michigan links logo Brought to You by: Michigan Links

 

More Info Here
Webopedia(did you know about-virus,worms,trojans?)
Free On-line Virus Scan Housecall

Virus's and Spyware, Trojans, Worms and Browser Hijackers

computer


September 9,2005
Phishing Alert see below


Phishing Encyclopedia HERE

August 16, 2005 Worm Alert

The Sasser worm (W32.Sasser.A and its variants) targets a security issue with the Local Security Authority Subsystem Service (LSASS) that Microsoft addressed with a released security update.
Sasser targets computers with out-of-date software, and those computers remain at risk of infection until the update is installed.
We recommend that customers install the update from Microsoft Security Bulletin MS04-011 to help protect against this malicious software.

Sasser worm info from Microsoft Here

W32/Zotob-F is a worm and IRC backdoor Trojan for the Windows platform.

W32/Zotob-F spreads to other network computers by exploiting common buffer overflow vulnerabilites, including LSASS (MS04-011) and PnP (MS05-039).

W32/Zotob-F runs continuously in the background, providing a backdoor server which allows a remote intruder to gain access and control over the computer via IRC channels.

Patches are ready for these at Microsoft Windows update.
Do Windows Security Updates Weekly

The shortcut to updates is also located in the IE browser'Tool' Menu.

E-Mail Virus's
You know the drill. Don't open E-mail attachments if your not sure who it is from!

E-Mail Virus started in February 2005, and it's a tricky one:

The mail seems to be coming from yourself, "do not open this one", if you know that you have not sent yourself mail!

Even if you did send yourself mail, be sure to check the Header of the Mail and the Properties of the mail to be sure it looks lagitimate and that it is the one from yourself.......

this is most likely sent from someone who has been infected and the virus is sending out mailings via the infected persons address book...
do not open, and delete immedietly.....this is a very catchy virus and it fools many of us....so beware of what you are passing on!

When surfing the web, be cautious of clicking on suspicious pop-ups be aware of what it really wants you do to, and read between the lines. (you may be consenting to some sort of browser spyware or browser hijacking.

September 9,2005
Watch for Phishing E-Mail!

Phishing Encyclopedia HERE

It appears to be a message from Amazon suggesting that you make a donation to the American Red Cross for victims of Katrina. But the message does NOT come from Amazon at all.

The From: address is faked to make it seem to come from Amazon. The look of the message copies the style used by Amazon and the wording is mostly lifted from the real Amazon appeal on their web site.

Of course, not suggesting that you do not donate to the various appeals for victims of recent events. But you do have to be careful about any email solicitation like this and scams generally.

Amazon were quick to respond with a scheme to donate using your normal account details direct to the American Red Cross.
Read: Sophos.com/virusinfo/articles/katrina

Phishing E-Mail!

Phishing scams will suggest that you take a link to maybe your pay pal or bank accounts.

The letter sounds like it is from an institution that you may have an account on line with and they want you to verify your account number such as a bank

Watch for mail like this! Identy thefts are on the rise.

Legitimate institutions do not ask you to verify accounts via your E-Mail!
Devious New Phishing" Attack Outsmarts Typical Defenses

A vulnerability in Windows lets phishers hijack your browser--even when you type the URL yourself.

Here's how the new phishing scam works. You receive an HTML e-mail message,
and you open (or even just preview) the message in your e-mail client software.
Windows PCs lacking one particular Microsoft security patch will run a tiny JavaScript applet as the client renders the HTML.
The QHosts Trojan horse applet modifies the PC's Hosts file so that when you type in a bank's URL you actually go to a site controlled by the fraudsters.
Since phishers have gotten very good at mimicking real sites, you may never know you're at the wrong one.

Pleas Read more here at

PC World Magazine

Ten comandments of computer safety

PC World News

Screensaver Virus Reported
15 March 2005 Users risk smackdown as WWE screensaver worm discovered, reports Sophos Experts at SophosLabs™, Sophos's global network of virus and spam analysis centres, have warned users to be on their guard against a worm which can disguise itself as a screensaver featuring two female stars of professional wrestling. The W32/Elitper-D worm spreads via email pretending to be a bug fix for Microsoft Windows XP SP2. However, when it attempts to spread via file-sharing systems and internet relay chat it disguises itself as a screensaver of WWE divas Torrie Wilson and Sable. The two blonde stars of professional wrestling are known to WWE devotees around the world, and have graced the pages of Playboy magazine. The W32/Elitper-D worm makes changes to the security settings of infected computers, and blocks access to various websites, potentially leaving the PC open to further attack.

Be cautious to what you are downloading. Be sure it is coming from a trusted site. The drill for surfing is just like E-mail. Be on your guard at all times. Have you had one of those POP-up ad's that look like it could be a window with the - X in the corner to make it look like you can X out, well don't be caught clicking on the X thinking it's a way to out. The best way to handle the kind you can't close is to use the Alt and the F4 keys (Alt-F4). You won't even have to touch that ad banner at all with your mouse.

Although some of these things can happen even with your guard up. The WWW is jungle out there.

