VIRUS AND OTHER STINKY STUFF TECHNICALLY SPEAKING INTERESTING SITES
VIRUS AND OTHER STINKY STUFF:
Beware of Avril Lavigne - WORM_LIRVA.C If you use Kazaa, ICQ or IRC chat you need to read about this one. (MLF) WORM_LIRVA.C is a multi-threaded mass-mailing worm that propagates via mapped network-shared drives, IRC, ICQ, and KaZaa Peer-to-Peer file sharing. This malware uses its own SMTP engine to propagate via email. WORM_LIRVA.C drops two copies of itself in the Windows temporary directory. The first copy has a file name randomly selected from a list of 21 possible file names. The second copy has a random file name with an extension of .TFT. It drops a copy of itself in the Windows system folder using an 11-character random file name and an .EXE extension. It also drops a text file in the Windows TEMP directory using the name AVRIL-II.INF. Then, it creates a registry entry that allows it to execute at every Windows startup. It arrives via email, in HTML format with a spoofed sender's email address in the "From" line. The Subject line is chosen from one of 16 possible selections and the Message Body contains one of four possible selections. The attachment can be one of 21 possible selections. This malware also has the capability to download an updated copy of itself. It tries to download from any of these Web sites below (all of these sites are currently down): http://web.host.kz/avril_lavigne/Avril.exe http://web.host.kz/avril/Avril.exe http://web.host.kz/avril_ii/Avril.exe In addition, this malware tries to download a possible backdoor from any of the Web sites below (all of these sites are currently down): http://web.host.kz/avril_lavigne/Bo2k_upx.exe http://web.host.kz/avril/Bo2k_upx.exe http://web.host.kz/avril_ii/Bo2k_upx.exe After downloading the backdoor and saving the file as Bo2K.exe in the System folder, it creates a registry entry so the backdoor is executed at every Windows startup. This malware also retrieves cached passwords and sends them to a specific email address, and it has the capability to terminate antivirus processes. On the 7th, 11th, and 24th of every month, this worm opens the default browser to http://www.avril-lavigne.com, and displays a window with spiral colors.
IF YOU SUSPECT THAT YOU HAVE A VIRUS OR IF YOU HAVE NOT SUCCESSFULLY SCANNED YOUR DRIVES FOR VIRUSES LATELY... THEN THE NEXT SUGGESTION IS FOR YOU. Free Virus scan. Trend Micro, more commonly referred to as Housecall, offers free virus scans and in most cases can fix damage down by a virus or worm that your computer may have contacted. The program works well. The first time one uses the free program it is necessary to download a small program. Trend Micro walks you through the process. Then the virus scans are quite simple for each return. You should disable any anti virus program that you have running. If you do not have a virus program I recommend that you use this program first and then download one of the free programs listed above of install any anti virus program you have purchased. Go to http://housecall.antivirus.com/ then choose the link "Scan without registering". Follow the directions.
Free Virus programs to download Quite a few KCnet members use these programs and like them. Be careful if you download a virus program and you already have one installed on your computer. You need to at least disable the program already installed. http://www.grisoft.com/html/us_index.cfm Another good free program to take a look at is: http://www.free-av.com/
10 Most Prevalent In-the-Wild Malware Surveyed by Trend Micro US (week of: December 30, 2002 to January 5, 2003) 1. WORM_YAHA.K 2. WORM_KLEZ.H 3. JS_EXCEPTION.GEN 4. WORM_BUGBEAR.A 5. JS_NOCLOSE.E 6. JS_SEEKER.E1 7. VBS_REDLOF.A 8. JOKE_RUSS.A 9. REG_STARTPAGE.A 10. WORM_OPASERV.E
Here are a few sites of many that can help you determine if an email is a hoax or real. http://www.urbanlegends.com/ulz/ http://vil.nai.com/VIL/hoaxes.asp http://kumite.com/myths/ http://www.symantec.com/avcenter/hoax.html http://www.scambusters.org/VirusHoaxes.html
