Unloading one man's crap onto the entire world...

Wednesday, November 09, 2005

Trojan Horsed!

- Trashed by SampahMan @ 12:47 AM

I was going to let you guys know how awesome Civilization IV was. But it was not to be. I was attempting to download a No-CD crack, and I downloaded something from a warez site (good going, smart guy). A zip file with an executable file "run.exe". Now, with better judgement exercised, I would have been a lot wiser, but it took me only 2 seconds of tough decision making to click it(in desperation to play the game. The gains outweigh the potential losses. It's Civ 4 god damn it!).
So yeah, I clicked it. Within a second, AVG popped-up, one after another, with Trojan horses being detected with such exotic names as BackDoor.Agent.NG (sounds kinda gay porn-ish actually). I had problems keeping up with the number of times AVG popped-up with a virus detection in the next 30 seconds. Also, almost immediately, there was a system tray message that appeared and warned me that my computer has been infected with spyware. Knowing this was up to no good, I opened the application that created the message, and for the mother of all ironies, "run.exe" helped install a spyware detector called "SpySheriff". And it was scanning my PC for spyware (It looked like it was scanning, I was practically hoping that it wasn't actually deleting files, cuz my balls will probably fall off then!) . Righhht.
Wait, that wasn't the mother of all ironies. Even my desktop wallpaper got hijacked to display a message telling me: "Your computer has been detected with spyware, please yada yada yada..."
Then my Outpost firewall kicked in when it detected a new outgoing connection from a certain "tool4.exe" (DOS attempts? Viagra/Cialis emails?). Thank god for software firewalls. Here's a tip: Get one! Or use Windows XP's. Should be effective enough, although I've got it turned off.
Action plan kicked in:
- Delete offending exe files
- Reboot into safe mode
- Check msconfig for suspicious services and startup items (Yielded none)
- Run AVG scanner for a full detection (10 viruses).
- Search entire computer for all files created/modified after incident time (about 20 of them).
- Reboot back to normal mode, everything looks fine, except that I have no more control over my desktop wallpaper. No idea why the browse button is greyed out, lazy to figure things out, so...
- Did a system restore to before I installed the game.

Looking good now. Hope it stays that way.
Time Wasted: 1 hr 50 minutes
Moral of the story: DO NOT CLICK EXE FILES FROM UNTRUSTED SOURCES, HOWEVER TEMPTING IT MIGHT BE.
Comments

Post a Comment

<< Home