Wouldn't repartitioning the drive using Disk Wizard wipe out the virus. That's what I remember reading. Format doesn't do it . Or fill the drive with 1's or
0's using DW.
OK, this is getting interesting !
I've decided that I WILL open this file ( soon ) !!!!!!!!!!!!!!!!!!
The excitement is killing me !
BUT I'll download Sandboxie ( thanks to Godfrey) and open it on my laptop that isn't used much and I can afford to let it crash ! Will keep you informed.
But then all that stuff about watching all keystrokes , using my drive as a pornography server etc. may not show up at all even if the program appears to open up normally. Those hidden applications will only work if it's connected to the internet ....I guess. And THAT would not be visible either.
There is a catch here ! On hometheatershack.com the latest version of RoomEQwizard shown today is V3.5 ! This one says V4.11 ..... A dead give away ?
1. Forward that email message with the file attachment intact to scan@virustotal.com (limit is 10 MB)
2. Write SCAN in the Subject field of the forwarded message and delete the full body of the message. Send.
3. You should receive a virus report in the next few minutes.
2. Write SCAN in the Subject field of the forwarded message and delete the full body of the message. Send.
3. You should receive a virus report in the next few minutes.
Hi
Just be aware of the limitations of sandboxie. While malware running "in the box" can't make any permanent changes to your system, it can read anything on your system and talk to the internet, so if you're concerned about password stealers or other information theft, it's best to disconnect from the network (meaning unplug the cable), when playing with the bad stuff.
Something else to bear in mind: Afaik nobody's found a way for programs to escape from the sandbox, however it is possible for a program to figure out that it is trapped in a sandbox and take appropriate action. i.e. Just because it doesn't do anything bad in the box doesn't mean it won't do anything bad if you let it out.
btw: A nice feature I discovered by accident is that Sandboxie won't allow your system to be shut down or rebooted.
Cheers - Godfrey
Godfrey is exactly right about disconnecting from the internet. I would strongly suggest not messing with that file because there is no way it could be anything good.
I am trying to remember from when I was in school but to the best I remember a bootsector virus loads itself into memory every time you boot up so even if you clean it out it loads again next time you boot. I don't remember for sure if the boot sector is in the harddrive but I don't think it is. It might be in the BIOS. If it isn't in the HD then a format won't wipe it out. If it is in the HD a format will wipe it out.
I am trying to remember from when I was in school but to the best I remember a bootsector virus loads itself into memory every time you boot up so even if you clean it out it loads again next time you boot. I don't remember for sure if the boot sector is in the harddrive but I don't think it is. It might be in the BIOS. If it isn't in the HD then a format won't wipe it out. If it is in the HD a format will wipe it out.
Hi Anatoly,
How can I apologise enough ?
I must add that I could not remember your name and where this email came from.
I don't even remember asking for the file......that's how bad my memory is !
So I apologise profusely and cannot tell you how sorry I am.
I am currently also going through a LOT of stress due to the recent loss of my mom and having memory lapses is getting worse. I trust you will understand.
However your file is clean , I have just checked it , but the follow up is useful for others for any other files they have any doubts about. It isn't meant to cast any aspersions on 'you'. Please note that people can use any name in emails and having a Russian name isn't damming all Russians ! I get lots of spam emails from russian names especially to ask me to log on to "purchase details" of what I supposedly have bought on the Net. So I'm sure you will understand why I got worried.
I did check my out box to see if I sent an email request for this file but couldn't find it. So I must have done it through a forum 'mail'. If you had mentioned that it would have helped a lot.
If this thread continues it will be only to help people sort out suspicious mail and not to defame you. Sorry for all the heartburn it would have created for you. Thank you for taking the trouble to send me the file. ( Please note that I intentionally did not mention your name anywhere just in case I was on the wrong track !).
Cheers.
Ashok.
Last edited:
Is there a moral here ?
I think so. While most members have great memory power, some like me can sometimes completely forget requests made on the Net unless something reminds them of it.
I get mail with attachments from well known " friends" who never sent any mail !! I can cross check with them easily by making a phone call !
So when sending attachments to another person it might be a good idea to mention that it was being sent on a request made ' whenever , wherever'. That way it will jog ones memory and remove the worry of if it's spam or a virus.
This isn't fool proof either as some might not remember even with that ! Well we can consider that as an "occupational" hazzard !
Hope we can all ( now!) have a good laugh over this and best wishes to all for a Happy Christmas.
Cheers.
I think so. While most members have great memory power, some like me can sometimes completely forget requests made on the Net unless something reminds them of it.
I get mail with attachments from well known " friends" who never sent any mail !! I can cross check with them easily by making a phone call !
So when sending attachments to another person it might be a good idea to mention that it was being sent on a request made ' whenever , wherever'. That way it will jog ones memory and remove the worry of if it's spam or a virus.
This isn't fool proof either as some might not remember even with that ! Well we can consider that as an "occupational" hazzard !
Hope we can all ( now!) have a good laugh over this and best wishes to all for a Happy Christmas.
Cheers.
- Status
- This old topic is closed. If you want to reopen this topic, contact a moderator using the "Report Post" button.