Jump to content

MalWare Packer Gen iuckq_dot_pif


Recommended Posts

Hello,

Malware.packer.Gen quarantined item - iuckq.pif

iuckq.pif - If I remember correctly it was on my desktop and

had an attribute associated with an MSDOS extension. I only

know that because I found it while browsing my desktop in

Windows Explorer. I right clicked on it was quarantined.

How it got on my desktop I don't know and I don't recognize it.

I'm running Windows 2003 Enterprise Server. And I did notice that

my access to taskmanager was disabled prior to the quarantine.

----------------------------------------------------------------

It may help to know what has happened to one of my workstations

which is running Windows 7.

It has had a severe problem with the malware/virus that disables

access to regedit and taskmgr. Then continues to tell you things

like: "Drive Error", Exceptions, etc...

That workstation currently displays a black screen with no o/s access

wether in safe mode or not. Malwarebytes appears to have found and

quarantined what it can, but it reappears again later. - So I haven't

finished flushing out the mole. (Which I don't know how to do yet).

I'd like some help with the iuckq.pif problem for now. It may be

associated with the workstation virus, but that I don't know.

Thanks for any help. The forum always seems to help.

Link to post
Share on other sites

I use Malwarebytes on my workstation only, but gave it a try

on my server because I thought I could stop something before

it got out of hand.

Looks to me like the workstation problem moved over to my server.

There are two computers - the workstation and the file server.

The trouble always begins with the taskmanager being disabled.

Then regedit is disabled, then programs cannot be run, then file

folder permissions are changed so folders cannot be accessed.

Next popup windows appear - "Disk Error", "Defrag", "Windows Exceptions"...

When Malwarebytes has it's chance to do it's thing it begins by catching

pif files. - Microsoft describes them as "A program information file (PIF)

is created when you create a shortcut to, or modify the properties of,

an MS-DOS-based program."

PIF files associated with "Malware.packer.Gen") are being quarantined semi-regularly.

The name of the pif file changes each time malwarebytes catches the intrustion.

Last time it was iuckq.pif this time it is brcff.pif.

Is anyone familiar with the culprit? Thanks for any help.

Link to post
Share on other sites

I use Malwarebytes on my workstation only, but gave it a try

on my server because I thought I could stop something before

it got out of hand.

Looks to me like the workstation problem moved over to my server.

There are two computers - the workstation and the file server.

Your problem as it sounds is due to a virus and not malware, this is a job for your antivirus software. You need to scan both computers with your antivirus software (make sure its updated). I did see this infection at a coustomers site and I used there corporated edition of Symantec Endpoint Protection to clean it. There was no need to use Malwarebytes in this case. (but like I said this was in their case, I could not be sure unless I saw what was happening on your box)

As far as using Malwarebytes you still need a corporate license to use in a corporate environment.... Using it on your workstation and server requires a corporate license....

As a licensed reseller, affiliate, corporate, non-profit or government user or tech shop, your current inquiry is eligible for Malwarebytes

Link to post
Share on other sites

Thank you for the advise. My first notion was that it was

a virus. I'll take you advice and approach the problem

that way.

I'm removing Malwarebyes from my "server/backup computer"

which, as I mentioned, was in hopes of stopping a problem

before it began.

My computer is both my personal and work computer. In the

future I'll address my personal concerns about malware.

Thank you again.

Dobbin

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.