Our November Competition
User Reviews - Add Yours!
The PCHF Lounge
Go Back   PC Help Forum » Security & Safety » Anti-Virus
Register for a Free Account

Anti-Virus - Isass.exe, what now? posted in the Security & Safety forums; ok, so heres the problem my sister was on msn talking to her friends when she got a message "hey is this profile you? [link]" she opened the link and ...


Reply
Free PC Performance Scan
Old 11-27-2006   #1
Bronze Member
 
Join Date: Aug 2005
Posts: 51
Exclamation Isass.exe, what now?

ok, so heres the problem my sister was on msn talking to her friends when she got a message "hey is this profile you? [link]" she opened the link and it is now sending the same like to all of her friends. Standard msn virus procedure.

now im trying to remove it. the process isass.exe is running in task manager and i cant end it. i was looking through the registry for shady characters when i found " EPIC_NAME" with a value of J Tao. this was found in

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\

maybe it means something. maybe not.

ok so this virus is stoping me from accessing alot of antivirus sites. "page cannot be displayed" this includes the "hijackthis" page in the prework.

any ideas?

here is what symantec has to say about the virus:
Symantec Security Response - W32.Bropia.M
Trigunner is offline   Reply With Quote
Advertisement - Register to Remove
Old 11-27-2006   #2
Tech Member
 
GaRHaR's Avatar
 
Join Date: Jul 2006
Location: Western Australia
Posts: 6,068
PC Experience: Elite PC Guru
Default

Hi Trigunner,

Can you please follow the prework link in my signiture? One of the security tech's will browse through the logs and help you out.
GaRHaR is offline   Reply With Quote
Old 11-28-2006   #3
Bronze Member
 
Join Date: Aug 2005
Posts: 51
Default

I tried to do the prework earlier but my access to most antivirus sites has been block by the virus. On my second try i used a proxy to access and download hijack this. Ive just run a scan and will post the log.

Log:
http://www.pchelpforum.com/hijackthi...tml#post158067

Last edited by Trigunner; 11-28-2006 at 08:07 PM.
Trigunner is offline   Reply With Quote
Old 11-28-2006   #4
Site Manager
 
upgrader's Avatar
 
Join Date: Jul 2006
Location: /home/upgrader/
Posts: 7,250
PC Experience: Some Experience
Default

Ouch that MSN virus i have had that sent to me but recognized the file type and said NO! there are also many variants of it going around.
__________________
PCHF Rules--PCHF Prework--PCHF Downloads
upgrader is offline   Reply With Quote
Old 11-28-2006   #5
Bronze Member
 
Join Date: Aug 2005
Posts: 51
Default

Yeah, it's rough. I had turned off my antivirus to play the supreme commander open beta, I couldnt connect with AVG on. I must have forgotten to turn it back on when I was done. Just bad luck that I got infected that night.

the more i look at the log the more i think that lsass isnt the problem. in the hijackthis log its shows Lsass and the virus form of the file is called isass. according to:
lsass.exe or isass.exe - virus or system file? Find out which process is good and which is evil.

Last edited by Trigunner; 11-28-2006 at 10:44 PM.
Trigunner is offline   Reply With Quote
Old 12-06-2006   #6
Bronze Member
 
Join Date: Dec 2006
Location: Maarssen
Posts: 3
Default

To Solve the problem I did a system restore to a point one day earlier when I had not that virus.
And that helps me to sovle this problem
Ofcourse you have to scan your computer again for a virus
Barendje68 is offline   Reply With Quote
Old 12-06-2006   #7
Site Manager
 
upgrader's Avatar
 
Join Date: Jul 2006
Location: /home/upgrader/
Posts: 7,250
PC Experience: Some Experience
Default

Barend, you will however still have a virus present if you use that restore as the restore is undoable.
__________________
PCHF Rules--PCHF Prework--PCHF Downloads
upgrader is offline   Reply With Quote

Reply


Bookmarks

Tags
isassexe

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are On




All times are GMT. The time now is 06:30 AM.
Powered by vBulletin
Copyright ©2000 - 2009, Jelsoft Enterprises Ltd.
SEO by vBSEO 3.3.2