China telah memberitahukan soal worm computer  terbaru yang merupakan update dari virus Panda Burning Incense. Virus tesebut pernah menginfeksi jutaan PC di negara tersebut 3 tahun lalu, menurut laporan dari McAfee. Worm Panda yang asli juga dikenal dengan nama Fujacks, yang menyebabkan kerusakan bertepatan dengan waktu ketika public mengetahui adanya kerawanan keamanan online, dan akhirnya menangkap penulis virus tersebut di tahun 2007.

“Virus ini lebih kompleks ketimbang rootkit.” ungkap Vu Nguyen, peneliti dari McAfee Labs. Worm Panda yang pertama dapat mengubah icon yang sudah terinfeksi dengan sebuah image bergambar seekor panda memegang 3 stick dupa. Image yang sama juga dapat berpindah ke layar komputer yang lain, namun tujuan utama worm ini adalah untuk meng-instal Trojan pencuri password.

Sedangkan untuk update virus terbaru ini akan langsung menyerang PC. Menurut Nguyen, vendor China dan pengguna Internet kini lebih berhati-hati dengan malware daripada beberapa tahun lalu. Hal ini dikarenakan adanya worm Panda pertama tersebut, tambahnya.

Antivirus company Sophos warns that a new trojan is on the loose, packed in an email that promises photos of sexy girls (don’t they all).

The malicious campaign is widely spread out, mainly through emails with the subject line “Do you like to find a girlfriend like me?” with an attachment called “my photos.rar”. Of course, the attachment actually contains a trojan horse called Troj/Agent-LVF which tries to steal login info for popular MMORPG World of Warcraft.

The email in question contains the following text, written in inexplicably bad English:

“Wish to have a boyfriend
Be able to protect me, take care of me
Intolerable lonely night and would like to have your care.
do you Willing?
This is my photos.”

If you receive this email, delete it.

Warning!! New email containing trojan virus is spamming World of Warcraft gamers. This new trojan is packed in sexy e-mail with subject line “Do you like to find a girlfriend like me?” and contains this text:

“Wish to have a boyfriend

Be able to protect me, take care of me

Intolerable lonely night and would like to have your care. do you Willing?

This is my photos."

There is also attachment named “my photos.rar”. This .rar file contains 12 explicit photographs of young Asian woman, and also claims to contain two hardcore sex videos.

“The video files, however, are really a password-stealing Trojan horse called Troj/Agent-LVF which steals usernames and password from players of the popular online role-playing game World of Warcraft.”

Source:  sophos.com

Kaspersky Lab, producătorul aplicaţiilor de securitate Kaspersky, ne avertizează asupra unui virus, mai exact un troian, care scrie în limba română pe Yahoo Messenger, simulând astfel un dialog. Mesajele acestui troian vin ca şi cum ar fi de la o persoană din lista de Yahoo Messenger, ceea ce îl face greu de depistat.

Trojanul IM.Win32.Agent.ae trimite, din partea unui contact din lista, un mesaj în limba romana care te invita să dai click pe un link. Link-ul respectiv nu duce către un fişier executabil, cum ar face un virus banal, ci către un blog. Odată intrat pe blog-ul respectiv, utilizatorul este rugat să descarce şi să instaleze un codec sau un plugin pentru a viziona un clip video. Evident, fişierul descărcat conţine un virus.

Aşadar, atenţie la link-urile pe care daţi click în Yahoo Messenger şi, mai ales, aveţi grijă să nu instalaţi nimic de pe site-urile pe care ajungeţi prin intermediul acestor link-uri. Doar în 24 de ore, virusul deghizat în codec a fost descărcat de peste 10.000 de ori.

Acest troian reprezintă o premieră negativă. Dacă până acum atacurile informatice care vizau Yahoo Messenger foloseau texte în limba engleză, acum avem de-a face cu un troian în limba română. Când primeai un mesaj în engleză de le un prieten, deveneai imediat suspicios. Acum, cu mesajul troianului în limba română, e mult mai greu să-ţi dai seama dacă este veridic sau nu.

