Please read the complete article before following the steps given.

Once again more MSN Messenger Viruses are spreading around the Internet.  This time the virus sends the following message to all your contacts:

Click Image for full article.

Click to join FreePCSecurity

Protect YOUR browsing with Web of Trust….Click Here

© Free PC Security 2007 – 2008

Some 30% of computers with a security solution installed scanned last week  were infected with some kind of malware.  In the case of computers without any kind of protection, the figure goes up to 44%. Source: http://www.infectedornot.com

Click Image for full article.

Hot on the heels of the ‘Postcard From A Friend’, there is a new trend starting.

Below is a copy of an email I received – several copies of it too.

DO NOT open this email as it contains a Trojan Downloader, just Delete it

Virus Name:  JS/Psyme also known as HTML/Mht@exp

Spreads through Web Browsing, Downloads Code from the internet, Exploits your system and/or Software vulnerabilities.

Ensure your anti-virus is up-to-date.  I recommend AVG Anti-Virus (freeware)which catches these Trojans and opens  a ‘Threat Detected’ window.

If you are infected with this update your virus definitions file and reboot into Safe Mode, scan with anti-virus and also scan with ad-aware.

After cleaning reboot into normal OS and scan again to ensure there are no traces of the virus remaining.

Email will read similar to this, with some variations: 

Welcome Member,

We are so happy you joined Free Web Tools.

Member Number: 6257277682314
Your Temp. Login ID: user3795
Your Password ID: eq708

Please Change your login and change your Login Information.

Use this link to change your Login info: Free Web Tools

Welcome,
Internet Support
Free Web Tools

Should you find that your website is compromised by the JS/Psyme virus, you will need to download your site – preferably to an external driive or if no external drive is available to a folder on your dektop and follow the instructions as above. 

Scan the folder containing your site in Safe Mode, make a note of where the virus is found and ensure prior to scanning that your anti-virus is up-to-date.  When complete and the infection is removed, reboot into normal OS and scan again.  If clean upload your site to your server.

This video tutorial will show you how to install AVG Anti-Virus.
If you have Norton or McAfee I personally wouldn’t pay their
fees especially when you can have this protection for free.
If you have any other Anti-Virus and intend to install AVG,
please uninstall any other Anti-Virus program that you may
have.
AVG Anti-Virus Free Edition is one of the most popular
solutions to provide basic security protection on home and
non-commercial PCs and is used by millions of people worldwide.

Important

Create a backup of your system or a restore Point before making any changes

Can also be viewed in Windows Media Player by clicking:
AVG Installation

Advancements in Antivirus Software Suites

Protecting your computer from a virus is getting harder
and harder each day.  While it may border on the paranoid,
it goes without saying that you can’t leave your guard down
for one second.  Even corporate giant Microsoft has found
its own systems compromised on more than one occasion. 

Remember the “good old days”, before the advent of the
Internet and downloadable programs?  Life was simple then
in terms of computer viruses.  With the primary way in
which a virus could be transmitted being limited to floppy
disks, the ability to catch and eradicate the virus was a
lot easier.    By today’s standards, it used to take quite
a while before a virus was able to infect a computer and
slow down the system.  The antivirus software of that time
was typically able to identify and eradicate viruses before
they caused too much damage.  Additionally, computer users
were pretty savvy on how to protect themselves in terms of
scanning all floppy disks before copying them to our
desktop. 

The Internet helped change all that.  The Internet
provided a conduit by which viruses could move from host to
host with lightening speed.  No longer could a computer
user just worry about floppy disks as points of entry, but
they now had to worry about email, email attachments, peer-
to-peer file sharing, instant messaging, and software
downloads.  Today’s viruses can attack through multiple
entry points, spread without human intervention, and take
full advantage of vulnerabilities within a system or
program.  With technology advancing everyday, and the
convergence of computers with other mobile devices, the
potential of new types of threats also increase. 

