Search the archive:
 YaBB - Yet another Bulletin Board
 
   
 
  Simviation ForumSimviation SiteSite Problems & Broken Links › I think I got a trojan from a freeware...
Previous Topic | Next Topic
Pages: 1 2 3 
Send Topic Print
I think I got a trojan from a freeware... (Read 3497 times)
Aug 28th, 2010 at 2:51pm

AirForcePi1o7   Offline
Colonel
Civil Air Patrol - C/SrA

Gender: male
 Posts: 38
 *****
 
In the "FSX - Military" Section, I think I got a trojan from
http://www.simviation.com/simviation/?type=item&ID=64&page=45
The KC-135...  I got the trojan when I opened the zip, so I had to restore my computer from before it happened
(using the Repair Computer thing when you start it up), then I scanned the file before opening it and found trojan installers... I'm sure it was from that file, Because it was the only one I opened, and when i destroyed the trojan installers and opened the other files i downloaded, I didn't get a trojan.

****IT IS CONFIRMED I DID NOT GET A TROJAN FROM THAT FILE, BUT I DID GET A TROJAN FROM SOMETHING, PROBABLY NOT ON THIS SITE.****
« Last Edit: Aug 31st, 2010 at 4:38pm by AirForcePi1o7 »  
Civil Air Patrol Cadet Senior Airman.
"I pledge that I will serve faithfully in the Civil Air Patrol cadet program, that I will attend meetings regularly, participate actively in unit activities, obey my officers, wear my uniform properly, and advance my education and training rapidly to prepare myself to be of service of my community, state, and nation." - Cadet Oath

"Semper Vigilans - Always Vigilant" - Civil Air Patrol Motto
Back to top 
IP Logged
 
Reply #1 - Aug 28th, 2010 at 10:51pm

JBaymore   Offline
Global Moderator
Under the curse of the
hombuilt cockpit!

Gender: male
 Posts: 10261
 *****
 
All files are checked before placing them into the file library.  Past history says there have been about zero occurances of this kind of situation........ but we'll take a look again anyway.  Unlikely to a very high degree.  I've alerted the webmaster.

It is possible that you might have had a false positive. 

What antivirus are you running?  What trojan did it say you had?

best,

.............john
 
... ...Intel i7 960 quad 3.2G LGA 1366, Asus P6X58D Premium, 750W Corsair, 6 gig 1600 DDR3, Spinpoint 1TB 7200 HD, Caviar 500G 7200 HD, GTX275 1280M,  Logitec Z640, Win7 Pro 64b, CH Products yoke, pedals + throttle quad, simpit
Back to top 
IP Logged
 
Reply #2 - Aug 28th, 2010 at 11:26pm

BigTruck   Offline
Global Moderator
Former Sergeant of Marines
Tuscaloosa, AL

Gender: male
 Posts: 7161
 *****
 
I have downloaded and installed the KC-135 with no issues here.  Like John said it was likely a false positive.  I am running the newest version of McAfee and nothing has shown up after two scans.  What antivirus are you running and when was the last update you did?
 
...  ...  ...    
Back to top 
IP Logged
 
Reply #3 - Aug 29th, 2010 at 3:00am

Hagar   Offline
Colonel
My Spitfire Girl
Costa Geriatrica

Posts: 33159
 *****
 
Just to confirm what the others have said. I downloaded the file & scanned it with Avira & Malwarebytes. No virus or malicious items detected.
 
...

Founder & Sole Member - Grumpy's Over the Hill Club for Veteran Virtual Aviators
Member of the Fox Four Group

Need help? Try Grumpy's Lair

My photo gallery
Back to top 
IP Logged
 
Reply #4 - Aug 29th, 2010 at 5:35pm

AirForcePi1o7   Offline
Colonel
Civil Air Patrol - C/SrA

Gender: male
 Posts: 38
 *****
 
I was using AVG Free... I'm not sure what else would have the trojan... Because It said it found it inside the KC-135. I was not downloading anything else, except for some B-52s from this website. But I know it wasn't a failure due to my AVG Free, because as I said, I got a trojan then I had to restore it then scanned before... Not sure then.
 
