Win32:Lovgate-E1-ASP [Wrm]

Well, folks, I used the search engine, including advanced and nothing came up. What gives? A new worm? Do I have the dubious honor of introducing a new worm to ya’ll? I just got this alert through an email, not an attachment, just a little under two hours ago. Anybody seen this before?

Okay, I’m getting weirded out here. I ran that through Mr. Google in various forms and see one result from last year posted on PC Guide. I see nothing on Alwil, yet this PC Guide post was about an avast alert. I see no “Lovgate” in the avast list of “windows viruses/worms”. The post was from August 29, 2004. What am I doing wrong?

Hi ManyQs,

Here you can find the removal tool:
http://securityresponse.symantec.com/avcenter/venc/data/w32.hllw.lovgate.c@mm.html

greets,

polonus

id you getting on you mail virus, use anti-spam and anti-phishing progs and for complete protection use avast with good configured settings, you can chose them in tray “On Access Protection Control” → - chose modules and look at settings - → …

use this http://eicar.com/anti_virus_test_file.htm
to test antivirus
you can also attach that file to email and send it to your email to check what avast will do and how.

Heh, thanks folks. Really! But all I’m trying to do is get some info on the particular characteristics of this worm. Or is it just like all the others, but with a different name? I stuck the thing in the virus chest, so I figure that should do it, yes? I’m just looking for that little info box I’ve seen about other worms and couldn’t find it? Nor did the search on this forum produce any results, so now I’m wondering if I’m missing some very basic thing here.

Hi ManyQs,

When your problem with this mail is settles, there are a few things you can do to prevent re-infection. Look about the characteristics of this worm, and look for traces in the registry, remove these manually, but first back up your registry.
In the future. Surf dropping your admin rights, activate Win XP SP2, use a firewall, update your system, configure IE safe and update, but use an alternate safe browser like FF, Opera or Flock.
Use a alternate mail client like Thunderbird. Change all your passwords. Make an image of your system partiotion, Analyse your surf and patch habits. Use Avast for AV solution. Set hidden files to show full. Deinstall Windows messenger.

That’s all,

polonus

Howdy back to you, polonus. And holiday cheers to you, but BE SAFE–Okay!?

Now about this situation. I used your Tool Fix link there – many thanks for that – and it gave me an all clear. So score one for avast again.

Two questions, though, if you can put up with all these stupid questions from me.

  1. Can that Lovey-Dovey Worm sit in the virus Chest until hell freezes over and I don’t have to worry about it?

  2. Why did Symantec run that Tool Fix for me for free? I haven’t had a subscription with them for more than 6 months now, so why the free service? From what I could see they scanned my entire system for that Lovey-Dovey Worm. By the way, could they also scan the Outlook files?

In fact, if you can bear it I have one more question: you have any more of those neat “free” Tool Fix links? Seems I could just scan with those from time to time to double check avast’s work.

And thanks for putting up with the stupid questions. Cheers again!

Yes, Chest is completely safe. You just have to worry if the Chest size increase because of so many files there ;D

Like other companies, some tools and features are released for free. After you recognize how useful is having an antivirus, then you buy the paid version, as you can after realising avast software and technical support useful :wink:

Yes you can. Better is having a good antivirus resident. Better safe than sorry :slight_smile: