• We've upgraded our forums. Please post any issues/requests in this thread.

Nasty trojan/virus, need some advice

Sc1mitar

New Member
Joined
Jan 22, 2007
Messages
133 (0.03/day)
Likes
6
Location
Edmonton
System Name LANBOX
Processor Core2Quad Q6600 G0 + Zalman CNPS7500 Blue LED
Motherboard Asus P5K-VM mATX
Cooling 2x 120mm, 2x80mm Coolermaster Blue LED
Memory 4GB OCZ DDR2-800 Platinum
Video Card(s) VisionTek HD4870 512mb GDDR5
Storage Maxtor 500GB+1TB Samsung External
Display(s) Acer x223w
Case Cooler Master Centurion 540 mATX
Audio Device(s) Creative X-Fi XtremeGamer
Power Supply Ultra Modular 600W
#1
Backstory; not hugely necessary but
K so my buddy walks into my room the other day, says "Oh i need to get this econ assignment off my laptop for my class in an hour, and my flashdrive isnt working" and being the good guy i am i help em out,plug a pendrive into his lappy, grab the file,bring it over to my rig, plug in both sticks, do the transfer, badda bing badda boom-all done good to go

then the next day, comp starts locking up, error messages, bla bla typical trojan/worm/virus crap, ok so no problems, throw all my movies/music/games onto my external drive, pop in the winxp install disk, quick reformat type deal; good to go again right?

false.

hour later same freakin problem, getting same error messages/lockups as before, so i boot into safemode and remove all the excess crap off the external HD except for the actual ISOs/MP3s/AVIs, my mouseaccel fix,and my desktop background, reformat late last night, go to the bar etc etc
So basicly what im asking is there any way for this sumbitch to hide on my external drive invisibly/latch onto another file or something for the ride without me finding it? Ive manually gone threw and checked each individual folder, turned on "show hidden folders" etc etc, cant find anything. Im running a kapersky scan right now, Im just worried because my last reformat it came back liek the sneaky bastard it is, and i dont want some gay error shit happening in the middle of a match,or my creditcard info being yankd by a keylogger or somethin ykno?
 
Joined
Feb 19, 2006
Messages
5,606 (1.30/day)
Likes
1,282
Location
New York
System Name http://www.heatware.com/eval.php?id=73751
Processor i7-920 CO@4.2GHZ / ASUS GL553VW 15.6" Gaming Laptop NVIDIA GTX 960M 4GB Intel Core i56300HQ 8GB DDR4
Motherboard Asus P6T Deluxe Intel X58
Cooling Asetek Liquid CPU Cooling System
Memory CORSAIR DOMINATOR 6GB (3 x 2GB) DDR3 1600
Video Card(s) 2X ATI Radeon HD 4870 X2 2GB DDR5 PCI-Express
Storage (RAID-0) with 4 Identical Hard Drives (1.28TB (320GBx4)
Display(s) LG 50" 50PK550 1080p 600Hz Plasma/37 Inch WestingHouse @1920x1080
Case Thermaltake M9 (I hate it its like trying to live in a 1 inch box)
Power Supply ThermalTake ToughPower 1200 Watt
Software Windows 7 professional 64
#2

Boyfriend

New Member
Joined
Nov 30, 2008
Messages
160 (0.05/day)
Likes
34
System Name Black Star
Processor Core2Duo E7200 @ 2.53 GHz
Motherboard Asus P5K-VM (G33)
Cooling Cooler Master Hyper N520 + 3 120 mm Fans
Memory Corsair CM2X1024-6400C4DHX , 4,4,4,12,2T, 2x1 GB
Video Card(s) MSI NX8500GT TD256E
Storage WD Caviar Blue 320GB + Maxtor 500 GB
Display(s) ViewSonic VX1940w 19"
Case Vento ATX
Audio Device(s) Realtek HD (On-Board)
Power Supply Cooler Master Extreme 460 W
Software Windows 7 RTM 32-Bit + KIS 2011 CF2 (ab)
#3
download trial version of Kaspersky or Norton. Update it and do full scan. It will surely solve ur problem.
 
