Focus on Virus Mode:
(Page 20 of 63)  < Prev  15 16 17 18 19 20 21 22 23 24 25  Next >
Re: email-borne viruses hit zero 2005-01-28
Bart Lansing kohls com

Our mail filters are stopping anywhere from 30-80k of virus-laden emails
weekly...that's what I see.

Bart Lansing
Manager, Desktop Services/Lotus Notes
Kohl's IT

Christine Kronberg <Christine_Kronberg (at) genua (dot) de [email concealed]> wrote on 01/28/2005
03:24:13 AM:

> On Thu, 27 Jan 2005, lsi wrote:
> >
> > Well I

[ more ]  [ reply ]
RE: email-borne viruses hit zero 2005-01-28
Mike Alexander (mike alexander mail moray gov uk)
I was slightly sceptical about the downward trend, but looking at our own
stats plus those on the Messagelabs website it would appear that there is a
slight downward trend over the course of 2004.

http://www.messagelabs.com/emailthreats/default.asp

The Virus Intercepts graph shows this trend over

[ more ]  [ reply ]
REVIEW: "Degunking Your Email, Spam, and Viruses", Jeff Duntemann 2005-01-26
Rob, grandpa of Ryan, Trevor, Devon & Hannah (rslade sprint ca)
BKDYESAV.RVW 20041205

"Degunking Your Email, Spam, and Viruses", Jeff Duntemann, 2004,
1-932111-93-X, U$24.99/C$37.99
%A Jeff Duntemann feedback (at) paraglyphpress (dot) com [email concealed]
%C Suite 115 4015 North 78th Street, Scottsdale AZ 85251
%D 2004
%G 1-932111-93-X
%I Paraglyph Press
%O U$24.99/C$37.99

[ more ]  [ reply ]
email-borne viruses hit zero 2005-01-27
lsi (stuart cyberdelix net) (1 replies)
Well I could be off the mark here as I only have access to a
microcosm of the net - but if my microcosm is a representative sample
then the rate per day of email-borne viruses is approaching zero.

That is, for the first time since MyDoom, I recently went a whole day
without receiving a single em

[ more ]  [ reply ]
Re: email-borne viruses hit zero 2005-01-28
Christine Kronberg (Christine_Kronberg genua de) (1 replies)
Re: email-borne viruses hit zero 2005-01-28
Karma (steve frij com)
how to filter the xmas virus 2004-12-17
lsi (stuart cyberdelix net)
Hmm, the Xmascard virus uses different headers and so skipped past my

existing filters, until I added the strings below:

UEsDBBQAA
TVoAAAAAAAAAAAAAUEUAAE

What to do with those strings? Well, you need to tell your mail
processing software to find messages with those strings in it, and
any it f

[ more ]  [ reply ]
Win32/Gaobot, Agrobot, Agobot virus info.. 2004-12-17
John (jkagema yahoo com)
Hello,

My LAN has been experiencing problems with this virus the last couple days. I've looked for
specific info on the virus being reported as "Win32/Agobot.NPM trojan" by Eset's NOD32 without
much luck. A couple workstations were indeed infected and I have used tools such as F-Secure's
Agobot re

[ more ]  [ reply ]
Re: what is the best procedure to track down a potentially new virus/worm/etc? 2004-12-16
H Carvey (keydet89 yahoo com)
In-Reply-To: <41BF4C2B.5080704 (at) technicalworks (dot) net [email concealed]>

John,

>> It it were UNIX, I could use commands like socklist and netstat to

>> track down the malware processes. But in Windows XP, I don't know what

>> to use. Are there any built-in utilities? Some freeware stuff? All

>> help is welcome.

>

[ more ]  [ reply ]
Re: what is the best procedure to track down a potentially new virus/worm/etc? 2004-12-16
H Carvey (keydet89 yahoo com)
In-Reply-To: <m38y86m1gw.fsf (at) pixie (dot) isrn [email concealed]et>

Rodrigo,

>My question is, what do you think is the best procedure to track down

>the executables responsible for this behavior?

