| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 55667 | 2005-03-16 17:49:00 | wnmsconfig.exe | wnmsconfig (7604) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 334746 | 2005-03-16 17:49:00 | Hey all, I've been everywhere and I can't find anything that'll tell me what to do with this annoying little file called wnmsconfig.exe. It keeps me from using alot of online resources, and once I stop it in the Task Manager, it comes back, every reboot. I can't remove it from the registry, as I've looked and can't find it, nor can I get it to stop in msconfig, so anyone know what it is, and for that matter, what to do about getting rd of it?? :dogeye: Please? | wnmsconfig (7604) | ||
| 334747 | 2005-03-16 18:05:00 | Hey all, I've been everywhere and I can't find anything that'll tell me what to do with this annoying little file called wnmsconfig.exe. It keeps me from using alot of online resources, and once I stop it in the Task Manager, it comes back, every reboot. I can't remove it from the registry, as I've looked and can't find it, nor can I get it to stop in msconfig, so anyone know what it is, and for that matter, what to do about getting rd of it?? :dogeye: Please? Have you done a virus scan and run a spyware remover Online Virus scan http://housecall.trendmicro.com/ Spybot Download www.download.com |
Safari (3993) | ||
| 334748 | 2005-03-16 18:58:00 | Yaya, I did that, with Spybot Search and Destroy, and SpySweeper. Nothing, DL'd AVG as well, to no avail. | wnmsconfig (7604) | ||
| 334749 | 2005-03-16 19:02:00 | www.spyware911.net | drcspy (146) | ||
| 334750 | 2005-03-24 22:34:00 | Wnmsconfig.exe is the virus backdoor/irc.sdbot.145.0. Download AVG antivirus (free 7.0). It will find the file. The virus creates a registry entry at hkey local machine/software/microsoft/windows/currentversion/run. Delete this entry. The file is hidden in the c:\windows\system32 directory. If you show hidden files and folders and also elect to view hidden system files, you will be able to search and find the file. If you stop the process in taskmanager, you can also manually delete the file. Your pc's performance is effected because the virus attacks on tcp port 135. If you do a netstat -a at a command prompt you might see a lot of traffic to destinations on the epmap port. |
jeff10000 (7612) | ||
| 334751 | 2005-03-29 17:34:00 | Thank you, ever so much. You just saved me alot of headache. That fixed it fine, thank you. Never would have thought of AVG... :annoyed: Oh wells, thank you again! | wnmsconfig (7604) | ||
| 1 | |||||