MTM2.com

A forum for mtm2 discussion
FAQ :: Search :: Members :: Groups :: Register
Login
It is currently Fri Nov 29, 2024 5:56 am



Post new topic Reply to topic  [ 27 posts ]  Go to page 1, 2  Next   
Author Message
 Post subject: Just thought I'd tell ya'
PostPosted: Sat May 02, 2009 8:44 pm 
Member

Joined: Wed May 14, 2008 7:20 am
Posts: 494
Location: Behind you
Hey guys(and girls, just in case), I may not be on very often for a while. First off, My brother is on here practically 24/7. Second, My computer is somehow acquiring DOZENS of Trojan Horse viruses, and my dad thinks it's either this site or another site my brother always goes to. Just thought I'd tell everyone.

_________________
Admin of the MTM2 Draggers facebook page, find it here!
https://m.facebook.com/groups/337032006 ... =bookmarks

Nat Gage (She/They, pls)
I used to be PM Customs but now I'm taking meds for that ;)


Top
 Profile  
 
 Post subject:
PostPosted: Sat May 02, 2009 9:01 pm 
Member
User avatar

Joined: Sun Oct 16, 2005 4:39 pm
Posts: 1822
Location: Winnipeg Manitoba, Canada
I think I had that virus ones, took me out.... Time to reformat. Give Avira a try, I am curious if it solves it. if its the same as me, your explorer.exe has been modified and is now downloading viruses whenever you are connected to the internet.

_________________
Image


Top
 Profile  
 
 Post subject:
PostPosted: Mon May 04, 2009 8:42 pm 
Member

Joined: Fri Dec 26, 2008 5:57 pm
Posts: 7
Are you useing Internet Explorer?


Top
 Profile  
 
 Post subject:
PostPosted: Mon May 04, 2009 9:26 pm 
Member
User avatar

Joined: Sun Oct 16, 2005 4:39 pm
Posts: 1822
Location: Winnipeg Manitoba, Canada
Me or him? I got it through Opera.

_________________
Image


Top
 Profile  
 
 Post subject:
PostPosted: Tue May 05, 2009 8:33 pm 
Member

Joined: Wed May 14, 2008 7:20 am
Posts: 494
Location: Behind you
Mozilla Fire fox with Norton 360.

_________________
Admin of the MTM2 Draggers facebook page, find it here!
https://m.facebook.com/groups/337032006 ... =bookmarks

Nat Gage (She/They, pls)
I used to be PM Customs but now I'm taking meds for that ;)


Top
 Profile  
 
 Post subject:
PostPosted: Wed May 06, 2009 6:29 am 
Member
User avatar

Joined: Sun Jun 08, 2008 7:46 am
Posts: 702
Location: In BinEdit, using YOUR models.
PM Customs wrote:
Mozilla Fire fox with Norton 360.


That is the exact same as me.

But Norton is a trial.


Top
 Profile  
 
 Post subject:
PostPosted: Wed May 06, 2009 1:56 pm 
Member
User avatar

Joined: Thu May 31, 2007 12:19 am
Posts: 130
Location: 3 hours from Alaska
get super antispyware or spybot search and destroy.
norton is garbage

_________________
Image


Top
 Profile  
 
 Post subject:
PostPosted: Wed May 06, 2009 3:29 pm 
Member
User avatar

Joined: Sun Jun 08, 2008 7:46 am
Posts: 702
Location: In BinEdit, using YOUR models.
JerOutlaw wrote:
get super antispyware or spybot search and destroy.
norton is garbage


I tried Search & Destroy and it wouldn't work. My computer wouldn't connect to the server to install.

I'll try Super Anti-Spyware and see if it works.


Top
 Profile  
 
 Post subject:
PostPosted: Wed May 06, 2009 4:51 pm 
Member
User avatar

Joined: Sun Jun 08, 2008 7:46 am
Posts: 702
Location: In BinEdit, using YOUR models.
Actually, first, I'm going to try Avira Antivirus.

Slayer told me that when he came back, and I'll take him up on his offer first since he suggested something first. If it doesn't do its job, I'll try Super Antispyware.


Top
 Profile  
 
 Post subject:
PostPosted: Wed May 06, 2009 7:04 pm 
Member
User avatar

Joined: Sun Oct 16, 2005 4:39 pm
Posts: 1822
Location: Winnipeg Manitoba, Canada
I've never heard of super anti spyware.... But doesn't sound like it will help you with a virus.

Spybot S&D and malwarebytes are the two best spyware/adware removal tools around. And Avira is a virus scanner and removal. Ideally you should have all three at least :). I have Avira running on my ancient system with only 256mb of RAM, Avira's memory footprint is... 13,732k in task manager.

_________________
Image


Top
 Profile  
 
 Post subject:
PostPosted: Wed May 06, 2009 7:17 pm 
Member
User avatar

Joined: Sun Jun 08, 2008 7:46 am
Posts: 702
Location: In BinEdit, using YOUR models.
Slayer wrote:
malwarebytes...


