Virus

Discussion in 'polls' started by JayK, Jun 12, 2003.

Thread Status:
Not open for further replies.
  1. JayK

    JayK Poster

    Joined:
    Dec 27, 2002
    Posts:
    619
    Just curious. Given all this debate about the BEST AV and AT i'm wondering how many people from here actually get infected by viruses. Or is it all moot.

    I'm guessing most people here are well protected and better yet well informed (I don't run any AV or AT resident! gasp! ) that most havent being infected for a long time.

    Some clarifications.

    1)By infected, I mean you actually ran the virus, and trojan and it got loaded in memory. Merely getting emailed a virus infection doesnt count,otherwise everyone would be infected.

    2) I suppose if you run the infected file and the AV resident program stopped it, could be considered "half infected" if you like

    3) Getting your browser settings hijacked , adware causing popups .messanger spam etc does not count as being infected (that will be another poll), I'm looking for out and out virus, worms, and Trojans.
    Being spied on by employees, loved ones etc using keyloggers or pcmonitors does not count either.


    4) "Your computer" includes shared computers at home ,at work etc...

    5) Test viruses or virueses you ran on purpose don't count.

    6) Of course, you might be infected this very moment without you knowing
     
  2. Pieter_Arntz

    Pieter_Arntz Spyware Veteran

    Joined:
    Apr 27, 2002
    Posts:
    13,331
    Location:
    Netherlands
    Ok. Since computers at work count and I have to clean them out. :rolleyes:

    Yes, Bugbear.b
    Last one before that was Klez.E

    As long as the e-mailscanner doesn't pick them up, there will always be someone ( :blink: ) that opens an attachment.

    Regards,

    Pieter
     
  3. Detox

    Detox Retired Moderator

    Joined:
    Feb 9, 2002
    Posts:
    8,507
    Location:
    Texas, USA
    never to my knowledge - the only thing I ever found with AV scanner that was on my system was a "joke" virus - everything else has been caught on the way in and I've only ever used AVG and used to use Avast as back-up for a while...
    Bitdefender Live! for ICQ caught one thing in a file transfer once but I ditched it since AVG was handling all that stuff just as well. I do online virus scans periodically and never found anything so... That's my little story!
     
  4. Antarctica

    Antarctica Registered Member

    Joined:
    Feb 25, 2003
    Posts:
    1,617
    Location:
    Canada
    That was about 8 years ago when my daughter was at University. And if I remember correctly I think I didn't even have a AV at that time!

    I took my lesson and since then my computor has been clean ;)
     
  5. plazamayor

    plazamayor Registered Member

    Joined:
    Jun 12, 2003
    Posts:
    1
    Ola ;)

    BugBear, Klez, Love..(whatever), Happy99: I'm proud to say: I did get them all! Viva Espana :cool:

    You guys believe I should install antivirus or somethin like that? I do love to fartmat ;)
     
  6. JimIT

    JimIT Registered Member

    Joined:
    Jan 22, 2003
    Posts:
    1,035
    Location:
    Denton, Texas
    I had one on an old Pentium over five years ago--but it was so long ago, I don't remember what it was. I knew little and cared less about security back then!

    Regarding things I've had to deal with at work: Klez, Nimda, Melissa, Opaserv, Kak, Sircam, Trojan Trinoo...and a few others I don't remember. :p

    All were localized infections, with the exception of one incident w/Nimda. Nimda is a particular nuisance.
     
  7. JayK

    JayK Poster

    Joined:
    Dec 27, 2002
    Posts:
    619
    I was using a PC/XT in the late 80s when i got infected by the dark avenger virus. since then zilch.

    In 98, a routine scan of a word document from a friend , allowed me to spot a macro virus..forgot what name..

    Nowdays, I don't find viruses (macro virues are even easier) a particularly big threatthose that come through the email are laughably easy to spot, you hardly need a AV proggie to do it.

