Welcome to the Australian Ford Forums forum.

You are currently viewing our boards as a guest which gives you limited access to view most discussions and inserts advertising. By joining our free community you will have access to post topics, communicate privately with other members, respond to polls, upload content and access many other special features without post based advertising banners. Registration is simple and absolutely free so please, join our community today!

If you have any problems with the registration process or your account login, please contact us.

Please Note: All new registrations go through a manual approval queue to keep spammers out. This is checked twice each day so there will be a delay before your registration is activated.

Go Back   Australian Ford Forums > General Topics > Non Ford Related Community Forums > The Bar

The Bar For non Automotive Related Chat

Reply
 
Thread Tools Display Modes
Old 26-10-2005, 09:51 PM   #1
LUXO_8
windsor user
 
Join Date: Dec 2004
Location: Geelong
Posts: 13,123
Default bloody MSN Virus

hey all...
earlier, Ed - (ie DentEd XR8) popped up on msn and "said"

"wow, this is you? http: / / www . messengerstats . net / profile . php ? msn = [madnc _ 8 @ hotmail . com]"
(ive added spaces incase someone tried to click the above)
anyway I clicked the link, which downloaded a file, and it autoran the virus. corrupting my computer.


ive tried running norton av, the virus wont allow me to download or update adware etc..

HELP....

LUXO_8 is offline   Reply With Quote Multi-Quote with this Post
Old 26-10-2005, 10:00 PM   #2
EFFalcon
Last warning
 
EFFalcon's Avatar
 
Join Date: Dec 2004
Location: Mornington Peninsula, Victoria HeadCount: 3
Posts: 11,194
Default

there should be a proper removal tool for that virus.
__________________
FALCN6 - Turbo, Air Bag Suspension - Hibernating
EL GT - Supercharged
NASCAR - 83 Thunderbird , Bagged
DAILY - BA Fairlane Ghia, Boss 260 Turbo
OFFROADER - Ford Explorer
EFFalcon is offline   Reply With Quote Multi-Quote with this Post
Old 26-10-2005, 10:01 PM   #3
Stevo
FF.Com.Au Hardcore
 
Join Date: Dec 2004
Location: Sth East Melb
Posts: 2,357
Default

whats the name of the virus
__________________
Heritage Green EL Ghia
Black AUII XR8 Ute
Stevo is offline   Reply With Quote Multi-Quote with this Post
Old 26-10-2005, 10:23 PM   #4
LUXO_8
windsor user
 
Join Date: Dec 2004
Location: Geelong
Posts: 13,123
Default

Quote:
Originally Posted by EFFalcon
there should be a proper removal tool for that virus.
the virus wont allow you to access and of the virus sites

Quote:
Originally Posted by Stevo
whats the name of the virus
no idea......
LUXO_8 is offline   Reply With Quote Multi-Quote with this Post
Old 26-10-2005, 10:27 PM   #5
Feathers
Lucifer's Angel
 
Feathers's Avatar
 
Join Date: Dec 2004
Location: Sydney
Posts: 5,282
Default

Try this
http://securityresponse.symantec.com...oval.tool.html
from this thread...
http://www.fordforums.com.au/showthr...ighlight=virus
__________________
SINISTER BA XR6
Blueprint, manual, 4490's, Redback 2.5" dual exhaust, BA Typhoon rims, tint, fog light covers, BF tailights, blue illuminated window switches, Ghia bootlid carpet, lower grille, FPV door spears, steering wheel & interior bits, XR6T + F6 intake, K&N filter, Typhoon spoiler, tuned, sway bars, custom angel eyes & plates..YUM!

If there's one thing guys in Holdens hate more than being beaten by a Ford...
It's being beaten by a girl driving a Ford
Feathers is offline   Reply With Quote Multi-Quote with this Post
Old 26-10-2005, 10:36 PM   #6
LUXO_8
windsor user
 
Join Date: Dec 2004
Location: Geelong
Posts: 13,123
Default

the virus wont allow me to click that link......

"the connection was refused when contacting symantec blah blah..."
LUXO_8 is offline   Reply With Quote Multi-Quote with this Post
Old 26-10-2005, 10:31 PM   #7
EB_5.0_WAGON
Formerly known as NUDGE
 
EB_5.0_WAGON's Avatar
 
Join Date: Jan 2005
Location: Brisbane
Posts: 327
Default

yeah i got hit with it before ED got it and i did the same thing and thats how ED got it.

It seems to go through your whole MSN list and hits everyone on your list
__________________
My Ride
BF Mk11 Ute
Mrs Ride
2004 Toyota Prado GXL
EB_5.0_WAGON is offline   Reply With Quote Multi-Quote with this Post
Old 26-10-2005, 10:37 PM   #8
AdzT3-146
own the road
 
AdzT3-146's Avatar
 
Join Date: Jan 2005
Location: Melbourne
Posts: 2,764
Default

Quote:
Originally Posted by nudge
yeah i got hit with it before ED got it and i did the same thing and thats how ED got it.

It seems to go through your whole MSN list and hits everyone on your list
... blocks and deletes wayne...
lol.
__________________
T3 TE50 #146


Quote:
Originally Posted by UNR8D
Id rather date a goat with syphilous then drive a maloo.
AdzT3-146 is offline   Reply With Quote Multi-Quote with this Post
Old 26-10-2005, 10:37 PM   #9
LUXO_8
windsor user
 
Join Date: Dec 2004
Location: Geelong
Posts: 13,123
Default

Quote:
Originally Posted by ef_classic
... blocks and deletes wayne...
lol.
do it then DGAF
LUXO_8 is offline   Reply With Quote Multi-Quote with this Post
Old 26-10-2005, 10:36 PM   #10
svo347
AFF's 1st DM.......
 
svo347's Avatar
 
Join Date: Dec 2004
Location: Wha???... There is only 2 states 2 be in.. WA or Drunk..
Posts: 6,200
Default

Good thing I dont have either of you on my list then...
__________________
FORD GIVING POWER TO THE PEOPLE
Alloy headed 347ci EDXR8
13.21 @107.7mph
Quote:
Originally Posted by zetec
I know what lengths they go to to ensure it's more than just a Ford sticker on the part. Ford doesn't throw it's name on anything for a quick buck.
06 Turbo Terri AWD 6 sp in Neo with stuff i didnt even need, side steps,15.2 inch roof mounted DVD,Pioneer $tezza,Selby 30/18mm swaybars,debunged,100 cpsi Ballistic cat,Plazmaman under battery Cai injectors 14/lb boost,ZF tuned,Xtreme's magic. :
svo347 is offline   Reply With Quote Multi-Quote with this Post
Old 26-10-2005, 10:36 PM   #11
Feathers
Lucifer's Angel
 
Feathers's Avatar
 
Join Date: Dec 2004
Location: Sydney
Posts: 5,282
Default

Shyte... I have like 30 forums people on my list....
__________________
SINISTER BA XR6
Blueprint, manual, 4490's, Redback 2.5" dual exhaust, BA Typhoon rims, tint, fog light covers, BF tailights, blue illuminated window switches, Ghia bootlid carpet, lower grille, FPV door spears, steering wheel & interior bits, XR6T + F6 intake, K&N filter, Typhoon spoiler, tuned, sway bars, custom angel eyes & plates..YUM!

If there's one thing guys in Holdens hate more than being beaten by a Ford...
It's being beaten by a girl driving a Ford
Feathers is offline   Reply With Quote Multi-Quote with this Post
Old 26-10-2005, 10:39 PM   #12
EB_5.0_WAGON
Formerly known as NUDGE
 
EB_5.0_WAGON's Avatar
 
Join Date: Jan 2005
Location: Brisbane
Posts: 327
Default

MADNC_8 i got it the exact same way you got it.
I tried to open the link you had in your post and it came up the same.
Im doing a virus scan now to see if i can get rid of it
__________________
My Ride
BF Mk11 Ute
Mrs Ride
2004 Toyota Prado GXL
EB_5.0_WAGON is offline   Reply With Quote Multi-Quote with this Post
Old 26-10-2005, 10:41 PM   #13
svo347
AFF's 1st DM.......
 
svo347's Avatar
 
Join Date: Dec 2004
Location: Wha???... There is only 2 states 2 be in.. WA or Drunk..
Posts: 6,200
Default

madnc8 whats ya email addy ill send it to you in a file if you wish.....
__________________
FORD GIVING POWER TO THE PEOPLE
Alloy headed 347ci EDXR8
13.21 @107.7mph
Quote:
Originally Posted by zetec
I know what lengths they go to to ensure it's more than just a Ford sticker on the part. Ford doesn't throw it's name on anything for a quick buck.
06 Turbo Terri AWD 6 sp in Neo with stuff i didnt even need, side steps,15.2 inch roof mounted DVD,Pioneer $tezza,Selby 30/18mm swaybars,debunged,100 cpsi Ballistic cat,Plazmaman under battery Cai injectors 14/lb boost,ZF tuned,Xtreme's magic. :
svo347 is offline   Reply With Quote Multi-Quote with this Post
Old 26-10-2005, 11:16 PM   #14
LUXO_8
windsor user
 
Join Date: Dec 2004
Location: Geelong
Posts: 13,123
Default

Quote:
Originally Posted by svo347
madnc8 whats ya email addy ill send it to you in a file if you wish.....
thanks anyway.. ran it but didnt work though :(


might just pay a computer place to fix it
LUXO_8 is offline   Reply With Quote Multi-Quote with this Post
Old 26-10-2005, 10:43 PM   #15
LUXO_8
windsor user
 
Join Date: Dec 2004
Location: Geelong
Posts: 13,123
Default

would be awesome if ya could

ill pm you
LUXO_8 is offline   Reply With Quote Multi-Quote with this Post
Old 26-10-2005, 10:43 PM   #16
EB_5.0_WAGON
Formerly known as NUDGE
 
EB_5.0_WAGON's Avatar
 
Join Date: Jan 2005
Location: Brisbane
Posts: 327
Default

if you try to send a .exe file. you wont be able to open it.
to do it you would need it zipped first so you can open it.
__________________
My Ride
BF Mk11 Ute
Mrs Ride
2004 Toyota Prado GXL
EB_5.0_WAGON is offline   Reply With Quote Multi-Quote with this Post
Old 26-10-2005, 10:49 PM   #17
svo347
AFF's 1st DM.......
 
svo347's Avatar
 
Join Date: Dec 2004
Location: Wha???... There is only 2 states 2 be in.. WA or Drunk..
Posts: 6,200
Default

ok zipped file on its way
__________________
FORD GIVING POWER TO THE PEOPLE
Alloy headed 347ci EDXR8
13.21 @107.7mph
Quote:
Originally Posted by zetec
I know what lengths they go to to ensure it's more than just a Ford sticker on the part. Ford doesn't throw it's name on anything for a quick buck.
06 Turbo Terri AWD 6 sp in Neo with stuff i didnt even need, side steps,15.2 inch roof mounted DVD,Pioneer $tezza,Selby 30/18mm swaybars,debunged,100 cpsi Ballistic cat,Plazmaman under battery Cai injectors 14/lb boost,ZF tuned,Xtreme's magic. :
svo347 is offline   Reply With Quote Multi-Quote with this Post
Old 26-10-2005, 10:52 PM   #18
svo347
AFF's 1st DM.......
 
svo347's Avatar
 
Join Date: Dec 2004
Location: Wha???... There is only 2 states 2 be in.. WA or Drunk..
Posts: 6,200
Default

also sent winrar as thats the program i use to zip files..
__________________
FORD GIVING POWER TO THE PEOPLE
Alloy headed 347ci EDXR8
13.21 @107.7mph
Quote:
Originally Posted by zetec
I know what lengths they go to to ensure it's more than just a Ford sticker on the part. Ford doesn't throw it's name on anything for a quick buck.
06 Turbo Terri AWD 6 sp in Neo with stuff i didnt even need, side steps,15.2 inch roof mounted DVD,Pioneer $tezza,Selby 30/18mm swaybars,debunged,100 cpsi Ballistic cat,Plazmaman under battery Cai injectors 14/lb boost,ZF tuned,Xtreme's magic. :
svo347 is offline   Reply With Quote Multi-Quote with this Post
Old 26-10-2005, 10:53 PM   #19
LUXO_8
windsor user
 
Join Date: Dec 2004
Location: Geelong
Posts: 13,123
Default

ahh yep cool cool.....

eagerly awaiting email lol
LUXO_8 is offline   Reply With Quote Multi-Quote with this Post
Old 26-10-2005, 11:01 PM   #20
MAD
Petro-sexual
 
MAD's Avatar
 
Join Date: Dec 2004
Location: Melbourne
Posts: 4,527
Default

I got the same message from you earlier tonight, and did some searching...

