so as the title states one of our computers at work has this
it has buried itself into the imaging .exe files of our quoting system
so every time we open our imaging it kills our RDP so we cant log in from home (we have to use team viewer now)
has anyone come across this virus before?
and is there any way to remove it from the .exe files without getting rid of the file completely and starting again?
it is a cunning little blighter and i would like to get rid of it before it updates itself to something even worse
calling computer gurus and virus fixers (MORTO.B)
Moderators: LilRay.Sun, Growler, jif, r3spct
-
- I have stars, you haven't. Deal with it
- Posts: 1621
- Joined: Tue Feb 03, 2009 10:13 pm
- Location: At the pub
At a guess (I'm not a computer guru though) the original .exe file have been corrupted/over-ridden already. I would assume it targets the most commonly run .exe files and then replicates itself/over-rides them when it's run and that it's likely to have corrupted more than just the files mentioned.
I usually take a scorched earth approach to repairing computers though
I usually take a scorched earth approach to repairing computers though
-
- Keep calm, Forum Moderator here.
- Posts: 1610
- Joined: Sun May 21, 2006 6:18 pm
- Location: In the Garage.
a quick google search says youre pretty screwed really. no real way to get rid of it... especially if you havent done any registry backups which most people dont.
you could try disconnecting from the net and starting up in sfae mode then doing a system restore back a month or so. hopefully youll have a registry backup somehwere.
do you have the install software for your quoting system?
how much data do you have stored on that PC? you may be better off doing a full reinstall..
heres a useful link.
http://blog.teesupport.com/the-helpful- ... d-quickly/
you could try disconnecting from the net and starting up in sfae mode then doing a system restore back a month or so. hopefully youll have a registry backup somehwere.
do you have the install software for your quoting system?
how much data do you have stored on that PC? you may be better off doing a full reinstall..
heres a useful link.
http://blog.teesupport.com/the-helpful- ... d-quickly/
RED '90 TURBO.
SCARING PRIUS DRIVERS SINCE 2002
SCARING PRIUS DRIVERS SINCE 2002
Try this, download the file on a none infected PC, burn the image to a CD, boot from the CD, and run the scan across it (you may need to update the definition files first).
http://support.kaspersky.com/faq/?qid=208282173
You got nothing to loose, so might as well give it a go. Don't suppose you have any backups of anything do you?
http://support.kaspersky.com/faq/?qid=208282173
You got nothing to loose, so might as well give it a go. Don't suppose you have any backups of anything do you?
And if that one can't clean it up, then try this
http://support.kaspersky.com/viruses/so ... =208287055
Same virus, different name.
http://support.kaspersky.com/viruses/so ... =208287055
Same virus, different name.
Who is online
Users browsing this forum: No registered users and 13 guests