Just thought I'd tell ya'

N_Gage_18 · Post by **N_Gage_18** » Sat May 02, 2009 8:44 pm

Hey guys(and girls, just in case), I may not be on very often for a while. First off, My brother is on here practically 24/7. Second, My computer is somehow acquiring DOZENS of Trojan Horse viruses, and my dad thinks it's either this site or another site my brother always goes to. Just thought I'd tell everyone.

Slayer · Post by **Slayer** » Sat May 02, 2009 9:01 pm

I think I had that virus ones, took me out.... Time to reformat. Give Avira a try, I am curious if it solves it. if its the same as me, your explorer.exe has been modified and is now downloading viruses whenever you are connected to the internet.

Shoot-me · Post by **Shoot-me** » Mon May 04, 2009 8:42 pm

Are you useing Internet Explorer?

Slayer · Post by **Slayer** » Mon May 04, 2009 9:26 pm

Me or him? I got it through Opera.

N_Gage_18 · Post by **N_Gage_18** » Tue May 05, 2009 8:33 pm

Mozilla Fire fox with Norton 360.

TlathamXmahtalT · Post by **TlathamXmahtalT** » Wed May 06, 2009 6:29 am

PM Customs wrote:Mozilla Fire fox with Norton 360.

That is the exact same as me.

But Norton is a trial.

JerOutlaw · Post by **JerOutlaw** » Wed May 06, 2009 1:56 pm

get super antispyware or spybot search and destroy.
norton is garbage

TlathamXmahtalT · Post by **TlathamXmahtalT** » Wed May 06, 2009 3:29 pm

JerOutlaw wrote:get super antispyware or spybot search and destroy.
norton is garbage

I tried Search & Destroy and it wouldn't work. My computer wouldn't connect to the server to install.

I'll try Super Anti-Spyware and see if it works.

TlathamXmahtalT · Post by **TlathamXmahtalT** » Wed May 06, 2009 4:51 pm

Actually, first, I'm going to try Avira Antivirus.

Slayer told me that when he came back, and I'll take him up on his offer first since he suggested something first. If it doesn't do its job, I'll try Super Antispyware.

Slayer · Post by **Slayer** » Wed May 06, 2009 7:04 pm

I've never heard of super anti spyware.... But doesn't sound like it will help you with a virus.

Spybot S&D and malwarebytes are the two best spyware/adware removal tools around. And Avira is a virus scanner and removal. Ideally you should have all three at least

. I have Avira running on my ancient system with only 256mb of RAM, Avira's memory footprint is... 13,732k in task manager.

TlathamXmahtalT · Post by **TlathamXmahtalT** » Wed May 06, 2009 7:17 pm

Slayer wrote:malwarebytes...

Man...

I thought I had too much protection and it would slow my PC down if I kept some of them, so I deleted Malwarebytes... [uhoh] [uhoh] [uhoh]

You have a link to it so I can install it again?

N_Gage_18 · Post by **N_Gage_18** » Sun May 10, 2009 9:00 am

Um, did you guys read my first post completely? My dad said the viruses could be coming from the TRUCK/TRACK pages. Can Phin run a virus scan on the pages or something? I would hate for everyone else to have to deal with this too.

TlathamXmahtalT · Post by **TlathamXmahtalT** » Sun May 10, 2009 9:04 am

PM Customs wrote:Um, did you guys read my first post completely? My dad said the viruses could be coming from the TRUCK/TRACK pages. Can Phin run a virus scan on the pages or something? I would hate for everyone else to have to deal with this too.

Would you really think a Trojan came from here, unless they WANTED you to get a virus?

Woody · Post by **Woody** » Sun May 10, 2009 10:32 am

Um, did you guys read my first post completely? My dad said the viruses could be coming from the TRUCK/TRACK pages. Can Phin run a virus scan on the pages or something? I would hate for everyone else to have to deal with this too.

Since you are the only person that has reported this problem out of all the people that get files here I think its safe to say that this site is not the origin of the trouble.

Kasey9fan · Post by **Kasey9fan** » Sun May 10, 2009 12:09 pm

PM Customs wrote:Um, did you guys read my first post completely? My dad said the viruses could be coming from the TRUCK/TRACK pages. Can Phin run a virus scan on the pages or something? I would hate for everyone else to have to deal with this too.

Lol...

Kmaster · Post by **Kmaster** » Sun May 10, 2009 12:48 pm

PM Customs wrote:Can Phin run a virus scan on the pages or something? I would hate for everyone else to have to deal with this too.

I lol'd

Your computer is your problem, you're obviously infected.

Slayer · Post by **Slayer** » Sun May 10, 2009 1:19 pm

me 2, you have a virus that is auto downloading viruses whenever you are connected to the internet. This sort of virus is fairly effortless to create, there are literately millions of proof of concept programs for doing just this if you google it. The most common is using the memory modifying API. To basically tell explorer.exe to run commands. such as silently downloading files!
These exploits are already proven to defeat UAC. I even tried it, I found a site that provided VB6 code that could do it!

Get Avira on that machine, that should clean it up.

Kmaster · Post by **Kmaster** » Sun May 10, 2009 1:40 pm

Thanks for the info Slay, I wonder if there's any way to know if explorer.exe is silently downloading any files. Port checking perhaps?

Slayer · Post by **Slayer** » Sun May 10, 2009 1:51 pm

whatsrunning can tell you, it will show explorer.exe having TCP sessions open and having CPU usage higher than normal.

http://www.whatsrunning.net/whatsrunning/main.aspx

Post by **Phineus** » Thu May 14, 2009 5:47 am

Pod files cannot contain viruses. They do not execute in any way shape or form.

This server is UNIX. It is not windows. If you have a windows virus, you got it someplace else.

This site is proudly ten years virus free.