|
Anti-Virus Info
You Don't Want This Bagle
(1/21/04) The newest virus going around via email is called the Bagle Virus. This virus is sent to you from an outside source with the subject of "Hi" and the body contains the word "Test=)". This virus is strange from the fact that it only infects your system until January 28th, 2004. Although we are sure that it won't be long before someone twists it to do something different. As with all viruses, we want you to make sure that are careful opening attachments and you keep your virus definitions up-to-date on your computer. More information about this virus can be found at the McAfee Site.
No Help From This Virus
(1/19/04) There's a new scam going around via email that says "Virus Alert From powerweb.net virus alert center", which tells you that your computer is infected by a virus and you should click on the link to fix it. This link actually takes you to a site which downloads a virus on your computer. We are blocking all messages of this type, but if you see one, you will know it's false as every virus alert that we send out has the return address of admin@powerweb.net and is always in plain text, never fancy colors or spacing. If you have any questions, please feel free to contact the administrator.
Newest Worm On The Horizon
The newest worm, very similar to the blaster worm is ready to go and infect your computers. Microsoft has released a patch to fix it, Click here to read more about it and to download the patches.
Microsoft Patch Via Email
With all the new viruses going around, people are beginning to try anything. But that's not a good idea. Click here for the full story.
Sobig Virus Getting So Big
The latest virus to come to light has proven to be a rather annoying one. Sobig.F arrives in an e-mail with an attachment that when opened infects the computer and sends itself on to other victims using a random e-mail address from the address book. The file attachment will have a .pif or .scr extension. These should never be opened in any case. The attachment must be opened to infect your computer. Check out the Symantec web site for more information including a removal tool.
Latest Email Scam
If you receive an email with the subject of You credit card has been charged for $234.65, this is a scam! Please delete it immediately. We are currently blocking anything with this subject, but several have probably passed through our system.
Never put your credit card number in an email!
Worm On The Loose! - Patch Your System
There is a Worm that was discovered on 8/11 by the name W32/Lovsan.worm, W32.Blaster.Worm and WORM_MSBLAST.A. It works by Exploiting a hole in Microsoft Windows NT, Microsoft Windows 2000, Microsoft Windows XP and Microsoft Windows 2003 Server.
The way this worm works, you only need to be connected to the Internet for it to attempt to infect your computer, you don't have to be Web browsing or reading your email. For more information and patching instructions click here.
The Yaha Virus Returns
(1/5/03) We have seen an increased number of infections via the W32.Yaha Virus and all it's mutations. This virus is very dangerous since it not only infects email, but also ICQ and MSN. People have reported that this virus is even spreading through Hotmail, which is screened for viruses by Microsoft. You can find more information here. This virus mutates and is very difficult to trap. Remember that your Message Center Spam/Virus Protection only protects you against email viruses. It does not protect you against viruses from web pages or "instant message" services. You should always have a virus scanner on your computer and make sure that the scanner is up to date using the live update feature found in most popular virus scanner programs. If you think you are infected, there is a removal tool that you can download for free and test on your system.
Virus Policy
(06/18/02) We still have people who are infected with viruses. This happened before our spam/virus scanner was put into place. We are sending out notices to let these people know, but many of these people have not responded and continue to attempt to send out copies of viruses. In an effort to stop this, customers who do not respond to a message from the administrator will have their internet service suspended until they make their computers virus free. A sample of the email message can be seen here.
Virus Hoaxes Revisited
(12/6/02) We have had many calls and emails in regards to an email which directs you to search the windows directory and delete a file. Some of these files are SULFNBK.EXE and JDBGMGR.EXE. These are HOAXES. They prey on your fear of viruses to get you to delete these files. These files are used by Windows and will actually cause your computer to crash or become unstable. A good rule of thumb is that any email that directs you to delete files is a hoax. A virus scanner deletes and cleans the files for you. A reputable site like McAffee or Symantec or Anti-Virus.com may ask you do delete files, but make sure that's it's a reputable site before attempting it.
Gibe Virus - Microsoft Security Update
(03/11/02) The latest virus to be circulating around is the Gibe Virus. Also known as the Microsoft Security Update Virus. You receive this virus as note from Microsoft informing you of a new security update and asking you to run the attachment. This attachment contains the virus. Keep in mind that Microsoft would NEVER send you an unsolicited email and ask you to open it. They may send you emails, but they will then force you to go to their site and download any security update. This virus deletes many files and then disables your anti-virus software, so that you can be infected by other viruses without your knowledge. More information can be found here: at McAffee or at Anti-Virus.com.