TECHNICALLY SPEAKING: RETRIEVE YOUR PRODUCT KEY NUMBER Kim Komando came up with this one. Good to know. I needed to reinstall Windows the other day. And guess what? I could not find the Product Key! Yikes! Windows has a product key number that must be included when it or Office is installed. It's on the packaging for the CD, usually. If you've lost that, you can hunt around in the Windows Registry, but who has the time? There's another way to find the key: Use Magical Jelly Bean Keyfinder. This free program will dig the number from the Registry. It works with all versions back to Windows 95. It also works with Office XP and 97. I had my Product Key in seconds. So cool! Find it online here: http://www.magicaljellybean.com/keyfinder.html
My system seems sluggish. I know it has to do with all the programs that sit in my system tray, but how can I keep these programs from running at startup? We have covered this in the advanced class a couple of times but I never put the info in the newsletter. There are a few new tips here for those that have attended the Advanced Class Sessions. Thanks to Worldstart for the tips. I hate it when I install programs and they insist on starting when I boot the computer. You know the drill. You install something and it places an icon in your system tray. All those little icons you see in your system tray represent programs that are RUNNING. If a bunch of stuff loads when you start your computer, you may be maxing out your system before you launch your first regular program. So, if you find your computer getting progressively slower as you add more software, it could be that these system tray icons are, at least partially, at fault. In addition, program running in your system tray can cause any (or all) of the following problems: - Sluggish system speed - Frequent lockups / illegal operations - Software install problems - Difficulty in running some programs The more of these programs you have running, the more likely it is that you're going to see one or more of the problems mentioned above. Granted, System Tray programs are not the only cause for the conditions mentioned above, but they are the first place to look. So, how do you keep all these unwanted programs at bay? 1. Click the Start button and select Run... 2. Next, type in: msconfig Then hit OK. 3. The System Configuration Utility should run (please note that not all computers have it installed -see note below). 4. Click the Startup tab. 5. You'll see a listing of all the stuff that starts itself when your computer does. Just uncheck the programs you don't want to load and leave the rest alone. Note - If you don't have msconfig on your system (win 95 / 2000 doesn't) then check out Startup Control Panel at: http://www.mlin.net/StartupCPL.shtml It does basically the same thing. Once you get msconfig or the program above running, you'll probably see more stuff than you bargained for. I would advise exercising caution while unchecking, especially if you're not sure about what program(s) you're suppressing. Stuff like "Scan Registry" and "System tray" are probably best left alone. If you see stuff that you recognize as being non-essential software, than uncheck it. This is one of those do at your own risk things - for sure. If you're not sure which program is being referred to, look at the path. Sometimes the folder just before the ".exe" file can give you a clue as to what program you're dealing with. For example, if I see something like: "C:\program files\real\realplayer.exe" I can guess the program in question is the ever annoying Real Player. In general, don't disable stuff that starts like this: "C:\Windows\" Or stuff like this: SysTray.exe These are more likely to be important system files and programs. You may find that your computer won't run without them and you'll have to go into Safe mode to get things working again. Finally, note that unchecking this stuff doesn't remove it. The idea behind having these programs start when the computer does is to give you fast, easy access to them. However, having too many of these programs running at the same time can hit you hard in the system resources department. I personally make sure anything I don't need isn't running. If I need it, I'll click on it's shortcut.