I use the free Anti-Virus application - AVG form Grisoft it works great and you can't beat the price!
Grisoft Releases New AVG Anti-Virus Free Edition

Grisoft, a world leader in the development of anti-virus solutions,
today announced that after 5 years and some 20 million free downloads
it has released a completely updated and improved AVG Free version of its industry leading AVG Anti-Virus software. Please read More….

More from Grisoft's Adaware


Worm/Generic.FX
This worm spreads by internet and contains one dangerous payload action - every 3rd day of month worm overwrites files with doc, xls, mdb, mde, ppt, pps, zip, rar, pdf, psd and dmp extensions. More informations could be found in the Adaware Virus Encyclopedia. January 24, 2006

Exploit.WMF
These files exploits WMF vulnerability in Windows Operating Systems that allows malware code execution while WMF format file is opening. Unfortunately security patch for this vulnerability is not available at this time. AVG detects these files as Exploit.WMF and also as Trojan horse Downloader.Agent. December 29, 2005

I-Worm/Bagle.JH
It spreads thanks to massive SPAMing, messages contains attachements with zip extension and exe file inside with 9968 B size. Worm tries to download next component from the internet, but the link is no longer accessible. December 15, 2005

I-Worm/Sober.CF
This virus comes in as an attachment to emails written in English or German language. The attachment is a Zip archive with random name which contains the random named executable file with 55,390 b size. November 17, 2005

I-Worm/Sober.S, .T
This virus comes in as an attachment to emails written in English or Germanlanguage. The attachment is a Zip archive which contains the filePW_Klass.Pic.packed-bitmap.exe (113,551 b) in case of .S variant or fileScreen_Photo.jpeg-graphic1.exe (122,751 b) in case of .T variant. October 6, 2005

I-Worm/Mytob.LY, LZ (aka Zotob.A - B)
This worm spreads exploiting security hole described in Microsoft Security Bulletin MS05-039. More information can be found in the AdawareVirus Encyclopedia August 15, 2005

Win32/Gaelicum
We have reports about raising Win32/Gaelicum worm infections from lastfew days. More information can be found in the Adaware Virus Encyclopedia. August 3, 2005

I-Worm/Sober.Q
This worm sends spammed messages from infected computer. More information can be found in the Adaware Virus Encyclopedia. May 16, 2005

I-Worm/Sober.P
This virus arrives as an attachment to emails in English or German language. The attachment is a zip archive which contains the file called Winzipped-Text_Data.txt .piffile. More information can be found in the Adaware Virus Encyclopedia May 2, 2005

IE Browser Spyware and Hijacking is on the rise.....

Many kinds of unwanted software, including spyware, are designed to be difficult to remove. If you try to uninstall this software like any other program, you might find that the program reappears as soon as you restart your computer. If you're having trouble uninstalling unwanted software, you may need to download a tool to do the job for you. Several companies offer free and low-cost software that will check your computer for spyware and other unwanted software and help you remove it.

Some Internet Service Providers (ISPs) include anti-spyware software in their service packages. Check with your ISP to see if they can recommend or provide a tool. If your ISP doesn't offer a removal tool for spyware and other unwanted software, ask people you trust to recommend one, or see the list below for a few well-known tools. Keep in mind that removing unwanted software with these tools may mean you will no longer be able to use a free program that came with the spyware.

To remove spyware

1.

Download  Microsoft Windows-Defender ) or another spyware removal tool.

2.

Run the tool to scan your computer for spyware and other unwanted software.

3.

Review the files discovered by the tool for spyware and other unwanted software.

4.

Select suspicious files for removal by following the tool's instructions.

 
 
 
You may experience any one or more of the following symptoms:
When you start your computer, or when your computer has been idle for many minutes, your Internet browser opens to display Web site advertisements.
When you use your browser to view Web sites, other instances of your browser open to display Web site advertisements.
Your Web browser's home page unexpectedly changes.
Web pages are unexpectedly added to your Favorites folder.
New toolbars are unexpectedly added to your Web browser.
You cannot start a program.
When you click a link in a program, the link does not work.
Your Web browser suddenly closes or stops responding.
It takes a much longer time to start or to resume your computer.
Components of Windows or other programs no longer work.

CAUSE

This issue may occur when deceptive software such as spyware or unauthorized adware is installed on your computer. This kind of software may come bundled with software that you want to install or may be included with downloaded Web components.

RESOLUTION

To try to identify and remove deceptive software from your computer, use one or all the following methods.

Note Because there are several versions of Microsoft Windows, the following steps may be different on your computer. If they are, see your product documentation to complete these steps.

Note If you use an operating system that has the System Restore feature such as Windows Millennium Edition and Windows XP, set a valid restore point before you follow these steps. You can use the restore point to restore to the computer configuration that you had before you made the changes if you do not want the changes.

Note Deceptive software programs may not follow standard practices for installation. Therefore, the software may not be found in the locations that are described in the following steps.
1. Click Start, and then click Control Panel.
2. Double-click Add or Remove Programs.
3. In the Currently installed programs list, find programs that you do not recognize or are named similarly to the program that is causing the unwanted behavior.