My Party Virus
(01/29/02) Just discovered yesterday, but we already have a few of them circulating around. This virus comes as an email with no return address, but with the subject new photos from my party! This is not pictures, it's a virus. Please make sure you don't open the attachment. Information about this virus can be found here or here. You can download a free cleaner to remove the virus from here.
Badtrans is Back!
(11/26/01) This weekend, a variation of the Badtrans virus has returned. It comes as an email with an attachment that automatically opens itself if you don't have anti-virus software installed. You can get more information about it at the usual places like McAffee, Symantec/Norton or Anti-Virus.com. Please remember to keep your anti-virus software updated to help us rid ourselves of these types of viruses.
Virus Reminder
(9/17/01) We plugged a hole in the mail server, which caused a vast majority of the Snow White viruses to be sent to the admin box instead of out to our customers or out to the internet. To our surprise, we have received dozens of them in a few hours. These people have all been notified. But we wanted to remind everyone to make sure their virus scanners are updated. The free one that comes with Windows 98 is not good enough. If you buy one in the store and don't use the update feature, it is no good either. By the time the company releases the software, packages it and then ships it to the store and you buy it and install it, it may be months. This means that there are thousands of viruses that have been added since the virus scanner was written. New viruses arrive every day. These viruses (snow white, sircam, magistr and all the others) cause your system to be very slow and crash frequently. Please make sure you have your virus scanner updated and your patches installed.
How Your Virus Scanner Can Mess Up Your Email
(8/13/01) We get messages from time to time asking about an error that looks something like this:
The connection to the server has failed. Account: 'http', Server: 'pop3.norton.antivirus', Protocol: POP3, Port: 110, Secure(SSL): No, Socket Error: 10061, Error Number: 0x800CCC0E
This is caused by a little bug in the interaction between Outlook Express and Norton Anti-Virus. The way it works is that Norton Anti-virus actually intercepts all your email before your computer gets it and then decides if the mail is virus free. That's why the server says "pop3.norton.antivirus" instead of pwc.powerweb.net. Norton changed this when you installed it. The easiest fix for this is to reboot your computer and it normally goes away. If it is always a problem, bring up the Norton control panel and click on the Email Status button and double click on the email account and then turn off the option. Note that this will not check your emails as they come in. If auto-protect is enabled, you will be warned when you try to run or save an attachment with a virus, but they will not be checked.
Code Red Virus
(7/30/01) You may have been hearing and seeing a lot about the code red virus on the news and in the news paper. The code red virus only attacks computers running both Windows 2000 and Microsoft Internet Information Server (IIS). The only people who normally run this program are Internet Service Providers (ISP's). Home users shouldn't be affected by this virus. Power Web does not use IIS and is not vulnerable to the code red virus. Unfortunately, over 25% of the internet is, and this means that during a Denial of Service Attack (DoSA), the server is basically taken out of commission. What does this mean to you? During the first 20 days of the month (beginning tonight, since it's almost Wednesday in the Far East), you may notice some slow downs and some sites that are unavailable. We are hoping that since there is widespread knowledge of this virus, it will be quickly stamped out. You can find some interesting reading about it here, or here. If you are running Windows 2000 at home, you can update the patch by clicking on the START button and then clicking on the Windows Update icon and following the instructions after you click on PRODUCT UPDATES.
A Quick Spreading Virus
(7/22/01) We just heard about it yesterday, and already the admin mailbox has been filled with over a dozen copies of the new virus called the SIRCAM virus. It spreads like most viruses with an email from someone you know along with an attachment. Please read about it here. If you are a customer of Power Web and you are sending it to the billing or admin box, you will receive a notice in your email.
One More Virus
(7/12/01) We have seen a huge increase in the number of MAGISTR viruses recently, so it is time to try to stop the virus as soon as we can. This virus sends itself out to people on your list like every other virus, but it does not disguise itself like the snow white virus did. People know it's from you and don't suspect it as a virus. It makes tracking these people down a lot easier. Please read about it here. If you are a customer of Power Web and you are sending it to the billing or admin box, you will receive a notice in your email.
The Choke Virus
(6/25/01) A new virus has found a new way to find itself into our customer's
systems. This virus is known as the CHOKE virus. Or sometimes known as
the SHOOTPresidentBush virus. This virus tries to send itself through
MSN Messenger. It will tell the person on the other end of the conversation
that they should see this file and they can accept or decline the file.
If you decline it immediately asks you again and again and again. If you
accept the file it will immediately infect your system and begin sending
itself to other people. If you just ignore the question, it doesn't ask
you again until the person logs off and back on. You know your friends
have a virus when their msn messages always have a little yellow frown
face on every line. You
can find out more information about it here.
