i thought that it would be good if everyone could post if they heard about a new virus, just as a warning to the rest of us.

first warning: Mydoom virus which is apparently worse than the Sobig.F virus that went round in august last year. link to bbc page about it: http://news.bbc.co.uk/1/hi/technology/3432639.stm

i suggest that anyone worried about viruses as you should be runs windows update once a week if you use windows to make sure you have all of the critical updates and to kepp your antivirus software upto date.

Good idea Gaskell. It might even be worth making this a sticky thread in this section.


Its got a fair few names too, not just MyDoom and Sobig.F. Andy Murray has had a problem with this virus, so if you can help him, go here http://www.martialartsplanet.com/forums/showthread.php?s=&threadid=9607

Like Gaskell says, run Windows Update and keep your AV up to date. Update it daily if you can.

The adress for Windows Update is http://windowsupdate.microsoft.com/, or you can press Start > All Programs > Windows Update under XP.

You can run a free Antivirus scan at http://housecall.trendmicro.com or download AVG AntiVirus at http://www.grisoft.com. These are quick fixes, or good if you have no other option, but you really should pay for it if you can.

You can't, only a mod can. Its done now though.

Basically it means that it will be stuck at the top of the forum, so anyone browsing it will see it/always know where it is.

Pretty useful given the subject matter I think.

I am so far behind on my windows update, it is impossible over the 56k now :'( HELP! lol

Tell me about it! 4 Hours it took me when I first ran it :( I have a feeling you won't be the only person with this problem.

You can select certain compoments you want to install. It'll tell you about the ones you didn't pick when you go back to the page. Pick a few at a time if you have a slow connection :) Also, skip out Driver updates, they can be unstable. Install what you need from Critical Updates, and your OS's updates

Thank god verizon inform me about this virus. I had 3 unknown e-mail with attachments. Just delete any unknown mail with attachments and update your Anti-virus.

just another quick note about Mydoom.
it is also spread through file-sharing networks such as kazaa and the like and it puts a "back-door" onto your system so hackers can get easy access to your files and worse, bank account numbers and passwords.

Fortunately I use a web-based email (Yahoo) so they usually intercepts any email containing a virus.

The other day I received a doc.zip file that was infected by "WORM_MIMAIL.R"
which is a new variant of the MIMAIL worm that has been found in the wild.

As of January 26, 2004 1:47 PM (US Pacific Time), TrendLabs has declared a yellow alert to control the spread of WORM_MIMAIL.R.

This mass-mailing worm selects from a list of email subjects, message bodies, and attachment file names for its email messages. It spoofs the sender name of its messages so that they appear to have been sent by different users instead of the actual users on infected machines.

It can also propagate through the Kazaa peer-to-peer file-sharing network.

It performs a denial of service (DoS) attack against the software business site www.sco.com. It attacks the site if the system date is February 1, 2004 or later. It ceases attacking the site and running most of its routines on February 12, 2004.

It runs a backdoor component, which it drops as the file SHIMGAPI.DLL. The backdoor component opens port 3127 to 3198 to allow remote users to access and manipulate infected systems. Note that it allows remote access even after February 12, 2004.

This worm runs on Windows 95, 98, ME, NT, 2000, and XP.


And if you need to more information on a virus:

Virus Encyclopedia Search (http://www.antivirus.com/vinfo/virusencyclo/)

Nice info KC

Originally posted by Gaskell
just another quick note about Mydoom.
it is also spread through file-sharing networks such as kazaa and the like and it puts a "back-door" onto your system so hackers can get easy access to your files and worse, bank account numbers and passwords.

Not to contradict you Gaskell, because you are right, but it can only steal information thats on your PC. If you use the net for banking and sometimes shopping, it can get your credit card numbers or bank details. Otherwise your safe, but the passwords is the biggest risk.

Luckily, most hackers who run these kind of backdoor programs wouldn't know where to actually locate the files with that data on them. Still doesn't lessen the risk any

Just a heads up for those with minimal experience in PC security...

I find a combination of 3 things works very well...

1. Good anti-virus software updated at least weekly - I use SOPHOS

2. A good firewall -I'm sat behind a router AND I have a legit (i.e. paid for) ZoneAlarm Pro but you can get a free version of ZoneAlarm from www.zonelabs.com - That way even if someone gets past your Av software the resulting trojan/s shouldn't be able to "phone home"

3. Keep up to date with Windows Update

There is a one-word solution to 99.9% of virii: Linux.

