|
Title: Little help Post by: squat251 on June 04, 2013, 11:20:02 PM Hello, I honestly have no idea what any of this is, but somehow phoenix 2 is running on boot on my pc. I know this because a file called FALSE asks what I want to open it with. When opening it with notepad I am greeted with a log for the phoenix server saying that its getting commands and what not. What the hell is this, and how did it get on my PC without me knowing it? I will assume that its not malicious though it would seem as though I have been *infected by someone somehow. This laptop never leaves my house and has never had any viruses, so I have to assume that this was unknowingly added to a program that I legitimately downloaded and used. How do I remove this, or what is it for? ???
Edit: Found the program hiding in my appdata folder, and found the .cfg file. http://ricardovw@live.nl_1:123456789@pit.deepbit.net:8332 is the Backend. whoever this is, they are using peoples CPU to farm them money. I would love to find out how all this got on my laptop. They also renamed the phoenix software to kernel32. I removed it and a script which was creating it. Title: Re: Little help Post by: Foxpup on June 06, 2013, 06:46:25 AM how did it get on my PC without me knowing it? I will assume that its not malicious No, of course not. It was installed for your convenience by the magical software fairy. ::) Of course it's malicious! To assume otherwise is extremely unwise, to say the least.This laptop never leaves my house and has never had any viruses Yes, it never had any viruses... before. Now it has. How are you so sure your laptop has never had any viruses? A good virus is designed to avoid being noticed. I bet you've never seen a good toupée (http://rationalwiki.org/wiki/Toupee_fallacy), either.Please run a virus scan on your PC before you do anything else. The results may surprise you. |