| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 97208 | 2009-02-07 20:05:00 | The virus that copies itself on flash drives! help! | forrest44 (754) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 745779 | 2009-02-07 20:05:00 | OK so my step sisters computer was looking rather sick, so I put Spybot S&D on my flash drive and took to it... 1) Spybot S&D would not run. Installs fine, but the program won't come up. Is some spyware stopping it? Doesn't work in Safe mode either. 2) I put my flash drive back into my windows XP computer and after a few minutes, AVG antivirus complains it has detected a suspiscious file being opened/accessed or something So I open up the flash drive in Explorer, and there are two new files, both hidden - Autorun.inf and system.exe. I was guessing it was the Downadup worm, so I downloaded a Downadup removal tool and scanned my computer. ( www.softpedia.com ) Came up with nothing. An AVG scan came up with nothing either (!) But whenever I plug my flash drive in to my computer, those two files are always created again, Autorun.inf and system.exe. help help! What do I do? What is it? How do I get rid of it? Why can't everyone just use linux?? :confused::confused::confused: |
forrest44 (754) | ||
| 745780 | 2009-02-07 20:21:00 | First turn off system restore the download and install Hijack this copy and paste the log here. Have you tried MS own conficker removal tool? | gary67 (56) | ||
| 745781 | 2009-02-07 20:21:00 | Have you tried scanning your pc with Trojen remover and malwarebytes? And also if i was you than i would copy all you data off the flash drive and than format it. Has happened to me before as well. | ronyville (10611) | ||
| 745782 | 2009-02-07 21:24:00 | This is a typical autorun virus. The virus somehow lodged inside the infected computer, and if its files are deleted, it would just make new ones. If you format your flash drive, and plug into the infected computer, it would be infected again. I tried to Google "remove system.exe (www.google.co.nz)", but I saw a nonsense instruction, and another few sites advertising their own removal programs. (in response to 1)) Yeah, MS make it easy for general users, but at least in Linux you can run it in terminal and see what error codes it give out. It does not give ANY responses after you click it? you may have to try to upload it here (www.threatexpert.com), and see whether it's a virus or not. |
LynX (14542) | ||
| 745783 | 2009-02-07 22:27:00 | First turn off system restore the download and install Hijack this copy and paste the log here. Who else didn't understand that sentence? :) |
forrest44 (754) | ||
| 745784 | 2009-02-07 22:30:00 | Seeing AVG isn't so good anymore, I'm thinking of changing my antivirus software. I was thinking of installing the Comodo security suite (antivirus, firewall...) and using that. Is their antivirus software any good? |
forrest44 (754) | ||
| 745785 | 2009-02-07 22:33:00 | MS has released a patch for this hole, it would seem someone has updated windows lately | plod (107) | ||
| 745786 | 2009-02-07 22:42:00 | Who else didn't understand that sentence? :) I understood it, he meant "then". |
radium (8645) | ||
| 745787 | 2009-02-07 22:52:00 | Seeing AVG isn't so good anymore, I'm thinking of changing my antivirus software. I was thinking of installing the Comodo security suite (antivirus, firewall...) and using that. Is their antivirus software any good? DONT use the AV in the suite, its still in beta (it wouldnt pick up much) Untick its option if you install it, and install Avast |
Speedy Gonzales (78) | ||
| 745788 | 2009-02-08 00:29:00 | First turn off system restore the download and install Hijack this copy and paste the log here. Have you tried MS own conficker removal tool? Ok I made a small typo it should have said then AND had some puntuation, I was in a rush to go out. Nobodies perfect not even me. |
gary67 (56) | ||
| 1 2 | |||||