Man...

I thought I had too much protection and it would slow my PC down if I kept some of them, so I deleted Malwarebytes... [uhoh] [uhoh] [uhoh]

You have a link to it so I can install it again?


Top
 Profile  
 
 Post subject:
PostPosted: Sun May 10, 2009 9:00 am 
Member

Joined: Wed May 14, 2008 7:20 am
Posts: 494
Location: Behind you
Um, did you guys read my first post completely? My dad said the viruses could be coming from the TRUCK/TRACK pages. Can Phin run a virus scan on the pages or something? I would hate for everyone else to have to deal with this too.

_________________
Admin of the MTM2 Draggers facebook page, find it here!
https://m.facebook.com/groups/337032006 ... =bookmarks

Nat Gage (She/They, pls)
I used to be PM Customs but now I'm taking meds for that ;)


Top
 Profile  
 
 Post subject:
PostPosted: Sun May 10, 2009 9:04 am 
Member
User avatar

Joined: Sun Jun 08, 2008 7:46 am
Posts: 702
Location: In BinEdit, using YOUR models.
PM Customs wrote:
Um, did you guys read my first post completely? My dad said the viruses could be coming from the TRUCK/TRACK pages. Can Phin run a virus scan on the pages or something? I would hate for everyone else to have to deal with this too.


Would you really think a Trojan came from here, unless they WANTED you to get a virus?


Top
 Profile  
 
 Post subject:
PostPosted: Sun May 10, 2009 10:32 am 
Member

Joined: Wed Nov 01, 2000 2:01 pm
Posts: 96
Location: Minneapolis KS
Quote:
Um, did you guys read my first post completely? My dad said the viruses could be coming from the TRUCK/TRACK pages. Can Phin run a virus scan on the pages or something? I would hate for everyone else to have to deal with this too.


Since you are the only person that has reported this problem out of all the people that get files here I think its safe to say that this site is not the origin of the trouble.

_________________
Reality is for those that cant handle video games.


Top
 Profile  
 
 Post subject:
PostPosted: Sun May 10, 2009 12:09 pm 
Member
User avatar

Joined: Thu Jul 05, 2007 4:04 pm
Posts: 241
PM Customs wrote:
Um, did you guys read my first post completely? My dad said the viruses could be coming from the TRUCK/TRACK pages. Can Phin run a virus scan on the pages or something? I would hate for everyone else to have to deal with this too.

Lol...

_________________
-Jordan Robson
Image
Image


Top
 Profile  
 
 Post subject:
PostPosted: Sun May 10, 2009 12:48 pm 
MTM2 Engineer
User avatar

Joined: Fri Oct 10, 2003 6:19 pm
Posts: 1350
Location: Valparaíso, Chile.
PM Customs wrote:
Can Phin run a virus scan on the pages or something? I would hate for everyone else to have to deal with this too.


I lol'd

Your computer is your problem, you're obviously infected.


Top
 Profile  
 
 Post subject:
PostPosted: Sun May 10, 2009 1:19 pm 
Member
User avatar

Joined: Sun Oct 16, 2005 4:39 pm
Posts: 1822
Location: Winnipeg Manitoba, Canada
me 2, you have a virus that is auto downloading viruses whenever you are connected to the internet. This sort of virus is fairly effortless to create, there are literately millions of proof of concept programs for doing just this if you google it. The most common is using the memory modifying API. To basically tell explorer.exe to run commands. such as silently downloading files!
These exploits are already proven to defeat UAC. I even tried it, I found a site that provided VB6 code that could do it!


Get Avira on that machine, that should clean it up.

_________________
Image


Top
 Profile  
 
 Post subject:
PostPosted: Sun May 10, 2009 1:40 pm 
MTM2 Engineer
User avatar

Joined: Fri Oct 10, 2003 6:19 pm
Posts: 1350
Location: Valparaíso, Chile.
Thanks for the info Slay, I wonder if there's any way to know if explorer.exe is silently downloading any files. Port checking perhaps?


Top
 Profile  
 
 Post subject:
PostPosted: Sun May 10, 2009 1:51 pm 
Member
User avatar

Joined: Sun Oct 16, 2005 4:39 pm
Posts: 1822
Location: Winnipeg Manitoba, Canada
whatsrunning can tell you, it will show explorer.exe having TCP sessions open and having CPU usage higher than normal.

http://www.whatsrunning.net/whatsrunning/main.aspx

_________________
Image


Top
 Profile  
 
 Post subject:
PostPosted: Thu May 14, 2009 5:47 am 
Glow Ball
User avatar

Joined: Tue Feb 02, 1999 7:00 pm
Posts: 23
Pod files cannot contain viruses. They do not execute in any way shape or form.

This server is UNIX. It is not windows. If you have a windows virus, you got it someplace else.

This site is proudly ten years virus free.


Top
 Profile  
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 27 posts ]  Go to page 1, 2  Next   


Who is online

Users browsing this forum: No registered users and 11 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group