Quote:
|
Originally Posted by Acquamarina
My site was compromised, and 2 things that were different on October 20th - I use PcCillin and run scans 2 times a week, with automated updates at any given time. On october 20th, I got the following:
PAK_Generic.001 on October 20. 2008
Unable to Quarantine
Aliases: Generic, Mal/Packer, W32/Sality.M, Win32/Puper.8ke!Trojan, Win32/Sality!generic
I followed the file location immediately but could not find the file. Did a full scan (about 6 hours) and the file was then found and properly quarantined. I deleted it immediately and emptied the TrashBin (for whatever that's worth) then today, could not log in to ftp.
I also noticed that the new version of PCCillin Trend Micro Internet Security shuts down when it's updating automatically, which is utterly stupid as it leaves your pc unprotected. Don't know how to change that though, it's a serious flaw, but I am calling them now.
On 10/10 I started to get blank page syndrome in admin, don't know if it's related.
The other thing that is new for me is Twitter. Is anyone else using Twitter? Since it works as IM does it could be used to deliver viruses, couldn't it?
I also contacted x-cart helpdesk as they had the log in for my ftp.
A million thanks to Emerson for helping me with this. Emerson, you rock! EWDhosting is the best!
|
What I would do is grab a portable scanner like a portable Nod32 to run a quick scan, some viruses do make the effort to butcher the antivirus from updating, scanning, installing etc, that is why maybe running one from a USB drive might be a good bet to at least get a preliminary cleaning going. What FTP program do you use, and maybe was one of the quarantined files the FTP program or one of the access files that holds your FTP information? Perhaps a virus is targetting certain FTP programs and their information file, decrypting and sending them on your next attempt, just a guess