Windows Key Shortcuts Good Ones from Worldstart The Windows key has this picture on it: It's located between your CTL & ALT keys. Here are some common windows keyboard shortcuts (you'll need a "windows" keyboard to try these) Hold down the "windows" key and press: M - Minimizes all windows SHIFT - M - Undo minimize all windows E - Opens Windows Explorer D - Switches between minimizing all open programs and showing them all. F - Opens the Find Window R - Opens the Run Window BREAK / PAUSE- Opens System Properties TAB - Cycles through items on the task bar Or just press the Windows key to open the Start menu. General Shortcuts ALT- F4 - Quit a program / Shut down ALT-TAB - Hold down the ALT key and hit tab to cycle through open windows. CTL-ESCAPE - Display the Start menu SHIFT - TAB - tab backwards through a form CTRL - X - Cut CTRL - C - Copy CTRL - V - Paste F1 - Help menu CTRL - Z - Undo SHIFT & Restart - To restart just windows and not your whole computer, hold down the shift key when you click the OK button on the shutdown screen. Saves lots of time. (not for XP) CRTL-TAB - Navigate tabs on a tabbed screen File & Desktop Shortcuts Hold SHIFT while inserting a CD - Prevents the CD from "autorunning" If an item is selected: CTRL while dragging a file - Copies the file CTRL - SHIFT while dragging a file - Creates a shortcut to the file SHIFT - DELETE - Deletes an item without sending it to the recycle bin. ALT-ENTER - Display a file's properties. F2 - To rename the file In Windows Explorer: LEFT ARROW - Collapse the current selection if it is expanded NUM LOCK-MINUS SIGN (-) - Collapse the selected folder RIGHT ARROW - Expand the current selection if it is collapsed -Or- Select the first subfolder NUM LOCK- * Expand all folders below the current selection NUM LOCK- PLUS SIGN (+) - Expand the selected folder F6 - Switch between left and right panes In My Computer: BACKSPACE - View the folder one level up ALT- RIGHT ARROW - Move forward to a previous view ALT- LEFT ARROW -Move backward to a previous view
Exporting Microsoft Internet Explorer Favorites By Sue Whitehouse of Emazing If you use both Microsoft Internet Explorer and Netscape 6/7, you may find that the Netscape Bookmarks no longer math the IE 6 Favorites. You can solve this problem by exporting your IE Favorites to Netscape. To do this, run Microsoft Internet Explorer and choose File|Import and Export. When the Import/Export wizard opens, click Next. Select Export Favorites and click Next. You can now select a folder or the entire Favorites folder and click Next. Since IE will most likely find the correct location for your Netscape Bookmarks, all you have to do is click Next again. When asked if you want to replace the Bookmark file, click Yes. Now, click Finish and your Netscape Bookmarks will match your IE Favorites.
CAMEL LIMO INTERESTING SITES : PENNSYLVANIA POWER LIBRARY Here is a winner. I'll bet you did not know that Pennsylvania has a special Library program called POWER LIBRARY. Various libraries throughout the state participate. The POWER Library is offered as a service of Pennsylvania's public libraries, school libraries and the State Library. The POWER library allows you to access thousands of full text periodical articles, newspapers, a major encyclopedia, plus photographs, pictures, charts, maps, reference materials for young people and more. You will find materials of interest in most subject areas for all age groups from young children to adults. The POWER Library is available at Pennsylvania public libraries, school libraries and the State Library. You can access the resources of the POWER Library from home by going to your public library's web page. To access the resources you will need to enter the barcode number located on your valid library card. You can access the virtual library from home simply by typing the barcode didgets from your local cooperating library card. We have at least four participating libraries in our dialing area. They are: http://www.rosslibrary.org/ http://www.ncldistrict.org/jerseyshore/ http://www.ncldistrict.org/renovo/ http://www.jvbrown.edu/
Medical Information on the Internet The following was found in a Kim Komando Newsletter and contain some excellent links pertaining to health and medicine. These would be good additions to your Favorites or your Bookmark lists. Whether you need help coping with a medical condition, or you're interested in prevention, the Internet can help. Several sites offer general health articles and the ability to research specific diseases. For starters, there's the Mayo Clinic, http://www.mayoclinic.com, site, which is associated with the Rochester, Minn., organization. Go here to look up a disease or condition and get a collection of information and tools to manage your condition. Covering cancer, middle ear infections and hormone replacement therapy, the site's health decision guides will help you choose which treatment is best for you. WebMD, http://www.webmd.com, also offers free information on a wide range of conditions and diseases. MEDLINEplus, http://www.medlineplus.gov, is run by the National Library of Medicine and the National Institutes of Health. It has distinctly non-commercial feel. This site offers a long list of diseases and conditions and an extensive list of drugs. A complete site for the elderly is Health and Age, http://www.healthandage.com. It includes nutrition advice and information on a