Protecting Your Computer
Luckily, the advancement of antivirus software has kept
pace with current virus threats.   Antivirus software is
essential to a computer’s ability to fend off viruses and
other malicious programs.  These products are designed to
protect against the ability of a virus to enter a computer
through email, web browsers, file servers and desktops.
Additionally, these programs offer a centralized control
feature that handle deployment, configuration and updating.
A computer user should remain diligent and follow a few
simple steps to protect against the threat of a virus:

1. Evaluate your current computer security system.
With the threat of a new generation of viruses able to
attack in a multitude of ways, the approach of having just
one antivirus software version has become outdated.  You
need to be confident that you have protected all aspects of
your computer system from the desktop to the network, and
from the gateway to the server.  Consider a more
comprehensive security system which includes several
features including antivirus, firewall, content filtering,
and intrusion detection.  This type of system will make it
more difficult for the virus to penetrate your system.

2. Only install antivirus software created by a well-
known, reputable company. 
Because new viruses erupt daily, it is important that you
regularly update your anti-virus software.  Become familiar
with the software’s real-time scan feature and configure it
to start automatically each time you boot your computer.
This will protect your system by automatically checking
your computer each time it is powered up. 

3. Make it a habit to always scan all new programs or
files no matter from where they originate.

4. Exercise caution when opening binary, Word, or Excel
documents of unknown sources especially if they were
received during an online chat or as an attachment  to an
email. 

5. Perform regular backups in case your system is
corrupted.  It may be the only way to recover your data if
infected.

Recommended Antivirus Software
There are numerous applications available to consumers.
With a little research, you can pick the program that is
right for you.  Many programs provide a trial version,
which allows you to download the program and test its
abilities.  However, be aware that some anti-virus programs
can be difficult to uninstall.  As a precaution make sure
to set up a System Restore point before installing. 

Here are a few programs, which typically receive high
marks in terms of cost, effectiveness, ease of use, and
customer service.

The Shield Pro 2005™ provides virus protection and hacker
security through ongoing support and updates. When a virus
breaks out, The Shield Pro 2005™ promises to provide a
patch within 2-3 hours and a fix for the virus within 5
hours. You can set your computer to update viruses weekly
and run a complete virus scan.

BitDefender 9 Standard provides antivirus protection, as
well as Peer-2-Peer Applications protection, full email
protection, and heuristics in a virtual environment.  This
provides a new security layer that keeps the operating
system safe from unknown viruses by detecting malicious
pieces of code for which signatures have not been released
yet.

Kaspersky Anti-Virus Personal 5.0  program is simple to
install and use. The user only needs to choose from three
levels of protection.  It allows updates as frequently as
every hour while promising not to disrupt your computer.
The program also offers a two-tier email protection feature
and round-the-clock technical support.

PC-cillin Internet Security  combines antivirus security
and a personal firewall-for comprehensive protection
against viruses, worms, Trojans, and hackers. It also
detects and removes spyware and blocks spam. It even guards
against identity theft by blocking phishing and pharming
attacks.

AVG Anti-Virus Free Edition is a free downloadable
antivirus program that has received high marks for its
reliability.  In the past, free downloadable antivirus
programs have been viewed skeptically because of issues
relating to its reliability.  However, AVG from Grisoft,
remains one of the best-known free anti-virus programs
available.  While AVG cannot be installed on a server
operating system and there is no technical support, it
still makes a good choice for many home computer users.
The best part is that since it is free, you can try it with
no further obligation necessary.

Today, more and more people are using their computers for
everything from communication to online banking and
investing to shopping.  As we do these things on a more
regular basis, we open ourselves up to potential hackers,
attackers and crackers.  While some may be looking to phish
your personal information and identity for resale, others
simply just want to use your computer as a platform from
which to attack other unknowing targets.  Below are a few
easy, cost-effective steps you can take to make your
computer more secure.

1. Always make backups of important information and store
in a safe place separate from your computer.

2. Update and patch your operating system, web browser and
software frequently.  If you have a Windows operating
system, start by going to www.windowsupdate.microsoft.com
and running the update wizard.  This program will help you
find the latest patches for your Windows computer.  Also go
to www.officeupdate.microsoft.com to locate possible
patches for your Office programs.

3. Install a firewall.  Without a good firewall, viruses,
worms, Trojans, malware and adware can all easily access
your computer from the Internet.  Consideration should be
given to the benefits and differences between hardware and
software based firewall programs.