Civil Air Patrol Cadet Senior Airman.
"I pledge that I will serve faithfully in the Civil Air Patrol cadet program, that I will attend meetings regularly, participate actively in unit activities, obey my officers, wear my uniform properly, and advance my education and training rapidly to prepare myself to be of service of my community, state, and nation." - Cadet Oath

"Semper Vigilans - Always Vigilant" - Civil Air Patrol Motto
Back to top 
IP Logged
 
Reply #5 - Aug 29th, 2010 at 5:37pm

AirForcePi1o7   Offline
Colonel
Civil Air Patrol - C/SrA

Gender: male
 Posts: 38
 *****
 
Also Not sure of the types of Trojan Installers. I just knew it installed fake Anti Viruses and tried to make me buy them and infected everything. Oh and it said it had 3 Trojan Installers.
 
Civil Air Patrol Cadet Senior Airman.
"I pledge that I will serve faithfully in the Civil Air Patrol cadet program, that I will attend meetings regularly, participate actively in unit activities, obey my officers, wear my uniform properly, and advance my education and training rapidly to prepare myself to be of service of my community, state, and nation." - Cadet Oath

"Semper Vigilans - Always Vigilant" - Civil Air Patrol Motto
Back to top 
IP Logged
 
Reply #6 - Aug 29th, 2010 at 5:47pm
Crash   Ex Member

 
Just scanned the file with the latest AVG Free version 9. No infections found.

Carlo Wink
 
Back to top 
IP Logged
 
Reply #7 - Aug 29th, 2010 at 5:51pm

AirForcePi1o7   Offline
Colonel
Civil Air Patrol - C/SrA

Gender: male
 Posts: 38
 *****
 
Then I'm clueless where the trojan came from... Maybe an infected download server? Or maybe I accidentally went to a site and it put it there? I dont know. I was on my normal websites...
 
Civil Air Patrol Cadet Senior Airman.
"I pledge that I will serve faithfully in the Civil Air Patrol cadet program, that I will attend meetings regularly, participate actively in unit activities, obey my officers, wear my uniform properly, and advance my education and training rapidly to prepare myself to be of service of my community, state, and nation." - Cadet Oath

"Semper Vigilans - Always Vigilant" - Civil Air Patrol Motto
Back to top 
IP Logged
 
Reply #8 - Aug 29th, 2010 at 7:32pm

Steve M   Offline
Colonel
Cambridge On.

Gender: male
 Posts: 4097
 *****
 
I just scanned with Vipre, the best payware I've ever had. Scanned twice zipped and twice unzipped. No negative  results. Remember that some malware doesn't show up the same day you got it.  Wink

Edit: Or some Trojans... Wink
« Last Edit: Aug 30th, 2010 at 6:43pm by Steve M »  
...
Flying with twins is a lot of fun..
Back to top 
IP Logged
 
Reply #9 - Aug 29th, 2010 at 8:46pm

AirForcePi1o7   Offline
Colonel
Civil Air Patrol - C/SrA

Gender: male
 Posts: 38
 *****
 
As I said, it said it came from that file. It wasn't malware either... but Yeah, not sure how it got there then.
 
Civil Air Patrol Cadet Senior Airman.
"I pledge that I will serve faithfully in the Civil Air Patrol cadet program, that I will attend meetings regularly, participate actively in unit activities, obey my officers, wear my uniform properly, and advance my education and training rapidly to prepare myself to be of service of my community, state, and nation." - Cadet Oath

"Semper Vigilans - Always Vigilant" - Civil Air Patrol Motto
Back to top 
IP Logged
 
Reply #10 - Aug 30th, 2010 at 7:47pm
Mynameisnemo   Ex Member

 
Downloaded and scanned with Both AVG, & Eset security suite, No virus's or trojans hidden in the zip file...
The only other thing that I can thing of is that its from something that you have downloaded from somewhere else, As I have downloaded from here for numerous years now and have never once had a problem!
 
Back to top 
IP Logged
 
Reply #11 - Aug 30th, 2010 at 11:06pm

JBaymore   Offline
Global Moderator
Under the curse of the
hombuilt cockpit!

Gender: male
 Posts: 10261
 *****
 
AirForcePi1o7 wrote on Aug 29th, 2010 at 5:37pm:
Also Not sure of the types of Trojan Installers. I just knew it installed fake Anti Viruses and tried to make me buy them and infected everything. Oh and it said it had 3 Trojan Installers.


This description is a well known classic virus infection........ and a darn BAD one.  A real pain to get rid of. 