wide range of diseases and conditions. Another site offering health information for the elderly is the National Institute on Aging, http://www.nia.nih.gov/health. The American Heart Association, http://www.americanheart.org, offers information on heart disease, a risk assessment and cooking tips. Help also is offered by the American Stroke Association, http://www.strokeassociation.org, and the American Cancer Society, http://www.cancer.org. There are many other sites that offer more specialized advice. The federal government operates a database, http://www.healthfinder.gov, with links to a number of organizations. If you need a specific medical question addressed, try Med Help International, http://medhlp.netusa.net. Medical professionals (doctors or nurses, usually) answer each question. People who also have the condition chime in, offering encouragement and experience. If you are struggling with a condition and feeling isolated, try Med Help. A second service, Ask A Doctor, is misnamed--it provides opinions from three doctors. It charges $16.95 per question. Ask A Doctor, http://www.askadoctor.com, says it has thousands of board-certified doctors available. Every question is answered by e-mail, not via message board. Ask A Doctor says that in most cases, answers arrive within an hour. The money is split among the doctors who answer the question and the Web site. As the site points out, the charge is less than most co-pays. Planning a trip overseas? Check sites run by the State Department, http://travel.state.gov/medical.html, and the National Center for Infectious Diseases, http://www.cdc.gov/travel. The latter is more user-friendly. Among other things, it contains information on problems at various destinations, outbreaks around the world, data on specific diseases and recommended vaccinations. The State Department site is bare-bones, but it has links to many other useful sites. It also contains information on how travelers can access consular help if they fall ill. Finally, don't forget about medical trials. These involve experimental drugs or procedures, and are usually free. Check CenterWatch, http://www.centerwatch.com, and ClinicalTrials.gov, http://www.clinicaltrials.gov. As you explore these medical sites, keep this in mind: Self-diagnosis can be dangerous. Or, you could convince yourself that you are ill when you are not. Don't substitute the Web for a visit to your doctor.
StarryScapes Suggested by Amanda of Worldstart “Welcome to Loke Kun Tan's Astrophotography website which displays photographic images of celestial objects adorning our night skies. Some of the objects are visible to the naked eye, such as the bright and spectacular Comets Hyakutake and Hale-Bopp. Other objects, such as gaseous nebulae and galaxies, can be extremely faint and are visually evident only in telescopes or through long exposure photography.” Did that grab your attention? It did mine, I sure couldn’t think of a better way to say it. Now let me tell you about these pictures; they are phenomenal. You can even choose what kind of things you want to look at: Comets, Galaxies, Nebulae, Star Clusters, or H-Alpha. I love the Nebula section, the pictures are in color and my favorite is NGC7000 North American and IC5070 Pelican Nebulae. The color photos really take your breath away, and make great wallpaper for your desktop. However, please don’t just set these images as wallpaper, read the copyright info and ask. http://www.starryscapes.com/etc/profile.html
Mr. Smarty Pants Knows Amanda again. Visit the Fact-O-Matic, type in a single word and find all occurrences of that word in Mr. Smarty Pant’s database. Or you can just jump right in head first to the topics, and browse to your heart’s content. I choose the odd topic heading of Flan. Knowing that flan was a desert, I was curious as to what interesting factoids I could find on it. Here are some of the results: “In El Salvador, flan is called flan de horchata because it is made with a milk-based almond drink sold across the country.” “Spanish writer Vital Aza once said, "If you eat flan, you have a hearty appetite.” “The Green Burrito chain of Mexican restaurants in California added flan to its menu in January 1991. In an interview with The Los Angeles Times, Ruben Rodriguez, chairman of Green Burrito's parent company GB Foods Corp., said the move was due to the fact that, "flan is very popular with Hispanics, and with it, we believe we can attract a larger share of the Hispanic market into our restaurants." When it came to naming the new dessert selection, Green Burrito chose a name with a distinctly Anglo ring: "Flan-Tastic." http://www.austinchronicle.com/mrpants/
GET THE GAME'S RATING BEFORE YOU BUY Buying a computer or video game for the kids in your family? Check the rating first! The ESRB is an independent, non-profit organization that has developed a comprehensive rating system for computer and video games to help you decide which games are right for your home. Just search for the game's title here: http://www.esrb.org/
Catfish By Nick Sundberg of Emazing Catfish has gone through many changes in recent years. Most of the fillets sold in stores today are farm raised. Their diets are strictly controlled. This produces a milder flavor. New varieties are also appearing (like the Basa from Southeast Asia). For more information and recipes access the Catfish Institute's web page. http://www.catfishinstitute.com/