New Virus Alert
(6/18/01) Although McAfee still classifies this virus as low/medium risk
virus, we have seen several dozen of them over the weekend. It is called
the w32.badtrans.13312@mm virus. You
can read about it here. It usually comes as a virus that is part of
a message that doesn't make a whole lot of sense with an attachment. This
virus seems to take a message that is part of an old email and then sends
it back to an unsuspecting user with an attachment. We cannot block these
since they come from a real person with a real return address (the address
of the person sending it). Again, unless you know the user, be wary of
opening up any attachments.
(5/10/01) An older virus has been mutated to try to avoid detection and infect your systems. This virus is known as the "homepage" virus. It sends you an email with the subject of homepage and includes a message that says Hi! You've got to see this page! It's really cool ;0), along with an attachment. This attachment is a visual basic script that infects your computer. You can get more information about it here.
New Virus Alert
(4/19/01) Although McAfee classifies this virus as low risk, we have seen about a dozen of them in the last week. It is called the w32.badtrans.13312@mm virus. You can read about it here
Another Virus Warning
A new virus has hit the streets today (2/12/01). This virus is called the VBS/SST@MM (AnnaKournikova Virus). It send itself as a message from someone you know with the subject of "Here you have, ;o)". It also containes an attachment of AnnaKournikova.jpg.vbs. This is a visual basic script (VBS) that will attach itself to your computer and begin sending itself out, making it look like you are the one sending it. You can find out more information here. Make sure you know what you are opening before you open it. Again, there is no joke funny enough, or possible nude picture of Anna Kournikova that is worth infecting your computer over.
Virus Alert - Snow White
Here's a new one. We have been sent many copies of an email that is from an email address of hahaha@sexyfun.net. It contains an attachment and includes the text about the "Snowhite and the Seven Dwarfs - The REAL story!". It contains the W32.HYBRIS.GEN virus. DO NOT OPEN THE ATTACHMENT! You can find out more information about it here. As with any email, be certain of what you are opening before you open it. There is no joke funny enough to risk infecting your computer over. If you are running a virus software, make sure you update it regularly. We have set the mail server to block emails from the address shown above. If you don't have it, you probably won't get it, but if it is already in your email box, there isn't anything we can do. DELETE IT! Also, it is being blocked from entering our servers from the outside, but unfortunately, one or more of our customers have already infected their system(s) with the virus. The mail server cannot block emails from within the server, since they technically don't leave the server and come back, they just move from folder to folder.
Virus Alert
Although we haven't seen any occurences of it, McAffee is reporting a new virus called the W32/Navidad@M virus. It apparently is an email with an attachment called NAVIDAD.EXE. This attachment, when run, infects your system and emails others with your return email address. You can find out more information about it here. As with any email, be certain of what you are opening before you open it. There is no joke funny enough to risk infecting your computer over. If you are running a virus software, make sure you update it regularly.
Vanuatu Phone Bill Charge Scam Warning
There have been several incidents recently involving our customers unknowingly being charged for calls to the Island of Vanuatu in the South Pacific. These calls are believed to be initialized from a special "Image Viewer" program downloaded from an adult website. When the program runs, it will dial and connect your computer directly to a phone number in Vanuatu in order to access the site's content. This long-distance modem connection could be made without the user ever knowing their computer is dialing. The customer will be responsible for these phone bill charges. Be cautious if a website requires you to download a separate "Image Viewer" program to access "Premium Content."
If you know that you are never going to call overseas, you can ask the phone company to block this feature from your phone line. There should be no charge (just like 900 blocking).
New Virus Alert
We have seen some occurrences of the QAZ worm virus. This virus opens your computer to the internet for someone scanning for the virus. McAffee has a patch available for download. You can read more information about the virus here.
Virus Hoaxes
We have had lots of calls and emails about the latest "win a vacation" virus, or the "sandman" virus Most of the ones that we receive warnings on, or that you receive warnings on from your friends are hoaxes. We alway try to verify the authenticity of a new virus and post it on our home page for you to read about and protect yourself against it. If you ever wonder whether a virus is a hoax or not, you can go here vil.mcafee.com/hoax.asp to find out more information.
Just When You Thought It Was Safe To Go Back Into The Water... CNN is reporting a new virus that is being spread around. Although we have heard no reports of this virus infecting any of our customers systems, we wanted you to be aware of it. The full article can be found here.
