Task List For Use With Task Manager

[Statica]

But are not sure about whether it really is a virus or whether your current antivirus is any good, try going to:

http://housecall.antivirus.com/housecall/start_corp.asp

In addition, if you suspect a virus from an unknown attachment, but arent too confident with antivirii, it doesnt hurt to use multiple antivirii programs to check. A simple way is to make yourself a hotmail / yahoo account and forward the file over there, and have their antivirus scanners check it.



_{This message was placed here in case you need the link quickly}

[EzyStvy]

Encyclopedia

The Symantec AntiVirus Research Center's Online Encyclopedia offers the most up-to-date information on recent threats, detailed in the list below. You may also search the encyclopedia for a comprehensive description of older threats.

http://www.symantec.com/avcenter/vinfodb.html

[Werewolfdaddy]

Just wanted to say, "thanks."
One of my lan comrades came down with a nasty virus. It keeps creating .eml .nws and .vxd files named after MY Pictures files. It also was starting MS Outlook express. He thought it was the sorry.c, but I never heard anything about it doing that.

[urge_13]

For a good range of AV and anti-Trojan programs, check this out:

www.wilders.org

[fred]

Hi Statica,
I completely agree. I and the company I work for have had a number infections that have not been detected by "individual" packages, but have been picked up by a combination of packages. In once case, Solomon was the only one to pick up the virus, in another it was some package I can't even remember the name of! In both cases, NAV failed to detect anything at all, and I am talking about the very latest releases!

The point is, people, don't trust to one package all the time. If you suspect you have a virus, try two or three packages! AV software is easy to get hold of these days - USE IT!!!

[fred]

Ha ha! That reminds me, last time I caught a virus it was a nasty email one. It 24 hours it spread all over the network. And damned if it didn't go and email itself to the first name it found in my address book - Microsoft! ha ha!

[courto]

HAHAHA Fred, great stuff.

I am amazed at the number of people I know that have been caught out over the last 6 to 12 months with viruses. I use web based email and I haven't been affected. I leave Outlook Express alone unless someone needs to send me something too large for web based email.
Eudora seemed to be an a safer alternative in the past, can anyone advise if this still the case?

[glc]

Yes, Eudora is a lot safer than Outhouse Express - and Pegasus is the safest.

[Statica]

Yep Eudora is the safest, as long as you remember to turn off the M$ viewer. Telnet is the safest

Am sick of whackos on the network who cant resist clicking on any attachment that comes within a 5 mile radius of their email accounts. & that whole "oh there is an antivirus on the server" excuse bugs me.

[fred]

Also reminds me of the first time I came across a virus - I said to the boss, "all you have to do is set the date to such and such and reboot". "Rubbish" he said, setting the date on his own pc and powering it off. He switched it back on and the screen remained blank, while the virus wiped his hard drive. I asked him if he’d done a backup recently. I could tell by his face that he hadn’t.

Seriously, yes, there do seem to have been more "cases" in the last 12 months or so. The people who write virus's make me sick. They are terrorists without a cause. Sorry to be so nasty, but I have known people to lose everything because of a virus. I really think we should get nasty with these people. They must cause billions in damage every year. Who's side are they on???? They should be tried for Treason.

[no_fat_chicks]

I have a problem with a friends PC that I think may have a virus. She said she had a virus that her anti-virus detected but due to a few problems she had afterwards, she reloaded the OS using the recovery cd, but is still having problems as in she cant get into her banking site & cant access her Norton anti-virus after a reinstall to get updates for it.

I have done an online scan for viruses using Trend micros site & it comes up clean. I included the boot sector in the scan.

The problem is I have updated her IE to IE6, lowered her security settings to nothing, removed her proxy, & after 2 hours I still cant get into a password screen for her banking & still cant update her anti-virus.

I read recently (cant recall where) about a new virus that changes the file extensions once its infected a HD to an extension not recognised by anti-virus programs. I'm thinking maybe this is her problem.

So, if I use the recovery cd again & do a format & restore, will it ACTUALLY format the HD? I know a normal format would wipe any virus present & I could check the boot sector b4 reloading the OS using a anti-virus boot disk but I'm not sure everything is wiped using the recovery cd.

I work for an internet company by day & fix PC problems after hours, & I've never come across this problem b4 w/o finding a fix but I'm at a loss for answers right now..

[Statica]

Just thought I'd pass this on: as a reminder.

If your antivirus program has an option for you: why should you want to quarantine files?

Logically speaking: How often do false positives occur? With good antivirus programs such as PC-Cillin & Norton, the chances of such occurences are extremely rare.
And what if the file is indeed a virus? Then what good is it quarantining it? Quarantine means, the antivirus removes access to that file, by either hiding or changing the filename or both; and then not allowing the user access WHILE THE ANTIVIRUS IS RUNNING. What happens if you boot to DOS or if you turn off your Antivirus program or it crashes? The file becomes accessible.

A suggestion, I always give is first run a thorough diagnostic of your system, with the quarantine turned on. Once you have rectified any possible issues with your files, and hopefully you got a clean bill of health. Then turn off quarantine and set to delete files.

One of the good options that PCC gives me is that it allows me to set quarantine options differently for different scans. For emails, I have set off the quarantine options. Check all the options on your antivirus program to find a level of security that is right for you. Dont simply install and forget.