Blog-ul care te pacaleste sa instalezi un codec fals

sursa: www.go4it.ro

Groźna łatka Windowsa XP

Cyberprzestępcy pod pretekstem aktualizacji systemu Windows XP wprowadzili do wielu komputerów niebezpiecznego robaka znanego wcześniej jako Trojan.Generic.171369. Wiadomość, która dotarła do ofiar hakerów została sfałszowana na wzór dyrektyw pochodzących od ekspertów komputerowych i producentów oprogramowania. Dodatkowo cyberprzestępcy zastosowali graficzny trik, dzięki któremu użytkownicy nie byli świadomi zagrożenia i wpadli w pułapkę.

Podstęp jest jednocześnie prosty i skuteczny. Tomasz Zamarlik G Data Software „Cyberprzestępcy obiecując w temacie wiadomości aktualizacje dla Windows XP SP3 „Critical Update for Windows XP SP3” zachęcają ofiarę do otwarcia załączonego folderu. Folder okazuje się plikiem EXE, który został zamaskowany poprzez zmianę ikony pliku wykonywalnego na ikonę folderu. Instalacja pliku robaka w systemie niesie za sobą niepożądane działania. Zarażony komputer staje się nosicielem wirusów. Ofiarom, oczywistym wydawał się fakt, że aktualizacje i poprawki pochodzą od oryginalnego producenta. Temat wiadomości „Zabezpieczymy komputer i zapewnimy wszystkie aktualizacje” jeszcze bardziej uwiarygodniał wiadomość, a ikona folderu nie wzbudzała podejrzeń. Teraz spamerzy dzięki dużej skali infekcji mogą czerpać wysokie korzyści np. świadcząc usługi rozsyłania spamu.”

Łukasz Nowatkowski G Data Software „Ten szkodnik jest nam juz dobrze znany, jednakże maskowanie plików pod ikoną folderu jest interesujące. Ta pułapka jest całkowicie pięknym podstępem, dzięki któremu użytkownicy są wprowadzani w błąd. Niestety każdy, kto żyje w pośpiechu i szybko chce zobaczyć zawartość folderu otrzymanego w załączniku lub nie wie, że plik może mieć różne ikony szybko może stać się ofiarą hakera.”

Kamuflaż pliku .exe pod ikoną folderu – (przy domyślnych ustawieniach systemu Windows) nie jest jasne, że jest to plik wykonywalny.

Robak pojawił się w załącznikach wiadomości e-mail, jako plik EXE o nazwie „mswinxpa_sp3upd.exe”. Plik wykonywalny ukryty jest pod ikoną folderu. Podczas uruchomienia niebezpiecznego załącznika skaner G Data wykrywa robaka jako Trojan.Generic.171369. Robak łączy się z zewnętrznego serwera SMTP (port 25), a następnie rozsyła wiadomości z fałszywym załącznikiem. Dodatkowo kilkukrotnie kopiuje się na dysku twardym ofiary i maskuje się pod znanymi nazwami plików. Ponad to szkodnik ten ingeruje w funkcje autostartu. Wyłączając dostęp do Menedżera zadań i edytora rejestru, uniemożliwia podejrzenie i zabicie procesów trojana oraz edycję wszystkich zaufanych procesów systemowych.

Cyberprzestępcy wśród użytkowników komputerów PC wielokrotnie starali się rozesłać fałszywe pliki ukryte pod linkami lub jako załączniki wiadomości e-mail. Podstęp hakerów, dzięki któremu odbiorcy wiadomości mają małe szanse na wykrycie fałszywych pików, polega na oszukaniu niedoświadczonego użytkownika poprzez zmianę ikony.