Note Some programs that have unfamiliar names may not be deceptive software. Some programs may have come preinstalled on the computer from the manufacturer or may be important components of other software that you have installed on your computer. We recommend that you use caution when you remove programs from your computer.
Click the program that you want to remove, and then click Remove. To remove the component, follow the instructions that appear on your screen. You may have to restart your computer.
 

This Page uses Java script. If you have Active Scripting disabled,
you will not see the three applet's below for the Virus Information Headings Below

Top 10 Virus's

Top 10 Virus's Last Month

Know the Hoaxes from the Real Thing!

I found these Questions related to email viruses elsewhere, but the info is good.

so I thought i would include it here.

  1. I got this email from somebody, and it looks funny. Is it a virus? What should I do?

    Does the email not fit things that person would normally say? Is there an attachment? It's an email virus. Delete it. Don't send it.

  2. Somebody just said I sent them a virus. Do I have a virus on my computer?

    No, probably not! At present, all the big email viruses spoof the "from" line in an email. If the email said it came from you, then you are the one person who probably did not send it.

    For example, a person called Vira has a computer with a virus. Vira also has your email address and Steve's email address. So, Vira's computer sent an email virus to Steve that said it came from you! So, Steve tells you that you sent a virus to him, because he was tricked by the email virus. But, it has nothing to do with you or your computer.

    Worse, some mail servers automatically respond to viruses they block. But since the viruses use false headers, the mail servers actually respond to the wrong address - you, again.

  3. My friend sent me an email that said if I have this file on my computer, it's a virus. What should I do?

    Your friend is WRONG, WRONG, WRONG. Ignore your friend. Delete your friend's message. Better yet, look up your friend's message on the internet. You'll find lots of links to sites that explain that it's a hoax. Then, send your friend a reply explaining why it's wrong to spread hoaxes like this. If you deleted that file the hoax was referring too, you have now damaged part of your computer operating system. If the message really seems like it might be true, google it and see if is for real by finding information about it.USUSALLY it's NOT a virus!

  4. I have anti-virus software on my computer. Shouldn't it stop these viruses?

    Many viruses, especially the email viruses, spread around the world in hours. There isn't even enough time for the anti-virus companies to find out about them. They certainly can't release updates to the anti-virus software fast enough to catch every virus. Anti-virus software is a great thing, but it's always a day or two behind the latest viruses. So, although you really need it, you cannot always depend on it.

  5. Where can I find out about these viruses?

    There are many good websites to find out about computer viruses. "Grisoft AVG", as one example, including information on what they do, messages they send, how to remove them, and their effects on the internet.

Check Back Often

Bookmark this Page so that you can check here daily or weekly for the latest Virus feeds. These feeds are compliment of Sophos (anti-virus, anti-spam)


Hints:


Do weekly updates to your Virus dat files

Scan For Spyware and Adaware Often and keep these applications up-to-date!

Do Window's Updates at least once a week or turn on auto updates

If using Windows XP, turn on the firewall!

If using Outlook Express opt not to use the Preview Pane

Install Tools to check your computer weekly

Spybot Search and Destroy from PC World

Lavasofts Adaware

(these are free apps)
They are applications to
check your computer for spyware and hijacking programs from the Internet.

It's to bad that we as Internet Users have to put up with this nonsense.
But it's better to be Save then Sorry.....If you have had your Browser hacked with Spyware lately or worse yet,
some site installing a Search bar or a new Home Page that you didn't ask for and you can't get rid of it.
Have you had any of the porno pop-ups that are coming from hijackers.

An Example:

My grandson's installed Spybot Search and Destroy and Adaware to his girlfiends computer.
I suggested he do this, because she has cable highspeed internet and it is always connected; he mentioned to me about how slow her computer had become. Even opening Programs and applications on her local harddrive would take forever to open!
On the Internet she was being bombarded with porno pop-ups, adware site pop-ups, your computer may be infected type pop-ups, by the dozens!
He ran Spybot and Adaware and they found over 200 spyware and applications!
Think about it over 200 things running on her computer she knew nothing about!
Talk about Resources running low, it was a wonder her computer stayed running!

One good thing though, she had XP's firewall on
I was really concerned about a hacker getting into her computer slowing her down.
I had him install Zone Alarm for her also. This is another excellent free application. It's a Firewall and it is good to have if you are DSL or Cable and always on.
Also good to use if do not have WindowsXP with a firewall.

Microsoft alert:
Microsoft sends e-mail messages to subscribers of our security communications when we release information about a security software update or security incident.
Unfortunately, malicious individuals can and have sent fake security communications that appear to be from Microsoft.
This tactic is known as spoofing.

Some of these messages lure recipients to Web sites to download spyware or other unwanted software. Others include a file attachment that contains a virus.
Go here to read more from Microsoft

Another link to Microsoft that I would like to share
4 steps to protect your computer

"Real knowledge is to know the extent of one's ignorance." – Confucius

This Page is Compliments of www.4pkruger.com


Back to the Top
More Info Here
Wepopedia(did you know about-virus,worms,trojans?)

Mamagoo's Thoughts
My Blog - with Recipes
My Walmart Specials
Lamps-Furniture-Futons
My Fingerhut Store
Springtime Specials