Yesterday evening, while wanted to look at SETI-Forums,
Laptop REBooted (!?!) and showed a completely different
'environment', classic instead of advancedand NETWork (WLAN) UNAvailable ?....


Virus Profile: MultiDropper-TR
Threat Search
Afdrukken

Virus Profile information details Risk Assessment: Home Low | Corporate Low
Date Discovered: 21-4-2010
Date Added: 21-4-2010
Origin: N/A
Length: Varies
Type: Trojan
Subtype: Dropper
DAT Required: 5959
Removal Instructions




* Overview
* Virus Characteristics
* Removal Instructions


Description

This is a Trojan detection. Unlike viruses, Trojans do not self-replicate. They are spread manually, often under the premise that they are beneficial or wanted. The most common installation methods involve system or security exploitation, and unsuspecting users manually executing unknown programs. Distribution channels include email, malicious or hacked web pages, Internet Relay Chat (IRC), peer-to-peer networks, etc.

File Information

o MD5 - C071BF1BDBA73B5A6473902E071A8C22
o SHA - E17FACBD94B8B301FC394FCEF76C5F08F793B4C7

Aliases

o Kaspersky - Trojan.Win32.Agent.dhxd
o Microsoft - Worm:Win32/Emerleox.gen!A
o Nod32 - a variant of Win32/HideProc.NA

Indication of Infection

o Presence of above mentioned files and registry keys
o Presence of unexpected network connection to the above mentioned IP Address.

Methods of Infection

Trojans do not self-replicate. They are spread manually, often under the premise that the executable is something beneficial. Distribution channels include IRC, peer-to-peer networks, newsgroup postings, e-mail, etc.
Also can remember a [b]warning from Mc A , concerning, random REBOOTS or endless REBOOTS.
Happening mostly on (Company) Servers, but also individuals !

Anyone who has experienced, this annoyence/attack, too?
And a good idea to scan your host's .[/color]

---

This does not sound quite like the McAfee problem earlier in the week. About half the XP machines at our office were taken off line for a day by that.

---

BOINC WIKI

I heard something about it, companies and server-farm's, should be mostly affected.

Apparently with a few exceptions :(

So, I hope Mc Afee, has an explanayion, exceptable for me, too, otherwise it's over and out, this is an outrage, bah.

Only my LT was 'hit' (WLAN) (WPA2 + TKIP + 2048BIT key), other host's are unaffected, have NORTON*, installed, due to using the 'rescue DVD's', instead of using the hidden partition, on the C drive. It has 2 fortunatly.

* Still had 60 day's of "protection" left.
Also upgraded al host's to 6.10.43, no problems so far.

---

I heard something about it, companies and server-farm's, should be mostly affected.

Apparently with a few exceptions :(

So, I hope Mc Afee, has an explanayion, exceptable for me, too, otherwise it's over and out, this is an outrage, bah.

Only my LT was 'hit' (WLAN) (WPA2 + TKIP + 2048BIT key), other host's are unaffected, have NORTON*, installed, due to using the 'rescue DVD's', instead of using the hidden partition, on the C drive. It has 2 fortunatly.

* Still had 60 day's of "protection" left.
Also upgraded al host's to 6.10.43, no problems so far.

Ifit is the McAffee bug, they have promised to refund any reasonable expense incurred for getting your machine back and running. So far this offer appears to be for non-commercial customers only.

---

BOINC WIKI

Why do you torture yourself with McAfee (false alarms) or Norton (HUGE, very hard to find out which file it auto-deleted (quarantined) because of "infection")?

Go for NOD32 - faster and secure (never had problems for years)

http://www.eset.com/

Compare ESET to the Competition
http://www.eset.com/home/compare-eset-to-competition

It does NOT lie that harmless keygens & cracks are "threats" (but finds really infected)

It does NOT slow you down by doing unnecessary Full HDD Scans (you can do this manually but it is not needed)
(no Full Scan scheduled by default; After signature update it scans only the programs which are auto-run at Windows startup)

NOD32 finds the threats on-the-fly and clearly tells what threat it found and which file (full path) is infected.


Example of Warning generated by Resident protection of ESET NOD32 Antivirus 2.70.39 (old but good version):

---

 


- ALF - "Find out what you don't do well ..... then don't do it!" :)
 

Why do you torture yourself with McAfee (false alarms) or Norton (HUGE, very hard to find out which file it auto-deleted (quarantined) because of "infection")?

Go for NOD32 - faster and secure (never had problems for years)

http://www.eset.com/

Compare ESET to the Competition
http://www.eset.com/home/compare-eset-to-competition

It does NOT lie that harmless keygens & cracks are "threats" (but finds really infected)

It does NOT slow you down by doing unnecessary Full HDD Scans (you can do this manually but it is not needed)
(no Full Scan scheduled by default; After signature update it scans only the programs which are auto-run at Windows startup)

NOD32 finds the threats on-the-fly and clearly tells what threat it found and which file (full path) is infected.


Example of Warning generated by Resident protection of ESET NOD32 Antivirus 2.70.39 (old but good version):

Corporate demands McAffee for their equipment. I have Nod32 installed on the machines I own.

---

BOINC WIKI