S
setho
It seems that I have the blaster worm or something like it, and I'm
having a hard time getting rid of it. My computer (Windows XP Home,
SP1) periodically shows a message about a Remote Procedure Service
call and needing to restart, and then does restart. I have fairly
recent definitions for Norton Antivirus but that doesn't seem to help
since that program won't stay open for more than a few seconds. It
starts but closes again almost immediately. Same thing with regedit
and with the Microsoft patch WindowsXP-KB823980-x86-ENU that I'm
trying to use to take care of the vulnerability that got me into this.
Moreover, and perhaps unrelated, I am not able to turn on the
Internet Connection Firewall for my highspeed internet connection. I
see the option on the Advanced tab in the properties for that
connection, but it's greyed out and unresponsive. I do have
administrative priveleges. I have run the symantec blaster and welch
removal programs and both reported no infected files. I don't see
anything in task manager that is clearly identifiable as a blaster
process but my CPU usage displays as 100% with nothing running that
I've initiated so I suspect that something unsavory is happening. I
have run searches on the file names listed on the microsoft blaster
page (msblast, teekids, winlogin, penis32, win32sock, and a couple
others that I don't recall) and found nothing.
I think that's everyting that I've read on the various blaster
postings in this group and others, as well as on the symantec and
microsoft sites so it seems that I'm at the end of the road. Any
other suggestions would be greatly appreciated.
having a hard time getting rid of it. My computer (Windows XP Home,
SP1) periodically shows a message about a Remote Procedure Service
call and needing to restart, and then does restart. I have fairly
recent definitions for Norton Antivirus but that doesn't seem to help
since that program won't stay open for more than a few seconds. It
starts but closes again almost immediately. Same thing with regedit
and with the Microsoft patch WindowsXP-KB823980-x86-ENU that I'm
trying to use to take care of the vulnerability that got me into this.
Moreover, and perhaps unrelated, I am not able to turn on the
Internet Connection Firewall for my highspeed internet connection. I
see the option on the Advanced tab in the properties for that
connection, but it's greyed out and unresponsive. I do have
administrative priveleges. I have run the symantec blaster and welch
removal programs and both reported no infected files. I don't see
anything in task manager that is clearly identifiable as a blaster
process but my CPU usage displays as 100% with nothing running that
I've initiated so I suspect that something unsavory is happening. I
have run searches on the file names listed on the microsoft blaster
page (msblast, teekids, winlogin, penis32, win32sock, and a couple
others that I don't recall) and found nothing.
I think that's everyting that I've read on the various blaster
postings in this group and others, as well as on the symantec and
microsoft sites so it seems that I'm at the end of the road. Any
other suggestions would be greatly appreciated.