    In fact, it doesnt take much of a brain to see that extensions with dangerous looking extensions like hta,sha,bat,exe etc are most certainty viruses if not malware of some sort, porn dialers and whatnot (incidently i find that AV don't alway spot this)

    It helps that I'm not using a insecure email client of couse.

    When was the last time someone got infected by downloading files from the net as opposed to through email attachments? It seems strange to me that viruse
    are not spreading through downloaded files as opposed to email attachments more..
     
  8. root

    root Registered Member

    Joined:
    Feb 19, 2002
    Posts:
    1,723
    Location:
    Missouri, USA
    I said never but twice one of the JS ?? script viruses from a website got as far as my temp inet files. My AV caught it so no infection.
     
  9. JayK

    JayK Poster

    Joined:
    Dec 27, 2002
    Posts:
    619
    I'm not certain if having html pages flagged as script viruses in your temp internet files counts as being infected even if your AV didnt catch it at that time.

    I scan my computer on demand weekly, and it's quite common for Drweb to pick up such files , but as far as I know I wasnt infected, for various reasons, e.g security settings of browsers, OS patches, other counter measures etc.
     
  10. Pilli

    Pilli Registered Member

    Joined:
    Feb 13, 2002
    Posts:
    6,217
    Location:
    Hampshire UK
    QAZ Trojan nearly 3 years ago when first going to BB The so & so got in within minutes of me connecting BB before I had my firewall configured for BB - Fortunately I was informed by my ISPs hacker tracker & deleted it, they no longer use this guy, just an abuse department - real shame!

    This lead to my interest in security....
     
  11. DaHen

    DaHen Registered Member

    Joined:
    Jun 17, 2003
    Posts:
    22
    Location:
    Massachusetts USA
    Two years ago I got the JS/Kak virus in an email. Fortunately, NAV caught it.
     
  12. Uguel707

    Uguel707 Graphic Artist

    Joined:
    Nov 9, 2002
    Posts:
    2,999
    Location:
    San Diego
    It hasn't happened yet... I use to delete anything suspicious or I in doubt I can ask the sender if he/she was the one who sent the email. Some people names are very commun...or we can set the headings in order to see all extensions.


    Two acquaintances caught Bugbear from an email this week. One heading was: "Bilan 2003" and the other was "Warning".


    So, we have to be careful all the time... :doubt:

    Uguel
     
  13. bigc73542

    bigc73542 Retired Moderator

    Joined:
    Sep 21, 2003
    Posts:
    23,873
    Location:
    SW. Oklahoma
    several weeks ago I did a full restore on my machine just to get rid of some junk and what not and before I could get my firewall and antivirus installed and configured the blaster worm got me twice in ten minutes (what a pain in the but) very easy to get rid of but still what a pain. I have been computing for way more years than I like to admit. My first comp. was a tandy 1000. And blaster is the first time I have ever had a virus or worm. I have been pretty fortunate. Well you all have a good evening.

    P.S. I really do enjoy the forum. :cool:
     
  14. JayK

    JayK Poster

    Joined:
    Dec 27, 2002
    Posts:
    619
    And since then you have never gotten any virus in email? LOL

    And as i said before as long as you don't run it, it doesnt count.
     
  15. thinghy

    thinghy Registered Member

    Joined:
    Sep 1, 2002
    Posts:
    16
    Location:
    Be
    last month I received (downloaded realy, shame on me) a trojan, don't remember the name but I started to get blue screens that warned me to reboot and reinstall my system if I ever got that screen again or somethin' like that.
    that was the first time in 2 years a virus had a chance to do something.
    my AV got rid of it, since then no more blue screens, grtz, ;)
     
  16. FukenFooser 007.5

    FukenFooser 007.5 Registered Member

    Joined:
    Sep 28, 2003
    Posts:
    118
    Location:
    High Mnt West. Idaho
    :'(
    about a week and a half ago norton 2002 with zone let a trojan "Java.NoCheat" in?
    Norton reported it couldn't handle ito_O
    Trying to remove got me (besides here), "trojan.byteverify" and "verifierbug.class" !! ??