VIRUS ALERT
A new virus is going around! It is called the I Love You virus. This virus comes as an email that has a subject of ILOVEYOU and has an attachment. The message inside asks you to kindly open the email attachment. Opening the attachment infects your computer and it begins to spread by emailing everyone in your address book over and over. Many companies, including some local ones have reported their networks are being shut down due to this virus. The information can be found at this site. Remember: There is no attachment of joke funny enough worth getting your computer infected over. With outlook express, you have to open the attachment. If you are using standard outlook, the file is opened in a preview pane and automatically runs the virus.
Norton has yet to release an update, but Mcaffee/Netowork Associates has released an update, but it can only be downloaded from this site.
It's Not a Virus, But.....
We have had quite a few tech calls that begin with "I have all these screens popping up, every time I use the internet.". We have found that a majority of them are people who have visited the gohip website. This website changes your browser to pop up message giving you "special offers". Although this is not a virus, it acts like one. If you have this, the only way to stop this is to download the remover and run it.
Eudora Exploit Found
Although this isn't a virus, it is a way for people to exploit your email program. In an effort to keep you updated, we are passing this information along to you.
Just when you thought it couldn't happen. Someone found a way to exploit a security hole in Eudora and Eudora Light. For those of you who do not know what it is, Eudora is an alternative to Outlook Express and Netscape. If you are using Eudora, you may want to check out this site that explains it. The eudora.ini file is normally found in the eudora directory. If you are not using Eudora, you need not worry about it.
kak Worm Virus
The newest one that is making the rounds is the kak worm virus. This virus, although not dangerous, is very annoying. It works by sending itself as a signature in Microsoft Outlook or Microsoft Outlook Express only. It then infects the host system and upon reboot, begins sending itself out. Microsoft has acknowledged this security hole and although they call it "minor" it is still very annoying. The patch is available at Microsoft. and more information can be found at Symantec. Note that even though this is an older virus, Norton 2000 sometimes misses it. You will know you have the virus if you look in outlook express and click on TOOLS then OPTIONS then click on the SIGNATURE tab. This will show a file with the words "kak.htm" in them. You will know if you are getting the virus from someone if you patch your outlook or outlook express and you get a message saying "This activex control is unstable....".
W32.NewApt.Worm
This virus first showed up on the Power Web Server on 12/17/99. W32.NewApt.Worm was discovered on December 14, 1999 in Italy. This worm will email itself out when receiving email via Microsoft Outlook or Netscape Navigator. When activated, the worm will display an error dialog and modify the registry so the worm is reloaded each time the computer is restarted. Info on this virus is located here.
Pretty Park Virus
The Pretty Park virus seems to be the latest virus to hit our area. This virus sends itself to all people in your email address book. Someone even sent this to the techtips mailing list. This virus also attaches itself to an IRC server and will open a back door to your computer so people can browse files and steal your password for your Internet connection. If you get an email with the PrettyPark.exe file attached, do not open the attachment. In fact it is a good practice to never open .exe files sent to your email. If you have already infected your computer, please download this file and clean the virus. Also you may want to alert everyone in your address book so they will be aware of the virus as well. Just download the file and select the option to run it. If your computer was infected, then call us to change your password.
Melissa
You have probably heard about this macro virus on the news. This is a virus that can cause a ton of problems with our mail server. If you get an email that reads: Important Message From USERNAME then please do not open it. Delete it immediately. More info on this virus can be found here: Symantec
Happy 99 Happy99.exe was first identified around mid-January and is now traveling across the Internet via e-mail attachments and newsgroup postings. This has been very active on our Power Web network. The worm modifies e-mails and newsgroup postings by adding unauthorized attachments without the computer user's knowledge. As a side-effect, it can also create network slowdowns and, in a worst-case scenario, even crash corporate e-mail servers. Please help us eliminate this from our service by cleaning the virus immediately if you have it. If you do not have it, then DO NOT open an email or newsgroup attachment named Happy99.exe. This is a Happy New Year animation with fireworks. If you need instructions on how to rid your computer of this virus, go here. We have seen an increase in all forms of viruses on our network. The best defense is a good offense against them. We have assembled links to various sites that include: Anti Virus Software, Virus Hoaxes, The latest Know Virus's and Fixes.
Anti Virus Software
McAfee
Dr Solomon
Nortons
Virus Hoaxes
IBM Hype AlertSymantec's Hoax Page
Data Fellows
Hoax News
Virus Alerts
IBM Virus AlertMore
Do you have a Virus? Here is a good site to help you determine what to do next.Information on Back Orifice and NetBus virus.
Power Web Design
copyright © 2004 -2008
| Other Search Engines |
|
||||||||||||||||
|
