tag:blogger.com,1999:blog-11308999.post7470025591045129239..comments2023-10-20T14:32:22.803+00:00Comments on Scripty Ramblings and alike.: IMG00231.JPG-live.messenger InfectionStuart Bennetthttp://www.blogger.com/profile/01321301018776043379noreply@blogger.comBlogger3125tag:blogger.com,1999:blog-11308999.post-21902256791403776172008-04-23T17:00:00.000+00:002008-04-23T17:00:00.000+00:00Hey thanks for the advice, I got this virus which ...Hey thanks for the advice, I got this virus which stopped me from even connecting to the net, your advice got me back online but I'm a bit stuck on the end part. I've deleted the entry in the registry editor and restarted my PC (which then let me back on the net) but when going into the cmd screen it won't acknowledge the command (the 'attrib -r-h-s msn.com') part onwards, just says things like 'invalid switch -r-h-s' or 'incorrect parimeter'. Any chance you could guide me on where I'm going wrong? ThanksAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-11308999.post-79065530482795110712008-04-12T02:57:00.000+00:002008-04-12T02:57:00.000+00:00I had a similar MSN Messenger invitation to visit ...I had a similar MSN Messenger invitation to visit a related site:<BR/><BR/>http://album.gigacities.net/email.php?=[my HOTMAIL e-mail address]<BR/><BR/>The MSN Message said:<BR/><BR/>"hey, is this your picture ?! http://album.gigacities.net/email.php?=[my HOTMAIL e-mail address]"<BR/><BR/>Following the link (NOT RECOMMENDED), yields the file:<BR/><BR/>IMG00231[1].JPG-www.imageupload.com<BR/><BR/>It is shown to have Size 39,424 bytes and Size on disk: 40,960 bytes.<BR/><BR/>This is an MS-DOS .com application that presumably delivers the MSN virus / worm payload.<BR/><BR/>I was a little disappointed that my current version of Symantec Endpoint Protection with CURRENT threat protections as of TODAY 11 APR 2008 did NOT detect or quarantine this worm. But this is not unusual in the case of Trojans of this type.<BR/><BR/>I wanted to alert ALL that this worm is now using variant album.gigacities.net rather than only photogallery.gigacities.net<BR/><BR/>See also: http://www.siteadvisor.com/sites/gigacities.net/postid?p=823036 <BR/>http://en.wikipedia.org/wiki/Backdoor.Win32.IRCBotAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-11308999.post-21584666535839350532008-04-07T13:17:00.000+00:002008-04-07T13:17:00.000+00:00Hey, thanks for this post. It helped me get that v...Hey, thanks for this post. It helped me get that virus off my system! =)Anonymousnoreply@blogger.com