Wraith......
I got this virus a while ago from Limewire called W32.Alcra.f.
.....
W32.Alcra.F is a worm that attempts to propagate through various file-share networks accessible with BearShare, LimeWire, Morpheus and Shareaza applications. It also attempts to disable several programs on the compromised computer and drops a variant of W32.Spybot.Worm onto the compromised computer. Up until now I thought I had properly deleted it.
No , you didn't . This is what it does .... [bAttempts to disable several programs by creating the following empty files with the hidden and system attributes set:
%System%\cmd.com
%System%\netstat.com
%System%\ping.com
%System%\regedit.com
%System%\taskkill.com
%System%\tasklist.com
%System%\tracert.com
Note: %System% is a variable that refers to the System folder. By default this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
Modifies attributes of the %System% folder.
Copies itself as %ProgramFiles%\outlook\outlook.exe.
Note: %ProgramFiles% is a variable that refers to the program files folder. By default, this is C:\Program Files.][/b]
Which anti virus are you using and is it up to date ....... This is a very recent nasty.......
If you havent already done this ......
Go into folder options and make sure your hidden files and folder are shown.
Turn off your system restore feature .
Reboot into safe mode and run a complete scan ......... Record exactly what is found and where it was located .....
let us know how you make out .
dl65