DeaconFrost
[H]F Junkie
- Joined
- Sep 6, 2007
- Messages
- 11,582
....at least I think it is due to a virus or malware. I recently was tasked with cleaning the malware from a relative's computer. It had several infections, including the Vundo virus. I believe, through various tools and scanners, I have the system mostly clean. However, whnever I reboot the system, a VPN connection called test is created, and set to connect on startup, once you log in....and this is true with any account on the system. If I let the VPN connection successfully connect, I can cancel it and remove it, and all seems normal. However, I can't figure out what is creating this connection, or how to stop it. It is connecting to an IP of 213.155.1.3, and I currently have the HOST file edited to point this address to the loopback IP.
Has anyone seen this behavior before? I can't figure out where the connection is coming from. All start up items are normal, and no odd processes are running in the background. Avira and Symantec Corp scans come up clean, as well as Spybot and SuperAntiSpyware scans.
This is an XP Pro SP3 machine.
Has anyone seen this behavior before? I can't figure out where the connection is coming from. All start up items are normal, and no odd processes are running in the background. Avira and Symantec Corp scans come up clean, as well as Spybot and SuperAntiSpyware scans.
This is an XP Pro SP3 machine.