Originally posted by abby
There is a one-word solution to 99.9% of virii: Linux.

I agree, but Linux is very difficult for newbies to use. My mother can just about cope with Windows, if I put her on my Linux machine, she'd probably faint :D Versions like Lindows help, but they're still a long way off making a desktop friendly version in my opinion.

just for the record.
I've recieved this virus in my yahoo account.
Just so you know.

-Qis

ive found out how to get rid of Mydoom and the variant Mydoom.B.
link to msn: http://www.microsoft.com/security/antivirus/mydoom.asp
this should help if anyone has been unlucky enough to get the virus

I've had 7 emails containing MyDoom in the last 2 days - chances of them making it onto my system? Slightly less than naff-all :p

Given that it comes in an unsolicited email whith an attachment on it that you have to run in order to get infected, to get it
You'd have to be a little dim, wouldn't you?

I've had 7 emails containing MyDoom in the last 2 days


I've had 558 messages blocked in the last 7 days over my work network. Nasty.

Most of them came from a yoda@martialartsplanet.com - anyone know who he is?

I hav'nt the faintest idea :D

Must be some 13 yr old who sits in a room with no lights and trash all over, with geek glasses creating viruses and grinning evilly as it spreads.....





:D

|Cain|

And cold half-eaten pizzas spread about the room. The sauce of which has marked enerything.

just found this: http://news.bbc.co.uk/1/hi/technology/3500093.stm
another worm attacking windows im afraid :(

My AV sotware (Sophos) was updated for this on Feb 17th.

It spreads via email and an attached .exe file. I have no sympathy with anyone who gets a virus by running an attached .exe - How dumb can you get?

very, ive got zone alarm and norton running all the time and any windows updates get downloaded automatically so i think im protected. and i use my brain when i see .exe files in emails: i delete them if i dont know the sender

Latest one out is Netsky.B
http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM_NETSKY.B

Caused a major pain in the ass for me at work :(

i never get any email. :(

you mention windows update, it hasn't worked for me for months for some unknown reason. i didn't give it any excuses not to work, it just doesn't
shame

Did you know ......

There are 300+ new viruses every month. :eek:

Install AV Software and keep the Signature Files updated.

you mention windows update, it hasn't worked for me for months for some unknown reason. i didn't give it any excuses not to work, it just doesn't
shame

What browser are you using? And are you running any kind of firewall, and accepting the MS security download that pops ups?

Like Gaskell says, run Windows Update and keep your AV up to date. Update it daily if you can.

The adress for Windows Update is http://windowsupdate.microsoft.com/, or you can press Start > All Programs > Windows Update under XP.


If you use Microsoft Office make sure you get the updates for these programs as well at the Office update site.

The site was down when I tried to get a couple of updates and I forgot about it.

Friday I hit a mouseover link (unwittingly) which downloaded and kicked off numerous trojans and viri. I have all the current Windows updates but it used securty holes in Outlook and Word to perform the actions. I've corrected most of the damage but the TCP/IP stack is in bad shape. SMTP and POP3 and their bindings are beyond repair. Oh well I needed to do some upgrades anyhow.

The perps used names like Q330994.exe (which is the name of a Microsoft update) it set off the startpage virus, RATEGA trojan, et al.

This is tricky because seeing Qnnnnnn.exe (n=number) as an installed program doesn't raise any red flags.

Learn from my mistake folks and get your updates. (P.S. We need to catch these people and nail their jewels to a railroad track.) :woo:

This is tricky because seeing Qnnnnnn.exe (n=number) as an installed program doesn't raise any red flags.



This is why you should run a decent firewall like ZoneAlarm Pro.

If a program that accesses the network changes - by name, filesize, timestamp etc - ZA Pro goes nuts :D

This is why you should run a decent firewall like ZoneAlarm Pro.

If a program that accesses the network changes - by name, filesize, timestamp etc - ZA Pro goes nuts :D

Actually, that was what alerted me to the problem. I wonder what else it would have done if the other components had been allowed to run their course. The bad side is that it used http and active x problems to trigger so ZA didn't catch them in time.