Eksperci użytkownikom zalecają usunąć załącznik z powyższych e-maili i aktualizację przeprowadzać bezpośrednio z systemu Windows poprzez narzędzia dostępne w panelu „Centrum zabezpieczeń”. W trakcie odbierania poczty przychodzącej podczas wątpliwości użytkownicy zawsze powinni usuwać wiadomości rzekomo zawierające aktualizacje oraz załączniki od nieznanych nadawców. Microsoft nie wysyła aktualizacji pocztą e-mail.

……

Principalmente se ela tiver o nome de um vírus… Oo’

Description of Alpha Antivirus:
Alpha Antivirus is a deceiving security program that will purposely shows security alerts and fake system security threats to cheat you and convince that computer is heavily infected with malware and virus. Alpha Antivirus uses a console that is very similar to other rogue programs so this is an assurance that it is another variants of Personal Antivirus. If this malicious software is installed, it will mention a lists of computer infections and advise you to get the full version from its website, to be able to have the Alpha Antivirus code and serial number, a certain amount has to be paid. This program should not be purchase, beside Alpha Antivirus removal procedure must be carried out once a symptoms was noticed on your computer.

Alpha Antivirus Technical Information:
Aliases: Alpha Antivirus, Alpha AV
Released Date: 2009
Type: Fake Antivirus
Websites: -

Alpha Antivirus Screenshot:

Download Alpha Antivirus Removal Program
Download and install MalwareBytes’ Anti-Malware. This version will also help protect your computer against future threats. For a free removal tool only without protection, please click here.

Manual Removal of Alpha Antivirus
Manual removal of Alpha Antivirus requires system files and registry modifications. This can be performed with satisfactory result by having the following procedures:
- All programs are closed during Alpha Antivirus removal
- Internet connection is disabled while Alpha Antivirus removal is in process
- Registry and legitimate system files were backed-up before proceeding to Alpha Antivirus removal

Find and remove Alpha Antivirus files:
AlphaAV.exe, msnaoladdon.dll, Alpha Antivirus.lnk, NetFilter.exe, ndisapi.dll, NDISRD.sys

Delete the following Alpha Antivirus directories:
%Program Files%\Alpha Antivirus
%Documents and Settings%\All Users\Start Menu\Programs\Alpha Antivirus
%Documents and Settings%\All Users\Application Data\Alpha Antivirus

Remove the following Alpha Antivirus registry entries:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run “AlphaAV”
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run “Alpha Antivirus”
HKEY_LOCAL_MACHINE\Software\Alpha Antivirus
HKEY_CURRENT_USER\Software\Alpha Antivirus
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Alpha Antivirus
%UserProfile%\Desktop\Alpha Antivirus.lnk

Description of Control Center:
Control Center is a rogue computer utility application from the same family as Privacy Center. This fake software is endorse through scam security websites and fake online virus scanners that were designed and made online for the sole purpose. Control Center websites will plan to deliver false information on visitors computer security status and asked them to download the installation package. When Control Center is installed the same routine will emerge and this time it will  recommend the purchase of the registered version to be able to fix the detected security risks. Control Center removal is necessary at this time and having the licensed version is not an option.

Control Center Technical Information:
Aliases: ControlCenter
Released Date: 2009
Type: Fake Antivirus
Websites: -

Control Center Screenshot:

Download Control Center Removal Program
Download and install MalwareBytes’ Anti-Malware. This version will also help protect your computer against future threats. For a free removal tool only without protection, please click here.

Manual Removal of Control Center
Manual removal of Control Center requires system files and registry modifications. This can be performed with satisfactory result by having the following procedures:
- All programs are closed during Control Center removal
- Internet connection is disabled while Control Center removal is in process
- Registry and legitimate system files were backed-up before proceeding to Control Center removal

