Comments for mxlab - all about anti virus and anti spam

Comment on New trojan variant in emails with subject “DHL Delivery Notification Message” by Leanne Jeans

Leanne Jeans — Thu, 09 Feb 2012 14:53:11 +0000

L.Jeans
I had no idea that this had been a problem. I am normally very aware of things like this. Can anyone advise me on what to do? Or how it can affect my computer??

Comment on DHL Express Notification with malware attached by Perry Glasser

Perry Glasser — Tue, 07 Feb 2012 22:32:15 +0000

I got three at once

Comment on Directory scam: Registration of the World Company Register 2011/2012 by Marcos

Marcos — Tue, 07 Feb 2012 14:27:04 +0000

Never respond to them. This is the only way to leave you in peace…
Since you answer they are happy and run behind you…

Comment on Directory scam: Registration of the World Company Register 2011/2012 by Srinivas

Srinivas — Tue, 07 Feb 2012 13:33:01 +0000

If anyone of you has friends who can hack sites this is the time to use them.
Bring down the websites of EU business Directory and crash the servers who host such companies.
Make them run for cover by keeping their websites crashed all the time.
Even their mails will not work and that will prevent them from disturbing people.

Comment on Emails from USPS with subject Your Postal Package N*** contains a trojan by Nathan

Nathan — Mon, 06 Feb 2012 17:10:26 +0000

You’re probably in “Safe Mode” which turns your screen back into a command user based interface instead of a graphics user based interface.

When I restart my computer, it gives me the option of using either “Safe Mode” or something like “Start Windows Normally.” You want to click that.

All this is assuming the virus hasn’t already corrupted your system and won’t allow you to go back. If that is the case, find someone with intense computer knowledge or hire someone from “Geek Squad” to help you.

Hope this helps…

Comment on ‘DHL Notification’ with tracking number in attachment is a trojan by Dave

Dave — Sat, 04 Feb 2012 17:44:47 +0000

Add another dummy to the list. On 1/31/12 I got the DHLtracking email and in a moment of stupidity I tried to open the attachment, didn’t see it was a zip file. After a bit I realized I had been had. Used my AVG malware scanner to check both the zip and exe files. Both were clean. I was still worried so I did a system restore to a few days earlier. I also searched out and trashed any files with DHL in them, only about 3 or 4. I also trashed all temp internet files created on that date.

A couple days later AVG finally found the Trojan horse threat,”Trojan Horse Crypt.APKO” located in C;\system volume information\.. AVG put it into the AVG Virus vault where it will be automatically eliminated in a user defined time period – I chose 2 days, the default is 30.

Everything seems ok on the PC with one exception. Initially I could not connect to the Internet. I found the driver was disabled by looking in the Hardware Device Manager. Now, I cannot disconnect without going back into the Device Manager. I am not sure if it is due to the malware or if I was too zealous in deleting files back on the 31st. I cannot disconnect or disable the PC from the Internet. I tried uninstalling and reinstalling the NIC driver from D-Link with no success (I checked and found I had the latest rev.).

This message is being entered on another PC. I have physically disconnected the infected PC and am not sure if it is safe to use.

My questions:
1) What happens to an affected PC? Does the malware steal files`or info? Does it disable anything?

2) How do I ensure I have killed it?

Thanks in advance for any help.

Dave

Comment on Emails from USPS with subject Your Postal Package N*** contains a trojan by Richard Middleton

Richard Middleton — Fri, 03 Feb 2012 06:55:45 +0000

In my case the purported sender was “your-support@usps.com”.. This was so obviously bogus (that’s not how USPS notifies one of problems) that I simply deleted the message immediately.. Thank you everybody for your posts on this malware.

Comment on Emails from USPS with subject Your Postal Package N*** contains a trojan by An Brown

An Brown — Fri, 03 Feb 2012 03:31:22 +0000

Today i received and email from USPS re: a package with a parcel number that I was to pick up, I guess. The email immediately caused me the distrust it. USPS has never emailed me for any reason, especially for a package in my name that I needed to pick up. Immediately I erased the email and then Googled this subject to see if there were others who have received the same. So glad I did not open the email. My instincts were accurate!!!!! An883

Comment on New trojan variant in emails with subject “DHL Delivery Notification Message” by lcushing1

lcushing1 — Fri, 03 Feb 2012 02:17:59 +0000

I suspected this one, the main clues being the top “Hello Dear” without my name and the fact that it was a zipped file rather than an actual message. The “customer reference” and “tracking numbers” do change, but upon entering the “tracking number” into the (real, supplied) DHL tracking URL it didn’t recognize it.

Comment on ‘DHL Notification’ with tracking number in attachment is a trojan by Mick

Mick — Wed, 01 Feb 2012 06:19:49 +0000

The other thing that aroused my suspicion was that the email started with “Hello Dear.”
Nobody has greeted me in that way for decades!