Side note: Just because you don't use a particular program does not mean that you are immune to problems with it's code. All of the MS programs are tightly integrated. e.g. If you use IE, Outlook Express is installed on your system and can be vulnerable.

Brand new Virus 'floating' around this weekend. 02 May 2004.

Seems pretty nasty as it doesn't need to use e-mail to infect the PC.

Sasser worm 'spreading rapidly'

A new internet virus spreading rapidly around the world may already have infected millions of computers.
The Sasser worm spreads automatically, and can attack any computer connected to an internet service provider.

Unlike a computer virus, the Sasser worm does not infect computers through emails or attachments, but can target any PC linked to the internet.

More here:
http://news.bbc.co.uk/1/hi/technology/3678725.stm

Protect yourselves!

What to do: http://www.microsoft.com/security/incident/sasser.asp

spent the whole day trying to get rid of a trojan "revop.c" kept getting rid then deleting the quaranteen files along with a few that trojan remover and avg found but it kept reinfecting me everytime I restarted and then started browser still dont know if I have got rid but it seems hopeful so far.
been trying to get rid with s&d spyware remover, trojan remover and avg and have set inertnet security high but its been a pig .

Edit: <many swear words> still not gone it makes the screen black and reinfects when I start browser for the first time will let you all know when I find something to get rid of it.

Shipto
If you are useing win200 or XP you must disable the restore feature or every time you start the computer you reinfect it.

David

no its windowsME but (fingers crossed) its fixed now downloaded a program called adaware and it seems to have done the business will do another virus scan in a few hours because it may be hidden in other files I have read it can infect media player but like I said all seems fine at the moment.

WATCH OUT EVERYONE WHO BUYS STUFF ON THE NET!!!!

a virus, known as Korgo, is going round stealing credit card information. it is similar to the Sasser worm, in that it goes round the internet on its own ie not in emails etc.

Korgo virus (http://news.bbc.co.uk/1/hi/technology/3776247.stm)

watch out people, and take note of all the security precautions already mentioned

:)

WATCH OUT EVERYONE WHO BUYS STUFF ON THE NET!!!!

a virus, known as Korgo, is going round stealing credit card information. it is similar to the Sasser worm, in that it goes round the internet on its own ie not in emails etc.

Korgo virus (http://news.bbc.co.uk/1/hi/technology/3776247.stm)

watch out people, and take note of all the security precautions already mentioned

:)
Basically if you've been paying attention these last few months and have closed the holes in windows exploited by Sasser and the like - Korgo is no threat to you.

Yesterday I looked at a friends home PC for him. It was "behaving a little strange" and his phone bill was "a little high."



When asked what AV software he has his reply was that he doesn't worry about any of "that scare-mongering stuff" http://forum.dreamweaverwebmaster.com/icon_smile_big.gif

The result? FIFTEEN viruses, including...

3 premium rate dialers - one of which was set as his default connection.

2 Key loggers - both with much data in their logs including credit card numbers, online banking details, passwords etc.

Oh dear http://forum.dreamweaverwebmaster.com/icon_smile_shock.gif

Is this a record I wonder?

I did him a certificate for "The Darwin Awards for Internet Security" :D

Yesterday I looked at a friends home PC for him. It was "behaving a little strange" and his phone bill was "a little high."



When asked what AV software he has his reply was that he doesn't worry about any of "that scare-mongering stuff" http://forum.dreamweaverwebmaster.com/icon_smile_big.gif

The result? FIFTEEN viruses, including...

3 premium rate dialers - one of which was set as his default connection.

2 Key loggers - both with much data in their logs including credit card numbers, online banking details, passwords etc.

Oh dear http://forum.dreamweaverwebmaster.com/icon_smile_shock.gif

Is this a record I wonder?

I did him a certificate for "The Darwin Awards for Internet Security" :D

There's that old saying. "What are friends for?" :D

Go and download "stinger" from computer associates inc.
CA make McAfee anti-virus, but stinger is their emergency sw.

Someone I know bought a new Sony Vaio laptop and it was infected with several viruses, and a couple of interesting trojans too.
Stinger shifted the lot!

Or do like I do, and don't use windozes.
Get a copy of RedHat Linux 9.0 or fedora.
Virus free operating system!

Dave.

You can download a very competent and free Anti Virus Guard from http://www.grisoft.com/us/us_dwnl_free.php

Its served me well anyway...

