svhost virus?

[titodavy]

Hi, I was hoping someone could help me with my problem:

I recently just got off my router to connect directly through my connection (bell sympatico) and once I got online, AVG gave detected that I had a virus which was my "svhost.exe" file in my system32 windows folder. I didn't know what to do at the time so I just used the "heal" option on AVG and restarted. After it booted, things ran really slow and it froze a few time.

I went on a friend's computer to find a solution and I installed these 2 security patches which seemed to have done the trick. I installed some more updates from Microsoft to try and fix it but after I rebooted, I checked my task manager and pretty much all my processes had no User Names. Like this here.

I took out my lan cable and restarted, and I checked my task manager again and saw that everything was fine as before. So it seems that I only get this virus when my computer detects an internet connection. Also, AVG only detects the virus if I'm connected.

Could someone please help me in what to do?

Thanks

 

[mechBgon]

Your router provides firewall protection to keep your comptuer from "taking candy from strangers" like that. If you don't want to use your router, then you should have a software firewall running non-stop, such as the Windows Firewall on WindowsXP Service Pack 2, the Internet Connection Firewall on WinXP "original" and WinXP SP1, or the free basic version of ZoneAlarm.

Personally, if you have WinXP, I would recommend downloading the entire Service Pack 2 installer, burn it to a CD, then nuke your way-insecure compromised computer and start from scratch with a reformat and a fresh installation of WinXP. Do NOT let it connect to the network cable whatsoever until you have Service Pack 2 installed and the firewall running. I've got a page of "best practices" for you here to help with this.

You should also keep your computer fully patched-up at the Windows Update and Office Update sites, and run Microsoft Baseline Security Analyzer monthly to see if you're still up-to-date.

Hope that helps Welcome to the Forums.

 

[mechBgon]

Ooops, I goofed up my links. Fixed now

 

[titodavy]

Thanks very much for the quick reply.

I just installed ZoneAlarm and it seems to be keeping my computer running. I also had Sygate installed but it kept causing my computer to restart. I'm sure this is because of the stupid "candy" i gots.

I'm definately going to have to follow your suggestion to start clean. I just have to back up 80gb...

Also, thanks for the links.