Wilders Security Forums  

Go Back   Wilders Security Forums > Official ESET Support Forum > ESET Home Users Products Forum > ESET Smart Security
Reload this Page pc-off.bat
User Name
Password
Register FAQ Members List Calendar Search Today's Posts Mark Forums Read

 
 
Thread Tools Search this Thread
  #1  
Old August 24th, 2008, 08:28 PM
graywolf202 graywolf202 is offline
Infrequent Poster
  
Join Date: Aug 2008
Posts: 4
Default pc-off.bat
Hullo. There's this malware that a couple of AV's (nod32, ess, kapersky, etc) can't detect (but avira can detect it). Avira says it's a backdoor trojan C:\Windows\pc-off.bat. Apparently, it is also associated with other malware like password_viewer.exe and bar311.exe. People describe it as shutting down their pc. Some say there is also a timer before the shutdown. I'll send you a .zip sample as soon as i can find one. samples@eset.sk right?
  #2  
Old August 25th, 2008, 12:12 AM
ASpace
 
Posts: n/a
Default Re: pc-off.bat
Make sure to send password_viewer.exe and bar311.exe , the bat file itself , without the executables is not that important.
  #3  
Old August 27th, 2008, 01:27 PM
darklord_godiver darklord_godiver is offline
Infrequent Poster
  
Join Date: Aug 2008
Location: Philippines
Posts: 4
Default Re: pc-off.bat
ESET Nod32 Antivirus is now detecting it, however, it's still attacking my PC although with the help of the antivirus, it's not shutting down. In a matter of 10 to 15 minutes after I switched on my PC, the NOD32 starts showing pop-ups of pc-off.bat being quarantined. Now, having my PC on for more than 30 minutes, the virus has tried to attack for more than 400 times.

Do you have any suggestion on how to remove this thing? Even after doing a complete scan and quarantine, I can't seem to get it out of the system...
  #4  
Old August 28th, 2008, 01:10 AM
ASpace
 
Posts: n/a
Default Re: pc-off.bat
Hello!

Download and run ESET SysInspector
http://www.eset.com/download/sysinspector.php

When the utility has collected the information , click File > Save Log
Confirm your wish. A log file , placed in a zip archive , will be created.

Send that archived file to ESET , email samples@eset.com . Then , they'll guide you to a way to eliminate the threat and possibly recover the problems.
  #5  
Old August 28th, 2008, 01:22 AM
unleashedpsycho unleashedpsycho is offline
Infrequent Poster
  
Join Date: Apr 2007
Posts: 10
Thumbs up Re: pc-off.bat
Hello Friends,
I had a similar problem the pc shuts down after around 45 mins...
My system was infected with iph.exe and system.bat.
system.bat was place in "%systemroot%\windows" o %systemroot%\windows\system32" i'm confused...
Normally the shutdown countdown used to be executed after running command prompt.
But this happened about a month a go...

So i managed to delete it manually using DOS commands...
Now it's fine..
But now i hope eset gets hold of it...Not sure

But when ever i run command prompt it shows system.bat missing..i'm not able to remove that till now


I hope my experience can help anyone out there...
 

Wilders Security Forums > Official ESET Support Forum > ESET Home Users Products Forum > ESET Smart Security « Previous Thread | Next Thread »

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Settings
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT -4. The time now is 03:56 AM.

Contact Us - SSL - Wilders Security - Archive - TOS/Privacy - Top

Powered by vBulletin® Copyright ©2000 - 2013, Jelsoft Enterprises Ltd.
Copyright ©2002 - 2013, Wilders Security Forums