Is there any FREE antivirus softwear? 04/13/02
A lady wanted to know if there's any antivirus software that’s F-R-E-E! There's not one, not two, but three free virus scanners that I know of. Ain't life grand?
Here's the direct link to the Panda Software virus checker: http://www.pandasoftware.com/activescan/
Here's my old favorite anti-virus program developed by Trend Micro: http://housecall.antivirus.com
Here's the link to the free AVG AntiVirus program from Grisoft: http://www.grisoft.com/html/us_downl.htm
There is an email circulating, stating it's from the "Microsoft Security Center." This email is bogus, and is being used to spread the W32GIBE virus. DO not open the attachment that comes with this email.
For more information about this worm, read this article: http://enterprisesecurity.symantec.com/content.cfm?articleid=1234&PID=na
How viruses are created 03/07/02
One person wanted to know how viruses are created and who creates them. This is kind of a tough question to answer. Many viruses are written in VisualBasic because it's an easy to learn programming language. If you see any attachment in your inbox with a .vbs on the end of the file extension then this is most definitely a virus. Most virus writers exploit holes found in Windows for bragging rights. Others just want to prove a point.
CR-ROM opens and closes by itself 01/10/02
One Paisleyite is witness to some strange behavior from his computer when it shuts down. The CD-ROM drive continues to open and close. What's wrong?
Check your BIOS to make sure that your computer is not going into a sleep mode when you shut it down, instead of powering off. Look at the BIOS if you are certain what you are doing, BUT CHANGE NOTHING!
You should also check for viruses and trojan horses., much easier Some viruses are known to play with your CD-ROM drive. For a free antivirus service, visit Trend Micro: http://housecall.antivirus.com/
Want FREE antivirus software? 01/10/02
Free anti-virus software Don't have an anti-virus program? Get one for free at Grisoft: http://www.grisoft.com
Where can you get the latest info about virus threats? 01/05/02
Try Symantec's website.
Trojan Horse Hides in File-Swapping Sites 01/05/02
Two popular file-swapping sites have been unknowingly spreading a Trojan horse that sends user information such as IDs and IP addresses to a third party. The Trojan, called "W32.DIDer," is installed on a user's computer as part of the normal installation process for Grokster and LimeWire -- two freeware apps that emulate Napster's file-swapping capabilities.
A Trojan horse is a destructive program that masquerades as a benign application. Although Trojan horses do not replicate themselves like viruses, they can be just as destructive.
Many freeware apps have promotional software bundled with them -- it helps pay the bills -- but usually the promotions are simply used to flash up advertising or lure users to a website. But this promotion, called "Clicktilluwin," secretly installs a program that carries the Trojan.
During the installation processes of these freeware programs, you are asked if you want to install Clicktilluwin. Regardless of whether you click yes or no, the Trojan code is installed. The code makes changes to your PC's registry so the Trojan runs each time you start Windows. The Trojan then sends information like your user ID, your IP address, and your browser preferences to a website, 2001-07.com, which has since been shut down by the ISP.
Both LimeWire and Grokster have issued warnings and apologies about the Trojan. LimeWire has released a new version of its software without the Trojan. Grokster has a patch on its site. Other file-sharing sites BearShare and KaZaA may have also been aflicted with the malicious code, according to reports. Message board postings indicate that the Grokster patch may remove the program from those services.
Could Microsoft be spreading a virus? 01/04/02
One lady downloaded a Windows update (as she should) from Microsoft's website. When she ran the updater, her Norton virus software quarantined a file from the updater. ?
No. It was NOT a virus! Norton Virus Protection often sees changes to the system as virus-like behavior. This is probably what was happening here. You can almost always trust anything you download from the Microsoft site.
Whenever you install new software or run updaters, make sure you turn off your virus protection to prevent this from happening.
Several Paisley folks have been concerned about having received a worm or virus 01/02/02
Actually, many have received "HOAX" warnings. Before you take any action, check this web page to see if it is a hoax or not. HOAX Warnings. Or to this page. Hoax Warning two. A third page that will help is HoaxBusters. All three have good information are are kept up to date.
Discription: This virus is also known as Pentagone, Goner or Gone. It is a NEW, HIGH RISK virus that spreads via Microsoft Outlook email and ICQ instant messaging programs, using a plain text format. The attachment does not start automatically when the you open the message and does not get activated automatically when the Outlook Preview Pane is used. This mass-mailing worm will arrive from someone you know with the following email message:
Subject: Hi
Body:
How are you ?
When I saw this screen saver, I immediately thought about you I am in a harry, I promise you will love it!
Attachment: GONE.SCR
If you run the attachment, your system will be infected.
When run, the worm displays a message box entitled, "About."
After a short time another windows entitled "Error" is displayed.
Sulfnbk.exe virus 01/01/02 ALIAS: Long File Name Backup utility virus hoax
In 2001 there appeared a hoax message concerning a new virus that was reportedly discovered in Windows' Long File Name Backup utility SULFNBK.EXE. Several versions of this utility were checked from Windows installations and found no infection in it.
However, some e-mail worms (for example, Magistr) might sometimes send an infected SULFNBK.EXE in an e-mail attachment.
Bottom line: if you get SULFNBK.EXE in an e-mail attachment, it's probably a virus. If you find it from your Windows directory, it's probably not.
1. Most of the worms which use e-mail to propagate use Microsoft Outlook or Outlook Express to spread. If you need to use Outlook, download and install the latest Outlook security patch from Microsoft. In general, keep your operating system and applications up-to-date and apply the latest patches when they become available. Be sure to get the updates directly from the vendor.
2. When possible, avoid e-mail attachments both when sending and receiving e-mail.
3. Configure Windows to always show file extensions. In Windows 2000, this is done through Explorer via the Tools menu: Tools/Folder Options/View - and uncheck "Hide file extensions for known file types". This makes it more difficult to for a harmful file (such as an EXE or VBS) to masquerade as a harmless file (such as TXT or JPG).
4. Never open e-mail attachments with the file extensions VBS, SHS or PIF. These extensions are almost never used in normal attachments but they are frequently used by viruses and worms.
5. Never open attachments with double file extensions such as NAME.BMP.EXE or NAME.TXT.VBS
6. Do not share your folders with other users unless necessary. If you do, make sure you do not share your full drive or your Windows directory.
7. Disconnect your network or modem cable when you're not using your computer - or just power it down.
8. If you feel that an e-mail you get from a friend is somehow strange - if it is in a foreign language or if it just says odd things, double-check with the friend before opening any attachments.
9. When you receive e-mail advertisements or other unsolicited e-mail, do not open attachments in them or follow web links quoted in them.
10. Avoid attachments with sexual filenames. E-mail worms often use attachments with names like PORNO.EXE or PAMELA_NUDE.VBS to lure users into executing them.
11. Do not trust the icons of attachment file. Worms often send executable files which have an icon resembling icons of picture, text or archive files - to fool the user.
12. Never accept attachments from strangers in online chat systems such as IRC, ICQ or AOL Instant Messenger.
13. Avoid downloading files from public newsgroups (Usenet news). These are often used by virus writers to distribute their new viruses.
This information provided by "F-Secure Information Security System."