Joined
Jun 3, 2007
Messages
22,400 (5.82/day)
Likes
8,922
Location
'Merica. The Great SOUTH!
System Name The Mailbox 4.5
Processor Intel i7 2600k @ 4.2GHz
Motherboard Gigabyte Z77X-UP5 TH Intel LGA 1155
Cooling Scythe Katana 4
Memory G.SKILL Sniper Series 16GB DDR3 1866: 9-9-9-24
Video Card(s) MSI 1080 "Duke" with 8Gb of RAM. Boost Clock 1847 MHz
Storage 256Gb M4 SSD, 500Gb WD (7200) 128Gb Agelity 4 SSD
Display(s) LG 29" Class 21:9 UltraWide® IPS LED Monitor 2560 x 1080
Case Cooler Master 922 HAF
Audio Device(s) SupremeFX X-Fi with Bose Companion 2 speakers.
Power Supply SeaSonic X Series X650 Gold
Mouse SteelSeries Sensei (RAW) and a Wacom Intuos 4 tablet.
Keyboard Razer BlackWidow
Software Windows 10 Pro (64-bit)
Benchmark Scores Benching is for bitches.
#4
How do you even know its a virus without an anti-virus program?
 

InnocentCriminal

Resident Grammar Amender
Joined
Feb 21, 2005
Messages
6,477 (1.38/day)
Likes
844
System Name BeeR 6
Processor Intel Core i7 3770K*
Motherboard ASUS Maximus V Gene (1155/Z77)
Cooling Corsair H100i
Memory 16GB Samsung Green 1600MHz DDR3**
Video Card(s) 4GB MSI Gaming X RX480
Storage 256GB Samsung 840 Pro SSD
Display(s) 27" Samsung C27F591FDU
Case Fractal Design Arc Mini
Power Supply Corsair HX750W
Software 64bit Microsoft Windows 10 Pro
Benchmark Scores *@ 4.6GHz **@ 2133MHz
#5

Sc1mitar

New Member
Joined
Jan 22, 2007
Messages
133 (0.03/day)
Likes
6
Location
Edmonton
System Name LANBOX
Processor Core2Quad Q6600 G0 + Zalman CNPS7500 Blue LED
Motherboard Asus P5K-VM mATX
Cooling 2x 120mm, 2x80mm Coolermaster Blue LED
Memory 4GB OCZ DDR2-800 Platinum
Video Card(s) VisionTek HD4870 512mb GDDR5
Storage Maxtor 500GB+1TB Samsung External
Display(s) Acer x223w
Case Cooler Master Centurion 540 mATX
Audio Device(s) Creative X-Fi XtremeGamer
Power Supply Ultra Modular 600W
#6
hmm, got rid of the main trojan, and found another little sucker, was masquerading as a mp3 file. lil bastard.


all good :D
 
Joined
Nov 21, 2007
Messages
3,684 (1.00/day)
Likes
402
Location
Smithfield, WV
System Name Felix777
Processor Core i5-3570k@stock
Motherboard Biostar H61
Memory 8gb
Video Card(s) XFX RX 470
Storage WD 500GB BLK
Display(s) Acer p236h bd
Case Haf 912
Audio Device(s) onboard
Power Supply Rosewill CAPSTONE 450watt
Software Win 10 x64
#7
haha tight man, lol i remember my pc got raped by a virus or some malicious infection, felt like i lived again after removing it haha.
 
Joined
Oct 7, 2008
Messages
1,888 (0.56/day)
Likes
142
System Name The Beast
Processor Intel Core i3-2100 @ 3.1GHz
Motherboard Asus P8P67 LE
Cooling Stock
Memory 4GB Corsair Vengeance DDR3 @ 1600MHz
Video Card(s) 1GB Sapphire Radeon HD4650 Ultimate Edition
Storage 60GB Corsair Force LE, 1TB Samsung SpinPoint F1, 500GB Seagate
Display(s) 22" Samsung T220HD & 19" Acer X193W
Case Corsair Obsidian 750D
Power Supply Corsair HX650W
Software Windows 7 Ultimate x64
#8
Man I remember back in the day when I first got into downloading on computers (Was like 5 years ago) I had no real protection so had all these stupid fake programs saying I had infections and all these dam porno pop-ups lol. Ah how times change :D
 
Joined
Jan 17, 2009
Messages
2,143 (0.66/day)
Likes
312
System Name THE MAD BEAST!!!
Processor Tinfoil rapper with some coathangers
Motherboard Graham cracker with with frosting
Cooling A shovel full of snow
Memory Grey matter out of a corpse
Video Card(s) Cat eyes
Storage A whales brain
Display(s) Cyclops eyeball
Case Inside a yetis hollowed out corpse
Audio Device(s) howling banchee
Power Supply 32 hamster on a massive wheel
Software WHo needs software when you have a box of kittens
Benchmark Scores IS gatrillions a number?
#9
1 thing they forgot to tell you when doing the scan with kaspery, make it do a deep scan , and deep scan for everything, this can be changed in the settings for full scan, it might take longer but itll find that son a bitch, i loves me some kaspery and malewarebytes
 

