|
-
Possible Virus! Help!
Hey, I think I have a virus on my computer.
One that Norton Antivirus doesn't detect.
Every once in a while, I will get a virus warning about a file called Open_me.exe on my desktop. It usually gets deleted automatically by the antivirus.
But what creates that file?
I did a little investigating and it turns out in my c:\windows\system32 directory I have a 'dll32' folder that is full of files that look like illegal game cracks and patches. I see 130 megs of that stuff. Every single file is either 2.06 megs or like 1.08 or something. All files have a description of 'works perfectly'. Basically every single one of those files (either the 2.06mb or 1.08mb) is exactly the same. I even did a SFV on the folder and got the exact same CRC for those files.
But how did all that get there?
All files were created at the same time, Sunday, September 21, 2003, 1:07:47 AM.
I searched for all files on my hard drive that were created on that date and I found additional files named 'regstr.exe' (again with a "works perfectly" description) as well as 'net32.exe'
but then I hit a dead end. I don't see any unusual processes running or anything, but I'm pretty sure there's some virus on my system.
My parents use my computer and I think they might have downloaded something.
Can anyone help me out here?
Custom system: Needs upgrading. Bad.
AMD Athlon T-Bird 1400 mhz @ 1533 (so slow) Thermalright SK6 + ASII
Abit KG7-RAID w/ 1024MB Crucial PC2700 DDR SDRAM
Asus V8200 Deluxe (Geforce 3 w/ TV in, TV out, 3d glasses)
Sound Blaster Audigy Platinum + Klipsch Promedia 5.1 THX
One Maxtor 160 gig HD, Three Maxtor 80 gig HDs, One Western Digital 45 gig HD (total disk space: 445 gigs)
Tornado 1005 Case
3DMark 2000 Score: 11918, 3DMark 2001 Score: 7738
(Intel doesn't suck by the way)
-
Administrator
-
umm, that is a totally different virus. It doesn't do anything like what I've described. Plus it's an email attachment. I'm not dumb enough to open those (and my parents don't use email).
And Norton Antivirus detects it, .. but the virus I have hasn't been detected.
(edit: yes, I have the latest virus definitions, latest version, blah blah blah)
thanks anyways.. I'll fix it myself
Last edited by IntelSux; 10-17-2003 at 01:59 PM.
Custom system: Needs upgrading. Bad.
AMD Athlon T-Bird 1400 mhz @ 1533 (so slow) Thermalright SK6 + ASII
Abit KG7-RAID w/ 1024MB Crucial PC2700 DDR SDRAM
Asus V8200 Deluxe (Geforce 3 w/ TV in, TV out, 3d glasses)
Sound Blaster Audigy Platinum + Klipsch Promedia 5.1 THX
One Maxtor 160 gig HD, Three Maxtor 80 gig HDs, One Western Digital 45 gig HD (total disk space: 445 gigs)
Tornado 1005 Case
3DMark 2000 Score: 11918, 3DMark 2001 Score: 7738
(Intel doesn't suck by the way)
-
Mako Shark
I'd check your startup files using MSconfig (type it in the RUN option on the start menu)
Judging from this page http://www.computersense.on.ca/03052201.htm
the above comment re the virus was correct!- ie W32.HLLW.Shynet
Last edited by Lord Vetinari; 10-17-2003 at 02:34 PM.
Newest comp DFI nf2 ultra xp1500-m @223*10.5 or XP2500-M barton @230*10.5
new comp- 8RDA+, xp2100 TbredB @202*11, 2*twinmos 3200 (non winbond), 9700 pro, Maxtor 9 plus 80gb &120GB, Hitachi CML174SWB 17" LCD
Old comp KT7A Axia 1ghz @1.38GHZ,
GF3 ti200, Compaq 910 19" Monitor
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
Reply With Quote
