On 23 Jun 2004 07:02:54 -0700, *email_address_deleted* (Kim Carr) wrote:
>Hello,
>This is probably something very simple. I just moved and have just
>had a wireless connection setup. It worked fine the first couple of
>days and then I couldn't get my e-mail and got the "Page Not Found"
>when trying to get on the Internet.
>
>I have an HP PC (I don't know the model off the top of my head)
>running WindowsXP. Prior internet connections setups on it were
>Mediacom High Speed Internet and MSN Broadband.
>
>I contacted my ISP and they said that they had at one point shut down
>my connection because they were noticing a lot of activity from it.
>They suspected a virus. I have realtime protection for viruses, so I
>checked for Spyware. I got rid of that and then had my ISP come out
>and check their equipment. They said it was working fine. They said
>to me that it probably has something to do with the DNS. I brought my
>tablet PC from work home and was able to connect without any issues.
>
>Are there things that I can check before having somebody else take a
>look at it? Thinking that maybe it was the ethernet card, I went into
>Device Manager and uninstalled it and deleted my internet connection.
>When I rebooted, the card was installed, but I still couldn't get
>connected after creating a new connection. One thing I noticed is that
>even though I deleted a previous network connection, it numbered the
>next connection in relation to the previous. Is that typical and
>would that have any effect on my connection?
>
>Any suggestions would be appreciated.
>
>Thanks,
>KC
Kim,
No virus checker or spyware checker is 100% effective all the time. When you
suspect an infection, as in your case, checking with multiple tools is a good
idea. All tools I recommend are free - you have nothing to lose but some time.
And all tools can, and should, be reused, in the future.
In addition to providing ipconfig as separately suggested, check for a dns
(hosts file) hijack.
Search your entire system drive, including hidden and system folders, for file
"hosts". There is one legit copy, in C:\WINDOWS\system32\drivers\etc\. The
others are possibly bogus, and part (but just part) of the problem. Examine the
contents of EACH COPY found, including the legit copy, using Notepad. (HINT:
Scroll to the end of each Hosts file, by hitting Ctrl-End, then back up to the
top, page by page, before deciding that the file is empty. Look out for blank
lines at the beginning and end of the file, after localhost, placed there by an
exploit!)
Try one or more of these free online virus scans, which should complement your
current protection, and help verify that you are virus free:
<http://www.bitdefender.com/scan/license.php>
<http://www.pandasoftware.com/activescan>
<http://www.ravantivirus.com/scan/>
<http://security.symantec.com/ssc/home.asp>
<http://housecall.trendmicro.com/housecall/start_corp.asp>
Now check for, and learn to defend against, additional problems. Have you
downloaded these programs before? Download them again, as the latest version
may be needed to keep up with the current level of malware being attempted
constantly - get the absolutely most current version of each product listed.
They're all free - and most pretty small, so they download quickly enough.
Start by downloading each of the following free tools:
CWShredder <http://www.majorgeeks.com/download4086.html>
CoolWWWSearch.SmartSearch (v1/v2) MiniRemoval
<http://www.safer-networking.org/minifiles.html>
HijackThis <http://www.majorgeeks.com/download.php?det=3155>
LSP-Fix and WinsockLSPFix <http://www.cexx.org/lspfix.htm>
Spybot S&D <http://www.safer-networking.org/index.php?page=download>
Create a separate folder for HijackThis, such as C:\HijackThis - copy the
downloaded file there. Spybot S&D has an install routine - run it. The other
downloaded programs can be copied into, and run from, any convenient folder.
Start by closing all Internet Explorer and Outlook windows, and running
CoolWebSearchSmartKiller, then CWShredder. Have the latter fix all.
Next, run Spybot S&D. First update it ("Search for updates"), then run a scan
("Check for problems"). Trust Spybot, and delete everything ("Fix Problems")
that is displayed in Red.
Then, run HijackThis ("Scan"). Do NOT make any changes immediately. Save the
HJT Log.
<http://forums.spywareinfo.com/index.php?showtopic=227>
Finally, have your HJT log interpreted by experts at one or more of the
following forums (and post it, or a link to your forum post, here):
<http://forums.net-integration.net/>
<http://forums.spywareinfo.com/>
<http://spywarewarrior.com/index.php>
<http://forums.tomcoyote.org/>
<http://www.wilderssecurity.com/>
If removal of any spyware affects your ability to access the internet (some
spyware builds itself into the network software, and its removal may damage your
network), run LSP-Fix and / or WinsockXPFIx.
And Kim, please don't contribute to the spread and success of email address
mining viruses. Learn to munge your email address properly, to keep yourself a
bit safer when posting to open forums. Protect yourself and the rest of the
internet - read this article.
http://www.mailmsg.com/SPAM_munging.htm
Cheers,
Chuck
Paranoia comes from experience - and is not necessarily a bad thing.
Similar Threads
Linear Mode
