-
August 18th, 2008, 11:53 AM
#31
Originally Posted by Cider
Well in the office I used spybot which seems to reverse all the erros this crap did.
I am waiting on a response from my virus department about this malware. A headache I tell you.
One thing I dont understand about malware in general - how do people get infected I know it sounds stupid but I rarely get hit by something
quite odd.
I always ask my clients what were you doing at the time of infection, I rarely get a legitimate answer however when I do it is always surfing dodgy sites ...
So.. how do you get spybot to clear the registry when 30% of the infections lock you out of the registry?
As or infections.. and being infected..
User opens any and every email attachments and all..
Allow all pop-ups to do as promised
Machine is not fully patched..
99% of users allow all scripts and activeX to run
(How many don't use Spyware blaster? or have a add/bad site blocking HOSTS file? )
How do you know what a Bad site is? I don't .. is it the porn sites? is it the Auction Sites?.. or is it the hacking sites? the P2P link sites, Facebook? Myspace? Ask? Tucows? Tudogs? ... mysite? ebay? cnn? AO?
I don't know.. .. I've been hit on trusted sites, and have seen clients machines hit from all of the above... all via a bad advertisement or a script in the page..
sometimes from deliberate clicks on pages, some times from auto run scripts..
"Consumer technology now exceeds the average persons ability to comprehend how to use it..give up hope of them being able to understand how it works." - Me http://www.cybercrypt.co.nr
-
August 18th, 2008, 01:24 PM
#32
-
August 18th, 2008, 02:12 PM
#33
I got hit by something yesterday...while on trusted sites, Taz, AO, Facebook, CBC, CNN and a link to a news article provided by CNN.
Symantec caught it....I dont know where it came from as I had all those sites open
Bloodhound.exploit.193
I did some reading and about 20,000 legit sites are infected and are infecting web users.
patch patch patch....update update update.
Run as a limited user.
MLF
Edit>oh and I was connected to msn...although no open conversations (thats how I talk to my kids when they are at their dads)
Last edited by morganlefay; August 18th, 2008 at 02:15 PM.
How people treat you is their karma- how you react is yours-Wayne Dyer
-
August 18th, 2008, 02:44 PM
#34
CNN and a link to a news article provided by CNN.
Pretty sure thats where you got it from Morgan. Check out this post:
http://antionline.com/showthread.php?t=277349
Cheers:
-
August 18th, 2008, 04:19 PM
#35
Senior Member
CNN Alerts <rooke@sovhealth.co.za> CNN Alerts: My Custom Alert
MSNBC Breaking News <paavi_1985@tsa .. msnbc.com - BREAKING NEWS: Stupid Asians
MSNBC Breaking News <FERNANDO-lucib .. msnbc.com - BREAKING NEWS: High calorie
MSNBC Breaking News <nirteppa1953@l .. msnbc.com - BREAKING NEWS: Freddie Mac l
no comment.
-
August 18th, 2008, 06:00 PM
#36
Sorry ...I dont understand your post stanger
I dont have CNN Alerts...but I may have inadvertively clicked on something.
Thats where I read my US news
Thanks DjM....I am usually very careful of my sites visited and what I click on
Makes sense now...cause I havent had any funkiness today....but I don dare go to CNN!!!
MLF
How people treat you is their karma- how you react is yours-Wayne Dyer
-
August 19th, 2008, 02:25 PM
#37
The file blphcptej0e75e.scr, is a legal file of Sysinternals company and is not detectable.
This company belongs to Microsoft.
The response from out Virus department.
I searched for this file on the internet and no go.
Anyone got any information for this ...
N.B I made a big stink about this and the director involved. Nihil its not that one who gave all the money away to the church :P
I phoned spain and asked for this guy :P
The world is a dangerous place to live; not because of the people who are evil, but because of the people who don't do anything about it.
Albert Einstein
-
August 20th, 2008, 10:12 AM
#38
-
August 20th, 2008, 10:44 AM
#39
The world is a dangerous place to live; not because of the people who are evil, but because of the people who don't do anything about it.
Albert Einstein
-
August 20th, 2008, 12:04 PM
#40
That's a typically bad sign when a file like "blphcptej0e75e.scr" doesn't come
up in the search engines. Basically it means the file or its name is too new to
show up on the web yet and was probably created by some rogue developer.
Legit files are all over the search engines.
Did you try right-clicking on the file to check the properties? Under the "Summary"
tab is some info that'll tell you the version, who wrote it, etc., etc. Of course,
if it's a virus, you might get infected doing that, so you might try it on an old
PC.
Another safe browsing alternative is to use a virtual machine. I lean pretty
heavily on that technology these days.
Last edited by brokencrow; August 20th, 2008 at 12:08 PM.
“Everybody is ignorant, only on different subjects.” — Will Rogers
Similar Threads
-
By Tiger Shark in forum Microsoft Security Discussions
Replies: 5
Last Post: January 14th, 2005, 08:47 PM
-
By moxnix in forum *nix Security Discussions
Replies: 2
Last Post: October 23rd, 2004, 05:28 PM
-
By CXGJarrod in forum Microsoft Security Discussions
Replies: 0
Last Post: July 23rd, 2003, 10:00 PM
-
By sirrahj in forum Cosmos
Replies: 17
Last Post: February 15th, 2003, 01:42 AM
-
By zigar in forum AntiVirus Discussions
Replies: 0
Last Post: June 6th, 2002, 03:57 PM
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|