mIRC virus

  • Thread starter Thread starter Texas111
  • Start date Start date
T

Texas111

I seem to have collected a virus somehow associated with the program mIRC.
Through NAV, I have deleted some files, but I still have mIRC start every
time I boot my comp.I am concerned because my Norton firewall has caught
several messages being sent with personal info, PIN numbers and bank account
info. Agravating! And I did not load mIRC myself. My OS is Win2KPro.

I have deleted files named PEERER.EXE and WVAMGRD.EXE. Both had clear text
in their files about mIRC.

I also have 2 files in D&S/local/temp named "cc1.tmp" and "cc1d.tmp" that
appear to collect email that I send, including headers and text. Which also
troubles me :))

I know now that I did not keep good records when I was trying to get rid of
this stuff, but does anyone have an idea the name of the gnome I have?

Should I just give up and clean my HD and start over with a new copy of
Windows? With a firewall this time?

Allen
 
Texas111 said:
I seem to have collected a virus somehow associated with the program mIRC.
Through NAV, I have deleted some files, but I still have mIRC start every
time I boot my comp.I am concerned because my Norton firewall has caught
several messages being sent with personal info, PIN numbers and bank account
info. Agravating! And I did not load mIRC myself. My OS is Win2KPro.

I have deleted files named PEERER.EXE and WVAMGRD.EXE. Both had clear text
in their files about mIRC.

I also have 2 files in D&S/local/temp named "cc1.tmp" and "cc1d.tmp" that
appear to collect email that I send, including headers and text. Which also
troubles me :))

I know now that I did not keep good records when I was trying to get rid of
this stuff, but does anyone have an idea the name of the gnome I have?

Should I just give up and clean my HD and start over
Click to expand...

Yes! Also change your passwords because it appears you have
been *severely* compromised.
with a new copy of Windows?
Click to expand...

Well, that is up to you.
With a firewall this time?
Click to expand...

Although it might not be absolutely necessary, a firewall can
be an asset.
 
Just a thought, you can actually go into the registry to delete any auto
started programs ... its probably there but i might be wrong. Good idea to
post about that to find out where to find it in the registry or even maybe
check if there is a folder in your programs menu for auto started programs.


Ron
 
I seem to have collected a virus somehow associated with the program mIRC.
Through NAV, I have deleted some files, but I still have mIRC start every
time I boot my comp.I am concerned because my Norton firewall has caught
several messages being sent with personal info, PIN numbers and bank account
info. Agravating! And I did not load mIRC myself. My OS is Win2KPro.
Click to expand...

This sort of thing scares the bejeebers out of me.
I have deleted files named PEERER.EXE and WVAMGRD.EXE. Both had clear text
in their files about mIRC.

I also have 2 files in D&S/local/temp named "cc1.tmp" and "cc1d.tmp" that
appear to collect email that I send, including headers and text. Which also
troubles me :))

I know now that I did not keep good records when I was trying to get rid of
this stuff, but does anyone have an idea the name of the gnome I have?

Should I just give up and clean my HD and start over with a new copy of
Windows? With a firewall this time?

Allen
Click to expand...

If you do that, make sure that you first burn firewall (fw) and
av softwares to CD, as well as your data.

After you reinstall, you need to have the fw up before you
go online to get the windows updates.
 
Texas111 said:
I seem to have collected a virus somehow associated with the program mIRC.
Through NAV, I have deleted some files, but I still have mIRC start every
time I boot my comp.I am concerned because my Norton firewall has caught
several messages being sent with personal info, PIN numbers and bank account
info. Agravating! And I did not load mIRC myself. My OS is Win2KPro.

I have deleted files named PEERER.EXE and WVAMGRD.EXE. Both had clear text
in their files about mIRC.

I also have 2 files in D&S/local/temp named "cc1.tmp" and "cc1d.tmp" that
appear to collect email that I send, including headers and text. Which also
troubles me :))

I know now that I did not keep good records when I was trying to get rid of
this stuff, but does anyone have an idea the name of the gnome I have?

Should I just give up and clean my HD and start over with a new copy of
Windows? With a firewall this time?

Allen
Click to expand...
If you didn't download MIRC and open it up then a malicious hacker ttok
it upon themselves to do so. A complete reformat of the hard drive and
install applications by CD-ROM only. Then install a firewall and if you
have a need to install your personal files then you better do a
Fantastic job of virus checking these files because the hackers will
always install their Backdoor or Trojan in these files.

Tracker
 
Back
Top