Go and download "stinger" from computer associates inc.
CA make McAfee anti-virus, but stinger is their emergency sw.

It's Network Associates that make McAfee.

Not Computer Associates, who have their own Anti Virus Software - e-Trust.

Cheers. :)

Yep! your right it isn't Computer associates.
Silly mistake.
cheers for correcting me.
Dave

Here's a new one...


http://news.bbc.co.uk/1/hi/world/americas/3923705.stm


I've also seen the same posts in an newsgroup this morning but about the claimed suicide of Arnold Schwarz...howeveryaspellit

Heads up all.
Received from Trend Micro today.

Dear Trend Micro customer,

As of July 26, 2004 8:31 AM (GMT -7:00 Daylight Savings Time), TrendLabs has declared a Medium Risk Virus Alert to control the spread of WORM_MYDOOM.M. TrendLabs has received several infection reports indicating that this malware is spreading in Singapore, Germany and the US.

This worm spreads via email through SMTP (Simple Mail Transfer Protocol).

The details of the email it sends are as follows:

Subject: (any of the following)
. The original message was included as attachment The/Your m/Message could not be delivered
. hello
. hi error
. status
. test
. report
. delivery failed
. Message could not be delivered
. Mail System Error - Returned Mail
. Delivery reports about your e-mail
. Returned mail: see transcript for details
. Returned mail: Data format error

Attachment: (any of the following)
. %s.zip
. %s.com
. %s.scr
. %s.exe
. %s.pif
. %s.bat


TrendLabs will be releasing the following EPS deliverables:

TMCM Outbreak Prevention Policy - 122 (released)
Official Pattern Release - 1.945.00 (ETA: 30 mins)
Damage Cleanup Template - 384 (ETA: 2 hours)
Network VirusWall (NVW) Pattern 134 - (ETA: 3 hours)
Vulnerability Assessment (MS04-014) - Already Supported

For more information on WORM_MYDOOM.M, you can visit our Web site at:

http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM_MYDOOM.M

David

couldnt this have been posted in the Computing Forum, or more specifically here? (http://www.martialartsplanet.com/forums/showthread.php?t=9632)

;) :)

Tadaaaaaaaa.... :D

nice one boss :)

in case anyone is wondering, La Mancha's post above was originally a thread in General Discussion which the boss moved here :)

nice one boss :)

in case anyone is wondering, La Mancha's post above was originally a thread in General Discussion which the boss moved here :)

No. You just imagined it. :D

Sorry my idea was more people might see it in the general forum.

David

Sorry my idea was more people might see it in the general forum.
David

Not if we are looking in the Computing Forum. :D :eek: :D

Question how many people go to the general forum and how many come here?
Unless you are looking for something computer related i bet the first place is one of the general or MA specific forums.

David

Question how many people go to the general forum and how many come here?
Unless you are looking for something computer related i bet the first place is one of the general or MA specific forums.

David
In that case let's scrap all the forum areas and just have one big General Forum :D

Virus posts would be considered Off Topic in General Discussion as it's for General Discussion of Martial Arts!

New Virus I just caught and had to get stinger to kill it. It's the Bagel 32 v virus. It's not particularly nasty or anything, but it may get you fired. It hacks into your email system and sends itself to all your contacts. In addition it writes a large number of files (about 270 files I think) and calls them "xxx hardcore porn", or "cool cool anal hentai", or something equally incriminating. The files just sit on your hard drive and slow your computer down a little bit.

Nasty little bugger ...

In that case let's scrap all the forum areas and just have one big General Forum :D

Virus posts would be considered Off Topic in General Discussion as it's for General Discussion of Martial Arts!

Ok Yoda so it would be off topic, the point is to get it to as many people as possible and I personally dont think that most people who come here go to the computing forum first.
The answer? I dont know but as you are "the boss" so be it.
Any ideas on how to bring it to the forumites attention if it is posted in computing forum?
It would seem that it would be best if I for one stopped posting virus warnings as I get them.

David

erm, the New Posts function? if it's on there and is a Sticky, there's a good possibility that people will take notice ;)

It would seem that it would be best if I for one stopped posting virus warnings as I get them.