Lillebror

New Member
Joined
Jul 28, 2007
Messages
719 (0.19/day)
Likes
88
Location
Denmark
Processor Intel Core2Duo e8400 @ 3.6ghz
Motherboard Asus P5Q Pro w/ mBios
Cooling Xigmatec something with a orange fan
Memory Kingston HyperX 4 gig
Video Card(s) Sapphire hd4870
Storage 320 gb Maxtor 750gb samsung f11 250gb hitachi
Display(s) IIyama e1900s
Case CoolerMaster Ammo
Audio Device(s) Asus Xonar D2/PM Pci
Power Supply Corsair 750w
Software Windows 7 x64
#10
It sounds like a bad sector or something on your harddrive.
 

Sc1mitar

New Member
Joined
Jan 22, 2007
Messages
133 (0.03/day)
Likes
6
Location
Edmonton
System Name LANBOX
Processor Core2Quad Q6600 G0 + Zalman CNPS7500 Blue LED
Motherboard Asus P5K-VM mATX
Cooling 2x 120mm, 2x80mm Coolermaster Blue LED
Memory 4GB OCZ DDR2-800 Platinum
Video Card(s) VisionTek HD4870 512mb GDDR5
Storage Maxtor 500GB+1TB Samsung External
Display(s) Acer x223w
Case Cooler Master Centurion 540 mATX
Audio Device(s) Creative X-Fi XtremeGamer
Power Supply Ultra Modular 600W
#11
naw it was the trojan, my rig is running perfect and super fast now.
 
Joined
Jan 11, 2009
Messages
9,025 (2.77/day)
Likes
1,446
Location
Montreal, Canada
System Name Fun waste of money
Processor i7 3930k @ 4 Ghz
Motherboard AsRock X79 Fatal1ty Professional
Cooling Dark Rock Pro 3 (removed 120mm fan)
Memory 32GB (4x8gb) 2133Mhz CL9 Mushkin RedLine
Video Card(s) EVGA ACX 3.0 GTX 1060 6GB
Storage 3.25TB separated in 5 SSDs (SanDisk Extreme Pro, Intel 730 & 520, 2*Crucial MX100)
Display(s) 27" 2560x1440 [Korean] PCBANK PB2700
Case BeQuiet! SilentBase 800
Audio Device(s) iBasso D10 + AKG KXXX
Power Supply EVGA P2 750W 80+ Platinum semi-fanless
Mouse Sensei RAW
Keyboard Black cherry MX Thermaltake ESports
Software Windows 10 Pro X64
#12
Nice you got it fixed! Maybe you should tell your friend he has a trojan?

Off-topic: how much you pay for internet? :laugh: seriously though... I need a new internet plan >.<
 
Joined
Oct 26, 2008
Messages
2,118 (0.63/day)
Likes
360
Location
massachusetts
System Name VAN
Processor Intel Core 2 Quad Q9650 3.0GHz LGA 775 95W @ 3.0GHz
Motherboard ASUS P5Q Deluxe LGA 775 Intel P45 Intel Motherboard
Cooling Thermaltake SpinQ VT, front-rear-side 120mm, top-bottom 80mm
Memory Crucial Ballistix Tracer 8GB(4x2GB), DDR2, 800 MHz, 4-4-4-12, 2.0V, w/ Red LEDs
Video Card(s) AMD Radeon HD 6770 1GB
Storage Samsung 850 PRO 256SSD (OS) - WD 640GB 7200 RPM (files) - Seagate 1TB 7200 (backup)
Display(s) DUAL 19" Samsung, LG LCDs
Case NZXT Lexa Blackline
Audio Device(s) Realtek Onboard
Power Supply OCZ 600 Stealth-X-Stream 600W RT
Mouse Cyborg R.A.T. 9
Keyboard Razer Black Widow Ultimate
Software Windows 7 Ultimate
#13
Joined
Dec 27, 2007
Messages
8,506 (2.34/day)
Likes
2,072
Location
Kansas City
System Name The Dove Box Rev 2.0
Processor I7 5930k
Motherboard Asus X99
Cooling Custom water loop
Memory 4 x 4GB 3000 MHz DDR4
Video Card(s) 2x MSI 780 Ti's in SLI
Storage 500GB Samsung 850 PCIe SSD, 2x1TB WD Blacks, 1.2TB NAS
Display(s) 27" Asus 144Hz
Case Enermax Fulmo GT
Audio Device(s) ON BOARD FTW
Power Supply Thermaltake Toughpower 850W
Keyboard Logitech G510
Software Win 10 64x
#14
From my knowledge Malware or Spyware can't attach itself to another app or file unless it is embedded in another file you have saved already.

