|
15 Aug 2004, 00:00
|
#1
|
Insanity Prawn Boy!
Join Date: Dec 2001
Location: In a bush where you can't find me
Posts: 2,474
|
Oh shit
so i had AVG run it's virus scan as usual today, only for it to scream at me VIRUS DETECTED :eek: the virus is Trojan horse Downloader.Swizzer.BL and is located on C:\Program Files\C2MEDIA\SETUP.EXE. Now obviously my first reaction is to move it to the virus vault, unfortunatly AVG says that the file can not be moved :eek: again. wtf do i do now?
__________________
They shall not grow old, as we who are left grow old:
Age shall not weary them, nor the years condemn.
At the going down of the sun and in the morning
We shall remember them.
|
|
|
15 Aug 2004, 00:01
|
#2
|
Retired
Join Date: Feb 2001
Location: BONNY SCOTLAND
Posts: 869
|
Re: Oh shit
i'd like to officially post the first
"Reformat"
post of this thread....
Reformat.
__________________
This space reserved for next Signature.
|
|
|
15 Aug 2004, 00:20
|
#3
|
Insanity Prawn Boy!
Join Date: Dec 2001
Location: In a bush where you can't find me
Posts: 2,474
|
Re: Oh shit
hmmm reformat? sounds a little drastic
__________________
They shall not grow old, as we who are left grow old:
Age shall not weary them, nor the years condemn.
At the going down of the sun and in the morning
We shall remember them.
|
|
|
15 Aug 2004, 01:10
|
#4
|
wild one
Join Date: Feb 2001
Location: River Edge, NJ
Posts: 3,313
|
Re: Oh shit
It is.
Boot into safe mode.
Delete file.
Happy you.
|
|
|
15 Aug 2004, 01:12
|
#5
|
overtired
Join Date: Aug 2003
Posts: 5,900
|
Re: Oh shit
...unless there's another file replacing it again on startup
|
|
|
15 Aug 2004, 01:19
|
#6
|
wild one
Join Date: Feb 2001
Location: River Edge, NJ
Posts: 3,313
|
Re: Oh shit
Due to dictionary definitions between accuracy and pedantry I'll allow you that one.
Check the Run hive of the registry and the standard Windows startup files too for virus signs.
|
|
|
15 Aug 2004, 01:28
|
#7
|
Insanity Prawn Boy!
Join Date: Dec 2001
Location: In a bush where you can't find me
Posts: 2,474
|
Re: Oh shit
after speaking to a friend on MSN, he advised me to go to Task Manager and to stop all processes, which i did. i then ran another virus scan and this time AVG was able to heal the file. yay. i then decided that it might be a good idea to run Ad-Adware, which i did. However, while Ad-Aware was running, AVG popped up with a shit load of messages warning about viruses, one of which was Download.Swizzle.BL, this time on a different file. bugger . i am now running AVG again to see if it will come up with anything, but i suspect it won't
__________________
They shall not grow old, as we who are left grow old:
Age shall not weary them, nor the years condemn.
At the going down of the sun and in the morning
We shall remember them.
|
|
|
15 Aug 2004, 01:36
|
#8
|
^ ^ Clearly Stolen ^ ^
Join Date: Aug 2002
Location: Exeter
Posts: 753
|
Re: Oh shit
any news??
I kept getting virus messages so i ran AVG and it found nothing! I had to Wipe my PC in the end!!
__________________
This is a stick - |
This a squiggly line - S
This is a hole - o
This is a man in a wheelchair - &
and that was my sig.
|
|
|
15 Aug 2004, 01:38
|
#9
|
Insanity Prawn Boy!
Join Date: Dec 2001
Location: In a bush where you can't find me
Posts: 2,474
|
Re: Oh shit
so far AVG has found the Download.Swizzer.BL, but none of the others it warned about. wiping my laptop does not appeal to me as it has pretty much everything on it, and i haven't made backups
EDIT: the scans finished, it only found the one virus which it healed ok
__________________
They shall not grow old, as we who are left grow old:
Age shall not weary them, nor the years condemn.
At the going down of the sun and in the morning
We shall remember them.
|
|
|
15 Aug 2004, 01:39
|
#10
|
^ ^ Clearly Stolen ^ ^
Join Date: Aug 2002
Location: Exeter
Posts: 753
|
Re: Oh shit
I use CD-RW's to backup, I do it reguarly.
__________________
This is a stick - |
This a squiggly line - S
This is a hole - o
This is a man in a wheelchair - &
and that was my sig.
|
|
|
15 Aug 2004, 01:42
|
#11
|
Weeeeee
Join Date: Oct 2003
Location: leeds
Posts: 586
|
Re: Oh shit
take a hammer
aim it at pc
swing
__________________
:gollum: :gollum: :gollum: :gollum:
One load of gollums is enough for anyone.Ta
DM.
|
|
|
15 Aug 2004, 01:42
|
#12
|
Insanity Prawn Boy!
