Posts: 1,593
Threads: 40
Joined: Apr 2003
When I got home tonight and turned on my PC, I got a virus message. I run Norton Antivirus and update my virus definitions regularly, as well as always having "live update" enabled.
This was not a normal "this email is infected" yellow warning. This was a red warning box. The path was: c:\documents and settings\sue\local settings\temp\susp.exe
It was unable to quarantine or delete the file.
I went to Symantec's page and their suggestion was to turn off System Restore, update virus, restart in Safe Mode and run a full system scan, then delete any infected files.
When I did all that, no infected files were found, when previously there were three (two of which I was able to delete and one of which I was not able to delete or quarantine).
My question is this...how can I be sure that I'm no longer infected? I ran the virus scan AND searched the computer for the susp.exe file. Both came up blank. I just have this nagging suspicion that it's still infected.
Any clues for me?
First person who suggests that it's a scuzzi problem incurs the wrath.....
Thanks in advance!
**EDIT: damn it damn it damn it! I just ran Virus Scan again and it's still coming up with one file that it cannot quarantine and cannot delete!
HELP!!!!!!!!!!!
<center><img src="http://members.hometown.aol.com/_ht_a/oabrokenjaw/images/plutogrowl.gif" border="0"></center>
Posts: 227
Threads: 27
Joined: Apr 2003
Put your antivirus disk in your computer and restart it. You may need to go into the bios settings and enable boot from cd. Once you have that done boot the computer and when it says press any key to boot from cd, press a key.
Booting this way allows the antivirus software unrestricted access to all the files on your computer. It can then remove the infected ones.
Posts: 1,593
Threads: 40
Joined: Apr 2003
How do I get into the bios? I'm running XP.
<center><img src="http://members.hometown.aol.com/_ht_a/oabrokenjaw/images/plutogrowl.gif" border="0"></center>
Posts: 1,050
Threads: 50
Joined: Apr 2003
he is saying you should create Rescue Disks. It's an option in Norton. Have about 5 floppy disks handy. Then go into norton and hunt around about making Rescue disks. It should also tell you how to use them..
<table><TR><TD><img src="http://scripts.cgispy.com/image.cgi?u=ronron5477"></TD>
<TD><IMG SRC="http://oarule.homestead.com/files/ribbon_small1.gif"></TD><TD></TD>
</table>
Posts: 2,221
Threads: 64
Joined: Apr 2003
Quote:Originally posted by sweet angel
How do I get into the bios? I'm running XP.
You access the BIOS <i>before</i> any operating systems take effect (so this is done before XP loads up).
As the computer turns on (or restarts), watch the screen carefully. It will usually say to press a key-- often the ESC or DEL key-- to go to "Setup". The "Setup" feature is the BIOS.
You only have a few moments before XP will begin loading, so if you miss, reboot and try again.
<center><IMG SRC="http://members.aol.com/darkmoonchild23/images/the_brain_magnet.jpg" alt="Are you pondering what I'm pondering?" height=250 width=250></center><br />
<br />
<marquee behavior=alternate> <A href="mailto:darkmoonchild23@aol.com"><center><i>"ARE YOU PONDERING WHAT I'M PONDERING?"</i></center></a></marquee><br /><a href="aim:goim?ScreenName=DarkMoonchild23&Message=NARF!!!!!"><center>I think so, Brain...</center></a><br /><i><font color=4e4e4e>I'll conquer the world long before Kingpin ever finds "Pinky"</i></font><br /><font color=white><b><i>Now, I must return to the Lab to prepare for tomorrow night...</b></i></font><font color=4d4d4d size=-5>
Posts: 1,593
Threads: 40
Joined: Apr 2003
Sounds like how I got into Safe Mode...
The weird thing is, when I ran the virus scan in Safe Mode, it came up clean, but when I went back to regular mode, it came up with an infection.
I looked at Norton's site and there's a way to edit the registry to delete the Trojan files. I'm ascaired though.
The other strange thing is, if I'm infected, shouldn't my PC be acting funny? It seems to be working just dandy.
<center><img src="http://members.hometown.aol.com/_ht_a/oabrokenjaw/images/plutogrowl.gif" border="0"></center>
Posts: 7,149
Threads: 101
Joined: Sep 2003
I get the same message here at work. It says it couldn't fix it but that it quarantined it. Should I worry?
<img src="http://img.photobucket.com/albums/1003/wilbraforce/sigs/headersig.jpg">
Posts: 1,050
Threads: 50
Joined: Apr 2003
Quote:Originally posted by sweet angel
The other strange thing is, if I'm infected, shouldn't my PC be acting funny? It seems to be working just dandy.
just because your body may be feeling good, doesn't mean you are not infected with something..
<table><TR><TD><img src="http://scripts.cgispy.com/image.cgi?u=ronron5477"></TD>
<TD><IMG SRC="http://oarule.homestead.com/files/ribbon_small1.gif"></TD><TD></TD>
</table>
Posts: 2,803
Threads: 48
Joined: Apr 2003
So your name is Sue?
<img src="http://www.blazingconcepts.com/img/syd/sloatsig.jpg">
________________________________________________________________________________________
<center>Boy the way Glen Miller played,
songs that made the hit parade,
guys like us we had it made,
those were the days,
and you know where you were then,
girls were girls and men were men,
mister we could use a man like Herbert Hoover again,
didn't need no welfare states
everybody pulled his weight,
gee our old Lasalle ran great,
those were the days!</center>
Posts: 1,593
Threads: 40
Joined: Apr 2003
Yes.
Now, how can I get rid of this thing without reformatting?
Side note, no virus message today. Is that a good thing?
<center><img src="http://members.hometown.aol.com/_ht_a/oabrokenjaw/images/plutogrowl.gif" border="0"></center>
![[Image: opus.gif]](http://www.entunlimited.com/sigs/Opus/opus.gif)
