First,
You cannot assume that anything on your computer if you have a virus/Trojan
( which is sounds like more you have a RAT ( remote Acccess Trojan, like
Subseven, BO or a host of others) is not compromised. There is a number of
things this virus/trojan could have done, place a rootkit, use NTFS streams
to hide its .exe inside the windows explorer shell, infect multiple files,
folders, registry keys.
The best thing to do, is the wipe the system, clean. Bare bones format of
the disk, and start over. If you decide to take the disk out of your PC and
slave it off another pc and try and pull the data there, you could possibly
infect your new host computer with the same files off your old computer thus
exacerbating the problem.
EZ
Edward E. Ziots
Network Engineer
Lifespan Organization
MCSE,MCSA,MCP+I,M.E,CCA,Network+, Security +
email:eziots@lifespan.org
cell:401-639-3505
-----Original Message-----
From: listbounce@securityfocus.com [mailto:listbounce@securityfocus.com] On
Behalf Of blueade7
Sent: Monday, October 23, 2006 9:16 AM
To: focus-virus@securityfocus.com
Subject: Severe virus - help needed!
Hi,
A virus has hit my computer, and I would very much appreciate some help in
how to deal with it.
Symptoms started yesterday. My keyboard stopped working (keyboard buttons
seemed to perform very strange things, like for example, opening up
calculator, or switching the computer off). The two mouse buttons appeared
to swap functions sometimes and there were other strange problems. I managed
to do virus checks with an up to date symtanec antivirus and a NON-up to
date mcafee antivirus, also ran spyware doctor and spybot: search and
destroy. Non of these found the problem (they came up with a couple of other
spyware things, but evidently not the problem one).
Today the problem has excalated - when I switch on my computer it runs for
about 3 seconds, then reboots, so theres no way of getting to windows.
For some reason, despite the keyboard not working, when I press esc or F1,
the blue setup screen comes up. However, I cant do anything here anyway as
the keyboard doesnt work and theres no mouse cursor.
Anyone have any idea what this virus is and how I can tackle it? Also, I
have a lot of important stuff on my computer - would setting up my harddisk
with another computer enable me to extract the files from it?
Any help would be very much appreciated. (Please bare in mind that I am not
really a computer man so lehman's terms would be great.) Cheers, Andy
--
View this message in context:
http://www.nabble.com/Severe-virus---help-needed%21-tf2486345.html#a6932689
Sent from the Security - Virus mailing list archive at Nabble.com.
----------------------------------------------------------------------------
ALERT: "How a Hacker Launches a SQL Injection Attack!" - White Paper
It's as simple as placing additional SQL commands into a Web Form input box
giving hackers complete access to all your backend systems!
https://download.spidynamics.com/1/ad/sql.asp?Campaign_ID=70160000000CZWl
----------------------------------------------------------------------------
----------------------------------------------------------------------------
ALERT: "How a Hacker Launches a SQL Injection Attack!" - White Paper
It's as simple as placing additional SQL commands into a Web Form input box
giving hackers complete access to all your backend systems!
https://download.spidynamics.com/1/ad/sql.asp?Campaign_ID=70160000000CZWl
----------------------------------------------------------------------------
