OMG wtf is going on...

[rudeguy]

you get it fixed?

 

[OREOSpeedwagon]

Not yet. I'm gonna install Norton if I can find the disk and follow their instructions on the site for the removal of it.

 

[Bleep]

Go to housecall and have it scanned over the net.

Bleep

 

[OREOSpeedwagon]

Would housecall fix it though? I already know what virus I have...

 

[psy44]

Dude, you get 6 kb/s?? I get 5 tops, usually mid 3's to mid 4's at 46.6k, am I downloading from the wrong people?

 

[OREOSpeedwagon]

I've been getting 6kb/s today, usually it's anywhere from 4.5-6kb/s.

 

[AndrewNF]

The reason you can't delete it is because it's loaded into memory. You can use task manager to end the task/process and then you'll be able to delete the file.

Edit: By delete, I mean the virus scanner should be able to get rid of it as well.

 

[OREOSpeedwagon]

Thanks AndrewNF, I didn't think of that.

Anyway it appears I got the virus from the Civilization II .exe I downloaded the other day because I couldn't find my old disks...luckily nothing has been affected by this virus. Apparently it opens up a back door for hackers, I guess ZoneAlarm has been protecting me there

 

[Howard]

OREO, if you can't remove a virus, you can use a Norton Systemworks CD to remove viruses during bootup (i.e. have the CD inside your CD-ROM before you reboot).

 

[OREOSpeedwagon]

I just now got my AVG AV serial emailed to me, hopefully it will solve the problem.

 

[GroundZero]

Originally posted by: OREOSpeedwagon

Originally posted by: d33pt
you were probably downloading a fake file. it's full of nothing, so it came quickly because your modem was able to compress it

That's what I was thinking happened. I'm going to check for viruses anyway, but .mp3s can't contain viruses can they? I've got view file extentions on, the only extentions on the files are .mp3.

just about anything you can run or play can contain some form of viri or tojan or worm

 

[OREOSpeedwagon]

But I don't think it's possible for a compressed audio file to contain a virus, trojan, or worm...anyway I've already figured out it's a Civilization II .exe I ran the other day.

 

[Schadenfreude]

Originally posted by: OREOSpeedwagon
But I don't think it's possible for a compressed audio file to contain a virus, trojan, or worm...anyway I've already figured out it's a Civilization II .exe I ran the other day.

It's possible.

And yes, .mp3 can contain viruses. I saw an article awhile back that said someone figured out how to put a virus in a .txt as well. If I find the link I'll post it, but this shows how insecure obtaining files from unknown sources is very dangerous.

 

Madonna did it.

 

[Sketcher]

Kwbot worm

This is an IRC backdoor trojan, and KaZaa spreading worm. When run, the worm copies itself the Windows\System directory and creates 2 registry key values to run at startup:

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\
Run\Windows Explorer Update Build 1142=explorer32.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\
RunServices\Windows Explorer Update Build 1142=explorer32.exe

The worm acts as a remote access trojan. It contains an IRC client that connects to a specified IRC channel and waits for commands from an attacker. These commands include instructions for the infected machine to:

Initiate a Denial of Service attack,
Open/close the CD-ROM tray,
Download files,
Update the version of the worm,
Uninstall the worm,
Send system information (CPU, RAM, Disk space, OS version, uptime, etc),
Send IRC messages

The worm also copies itself to the KaZaa shared folder with many different file names to trick users into downloading and running it. Such as (---- denotes masked obscenity):

 

[EXman]

that sounds like a nasty one!

GL

 

[vetteguy]

I believe the latest version of Kazaa lite filters for "suspect" mp3 files (like if they've got a hidden .mp3.exe or whatever). Not sure though.