SI
SI
discoversearch

We've detected that you're using an ad content blocking browser plug-in or feature. Ads provide a critical source of revenue to the continued operation of Silicon Investor.  We ask that you disable ad blocking while on Silicon Investor in the best interests of our community.  If you are not using an ad blocker but are still receiving this message, make sure your browser's tracking protection is set to the 'standard' level.
Pastimes : Computer Learning -- Ignore unavailable to you. Want to Upgrade?

To: Ish who wrote (19373)5/2/2001 8:07:02 AM
From: thecow  Read Replies (1) | Respond to of 110653
 
Ish

When you get some time you might try going through the steps for manual removal on that same page and see if the removal tool you used missed something. Good luck.

tc



To: Ish who wrote (19373)5/2/2001 3:24:18 PM
From: Tom McIlwain  Read Replies (1) | Respond to of 110653
 
I was infected with the KAK worm myself a few months back and it had a nasty way of coming back after I thought I had eliminated it. The only way I really got rid of it for good was to install McAfee virus scan, which I should have had all along, I suppose.

Do you have some sort of virus protection program?

Unfortunately, I think you pay a price as I do have occasional system abends which I suspect are due to McAfee.

Tom



To: Ish who wrote (19373)5/2/2001 3:33:07 PM
From: mr.mark  Read Replies (1) | Respond to of 110653
 
ish

as i recall (without going back to the symantec site to check), doesn't that virus just rear its ugly head on the first of the month?

and as for it being gone last month, if it's correct that it only appears on the 1st, you would have had to have been using the pc on april 1st to confirm its departure.

assuming you were using the machine on the 1st and there was no virus, and assuming also that you eradicated it successfully using the symantec tool, it's possible that you were reinfected. this would only be the case if you do not have a good antivirus program installed, with updated definitions, and you don't keep the auto-enable feature turned on and also run full-system scans periodically. if these protections are not in place, it is not hard to imagine your pc being re-infected, especially if the virus is propagated via email and you have a friend whose system is still infected.

[edit in: per the symantec bulletin that tc linked for you, the payload triggers the first of any month at 5pm and shuts down windows....]

make sense?

:)

mark


HomeMailHotSubjectMarksPeopleMarksKeepersSettings
Terms Of UseContact UsCopyright/IP PolicyPrivacy PolicyAbout UsFAQAdvertise on SI
© 2026 Knight Sac Media.  Data provided by Twelve Data, Alpha Vantage, and CityFALCON News