Thread: 2p2er Viruses me, o noes now what?
View Single Post
  #22  
Old 05-27-2007, 09:50 PM
Sh@i'tan Sh@i'tan is offline
Senior Member
  
Join Date: Feb 2006
Posts: 1,130
Default Re: 2p2er Viruses me, o noes now what?
[ QUOTE ]
You should link to the download you made. Seeing the download would make it pretty easy to see if the virus came from there.

[/ QUOTE ]

i've linked it to _dave_ (someones opinion when it comes to computers i hold in gold).

two pms i recieved from him

[ QUOTE ]


[ QUOTE ]


if i upload a .backup file onto megaupload and then someone dls that file is there any chance the virus + keylogger they got was from downloading that file?



[/ QUOTE ]

Entirely possible, but the virus/keylogger would have to be on your computer, and have found it's way into the .backup file.

I am unfamiliar with .backup files - what creates them / what does it contain a backup of?

If the your computer is clean, I'd be 99.9% certain the virus/keylogger didn't come from your file - it is alays possible, but very very unlikely that megaupload.com has infected the file after uploading.

I'd become instantly paranoid and check your own computer thoroughly... presuming this is the computer you use for poker/neteller etc.

Name of the virus/keylogger may give some clue as to where it came from.

Here's hoping you aren't infected also, and your friend has just been careless using the internet.

Best of luck,

dave.

[/ QUOTE ]

and after showing him the link to the file he responded with this.

[ QUOTE ]

a tempting download indeed

I will "risk" the download, check it out see if it is clean.

Now I know what it is (a PSQL format database backup) I can't imagine how one could embed a trojan within...

gonna say probably not from you.

As I type that... OK got the file.

Not so simple as I thought seems PT .backup files are in binary format, rather than plain text. So I can't just check it out without PT to decode it, therefore I can't use my XP VM, since it has no PT.

Despite the incredible unlikelyhood this file contains anything untoward, I ain't gonna run it on my poker PC just yet...

Have to do some research as to how to decode this file, off to the PT forums I think


For future reference, there is a much easier / safer (and probably smaller) way to export PGSQL databases than PT's built in way, using PostgreSQL's own backup utilities. I posted a howto somewhere in the SW forum a while ago.

Will let you know what I find, but it won't be as quick as i first assumed

dave.

[/ QUOTE ]