LinkBack URL
About LinkBacks
so i found this oddly named folder on my cdrive and its got this notepad file in there with some crazy ass code and its oblivously link to a virus or something somewhere else on my HD. i got a virus scanner, mcaffee but definitions are like 11 months old and it wont update for some reason, so is there a way i can figure out the name of this one, or you guys know of and good free virus scanners ?
btw heres the first bits of code in the file :
"=== Verbose logging started: 11/21/2006 11:51:24 Build type: SHIP UNICODE 3.01.4000.2435 Calling process: C:\WINDOWS\system32\msiexec.exe ===
MSI (c) (78:64) [11:51:24:765]: Resetting cached policy values
MSI (c) (78:64) [11:51:24:765]: Machine policy value 'Debug' is 0
MSI (c) (78:64) [11:51:24:765]: ******* RunEngine:
******* Product: c:\888b7cb3647784b117\msxml.msi
******* Action:
******* CommandLine: **********
MSI (c) (78:64) [11:51:24:781]: Client-side and UI is none or basic: Running entire install on the server.
MSI (c) (78:64) [11:51:24:781]: Grabbed execution mutex.
MSI (c) (78:64) [11:51:24:875]: Cloaking enabled.
MSI (c) (78:64) [11:51:24:875]: Attempting to enable all disabled priveleges before calling Install on Server
MSI (c) (78:64) [11:51:24:890]: Incrementing counter to disable shutdown. Counter after increment: 0
MSI (s) (48:4C) [11:51:24:906]: Grabbed execution mutex.
MSI (s) (48:9[11:51:24:906]: Resetting cached policy values
MSI (s) (48:9
MSI (s) (48:9
******* Product: c:\888b7cb3647784b117\msxml.msi
******* Action:
******* CommandLine: **********
MSI (s) (48:9
MSI (s) (48:9
MSI (s) (48:9
MSI (s) (48:9
MSI (s) (48:9
so im guessing "msxml.msi" is the accual virus... hmm
Reply With Quote
Bookmarks