Results 1 to 11 of 11
  1. #1
    Terinox's Avatar
    Terinox is offline The One & Only
    Join Date
    Nov 2001
    Location
    Canada
    Posts
    5,000

    Virus Problem??!!

    Okay, the following files are INFECTED with some kind of virus, I deleted some of the files (as shown below). Some I can't delete, and some I think are too important to delete. Anyone have any idea WHAT virus is causing this, and HOW to fix the problem?!? My own virus scan program (McAffee or wutever) says that it can't clean them, bla bla, you have to delete and replace from back-up (which I don't have).

    Help please!

    C:\winnt\system32\mdm.scr
    C:\winnt\system32\winnt32.scr
    C:\Drivers\iserver.bat
    C:\Drivers\dx.exe
    F:\Documents and Settings\Default User.WINNT\Local Settings\Temporary Internet

    Files\Content.IE5\4XI34TEB\agobot_edu[1].exe
    F:\Documents and Settings\Default User.WINNT\Local Settings\Temporary Internet

    Files\Content.IE5\C3W3AZU9\agobot5[1].exe
    F:\WINNT\msapps\dir\abc.bat
    F:\WINNT\msapps\dir\abc.dll
    F:\WINNT\msapps\dir\abc.exe
    F:\WINNT\msapps\dir\remote.ini
    F:\WINNT\Shell32\abc.dll
    F:\WINNT\Shell32\ntdll.bat
    F:\WINNT\Shell32\remote.ini
    F:\WINNT\system32\BACKUP.BAT
    F:\WINNT\system32\MDM.SCR
    F:\WINNT\system32\opo.bat
    F:\WINNT\system32\PipeCmdSrv.exe (deleted)
    F:\WINNT\system32\syshonk.exe (deleted)
    F:\WINNT\system32\sysmgr.exe
    F:\WINNT\system32\trashmanx.exe
    F:\WINNT\system32\woinggg.bat (deleted)
    F:\WINNT\system32\woinggg.exe (deleted)
    F:\WINNT\Temp\lylvj.exe (deleted)
    F:\WINNT\Temp\mqpy.exe (deleted)
    F:\WINNT\Temp\ootc.exe (deleted)
    F:\WINNT\winsys32\abc.dll

  2. #2
    KeyMastur is offline VET
    Join Date
    Sep 2001
    Posts
    7,424
    Wonder if it's that new LovSan virus that's going around ?? Affects XP and 2000 users.

    http://www.usatoday.com/tech/news/co...-lovesan_x.htm

    I think Microsoft has an update for your software on their site somewhere.

    This one's big time fuckin things up.

  3. #3
    BigGreen's Avatar
    BigGreen is offline Anabolic Member
    Join Date
    Aug 2002
    Location
    12,000 feet above it all
    Posts
    4,345

  4. #4
    BigGreen's Avatar
    BigGreen is offline Anabolic Member
    Join Date
    Aug 2002
    Location
    12,000 feet above it all
    Posts
    4,345

  5. #5
    BigGreen's Avatar
    BigGreen is offline Anabolic Member
    Join Date
    Aug 2002
    Location
    12,000 feet above it all
    Posts
    4,345
    You MUST do this quickly. If the virus has time to get into the reg then you're basically as fucked as i was. I just got done reformatting my C Drive after spending most of today and yesterday on the phone with various techs. Fortunately, Vaio came with two hard drives for this specific reason...everything of value is stored on D, with C simply acting as the guts or brain of the computer. Most things will attack this so you can reconfigure without losing your documents if they're inaccessible or backing them up if they are....very convenient and I'm glad i had it now.

  6. #6
    MBaraso's Avatar
    MBaraso is offline Retired Mod
    Join Date
    Oct 2001
    Location
    Somewhere
    Posts
    7,629
    Yeah like bigG said if you don't get rid of that quick the worm will run a DOS attack against your system and it won't allow u to download anything from microsoft...
    Goodluck,

  7. #7
    Terinox's Avatar
    Terinox is offline The One & Only
    Join Date
    Nov 2001
    Location
    Canada
    Posts
    5,000
    Thanks a lot for the quick help guys, I actually got the problem fixed, funny story actually. Turns out it was a worm. Guessing some guy had also hacked my pc.

    Brother is a comp. programmer, but he's always busy, and I told him first about it, he said he'd look into it, and wasn't sure what the problem was (that's why I asked on AR). Funny thing, talked to my sister on the phone, she had the EXACT same problem as me, it was some worm program, and once my bro found out it was the same thing, he fixed it using some Windows 2000 upgrade program plus a worm finder program. I have also installed a Firewall program today so that no one can access the pc and shit like that.

    Thanks again for the help, even tho I didn't need it
    T.

  8. #8
    razor67's Avatar
    razor67 is offline Banned
    Join Date
    Nov 2001
    Location
    FLORIDA
    Posts
    1,189
    i was screwed too..just finished with the fix and the patch..installed the windows updates and good to go..what a pain in the ass though.

  9. #9
    wrstlr69sdnl's Avatar
    wrstlr69sdnl is offline Senior Member
    Join Date
    Oct 2002
    Location
    California
    Posts
    1,820
    I just got done with this crap to I used Mcafee and it cleaned everything out of it it was alover my computer

  10. #10
    arthurb999's Avatar
    arthurb999 is offline Anabolic Member
    Join Date
    Aug 2001
    Location
    USA
    Posts
    2,712
    I fixed one of our work computers today... not to hard to fix.

  11. #11
    bermich's Avatar
    bermich is offline Anabolic Member
    Join Date
    May 2003
    Posts
    4,690
    Know what is even more fun than getting a virus from a hacker. Its knowing an even better hacker to send the bad hacker a virus through his own trojan. Funny shit. Just upload the program your hacker friend made. Makes it look like your computer is vulnerable to the trojan. Once you see the hacker is probing your system, you just send him a little gift. OMG it fucks up his computer so bad. Kinda like putting JB weld in your motor oil. Its all good at first, but once it sets up......
    Bad hackers suck. Good hackers make me laugh and make my day more enjoyable.

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •