Quote:
Originally Posted by dsi76
Hey bro, thanks for the heads-up. Do you know which files specifically contained the virus??
|
There was one file in <%temp%> that I couldn't delete. I cannot remember the name of it because the file name made absolutely no sense (ie...it was about 30 random characters long).
Quote:
Originally Posted by ihavenoclue
Am I in trouble if I used dan-htc's files SYS and XIP files? I'm scanning just in case (avast FTW!).
|
Typically, no. It is nearly impossibly for a virus to attach it's self to a RARed file. Unless it is RARed up WITH the file. We had one machine here with over 65,000 temp files in <%temp%>, so even if the virus was not contained in there, that was 65k files that were not needed.
---------------------------------
Time Warner (our internet provider) is coming to the house today to "investigate" out network because this virus apparently had a "phone home" protocol in it. Therefore, our location came up as transmitting over their network. So far, what we have been told by Tima Warner, this is a variation of the ConFlicker that had been renamed and some additional AI variables in it (it learns). I am just trying to keep everyone updated on this, since it was traced by Time Warner to have come from xBeta during my download of 21500. while xBeta is most likely not behind it, the user very well could be, since it was contained in their SYS and we have already determined that whom ever tweaked 21500 was VERY good in producing a believable fake.
I don't have an issue running a build that is heavily modified (showing as a build number that is not lagit) if it works. I do have a problem running a build that brings unneeded hasled to my network and to my PC's. Therefore, I have removed all files related to 21500 from my PC's and my externals. I will no longer be working with 21500.