Virus Season - computer kind

I keep getting these lousy pop-up even though I'm not on the internet, I could be playing a game and get kicked off for a lousy add.

Dougal look for a program called windows messenger it's supposed to be used so a network admin can inform people. You need to change it's settings so it doesn't start.

I had the same problem and that's what it was.

DELETE DELETE DELETE THEM ALL

DO NOT OPEN UNDER ANY CIRCUMSTANCE


VIRUS ALERT...a new e-mail worm called mydoom is making its way thru the internet, it will send e-mail copies to everyone on your mailing list.

I wouldnt open anything right now, delete anything that insnt kosher, even if it might be a legitamite message, they can always resend it later.

DONT TAKE ANY CHANCES

If you add the following address to your address book and any virus attempts to use your book, a message will pop up stating that this is not a valid address. You can quickly delete the message.

The address is ":!000"

Hope this helps...Ken

Also don't forget to update your virus definitions.

What I do is forward all my private home emails to my hotmail account (which is what I use for my public email). I find hotmail has a good virus catcher, so I don't open anything until hotmail doesn't find a virus.

I have an up todate anti-virus program which I will update daily for the next month until we pass this new virus (worm) attack.

According to our computer geek the key to not spreading this virus mydoom is to not open any attachment on an e-mail message that may be infecte. The sender could be a name you recognize. Our school server was completely shut down for most of the day until it was cleaned up. Microsoft has a patch on thier web site which can be down loaded to fix it.[tup]

There is another nasty virus that's hitting hard called "Mydoom".

Ok, settle down folks.

Dougal, search for and download a very small program called 'Shoot the Messenger" this will eliminate that popup. There is a manual way to do this and too complicated for this.

I delete on sight any mail with a attachment. Especially those I do not know. Where your mailbox is 'Home address" or Public etc does NOT matter. When you open to read or d/l the attachment it goes to YOUR computer. hopefully you have a fully updated antivirus software up and running.

Symantec has information pertaining the the Novarg Virus and how to fight it. Basically you will need to disable system restore, shut down and reboot into "Safe Mode" fully SCAN your system (ALL FIles) and get lunch. Delete any files detected as W32.Novarg.A@mm delete them do not try to "Fix"

Those of you who understand firewalls will need to close ports TCP (And UDP too) 3127 thru 3198. This is the back door channel created in secret for future use by the virus.

When executed it creates %system%\shimgapi.dll (Acts as a proxy and opens the aforementioned ports
-%temp%\message This file containes random letters and is displayed using notepad
-%system%\Taskmon.exe: *Notes....

Taskmon.exe is a legitimate file used by 95,98, ME and is found in the %Windir% folder. NOT the %system% folder Do not delete this file under %windir% folder.

%System% is a variable, it locates the sytem folder and copies itself. Default is C:\Windows\system (98,95,Me) and C:\Winnt\System32 (Windows NT,2000) or C:\windows\system32 (Windows XP

%Temp% is also a variable.

Registry keys are created by this virus, symantec offers a removal tool to be downloaded and used. This is the simplest way to use. More advance users may want to print off and carefully follow the manual removal instructions.

Beginning feburary 1'st and thry end of the 12th any infected machines will launch a DoS attack against www.sco.com there are now other viruses beginning to come out as of several hours ago that targets Microsoft in a similar manner.

Take advantage of your browsers such as MSN.com, Yahoo news tech news etc and learn more as these attacks happen. Update everyday and scan everyday.

Use common sense, do not give out information to microsoft to keep your winows, ebay bank account etc whater activated. These are scams that rely on our trusting human nature and tries to "Scare" you with official looking and menacing messages. Keep watch and be very careful these days.

If your machine is infected, disconnect from the internet completely and do not reconnect until you have cleaned it completely free of viruses.

Good Luck everyone and may you continue to stay watchful and strong in face of these maligiant and sneaky attacks.

Lee

Back in the good old days when Microsoft Windows dominated the scene anyone could have a virus, the few of us left had to go without. Sigh.

???Does Microsoft Windows not dominate the scene now???

QUOTE: Originally posted by Jetrock ???Does Microsoft Windows not dominate the scene now???

Regrettably they do. This is most likely why we have so many viruses - most MS software seems to have security holes that a Dash 9 could fit through with room to spare... Viva la Linux Revolution!

Simple anti-virus rule. If you don't know what it is, don't open it. This goes for emails, attachments, and files. Only download files from reputable addresses, and then virus-scan them before opening them. Also consider a firewall - Zone Labs have a free version of their Zonealarm software that is very easy to use and very effective.

QUOTE: Originally posted by rsn48 The virus harvest people's addresses from the recipients address book, and then mails out the virus to those folks. That means if I am in some one's address, it will be copied and others will receive a virus email from me, even though I didn't send it out. What I am requesting is that obviously the net is experiencing a higher than average virus attack. I would request all forum members purge their address's in outlook express, keeping those which they only use frequently. And especially purge the email address's of forum members. Last year at this time, I received about 4 emails a day for about a month of the Klez virus, harvesting emails and forwarding them to other people. So its time for a New Year's cleaning of your rarely used email addresses.

One idea I've heard, though I haven't figured out how to do it in Eudora, my email client, is to save your address book on a floppy disk. This way if you get one of these virii, at least there's nothing in the address book for it to use. Anyone know how to do this in Eudora?

Of course I also use Norton Internet protection with antivirus protection which I keep updated several times per week.

CBQ_guy

There is a new variant of Mydoom.B and a new virus af of 7:30 this morning that will by pass that protection. Norton users will find people flooded by uneccessary notices of infected email being returned. It is recommended that you disable "Notify Sender of infected email" on your norton.

There are several new ways to fight this virus, read on Symantec, Mcaffee, Network associates etc for information. It is better to ensure you are NOT infected Right NOW>>>

Why?? come the Feburary 1st your infected computer will block you from accessing Norton updates, Microsoft update, ISP email etc etc etc etc there are like 60 important web services that assist us in keeping computers going well that will be cut off from our access.

Again best option is to scan, update daily and delete without reading unknown mail. And keep a firewall up at all times.