Page 1 of 2

Netsky virus

Posted: 11 Mar 2004, 01:16
by Thrash Harry
Bouncing around all over my workplace. Anyone else?

Posted: 11 Mar 2004, 01:23
by Black Planet
No.

Posted: 11 Mar 2004, 01:31
by Thea
dunno - but summat's had my 'puter screwed up all day :\ anyone recomend a good Free* virus killer

*really free. not 1-week trials

Posted: 11 Mar 2004, 01:37
by Thrash Harry
Lucky you. Not got your side of the pond yet then. I'd assumed that was the source. At the risk of putting you to sleep, my company is currently evaluating its e-commerce platform and is veering towards Java/ Oracle rather than .Net/ SQL server due to the number of high-profile MicroSoft attacks. Even our MD thinks MS are a bad risk. Personally I reckon there are two rooms in every anti-virus software house. On for the poachers and another for the gamekeepers. It would be nice to work in a less scurrilous industry which pays the same. Ho hum.

Posted: 11 Mar 2004, 01:40
by Dan
http://housecall.trendmicro.com/
Use the free online virus scan here.

Posted: 11 Mar 2004, 01:53
by CellThree
d00mw0lf wrote:dunno - but summat's had my 'puter screwed up all day :\ anyone recomend a good Free* virus killer

*really free. not 1-week trials
If you're the same Doomy that I have on my Soulseek user list then yeah, you do have problems!

(All the following are Free full versions)

1. Go to www.grisoft.com and get the AVG Free Edition. Do a full system scan. This should pick up whatever nasties you have on your system, but it may not be able to clean them. If it can't then...

2. Make a note of the name of the viruses/trojans you have then go to here: http://securityresponse.symantec.com/av ... .list.html and get a removal tool.

3. Once that has been done and you're happy your computer is free of nasties, get and install the following programs (if you don't already have them):

Adaware 6 Standard Ed - http://www.lavasoftusa.com/support/download/

Spyware Blaster - http://www.javacoolsoftware.com/spywareblaster.html

Spybot Search and Destroy - http://www.safer-networking.org/index.php?page=download

and last but not least -

Zone Alarm Firewall - http://download.zonelabs.com/bin/free/1 ... 38_001.exe

This should keep you protected from most nasties. All you have to do is keep them all updated and virus scan everything you download off the net!

Posted: 11 Mar 2004, 01:56
by Black Planet
As usual C3 you are a wealth of information, in language an idiot like my self can understand.

As for you Harry...for god's sake..speak to me in English.,..not Tekkie talk.

Sorry that's far over my head....and utterly Greek to me.

oh and nite nite...I'm off.

Posted: 11 Mar 2004, 03:38
by Thrash Harry
Black Planet wrote:As for you Harry...for god's sake..speak to me in English.,..not Tekkie talk.
I'm practicing for my next interview. If I've got you baffled, then I reckon I'm halfway there. :wink:

Posted: 11 Mar 2004, 09:27
by hallucienate
Thrash Harry wrote:
Black Planet wrote:As for you Harry...for god's sake..speak to me in English.,..not Tekkie talk.
I'm practicing for my next interview. If I've got you baffled, then I reckon I'm halfway there. :wink:
Not going for anything to technical then?

We installed www.clamav.net on our mail servers recently. It seems to do the job excellently. :notworthy:

Posted: 11 Mar 2004, 10:29
by Thrash Harry
hallucienate wrote:
Thrash Harry wrote:
Black Planet wrote:As for you Harry...for god's sake..speak to me in English.,..not Tekkie talk.
I'm practicing for my next interview. If I've got you baffled, then I reckon I'm halfway there. :wink:
Not going for anything to technical then?
More like never been interviewed by anyone too technical.
hallucienate wrote:We installed www.clamav.net on our mail servers recently. It seems to do the job excellently. :notworthy:
Our ISP is catching and reporting them, just surprised we're being spoofed/ attacked so much. Never been touched by any of the more high profile ones.

Posted: 11 Mar 2004, 11:05
by mh
Yeh, we're being spoofed as well, it's good fun.

Posted: 11 Mar 2004, 11:45
by markfiend
I'm getting this one about ten times a day, spoofed from PayPal:
Dear PayPal member,

We regret to inform you that your account is about to be expired in next five business days. To avoid suspension of your account you have to reactivate it by providing us with your personal information.

To update your personal profile and continue using PayPal services you have to run the attached application to this email. Just run it and follow the instructions.

IMPORTANT! If you ignore this alert, your account will be suspended in next five business days and you will not be able to use PayPal anymore.