David
No - please continue - just post them in their allocated area - the sticky post in the Computer forum.

erm, the New Posts function? if it's on there and is a Sticky, there's a good possibility that people will take notice ;)

Very true and there is also the possibility that as its a sticky they might think they have read it before and so not read it again.
As I said I dont know the answer so I will just stop posting warnings.

David

Very true and there is also the possibility that as its a sticky they might think they have read it before and so not read it again.

It does show up as being an updated Thread in "New Posts" and "Today's Posts" when somebody posts something new in it.

:)

Yet another alert from Trend Micro.
Received this morning.

As of August 9, 2004 11:30 am PST, TrendLabs has declared a YELLOW alert to control the spread of WORM_BAGLE.AC. Several infection reports of this mass-mailing worm were received from the United States.

This worm is downloaded by TROJ_BAGLE.AC. Upon execution, it drops copies of itself in the Windows system folder using the following filenames:

windll.exe
windll.exeopen
windll.exeopenopen

It sends out .ZIP compressed files containing TROJ_BAGLE.AC and HTML_BAGLE.AC via email.

This PEX-compressed worm runs on Windows 95, 98, ME, NT, 2000, and XP.

TrendLabs will be releasing the following EPS deliverables:

TMCM Outbreak Prevention Policy 125
Official Pattern Release 953
Damage Cleanup Template 390

For more information on WORM_BAGLE.AC, you can visit our Web site at:

http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM_BAGLE.AC

Contact av_query@support.trendmicro.com for inquiries and to report infections in your region.

----------------------------------------------o0o----
CRITICAL PRODUCT UPDATE!
New Pattern File Numbering Format upgrade for Trend Micro products is REQUIRED by July 2004. Click www.trendmicro.com/npf for details!

David

Heads up this looks like a new worm.

Dear Trend Micro customer,

As of Aug 16, 2004 12:10 AM (GMT -7:00), TrendLabs has declared a Medium Risk Virus Alert to control the spread of WORM_RATOS.A. TrendLabs has received several infection reports indicating that this malware is spreading in Japan, Korea and the United States.

This worm spreads via email with the following details:

------
Subject: photos
Message body: LOL!;))))
Attachment: photos_arc.exe
------

Upon execution, it drops a copy of itself as the following files:

. %Windows%\RASOR38A.DLL
. %System%\WINPSD.EXE

(Note: %System% refers to the Windows system folder, which is usually C:\Windows\System on Windows 95, 98, and ME, C:\WINNT\System32 on Windows 2000 and NT, and C:\Windows\System32 on Windows XP. Note: The Windows system folder is usually C:\Windows\System on Windows 95, 98, and ME, C:\WINNT\System32 on Windows 2000 and NT, and C:\Windows\System32 on Windows XP.)

It downloads copies of a backdoor component file from several URLs and saves it as WINVPN32.EXE in the Windows folder.

This worm usually arrives UPX-compressed and runs on Windows 95, 98, ME, NT, 2000, and XP.


TrendLabs will be releasing the following EPS deliverables:

TMCM Outbreak Prevention Policy 126 (available)
Official Pattern Release 1.957.00 (available)
Damage Cleanup Template 394 (to be released)
Network Virus Pattern 10136 (to be released)


TrendLabs is currently working to provide a more in-depth analysis of this malware. You can visit our Web site for more updates on WORM_RATOS.A:

http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM_RATOS.A

Contact av_query@support.trendmicro.com for inquiries and to report infections in your region.


David

all of you who use MSN should read this:

http://www.eweek.com/article2/0,1759,1674255,00.asp?kc=EWNKT0209KTX1K0100440

wow ive learnt a lot thanks

on my mothers computer (not mine, thankgod!!), she got some nasty virus that goes by the name of coolwebsearch or something . ive tried adaware and norton so far, and it just keeps coming back. everytime. it set something on her homepage, and that wont come off either. my mom looks at her bank account and stuff online, and she buys things sometimes. im afraid it could steal her passwords. does anyone know how to deal with this thing *crosses fingers*

www.easy-tek.com will know :)

I had a really hard time with coolwebsearch (it would set itself as my homepage). Colonel Lieutenant Google will give you the information you seek. Or easy-tek.

if you don't want viruses, get Panda or BullDog firewalls, NOTHING will EVER get through Panda.

i found a thread saying i should download CWShredder. does anyone know if this works?

i found a thread saying i should download CWShredder. does anyone know if this works?
Yes that works. I've used it a few times now.

ok, thankyou

i think my computer may have a virus, a week ago whenever i close the ie , my calculater keeps poping up. all my softwares were gone due to format before so i lost my norton, and im not planing to get it cuz they said they scaned for adware and spyware but they missed out alot.so i use ad aware now and they detected no ad or spy on computer.any free software can fix my problem? also guys if u dont want spyware or adware in your computer theres one solution and u dont even wanna have to scan your pc unless u want to, just gotta download.com and download "spyware blaster" it prevent spy or ad from installing but its a free program but require a subscription like in a year yourll still get update for somtime. you can search for other free ones if u can find it.

