got an email from the company I work for. the subject was "À=!"#� $� ." also had an attachment called MSOOBE.EXE I normally dont open these files, so I forwarded it to my HotMail account and let the latest version of mcafee scan it. Came up clean> So I opened it, it did nothing visually. when I rebooted my computer I got an error saying "starting error QDBBASE.DLL is missing". click ok, then says "access to QV.EXE cannot be started". access denied...Any ideas on what has happened here??
thanks
David

W32/Magistr-A is a polymorphic Windows 32 executable file virus which spreads by infecting files and via email.

Magistr includes highly destructive code which - if triggered - can delete all files from local and network drives, wipe the CMOS settings, and flash the BIOS chip of your computer

Filenames that the virus can use include;

SULFNBK.EXE
CFGWIZ32.EXE
OEMRNCE.EXE
SETMODD.EXE
MSOOBE.EXE
SUCATREG.EXE
MKCOMPAT.EXE

Please note that these files are often found on uninfected systems, so their mere presence on your computer is not necessarily an indication of infection by this virus

http://www.sophos.com/virusinfo/analyses/w32mag.html



[This message has been edited by Richard_Cranium72 (edited 07-10-2001).]

Anyone else have a clue ?

I say you hit it dead-on RC72.

Wow Richard_Cranium72 - You are ontop of things... http://www.sysopt.com/forum/smile.gif

Here are some more links about the virus.
http://www.itc.virginia.edu/desktop/security/alert-magistr.html
http://srd.yahoo.com/goo/W32%2fMagistr-A/14/*http://www.ryerson.ca/ccs/news/magistr.htm

Well, thanks(blushes)

Here's my Top Secret avenue to knowledge

When someone expresses a problem, Take the litle cursor and Hold Down the left button and drag through the item in question.
This will turn it a Pretty shade of Blue.

Then take the little cursor and place it in the blue area, press the Right mouse button and choose "Copy"

Then go to the wizard search engine, Yahoo.

Put the little cursor in the "Search" box and press the Right mouse button and choose "Paste"

Then hit "Enter" or click the search button.

If yahoo don't find any matches, scroll down to the bottom of the page and click on "Google"

The entries in Google that you have already searched in Yahoo will be a darker color, saving precious time..

http://www.sysopt.com/forum/smile.gif)

Now I'm gonna have to kill you

Meet me in Central Park, NY tonight at Midnight wearing a Braves shirt so I'll know who to dust off http://www.sysopt.com/forum/smile.gif

j/k fur sure http://www.sysopt.com/forum/smile.gif

DrVette

Well, you are right. PE_MAGISTRI.A Got rid of it last night. Now Macafee FAILED to pick this one up.Wouldnt you think hotmail would be using the latest version of macafee? I now have a new antivirus. PC-cillin, it busted it`s nuts.

I'm glad you got it before it smoked you box.

Here's what scared me about it->


" can delete all files from local and network drives, wipe the CMOS settings, and flash the BIOS chip of your computer "

AND FLASH THE BIOS, uggghh, bad, bad news.

DrVette

yeah, and somehow i don't think it would flash the correct and lateset version of your bios either http://www.sysopt.com/forum/smile.gif

I have not had much luck with yahoo's virus scanner. I catch things every once in a while with Innoculate that it will not catch. That virus looked nasty, glad you caught it in time.

Your fu*ked,time to rebuild! http://www.sysopt.com/forum/smile.gif

I read something somewhere saying that MS hasn't collaborated with Norton to update the DAT files for Hotmail and that they haven't been updated in over a year. Don't trust Hotmail.