Find and remove Control Center files:
%UserProfile%\Application Data\CC
%UserProfile%\Application Data\CC\agent.exe
%UserProfile%\Application Data\CC\cc.exe
%UserProfile%\Application Data\CC\settings.ini
%UserProfile%\Application Data\CC\uninstall.exe
%UserProfile%\Application Data\CC\faq
%UserProfile%\Application Data\CC\faq\guide.html
%UserProfile%\Application Data\CC\faq\images
%UserProfile%\Application Data\CC\faq\images5.png
%UserProfile%\Application Data\CC\faq\images6.png
%UserProfile%\Application Data\CC\faq\images7.png
%UserProfile%\Application Data\CC\faq\images8.png
%UserProfile%\Application Data\CC\faq\images9.png
%UserProfile%\Application Data\CC\faq\images\10.png
%UserProfile%\Desktop\Control center.lnk

Delete the following Control Center directories:
C:\Documents and Settings\%UserName%\Application Data\CC
C:\Documents and Settings\%UserName%\Application Data\CC\faq
C:\Documents and Settings\%UserName%\Application Data\CC\faq\images

Remove the following Control Center registry entries:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Control center
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “agent.exe”
HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Winlogon “Shell” = “%UserProfile%\Application Data\CC\cc.exe”

Description of Eco Antivirus 2010:
Eco Antivirus 2010 is a fake security program that will be dropped and installed on computer by a Trojan which have downloader functionalities. Eco Antivirus 2010 will not be noticed by users until such time that it was fully installed and displayed fake security wanrings and play its own virus scan. Eco Antivirus 2010 have various ways to elude people into purchasing the licensed version of it, and one of that is via scam websites that contains very promising text and graphics. Perform Eco Antivirus 2010 removal on computer as soon as possible if got infected.

Eco Antivirus 2010 Technical Information:
Aliases: Eco Antivirus 2010, Eco Antivirus, Eco AV
Released Date: 2009
Type: Fake Antivirus
Websites: eco-av.com

Eco Antivirus 2010 Screenshot:

Download Eco Antivirus 2010 Removal Program
Download and install MalwareBytes’ Anti-Malware. This version will also help protect your computer against future threats. For a free removal tool only without protection, please click here.

Manual Removal of Eco Antivirus 2010
Manual removal of Eco Antivirus 2010 requires system files and registry modifications. This can be performed with satisfactory result by having the following procedures:
- All programs are closed during Eco Antivirus 2010 removal
- Internet connection is disabled while Eco Antivirus 2010 removal is in process
- Registry and legitimate system files were backed-up before proceeding to Eco Antivirus 2010 removal

Find and remove Eco Antivirus 2010 files:
Base.dat msdl.exe msll.exe vec.exe WStech.dll Eco AntiVirus .lnk

Delete the following Eco Antivirus 2010 directories:
C:\Documents and Settings\All Users\Start Menu\Programs\Eco AntiVirus
C:\Documents and Settings\All Users\Application Data\eca
C:\Documents and Settings\All Users\Application Data\Microsoft\Machine

Remove the following Eco Antivirus 2010 registry entries:
HKEY_CURRENT_USER\Software\ECO
HKEY_CLASSES_ROOT\AppID\{29256442-2C14-48CA-B756-3EE0F8BDC774}
HKEY_CLASSES_ROOT\AppID\WStech.DLL
HKEY_CLASSES_ROOT\CLSID\{A5DBD8CB-DF8A-4992-A655-B155216F6AFB}
HKEY_CLASSES_ROOT\Interface\{051C9A06-FB08-486F-B09B-8B33B261637D}
HKEY_CLASSES_ROOT\TypeLib\{512E801E-2F02-4ADE-ACAA-58F08A22B2F8}
HKEY_CLASSES_ROOT\WStech.WStechB
HKEY_CLASSES_ROOT\WStech.WStechB.1
HKEY_LOCAL_MACHINE\SOFTWARE\Eco
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5DBD8CB-DF8A-4992-A655-B155216F6AFB}
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96E-E325-11CE-BFC1-08002BE10318}\S
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run “mxcll”

My experiences with firewalls and anti-virus programs have been nothing but dull. When running a program such as AVG, the only effect it makes on my life is how much it hogs system memory and slows your computer down. I recently discovered that a family friend of mine thought a daily 2 hour period of running an automatic AVG update + scan, which made his PC unusable for those 2 hours was normal! NO! NO! NO!

