ProwlerOnline, Plymouth/Chrysler Prowler Discussion Forum
Off Topic
Viruses, one more time (Page 2)
UBBFriend: Email This Page to Someone!
profile | register | preferences | faq | search
|
|
ProwlerOnline, Plymouth/Chrysler Prowler Discussion Forum
Off Topic
Viruses, one more time (Page 2)
profile | register | preferences | faq | search
|
| This topic is 2 pages long: 1 2 This topic was originally posted in this forum: Tires, Rims Discusssion |
| Author | Topic: Viruses, one more time |
|
ed monahan Prowler Junkie Posts: 33595 |
posted 07-10-2002 01:18 AM
As most of you know, I don't know much about computers but I have helped spread a virus or two. My computer was almost totally rebuilt a few weeks ago and Sunday I noticed it was acting strangely so I called Dell again. He had me hit START, Click on RUN, type in msconfig and click on OK, click on the START UP tab and we discovered I had the KLEZ virus since I had WINK PBH listed. He told me to call Microsoft. I did a search here and found Mike K's thread to eliminate KLEZ. I successfully did that and it told me I had some infected files, etc. I put everything back and today I double checked and I still have the WINKPBH in the start up. I re ran everything and I uninstalled Norton and reinstalled it, successfully but I can't get rid of it. I got a bunch of emails again today that I did not open, one was the anti-anti-virus scam. Is anyone else getting all of this again? I do not want to pass it on and I am trying to eliminate in my computer. My computer has been working fine again but the Winkpbh is still there. Is this truly a virus? How do you get rid of it? I did not re-install my System Restore since it could still be in there. Any help would be appreciated. I just ran house call and it said I did not have any infected files. |
|
ALLEY CAT Prowler Junkie Posts: 36093 |
posted 07-10-2002 08:01 AM
Ed, I get between 2 to 5 per day, mostly from POA member's address book. Just delete. Got one from your computer this morning! |
|
jd2ksilver Prowler Junkie Posts: 4360 |
posted 07-10-2002 08:58 AM
I get them also ,, 1-2,, my question is, when I do a live update on Nortons it says that there are none availible. Been like that for about a week. Dose that sound normal, or is the virus doing this to me? |
|
MeanGene Prowler Junkie Posts: 2407 |
posted 07-10-2002 09:51 AM
Ed and klez crew, The following link is from the Symantec web site for removal of this and its variants: http://securityresponse.symantec.com/avcenter/venc/data/w32.klez.removal.tool.html and for those "other" guys I'm sure this will help Your pal |
|
MeanGene Prowler Junkie Posts: 2407 |
posted 07-10-2002 09:55 AM
Ed and klez crew, The following link is from the Symantec web site for removal of this and its variants: http://securityresponse.symantec.com/avcenter/venc/data/w32.klez.removal.tool.html and for those "other" guys I'm sure this will help Your pal |
|
CWatsonJr Prowler Junkie Posts: 2728 |
posted 07-10-2002 10:06 AM
Ed - if you can't get the program out of your startup folder do this: Click on Start After it is deleted, reboot and make sure it didn't come back. If it is not there in the first place or if it comes back, the trouble is deeper. If the Norton removal tool isn't working either, maybe it is a different strain. Cliff This message has been edited by CWatsonJr on 07-10-2002 at 10:12 AM |
|
ed monahan Prowler Junkie Posts: 33595 |
posted 07-10-2002 01:38 PM
MeanGene, I did the Symantec three different times and it says it found nothing, after finding a bunch the first time. That is the same link Mike had posted a few months ago. Cliff, I tried your method and it said "empty" in the start up file. I appreciate the help. I am concerned that a/c is still getting viruses from me. I will try to contact microsoft. Thanks again guys. |
|
MeanGene Prowler Junkie Posts: 2407 |
posted 07-10-2002 02:24 PM
Ed, This will remove the virus and its variants from your machine. It will not remove the virus you may have sent to AC and anyone else. Yes, it can come back to you from those same people. |
|
ed monahan Prowler Junkie Posts: 33595 |
posted 07-10-2002 05:31 PM
I spoke with Dell support again. They said I must have removed it but it will remain in the start up file since it was not designed to ever be removed by the hackers. Does this sound plausible to you computer guys? Is it possible that A/C did not really get it from me but got it from another computer that attaches anyone's name on it? I thought that was one of the things this virus was noted for!! My computer is working fine and the virus scans show no virus or corrupted files. Thanks for all the help on this. I appreciate it. |
|
CatDude Prowler Junkie Posts: 1593 |
posted 07-10-2002 07:00 PM
quote: Ed, I think they are talking about the fact that the virus could be hidden in the SYSTEM RESTORE files. (This only applies to "Windows Millenium" or "Windows XP", according to the instruction page). I do not think that you have anything to worry about unless your PC keeps getting re-infected. If this is so, then the virus may be in the SYSTEM RESTORE files. If you suspect that the SYSTEM RESTORE files are infected, then you have bascially 3 choices: (1) disengage the SYSTEM RESTORE facility of the operating system (easy to do) or (2) clean the SYSTEM RESTORE files (somewhat involved), or (3) reformat and re-install everything on your PC (time-consuming - and hopefully you still have all of your installation CD's). To answer your other question, it is very difficult to tell where these virus's originate from. It is highly likely that someone else thinks that they recieved a virus from your PC, when in fact it originated at a different PC. By the way.... which operating system (version of Windows) are you running? ------------------ |
|
ed monahan Prowler Junkie Posts: 33595 |
posted 07-10-2002 11:48 PM
Va Cat Dude, I have ME installed and got a free XP update but never installed it since I heard it could cause some problems and I don't really need an update. I disabled the System Restore before doing all the other stuff. He explained that although it says it is still in the system, that is just a false label that cannot be erased since it was made to never be erased. For a little while I had two of the WINK PBH showing in the same list but I got rid of one. It showed that it removed 17 infected files, etc. but when I rechecked I still had the listing. Do I want to right click on that and then delete or if I right click it, is it possible to relaunch the virus? That is the $64,000 question. Unless I know for absolute, positive sure, I am not going to mess with it. Thanks for the info. By the way, I got my Louisville CD and it is very nice. Next tell me how I can take the large picture of my car and make it my screen saver, in 50 steps or less. that is a great picture. |
|
GenoTex Prowler Junkie Posts: 8492 |
posted 07-11-2002 07:42 AM
dont know for sure off that CD, Ed... but on other pics, just right=click the pic... option comes up to set as wallpaper  This message has been edited by GenoTex on 07-11-2002 at 07:46 AM |
|
mojoriser Prowler Junkie Posts: 153 |
posted 07-11-2002 08:46 AM
If you are worried about viruses entering your computers via email, I have the solution. Check out http://www.theaardvark.com I specialize in outsourcing email. We block the viruses and spam at our mail servers--they never make it to your PC! Original Stock '97 ------------------ |
|
CatDude Prowler Junkie Posts: 1593 |
posted 07-11-2002 11:49 AM
quote: That is correct. Just right click the picture and then select "Set as Wallpaper". If you want to make it a "screen saver" (instead of your wallpaper background) - that is another issue. It depends on what screen saver software you are using. This message has been edited by VirginiaCatDude on 07-11-2002 at 11:55 AM |
| This topic is 2 pages long: 1 2 All times are CT (US) | This is an ARCHIVED topic. You may not reply to it! |
All material contained herein, Copyright 2000 - 2012 ProwlerOnline.com
Powered by Infopop www.infopop.com © 2000
E-Innovations, LP
Ultimate Bulletin Board 5.45c
