Solved

How do I rectify buffer overflow related message everytime on Xp notebook?

Posted on 2009-05-10
8
2,551 Views
Last Modified: 2013-12-09
Hi there,
Every time, I boot my notebook there is a BO heap, buffer overflow message, which I ve no luck trying to clean/delete via my AV client- McAfeeVirusScanEnterprise8_5_0i
ow to overcome these buffer-overflow messages?

I'm also unable to initiate a windows update via web browser INternet Explorer.
Attached system specs and AV BO heap messages.
Kindly advise how to circumvent this issue, apart from formatting the notebook..
Awaiting earliest reply.Thank you


sysprops.JPG
McAfeeVirusScanEnterprise8-5-0i.JPG
0
Comment
Question by:juggernaut78
8 Comments
 

Author Comment

by:juggernaut78
ID: 24349139
The MCafree related BO heap messages read as:

"Name: "  C:\windows\system32\services.exe:ADVAPI32.RegOpenKeyA
 
"Detected as:" BO: Writeable BO: Heap
 
"Application:" C:\Windows\system32\service.exe
0
 
LVL 3

Expert Comment

by:flopez235
ID: 24349574
According the McAfee KB, this is a valid BO occurring when a process is trying to utilize the MSJAVA.DLL.  It says if you have DEP turned on, DEP will block this from occurring and McAfee will not detect this.

However, after a google search of your BO issue, read the following:
http://www.geekstogo.com/forum/NTOSKRNL-HOOK-and-USB-port-not-recognize-any-Ext-storage-t234449.html

Hope this helps.


0
 

Author Comment

by:juggernaut78
ID: 24361048
Thank you for your prompt reply flopez235, but I'm still not able to solve this issue.
 
0
Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

 
LVL 3

Expert Comment

by:flopez235
ID: 24365507
Buffer Overflow errors occur because there is program trying to overload the buffer to execute code as a result.  In this instance, your error is pointing to ADVAPI32.DLL trying to access a registry entry.  This has caused McAfee to respond by stopping it because it is happening during a buffer overflow and not regular operation.  

This usually points to malware in your system.  I would try running online AV scans from other vendors like Kaspersky or Bit Defender to check your system using other AV engines.

If you get nothing from the scans, try reinstalling McAfee.  If that still doesn't work, try doing a repair install on your system.  Maybe you did have malware at one point and this file just needs to be repaired.

Try these out and let me know if one works for you.
0
 
LVL 16

Expert Comment

by:legalsrl
ID: 24436785
OK, lets approach this logically....

First can you download and install HiJackthis from http://www.hijackthis.de and then run it, Do a System Scan and post the logfile as an attachment (or a link to the results) here and let me have a look at it.

We'll get it sorted......

Cheers
Si
0
 

Author Comment

by:juggernaut78
ID: 24630440
Thanks all, this one sorted now by disabling system restore, running a scan and removed virus.Then enables system restore in Windows Xp again.
Also had done all the latest Windows XP related system updates.that helped.
0
 

Accepted Solution

by:
ee_auto earned 0 total points
ID: 24847189
Question PAQ'd, 125 points refunded, and stored in the solution database.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Malicius website protection from system 32? 15 74
Add domain in Barracuda Email Security Gateway virtual appliance 4 69
How to handle Ransom ware 23 91
Twitching screen 11 73
Some site administrators might be considering how to filter incoming traffic to a site by identifying the domains or networks of the traffic source, in the same way that a spam filter does on an email server, such as blocking all emails sent from th…
PREFACE The purpose of this guide is to provide information to successfully install the MS SQL client tools for the Symantec Endpoint Protection Manager (SEPM) to function properly when installed on Windows 2008. AUDIENCE Information Technology…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.
This video shows how to remove a single email address from the Outlook 2010 Auto Suggestion memory. NOTE: For Outlook 2016 and 2013 perform the exact same steps. Open a new email: Click the New email button in Outlook. Start typing the address: …

930 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now