Posted 03 September 2009 - 12:26 PM
I have a small family business with 3 computers and my husband and I each have one computer at home. I replaced mine with a new ASUS about 3 weeks ago. Our ISP, Rogers, is the same at home and at our small office. Last week we were informed by Rogers that we had a virus/bot and our Internet would be shut down in 48 hours if not fixed. The next day I received an automated message that we were over our 60 GB usage cap AT HOME.
I looked at the bandwidth we had used on Rogers site (available for home accounts only), and saw we had used 100 GB in 4 days! Both locations have a one year old Linksys WRT160N wireless router with a firewall and WEP protection. However the computers at the office are wired desktops, and the computers at home are all wireless. I use the wireless connection at the office when I move my computer between home and the office.
The following is true for all the computers...
- OS is Windows XP except for the new ASUS which is 64-bit Vista Home Premium.
- Norton Internet Security 2009 installed and up to date, full scans done daily.
- all updates for Windows, Java, and Adobe Acrobat, are current and up to date.
I took the following actions on all computers...
- Upon learning of the problem, I installed bandwidth meters (DU Meter).
- I ran the following scans: Norton IS 2009 full scan, Microsoft Malicious Software Removal Tool, Malwarebytes
Only two computers at the office had any kind of malware. There was one trojan found on my Dad's desktop, and a lot of problems on my brothers computer which receives all office email and despite my warnings may visit the odd gambling site. Given that I had only 48 hours to fix the problem at the office, The bandwidth meters indicated that my brothers computer was probably the culprit at the office. I replaced my brothers computer with a 3 year old laptop that I was using prior to getting my new ASUS laptop (I ran all the same scans on this computer as well and monitored it's bandwidth). It's only been a couple of days but the bandwidth being used by the computers at the office seems to be in the normal range and Rogers has not cut us off, which suggests that removing my brothers computer solved the problem.
At home, the bandwidth meters indicated that it is clearly the new ASUS that is causing the problem. In addition to the scans mentioned above I ran several other scans with software that claim to remove bots, but they either came up clean or were too complicated for me to interpret the
results. I could find no sign of a problem except that my bandwidth is about 15x what it should be. I have since removed these applications. I also changed the password on my router and changed the secuity from WEP to WPA. No change, so its not someone stealing the bandwidth in the neighborhood.
I read the instructions for posting here but I could not run dds.scr or RootRepeal because they will not work on my operating system (Vista Home Premium 64bit)
I thank you in advance for any help you can give me. I'm sorry if I've written too much but the instructions instruct to explaion the problem in detail, and I'm not sure what's relevant. I really don't want to have to reformat such a new computer. It took me 3 days to get it the way I want it.