You THINK you got it out.... but it resides in all sorts of places on the system.  It took me a full 24 hours of non-stop working in the registry and so on to kill that darn thing, using another computer to download info on how to do it, and also some tools to do it.

It basically destroyed a hard drive for me. 

My guess is that you have had that bad boy lurking on your machine for a while... it does not "activate" its BS immediately after the infection.  It sits there and steals credit card info and password keystrokes for a while quietly. 

My understanding is it is a "drive by" type infection.... you just have to visit the web page that is infected.... you don't have to do anything like a download or click on anything. 

Then at some point the virus pops up a legit looking warning that says your cvomputer is infected, and bogus scan windows that LOOK like it is scanning your system and finding all sorts of crap.  If you hit ANY of the buttons on that window to get rid of it,  .... including the rex X and anything else shown there... it installs a WORSE version of itself.

So if you think that it is gone... and it did not take you hours of work to clean the system manually... you likely still have it.  Simple anti-virus program will not automaticaly kill it.  They can prevent it from getting in, but once it is in, cleaning it is a bear.

Good luck.  I HOPE that is not what you have.

best,

...................john
 
... ...Intel i7 960 quad 3.2G LGA 1366, Asus P6X58D Premium, 750W Corsair, 6 gig 1600 DDR3, Spinpoint 1TB 7200 HD, Caviar 500G 7200 HD, GTX275 1280M,  Logitec Z640, Win7 Pro 64b, CH Products yoke, pedals + throttle quad, simpit
Back to top 
IP Logged
 
Reply #12 - Aug 31st, 2010 at 2:44pm

AirForcePi1o7   Offline
Colonel
Civil Air Patrol - C/SrA

Gender: male
 Posts: 38
 *****
 
Um, Yeah.. How would I get rid of it? Im sure its not on there, since I think AVG is one of the best, isnt it? (free atleasT)
 
Civil Air Patrol Cadet Senior Airman.
"I pledge that I will serve faithfully in the Civil Air Patrol cadet program, that I will attend meetings regularly, participate actively in unit activities, obey my officers, wear my uniform properly, and advance my education and training rapidly to prepare myself to be of service of my community, state, and nation." - Cadet Oath

"Semper Vigilans - Always Vigilant" - Civil Air Patrol Motto
Back to top 
IP Logged
 
Reply #13 - Aug 31st, 2010 at 4:36pm

AirForcePi1o7   Offline
Colonel
Civil Air Patrol - C/SrA

Gender: male
 Posts: 38
 *****
 
I just rescanned (While putting the lever thingy for the internet to "OFF") And I found 2 trojans (Generic) and 2 adware. Deleted them, Rescanned... Found nothing...
 
Civil Air Patrol Cadet Senior Airman.
"I pledge that I will serve faithfully in the Civil Air Patrol cadet program, that I will attend meetings regularly, participate actively in unit activities, obey my officers, wear my uniform properly, and advance my education and training rapidly to prepare myself to be of service of my community, state, and nation." - Cadet Oath

"Semper Vigilans - Always Vigilant" - Civil Air Patrol Motto
Back to top 
IP Logged
 
Reply #14 - Aug 31st, 2010 at 5:00pm

alrot   Offline
Colonel
Freeware Designers Above
All..

Posts: 10231
 *****
 
Hey THAT's False!!

I have check all the hidden files there are  *.Gau (which is the same as *.dll) No Troyans or anything like it ,this files are being check and recheck before posting it

In fact this is a nice model BTW  Cheesy

...

...

I have ways to even open the dll and *.gau and there isn't any "script" strange also I have check it with two diferent kinds of antivirus 

Quote:
****IT IS CONFIRMED I DID NOT GET A TROJAN FROM THAT FILE, BUT I DID GET A TROJAN FROM SOMETHING, PROBABLY NOT ON THIS SITE


Serious accusation I been here for more than a half of decade and this is new ,I'll follow the rules not to look for trouble ,Ill respect your opinion ,But not to share at all
 
...

Venezuela
Back to top 
IP Logged
 
Pages: 1 2 3 
Send Topic Print
Previous Topic | Next Topic
  « Home ‹ Board Top of this page

Simviation Forum » Powered by YaBB 2.5 AE!
YaBB Forum Software © 2000-2010. All Rights Reserved.

Valid RSS Valid XHTML Valid CSS Powered by Perl Source Forge