A) You might want to use correct punctuation in your posts to make them a little easier to read ;)

B) Instead of using Norton AV, use either AVG (http://free.grisoft.com/doc/1) or Avast (http://www.avast.com/eng/down_home.html). I use AVG and am happy with it (I dont bother with Norton any more, since AVG got everything before it) and I believe that JohnnyX uses Avast and is more than happy with it :)

A) You might want to use correct punctuation in your posts to make them a little easier to read ;)

B) Instead of using Norton AV, use either AVG (http://free.grisoft.com/doc/1) or Avast (http://www.avast.com/eng/down_home.html). I use AVG and am happy with it (I dont bother with Norton any more, since AVG got everything before it) and I believe that JohnnyX uses Avast and is more than happy with it :)

Yeah, i have to agree with Anth on this one. I use Avast and also AntiVir for back-up and have no problems at all.

One vote for AVG here. Tho something silly and harmless like it popping up a calc sounds more like a spyware/malware type of thing.

Go to http://www.spywareinfo.com and ask there, perhaps somebody on that forum knows what it is...

Hey, infinity, did you get it from Torrent :D

Instead of using Norton AV, use either AVG (http://free.grisoft.com/doc/1) or Avast (http://www.avast.com/eng/down_home.html). I use AVG and am happy with it (I dont bother with Norton any more, since AVG got everything before it) and I believe that JohnnyX uses Avast and is more than happy with it :)

Yep, it's Avast for me. :love:

I've Sold, Installed, Supported and Used many Anti Virus packages in the past 10 years and the Free version of Avast that I use at Home is as good as any of the others that I've paid for in the past.

i dont know if i got it from torrents, but its gone now i think....cuz i ran adware again and it dected some ad or spy thing dint write down the name..

Just an interesting adendum here, AVG released version 7.1 recently, it took the computer in my recording studio down for the count...I can't even get into safe mode or anything to uninstall it, she just reboots herself...so a reinstalling we will go...LAME...I think I'll try Avast this time...

A serious disappointment.

Just an interesting adendum here, AVG released version 7.1 recently, it took the computer in my recording studio down for the count...I can't even get into safe mode or anything to uninstall it, she just reboots herself...so a reinstalling we will go...LAME...I think I'll try Avast this time...

A serious disappointment.


Nothing wrong with AVG...I have used it for a long time and have installed it on many systems. Likely something else going on in your system.

Ummmm, no it's likely not anything else in my system. My studio computer is a highly controlled system with very little ever changing, it has been running happy and healthy for a long time with no changes at all, I booted up, got prompted for an update to AVG, I took it, it asked me to reboot, I rebooted and now it's not working.

It's a flaw in the update of AVG, very simple really. Not saying it affects all users, but it damn sure affected me.

I've admin'd servers for years, worked as a tech for more years than that and have certifications coming out of my ears...it's not like I just fell of the PC tech truck...or that it is really that tough to diagnose given the computer it happened to affect.

I am just sharing the fact there is a flaw in it, not saying it's a huge one or that it will affect everybody, just food for thought when choosing one.

just a suggestion - sometimes a hardware failure can mask itself as something else - especially when it only exhibits itself after a reboot. I was just wondering if the reboot was the significant event and AVG just happened to be the reason for the reboot...AVG could be the problem, sure, but like a lot of others I have run it on a couple hundred machines around here with absolutely no problem whatsoever, and I would wonder what it could have done to prevent booting even into safe mode. I don't think AVG does any partition level monitoring?

anyways - what app do you use in the studio? just curious.