Thank you for using PayPal.


aiqaawea
It has an attachment called www.paypal.com.pif which is obviously a virus. I know (think) it's not Netsky, but it's very annoying.

Posted: 11 Mar 2004, 12:43
by CellThree
markfiend wrote:I'm getting this one about ten times a day, spoofed from PayPal:
Dear PayPal member,

We regret to inform you that your account is about to be expired in next five business days. To avoid suspension of your account you have to reactivate it by providing us with your personal information.

To update your personal profile and continue using PayPal services you have to run the attached application to this email. Just run it and follow the instructions.

IMPORTANT! If you ignore this alert, your account will be suspended in next five business days and you will not be able to use PayPal anymore.

Thank you for using PayPal.


aiqaawea
It has an attachment called www.paypal.com.pif which is obviously a virus. I know (think) it's not Netsky, but it's very annoying.
The contents of the file can be found on this page:

http://www.millersmiles.co.uk/identityt ... -11159.htm

The site that virus sends info back to has now been closed down anyway, so at least that's something!

Posted: 11 Mar 2004, 20:03
by James Blast
Our IT section have been evaluating a G4 Mac running Panther to sort out e-mail and security problems. We got their report the other day and, baring in mind the Council has about 5,000 PCs to only a hundred or so Macs, the bottom line was a killer: "Mac OS X 10.3.1 (Panther) is not only the most stable OS on the Council's network, but also the most secure".
And that was from a bunch that used to say it wasn't Council policy to buy anything but peecees.:P

Posted: 07 May 2004, 13:03
by Karst
Run a Win 2000 Advanced Server on an ADSL line. You want to see my event viewer. Ha!

8)

Posted: 07 May 2004, 16:49
by ryan
ive got a friend of mine sending me virus's... the sad thing is i know he's doing it on purpose :X

never accept em though..im not that stupid.. though it wouldnt account for the record of 1023 virus's ive had on my comp at one stage :eek:

Posted: 07 May 2004, 17:07
by CellThree
I still can't see how anyone can get a virus on their computer. It's easy enough to stop them. This is mainly advice for home users:

1. Don't open any email you don't know the source of.
2. Check your virus scanner is set to check all incoming (and outgoing) mail. This is for those who use Outlook and Outlook Express.
3. Get ALL the Critical Updates from the Windows Update site.
4. Use the other programs I have listed above.
5. Make sure that you have Heuristic Scanning on (this will check for any virus/trojan-like properties in the files)

Easy huh?

Posted: 07 May 2004, 17:21
by Thrash Harry
CellThree wrote:Easy huh?
Yes. Until you discover all that interferes with your favourite piece of software/ game/ website. Then it all goes out the window.

Posted: 07 May 2004, 17:49
by James Blast
ryan_w_0000 wrote:ive got a friend of mine sending me virus's...
not what I'd call a friend ryan :eek:

Posted: 07 May 2004, 17:59
by Gary
I recently (6 months ago) reinstalled XP, and never bothered installing anti virus software.. due to pure laziness, and im normally pretty carefull anyway, however recently (3rd of may) i was infected with the Sasser worm/virus nasty little thing it was to!, fortunatly i noticed the odd aserve thing running in my machines processes and stopped it, which allowed me to access the net to find out more about the virus. Now have anti virus software installed again ;) and all critical updates..

Posted: 07 May 2004, 18:00
by Dan
A few weeks ago I got a new (larger) hard drive and reinstalled everything and did all the windows updates. Now I have the latest Outlook Express I see it has a feature my previous version didn't have. tools-options-read-"read all messages in plain text". This prevents an email loading a virus from embedded html/java or launching a browser window.

You can also do tools-options-security-"Do not allow attachments to be saved or opened that could potrntially be a virus" and block all attachments.

Posted: 07 May 2004, 18:02
by ryan
Red Sunsets wrote:
ryan_w_0000 wrote:ive got a friend of mine sending me virus's...
not what I'd call a friend ryan :eek:
with friends like these.... :roll:

Posted: 07 May 2004, 22:07
by Dave R
you could use this if you are a Wintel User.....

http://www.microsoft.com/security/antivirus/mydoom.asp

And if anyone can help me with an OSX prblem drop me an emai and i will give you details.....sorry to use HLand as a computer resource but it IS better than Sourceforge.....

Posted: 24 May 2004, 18:20
by Angelchild
I've had an influx of them over the past few days.
Thank heavens to Norton.
I never can work out where they come from :eek:

Posted: 24 May 2004, 18:44
by Dan
I have attachments and html in emails switched off. It makes deleting viruses a breeze.