I believe my computer has been compromised by an unknown intruder. Countless virus scans detect nothing. Symptoms: My computer has slowed down tremendously; the internet connection is much slower than normal (AOL 9.0); numerous files, registry entries, and settings have been modified, added, and deleted; all scheduled Norton tasks, such as auto update, auto NetDectect, virus scans, etc are now "could not start". Windows Service pack 1 was deleted from my program files; I had to download and reinstall. Windows automatic updates are constantly being downloaded, but installation is unsuccessful on many, and they are soon re-sent by windows. I've received the Critical Update for Media Player (KB828026), for example, over eight times, install it each time, but next time, Windows detects that it hasn't been installed and re-sends it. Obviously, many actions are being somehow blocked and redirected, all signs of a virus. When on-line, my task mngr is full of processes that I cannot recognise (as is my startup file), and under "performance", my cpu usage, approx every 3 seconds, indicates 35-88%. I have an Athlon 2400+, dual 80GB hard drives, and a full gig of ram; I should have plenty of resources. Task mngr shows my physical Memory at 1048048, with only 503400 available (this is after deleting all temp files, etc) It's apparent that some type of program is constantly running in the background while I'm on line. I've tried numerous "fixes" obtained through a search of the web, but have been unsuccessful. What should I do next? My computer is virtually worthless in this state, and I'm afraid to perform routine tasks such as financial transactions, internet banking, and bill paying for fear of my information and passwords, etc being caputered (if they already haven't been) Please help...

I've run one-button checkup in Systemworks and "fixed"... ...fruitless! I've downloaded, installed and run many security assistance programs, all to no avail. (Spybot S&D; Hijack this, CWshredder, and others...

I've manually downloaded and installed every Norton, Symanted, and Windows secutity update, but have no idea how many have been installed (Symanted informs me that everything is up-to-date.) I could really use further suggestions... ...please!

My operating system is Windows XP Professional, NIS 2002 and Systemworks Professional 2002. ...have also downloaded and installed AntiVir (but don't run both at the same time), mainly to get a different virus scan, in case something compromised Norton's scan; again, nothing, with the exception of notes that some files were locked and could not be scanned.

I'll be happy to post results of any tests or procedures requested.

hello
try onlinescan at housecall antivirus.
there is one viruse that sleeps during scans. hope its not one of those.
d/l a2 free trojin scanner.
d/l a2 free
http://download.emsisoft.com/a2freesetup.exe

Thanks... ...I did an online scan with HouseCall yesterday... ...the result was "Congratulations! Your computer is virus-free.", so I didn't include that info...

I might be misunderstanding your reply; are you suggesting that I download more? I will do that also if it will help.

i,m thinking if you had a trojin and some one compormized your computer. you might find the trojin. as a start. but if some one has a back door and has made god knows what changes to your system it might hard to fix.

I'm downloading the a2freesetup now... ...with my already slow dial-up, combined with whatever's running in the background, I will take well over 1/2 hour to download the less than 3MB file.

(now you can see why I'm getting desperate)

I'll let you know the results asap... ...thanks!

as a side note, it took me nearly 4 minutes just to open your reply... ...forgive my slow responses

how much free disk space do you have?
and i had some older people with a slow computer and could find nothing wrong. i started a defrag they ask whats that we have not seen the computer do that before. they had it over a year. defrag cleared up the slowness.you sound like you know your way around acomputer. so you will have done this in the last few months?

I defragged several times in the past week; again this morning...

I have 5.8 GB free on the C drive; 17 GB free on the D; 56.9 on the E; and 50.7 on the H.

(I use the D, G, and H for storage of various files, downloads, jpeg and video files to conserve space on the C and for faster operation when video editing.

I'll get back to you as soon as my download completes and I test...

was just trying to rule out slowness and strange problems the last two cause.

I'm "stuck" on the installation of the a2 software... ...it won't let me complete the installation without an update; to do that, I have to create an a2 account... ...it won't let me do that without a uname, code, and a license #...

????????????

never mind... ...it installed when I closed the dialog box... ...I'll just have to run it without the updates... ...stand by for the results

its been a long while since i instald mine.
seem to rember there is an option to register the free one and they email you the serial.
they have a help forum.

I was wrong about the previous... ...it installed, but will not open...

"Before you are able to use a2 you have to activate it using the updater" Going in circles; will try to find the website.

...found the website; registered (Thanks)... ...now it's downloading updates... ...will keep you posted.

You said your connection is much slower - are you connecting at a lower rate? What is your connection speed?

BlackViper has a most outstanding source for information about services running. Check out: http://www.blackviper.com/WinXP/servicecfg.htm

In addition to SpyBot, I like to use AdAware: http://lavasoft.element5.com/support/download/. Seems the combination of SpyBot and AdAware both is pretty effective.

Are you making sure all your scanners have the latest signature updates?

What about off-line apps, like word processing (opening large docs, spell checking large docs), games, and other apps that don't require the Internet? Are they slow too.

What are some ping times, say to www dot yahoo dot com?

Have you tried disabling your Norton firewall - just long enough for a test?