Wol

Can one of you IT guys help? (I think everyone on here but me and the nurses going to Perth is an IT guy <g>)

I've just come on after leaving the comfuser connected all night, and just glancing at the result of the midnight virus scan see that a folder wasn't openable for it. It's labelled Phoenix.

When I check on this - it's in C\Windoze\Application data - it contains all sorts of folders and files. I opened a couple of the text files and found listings of all my bookmarks and each one has "Password" against it plus a whole load of other text and numbers.

Also, the whole folder was generated last night.

Should I be scared?

Pollyana

Dunno Roger, someone like Bondipom could tell you. Sounds dodgy though....has the fingerprints of a virus all over it ( ).

Hope it doesn't turn out to be too nasty.

ABCDiamond

I just did a google search of Windoze, got a lot of info, but can't make out if it is a virus, or a hack or just some rubbish.

I can't locate the name on a direct search of my anti virus site.

Nibbs

It doesn't sound good. There is a virus group known as Phoenix originating in Belgium.

First step is to try a virus scanner. Try http://housecall.trendmicro.com/ for a free web based tool.

Let us know

fishyben

This may help.

http://hq.mcafeeasap.com/dispVirus.asp?virus_k=931

But the best way to avoid a virus is to get a Apple mac

Timber Floor Au

Ok its of low danger it attacks the command.com,

there are removal tools and quarranteen tools.

http://hq.mcafeeasap.com/dispVirus.asp?virus_k=931

Its an old virus about 14 years old !!

To remedy the virus, you need to reinstall your DAT files.

This is straightforward but if your not computer literate it may be easier to take to a dealer.

Alternatively:
Use this mcafee stinger to check your system, it may locate and offer a removal tool :

http://antivirus.about.com/cs/evaluations/a/stinger.htm

good luck Steve

scutterUK

isn't that a bit like saying the best way to avoid a car crash is to use a bicycle?

Wol

Thanks guys!

Strange things have been happening for a day or so, too. Some keys seem to do different things to that which they should - for example, the "Tab" key started to close the window. And my Bookmarks in the "Firebird" browser have disappeared just now - also the toolbar.

How do I reload the DAT files?

Wol

I've now had a look at my .dat files - there are about 20 in the system. The dates on them - or at least the command.com ones - show they were last modified at my last reformat, so I reckon they should be OK.

The keyboard seems normal now, so perhaps I was getting paranoid.

Could be as a result of selling the house contents over a period of four hours on Friday! Most of the furniture left the same afternoon, and we're living on borrowed camp chairs, a bed and a TV until 22nd March.............

bondipom

I have not seen that one but something you can do is create a set of floppy rescue disks from your anti-virus program. You can then boot your system with these and perform a thorough check. In theory the windoze folder whould be readable.

Have you been trying any of the alternative web browsers such as Mozilla or Firebird?

Finally what OS are you using ie win98, win ME, win 2000 or win XP?

Wol

BP: It gets stranger by the hour!

I'm on 98SE, using Firebird as the browser. Firebird has now lost all its bookmarks except the basic defaults, and I have just had to log on here (usually the browser logs on for me).

I thought I had the solution earlier on when the C Drive showed "full". I got rid of several big files and retrieved about 140MB, then decided to defrag to clean up the drive. It seemed to go on a long time then I noticed it started yet again with a message "A program is writing to disc - restarting"! This despite having use EnditAll before beginning.....

Prior to all this I did notice a prog called "Packager" riunning when I C-A-Deleted: no idea what this was.

Sometimes you just want to put a hammer through the thing,,and then fly to Seattle with the hammer.....

bondipom

My 98 SE box is dying but as well. The reason I ask is that phoenix is the name of Mozilla prior to firebird so you may have some legacy from that. I have downloaded firebird at work to check it out and I am impressed with the redraw rates. I will come back if I find anything relevant.

My advice Rog is to think about going XP. In the short run run the emergency rescue AV disks and Spybot search and destroy. Win 98 has very little life left.

If you need to defrag try to do so in VGA mode or safe mode as any services such as AV programs maybe using the disk that is being defragged.

Anyone who thinks MAC OS is not vulnerable to hacks and viruses has their head in the sand. Macs need AV software and security updates. Luckily for Mac owners the malware writers have their eyes on redmond.

Wol

Thanx again BP.

I use 98SE because my comfuser isn't up to XP! I'm not into games more violent or demanding than Tetris, and can't honestly see why one should have to buy a comfuser ten times more powerful every eighteen months just so that Master Gates (Well, it rhymes...) can stuff it all up with unused and unwanted "features" aka bugs!

Bring back RISCOS..........

bondipom

To be fair win98 is 6 years old but your point is what is driving the company I work for towards unix/linux .

I will probably buy another 256mb so I have 500mbs of RAM on an Athlon Gig processor. It won't be a rocket but hopefully it will be rock solid.

Wol

BP and others:

I think I have it sorted out. My C Drive was full - I think that was causing the program anomalies. Jumping to the conclusion I had something nasty in the woodshed, when BP mentioned that Firebird / Mozilla came from Phoenix I put two and two together! Unfortunately I had already deleted the Phoenix files thinking they were a nasty, so lost my bookmarks - and since the drive was full they went forever!!

Thanks all. Back to the drawing board.