Welcome to SecurityForumz.com!
FAQFAQ      ProfileProfile    Private MessagesPrivate Messages   Log inLog in

Is there virus in this program?

  
   Security Forums (Home) -> General Discussions RSS
Next:  BugHunter Signature Update 12-20-2007  
Author Message
Andrea L. Johns

External


Since: Dec 20, 2007
Posts: 1



(Msg. 1) Posted: Thu Dec 20, 2007 3:51 pm
Post subject: Is there virus in this program?
Archived from groups: alt>comp>virus (more info?)
Can you please tell me if this PowerDVD program has virus inside?
http://www.4shared.com/dir/5013147/9a3ab9ea/sharing.html

Most of our XP systems in this office are infected with TROJ_MUDROP.M virus.
This tech support department has been busy trying to reload as many systems
as fast as we can. We are unable to pin point how we got infected. But, all
these systems were supposedly protected with each of either Trend Micro or
McAfee or Norton (we are told to keep each computer with its original loaded
antivirus programs, because of license) were not much used.

So, we are trying to pin point how were we infected. We isolated many of the
infection program date started inside Microsoft Explorer's Temporary
Internet File folder.

Any help is much appreciated.

 >> Stay informed about: Is there virus in this program? 
Back to top
Login to vote
Sycho

External


Since: Nov 14, 2007
Posts: 20



(Msg. 2) Posted: Fri Dec 21, 2007 1:12 am
Post subject: Re: Is there virus in this program? [Login to view extended thread Info.]
Imported from groups: per prev. post (more info?)
This message is not archived

 >> Stay informed about: Is there virus in this program? 
Back to top
Login to vote
Kayman

External


Since: Nov 01, 2007
Posts: 22



(Msg. 3) Posted: Fri Dec 21, 2007 7:55 am
Post subject: Re: Is there virus in this program? [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
On Thu, 20 Dec 2007 15:51:10 -0800, Andrea L. Johns wrote:

> Can you please tell me if this PowerDVD program has virus inside?
> http://www.4shared.com/dir/5013147/9a3ab9ea/sharing.html

Download to desktop but don't install; Then scan with an updated AV
application. Alternatively you can submit a sample to Virus Total --
http://www.virustotal.com/flash/index_en.html
The submission will then be tested against many different AV vendor's
scanners. That will give you an idea what it is and who recognizes it. In
addition, unless told otherwise, Virus Total will provide the sample to all
participating vendors.
You can also submit a suspect, one at a time, via the following email
URL...
mailto:scan@virustotal.com?subject=SCAN
OR
(http://www.virustotal.com/)
(http://virusscan.jotti.org/)

> Most of our XP systems in this office are infected with TROJ_MUDROP.M virus.
> This tech support department has been busy trying to reload as many systems
> as fast as we can. We are unable to pin point how we got infected. But, all
> these systems were supposedly protected with each of either Trend Micro or
> McAfee or Norton (we are told to keep each computer with its original loaded
> antivirus programs, because of license) were not much used.

If you think all one has to do is installing a software suite to protect
your computer then you're dead wrong.

If you think with a security suite in place everything is done which one
can possibly do to have security then you're even wronger.

If you're really concerned about the security of your computer and data
then you just will have to learn the rules how to keep secure.

The only reasonable way to deal with malware is to prevent it from being
run in the first place. That's what AV software or Windows' System
Restriction Policies are doing.

> So, we are trying to pin point how were we infected. We isolated many of the
> infection program date started inside Microsoft Explorer's Temporary
> Internet File folder.

Download David H. Lipman's MULTI_AV.EXE from the URL:
http://www.pctipp.ch/downloads/sicherheit/35905/multi_av_scanning_tool.html

The web site is in German but the MULTI_AV scanning tool is in English.
Anyway, go down to near of the bottom of the page and you'll see a box
titled "Infos Zum Download - Multi-AV Scanning Tool". You'll see: Download
von www pctipp.ch and the link to download:
>> Multi_AV Scanning Tool 5.01 (679.88KB) -

Once you've clicked this link, it will bring to:
http://www.pctipp.ch/index.cfm?pid=1411&pk=28470.

You will have to wait for a few seconds or so and the 'Download file'
window should appear - just follow the prompts to download Multi_AV.exe

If however the 'Download file' window does not appear don't panic, don't
click, don't do anything, just look for:

Der Download started in wenigen Sekunden automatisch.
Fall nicht, klicken Sie bitte -hier-.

Translated to English:
The download process is going to start in a few seconds.
If not, click -here-.

This should be pretty self-explanatory.

Additional Instructions:
http://pcdid.com/Multi_AV.htm
Ignore the links displayed within this site as they are not valid anymore
and have not yet been updated to current status.

Still no luck? Go to:

http://www.elephantboycomputers.com/page2.html#Removing_Malware

Read, comprehend and implement.

Also:
Download and run HijackThis;
(http://aumha.org/downloads/hijackthis.zip)

Read this Tutorial *before* first use;
(http://www.bleepingcomputer.com/forums/index.php?showtutorial=42)

Once done 'run HijackThis' save a scan log and post it to any of the
following (expert) forums for analysis.

*Note, registration is required prior to posting a log.
- Not listed in any particular order -

http://www.thespykiller.co.uk/index.php?board=3.0
http://www.theeldergeek.com/forum/index.php?s=2e9ea4e19d3289dd877ab75a...0bff6&s
http://www.bleepingcomputer.com/forums/forum22.html
http://castlecops.com/forum67.html
http://www.dslreports.com/forum/cleanup
http://www.cybertechhelp.com/forums/forumdisplay.php?f=25
http://www.atribune.org/forums/index.php?showforum=9
http://www.geekstogo.com/forum/Malware_Removal_HiJackThis_Logs_Go_Here-f37.html
http://gladiator-antivirus.com/forum/index.php?showforum=170
http://forum.networktechs.com/forumdisplay.php?f=130
http://forums.maddoktor2.com/index.php?showforum=17
http://www.spywarewarrior.com/viewforum.php?f=5
http://forums.spywareinfo.com/index.php?showforum=18
http://forums.techguy.org/f54-s.html
http://forums.tomcoyote.org/index.php?showforum=27
http://forums.subratam.org/index.php?showforum=7
http://www.5starsupport.com/ipboard/index.php?showforum=18
http://www.malwarebytes.org/forums/index.php?showforum=7
http://makephpbb.com/phpbb/viewforum.php?f=2
http://forums.techguy.org/54-security/
http://forums.security-central.us/forumdisplay.php?f=13

Good luck Smile
 >> Stay informed about: Is there virus in this program? 
Back to top
Login to vote
Display posts from previous:   
Related Topics:
which virus program is better? - Trendmicro or Norton? This is for home use. Thanks

Anti-Virus program - Has anyone heard of EZTrust and used it? It's supposed to be a free program.

Virus? 10-30 program pop ups at time - I have Norton AV 2004 it is recently updated system scan reports no viruses but as i work on computer about 10-50 MS-DOS program windows apear which after that i can IGNORE or TERMINATE when i try to close it. They all open at once help?

Best Anti-virus program?? - Sorry, I don't need to know. I just couldn't resist posting this, since it has been asked several times this past week. Miss BabyJane Hudson

Avast! ant-virus program - Anybody know whether this antivirus program is any good or how it compares to AntiVir?
   Security Forums (Home) -> General Discussions All times are: Pacific Time (US & Canada) (change)
Page 1 of 1

 
 You can post new topics in this forum
You can reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



[ Contact us | Terms of Service/Privacy Policy ]