Join Date: Dec 2001
Location: In a bush where you can't find me
Posts: 2,474
|
Re: Oh shit
Quote:
Originally Posted by Superpig #1
I use CD-RW's to backup, I do it reguarly.
|
i would too, unfortunatly i don't have a CD rewriter, or a floppy drive
__________________
They shall not grow old, as we who are left grow old:
Age shall not weary them, nor the years condemn.
At the going down of the sun and in the morning
We shall remember them.
|
|
|
15 Aug 2004, 01:45
|
#13
|
Banned
Join Date: Jul 2004
Posts: 2,442
|
Re: Oh shit
IF you don't know how to fix this and you are asking for help on here how to fix it then your screwed already.
Reformat.
|
|
|
15 Aug 2004, 01:49
|
#14
|
Banned
Join Date: May 2001
Location: Further to the right
Posts: 19,441
|
Re: Oh shit
For the love of god just reformat your hard drive
__________________
Some might ask what good is life without purpose but I'm anticipating a good lunch.
|
|
|
15 Aug 2004, 01:49
|
#15
|
^ ^ Clearly Stolen ^ ^
Join Date: Aug 2002
Location: Exeter
Posts: 753
|
Re: Oh shit
Quote:
Originally Posted by Demon Dave
i would too, unfortunatly i don't have a CD rewriter, or a floppy drive
|
Do you have a USB socket?
__________________
This is a stick - |
This a squiggly line - S
This is a hole - o
This is a man in a wheelchair - &
and that was my sig.
|
|
|
15 Aug 2004, 01:50
|
#16
|
Insanity Prawn Boy!
Join Date: Dec 2001
Location: In a bush where you can't find me
Posts: 2,474
|
Re: Oh shit
Quote:
Originally Posted by Superpig #1
Do you have a USB socket?
|
yes, two
__________________
They shall not grow old, as we who are left grow old:
Age shall not weary them, nor the years condemn.
At the going down of the sun and in the morning
We shall remember them.
|
|
|
15 Aug 2004, 02:04
|
#17
|
^ ^ Clearly Stolen ^ ^
Join Date: Aug 2002
Location: Exeter
Posts: 753
|
Re: Oh shit
You can get these memory sticks to store data on if im correct....
Or you might be able to connect it to another computer and copy the files over and back agaiin?
__________________
This is a stick - |
This a squiggly line - S
This is a hole - o
This is a man in a wheelchair - &
and that was my sig.
|
|
|
15 Aug 2004, 02:14
|
#18
|
Banned
Join Date: Jul 2004
Posts: 2,442
|
Re: Oh shit
Something tells me that if he get's memory sticks, installs the drivers required that the virus will inevitably end up in the memory stick ready and waiting for the freshly reformatted HD.
Anyway with regards to the virus, is there any sensitive information on your pc or do you do any on-line shopping? Do you play any password secured games where the security of said account is of utmost importance to you? Is the performance of the machine greatly affected?
If no to all of the above, **** it let your pc be a zombie for a bit till you have some alternatives at hand or a technical guru friend who can come over and help.
Until then, if you have anything that is password secure or use on-line shopping or have anything you wish to install I suggest refraining for now till you do a reformat, just in case it's put a keylogger on your system somewhere.
|
|
|
15 Aug 2004, 03:54
|
#19
|
Insanity Prawn Boy!
Join Date: Dec 2001
Location: In a bush where you can't find me
Posts: 2,474
|
Re: Oh shit
Quote:
Originally Posted by Sunday8pm
Something tells me that if he get's memory sticks, installs the drivers required that the virus will inevitably end up in the memory stick ready and waiting for the freshly reformatted HD.
Anyway with regards to the virus, is there any sensitive information on your pc or do you do any on-line shopping? Do you play any password secured games where the security of said account is of utmost importance to you? Is the performance of the machine greatly affected?
If no to all of the above, **** it let your pc be a zombie for a bit till you have some alternatives at hand or a technical guru friend who can come over and help.
Until then, if you have anything that is password secure or use on-line shopping or have anything you wish to install I suggest refraining for now till you do a reformat, just in case it's put a keylogger on your system somewhere.
|
i've got a memory stick, but i use that for transporting college work to and fro. i'm a bit concerned coz i ordered some weebls stuff t-shirts and brought some stuff off of eBay using my mums credit card yesterday, and i have no idea how long the virus has been there :eek: . the only password protected games i play are PA and NationStates, so nothing vitally important. the only thing i'm really worried about is my college work if the virus decides to be really nasty and starts wiping stuff, and also my dad has a lot of sensitive info on his computer, which i'm connecting to the net through on our wireless network
__________________
They shall not grow old, as we who are left grow old:
Age shall not weary them, nor the years condemn.
