Got a new computer a few week's ago and went to windows update plus a couple of hacking sites and then installed my virus scanner. I know i should of installed it first. i can't remember the virus name. I assumed i got it some how from one of hacking sites and didn't pay it much attention once i cleaned it.
Got talking to a complete stranger about computers and he warned me that many users at his forum was finding that they got infected from windows update.
Has anyone come accross this ???

It's not that they're getting infected FROM windows update...it's that they're getting infected from being on the internet period.

I remember reading somewhere that the average "life" of an unpatched winxp machine on the internet was somewhere around 10 minutes before a virus or exploit of some form had infected it. I won't even hook up a computer to the net now without at least a basic NAT box infront of it to protect it.

maybe it's blaster?

Hmm interestingly enough mate theres a few simple rules that I follow before connecting to the Net ...

1) Install Firewall of some sort I prefer Zonealarm Pro
2) Install an Antivirus , Perhaps Norton 2001 NT
3) Service Packs Perhaps 2/3...Depending....

Configure your Firewall Firstly... then... connect to the Net.... Update your AV.... to the Lattest viri.Def Files and Update(s) etc...

From there you should be pretty Safe... , but in saying this I also think that I have contracted some form of undetectable viri which is using services.exe to ocerload my cpu , cause on my win2k box my cpu usage is @ 96-99% right from start-up and it's something to do with network connections etc... haven't had much time to look into it... but for the last 4 days it's bin like this... Firewall,AV has bin stunned a lil also.. so I'm wondering what it is...

wkd...

Well ,If you want to use AV then use Kaspersky!
You can download that from
http://www.download.com
Dont use NAV...
Rest wicked is right..
~Faceless Master

there are better avs out
for example AntiVir Personal Edition, it is completly free for private use
and my favourite one panda antivirus http://www.pandasoftware.com/ with an included firewall, the firewall isn't the best but at least it's some basic security

give those scanners a try

don't use kavp but avp32 it's better then kavp.. it dected more


btw you better usa a dos based virus scanner.. i have some experients that i had a virus on the computer and the virus scanner couldn't remove it from the HDD .. so.

Xombe - Windowsupdate Virus (Web downloader then infects you with the main body)

I think its a email type thing thou...

wicked thanks for the file . when i go to install it gives me this

You may want to review the Anti-Virus Testing
that they have.

You can set the level of detail you would like to review and how many of the av products tested you want listed per row.

This will give you some interesting information on the various anti-virus products out there and how they scored on the testing.

Wicked is right on the install process.

Theres some good reading material on viri as well. You'll need to google for them. But will give you a better understanding of viri-worms-Trojans-polymorphics and parasitics.

As also may want to review the info on Win32.LnkRun exploit. This is against the IE broswer from v6 on down which effects all WinOS boxes.

Several other issues with the IE browser and there are several threads in this forum relating to it.

Hope that helps you out.

Wicked not sure if you have something like this, but may be of interest to you.
Auto-Start Viewer

Spookie,
Awesome tool guy. Used it at work, and got some good results from it. Thanks for the hook up.

Cop,
I had the same issue. Norton has a patch for this and when thats applied your AV will work. If you can't find it on their site, reply to this post and I will try to find it on one of the XP home comps we have at the house.

Panda's firewall sucks and so does the gui IMHO. THe AV ain't bad, but again the AV GUI sucks too.

Hello :-)

Well just to add my 2 cents...

If I were you I won't say that "Kaspersky is better" or "norton is better" or mcaffe ...

Well Maybe some of you know very well this fact : when "playing" with encryption methods / stealth tools (some of them works well enough) / or even simple patching , you can easily obtain a "modified" version of a given trojan which is "undetectable" (for a certain laps of time, of course) by some of these antivirus programs.

For example, I made some modifications of certain trojans and sometimes KAV pick it up, but Norton can't see anything. For an other version, It's Mcaffe who detect it, but norton and KAV are blind...
I even made my own versions of hxdef073 and hxdef100 (easy with the source) 100% undetectables, nor KAv, nor McAffe, nor Norton and none of the others are able to detect. (note: I WONT distribute them so don't ask for it).
Well it gives food for thought...

What I want to say is none of these antivirus are "The Best". For each of them it's possible to stealth a trojan or anything else, and lots of people are playing with it...

So, what to do ? I don't think personnally there's a "miracle" solution, but by combining different security tools, you can obtain , well , let's say an "acceptable security" (zero risk doesn't exist)

For example, don't install those big "security pack", i mean a suite of programs working together in order to monitor your system...It's so easy to defeat ;-)

Prefers differents tools, not from the same compagny, for Example:
Install at least:

- Spywareguard
- Mcaffe virus scan (or another antivirus)
- Kaspersky antivirus (or another antivirus different from the first of course)
- Firewall (your choice, Zone alarm is not too bad, I would personnaly prefer Looknstop, simple and efficient)
- Startup Monitor (there are a lots availables and free)
- A port blocker, ok, firewall do that too, but it's a second security if a malicious intruder kills your main firewall.

(For the two antivirus programs, for example one with constant monitoring and the other to scan once a day. Why Two antivirus ? Read before : because if one can't catch a trojan, the other may success in it)

And , like said wicked, install all services packs and security fix/updates availables, because the time when we were saying about windows "if it works, don't fix it" is over nowadays...

Well it's not a complete install, many other tools are needed to be "safe" (or something like that ;-) ) on the net, but you get an idea of my personnal install...


Starsky32 ;-)

P.S:
[Sorry for my poor english, but i'm french (it's not an excuse I must admit ) ]

Quit apologizing! You're doing fine, friend!

If you havent taken a look at bitdefender I would recommend you do.
Ive given most of the antivus packages out there for windows a run around and every aspect of bitdefender is very pleasing. The virus definition are updated sometimes as much as 3 or more times a day. Has script control . dial acitvily control .cookie control .
monitores the registry. Lets you know if something is packed with UPX even if it doesnt detect anything. Shows you files that are embeded , all kinds of stuff. I like it alot.