Site New Answers Search Boards ILM ILE Answers New Question New Questions New Poll Blog View Register Login

Help : virus advice needed

Message Bookmarked
Bookmark Removed
Help! A virus has got on my laptop and is intercepting my dial-up modem connection, disconnecting it and replacing it with another connection. It seems to have got past my anti-virus s/ware and keeps reappearing. I can uninstall it and I have tried to hunt down all associated files on my hard drive and delete them (an exe file & a pre-fetch), but they keep coming back!

Can someone more techie help me! It means that I can't keep a connection for more than a couple of minutes. Thanks everyone!

Dr. C (Dr. C), Thursday, 13 May 2004 08:10 (twenty-two years ago)

Start --> run --> msconfig --> startup

Look for ticked programs which seem suspicious - .tmp files, programs that are only numbers, etc. Uncheck them, then start up your pc again. If the virus doesn't take effect, you've successfully disabled it.

Markelby (Mark C), Thursday, 13 May 2004 11:31 (twenty-two years ago)

Welcome to the joys of the Sasser worm, we had a guy demo some very flash software yesterday, slightly ruined by the fact that his dialup box kept popping up.

PAtch your windows to the with the latest patches and update your Anti-virus software and set it to work.

Ed (dali), Thursday, 13 May 2004 11:58 (twenty-two years ago)

i caught some varient of the blaster worm recently again - i thought i had patched it.

now my system files are in tatters cos this new worm seem to corrupt files also. this one pretends to be some kind of avsystem.exe or something file. anyone had that yet?

ken c (ken c), Thursday, 13 May 2004 12:25 (twenty-two years ago)


Running startup might help, but even then it could come back. However, this will probably sort it: visit here to download Hijackthis (small file, but anyway you can open without necessarily saving it to your computer). http://tomcoyote.com/hjt/

And then after scanning your PC with it, post your Hijackthis Log at TomCoyote forum, here: http://forums.tomcoyote.com/index.php?act=Post&CODE=00&f=27 An expert will get back to shortly to tell you what needs deleting (don't delete anything before being advised).

If Hijackthis doesn't work, and I'm inclined to think it probably will, you can try going here: http://www.spywareinfo.com/~merijn/cwschronicles.html where you can download CWShredder. This is more aggressive, and has helped many who had begun to despair. Good luck!

Owen, Thursday, 13 May 2004 13:42 (twenty-two years ago)

One way of determining for sure if it is the Sasser worm, as mentioned above, you can check for infection at microsoft here:

http://www.microsoft.com/security/incident/sasser.asp

Whether it is or it isn't Sasser, Tom Coyote's Hijackthis will probably help you.

Owen, Thursday, 13 May 2004 13:46 (twenty-two years ago)

I've downloaded latest MS updates and blasted the shit out of it with CWShredder - so far (fingers crossed...) it looks like it's under control. Thanks everyone!

Dr. C (Dr. C), Thursday, 13 May 2004 14:43 (twenty-two years ago)

I was going to suggest CWShredder but I thought your problem was something slightly different after reading their web site. damn.

Ste (Fuzzy), Thursday, 13 May 2004 14:46 (twenty-two years ago)


You must be logged in to post. Please either login here, or if you are not registered, you may register here.
Site New Answers Search Boards ILM ILE Answers New Question New Questions New Poll Blog View Register Login