Posted 30 August 2007 - 10:11 AM
I have an IBM Thinkpad T40, running Windows XP Pro, Version 5.1 with Service Pack 1. I use dial-up Internet access. A few days ago my connection was dropped (happens frequently; service isn't great around here) and when I tried to redial I got the message that the modem was already being used by another application. Puzzled, I went to "Internet Connections" to see what was wrong. My two normal dial-up connections were there, both currently showing disconnected, but there was a third, labeled "Service" that said it was trying to connect. I checked its properties and it had no phone number listed, but was set to re-try every second. I tried to delete it and as soon as I deleted it another, identical, connection showed up in its place. I tried to delete it and it wouldn't delete. I reset its interval to 30 seconds, thinking that would at least give me time to get my real connection running. The computer promptly created another "Service" and was again attempting to connect at 1 second intervals. I reset its interval to 30 seconds and the computer promptly created still another "Service". At this point I had three Internet Connections labeled "Service", none of which I had created, tying up my modem so I couldn't use it properly. Fortunately none of these bogus connections had a phone number associated with it, so no calls were actually made.
My antivirus is Norton Internet Security 2006. I checked Norton's website and learned about the Backdoor.Wualess.C trojan. I wonder if this is what I have. My virus definitions are now up to date, but Automatic Update was apparently turned off for a day or two, which might have let something slip in. I have run several full-system scans and the only thing that shows up is an old IBM vulnerability called eGatherer.dll that I had forgotten to patch. I've since patched it. Meanwhile, my computer continues to do its bizarre thing of trying to create its own "connection" and tying up my modem. The only way I can connect for real is to wait with my finger poised on the connect button until the bogus connection takes its 1-second break and then quick beat it to the punch.
Any suggestions? Is this a virus or just some malfunction in Windows that would be solved by uninstalling and re-installing something? It doesn't seem like a modem problem, because according to my system information I actually have two modems installed on my computer and this "System" connection switches back and forth between them, apparently at random, trying to make its connection.
Should I install Microsoft Service Pack 3 or wait until I resolve this issue?