    Drive was weak and all scaning caused it to finaly give out, And am unsure of if "clean" right nowo_O

    o_O

    :cool:
     
  17. JayK

    JayK Poster

    Joined:
    Dec 27, 2002
    Posts:
    619
    Actually that doesnt mean you are infected for sure, just that it's a possibility.
     
  18. LowWaterMark

    LowWaterMark Administrator

    Joined:
    Aug 10, 2002
    Posts:
    17,875
    Location:
    New England
    MOVED: Re:Virus ("Java.NoCheat")

    A discussion regarding the specific infection mentioned in the above two posts was split off this thread and moved over to the "trojans and backdoors" forum section.

    To follow along please click this link:


    https://www.wilderssecurity.com/showthread.php?t=14898
     
  19. tepi

    tepi Registered Member

    Joined:
    Nov 12, 2003
    Posts:
    81
    Last week my NAV 2003 Pro pounced on and destroyed a Trojan.ByteVerify virus that wasn't there on an earlier scan. This of course means that it had allowed it in without alerting me, though the virus doesn't seem to have executed and it caused no noticeable problems. NAV also allowed a recent Lockergnome newsletter containing the EICAR test virus both to come in and to be mailed out without alerts, though it did destroy a .txt file of EICAR that I tried to make. It also automatically destroyed something that attempted to get in about a month ago. Other than these two, I haven't had a virus for ten years.

    Regards
     
  20. mvdu

    mvdu Registered Member

    Joined:
    Oct 14, 2003
    Posts:
    1,151
    Location:
    PA
    A few months ago. Got the Trojan Byteverify. Norton hadn't added it yet, but BitDefender, my on demand-scanner at the time, caught it in a jar archive.
     
  21. snowbound

    snowbound Retired Moderator

    Joined:
    Feb 18, 2003
    Posts:
    8,723
    Location:
    The Big Smoke
    Last month i was surfing for avatars,clicked on a link and got hit with the Trojan Byteverify.

    Nod32 caught it right away and shot it in the head.

    Just deleted the file and that was it.





    snowbound
     
  22. Peaches4U

    Peaches4U Registered Member

    Joined:
    Nov 22, 2002
    Posts:
    5,070
    Location:
    At my computer
    Here is a site for Avatars ... check it out... no virus there but then I never downloaded anything from them either. On another forum someone was using this site which is why I think it is virus free.

    http://www.palace4all.de/avatarpage/index.php3
     
  23. snowbound

    snowbound Retired Moderator

    Joined:
    Feb 18, 2003
    Posts:
    8,723
    Location:
    The Big Smoke
    Hi peaches :)

    Thanks for the link :D

    When i go looking for avatars now i'm quite leery because i actually forget the site i got the trojan from.

    It really shocked me that i could get hit just from clicking on a link.

    But then, this was my first infection ;)



    Thanks again



    snowbound
     
  24. sig

    sig Registered Member

    Joined:
    Feb 9, 2002
    Posts:
    716
    Just a digression for a bit, I still see people getting hit by byteverify exploits. They exploit a vulnerability in MS Virtual Machine and a patch was made available last April that *should* take care of it. Here's a link to the Bulletin regarding the patch and vulnerability: http://www.microsoft.com/technet/treeview/?url=/technet/security/bulletin/MS03-011.asp

    Might want to check it out and also visit Windows update to make sure you're covered.
     
  25. snowbound

    snowbound Retired Moderator

    Joined:
    Feb 18, 2003
    Posts:
    8,723
    Location:
    The Big Smoke
    Hi sig :)

    Actually after i got rid of the trojan i posted a hijackThis log.
    It was clean but Pieter told me about this same Virtual machine patch too.
    So i went to the sight and downloaded it right away.

    I actually had this patch when it first came out last april but it slowed my XP down to a crawl so i uninstalled it. There was some kind of a problem with the patch at that time.

    Thanks anyway :D


    snowbound
     
Thread Status:
Not open for further replies.