1. Welcome! Please take a few seconds to create your free account to post threads, make some friends, remove a few ads while surfing and much more. ClutchFans has been bringing fans together to talk Houston Sports since 1996. Join us!

Nastiest Virus Ever!

Discussion in 'BBS Hangout' started by DarkHorse, Mar 31, 2004.

  1. DarkHorse

    DarkHorse Member

    Joined:
    Oct 9, 1999
    Messages:
    6,756
    Likes Received:
    1,303
    So I'm in the middle of working through this virus, and I'm not quite sure what I've got. It won't allow me to access my registry, run any anti-virus software, or even navigate to any anti-virus website (although I figured out how it was doing that).

    What I have been able to run tells me I'm infected with the W32.Jeefo virus, which can't be it, because according to everything I've read about that one, it's not a very effective virus.

    This one smacks of MyDoom, but I don't know. It's really killing me...

    Any ideas?
     
  2. Ottomaton

    Ottomaton Member
    Supporting Member

    Joined:
    Feb 14, 2000
    Messages:
    19,205
    Likes Received:
    15,379
    You can usually get around the registry blocking programs by copying regedit.exe as something unrelated, like abc.com, and executing that from a command prompt. The newer versions of W32.Beagle require this. (ABC to defeat "regedit" keyword executable blocking, and *.com because some of the virii will run resident on *.exe's but not *.com's).

    I've dealt with a few virus packages that combnine multiple virii with spyware and other crap, so you would want to think about using adaware from safe mode.
     
  3. DarkHorse

    DarkHorse Member

    Joined:
    Oct 9, 1999
    Messages:
    6,756
    Likes Received:
    1,303
    Thanks. I'll give that a try when I get home.

    I've figured out how to get past the first couple lines of defense, but this is a very well written virus... heh... So far I've found 3 separate viruses, although like you say I believe they were all inserted simultaneously...
     

Share This Page