There is far too much hype surrounded by “viruses” and “trojans”. You are extremely unlikely to come across one so long as you do not obsessively download from shifty looking websites. Therefore I would advise to only use firewalls or Anti-Virus scanners at work (for legal reasons) or on a PC used by children.

Uninstalling these programs or at least removing them from your startup list will increase your computer’s speed by up to 50% easily! This is by far the main reason peoples PC’s are so slow.
If you would like a guide on how to remove Anti-virus programs from your startup and speed your PC’s speed up massively, check this out.

J4NFQ97BKWTQ

whnt.com
MADISON COUNTY, AL – Our cell phones are our life lines these days. They’re as much a part of our wardrobes as the clothes we wear. When we forget them we feel naked. However, a Taking Action Consumer Investigation will make you realize just how vulnerable you and your private information are.

Most of us are on our cell phones all the time. Talking, texting and taking care of business.

Think about the private conversations and information you share over your cell phone. And now imagine someone listening in without you knowing it.

It might be the ultimate invasion of privacy.

In this fast paced world who doesn’t have a cell phone! You use it just about everywhere you go. even when you’re at work.

“As long as my boss ain’t watching,” jokingly says Keith McLaglen.

Cell phones are a universal connection to our family and friends around the world!

But how private are your conversations?

More…

Note: Help is available! Click Here for Cellular Anti Virus & Anti Eavesdropping software!

Emails with pictures of Osama Bin-Laden hanged are being sent and the
moment that you open these emails your computer will crash and you
will not be able to fix it!

1.) If you get an e-mail along the lines of ‘Osama Bin Laden Captured’
or ‘Osama Hanged’ , don’t open the Attachment!!!!

This e-mail is being distributed through countries around the globe,
but mainly in the US and Israel.

Be considerate & send this warning to whomever you know..

PLEASE FORWARD THIS WARNING AMONG FRIENDS, FAMILY AND CONTACTS.

2.) You should be alert during the next few days:

Do not open any message with an attached file called ‘Invitation’
regardless of who sent it.

It is a virus that opens an Olympic Torch which ‘burns’ the whole hard
disc C of your computer!!!!

This virus will be received from someone who has your e-mail address
in his/her contact list, that is why you should send this E-Mail to all
your contacts.

It is better to receive this message 25 times than to receive the virus
and open it.

If you receive e-mail called ‘invitation’, though sent by a friend. Do
not open it!!! Shut down your computer immediately!!!!

This is the worst virus announced by CNN, it has been classified by
Microsoft as the most destructive virus ever.

This virus was discovered by McAfee yesterday, and there is no repair
yet for this kind of virus.

This virus simply destroys the Zero Sector of the Hard Disc, where the
vital information is kept.

Here is an article sent to the Brampton Board of Trade Trade Talks newspaper on November 9, 2009

BBOT Trade Talks Article

Viruses, Trojan, Malware, Why education is the only way

By now you have probably had one of the above or know someone that has had a run in with them.  With 99% of all email on the Internet being JUNK or SPAM most Malware is spread through email.  The new method of Malware ditribution is now via websites.  50% of all Malware infections are now from web pages.  Some of the sites that have been infected in the past are Twitter and Wikipedia.  I have witnessed myself an attempted  infection from a product review web site.

Here are the best ways to reduce or prevent an attack.

Always run a reputable AntiVirus product.  There is a disagreement if free software is worth the price.  My feeling is that anything is better than nothing, but poor software can give you a false sense of security.  Microsoft has released their Security Essentials and it is one of the best FREE security products available for individual computers.

Do not download software from file sharing sites.  Most of the software on these sites is infected with various viruses and malware.  It has even been reported that organized crime is hacking software and movies and posting them on these sites to gain access to peoples computers and money to help further their cause.