Generally spyware/malware may install to your computer's registry but not create a new file in other locations.

Granted this is my opinion from personal use so perhaps others can help dispel this as well.
 
Joined
Mar 8, 2009
Messages
1,077 (0.34/day)
Likes
305
System Name Primary Rig
Processor e8500 Q822A549 4.5ghz AIR
Motherboard Foxconn Mars P35
Cooling TRUE
Memory 2 x2GB Patriot Viper 1066 5-5-5-12 @ 1.8v
Video Card(s) Sapphire 5870 Unlocked
Storage 300gb Velociraptor
Display(s) Dell 24" Ultrasharp
Case Coolermaster CM690
Power Supply PC Power & Cooling 750w Quad Silencer
Software Windows 7 Ultimate x86
#15
Nice you got it fixed! Maybe you should tell your friend he has a trojan?

Off-topic: how much you pay for internet? :laugh: seriously though... I need a new internet plan >.<
Use a condom next time :p
 
Joined
Oct 26, 2008
Messages
2,118 (0.63/day)
Likes
360
Location
massachusetts
System Name VAN
Processor Intel Core 2 Quad Q9650 3.0GHz LGA 775 95W @ 3.0GHz
Motherboard ASUS P5Q Deluxe LGA 775 Intel P45 Intel Motherboard
Cooling Thermaltake SpinQ VT, front-rear-side 120mm, top-bottom 80mm
Memory Crucial Ballistix Tracer 8GB(4x2GB), DDR2, 800 MHz, 4-4-4-12, 2.0V, w/ Red LEDs
Video Card(s) AMD Radeon HD 6770 1GB
Storage Samsung 850 PRO 256SSD (OS) - WD 640GB 7200 RPM (files) - Seagate 1TB 7200 (backup)
Display(s) DUAL 19" Samsung, LG LCDs
Case NZXT Lexa Blackline
Audio Device(s) Realtek Onboard
Power Supply OCZ 600 Stealth-X-Stream 600W RT
Mouse Cyborg R.A.T. 9
Keyboard Razer Black Widow Ultimate
Software Windows 7 Ultimate
#16
hmmm what is the equivalent of a condom in the PC world?
 
Joined
Mar 8, 2009
Messages
1,077 (0.34/day)
Likes
305
System Name Primary Rig
Processor e8500 Q822A549 4.5ghz AIR
Motherboard Foxconn Mars P35
Cooling TRUE
Memory 2 x2GB Patriot Viper 1066 5-5-5-12 @ 1.8v
Video Card(s) Sapphire 5870 Unlocked
Storage 300gb Velociraptor
Display(s) Dell 24" Ultrasharp
Case Coolermaster CM690
Power Supply PC Power & Cooling 750w Quad Silencer
Software Windows 7 Ultimate x86
#17
It was just a joke but seriously active real time protection - even free ones like avira free edition.
 

tofu

New Member
Joined
Feb 2, 2006
Messages
483 (0.11/day)
Likes
12
Location
GTA
System Name Dinosaur
Processor 939 Athlon X2 4200+ @ 2.64GHz
Motherboard Sapphire RD580
Cooling OCZ HDT-S1284
Memory Corsair XMS 2x1GB CE-6 DDR480 2.5-3-2-8
Video Card(s) Zotac GTS 450 1GB 850/1700/1850
Storage OCZ Vertex 2 60GB + Hitachi 320GB + Seagate 1TB
Display(s) 2x Samsung 740B 17" LCD
Case Antec 300
Audio Device(s) ALC880
Power Supply Antec Truepower New 650
Software W7 Pro X64
#18
Man I remember back in the day when I first got into downloading on computers (Was like 5 years ago) I had no real protection so had all these stupid fake programs saying I had infections and all these dam porno pop-ups lol. Ah how times change :D
I still remember this full screen popup called the Netdialer, telling me I could get free porno if I connected to their number. Hey this was when I was on that 56k shizz.
 