4. Review your browser and email settings for optimum
security.  Why should you do this?  Active-X and JavaScript
are often used by hackers to plant malicious programs into
your computers.  While cookies are relatively harmless in
terms of security concerns, they do still track your
movements on the Internet to build a profile of you.  At a
minimum set your security setting for the “internet zone”
to High, and your “trusted sites zone” to Medium Low.

5. Install antivirus software and set for automatic
updates so that you receive the most current versions.

6. Do not open unknown email attachments.  It is simply
not enough that you may recognize the address from which it
originates because many viruses can spread from a familiar
address. 

7. Do not run programs from unknown origins.  Also, do not
send these types of programs to friends and coworkers
because they contain funny or amusing stories or jokes.
They may contain a Trojans horse waiting to infect a
computer.

8. Disable hidden filename extensions.  By default, the
Windows operating system is set to “hide file extensions
for known file types”.  Disable this option so that file
extensions display in Windows.  Some file extensions will,
by default, continue to remain hidden, but you are more
likely to see any unusual file extensions that do not
belong.

9. Turn off your computer and disconnect from the network
when not using the computer.  A hacker can not attack your
computer when you are disconnected from the network or the
computer is off.

10. Consider making a boot disk on a floppy disk in case
your computer is damaged or compromised by a malicious
program.  Obviously, you need to take this step before you
experience a hostile breach of your system. 

To your safety and security online

cotojo

Identity theft is an very real problem and you need to actively protect yourself from it!

If your identity is ever stolen, it can be used in Fraudulent or Criminal activities, to obtain a job where you end up liable for the taxes, to make purchases of products and services that you WILL end up having to pay for, can completely devastate and destroy your credit, and take literally many years for you get it all straightened out.

Never give out personal information on the phone, through Postal Services, through e-mail or over the Internet in any other way, unless you’ve initiated the contact and you are sure you know who you’re dealing with.

Identity thieves can be skilled liars, and may pose as representatives of banks, government agencies, owners of a company, and yes, they can even pose as Internet service providers (ISPs) to get you to reveal identifying information. Before you divulge any personal information, confirm that you’re dealing with a legitimate representative of a legitimate organization. Double check by calling customer service using the number on your account statement, listed in the telephone book, or obtained via a Telephone Operator.

Your computer can be a goldmine of personal information to an identity thief. Here are some points on how you can safeguard your computer and the personal information it stores:

· Update your virus protection software regularly. Computer viruses can have damaging effects, including introducing program code that causes your computer to send out files or other stored information.

· Regularly check for security repairs and patches you can download from your operating system’s Web site.

· Don’t download files from strangers or click on hyperlinks from people you don’t know, especially when it comes to e-mail where the e-mail contains an attachment. Clicking a link or opening a file could expose your system to a computer virus or a program that could hijack your modem like a Trojan.

· Use a firewall, especially if you have a high-speed or “always on” connection to the Internet. A firewall allows you to limit uninvited access to your computer. Without a firewall, hackers can enter your computer remotely from anywhere in the world and even take over your computer and access sensitive information without you even knowing it.
I recommend the use of Online Armor Free Firewall

· To guard the safety of your online transactions always be sure the Web site you are on uses a secure browser software that encrypts or scrambles information you send over the Internet. When you’re submitting information, the address of the Web page should start with “https://” (apposed to the normal surfing address of http://), and also look for the “lock” icon on the status bar. It’s a symbol that your information is secure during transmission.

· Try not to store financial information on your PC or laptop unless absolutely necessary. If you do, use a “strong” password that is a combination of letters (upper and lower case) and numbers.

· Avoid using an automatic login feature that saves your user name and password; and always log off when you’re finished working in a password protected entry area. If your PC or laptop ever gets stolen, the thief will have a hard time accessing sensitive information if they need to enter usernames and passwords to access something.

· Delete any personal information stored on your computer before you dispose of it. Use a “wipe” utility program, which overwrites the entire hard drive and makes the files unrecoverable.

Use CCleaner freeware and when installed select ‘Options’ then select ‘Settings. Under the heading ‘Secure Deletion’ click the ‘Secure file deletion (Slower)’ radio button and change the setting to Guttman Algorithm (35 passes).

· Read Web site privacy policies. They should answer questions about the access to and accuracy, security, and control of personal information the site collects, as well as how sensitive information will be used, and whether it will be provided to third parties.

· Never provide personally identifiable information like a username and password, a government issued number that identifies you, financial details, e-mail addresses, phone numbers, or your home address in areas like chat rooms, forums, instant messengers, e-mail, or any other area over the Internet that gives others access to the information.

Remember, always back-up your system before making any changes. If using ccleaner make sure you know your passwords. I suggest you open a spreadheet or word processor, enter the site url, username and password and save it to floppy. Do NOT save this information on your hard drive.

Click to join FreePCSecurity

© Free PC Security 2007

How prevalent is Spam?  According to Scott McAdams, OMA Public Affairs and Communications Department (www.oma.org):

“Studies show unsolicited or “junk” e-mail, known as spam, accounts for roughly half of all e-mail messages received. Although once regarded as little more than a nuisance, the prevalence of spam has increased to the point where many users have begun to express a general lack of confidence in the effectiveness of e-mail transmissions, and increased concern over the spread of computer viruses via unsolicited messages.”

In 2003, President Bush signed the  “Can Spam” bill, in December of 2003 which is the first national standards around bulk unsolicited commercial e-mail.  The bill, approved by the Senate by a vote of 97 to 0, prohibits senders of unsolicited commercial e-mail from using false return addresses to disguise their identity (spoofing) and the use of dictionaries to generate such mailers. In addition, it prohibits the use of misleading subject lines and requires that emails include and opt-out mechanism. The legislation also prohibits senders from harvesting addresses off Web sites. Violations constitute a misdemeanour crime subject to up to one year in jail. 

One major point that needs to be discussed about this: 

Spam is now coming from other countries in ever-greater numbers. These emails are harder to fight, because they come from outside our country’s laws and regulations.  Because the Internet opens borders and thinks globally, these laws are fine and good, but do not stop the problem.

So what do you do about this? 

Here are the top 5 Rules to do to protect from spam.

Number 1: 
Do what you can to avoid giving your email address out on
the net.  

There are products called “spam spiders” that search the Internet for email addresses to send email to.  If you are interested, do a search on “spam spider” and you will be amazed at what you get back.

Interestingly, there is a site, WebPoison.org, which is an open
source project geared to fight Internet “spambots” and “spam
spiders”, by giving them bogus HTML web pages, which contain bogus email addresses

A couple of suggestions for you: 

a) use form emails, which can hide addresses or also b) use addresses like sales@company.com instead of
your full address to help battle the problem. c) There are also
programs that encode your email, like jsGuard, which encodes your email address on web pages so that while spam spiders find it, it is difficult or impossible to read your email address.

Number 2: 
Get spam blocking software.  There are many programs out
there for this.  (go to www.cloudmark.com or www.mailwasher.net for example).  You may also buy a professional version.  Whatever you do, get the software. It will save you time.  The software is not foolproof, but they really do help.  You usually have to do some manual set up to block certain types of email.

Number 3:
Use the multiple email address approach.

There are a lot of free email addresses to be had.  If you must
subscribe to newsletters, then have a “back-up” email address. It would be like giving your cell phone number to your best friends and the business number to everyone else.

Number 4: 
Attachments from people you don’t know are BAD, BAD, BAD.

A common problem with spam is that they have attachments and attachments can have viruses.  Corporations often have filters that don’t let such things pass to you.  Personal email is far more “open country” for spammers. 

General rule of thumb:  if you do not know who is sending you something, DO NOT OPEN THE ATTACHMENT.  Secondly, look for services that offer filtering. Firewall vendors offer this type of service as well.

Number 5: 
Email services now have “bulk-mail” baskets.  If what you
use currently does not support this, think about moving to a new
vendor.  The concept is simple.  If you know someone, they can send you emails.  If you don’t know them, put them in the bulk email pile and then “choose” to allow them into your circle.  Spam Blocking software has this concept as well, but having extra layers seems critical these days, so it is worth looking into.

 Bob Matharoo has also written an interesting article on Spam,  check it out here

Spyware is one of the fastest-growing internet threats.  According to the National Cyber Security Alliance, spyware infects more than 90% of all PCs today.  These unobtrusive, malicious programs are designed to silently bypass firewalls and anti-virus software without the user’s knowledge.  Once embedded in a computer, it can wreak havoc on the system’s performance while gathering your personal information.  Fortunately, unlike viruses and worms, spyware programs do not usually self-replicate. 

Where does it come from?

Typically, spyware originates in three ways.  The first and most common way is when the user installs it.  In this scenario, spyware is embedded, attached, or bundled with a freeware or shareware program without the user’s knowledge.  The user downloads the program to their computer.  Once downloaded, the spyware program goes to work collecting data for the spyware author’s personal use or to sell to a third-party.  Beware of many P2P file-sharing programs.  They are notorious for downloads that posses spyware programs.

The user of a downloadable program should pay extra attention to the accompanying licensing agreement.  Often the software publisher will warn the user that a spyware program will be installed along with the requested program.  Unfortunately, we do not always take the time to read the fine print.  Some agreements may provide special “opt-out” boxes that the user can click to stop the spyware from being included in the download.  Be sure to review the document before signing off on the download.

Another way that spyware can access your computer is by tricking you into manipulating the security features designed to prevent any unwanted installations.  The Internet Explorer Web browser was designed not to allow websites to start any unwanted downloads.  That is why the user has to initiate a download by clicking on a link.  These links can prove deceptive.  For example, a pop-up modeled after a standard Windows dialog box, may appear on your screen.  The message may ask you if you would like to optimize your internet access.  It provides yes or no answer buttons, but, no matter which button you push, a download containing the spyware program will commence. Newer versions of Internet Explorer are now making this spyware pathway a little more difficult.

Finally, some spyware applications infect a system by attacking security holes in the Web browser or other software.  When the user navigates a webpage controlled by a spyware author, the page contains code designed to attack the browser, and force the installation of the spyware program.

What can spyware programs do?

Spyware programs can accomplish a multitude of malicious tasks.  Some of their deeds are simply annoying for the user; others can become downright aggressive in nature.

Spyware can:

1.            Monitor your keystrokes for reporting purposes.

2.            Scan files located on your hard drive.

3.            Snoop through applications on our desktop.

4.            Install other spyware programs into your computer.

5.            Read your cookies.

6.            Steal credit card numbers, passwords, and other personal information.

7.            Change the default settings on your home page web browser.

8.            Mutate into a second generation of spyware thus making it more

         difficult to eradicate.

9.            Cause your computer to run slower.

10.        Deliver annoying pop up advertisements.

11.        Add advertising links to web pages for which the author does not get paid.  Instead, payment is directed to the spyware programmer that changed the original affiliate’s settings.

12.        Provide the user with no uninstall option and places itself in unexpected or hidden places within your computer making it difficult to remove.

Spyware Examples

Here are a few examples of commonly seen spyware programs.  Please note that while researchers will often give names to spyware programs, they may not match the names the spyware-writers use. 

CoolWebSearch, a group of programs, that install through “holes” found in Internet Explorer. These programs direct traffic to advertisements on Web sites including coolwebsearch.com. This spyware nuisance displays pop-up ads, rewrites search engine results, and alters the computer host file to direct the Domain Name System (DNS) to lookup preselected sites. 

Internet Optimizer (a/k/a DyFuCa), likes to redirect Internet Explorer error pages to advertisements. When the user follows the broken link or enters an erroneous URL, a page of advertisements pop up.

180 Solutions reports extensive information to advertisers about the Web sites which you visit.  It also alters HTTP requests for affiliate advertisements linked from a Web site.  Therefore the 180 Solutions Company makes an unearned profit off of the click through advertisements they’ve altered.

HuntBar (a/k/a WinTools) or Adware.Websearch, is distributed by Traffic Syndicate and is installed by ActiveX drive-by downloading at affiliate websites or by advertisements displayed by other spyware programs.  It’s a prime example of how spyware can install more spyware.   These programs will add toolbars to Internet Explorer, track Web browsing behavior, and display advertisements.

How can I prevent spyware?

There are a couple things you can do to prevent spyware from infecting your computer system.  First, invest in a reliable commercial anti-spyware program.

I recommend you follow this link  http://www.linkbrander.com/go/34613 and read more and you can also scan your PC for free. There are several others on the market including stand alone software packages such as Lavasoft’s Ad-Aware available for free at http://www.lavasoft.de/products/ad-aware_se_personal.php or Windows Antispyware.  Other options provide the anti-spyware software as part of an anti-virus package.  This type of option is offered by companies such as Sophos, Symantec, and McAfee. Anti-spyware programs can combat spyware by providing real-time protection, scanning, and removal of any found spyware software.   As with most programs, update your anti virus software frequently. 

As discussed, the Internet Explorer (IE) is often a contributor to the spyware problem because spyware programs like to attach themselves to its functionality.  Spyware enjoys penetrating the IE’s weaknesses.  Because of this, many users have switched to non-IE browsers.  However, if you prefer to stick with Internet Explorer, be sure to update the security patches regularly, and only download programs from reputable sources.  This will help reduce your chances of a spyware infiltration.

And, when all else fails?

Finally, if your computer has been infected with a large number of spyware programs, the only solution you may have is backing up your data, and performing a complete reinstall of the operating system.

Just what is Intelligent Explorer? For your safety, you really need to know  

I recently hit, by mistake, what I thought was an Explorer upgrade option.  It turned out to be a pop-up appearing legitimate but really was not. It uploaded a product called Intelligent Explorer on my machine.  What a nightmare!  

I did some research on the web and found messages like this one from a BullGuard Antivirus Forum,  “PLEASE HELP!!!  I HAVE A SPYWARE, TROJAN AND HIJACKER ON MY COMPUTER.  I HAVE RUN BULLGUARD, CWSHREDDER AND AD-AWARE.  ALL HAVE PICKED UP THE VIRUSES AND SAID THAT THEY HAVE BEEN MOVED/REMOVED BUT WHEN I LOG ONTO THE INTERNET THAT DAMN INTELLIGENT EXPLORER TOOLBAR IS SHOWING” 

Another message from spyware info Forum goes something like this: “Hey I’m having issues with something called Internet explorer toolbar – Intelligent explorer. I can’t find a way to remove it from my comp and I really don’t want to reinstall windows. I’ve used spybot, ad-ware, and cw shredder but nothing seems to work.” It appears that Intelligent Explorer allows other software to be downloaded to your machine and this is where the problem occurs. What is even more remarkable is that by downloading Intelligent Explorer, their license grants them the right to install software add-ins on your computer at their will.  Take a look at what the software license for Intelligent Explore says (go to http://www.ieplugin.com/terms.html to read it all): “You grant to us the right, exercisable by us until you uninstall the Software or this agreement is otherwise terminated, to provide to you the Service of downloading and causing to be displayed advertising material on your computer, through ‘pop-up’ or other display while you use your browser.  You acknowledge and agree that installation of the Software may automatically modify toolbars and other settings of your browser.  By installing the Software you agree to such modifications.” 

The company, IBC incorporated, is incorporated in Belize.  I really can’t believe this license!  

One end user found highly objectionable pop-up advertisements generated by this software bundled with Intelligent Explorer in the form of extreme pornography.  

I have yet to break this.  

Intelligent Explorer is a plug-in, which can create a new home page, as well as start up and endless loop of pop-ups. You can remove the view bar, but then starting up Internet Explorer will cause it to reappear.  I asked some friends to help, and no one could tell me what to do. 

This is what I did: 

I bought a copy of a program called XoftSpy and it removed the software. It took two scans and a reboot to do it.  They advertised it was free, which it was to run, but then I had to buy it to actually fix anything. It was a great purchase, although I am in favour of programs that are freeware such as  Spybot, NoAdware, Spyware Eliminator, and there are many other freeware products out there as well, but that is what ended the nightmare for me.

 http://www.linkbrander.com/go/34613