I did a complete hardware diagnostic, nothing suspicous there, it reboots itself as soon as AVG starts to load itself up into the taskbar...why it reboots in safemode I am not sure, and won't find out...time for a reimage. I intentionally keep only system and apps on the C: drive, anything else on other drives, so it makes for pretty painless reimaging...

it reboots itself as soon as AVG starts to load itself up into the taskbar...

I gotcha. Guilty, your honor! :)

I dunno, mebbe it was a corrupted download or something. Weird.

I gotcha. Guilty, your honor! :)

I dunno, mebbe it was a corrupted download or something. Weird.

Yeah, might be...I'll never know, reimaging scheduled for this weekend...if I can stay out of the gym long enough...I did 4 hours last night...I'm dead on my feet today.

Good informative thread - even though I was expecting Bird Flu stuff (in the computing forum?, yeah I know :bang: ).

Anyway, I'm cowering (with Yoda? :D ) behind Sophos and Zonealarm Pro: I also run Spywarekiller, Counterspy and the System Mechanic Spyware program - all updated before I hit the net.

Paranoid?...certianly given online banking. :eek:

Not so much about what kind of configuration you do with your PC or how well it is updated but where do you go to (i.e. porn) and what do you open (infected .exe or rar files in various forms: e-mail, P2P...).

Please just use your bloody common sense and you'll never get infected, I can assure you that. The only real threats for people with common sense is SPYWARE.

Here's a good guide of how to prevent spyware when doing random web surfing:

1. For Win XP users: http://mywebpages.comcast.net/SupportCD/SecureXP.html

2. For overall Win users: http://en.wikipedia.org/wiki/Spyware

A more general guide is this one:

http://www.dslreports.com/faq/8463

Which is more applicable to those who are a bit more paranoid. :)


Good luck.


CG.

Recently a new virus dubbed "Backdoor.Win32.MSNMaker.ab" (and also known under the name of "Troj/MSNMk-C"), has been spreading through Windows Live Messenger. Once your PC is infected it will spread itself to your buddies.

Like almost all other virusses, it tries to trick you into clicking a malicious link.

The message you will receive via Messenger is similar to "check :D http ://e-christmascards.info/****. exe (it has been known to include other URLs as well!), and pretends to be a e-card coming from your buddy.

Do not click the link !!!!!


Merry Christmas!

Just some new info for you all:

http://littleneck.patch.com/articles/virus-alert-worm-planted-in-fake-microsoft-update

From article:

Microsoft has just released its first computer virus alert of 2011.

Rogue virus called ThinkPoint, known also by multiple aliases, including Red Cross Antivirus, Peak Protection 2010 and AntiSpy Safeguard. Cloaked in the guise of being part of Microsoft's "Security Essentials" in order to entice Windows users into downloading and installing a potentially harmful program.

Information on removing viruses from pc world:

http://www.pcworld.com/article/119624/caught_a_virus.html

The new 2011 free edition of AVG is out too.

Have not had a blue screen or any sort of malware/virus problem in almost 2 years...

Linux (Ubuntu) makes computing so much more the experience it was meant to be :' )

powchoy

I <3 my norton 360!!

Every Month there is a new virus that is produce, In my PC I use Deep freeze in my other partitions to protect my files :D

I just use Linux. It's a lot simpler. I also find it some what ironic that a security vendor would have pop-up adds on their web site.

http://www.bbc.co.uk/news/uk-scotland-glasgow-west-15910819

Just had to clean a system with this nasty little bugger on it. It uses a link in the startup folder in the users own profile so it's not to hard to disable in the first place. The actual .exe file seems to be in the Appdata folder. Although so far as I can see Windows Vista doesn't like users looking in this folder. I used a live Ubuntu disk to get to it. You could probably use a Windows terminal. But I'm rusty on Windows commands.

Both the link and the .exe file names started with 0.0 in the case I'm dealing with. But they could be random. So check the startup folder first for anything that looks odd. Then delete. If your using Ubuntu, Ubuntu will create a trash folder on the hard drive which will be something like .999. So if you delete something you need by mistake you should be able to recover.

Any way delete those files and scan with Malwarebytes. Sees to clear out the infection.

If you want to avoid getting malware and you're on windows I suggest you try sandboxie. If you run your browser from sandboxie you will prevent spyware and virus infection. Also it's a good idea to run a vpn service like hot spot hot shield so people can't see your ip.

http://hotspotshield.com/
http://www.sandboxie.com/