Practise safe surfing and emailing.  Large companies will never send you an email with a ZIP file in it and large software companies will not send you an email with a link to update or speed up their software.

The #1 infection we have been seeing for the past 2 months is a “fake anti-virus program”.  90% of all computers that we have had to clean have this virus on it.  It has come to the user as an email with a ZIP attachment from Adobe claimng to be an update or an email from a large shipping company claiming to be a label or tracking information.  Do not open these emails, they are all fake.  This has been the hardest virus to prevent since protection alone can not prevent it since the user is choosing to install it.  The other problem is that the virus is changing every week and the Anti-Virus vendors can not keep up with it.  The only way to is to educate your staff and prevent them from getting the email or opening the email.

For a link to a FREE legitmate scanning tool to see if you are infected email me and I will forward it on.

You can also contact Sean Jennings directly and arrange for a complementary assessment.

Sean Jennings is the Sales Manager for C.I.M. Solutions Inc.

He can be reached at (905) 458-5090 x322 or sjennings@cim-solutions.com

watch NCAA Basketball – Troy trojan  vs UAB Blazer online live stream TV sport 11/24, 24 Nov 2009. This Sport Games Starting time will be at 20:00 ET (US) or 02:00 CET (Europe). We will update the link several hours/minutes before the scheduled starting time. The live stream feed provided from free video tv hosting sites like ustream, justin tv, p2p, sopcast, tvu, tvants, uusee, etc. You can watch online Sport Live TV stream channel on November, 24 2009. The sport tv we cover here is NHL, NBA, KHL, NFL, AHL, NCAA, MLB, AHL, MLS, Soccer, EPL, Champion, UEFA, FIFA, U20, U17,  Football, Hockey, Basketball, SERIE A, NASCAR, F1, GP and others. If there is any of free tv hosting that airs these sport tv channel, we will update the link for you. Dont Miss to watch live sport tv between NCAA Basketball – Troy trojan  vs UAB Blazer online . Please click on below link to watch, online, free, live, stream, sport, tv, at 11/24 2009, NCAA Basketball – Troy trojan  vs UAB Blazer.

lick here To watch Live stream free online Sport TV

Free live internet TV by online streaming is the best way to enjoy your sports shows on internet. Especially with the arrival of high-speed Internet today. It allows you to live stream and watch your favourite Live football, live basketball, Live soccer, Baseball and Hockey league matches via online streaming. Today there is game match between NCAA Basketball – Troy trojan  vs UAB Blazer. Other famous game in these categories that we coverhere are NBA, NCAA, NFL, MLB, AHL, KHL, NHL, MLS, UEFA, Champion League, FIFA, U20, U21, U17, Uropean Cup, Serie A (Italy), EPL (England), NPL (Spain), Bundesliga (Germany),  NASCAR, F1, GP and others.

There are thousands collections of Live internet TV hosting sites and video feeds. You can Watch Live streaming TV Stations or channels from many source. But to search and point your intended channels sometimes is very difficult since one site can offer thousand of free TV sport channel in just one day.  So Here, we provide summary of links that will provide free live streaming TV sports. In this site We focus on the  Baseball, Basketball, Hockey, soccer and other more spesific segment. Most watch free TV stations we cover for  Sport here are from, USA & Canada and some other popular sports in Europe and arround the world. Check out our featured free tv sport online live stream today 24 November 2009 (11/24) for NCAA Basketball – Troy trojan  vs UAB Blazer.  We will find the links from ustream, justin tv, p2p, sopcast, tvu, tvants, uusee, etc. So don’t need to worry about miss one of our favorite TV sport game match, we can now catch them online, usually just 24 hours later it will be stored in the hosting site, it depends on their policy. You can easily select and click to watch NCAA Basketball – Troy trojan  vs UAB Blazer and others sport channel online stream here.

