tracking the virus

Status
Not open for further replies.
superdave1984

superdave1984

Repeat Offender
Messages
1,986
Location
KY
How do I go about trying to track down where a virus came from? We get few here, but I would like to try to see where they come from. They are coming from the internet, but there doesn't seem to be a pattern.
 
Viruses are usually hidden in EXE files, and are very hard to find out where they came from, or how they were designed.

Are you trying to send a hatemail to the creator of the virus? :p
 
talldude123 said:
Viruses are usually hidden in EXE files, and are very hard to find out where they came from, or how they were designed.

Are you trying to send a hatemail to the creator of the virus? :p
Click to expand...

Nah, I just want to see WTF is going on. We have a pretty tough internet filter here. There's no way anybody is getting porn or anything. And 75% of the users don't have rights to install anything. It isn't the same PC getting them either. It varies. Maybe find out the website that it was on or something.
 
Do you still have the virus quarantined?

Tell me the name and if you want, upload it to www.megaupload.com in a passworded rar file, then pm me the link and password and i'll take a look. If you do, call the rar file a random name not the virus name :>
 
They have been deleted, but this is what the log says.
One is named: price20-Dec-2006[1].zip
The other is: xyhtlpweim.exe
 
superdave1984 said:
Nah, I just want to see WTF is going on. We have a pretty tough internet filter here. There's no way anybody is getting porn or anything. And 75% of the users don't have rights to install anything. It isn't the same PC getting them either. It varies. Maybe find out the website that it was on or something.
Click to expand...


well that leaves 25% more to get viruses on their machines. Those names arent helpful at all. Either is a network virus that is shooting from machine to machine or whatever program that is finding the file is flagging in as a virus because its an unknown .exe If its a different machine and different files then it may be the user. .exe's dont always need admin right to run anyways. If that was true it would be a lot easier on us admins
 
Jam3s-Zer0 said:
Is this still occuring on your network and if so, do you still need support?
Click to expand...

Haven't gotten one in a few days. Symantec catches them, but I'm just irritated about it all. Maybe I'm just stressing over something that gets handled automatically and quarrantined anyway.
 
Status
Not open for further replies.

Similar threads

B
Multiple Seagate External Drives Not Working(Windows+Mac)
Replies
2
Views
445
Joe C
Joe C
R
Suddenly there is no display on the computer
Replies
8
Views
910
Flowace
Flowace
P
ComboFix Replacement
Replies
5
Views
518
PC_Cone
P
S
Would it benefit me joining Discord chat groups?
Replies
0
Views
888
Scissorman
S
B
i keep getting an alert from AVG every minute or so. super annoying!
2
Replies
18
Views
2K
alyssa.robert235
A
Back
Top Bottom