New Posts  All Forums:Forum Nav:

is this a virus?

post #1 of 9
Thread Starter 
cdrive file !

is that a virus??

it comes back even after deleting many times!!

i m using avira personal edition !!

can i use ant rootkit detection and removal software along with this ?

i hav also installed spybot on my system !!!!

ur recommendation pls guys

Edited by vinodfrndz - 6/20/08 at 10:57pm
Greenhorn
(13 items)
 
  
Reply
Greenhorn
(13 items)
 
  
Reply
post #2 of 9
what happens when u run it?
post #3 of 9
Thread Starter 
didnt try to run it !!
Greenhorn
(13 items)
 
  
Reply
Greenhorn
(13 items)
 
  
Reply
post #4 of 9
I wouldn't open it.

Have you tried running in safe mode to delete it? I do all of my malware and virus scans in safe mode.
Main
(13 items)
 
  
CPUMotherboardGraphicsRAM
Core i5 3570K ASRock Z77 Pro3 Galaxy 560Ti G.Skills DDR3 
Hard DriveOSMonitorPower
WD Cavier 250GB + SimpleTech 320GB EXHDD Windows 7 x64 Samsung 19" SyncMaster 940BW OCZ 600w GameXStream 
Case
COOLER MASTER Centurion 5 
  hide details  
Reply
Main
(13 items)
 
  
CPUMotherboardGraphicsRAM
Core i5 3570K ASRock Z77 Pro3 Galaxy 560Ti G.Skills DDR3 
Hard DriveOSMonitorPower
WD Cavier 250GB + SimpleTech 320GB EXHDD Windows 7 x64 Samsung 19" SyncMaster 940BW OCZ 600w GameXStream 
Case
COOLER MASTER Centurion 5 
  hide details  
Reply
post #5 of 9
The google said CDROM.exe was malware.
post #6 of 9
Quote:
Originally Posted by Gexx View Post
what happens when u run it?
LOL... sorry i gotta call Noob on that one =P

Yeah dont run it.


CDRIVE.EXE has been seen to perform the following behavior(s):

* The Process is polymorphic and can change its structure
* Executes a Process
* Writes to another Process's Virtual Memory (Process Hijacking)
* Modifies the Windows Host File which could be used to stop you visiting specific web sites by redirecting you to alternative addresses without you knowing

CDRIVE.EXE has been the subject of the following behavior(s):

* Deleted as a process from disk
* Executed as a Process
* Has code inserted into its Virtual Memory space by other programs
* Created as a process on disk
Zev's Comp
(15 items)
 
  
CPUMotherboardGraphicsRAM
Intel Core i5-2500K Sandy Bridge 3.3GHz GIGABYTE GA-Z68X-UD3H-B3 LGA 1155 Intel Z68 HDM... GeForce GTX 750 Ti G.SKILL Ripjaws X Series 8GB 
Hard DriveHard DriveHard DrivePower
1TB HDD 64GB SSD (Used for SRT) 500 GB. Antec BP550 Plus 550W Continuous Power ATX12V V... 
Case
COOLER MASTER ELITE 335 RC-335-KKN1-GP Black S... 
  hide details  
Reply
Zev's Comp
(15 items)
 
  
CPUMotherboardGraphicsRAM
Intel Core i5-2500K Sandy Bridge 3.3GHz GIGABYTE GA-Z68X-UD3H-B3 LGA 1155 Intel Z68 HDM... GeForce GTX 750 Ti G.SKILL Ripjaws X Series 8GB 
Hard DriveHard DriveHard DrivePower
1TB HDD 64GB SSD (Used for SRT) 500 GB. Antec BP550 Plus 550W Continuous Power ATX12V V... 
Case
COOLER MASTER ELITE 335 RC-335-KKN1-GP Black S... 
  hide details  
Reply
post #7 of 9
Id you dont have a virus scanner here is a really nice free one.

This is AVG- Free Version
http://free.grisoft.com/ww.download-...s-free-edition


I have been using AVG for a few years now, its vary good and i recommend it to everyone. I have a full version i bought for my previous boss and i took a key for myself =) But for my desktop i have the free version.
Zev's Comp
(15 items)
 
  
CPUMotherboardGraphicsRAM
Intel Core i5-2500K Sandy Bridge 3.3GHz GIGABYTE GA-Z68X-UD3H-B3 LGA 1155 Intel Z68 HDM... GeForce GTX 750 Ti G.SKILL Ripjaws X Series 8GB 
Hard DriveHard DriveHard DrivePower
1TB HDD 64GB SSD (Used for SRT) 500 GB. Antec BP550 Plus 550W Continuous Power ATX12V V... 
Case
COOLER MASTER ELITE 335 RC-335-KKN1-GP Black S... 
  hide details  
Reply
Zev's Comp
(15 items)
 
  
CPUMotherboardGraphicsRAM
Intel Core i5-2500K Sandy Bridge 3.3GHz GIGABYTE GA-Z68X-UD3H-B3 LGA 1155 Intel Z68 HDM... GeForce GTX 750 Ti G.SKILL Ripjaws X Series 8GB 
Hard DriveHard DriveHard DrivePower
1TB HDD 64GB SSD (Used for SRT) 500 GB. Antec BP550 Plus 550W Continuous Power ATX12V V... 
Case
COOLER MASTER ELITE 335 RC-335-KKN1-GP Black S... 
  hide details  
Reply
post #8 of 9
Download DR. WEB CURE IT and run that in safe mode, that should kill it.

Let us know how it goes.
1st build ever
(13 items)
 
  
CPUMotherboardGraphicsRAM
q6600 @ 3.6 P5Q Pro 4870 (512mb) 4 GiG DDR800 
Hard DriveOptical DriveOSMonitor
320 GIG 7200RPM 16buffer LG VistA Ultimate Sp2 64 bit 22 inch dell widescreen 
PowerCaseMouse
Cosair 620 590 MX518 
  hide details  
Reply
1st build ever
(13 items)
 
  
CPUMotherboardGraphicsRAM
q6600 @ 3.6 P5Q Pro 4870 (512mb) 4 GiG DDR800 
Hard DriveOptical DriveOSMonitor
320 GIG 7200RPM 16buffer LG VistA Ultimate Sp2 64 bit 22 inch dell widescreen 
PowerCaseMouse
Cosair 620 590 MX518 
  hide details  
Reply
post #9 of 9
It might not let you delete it, so you better check the running processes for it(see taskmanager), if it is running then kill it and quickly delete it so it wont have a chance to start up again.
Emachines E732ZG
(13 items)
 
  
CPUMotherboardGraphicsRAM
P6200 HM55 6370m 512M DDR3 3GB DDR3 
Hard DriveOptical DriveOSMonitor
WD .5TB 5400rmp slim DVD Win 7 x64 15,4" 
  hide details  
Reply
Emachines E732ZG
(13 items)
 
  
CPUMotherboardGraphicsRAM
P6200 HM55 6370m 512M DDR3 3GB DDR3 
Hard DriveOptical DriveOSMonitor
WD .5TB 5400rmp slim DVD Win 7 x64 15,4" 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Networking & Security