i need help a.s.a.p.!?

Question

i just received a security threat alert : MS07-016
i went directly to Window's update site, but after scanning my PC the message came back from them saying there were no new updates for my computer. So what is this threat about and what do i do? ( i have all the virus,etc. protection necessities,am fire-walled, set up for automatic updates, etc. So i don't understand how this happened)

Thank you oddball, that's the site i was talking about having already visited. Like i said, i'm set up for automatic updates and being that this is a rather "old" threat addressed in mid-Feb, i figured i was already patched up there. This is why i'm confused. Not only should i already have that update but just in case i didn't, i scanned for any updates needed and it said there were none. So how did this "threat" get through and i'm still wondering what to do about it.

WOW! Anish D and ray_8128, you're my heroes! Thank you both ever so much. i only wish i could somehow vote for both of you as best answers. Unfortunately, that isn't allowed. So i'm going with Anish D, since your post came 1st.

One more thing...i wish there were some way of exchanging email addy's w/ only those you choose here on Y!Answers. i don't display mine because i'd rather not make it available to just anyone. But if i could somehow stay in touch with you guys to pick your brains from time to time, that would be so great! Then again, that could be the very thing you're trying to protect yourself from, eh? ~Thanks again guys. You rock!

Answer 1

You are infected by a rouge AntiVirus. It is a variant of the Zlob Trojan. Try the following free softwares to rid yourself of malware:

I prefer Avast, but AVG is just as great.

AVG AntiVirus
http://free.grisoft.com/doc/1

Avast Home Antivirus
http://www.avast.com/eng/download-avast-...

You may also want some other tools to run and use as well

SpywareBlaster
http://www.download.com/spywareblaster/3...

Spybot S&D
http://www.safer-networking.org/en/mirro...

AVG AntiSpyware
http://free.grisoft.com/doc/20/lng/us/tp...

Adaware (Lavasoft)
http://www.download.com/ad-aware-2007-fr...

If you are currently having a problem:

◙ Download and install AVG. Use it first and see if it finds any viruses or trojans.

☞ http://free.grisoft.com/doc/1

◙ After running AVG go here and run this virus scanner online. There is no need to install it on your computer.

http://housecall.trendmicro.com/...

◙ Microsoft's New Live Safety Center. Download this scanner to check and remove spyware, viruses, get rid of obsolete files and junk off your computer, and improve your PCs performance.

☞ http://safety.live.com/site/en-us/defaul...

◙ The Microsoft Windows Malicious Software Removal Tool checks computers running Windows XP, Windows 2000, and Windows Server 2003 for infections by specific, prevalent malicious software—including Blaster, Sasser, and Mydoom—and helps remove any infection found. When the detection and removal process is complete, the tool displays a report describing the outcome, including which, if any, malicious software was detected and removed. You can run this tool online FREE.

http://www.microsoft.com/downloads/detai...

◙ Before downloading email attachments in Gmail and Yahoo Mail click on the link that says, "Scan With Norton Antivirus".

◙ Before downloading any software from the internet type it into http://groups.google.com/ to see if that title is known for spyware or viruses. Google Groups has over 1 billion posts spanning 25 years to help you. Even after checking it there ALWAYS scan it before opening it. You just can't be too careful. -- Smart Computing Magazine

◙ A lot of the download sites like http://www.download.com/ and http://www.tucows.com/ scan software before releasing it to the public. But just for safety sake you should still scan it yourself.

◙ Here is a really great article on browser hijacking. This will show you how to get rid of it. There is a tutorial and software to get rid of part of it. You'll need to make some changes to your computer's registry to get rid of the rest of it. Click on the chatroom link on their main page if you need help.

☞ http://www.spywareinfo.com/articles/hija...

◙ Here is Yahoo!'s Internet Security section.

☞ http://security.yahoo.com/

◙ Below is Mcafee's Site Adviser. Type in a URL in the form here and you will find out if the site you want to go to is known for phising (getting your personal info under false pretenses), viruses, spyware, and many other things. You can use the tool on their site or download an program to do that.

☞ http://www.siteadvisor.com/

◙ Get more information at these PC Magazine Web sites.

☞ http://www.pcmag.com/
☞ http://www.smartcomputing.com/

◙ Top 100 Computer & Software Magazines.

☞ http://netvalley.com/top100mag.html........

★★ TOOLS FOR SPECIFIC VIRUSES & TIPS ★★

◙ Sometimes you'll get a particularly nasty virus that cannot be removed with conventional tools. For times like these you can (quite often not always) download a removal tool for that specific virus. Below are some sites you should look at.

☞ http://www.grisoft.com/doc/utilities/ing...
☞ http://www.symantec.com/security_respons...
☞ http://www.bitdefender.com/site/download...

◙ Below is a tool called "Stinger" that Mcafee put together with all 54 of it's tools in it.

☞ http://vil.nai.com/vil/stinger/...

◙ GLOBAL VIRUS ALERT -- The latest virus outbreak alerts from F-Secure, Trend Micro, Panda, and Sophos. Each anti-virus fighter is reporting the state of the Virus Battles on its front, which reflects a unique customer and geographic profile.

☞ http://www.trimmail.com/news/tools/#glob...

◙ Add free virus alerts to your web site.

☞ http://www.trendmicro.com/syndication/vi...
For Trojans try these ( free to try),
http://www.ewido.net/en/
Or
http://www.misec.net/trojanhunter/.........
Or
http://www.agnitum.com/products/tauscan/...


