program trying to overload the buffer to execute code as a result.  In this instance, your error is pointing to ADVAPI32.DLL trying to access a registry entry.  This has caused McAfee to respond by stopping it because it is happening during a buffer overflow and not regular operation.  

This usually points to malware in your system.  I would try running online AV scans from other vendors like Kaspersky or Bit Defender to check your system using other AV engines.

If you get nothing from the scans, try reinstalling McAfee.  If that still doesn't work, try doing a repair install on your system.  Maybe you did have malware at one point and this file just needs to be repaired.

Try these out and let me know if one works for you.
0
 
LVL 16

Expert Comment

by:legalsrl
ID: 24436785
OK, lets approach this logically....

First can you download and install HiJackthis from http://www.hijackthis.de and then run it, Do a System Scan and post the logfile as an attachment (or a link to the results) here and let me have a look at it.

We'll get it sorted......

Cheers
Si
0
 

Author Comment

by:juggernaut78
ID: 24630440
Thanks all, this one sorted now by disabling system restore, running a scan and removed virus.Then enables system restore in Windows Xp again.
Also had done all the latest Windows XP related system updates.that helped.
0
 

Accepted Solution

by:
ee_auto earned 0 total points
ID: 24847189
Question PAQ'd, 125 points refunded, and stored in the solution database.
0

Featured Post

Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

12 Steps to a more secure Internet experience (http://tekblog.teksquisite.com/) Everyone who is a licensed driver initially had to pass a driving test that consisted of taking:    1. a written test    2. a road test    3. a vision test Le…
HOW TO REMOTELY CLEAN MEROND.O WITH ESET SILENTLY PROBLEM       If you have the fortunate luck to contract the Merond.O virus on your network, it can be quite troublesome to remove as it propagates to network shares on your network. In my case, the …
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question