At the going down of the sun and in the morning
We shall remember them.
|
|
|
15 Aug 2004, 04:23
|
#20
|
Registered User
Join Date: Jun 2000
Posts: 8,476
|
Re: Oh shit
Quote:
Originally Posted by skiddy
It is.
Boot into safe mode.
Delete file.
Happy you.
|
If its a trojan then there may well be other backdoors installed on his system by now, a complete reformat is the standard solution for a root level compromise assuming you have anything on the machine that you would like guaranteed secure.
|
|
|
15 Aug 2004, 04:30
|
#21
|
Insanity Prawn Boy!
Join Date: Dec 2001
Location: In a bush where you can't find me
Posts: 2,474
|
Re: Oh shit
okay, so how do i reformat my HD and what mega important things should i do before reformatting?
__________________
They shall not grow old, as we who are left grow old:
Age shall not weary them, nor the years condemn.
At the going down of the sun and in the morning
We shall remember them.
|
|
|
15 Aug 2004, 04:55
|
#22
|
^ ^ Clearly Stolen ^ ^
Join Date: Aug 2002
Location: Exeter
Posts: 753
|
Re: Oh shit
Save all your old files...
__________________
This is a stick - |
This a squiggly line - S
This is a hole - o
This is a man in a wheelchair - &
and that was my sig.
|
|
|
15 Aug 2004, 15:04
|
#23
|
mmm.. pills
Join Date: Apr 2000
Location: Australia
Posts: 2,152
|
Re: Oh shit
Reformatting should always be the last resort. 90% of virus's can be sucessfully and fully removed, gone are the days when real virus programmers existed instead of the script kiddies propergating the net these days. Only in the event that critical system files are compromised should you ever consider a reformat.
__________________
CSS : the result of letting artists design something only an engineer should touch.
|
|
|
15 Aug 2004, 15:21
|
#24
|
overtired
Join Date: Aug 2003
Posts: 5,900
|
Re: Oh shit
do you have a firewall?
it's easy to set one to just allow your browser access the 'net, and nothing else (except things you trust). A trojan would have to ask permission to do it's dirty deeds and you can just click 'no'. (try sygate, they do a free one I used to use, and it recognises known trojans)
|
|
|
15 Aug 2004, 15:38
|
#25
|
The Bad Guy
Join Date: Dec 2000
Location: East, East, East London
Posts: 2,107
|
Re: Oh shit
I say we take off and nuke the site from orbit, its the only way to be sure.
(Reformat)
__________________
I wear my sunglasses at night.
|
|
|
15 Aug 2004, 15:42
|
#26
|
Mathamagician
Join Date: Aug 2001
Location: At the very edge of existance
Posts: 1,803
|
Re: Oh shit
first of many lol, dave you're a n00b posts.
also, get spybot, it's useful for desposing of spyware, and stop using IE, if you must use something like it use that opera skin i gave you or netscape.
__________________
I think I just had an evilgasm
|
|
|
15 Aug 2004, 15:42
|
#27
|
overtired
Join Date: Aug 2003
Posts: 5,900
|
Re: Oh shit
clearly the best thing is to send all your infected computers to me, and buy new ones
|
|
|
15 Aug 2004, 15:43
|
#28
|
Mathamagician
Join Date: Aug 2001
Location: At the very edge of existance
Posts: 1,803
|
Re: Oh shit
nice try 1-X, i know where he lives, i can get it before you .
__________________
I think I just had an evilgasm
|
|
|
16 Aug 2004, 01:34
|
#29
|
Wick
Join Date: Feb 2001
Location: #ABIGBOX
Posts: 107
|
Re: Oh shit
How dare you class PA as 'not vitally important.'
__________________
<Lomax> I win \o\ \o/ /o/
<Asmo> heh
<Asmo> you rock, lomax
<Desse> I am trying to breed a new superpod by leaving Unipods and Megapods alone in the same room with dim lights and Barry white on the cd player
|
|
|
16 Aug 2004, 02:01
|
#30
|
Insanity Prawn Boy!
Join Date: Dec 2001
Location: In a bush where you can't find me
Posts: 2,474
|
Re: Oh shit
Quote:
Originally Posted by SeanG
How dare you class PA as 'not vitally important.'
|
sorry
UPDATE: the messages that AVG keeps flashing up whenever i scan with Ad-Aware, warn me that there is the Java/ByteVerify (or something like that) present in the Ad-Aware program file. is this something i should be concerned about?
__________________
They shall not grow old, as we who are left grow old:
Age shall not weary them, nor the years condemn.
At the going down of the sun and in the morning
We shall remember them.
|
|
|
|
All times are GMT +1. The time now is 09:27.
| |