event manager security URGENT PLEASE HELP HELP HELP
From: sgopus (fredd_at_hotmail.com)
Date: 06/25/03
- Next message: Aaron Margosis [MS]: "Re: personal use"
- Previous message: Cap: "Re: THE BEST KEPT SECRETS OF THE COMPUTER UNDERGROUND"
- In reply to: HELEN: "event manager security URGENT PLEASE HELP HELP HELP"
- Next in thread: hel8itch: "event manager security URGENT PLEASE HELP HELP HELP"
- Reply: hel8itch: "event manager security URGENT PLEASE HELP HELP HELP"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 24 Jun 2003 21:19:03 -0700
before you use the cleaner, do a search on your system for
any files that have more then one ending on them.
For example if you have a file that ends like this
.exe.scr or .jpg.scr then you have the klez for
certain.
run msconfig and send back whats running at startup!
see if you can detail the properties of that icon that says
Chris's home page, just right click on it and view
properties, post back with that info!
visit here for a free online virus scan, highly
recommended. http://housecall.trendmicro.com/
visit here for a free trojan scan (in case the virus scan
doesn't see it)
http://webzila.com/virusscan.html
I suggest that you also check to see if someone has
installed a key logger onto your system, visit here and
page down a bit for the trial version
http://www.networkdecisions.com/freestuff.html
Not sure just what is going on, but gathering data never
hurts! if someone else has a clue feel free to pitch in!
>-----Original Message-----
>HI I HAVE ADAWARE.PLUS WINXP FIREWALL.ANOTHER STRANGE
>THING IS I WAS USING MSN MESSENGER JUST NOW TALKING TO 2
>SEPERATE PEOPLE AND ONE OF THEM SAID THERE WAS A MESSAGE
>ON TOP OF HIS WINDOW SAYING THE PERSON YOU ARE TALKING TO
>HAS A VIRUS SEND THEM THE KLEZ.EXE REMOVAL TOOL.THE OTHER
>PERSON HAD NO SUCH MESSAGE.I DONT KNOW WHERE HE GOT IT
>FROM I THINK THE MESSAGE DISPLAYED A LINK TO IT,HE SENT
>IT TO ME,I WENT TO OPEN IT IN MY MAIL AND IT SAID IT WAS
>A VIRUS AND MSN CANNOT REPAIR IT.SO NOW IM DOWNLOADING
>THE REAL REMOVER.I WISH SOMEONE COULD TELL ME WHAT IS
>HAPPENING TO MYPC!!!
>
>
>>Not sure if this is the case, but do this!
>>Get adaware and spybot. also do a search on google for
>>Trojans, enable your firewall.
>>
>>looks like this is coming from norton Antivirus updating
>>it's files, not sure though!
>>
>>
>>
>>
>>>-----Original Message-----
>>>hi i was checking the event manager today looking at
>>>errors etc.and under the security section there are
>alot
>>>of warnings that say the following:Event Type:
> Warning
>>>Event Source: WinMgmt
>>>Event Category: None
>>>Event ID: 63
>>>Date: 23/06/2003
>>>Time: 10:37:12
>>>A provider, OffProv10, has been registered in the WMI
>>>namespace, Root\MSAPPS10, to use the LocalSystem
>>>account. This account is privileged and the provider
>may
>>>cause a security violation if it does not correctly
>>>impersonate user requests.
>>>
>>>what does this mean???there are several of the same
>>>warning.and another odd thing is that there is an icon
>>>that has appeared on the right side of my start menu
>that
>>>i never put their and i cannot delete.its
>named "chris's
>>>home page".has someone accessed my pc??please can
>someone
>>>advise me what i should do.im running windows xp.
>>>.
>>>
>>.
>>
>.
>
- Next message: Aaron Margosis [MS]: "Re: personal use"
- Previous message: Cap: "Re: THE BEST KEPT SECRETS OF THE COMPUTER UNDERGROUND"
- In reply to: HELEN: "event manager security URGENT PLEASE HELP HELP HELP"
- Next in thread: hel8itch: "event manager security URGENT PLEASE HELP HELP HELP"
- Reply: hel8itch: "event manager security URGENT PLEASE HELP HELP HELP"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
