Malware attack through a .rar file & a disabled Task Manager  | | 
February 11th, 2007, 10:37 AM
|
#1 (permalink)
| | Member
Join Date: Sep 2002 Location: Buffalo NY
Posts: 373
| Malware attack through a .rar file & a disabled Task Manager
I recently got hit three times (yes, I know, but please no "why didn't you questions) by malware. The third time was just by opening up a ".rar" file. What happened was it disabled Task Manager and put a icon in the System Tray that was a link to a anti-virus site which was actualy a virus in itself. My questions are:
1. How can Task Manager be disabled?
2. How can it be re-enabled?
3. How can just opening up a compressed ".rar" file run a executable? I did not run any file within the folder. WinRar is the program I have used for years (stopped using Winzip many years ago).
4. Can a virus, malware, trojan etc. be anything other than a ".exe" file? IOW's can a .jpg, .txt, .mpg or a doc (for examples) be one af the above??
Anyway, this program did the trick; http://siri.urz.free.fr/Fix/Smitfrau...raudFix_En.php
Cleaned up what was added the the system and restored Task Manager.
__________________
Copyright protection & Intellectual property my ass. All you elitists want is more money & power. Enough is enough!
Last edited by videobruce : February 11th, 2007 at 10:40 AM.
| 
|  | |
February 11th, 2007, 10:50 AM
|
#2 (permalink)
| | Ultimate Member
Join Date: Oct 2001 Location: South Jersey
Posts: 8,729
|
There are probably thousands of system policies that can disable just about anything. And if you think only exe files are capable of hosting malware, think again. Quote:
The emergence of .rar-packed viruses highlights the lengths to which virus writers are willing to go to evade anti-virus systems, as well as the limitations of those traditional signature-based defenses.
Experts say .rar files carrying viruses have been sailing past commercial anti-virus products and finding their way into the mailboxes of users, who are often unfamiliar with the file format. Administrators who have seen .rar-packed malware say that none of the messages have been stopped by their anti-virus defenses.
| Scary, huh? | |
| | |
February 11th, 2007, 11:31 AM
|
#3 (permalink)
| | Super Stealthy Moderator
Join Date: Jan 2003 Location: Outside the box
Posts: 5,551
| Quote: |
4. Can a virus, malware, trojan etc. be anything other than a ".exe" file? IOW's can a .jpg, .txt, .mpg or a doc (for examples) be one af the above??
| all of the above and just about any other file type you can think of!
__________________
“Every question involves someone having to work for an answer, isn't it about time you did your share”
"Non-technical questions sometimes don't have an answer at all."
Linus Torvalds | 
| | |
February 11th, 2007, 12:36 PM
|
#4 (permalink)
| | Ultimate Member
Join Date: Oct 2001 Location: Toronto Canada
Posts: 4,698
|
The best practice is to always run a virus scan on ANY file you download. Don't just rely on the resident scanner portion.
If you download torrents or p2p or from warez sites be extra careful with the files.
__________________
AMD Phenom Q9500 Quad-Core 2.2ghz / Asus M3A78-EMH HDMI / 4GB PC667 RAM / 320GB SATA II
| |
| | | Thread Tools | Search this Thread | | | | |
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | | | | Most Active Discussions  | | | | |   Recent Discussions  | | | | |
 |
hardware
prices 
