AOA Forums AOA Forums AOA Forums Folding For Team 45 AOA Files Home Front Page Become an AOA Subscriber! UserCP Calendar Memberlist FAQ Search Forum Home


Go Back   AOA Forums > Hardware > General Hardware Discussion

General Hardware Discussion Hard drives, CD, DVD Monitors, All hardware questions not better served by our other Topics


Reply
 
LinkBack Thread Tools Rate Thread
  #1 (permalink)  
Old 18th October, 2005, 02:11 AM
Exile69's Avatar
Member
 
Join Date: July 2005
Location: Virginia, United States
Posts: 1,264
Send a message via AIM to Exile69 Send a message via MSN to Exile69

Angry Freaking AIM Viruses...

ARGH!

I was idly chatting on AIM today with my girlfriend and a few other friends when all the sudden a random IM from her is automatically sent. I clicked on the link because I figured it was nothing bad and something I just "had" to see. Well, apperently this is a pretty common virus going around in which it sends everyone that's online on your buddy list an IM with something random and curious with a link. If you click on the link or maybe even just recieve the IM a .exe file is put on your computer appropriately entitled, "hell". As soon as it fired off on my computer a few minutes later I promply ended it by pressing ctrl-alt-delete -> processes -> end hell.exe. I opened my C: drive folder and, whadya know, there it was. So I deleted that and it apperently found a clever way to reinstall itself. I searched my C: drive and found something in my C:\windows\prefetch folder and deleted that. Seems to be gone now. Now, in the interest of fully removing this little bugger I've heard of 'hacking it out of the registry'. What is a registry, where is it located, and how do I do this?
__________________
Research Ron Paul

AOA Team fah

Abit NF-M2 | XFX 8600GT | AM2 X2 3800+ | 2Gb G.Skill DDR2 800 | Aspire X-QPack | 250Gb Western Digital | Creative X-Fi + Logitech X530 5.1
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #2 (permalink)  
Old 18th October, 2005, 03:36 AM
SteveI's Avatar
AOA Staff
Tetris Champion
 
Join Date: September 2001
Location: NJ
Posts: 6,971

The registry can be easily accessed. HOWEVER, if you've never worked with it... be very very careful... One mistake and your system could become unbootable.
.... That said, you can try searching for any references to the culprit, and delete those entries.

You've been warned....

All you have to do is from start, run... type regedit.
__________________
AOA Team fah
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #3 (permalink)  
Old 18th October, 2005, 09:08 AM
Lazgoat's Avatar
Member/Contributer
 
Join Date: October 2002
Location: UK
Posts: 1,868

Then go out and buy Zone Alarm Internet Security Suite with AIM protection
__________________
DFI SLi-D, Opteron 144 @ 2.8Ghz, 4x512MB PDP XBLK, 160GB WD Caviar SE, Benq 1620DW DVD-RW, X1800XT 256MB,Custom WC.


AOA Team fah
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #4 (permalink)  
Old 18th October, 2005, 04:27 PM
skool h8r's Avatar
Member
 
Join Date: January 2005
Location: Rotherham, UK
Posts: 3,157
Send a message via MSN to skool h8r

Hi Exile69,
I have a way to remove it possibly. Can you try and find out the names of any processes running that you've not noticed before including the file extension and post them here. Could you also post the full folder path to these processes. One more thing i need is any unusual startup entries you've never noticed before and also post them here. With this information, i can create a batch file that will remove the virus and the files associated with it and 'kill' it from memory. I had the same problem with a similar piece of malware and got rid of it myself, mainly because my AV (AVG 7) didn't pick it up at all!
__________________
i7 2600K (4.3Ghz 1.34v) | GTX580 | 16GB (4x4GB) Patriot Viper Sec. 5 Ser. 2 (1866 - 9-11-9-27) | P67A-UD4-B3
Corsair AX1200 | Vertex II 240GB SSD | 4TB RAID0 (Samsung HD204UI) | Logitech G930 Wireless Headset

YouTube - Benchmark Results (Coming Soon!)
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #5 (permalink)  
Old 18th October, 2005, 10:50 PM
madcatmk3's Avatar
Member
 
Join Date: August 2005
Location: New York, United States of America
Posts: 2,213

my friend barry has Sytematic corparte editon. I migh be able to burn it and send it to you (he'll prboly caharge) but you have to promise to destroy it. I'll have to chech with him first.
__________________
Alienware
3.2 Ghz
1 GB ram
4-4-4-12
160GB
256 MB 6800GT 413/1102
Main Rig
AMD 4000+ 2772 MHz w/ DFI SLI DR
2GB Corsair XMS (with LED's of course)@ 2.5-3-2-11 @ 240MHz
250GB HDD SATA2
Xfi-64MB X-Ram
WMCE
7800GTX OC-516(+40Mhz Delta clock)/1300
AOA Team fah
"The motherboard installation section essentially said "refer to motherboard manual for installation instructions". My motherboard manual of course said "refer to case manual for further installation instructions"."
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Reply



Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Rate This Thread
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On


Similar Threads
Thread Thread Starter Forum Replies Last Post
Have they lost their freaking minds!!?? Daniel ~ Data Security 16 12th July, 2007 01:31 PM
Freaking Viruses Exile69 CRASHED! 8 18th November, 2005 01:15 AM
My Temps Are Freaking Out purplemohawkman AMD Motherboards & CPUs 18 19th January, 2004 01:23 PM
Help! Bios freaking out Bucks CRASHED! 6 23rd November, 2003 08:56 PM
More Viruses are here Uncle Bob Mookydooky's Just for laughs! 0 10th July, 2002 04:03 AM


All times are GMT +1. The time now is 05:14 AM.


Copyright ©2001 - 2010, AOA Forums
Don't Click Here Don't Click Here Either

Search Engine Friendly URLs by vBSEO 3.3.0