Found this bit of info, seems good, but I didnt try it out cause I didnt download anything .

http://reviews.cnet.com/5208-6132-0....sageID=1491610
__________________
EL Fairmont Ghia - Manual - Supercharged
- The Story
MAD is offline   Reply With Quote Multi-Quote with this Post
Old 26-10-2005, 11:14 PM   #21
svo347
AFF's 1st DM.......
 
svo347's Avatar
 
Join Date: Dec 2004
Location: Wha???... There is only 2 states 2 be in.. WA or Drunk..
Posts: 6,200
Default

did ya have a win............
__________________
FORD GIVING POWER TO THE PEOPLE
Alloy headed 347ci EDXR8
13.21 @107.7mph
Quote:
Originally Posted by zetec
I know what lengths they go to to ensure it's more than just a Ford sticker on the part. Ford doesn't throw it's name on anything for a quick buck.
06 Turbo Terri AWD 6 sp in Neo with stuff i didnt even need, side steps,15.2 inch roof mounted DVD,Pioneer $tezza,Selby 30/18mm swaybars,debunged,100 cpsi Ballistic cat,Plazmaman under battery Cai injectors 14/lb boost,ZF tuned,Xtreme's magic. :
svo347 is offline   Reply With Quote Multi-Quote with this Post
Old 26-10-2005, 11:17 PM   #22
xurbanx
FF.Com.Au Hardcore
 
xurbanx's Avatar
 
Join Date: Jul 2005
Location: Victoria
Posts: 1,007
Default

gg O_O
my cousin im'ed me about that; lol i replied "u sure thats me?" and closed it :]

lol goes to show ignoring your cousins im's is a good thing :p
xurbanx is offline   Reply With Quote Multi-Quote with this Post
Old 26-10-2005, 11:21 PM   #23
Feathers
Lucifer's Angel
 
Feathers's Avatar
 
Join Date: Dec 2004
Location: Sydney
Posts: 5,282
Default

From the Symantec site:

If you are on a network or have a full-time connection to the Internet, such as a DSL or cable modem, disconnect the computer from the network and Internet. Disable or password-protect file sharing, or set the shared files to Read Only, before reconnecting the computers to the network or to the Internet, because this worm spreads by using shared folders on networked computers.

If you are running Windows Me or XP, turn off System Restore. For instructions on how to turn off System Restore, read your Windows documentation.

Locate the file that you just downloaded.
Double-click the FxKelvir.exe file to start the removal tool.
Click Start to begin the process, and then allow the tool to run.
Restart the computer.
Run the removal tool again to ensure that the system is clean.
If you are running Windows Me/XP, then re-enable System Restore.
If you are on a network or if you have a full-time connection to the Internet, reconnect the computer to the network or to the Internet connection.
__________________
SINISTER BA XR6
Blueprint, manual, 4490's, Redback 2.5" dual exhaust, BA Typhoon rims, tint, fog light covers, BF tailights, blue illuminated window switches, Ghia bootlid carpet, lower grille, FPV door spears, steering wheel & interior bits, XR6T + F6 intake, K&N filter, Typhoon spoiler, tuned, sway bars, custom angel eyes & plates..YUM!

