M
Mack
Hello,i found a file called virscan.ini that talks bout
the familly of w32 trojan only...it's very detailed i
seem to be suffering from those effects explained by the
virscan.ini but first is that a normal file????
i did a scan on my puter with systemworks and got 0 virus
but my registery has been modifyed and some inf files too
i found some joy files exel exel4 winword winword2 amiprp
presenta quattro powerpnt wordpft and one was in
systemworks ...... in c:\
msdos,autoexec,config.sys.IO,are at 0kb now i also have 4
zipped folder in diffrent area of doccument and settings
all the info on my system is wrong on inf files and
servers dial ups are created on my puter can you tell me
if that virscan is an exemple or if it could be a real
virus file rfrom my puter??? i'll paste the 1st line here
ty :
The Norton AntiVirus Information File
Copyright Symantec Corp. 1993-98
All Rights Reserved
Version #9609
Q~dý &ÿw&ÿwsI+áfÄ?Vþ?
Fü<FüFþuÄ^&ÿw&ÿw¸Ps4áf
!
`````````
õ M$ No additional
information. This virus infects the master boot record
and boot record of floppy disks. Bootup from infected
floppies often causes system hangs Lenart This virus
contains the text, "I am Li Xibin!". Bootup from
infected floppies often causes system hangs This is
dropped by the "Backdoor.Poly" or "Backdoor.SubSeven".
You must delete this file. This is a trojan horse
program and not a virus. This program can be used to
allow unauthorized access to your computer. You must
delete this file. This is a backdoor type trojan
program which can be used to allow unauthorized access to
your computer. This backdoor trojan loads by adding
to the line shell=explorer.exe in the SYSTEM.INI file.
To clean, replace that line and delete the corresponding
file from the C:\WINDOWS directory. This virus does
little but replicate. Note that Boot-437 does not infect
the MBR of the hard drive; it infects only the Boot
Sector. This is a Internet worm that uses .bat files
to search through a range of IP addresses of known ISPs
to find an accessible computer.
ty for help (it aslo say in the file i get the iamvirus
for opening this file) ty i will develop from here if
more info needed..........
the familly of w32 trojan only...it's very detailed i
seem to be suffering from those effects explained by the
virscan.ini but first is that a normal file????
i did a scan on my puter with systemworks and got 0 virus
but my registery has been modifyed and some inf files too
i found some joy files exel exel4 winword winword2 amiprp
presenta quattro powerpnt wordpft and one was in
systemworks ...... in c:\
msdos,autoexec,config.sys.IO,are at 0kb now i also have 4
zipped folder in diffrent area of doccument and settings
all the info on my system is wrong on inf files and
servers dial ups are created on my puter can you tell me
if that virscan is an exemple or if it could be a real
virus file rfrom my puter??? i'll paste the 1st line here
ty :
The Norton AntiVirus Information File
Copyright Symantec Corp. 1993-98
All Rights Reserved
Version #9609
Q~dý &ÿw&ÿwsI+áfÄ?Vþ?
Fü<FüFþuÄ^&ÿw&ÿw¸Ps4áf
!
`````````
õ M$ No additional
information. This virus infects the master boot record
and boot record of floppy disks. Bootup from infected
floppies often causes system hangs Lenart This virus
contains the text, "I am Li Xibin!". Bootup from
infected floppies often causes system hangs This is
dropped by the "Backdoor.Poly" or "Backdoor.SubSeven".
You must delete this file. This is a trojan horse
program and not a virus. This program can be used to
allow unauthorized access to your computer. You must
delete this file. This is a backdoor type trojan
program which can be used to allow unauthorized access to
your computer. This backdoor trojan loads by adding
to the line shell=explorer.exe in the SYSTEM.INI file.
To clean, replace that line and delete the corresponding
file from the C:\WINDOWS directory. This virus does
little but replicate. Note that Boot-437 does not infect
the MBR of the hard drive; it infects only the Boot
Sector. This is a Internet worm that uses .bat files
to search through a range of IP addresses of known ISPs
to find an accessible computer.
ty for help (it aslo say in the file i get the iamvirus
for opening this file) ty i will develop from here if
more info needed..........