Damn you viruses! Damn you all to Hell!

Stompwampa

Diabloii.Net Member
Damn you viruses! Damn you all to Hell!

Story: I was at a LAN party this past weekend. Everyone was installing the games we were to play, but we needed to find a new CD key cuz one of the guys left his install discs at home. So, I took on the task. As you may know, pretty much every site that offers up CD keys is...err...questionable...to say the least. Anyways, I should have known better, but I downloaded a key-gen for one of the games. Well, it wasn't a key gen. I opened it, the screen flashed, and the file diapeared of my desk top.

The Problem: I kept getting pop up windows and the little yellow ballon in the sys tray kept popping up saying "You've been infected with a virus! Download [insert fake virus removal software here] to fix the problem!" or "Your computer is at risk! You need to download [insert fake virus removal software here]!"
And the pop ups I get don't let me close out of them without downloading something, so I have to alt+f4 to close them the backdoor way.
I ran my AVG virus scanner, and it got 11 viruses. I ran Ad-Aware, and that romeoved 54 pieces of spy-ware. Most of the problems were gone.

I then found a couple of .exe files that were running in my task manager that I had to search for in Windows, then "end task" on them, then delete them before they started themselves back up again. Crafty bastards. That solved a couple more issues.

Now, Firefox keeps opening a new tap to some IP address. I close the tab immediately. I'm still getting pop-up tring to get me to download WinAntiVirus Pro 2006! Obviously a scam. I've updated all my virus and spy ware definitions, and I even downloaded the AVG spyware finder too. Those have each gotten a couple more buggers, but I"m still having the same problems with popups trying to get me to download some cracked out antivirus program. every time I run my virus/spyware detectors, they come up clean, but they obviously are not.

Any more ideas for me?



(Yes, I know I braught this on myself...I just can't seem to fix it now like I have in the past.)
 

bladesyz

Diabloii.Net Member
If you have system restore turned on, try restoring to a point before you downloaded the virus.

If you don't have system restore, then restart you computer in Safe Mode, check that you don't have any strange processes running (when in doubt, kill it). Now run a virus check and a spyware check.

After you finished your checks, do a search for all files CREATED on or after the date when you downloaded the virus. Specifically, you are looking for files in your C:\Windows\System or system32 folders, though you should keep an eye out for all suspicious files.

Backup and then delete all suspicious .exe .dll filles. Make sure you remember where they came from, in case you mess up.

Restart the computer.

You can find more help here.

BTW, how come you didn't check the downloaded file for virus before running it?

h4n h4n /macuser
Mac's security is just as bad, if not worse, as a PC's.
 

Stompwampa

Diabloii.Net Member
just out of curiousity how big was the file yo downloaded?
less than 1mb, which is why I wasn't super suspicious about it...keygens are usually less than 1mb.

bladesyz said:
BTW, how come you didn't check the downloaded file for virus before running it?
I never even thought about it... :banghead: :dunce:


bladesyz said:
Quote:
h4n h4n /macuser
Mac's security is just as bad, if not worse, as a PC's.
Yep. It's just that there aren't as many viruses out there for Mac's as there are for PC's. When 75% of the market uses PC's, why waste your time writing something for a Mac?



 

Dondrei

Diabloii.Net Member
Mac's security is just as bad, if not worse, as a PC's.
I dunno about that, but I do know they're immune to most things because they're not compatible with anything and only socially maladjusted people own Macs so no-one bothers to write viruses for them.



 

BlueDogAnchorite

Diabloii.Net Member
.... I hate having to look for doors cracks.

Try an online antivirus scanner, because the engine isn't actually run from your harddrive it has a better chance at picking up persistent crap.
Also try an antivirus that can do a boot time scan.
The only one I know of that can do that is Avast antivirus.
I also recommend nod32 that's a pretty good av.
 

DurfBarian

Diabloii.Net Member
bladesyz said:
Mac's security is just as bad, if not worse, as a PC's.
Ooh sweet, I had no idea this was going to turn into a high-level discussion between technical experts!

You mormon.
 

BlueDogAnchorite

Diabloii.Net Member
Oh and yeah follow bladesyz' link. Hijack this is pretty handy. If after all those scans you're still being sodomized then taking a log and posting it on a relevant forum for people to check would be a good idea. Or maybe someone here is adept enough to interperet..
 
Mac's security is just as bad, if not worse, as a PC's.
Because it requires an admin password to install things? Because it doesn't auto-install anything? Because it won't let programs run amok with files? Because it uses a reliable set of permissions? Because the browser isn't tied to the OS?

Also, PC stands for Personal Computer. . .most people never encounter anything but PCs no matter if it runs Linux, OS X, Windows or something else.

If you are going to call OS X out on it's security why don't you provide a solid link showing that the security is worse? Oh, you can only find how there aren't any viruses and have only been a handful of questionable proof-of-concepts that have been patched? Damn, guess you pulled that one out of your ***.

It is hard to write a virus for OS X plain and simple, and even if you do it is even harder to spread it without the user knowing. There have been several contests calling people out on claims that they hacked OS X. One was going to give the guy 10k and the two fully loaded PowerMacs used if he could pull it off, he never replied to the offer. All he had to do was copy a file from one PM to the other without any user intervention after he was allowed to infect one of the computers. The computers would be fresh out of the box and connected with an ethernet cable(No Macs don't need a crossover cable[most windows boxes don't either]) and allowed to auto-network.

EDIT: Yes I know, overboard and all that. But really most people have no clue what they are talking about when it comes to security much less systems they aren't familiar with, much less used.



 

Dondrei

Diabloii.Net Member
Because it requires an admin password to install things? Because it doesn't auto-install anything? Because it won't let programs run amok with files? Because it uses a reliable set of permissions? Because the browser isn't tied to the OS?
Those things are ridiculous, one of the other thousand reasons I don't upgrade from '98. Although even with '98 some of those things apply. Particularly if you're foolish enough to use Internet Exploder.

Also, PC stands for Personal Computer. . .most people never encounter anything but PCs no matter if it runs Linux, OS X, Windows or something else.
Pedant. "IBM clone" is a little archaic now, and the horrors of "Windows computer" are too bone-chilling to consider.

I can't believe "amuck" is an acceptable variant now. STOP RUINING MY LANGUAGE!



 
Top