And always scan once a week with these free and trusted scanners as well if you go to gaming sites and porn and etc.
http://housecall.trendmicro.com/...
http://www.webroot.com/freescan...
http://www.kaspersky.com/virusscanner...
http://www.pandasoftware.com/products/ac...
http://www3.ca.com/securityadvisor/virus...
http://www.bitdefender.com/

First, you need anti-virus software - download, install and update AVG anti-virus (it's free for personal use) - you can find it here - http://free.grisoft.com/doc/1

Then remove your System Restore points (viruses love to hide in the System Restore files), but be aware that if you do remove your existing Restore Points you will not be able to "roll back" your computer to a previous configuration. To find out how to disable System Restore see this page - http://www.pchell.com/virus/systemrestor...

Just to be sure you don't have other malware on your computer I recommend that you download SpyBot Search & Destroy and Adware - both are free spyware/adware detection and removal software.

Next, start the computer in Safe Mode - (as the comptuer is starting up, keep tapping the F8 key on your keyboard until you see a special start-up menu) - more on how to start in Safe Mode here - http://www.microsoft.com/resources/docum...

Using AVG - run a full system virus scan while in Safe Mode

After the viruses have been detected and removed, run SpyBot and AdAware (full system scans) then restart the comptuer, enable System Restore again and enjoy a virus-free computing experience.

If the problems are still there, try using MSCONFIG to help figure out how to manually disable the Trojan from starting up - see more about MSCONFIG here - http://netsquirrel.com/msconfig/...

To help protect against malware you should install a firewall, Zone Alarm works perfectly well and is free – http://www.zonealarm.com/store/content/c...

Also, don't forget to keep Windows up-to-date - using Microsoft Windows Update!

After following these instructions go to: http://www.geekstogo.com/forum/must-read... they will help you for free, no credit card or personal information needed, and they will analyze Hijack This logs for you, to make sure that your computer is safe. HijackThis helps If persistent spyware is bogging down your computer, you might need HijackThis. The tiny program examines vulnerable or suspect parts of your system, such as browser helper objects and certain types of Registry keys. Pressing the Scan button generates a log of dozens of items, most of which are just customizations. Don't check off an item and hit the Fix checked button unless you're sure it's malware. Clicking Info on selected item tells you why the entry was flagged as suspicious, but not whether it's actually malware. To find that out, search the Web for that item's name or go straight to a forum, such as SpywareInfo or Computer Cops. Saving the log creates a text document you can post to these forums.

The latest version adds powerful tools to the Config window. The process manager and hosts file editor help you excise virulent infections. The unique ADS Spy tool scans for alternate data streams, which some browser hijackers use to hide from spyware removers. The program still installs into whatever directory in which you unzip the file, which can make it hard to locate. HijackThis is a serious tool for any user who needs to root out a serious infestation, but wield it with caution. So, go to the site I gave you above, and they'll help you step by step.
Free registry cleaners:
CCleaner does not specialise in cleaning the registry, it's mostly used to speed up your computer by cleaning up your recycle bin, temp files/internet files, browsing history, application errors, log files and so on.. which frees up some space in your harddisk


I've tried these 10 free cleaners
http://www.regsofts.com/freeware/freereg...
I would recommend the following(click on the webpage and follow):

Free Windows Registry Repair(first one) - rather effective, the first scan i did after about a year showed over 500 problems with the registry, fixed them all

RegSeeker(2nd one) - fixed another 300 problems after using the previous one.

and like the two of them said, Eusing Free Registry Cleaner and Abexo Free Registry Cleaner(30 day trial)

Just run them all that'll fix most problems! But dont expect 100% fixes because programs might recreate registry entries when used and so a second scan might still show the same few errors. (ignore such errors)



those are all freeware, hope i'm of some help

Good Luck!

P.S. First go to: http://www.smitfraud-removal.com.removal... and then go to: http://onecare.live.com/site/en-us/defau... Choose full service scan and let it intall any active x components.

Answer 2

Microsoft OneCare Live, run “full service scan”
Updates windows, virus and spyware scan, disk cleanup, disk fragmentation (if needed), backs up registry and then cleans registry, and checks for open firewall ports
http://onecare.live.com/site/en-us/default.htm

Malicious Software Removal Tool (run “full scan”)
http://www.microsoft.com/security/malwareremove/default.mspx

Run Microsoft Update "Custom Mode" install everything. Reboot and repeat until nothing is left.
http://update.microsoft.com/microsoftupdate/v6/default.aspx?ln=en-us

Install and run "Belarc Advisor"
http://www.belarc.com/free_download.html
A detailed profile of all your installed software and hardware.
It will also list all installed security updates.
If an security update has a red X though it search Microsoft for the update number and download and install the update manually.
http://www.microsoft.com/en/us/default.aspx


Try installing the MS07-016 update from the following page. Choose the correct version for your operating system and Internet Explorer version.
http://www.microsoft.com/technet/security/Bulletin/MS07-016.mspx

Answer 3

Here is the Microsoft site that addresses this Security Update. It has the download links for the system you are using.

http://www.microsoft.com/technet/security/Bulletin/MS07-016.mspx

Answer 4

Thats a fake virus update, if you have a good anti virus scanner, it would have picked it up and removed it if any were trying to enter your PC