[no_fat_chicks]

The reason you would set your anti-virus to quarantine is an alternative option to setting it to delete a file if it is suspected to be a virus.

The advantage with this is you can then check to see what the virus is, so you can see exactly what damage it has caused & to get the technical info on how to repair the damage (if applicable). Sometimes info on its originating source (eg whether it came via a website or email) can be gained by checking your anti-virus website for more info on the virus also. I always have my settings set to 'quarantine' for this very reason.

[tx2Step]

Internet browser scripting...

had a similar problem recently, reinstalling and or formatting can cause changes in settings in browsers and all scripting processes. If any of the scripting codes in security are marked for disable this can keep you from being able to log in to places

also check and see if passwords file is corrupt, but my guess would be scripting problem

when no virus is found scripting somewhere is the culprit

you can also try removing class files relating to those log ins like at microsoft when you do an update they put a .class file (think it's like csa.class or something similar) but if it gets corrupted you can't get updates

try checking all scripting areas first then check recent dates on class files. one or the other may be the problem. may not be but it doesn't sound like a virus is the problem anymore.

[gladiator]

Excuse me statica I must be one of those those wackos because I recently opened an attachment from an E-mail and got the Klez-worm virus, My first virus ever, I went to www.moosoft.com and downloaded "The Cleaner" it not only found The Klez but it also found BMD I believe it was that Kazaa had downloaded as spyware on my computer.

I still don't use any virus programs or firewalls, been lucky I guess

[Statica]

The query is how did you discover that you got the Klez?

[gladiator]

I knew something was up because as soon as I opened the Attachment on the E-mail (which by the way was .JPG an not a exe or a bin) my address book was accessed and started to send itself to everyone in my address book. I hit reset button as fast as I could but it was too late,
then after that each time I opened my mail=outlook express, the worm would send it self again to everyone in my book , so then I was getting a lot of return e-mails from servers telling me it was a virus and to check my system!!

I didn't notice any real damage just the annoying E-mails coming ang going. after I got rid of it I was getting virus filled e-mails back for weeks,from poeople that I sent it to and from their e-mail address books

[glc]

You sure it wasn't filename.jpg.exe? If you hide extensions for known file types (default Windows behavior) you will NEVER know!

[mattg2k4]

Quote:

Telnet is the safest

How does one use telnet to check email?

[wilder]

Is there such a file as WIN32 anything? Or is any file associated with WIN32 also associated with the Black Balick Trojan???

[aym]

Quote:

Originally posted by mattg2k4 How does one use telnet to check email?

Hi mattg2k4, check out this link:
http://pages.prodigy.net/michael_san...pop3telnet.htm

[mattg2k4]

Hey, thats kinda nifty, even though it has rather limited uses.

[n1cholas]

I got free Anti Virus software... I forgot where... but it's great!

[azsnkgtr]

hi, my new system (hp a220n) came with norton av 2003. my old system(my moms now) had nav 2002. and i could not get the update(for a year!) to down load with out being corupted?? when it final did, i got 15 different people and 2x dfferent answers that would take half a day??????? thru pc mech(you guy,s willing to answer) said try the the (panda) avg 6.0. i have added it to my comp, and just did it to my old system(running win 98) now the old system with anv and avg says its fine????? any idea why iwas getting all the illegal function mssgs?? and can these worms live in a system with both nav/avg?????????????

[shazam]

For the virus beagle.j try http:vil.nai.com/vil/stinger. This was recomended buy my ip

[shazam]

For the virus beagle.j try http://vil.nai.com/vil/stinger.

[kbaasit]

Shazam, your link is not working,.

[kbaasit]

Any Idea, why my PC might be running a little bit slower than it should?

I have ran update w/ my Norton Systemworks 2003, and then ran Norton Anti Virus on the hard drive. Nothing came up. However, I recv about 40 plus emails per day that have to have the attachment dleted as Norton seems to be finding all these diff virii, laced attachments! I have also rec'd a cpl from my own email address!

My OS: win98 latest serv pack. IE 6. Outlook 2000 is what I am using for my mail client.

[fudtone]

Run Staticas first link in this thread.

http://housecall.antivirus.com/housecall/start_corp.asp


shazams had an extra "." on the end.


http://vil.nai.com/vil/stinger/


Good Link still to date Statica!

[psyteam]

It is very good advice indeed to use several spyware programs. A couple I have found helpful are PestPatrol and Taskmanager16. The former, PestPatrol, offers an excellent and free online scan and will identify most of the latest trojans (home page hijackers, etc). You can also download a demo which identifies trojans, etc. but does not remove them -- for that you pay. Another plus with this progarm is that it identifies where in the Registry the offending files have embedded themselves. If you know how to use Regedit, you can do a lot of repair yourself. If not, be careful.

Taskmanager16 is an amazing little application too. It identifies every running process and service on your computer. And here is a bonus: it can "see" all of the dll files that the trojan programmers hide from Windows OS -- and kills them. This download is free for about 30 days, but keeps on working after expiration. I wanted to support the creator of the program so I bought it.

ONE FINAL TIP: If you can avoid using Internet Explorer, do it. e is safer. If you do use I.E., you might consider disabling the property "Enable Third Party browser extensions." In Explorer, click on Tools, Internet Options and then the Advanced tab. Then under the "Browsing" section go down to the check box opposite "Enable Third Party browser extensions." Uncheck the box and restart your computer.

psyvant