NASTY Malware knocking about

Vent your spleen about anything that takes your fancy here! Remember to keep it vulgarity-free though!

Moderator: scarface

mandy
Veteran
Posts: 8011
Joined: Fri Dec 12, 2003 1:41 am
Location: With my principles

NASTY вредоносных стучать о

Post by mandy » Tue Sep 06, 2005 9:25 pm

A family friend has just brought around their PC which has been infected with Malware attached to an email.

The wallpaper has been hijacked and says ...

"Your computer might be infected with spyware or adware!!!

Strange homepage, pop ups, loss of important data,and unstable functioning are teh sure signs that you are infected

Click here to get the latest spyware removal software"

Now if that was all it did then it would not be too bad but the PC then hangs. The cursor will move but you can't open any programs. You cant run any software to remove it or even update existing software. It removes tabs from the screen properties box and even stops the PC running in safe mode.

A quick search of the web shows that this virus has only been knocking round for about a month and it may spread itself via email which looks like it may be from your friends.

The removal process is VERY long winded and it looks like a reformat of teh drive may be the only real cure. In this case I will have to keep at it because the hard drive contains the only copies of pictures of the owners dead father and all school coursework.

So heres a warning ...

Make sure your anti-virus software is fully updated and DO NOT OPEN ANY FILES ATTACHED TO EMAILS unless you are absolutely sure they are harmless.

At present I have not even found a name for this malware let alone a cure that I can manage.

BELIEVE ME YOU DON'T WANT THIS ON YOUR PC.


mandy
Veteran
Posts: 8011
Joined: Fri Dec 12, 2003 1:41 am
Location: With my principles

Post by mandy » Tue Sep 06, 2005 9:32 pm

Cant open any programs Schweeny :?

mandy
Veteran
Posts: 8011
Joined: Fri Dec 12, 2003 1:41 am
Location: With my principles

Post by mandy » Tue Sep 06, 2005 9:32 pm

Oh ... I forgot to mention its running windows 98 ... There is no system restore anyway :?

mandy
Veteran
Posts: 8011
Joined: Fri Dec 12, 2003 1:41 am
Location: With my principles

Post by mandy » Tue Sep 06, 2005 9:38 pm

[quote="me"] ... and even stops the PC running in safe mode. [/quote]

[quote="me"] ... There is no system restore ... [/quote]

:?

As I said ... BELIEVE ME YOU DON'T WANT THIS ON YOUR PC.

mandy
Veteran
Posts: 8011
Joined: Fri Dec 12, 2003 1:41 am
Location: With my principles

Post by mandy » Tue Sep 06, 2005 10:07 pm

It appears to be a variant of this ...

http://securityresponse.symantec.com/av ... ack.c.html

But if I cant run programs I cant run an Anti virus program can I? :(


Ian76
Obsessed!
Posts: 957
Joined: Tue Feb 22, 2005 7:39 pm

Post by Ian76 » Tue Sep 06, 2005 10:12 pm

Aways back up to cd/dvd anything important you have on youre pc because you never know when/if youre going to get infected by a virus and lose the lot.or a burglar could just simply rob your your pc.

I hope you manage to retreave the data mandy,Tim might be able to help you?.

Ian76
Obsessed!
Posts: 957
Joined: Tue Feb 22, 2005 7:39 pm

Post by Ian76 » Tue Sep 06, 2005 10:28 pm

[quote="shweeny666"]stds are like computer viruses arent they metaphorically[/quote]

Er...........once you get one your peice of equipment wont function anymore??.

mandy
Veteran
Posts: 8011
Joined: Fri Dec 12, 2003 1:41 am
Location: With my principles

Post by mandy » Tue Sep 06, 2005 10:35 pm

I can't run safe mode Schweeny and the site linked to is part of the Norton antivirus site which describes the problem I have ... or something very similar.

Its not hard to trace who owns teh website that this virus connects to. I am inclined to report it to the police as a possible breach of Section 3 of the computer misuse act 1990.

mandy
Veteran
Posts: 8011
Joined: Fri Dec 12, 2003 1:41 am
Location: With my principles

Post by mandy » Tue Sep 06, 2005 10:55 pm

I don't think they would do anything.

Even though its not hard to trace teh website that this virus links to back to Mr Manuel Carrera Lopez of Shudder Global Ltd, Reading. :?

CJ
Getting warm!
Posts: 64
Joined: Fri Aug 19, 2005 1:50 am

Post by CJ » Sun Sep 11, 2005 4:16 pm

Try reloading Windows 98 - not reformatting - just load it on again so that you can restore the running of the Windows platform, then try and run anti-virus software. Of course, in hindsight, there should have been an active firewall and virus-scanner before the event, not after.

If it's just a matter of backing up information, then do this and reformat the HD.

mandy
Veteran
Posts: 8011
Joined: Fri Dec 12, 2003 1:41 am
Location: With my principles

Post by mandy » Sun Sep 11, 2005 4:50 pm

That was one of the first things I tried CJ. The program just came back immediately.

I managed to get the files off onto a pen drive and reformatted the Hard drive and reinstalled everything. Unfortunately the motherboard has onboard graphics and we dont have the drivers for it. I cant see anything to identify the motherboard and even though I know it has a VIA chipset none of the VIA drivers works.

Looks like I'm going to have to fit a cheap graphics card :?

grammar king
Needs to get out more
Posts: 1144
Joined: Sun Apr 17, 2005 10:55 am
Location: The Wirral, Merseyside

Post by grammar king » Sun Sep 11, 2005 5:03 pm

Sounds nasty. I very rarely open attachments anyway, but ouch!

Tim
Needs to get out more
Posts: 1732
Joined: Sun Dec 28, 2003 10:49 pm
Location: Liverpool

Post by Tim » Sun Sep 11, 2005 11:19 pm

Phil...

Use a piece of software called SiSoft SANDRA (search for it at www.download.com) to identify the motherboard and then look for drivers for the onboard devices.

Tim

mandy
Veteran
Posts: 8011
Joined: Fri Dec 12, 2003 1:41 am
Location: With my principles

Post by mandy » Mon Sep 12, 2005 12:32 am

Will do tomorrow Tim Cheers :)

xtwisted
Needs to get out more
Posts: 1862
Joined: Tue Apr 06, 2004 4:41 pm
Location: On top of the Radio City Tower. *waves*
Contact:

Post by xtwisted » Mon Sep 12, 2005 3:56 pm

This topic looks strange now that Schweeny's posts have been all deleted :?

AVG is good to get rid of viruses

Post Reply