More trouble tonight...... If you got hit with this virus - have you seen
this problem?
For some reason I have lost all my serial ports and can't get them back.
> The initial symptom was N1MM and DX4Win would not control the K3s. At one
point a comment about "DIRECT I/O" not working popped up.
> I checked Device Mgr and the MS Yellow Explanation point was on all (3)
serial ports
> They are enabled in BIOS
> I have (1) on the mother board / (2) on a SIIG PCI I/O board.
> All three are dead with the wonderful Microsoft YELLOW Explanation point
showing in Device Manager
> I tried to deinstall - won't let me do that. I get the "do you want to
send an error report" box, I click on NO and Device Mgr closes.
> I unplugged the SIIG PCI, it left the Device Manager
> I tried to reinstall the SW from the CD - it appeared to work... but the
yellow explanation point came up again.
> The only way I can deinstall it is to physically remove it.
> As nothing else was working I tried a SYSTEM RESTORE to about 10 different
dates.... none worked.
I guess this virus got MUCH more on this PC than I thought.
The one I rebuilt is now doing fine.... for now.
Any suggestions / help would be appreciated.... except "RUN A MAC" or "RUN
LINUX".
73,
Bruce - N1LN
-----Original Message-----
From: writelog-bounces@contesting.com
[mailto:writelog-bounces@contesting.com] On Behalf Of Don Hill AA5AU
Sent: Saturday, October 01, 2011 23:50
To: Don Hill AA5AU
Subject: [WriteLog] Possible virus on contesting.com and eHam websites
Last Friday I got a nasty trojan on my work laptop viewing ham-related
websites. I didn't know which one because I had left the
room for something and when I returned my PC was going haywire with all
these false alerts saying my hard drive had died. Today I
got a mysterious dialog box when I went to contesting.com. Others have told
me they got the same thing when going to eHam.
It's called the Data Restore virus. A description of the virus plus a good
set of instructions for getting rid of it are located
here:
http://www.myantispyware.com/2011/09/29/how-to-remove-data-restore-virus/
>From what I understand, it could be related to running Internet Explorer 8
under Windows XP although other platforms may be
susceptible too. When visiting these sites, a dialog box comes up asking if
you want to run a program. Do NOT click the Allow
button or the X box to close it or the "What's the risk" link. Instead,
CLOSE IT ONLY USING THE CANCEL BUTTON.
A did a screenshot of the dialog box and put it on my website. To see what
it looks like, go here:
http://rttycontesting.com/contestingcom.jpg
I'm running MS Security Essentials and it did not immediately catch it. I
have heard that other virus programs did not catch it
either.
Sorry for the bandwidth, but I just hope to save others from the pain of
having to deal with getting rid of this crap on their
computer after visiting legitimate ham-related websites.
73, Don AA5AU
http://www.aa5au.com
http://www.rttycontesting.com
_______________________________________________
WriteLog mailing list
WriteLog@contesting.com
http://lists.contesting.com/mailman/listinfo/writelog
WriteLog on the web: http://www.writelog.com/
_______________________________________________
WriteLog mailing list
WriteLog@contesting.com
http://lists.contesting.com/mailman/listinfo/writelog
WriteLog on the web: http://www.writelog.com/
|