Mobile devices aren’t usually the first targets you might think of when it comes to viruses, worms and Trojans. In fact, you could probably be forgiven for not knowing they exist at all. But I think that the recent popularity of smart phones with the consumer market may bring with it an interest in programming malware for those devices, as well.

And for a hacker who wants to make his or her mark on the consumer smart phone world, what better place to start than with the little machine that helped start the whole craze? Though certainly not the first smart phone, Apple’s iPhone was arguably the first smart phone that people found a reason to embrace for their personal use. And it’s sold millions for Apple.

Chet Wisniewski of security provider Sophos posted Saturday about a new worm that affects the iPhone. An Internet service provider in the Netherlands identified the malware. The worm executes itself when you turn on your device, and it also takes data from the iPhone or iPod and sends it to a server in Lithuania.  It only affects those iPod Touches and iPhones that have been jailbroken, or unlocked to allow non-Apple-approved software on them. Attacks have been detected on ISPs around the world, including T-Mobile in many countries, UPC in the Netherlands and Optus in Australia.

The malware assigns each iPod or iPhone a unique number so the hackers who wrote the software can control it as they would with a zombie computer. It also looks for SMS-based authentication systems, the type used by financial institutions for mobile banking purposes. From what Wisniewski said, the worm operates faster on a WiFi network than it does on the 3G network; if your device is infected, you’re likely to see the battery run down more quickly than usual, due to its high network traffic.

If you’ve got a jailbroken iPhone or iPod Touch and suspect that something’s awry, Wisniewski said the best solution at this time would be to revert to an earlier Apple firmware, which will un-jailbreak the device. But it will also prevent the worm from running.

Will mobile malware become a normal happenstance? Will other operating systems, such as Google’s Android, have to fend off similar problems? Time will tell. In the meantime, take a look at these articles for more on these and other related topics:

How Hackers Work
How Cell-phone Viruses Work
How Zombie Computers Work

Se você usa GNU/Linux e está cansado de colocar seus pendrives em máquinas Windows infectadas com vírus, e depois ter de formatá-las constantemente, SEUS PROBLEMAS ACABARAM!!!

Uma ótima dica de Fabiano Caixeta Duarte, postada no site Dicas-L, ensina como fazer para proteger seus pendrivres usando um pequeno script que você pode copiar e colar em um arquivo de texto.

Você pode até oferecer o serviço de “limpesa e proteção de pendrives” para seus amigos e conhecidos que usam Windows. A solução do Fabiano, segundo o próprio, não só identifica e remove o vírus, como impede que o pendrive seja infectado novamente. Abaixo, o início do texto do Fabiano, mas o resto você vai ter de ler no Dicas-L. Vale a pena dar uma lida no texto disponível em: http://www.dicas-l.com.br/dicas-l/20091007.php.

Dispositivos USB de armazenamento de massa (pendrives), amplamente utilizados nos computadores pessoais e corporativos, são frequentemente infectados por vírus executáveis em sistemas operacionais da Microsoft.

…

Até onde pude observar, os vírus de pendrive se aproveitam do mecanismo de execução automática (AutoRun/AutoPlay) presente em sistemas operacionais da Microsoft. Este mecanismo utiliza um arquivo chamado autorun.inf que é lido no momento em que uma mídia removível é montada pelo sistema operacional.

Uma das informações constantes do arquivo autorun.inf é a localização absoluta do arquivo infectado dentro do pendrive.

O Papavírus identifica o arquivo infectado e o remove, bem como remove o arquivo autorun.inf. Além disto, para evitar que o pendrive seja infectado novamente, o papavírus aplica um simulacro de vacina que consiste na criação de um diretório autorun.inf que recebe os atributos oculto e somente leitura. A existência deste diretório impede que um vírus crie um arquivo com o mesmo nome, proporcionando uma espécie de imunização.

If this looks familiar, we sympathize. All of us have seen this at one time or another, especially those of us who spend a lot of time working on a computer. The last thing we want to see is the image above. But when we do see it, as inevitably most of us will, the first thing that come to mind is: What do I do now?