Well, you have packet captures of the activity, showing the source ports on the infected systems. Go to each, and run t

[ more ]  [ reply ]
REVIEW: "Computer Viruses for Dummies", Peter Gregory 2004-12-16
Rob, grandpa of Ryan, Trevor, Devon & Hannah (rslade sprint ca)
BKCMVRDM.RVW 20041010

"Computer Viruses for Dummies", Peter Gregory, 2004, 0-7645-7418-3,
U$14.99/C$21.99/UK#9.99
%A Peter Gregory peter.gregory (at) hartgregorygroup (dot) com [email concealed]
%C 5353 Dundas Street West, 4th Floor, Etobicoke, ON M9B 6H8
%D 2004
%G 0-7645-7418-3
%I John Wiley & Sons, Inc.
%O U

[ more ]  [ reply ]
RE: what is the best procedure to track down a potentially new virus/worm/etc? 2004-12-16
Ziots, Edward (EZiots Lifespan org)
Even better, you can get tcpvcon from www.sysinternals.com and track ports
to the process that is loading it. Once you know your normal baseline
activity then you can detect rogue .exe's and other items that would be
spitting malicious traffic onto your newtwork. Also try out there
autoruns.exe util

[ more ]  [ reply ]
Re: what is the best procedure to track down a potentially new virus/worm/etc? 2004-12-15
xxp (xxp beelink com) (1 replies)
hi,

>
>It can't hurt, the ISP may or may not act on your information, but it is
>worth a shot. It would greatly help your case if you sent them copies of
>your logs containing the pertinent information..
>

Most of ISPs could not log the informations of connections considered safety,
maybe

[ more ]  [ reply ]
Re: what is the best procedure to track down a potentially new virus/worm/etc? 2004-12-16
Caeser Augustus (caeser augustus gmail com) (1 replies)
Re: what is the best procedure to track down a potentially new virus/worm/etc? 2004-12-17
Angus Lou (tenbinza yahoo com) (1 replies)
Re: what is the best procedure to track down a potentially new virus/worm/etc? 2004-12-18
Caeser Augustus (caeser augustus gmail com)
what is the best procedure to track down a potentially new virus/worm/etc? 2004-12-10
Rodrigo Ventura (yoda isr ist utl pt) (5 replies)

I have a couple of PCs (running XP) which I'm sure are infected with
some kind of malware. Common anti-virus such as OfficeScan and
Symantec do not detect them. They seem to be irc bots. They try to
connect to IRC servers, using a password, and receive from there
instructions on what to do, namely

[ more ]  [ reply ]
RE: what is the best procedure to track down a potentially new virus/worm/etc? 2004-12-14
Roger Padilla Jr (ropadill calpoly edu)
Re: what is the best procedure to track down a potentially new virus/worm/etc? 2004-12-14
John Barton (jbarton technicalworks net) (1 replies)
Re: what is the best procedure to track down a potentially new virus/worm/etc? 2004-12-14
John Barton (jbarton technicalworks net)
Re: what is the best procedure to track down a potentially new virus/worm/etc? 2004-12-14
Phil Nelson (pdn PhilNelson DNSalias net)
RE: Where to Deploy Trend Micro viruswall? 2004-12-07
bugtraq ingvysyabank com
Hi,
You can put the Trend Micro Viruswall at firewall/router
Internet
|
|
Cable Modem
|
|
Firewall/Router------------Antivurs Gateway server (TRENDMICRO VIRUS WALL)
|
|
Switch

Regards,
Mani

[ more ]  [ reply ]
Where to Deploy Trend Micro viruswall? 2004-12-05
Invalid Addr3ss (invalid_addr3ss excite com)
Hello All

I was wondering where to put a Trend Micro Viruswall in my network.
My basic setup follows below. SOHO

Internet
|
|
Cable Modem
|
|
Firewall/Router
|
|
Switch
/ | / | \
Linux | XP
|
Print Se

[ more ]  [ reply ]
Spyware remote removal 2004-11-30
Maskeri, Chris (Chris_Maskeri PremierInc com)
I have read the many threads on centrally located spyware tools. Are there
any remote removal tools available? If this includes a centrally located
one, that is fine too.

Thanks

Chris Maskeri
Premier Corporate IT Services
Software Certification & Deployment Engineer
Chris_Maskeri (at) premierinc (dot) com [email concealed]
**

[ more ]  [ reply ]
Re: Administrivia: Which virus is this? 2004-11-29
Jose Nazario (jose monkey org) (1 replies)
as a followup to marc's excellent reminder of links, a couple of links
related to this that people may want to know about ...

vgrep: http://www.virusbtn.com/resources/vgrep/
CME (from MITRE, forthcoming):
http://www.cbronline.com/article_news.asp?guid=11D11704-DE5B-45BD-AF4B-4
5D8F44E055C

vgrep

[ more ]  [ reply ]
Re: Administrivia: Which virus is this? 2004-11-29
Nick FitzGerald (nick virus-l demon co uk)
(Page 20 of 63)  < Prev  15 16 17 18 19 20 21 22 23 24 25  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus