Forgive a title for my post as ironic. But I did not know what to invent to attract the attention of the securities. Never before this time the title, however, is more serious than you think.
FEDEX is a virus, trojan to be exact. I will not dwell much in the description of viruses and Trojans but enough. A virus is a program (usually are written in Visual Basic or similar languages) that violates the natural cycle of a system (a PC in this case). Sometimes they are recognized and removed by antivirus programs, sometimes they are not easily recognized and their comfortable, that they do what they have been created or doing damage. Are not always directly harmful to your computer (or operating system), are sometimes created for the sole purpose of annoying. Other times, however, can cause serious damage to the system, so that at best a technical expert should format the computer. You're probably asking, and at worst? At worst, there is even the risk of having to change the computer. A volte questi virus possono provocare surriscaldamenti del computer o overclocking della CPU che danneggiano l'hardware irreparabilmente.
FEDEX appartiene alla categoria dei trojan. Un trojan è un virus che si nasconde dietro un programma apparentemente utile, quindi un virus che nasconde le sue reali intenzioni.
A questo punto per rendere più leggibile l'articolo mi farò 3 domande alle quali darò risposta:
1: Dove lo posso trovare?
2: Come devo comportarmi?
3: Prevenzione?
1: Dove lo posso trovare?
Questo è un virus che gira molto tramite mail. Windows Live Hotmail messaggi di questo tipo li cataloga già come insicuri. Do not make the mistake of opening them, as I did. Pay attention to the mail. Often it is found as an attachment to an email message that port as follows:
Attachment Name: Fedex_89710021NR.zip
VirSCAN.org tells us that is a trojan and now 75% of the virus recognizes it. You can stay up to date here.
http://virscan.org/report/e4ed186f23610aacedb1ab4805bba59c.html
2: What should I do?
First tranquility. You must not frighten. You have not lost any data (I can confirm it to you because I've been there. I was scared when I froze a PC after having the virus and said I lost everything. Tranquilli on this point).
First reboot your computer in Safe Mode (preferably the one with the network, because some software will be used to rebuild the PC). Once the first pc all you need to do a scan with a good antivirus. TIP I'm not there anyone not to fall in the pitfalls of advertising. At the link above you will find a number of antivirus and next to a note that says if it recognizes the virus. For my pc I use McAfee Virus Scan Enterprise 8.0 and Antivirus AntiVir Personal Edition. Antivir recognizes the file and delete them, and after updating VirusScan also recognized other files of the same virus. After that there is also a need to eliminate spyware and changes made to the registry. For these things I suggest you use Spybot S & D which can be downloaded directly from here.
Once you've deleted these files (all those reports that SpyBot, even if it says Microsoft) you can restart your computer. The virus has not been eliminated, but was made innocuous. The computer no longer crashes and you can use it like old times. You will have only a background a bit 'different from the others will indicate the presence of spyware. Do not fear, is a modification to the registry and prevent you from being able to change the background. Also I'm still at this point, and anyone able to permanently resolve the problem please contact me.
I recommend that every time you start your PC after opening the task manager you have to finish the process called blphc1gqj0et07.exe, the virus will then delete any other files that will regenerate each time you start.
3. Prevention?
Yes
Prevention is important. Maybe it's the only way to save us from viruses. There is no better antivirus prevention. First we open only emails we have sent people known trademarked by the chains, do not download any attachment if you are not sure of the sender. If you can be sure that it was actually the sender to send that attachment, because some viruses are transmitted by themselves, even as jpg images via msn. Enable scanning of attachments and files received from instant messaging. Use a good antivirus and update it periodically. Then bodies with an anti spyware program (like SpyBot Search & Destroy, AdAware and others ...). Do a scan with these programs at least every 2 days, preferably at the end of a connection to the Internet. Attention then to the sites visited. We do not want anything to download an attachment that contains a virus that is still recognized. And if our browser does not recommend going there on a particular site, give them play;)
These are my suggestions for a proper prevention. Although prevention is the best one: use linux, which is much more immune to viruses.
conclude this long post with my greetings.
soon
Alfonso Piscitelli
PS: If you want to copy the post to put it on your blog (as I recommend), I ask you not only eliminate the source, that is the end to write this little note: "Source: http://alfonso91.blogspot.com" and leave a comment with a link to your blog, so I can thank you personally for having spread the news.
