1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Not Configuration or Virus..A stinking Worm!

Discussion in 'Windows XP' started by diannef, Jan 18, 2003.

Thread Status:
Not open for further replies.
  1. diannef

    diannef Thread Starter

    Joined:
    Jan 3, 2003
    Messages:
    7
    Hi,

    I want to thank everyone who took the time to answer my earlier questions. Rolling Rog..

    I downloaded a program this morning called examiner32.

    It allows you to search any kind of file for a string of text. You can even edit some of the files once it finds them.

    I found a three files that all contained the words:

    wormhole
    payload
    inproc32
    dirty

    The files are all in the WINNT/debug folder. I tried to delete them but I couldn't. I tried to boot from a 98 cd to boot from DOS when "safe mode" wasn't working, and I got an error message to the effect of it couldn't read the CDROM.

    So.
    I shut the computer down. It's a Shuttle MB/P4 processor.

    I cleared the CMOS
    Low level reformated the drive
    Never went online.
    Never installed a thing other than 2000 Pro
    and the Video Driver off the disk that came with the Shuttle MB.

    It was deja vu all over again. ms.dos, config.sys, IO.systems, schedglulog.txt, boot.ini in the straight C:Drive

    Same problems. Those are:
    I can't upgrade my 5. IE to 6 from a PC World CD, it always gives me the message "another installation of IE 6 is already in progress. please reboot

    that I can only use IE 5 to surf the net 3 or 4 times before I get one error message or another, mostly that the homepage could not be found.

    Then AOL (7.0) starts acting shaky as well.

    The worm makes a dll with the same name as most of the exe files in the system32 folder. (or maybe it's the other way around)

    Why isn't clearing CMOS and doing fdisk /mbr, reformatting the drive getting rid of this thing from H.E.double hockey sticks?

    My firstborn to anyone who can figure this out.

    I am truly stumped.

    Dianne



    :eek: :eek:
     
    diannef, Jan 18, 2003
    #1
  2. Rollin' Rog

    Rollin' Rog

    Joined:
    Dec 9, 2000
    Messages:
    45,855
    Dianne, can you download, unzip and run the StartupList program from this site? Once you run it, just copy/paste the full results to a reply. This should allow us a good look at what is currently running on the system.

    http://www.lurkhere.com/~nicefiles/

    It could be that the floppy you used to fdisk/format from is itself infected. Have you tried downloading IE6 instead of installing from that CD?
     
    Rollin' Rog, Jan 18, 2003
    #2
As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Similar Threads - Configuration Virus stinking
  1. Technoid1

    Browsers and virus programs don't work

    Technoid1, Feb 17, 2019, in forum: Windows XP
    Replies:
    12
    Views:
    767
    dlipman
    Mar 6, 2019
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/113971

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice