WTF 4000+ infected files? - Techist - Tech Forum

Go Back   Techist - Tech Forum > Computer Software > Microsoft Windows and Software
Click Here to Login
Closed Thread
 
Thread Tools Display Modes
 
Old 04-11-2004, 02:23 PM   #1 (permalink)
Ultra Techie
 
Join Date: May 2003
Posts: 548
Send a message via AIM to aye29 Send a message via Yahoo to aye29
Default WTF 4000+ infected files?

My parents desktop was running very slowly so I did a virus scan and came up with 4000+ files all infected with the same virus I-Worm.Netsky.C. Almost 90% of the infected files were in C:\Program Files\Common Files\Microsoft Shared and the rest were in Yahoo Mesenger folder in Documents and Setting (don't remember the exact folder) and a few other were scattered around my drive. I have absolutely no idea how 4000+ virii got on the computer since I'm pretty sure my parents don't open strange attachments, plus I did a fresh intall of Windows XP Pro two weeks ago. I also have Zone Alarm and AVG running. Anyone have any ideas as to how this happened?
__________________

aye29 is offline  
Old 04-11-2004, 02:40 PM   #2 (permalink)
True Techie
 
Join Date: Apr 2004
Posts: 220
Default

It sounds like its an email worm which in that case would explain why it was found in the Yahoo messenger folder. Not sure why Zone alarm didnt pick it up, have you tried updating it recently and see if that helps.
__________________

__________________
<a href="http://www.therandomgamer.com">
<img src="http://www.therandomgamer.com/images/header.jpg">
<p>Gaming Blog and Forum
</a>
Retro is offline  
Old 04-12-2004, 01:37 AM   #3 (permalink)
Super Techie
 
Join Date: Nov 2003
Posts: 415
Default

zonealarm isnt going to detect it as a virus, it will come up and ask if u want to allow it to access the internet and act as a server but not like alert u to the fact thats it a virus, why avg didnt i dont kno unless its one of those viruses that kills antivirus software processes
__________________
Fear is nothing but the anticipation of pain, be it physical, mental, spiritual or emotional.
specs.
Athlon XP 2200+ oc\'ed @ 1.93ghz
MSI ms-6738
768mb ddr2100
Nvidia mx420 :(
60gig maxtor 7200rpm
Dual boot with Mandrake 10.0 and Win XP Pro sp2
neversleeps is offline  
Old 04-12-2004, 06:48 AM   #4 (permalink)
Banned
 
Join Date: Apr 2004
Posts: 408
Default

just get norton systemworks 2004, it works fine for me though it has a limited number of installation times i think it is either 3 or 4, dang so little
cheerios is offline  
Old 04-12-2004, 01:02 PM   #5 (permalink)
True Techie
 
Join Date: Mar 2004
Posts: 175
Default

yeah you need get some antivirus software ran on there. I woufl do to the symantec site, and download the removal tool first.

http://securityresponse.symantec.com...oval.tool.html

then run a full antivirus scan.
__________________
Life doesn\'t always go how you want it, but it sure goes the way that you make it....
asupertech is offline  
Old 04-12-2004, 06:34 PM   #6 (permalink)
Wizard Techie
 
Join Date: Apr 2004
Posts: 3,247
Default

http://www3.ca.com/threatinfo/virusinfo/scan.aspx

its a free web scan AND cures the files... used it, works.
__________________
If you argue with an idiot he will drag you down to his level and beat you with experience.

I am not a fast writer.
I am not a slow writer.
I am a half-fast writer.

-Robert Asprin
killians45 is offline  
Old 04-12-2004, 07:20 PM   #7 (permalink)
True Techie
 
Join Date: Mar 2004
Posts: 175
Default

yes another good place to go.


in any case you need to clean it ASAP.

you can also download this removal tool from AVG.

http://www.grisoft.com/us/us_remtext.php?id=bagbugnet

It is possible that the Antivirus software was not running at the time, or the virus actually found the antivirus software and turned it off before it infected the computer...they do that now also.... quite sneaky these virus's are these days...
__________________
Life doesn\'t always go how you want it, but it sure goes the way that you make it....
asupertech is offline  
Old 04-15-2004, 03:51 PM   #8 (permalink)
Newb Techie
 
Join Date: Apr 2004
Posts: 11
Default

Dude, I wouldn't be concerned anout the virii; I'd be worried about what the folks are doing on their computer!
JohnM is offline  
Old 04-15-2004, 04:38 PM   #9 (permalink)
Super Techie
 
Join Date: Apr 2004
Posts: 316
Default Re: WTF 4000+ infected files?

Quote:
Originally posted by aye29
My parents desktop was running very slowly so I did a virus scan and came up with 4000+ files all infected with the same virus I-Worm.Netsky.C. Almost 90% of the infected files were in C:\Program Files\Common Files\Microsoft Shared and the rest were in Yahoo Mesenger folder in Documents and Setting (don't remember the exact folder) and a few other were scattered around my drive. I have absolutely no idea how 4000+ virii got on the computer since I'm pretty sure my parents don't open strange attachments, plus I did a fresh intall of Windows XP Pro two weeks ago. I also have Zone Alarm and AVG running. Anyone have any ideas as to how this happened?
Netsky creates tons of copies of the virus on the infected computer. They all have different names, and most of them would look incriminating.
__________________

__________________
BlazingWolf
<font color=\'red\'>
<b>
<a href=\'http://www.gaming-forums.org\'>
Gaming-Forums.org
<a/>
</b>
</font>
BlazingWolf is offline  
Closed Thread

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off




Copyright 2002- Social Knowledge, LLC All Rights Reserved.

All times are GMT -5. The time now is 07:37 AM.


Powered by vBulletin® Version 3.8.8 Beta 1
Copyright ©2000 - 2017, vBulletin Solutions, Inc.