FEDEX is a virus, trojan to be exact. I will not dwell much in the description of viruses and Trojans but enough. A virus is a program (usually are written in Visual Basic or similar languages) that violates the natural cycle of a system (a PC in this case). Sometimes they are recognized and removed by antivirus programs, sometimes they are not easily recognized and their comfortable, that they do what they have been created or doing damage. Are not always directly harmful to your computer (or operating system), are sometimes created for the sole purpose of annoying. Other times, however, can cause serious damage to the system, so that at best a technical expert should format the computer. You're probably asking, and at worst? At worst, there is even the risk of having to change the computer. A volte questi virus possono provocare surriscaldamenti del computer o overclocking della CPU che danneggiano l'hardware irreparabilmente.
FEDEX appartiene alla categoria dei trojan. Un trojan è un virus che si nasconde dietro un programma apparentemente utile, quindi un virus che nasconde le sue reali intenzioni.
A questo punto per rendere più leggibile l'articolo mi farò 3 domande alle quali darò risposta:
1: Dove lo posso trovare?
2: Come devo comportarmi?
3: Prevenzione?
1: Dove lo posso trovare?
Questo è un virus che gira molto tramite mail. Windows Live Hotmail messaggi di questo tipo li cataloga già come insicuri. Do not make the mistake of opening them, as I did. Pay attention to the mail. Often it is found as an attachment to an email message that port as follows:
Unfortunately We Were not Able to deliver postal package you sent on August the 1st time inThe attachment is a zip file (*. exe files because they are not accepted by the majority of providers for security reasons) But inside it contains an exe file.
Because the recipient's address is not correct.
Please print out the invoice copy attached and collect the package at Our office Your UPS
Attachment Name: Fedex_89710021NR.zip
VirSCAN.org tells us that is a trojan and now 75% of the virus recognizes it. You can stay up to date here.
http://virscan.org/report/e4ed186f23610aacedb1ab4805bba59c.html
2: What should I do?
First tranquility. You must not frighten. You have not lost any data (I can confirm it to you because I've been there. I was scared when I froze a PC after having the virus and said I lost everything. Tranquilli on this point).
First reboot your computer in Safe Mode (preferably the one with the network, because some software will be used to rebuild the PC). Once the first pc all you need to do a scan with a good antivirus. TIP I'm not there anyone not to fall in the pitfalls of advertising. At the link above you will find a number of antivirus and next to a note that says if it recognizes the virus. For my pc I use McAfee Virus Scan Enterprise 8.0 and Antivirus AntiVir Personal Edition. Antivir recognizes the file and delete them, and after updating VirusScan also recognized other files of the same virus. After that there is also a need to eliminate spyware and changes made to the registry. For these things I suggest you use Spybot S & D which can be downloaded directly from here.
Once you've deleted these files (all those reports that SpyBot, even if it says Microsoft) you can restart your computer. The virus has not been eliminated, but was made innocuous. The computer no longer crashes and you can use it like old times. You will have only a background a bit 'different from the others will indicate the presence of spyware. Do not fear, is a modification to the registry and prevent you from being able to change the background. Also I'm still at this point, and anyone able to permanently resolve the problem please contact me.
I recommend that every time you start your PC after opening the task manager you have to finish the process called blphc1gqj0et07.exe, the virus will then delete any other files that will regenerate each time you start.
3. Prevention?
Yes
Prevention is important. Maybe it's the only way to save us from viruses. There is no better antivirus prevention. First we open only emails we have sent people known trademarked by the chains, do not download any attachment if you are not sure of the sender. If you can be sure that it was actually the sender to send that attachment, because some viruses are transmitted by themselves, even as jpg images via msn. Enable scanning of attachments and files received from instant messaging. Use a good antivirus and update it periodically. Then bodies with an anti spyware program (like SpyBot Search & Destroy, AdAware and others ...). Do a scan with these programs at least every 2 days, preferably at the end of a connection to the Internet. Attention then to the sites visited. We do not want anything to download an attachment that contains a virus that is still recognized. And if our browser does not recommend going there on a particular site, give them play;)
These are my suggestions for a proper prevention. Although prevention is the best one: use linux, which is much more immune to viruses.
conclude this long post with my greetings.
soon
Alfonso Piscitelli
PS: If you want to copy the post to put it on your blog (as I recommend), I ask you not only eliminate the source, that is the end to write this little note: "Source: http://alfonso91.blogspot.com" and leave a comment with a link to your blog, so I can thank you personally for having spread the news.
0 comments:
Post a Comment