Thursday, 20 February 2020

Test Your Defenses

You should definitely never willingly download a virus...

...unless you're running a Virtualbox and you want to see what happens when you let a virus go wild. That's exactly what I did when I unleashed a dangerous virus (that had actually ravaged my PC a few months before, in an uncontrolled environment!) inside a Virtualbox running Windows 7. It appeared to have little effect on the filesystem and registry, but when placed into a Windows 8 environment it caused enormous destruction. The system slowed down to being totally unusable, with no working internet, no antivirus and no firewall. All of this came from a simple download disguised as something useful.

If you're interested in running this virus in your own Virtual environment, send me a message. For safety reasons I won't be able to provide the download through Blogger or any other Social media linked website.


It's 2020, and here's a Pokemon post

This is my first post on Virus Unknown in 8 years. I've rediscovered this blog after trying to register for a new one, so I might as well use this one. This post will be related to the emulator DeSmuME.




I've been having trouble getting a save from an SD card to load on DeSmuME. It had worked before, and I've done it loads of times. You just make sure it's saved, and then export the save as Backup Memory. You can import it from the SD card if you've been using it on an R4 Cart in exactly the same way. For some reason, one of my save files would not load at all and the screen would stay white even after rebooting the emulator.

Here's the solution; TAKE OFF THE CHEATS. Not just disable them, but untick them in the cheats list. This is what is stopping the save from being loaded.

I hope this helps anyone else who's been stuck with this problem, wondering if their save has been corrupted somehow. There's nothing wrong with using cheats but sometimes it messes up the basic function of a ROM.

Tuesday, 27 November 2012

What is this blog for?

Before you click the back button on your browser, just hold on a moment and read this. It might be what you're looking for.

There are some computer viruses that are so unique, so new that even a google search cannot help you to get rid of it. In the past I have had a few localized entirely within my own computer and no record of them anywhere on the internet. It was down to me to save all my files and get rid of a virus that just did not want to go away. I've considered posting on tech help forums, but I wasn't optimistic that anyone else would know what to do either.

The Beginnings of VIRUSUNKNOWN

So what if your antivirus picks it up in a scan? You can move it to the chest and leave it to languish, thinking it is in a safe place. There was a particulary nasty virus which almost destroyed my new laptop just by doing this.

This virus was called Leshi.dll, and it sat in the registry of the main Windows\CurrentVersion\Run folder. So it was already highly suspicious when I found it with Avast. I moved it to chest, and it's important to note that at this time I was getting browser redirects, a very difficult problem to get rid of, usually caused by a virus infecting everything related to the internet. At first it was targeting main sites like Google, Youtube and Amazon. Eventually I couldn't even load my own homepage without pasting the whole URL, or I would get sent to CanadianPharmacy or a similar malicious marketing website. I've had plenty of redirect viruses but this beast would not even stop after multiple browser deletions and complete reinstalls.

I was sure I was safe since I had HijackThis, and I could even see the leshi.dll in the scan. It allowed me to remove it from the registry, and I restarted the computer to make sure it was working. To my horror, the registry had replaced itself. Leshi.dll was back and even more offensive. My laptop was now freezing up frequently and it had also killed my Firewall and blocked Avast from working. I was even blocked from downloading other antiviruses because the page would always redirect. Both Internet Explorer and my preferred Firefox had this problem, so there was no way around it. I was worried that next time I shut it down, it would not turn back on. After trying every tool it would allow me to, I finally decided to roll the computer back to before the virus appeared. That was over a week past and I would lose a lot of data, but it could possibly remove everything that had happened and restore my browser and firewall.