We could tell you not to panic, but that would be pointless. As our computer is as much a part of our anatomy as our legs, we’re going to panic when something goes wrong. So after you’ve panicked, it’s time to figure out what to do.

First, if you suspect it’s a virus that has caused the above, you can attempt to remove it yourself. Personally, this is not the method I use as I just don’t have the patience for it. However, there are plenty of people who can and do have the patience, and utilizing such books as Windows Lockdown, they discover how to eliminate an intruding virus. It might take them a bit of time, but they get their computer cleaned with little to no money out of pocket. I reiterate, that’s not what I do.

So my next suggestion is for all of you who would much rather have someone else take care of the problem while you’re home biting your nails. Here goes:

Let me say this up front as it’s extremely important. Do not assume that a big name computer repair company is going to fix your computer with little or no hassle and have you back to work on your masterpiece within a day or so. I have, in the past, depended upon a computer repair company that is well-known and boasts about its quick repair times and efficient service. Almost a month later, I got my computer back with just as many problems as I’d originally had.

Anyway, my suggestion would be to look for someone in your town/city with a good reputation. You might want to spend a little bit of time searching for computer repair companies/individuals on the Internet. Don’t just look at their prices. Look at their customer ratings if they have any. Check out what they do, their turnaround times, and whether or not they offer guarantees.

Next, call your chosen place and ask a few questions. You want them to sound knowledgeable without trying to make you feel like an idiot because you don’t what RAM actually does. Look upon this as a mini-interview. Just as you research agents and publishers, you need to research your computer repair specialist. Tell him/her the problem and see what they say. If their automatic response is ‘you’ll have to bring it in and let me take a look at it’, find out if they offer free diagnostics. If not, will they take the cost of the diagnostic off the final repair price?

Once you’ve chosen the individual/company that’s going to be working on your baby and you take your computer in, be sure to get the name of the tech you’re speaking to. If the individual is not a tech, ask if you can speak with one before you just hand over your computer. You want to make sure it’s in good hands. Once you speak with the tech, get his/her name as well and get an anticipated turnaround time for the repairs.

When you leave the store or the individual’s place of business, make sure you have a repair ticket or proof that the computer you’re leaving behind is yours. You don’t want any mix-ups when you return.

And just a quick add-on before we end Part I, always pay by check if at all possible. You don’t want to give a credit card or debit card number as some places may add fees you didn’t authorize, i.e., the upload of a new virus software. They will just automatically charge your card because it’s written in the really tiny print on the front page of that paper you signed and didn’t take the time to read. So a check is always preferable. If they don’t take checks, use your credit card, but make sure they know you are only authorizing payment for the charges you have discussed, no more. I actually write that on the repair sheet, and I draw a line through any nebulous terminology that has to do with additional charges.

So ends Part I. Part II will include ways to protect your computer, back-up your files even if you don’t have an external hard-drive, and ways to avoid being scammed with the brand new, shiny software that is supposed to do everything but wipe off your computer screen.

]]> http://billmullins.wordpress.com/2009/11/21/antiaid-and-control-center-fake-antiviruses-panda-security-takes-a-look/ Sat, 21 Nov 2009 18:13:45 +0000 Bill Mullins http://billmullins.wordpress.com/2009/11/21/antiaid-and-control-center-fake-antiviruses-panda-security-takes-a-look/ http://scamfraudalert.wordpress.com/2009/11/21/canadian-pharmacy-spam-sites-2/ Sat, 21 Nov 2009 12:35:04 +0000 Scrub http://scamfraudalert.wordpress.com/2009/11/21/canadian-pharmacy-spam-sites-2/ http://scamfraudalert.wordpress.com/2009/11/21/freelance-lotistics-llc-www-flluae-com/ Sat, 21 Nov 2009 09:25:47 +0000 Scrub http://scamfraudalert.wordpress.com/2009/11/21/freelance-lotistics-llc-www-flluae-com/