Several of our Windows computers have been acting strange, and we suspect we've been compromised by MSBlast or some variant. Can you elaborate on the root kits you mentioned last week - what do they do? And is the only fix for this attack to reformat theSeveral of our Windows computers have been acting strange, and we suspect we've been compromised by MSBlast or some variant. Can you elaborate on\u00a0the root kits you mentioned last week\u00a0- what do they do? And is the only fix for this attack to reformat the computer?One\u00a0root kit\u00a0we found had installed an mIRC client that was sniffing passwords off the network and sending them back to an IRC channel. The system was riddled with copies of Trojans based on klandoor and\u00a0aristotles.Symantec, McAfee, Microsoft and others have tools that clean up a system without reinstalling everything, when starting from scratch is not an option. Look for and remove anything named msblast.exe from the hard drive and from the registry.\u00a0Get stinger from www.nai.com\u00a0and run that. Get the\u00a0W32Blast removal tools\u00a0from Symantec\u00a0and run that. Get\u00a0TheCleaner\u00a0from\u00a0Moosort and run that. Install the Microsoft RPC patch. Install all your critical Windows updates. Install the\u00a0MS RPC patch\u00a0again. Back up everything. Update your virus software. Boot into safe mode, run a virus scan and search your computer for new directories under system and system32.