Joined
Mar 8, 2009
Messages
1,077 (0.34/day)
Likes
305
System Name Primary Rig
Processor e8500 Q822A549 4.5ghz AIR
Motherboard Foxconn Mars P35
Cooling TRUE
Memory 2 x2GB Patriot Viper 1066 5-5-5-12 @ 1.8v
Video Card(s) Sapphire 5870 Unlocked
Storage 300gb Velociraptor
Display(s) Dell 24" Ultrasharp
Case Coolermaster CM690
Power Supply PC Power & Cooling 750w Quad Silencer
Software Windows 7 Ultimate x86
#19
Comodo free firewall is a different kind of good protection too.
 
Joined
Oct 26, 2008
Messages
2,118 (0.63/day)
Likes
360
Location
massachusetts
System Name VAN
Processor Intel Core 2 Quad Q9650 3.0GHz LGA 775 95W @ 3.0GHz
Motherboard ASUS P5Q Deluxe LGA 775 Intel P45 Intel Motherboard
Cooling Thermaltake SpinQ VT, front-rear-side 120mm, top-bottom 80mm
Memory Crucial Ballistix Tracer 8GB(4x2GB), DDR2, 800 MHz, 4-4-4-12, 2.0V, w/ Red LEDs
Video Card(s) AMD Radeon HD 6770 1GB
Storage Samsung 850 PRO 256SSD (OS) - WD 640GB 7200 RPM (files) - Seagate 1TB 7200 (backup)
Display(s) DUAL 19" Samsung, LG LCDs
Case NZXT Lexa Blackline
Audio Device(s) Realtek Onboard
Power Supply OCZ 600 Stealth-X-Stream 600W RT
Mouse Cyborg R.A.T. 9
Keyboard Razer Black Widow Ultimate
Software Windows 7 Ultimate
#20
i wouldnt trustmy life to solely avira but its free and its not bad...I think its worth it to buy Kaspersky and have a free version of Malwarebytes for scanning purposes
 

Sadasius

New Member
Joined
Apr 6, 2009
Messages
263 (0.08/day)
Likes
139
Location
Ottawa, Ontario
System Name "White Ghost"
Processor i7 970 watercooled
Motherboard Rampage III Extreme all watercooled
Cooling Custom Water Cooling. You have to see it. Too many parts to list here!
Memory 12GB Corsair Dominator GT's watercooled
Video Card(s) HD 5850....watercooled!
Storage Gskill Phoenix Pro 120gb and several 500gb and 1 tb hdd's.
Display(s) Dual 24" Asus VW246H mounted to the wall
Case CM Storm
Audio Device(s) Sound Blaster Audigy
Power Supply Ultra X3 1000
Software Windows 7 64 Ultimate
Benchmark Scores http://valid.canardpc.com/2551267
#21
From my knowledge Malware or Spyware can't attach itself to another app or file unless it is embedded in another file you have saved already.

Generally spyware/malware may install to your computer's registry but not create a new file in other locations.

Granted this is my opinion from personal use so perhaps others can help dispel this as well.
A hacker 'binds' their little nasties to files all the time. It's how they got all their crap out there on the net. If you do a lot of P2P file sharing chances are you have viruses. That's how most hackers get their stuff out there on the net. They use 'binding' programs to do this. You can learn straight from them here... (I am not going to link this so you have to put it in the browser yourself. Don't need them taking this website down) 'hackforums dot net' . Here you will see the scary truth of what they can and cannot do. They have everything from the beginner to the advanced. It's a good read in learning to protect yourself.
 
Joined
Oct 26, 2008
Messages
2,118 (0.63/day)
Likes
360
Location
massachusetts
System Name VAN
Processor Intel Core 2 Quad Q9650 3.0GHz LGA 775 95W @ 3.0GHz
Motherboard ASUS P5Q Deluxe LGA 775 Intel P45 Intel Motherboard
Cooling Thermaltake SpinQ VT, front-rear-side 120mm, top-bottom 80mm
Memory Crucial Ballistix Tracer 8GB(4x2GB), DDR2, 800 MHz, 4-4-4-12, 2.0V, w/ Red LEDs
Video Card(s) AMD Radeon HD 6770 1GB
Storage Samsung 850 PRO 256SSD (OS) - WD 640GB 7200 RPM (files) - Seagate 1TB 7200 (backup)
Display(s) DUAL 19" Samsung, LG LCDs
Case NZXT Lexa Blackline
Audio Device(s) Realtek Onboard
Power Supply OCZ 600 Stealth-X-Stream 600W RT
Mouse Cyborg R.A.T. 9
Keyboard Razer Black Widow Ultimate
Software Windows 7 Ultimate
#22
no need to revive old dead threads