calling computer gurus and virus fixers (MORTO.B)

Talk about stuff not related directly to MX5s. Feel free to discuss what you like, as long as you keep within the forum rules.

Moderators: LilRay.Sun, Growler, jif, r3spct

Post Reply
sprsta
I have stars, you haven't. Deal with it
I have stars, you haven't. Deal with it
Posts: 1024
Joined: Mon Aug 25, 2008 6:11 pm
Location: auckland

calling computer gurus and virus fixers (MORTO.B)

Post by sprsta » Sat Nov 17, 2012 6:29 pm

so as the title states one of our computers at work has this
it has buried itself into the imaging .exe files of our quoting system
so every time we open our imaging it kills our RDP so we cant log in from home (we have to use team viewer now)

has anyone come across this virus before?
and is there any way to remove it from the .exe files without getting rid of the file completely and starting again?

it is a cunning little blighter and i would like to get rid of it before it updates itself to something even worse
Top
Angreal
I have stars, you haven't. Deal with it
I have stars, you haven't. Deal with it
Posts: 1621
Joined: Tue Feb 03, 2009 10:13 pm
Location: At the pub

Post by Angreal » Sat Nov 17, 2012 7:38 pm

At a guess (I'm not a computer guru though) the original .exe file have been corrupted/over-ridden already. I would assume it targets the most commonly run .exe files and then replicates itself/over-rides them when it's run and that it's likely to have corrupted more than just the files mentioned.

I usually take a scorched earth approach to repairing computers though
Top
SLYDIT
Keep calm, Forum Moderator here.
Keep calm, Forum Moderator here.
Posts: 1610
Joined: Sun May 21, 2006 6:18 pm
Location: In the Garage.

Post by SLYDIT » Sat Nov 17, 2012 8:37 pm

a quick google search says youre pretty screwed really. no real way to get rid of it... especially if you havent done any registry backups which most people dont.
you could try disconnecting from the net and starting up in sfae mode then doing a system restore back a month or so. hopefully youll have a registry backup somehwere.
do you have the install software for your quoting system?

how much data do you have stored on that PC? you may be better off doing a full reinstall..
heres a useful link.

http://blog.teesupport.com/the-helpful- ... d-quickly/
RED '90 TURBO.
SCARING PRIUS DRIVERS SINCE 2002
Top
sprsta
I have stars, you haven't. Deal with it
I have stars, you haven't. Deal with it
Posts: 1024
Joined: Mon Aug 25, 2008 6:11 pm
Location: auckland

Post by sprsta » Sat Nov 17, 2012 8:50 pm

guess its an excuse to move on from xp and get wondows 7 or 8

we will have to get all the setup files etc sent over from the aussie company that does support for our programme
Top
SLYDIT
Keep calm, Forum Moderator here.
Keep calm, Forum Moderator here.
Posts: 1610
Joined: Sun May 21, 2006 6:18 pm
Location: In the Garage.

Post by SLYDIT » Sun Nov 18, 2012 8:48 am

Might be time for a hardware upgrade too. Probably a good time to replace the hard drive. They dont last forever
RED '90 TURBO.
SCARING PRIUS DRIVERS SINCE 2002
Top
Donovan
I only think 5.
I only think 5.
Posts: 917
Joined: Tue Aug 10, 2010 10:05 pm
Location: Auckland

Post by Donovan » Tue Nov 20, 2012 8:19 am

Try this, download the file on a none infected PC, burn the image to a CD, boot from the CD, and run the scan across it (you may need to update the definition files first).

http://support.kaspersky.com/faq/?qid=208282173

You got nothing to loose, so might as well give it a go. Don't suppose you have any backups of anything do you?
Top
Donovan
I only think 5.
I only think 5.
Posts: 917
Joined: Tue Aug 10, 2010 10:05 pm
Location: Auckland

Post by Donovan » Tue Nov 20, 2012 8:23 am

And if that one can't clean it up, then try this

http://support.kaspersky.com/viruses/so ... =208287055

Same virus, different name.
Top
Post Reply

Return to “Off Topic Chat”

Who is online

Users browsing this forum: No registered users and 13 guests