If there's one thing guys in Holdens hate more than being beaten by a Ford...
It's being beaten by a girl driving a Ford
Feathers is offline   Reply With Quote Multi-Quote with this Post
Old 27-10-2005, 01:14 AM   #24
XD-Machine
proud xd owner
 
XD-Machine's Avatar
 
Join Date: Jul 2005
Location: penriff (penrith), sydney
Posts: 973
Default

i had a similar problem ages ago but was passed on by sending random pics to ppl (eg funny clown) and had some message like " you gotta check this pic out", stupidly enough i accepted without question and got the virus. Ever since then i send a message saying "what is this pic, link ect", this little procedure has prevented me catching 2 viruses so far.
__________________
Falcon-Tickford-FPV
car club of nsw

My XD's progress http://www.fordforums.com.au/showthread.php?t=20847
XD-Machine is offline   Reply With Quote Multi-Quote with this Post
Old 27-10-2005, 02:15 PM   #25
Windsor220
Now Fordless
 
Windsor220's Avatar
 
Join Date: Aug 2005
Location: Fremantle, WA
Posts: 3,611
Default

i had this virus its actually quite easy to get rid if.

reboot your computer in safe mode(F8). go into the registery (run--->REGEDIT) and search and delete the file svshost.exe

go into windowsexplorer. go to tools - folder options and tuurn hidden folders to visible and uncheck hide protected system files. now go to c:\windows\system32 and look for a folder with about 8 letters that dont make sense(eg aseoijaf) and go into it. you should see the syshost.exe file. delete it(and from the recycle bin) and it should be ok now.

restart computer.
Windsor220 is offline   Reply With Quote Multi-Quote with this Post
Old 27-10-2005, 02:36 PM   #26
NC 5ltr
FF.Com.Au Hardcore
 
NC 5ltr's Avatar
 
Join Date: Jul 2005
Location: newcastle
Posts: 689
Default

regarding above,whre in regedit do i go to clean up the start up,ie when IE loads instead of google i get crap,cleared all the caches but still nothing.
cheers
__________________
QUOTE I hope your opinion of the rear end of the VE improves because you are going to be seeing a lot of it.QUOTE

QUOTE What makes you think I'm going to park behind a VE? I don't even attend the Sydney Gay Mardi Gras! QUOTE
NC 5ltr is offline   Reply With Quote Multi-Quote with this Post
Old 27-10-2005, 02:50 PM   #27
Windsor220
Now Fordless
 
Windsor220's Avatar
 
Join Date: Aug 2005
Location: Fremantle, WA
Posts: 3,611
Default

Quote:
Originally Posted by NC 5ltr
regarding above,whre in regedit do i go to clean up the start up,ie when IE loads instead of google i get crap,cleared all the caches but still nothing.
cheers
unless you've got another virus just change it in tools--->internet options once IE is open.
Windsor220 is offline   Reply With Quote Multi-Quote with this Post
Old 27-10-2005, 02:43 PM   #28
EA2BA
PM me if you want
 
EA2BA's Avatar
 
Join Date: Dec 2004
Location: Pk Ranger Modding - QLD 👍
Posts: 7,498
Default

Hey Wayne, bring it over to my place if you like (i am at home just working on the car, till i get another job), a bit of a hike i know, but i will help you clean it up for free
__________________
Owner of first ever car to retrofit BA SSS - the EA2BA

Send me a PM if you want to know anything

2010 Ford Ranger PK High Rider (Auto) - 2011 Ford Fiesta (Auto)
EA2BA is offline   Reply With Quote Multi-Quote with this Post
Old 27-10-2005, 04:34 PM   #29
Psycho Chicken
Banned
 
Psycho Chicken's Avatar
 
Join Date: Dec 2004
Location: South East Melbourne
Posts: 6,156
Default

Hmmmm neither you nor Ed have popped up on msn saying that, weird. This is why you don't click links in the opening message :P
Psycho Chicken is offline   Reply With Quote Multi-Quote with this Post
Old 27-10-2005, 05:02 PM   #30
LUXO_8
windsor user
 
Join Date: Dec 2004
Location: Geelong
Posts: 13,123
Default

Quote:
Originally Posted by Psycho Chicken
Hmmmm neither you nor Ed have popped up on msn saying that, weird. This is why you don't click links in the opening message :P
lol yeah...
that'd be cos im such a top bloke that ive killed msn for the moment.... LOL
LUXO_8 is offline   Reply With Quote Multi-Quote with this Post
Reply


Forum Jump


All times are GMT +11. The time now is 01:08 AM.


Powered by vBulletin® Version 3.8.5
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Other than what is legally copyrighted by the respective owners, this site is copyright www.fordforums.com.au
Positive SSL