QUOTE
Some "french hacker" guy has been releasing a nastly little virus on emule and shareaza. Its usually with small cracks and keygen files but its even been found on free demo software. I found it when downloading an AnyDVD key. I found over 5 AnyDVD 'cracks' each really being the virus. Other people on different message boards also reported getting the virus with an AnyDVD crack.
Don't know the name of it but as soon as you open the file you'll get an Ad Popup of this self-proclaimed FrenchHacker and he says something to the effect of "(filtered) all Pirates, Mp3s, etc" It then does three things to your computer, 1st is it disables your taskmessenger (Alt+Ctrl+Del), 2nd it disables all .exe files - preventing you from launching any program (even if you change the .exe to a .com or .scr it won't start). The 3rd thing it does is it deletes your ntdetect.com file; this prevents you from logging back on once you restart your computer.
The virus copies itself to multiple locations; the system32 folder and to your Program Files folder. As well as leeches on to different parts of your registry. There are message boards that talk about removing the virus but none of them worked for me. I was able to remove the virus but I couldn't get the taskmanager back, and that prevented me from fixing my pc.
What was odd is that Kaspersky Anti-Virus (fully updated), Trend Micro's Online scan, and Panda's online scanner were unable to detect the virus. So just be on the look out; make sure your backups are up to date and working.
Don't know the name of it but as soon as you open the file you'll get an Ad Popup of this self-proclaimed FrenchHacker and he says something to the effect of "(filtered) all Pirates, Mp3s, etc" It then does three things to your computer, 1st is it disables your taskmessenger (Alt+Ctrl+Del), 2nd it disables all .exe files - preventing you from launching any program (even if you change the .exe to a .com or .scr it won't start). The 3rd thing it does is it deletes your ntdetect.com file; this prevents you from logging back on once you restart your computer.
The virus copies itself to multiple locations; the system32 folder and to your Program Files folder. As well as leeches on to different parts of your registry. There are message boards that talk about removing the virus but none of them worked for me. I was able to remove the virus but I couldn't get the taskmanager back, and that prevented me from fixing my pc.
What was odd is that Kaspersky Anti-Virus (fully updated), Trend Micro's Online scan, and Panda's online scanner were unable to detect the virus. So just be on the look out; make sure your backups are up to date and working.
