Poslao: 11 Maj 2003 11:47
|
offline
- Pridružio: 11 Maj 2003
- Poruke: 138
|
dobio sam prvi put virus...zove se w32.weird.....o njemu neznam nista(t.j o virusima samo sam po nesto neki put citao...),neznam ni kako da ga otklonim.....uvek sam isao od toga...ma, gde ce to mene.....
|
|
|
Registruj se da bi učestvovao u diskusiji. Registrovanim korisnicima se NE prikazuju reklame unutar poruka.
|
|
Poslao: 11 Maj 2003 16:12
|
offline
- Pridružio: 17 Apr 2003
- Poruke: 488
- Gde živiš: Niš
|
Win32.Weird
It is not a dangerous memory resident parasitic Win32 virus. It writes itself to the end of PE EXE files (Windows executable) by increasing last file section and modifying PE header fields. The virus copy in infected files consists of two parts. First part (starter) is a short routine (about one kilobyte of code and data), the second part is the main virus code (about 10Kb of size) encrypted with silly encryption loop.
When the infected file is executed, the starter takes control, decrypts the second part of virus code, drops it to Windows directory as a PE EXE file with random name and executes it. The main virus instance stays memory resident as a hidden Windows application, runs a low priority thread that periodically scans drives' directory trees, looks for PE EXE files and infects them.
The virus also affects the EXPLORER.EXE file. It copies it with the EXPLORER.E name, infects this copy and writes the [rename] instruction to the WININIT.INI file to replace original EXPLORER.EXE with infected copy on next Windows startup.
The virus has a backdoor ability. When it is active as a Windows application it opens Internet connection and waits for specific calls from there. The virus has a lite list of supported commands comparing to other known backdoors, but it allows to upload, download, execute and delete files on the infected machine from remote host.
---
O svim virusima mozes se informisati ovde:
http://www.viruslist.com/eng/viruslist.asp
A to da "nece to tebe"... izvini ali vrlo naivno i nesmotreno, da ne upotrebim tezu rec! Kao da setas po kisi i mislis da nece valjda da te pogodi neka kapljica...
|
|
|
|
|
Poslao: 11 Maj 2003 21:03
|
offline
- Pridružio: 11 Maj 2003
- Poruke: 138
|
posto nisam bas neki poznavalac kompjutera....(sluzi mi samo da bi bio u toku sta se desava u yu i tako to...),kako da se oslobodim te napasti.....
ozbiljno mislim.....
|
|
|
|
Poslao: 11 Maj 2003 23:49
|
offline
- Pridružio: 17 Apr 2003
- Poruke: 488
- Gde živiš: Niš
|
Pa jesmo li mi neozbiljni?
Covece, azuriraj svoj AV program i proskeniraj ceo hard disk.
|
|
|
|
Poslao: 12 Maj 2003 00:16
|
offline
- zoranb
- Građanin
- Zoran Bujandric
- Programer
- Pridružio: 18 Apr 2003
- Poruke: 152
- Gde živiš: Podgorica
|
securityresponse.symantec.com/avcenter/venc/data/w32.weird.html
|
|
|
|
Poslao: 12 Maj 2003 01:20
|
offline
- SerbianFighter
- Elitni građanin
- Pridružio: 26 Apr 2003
- Poruke: 1947
- Gde živiš: Srbija
|
Uvek imaj neki antivirus na makini, updatuj svakih nedelju dve i bices uvek happy
|
|
|
|
Poslao: 12 Maj 2003 08:56
|
offline
- Pridružio: 10 Maj 2003
- Poruke: 266
- Gde živiš: bg
|
Citat:Uvek imaj neki antivirus na makini, updatuj svakih nedelju dve i bices uvek happy
A jel to moze da se primeni i u nekoj drugoj sferi zivota ?
|
|
|
|