The Notebook Review forums were hosted by TechTarget, who shut down them down on January 31, 2022. This static read-only archive was pulled by NBR forum users between January 20 and January 31, 2022, in an effort to make sure that the valuable technical information that had been posted on the forums is preserved. For current discussions, many NBR forum users moved over to NotebookTalk.net after the shutdown.
Problems? See this thread at archive.org.

    Please Help with - Worm.Autorun.!iK Virus on my Laptop

    Discussion in 'Windows OS and Software' started by Fuzzy Wazzy Cat, Oct 12, 2011.

  1. Fuzzy Wazzy Cat

    Fuzzy Wazzy Cat Notebook Enthusiast

    Reputations:
    0
    Messages:
    28
    Likes Received:
    0
    Trophy Points:
    5
    A Very Good Day to You.

    Thank you for having a look at this thread and at my Problem.


    I have a Clevo D900F Laptop that has the following details :-

    Setup - Clevo D900F
    Windows 7 Ultimate 64Bit
    6 Gig Ram
    i7 2.66 Ghz Cpu
    x1 500 Gig Western Digital 2.5" Hard Disk
    x1 500 Gig Western Digital 2.5" Hard Disk
    x1 250 Gig Western Digital 2.5" Hard Disk

    Firmware for Laptop is flashed to the latest

    I am running
    1) Comodo Firewall
    2) Emsisoft Anti-Malware
    3) Avira Antivirus
    4) Malware Bytes Anti-Malware

    Now my problem started here -

    About a week ago, I plug in a USB Flash drive into my system. At first my system did not detected anything. But after that day at random Emsisoft Anti-Malware will Pop up a message that I got the Worm.Autorun.!iK virus.

    For some reason, Emsisoft will say the virus is found in the temp guarantine folder of Avira which is some tmp file.

    When I go to the guarantine folder of Avira I find no such tmp file.

    And both Avira and Emsisoft does not show where the virus originates from.

    I have gotten virus before on my system, at these times, both Avira and Emsisoft will show the file that originates the virus.

    I can also find this file being quarantine in the quarantine folder.

    But for this Worm.Autorun.!iK virus, I absolutely cannot find out where the virus is coming from.

    There is nothing in the quarantine folder and both Avira and Emsisoft does not say where the Virus originates from.

    The virus pops up at random too.



    What I have done so far :-

    I have deleted all the contents of my 3 internal hard disks.

    Install linux onto one of the hard disk. and use True Crypt to do a whole disk encryption and format of all the hard disks.

    I then restore from a previous backup that I have on another external hard disk that was created before I plug the USB Drive.

    For some reason, I have no data at all in my laptop, only the linux partition and the Windows 7 partition that was recovered from a back up that was done before I plug in the USB Drive - For some reason I still get the Worm message popping up.

    Can someone please help me ?


    Thank You.


    Fuzzy Wazzy Cat
     
    Fuzzy Wazzy Cat, Oct 12, 2011
    #1
  2. atbnet

    atbnet Notebook Prophet

    Reputations:
    5,868
    Messages:
    5,889
    Likes Received:
    2
    Trophy Points:
    206
    If you are going to restore, then you should probably nuke your drive and make sure nothing is connected before you restore. It may have infected your restore.
     
    atbnet, Oct 12, 2011
    #2
  3. tonymontanaflows

    tonymontanaflows Notebook Enthusiast

    Reputations:
    2
    Messages:
    16
    Likes Received:
    0
    Trophy Points:
    5
    false positive? thats alot of protection suites to be running. does the USB have any U3 or other software builtin?

    I see and remove viruses weekly. there's not much that combofix from Bleeping Computer Downloads: ComboFix Download can't remove. best way to run it in my opinion save to root of C:\ restart hit F8 for safemode command prompt cd to \ run combofix.exe
     
    tonymontanaflows, Oct 13, 2011
    #3