HOME

ABOUT CFAS

CONTACT US

DISCLAIMER

DONATIONS

FREE ASSISTANCE

HELP 101

MAGICJACK

NETWORKING

SEARCH THIS SITE

PRODUCTS

SERVICES & PRICES

SITEMAP

TROUBLESHOOTING

VIRUSES-HOAXES

WINDOWS Vista

WINDOWS Seven

WINDOWS 95-XP

• Basic

• Backup

• 98-XP

• Updates

• Office

• Updates

• System

• System Info

• System Files

• System

Virus Alerts, Security, Hoaxes, Phishing Scams, Trojan Back Door Viruses, Malicious ware & other security threats

Security Security Security - Free Security System Check and for Viruses  Test Your Computer's Vulnerability To Online & Virus Detection Threats.

• Internet Security

• E-Mail Etiquette Guidelines

• Virus Tips and How to Avoid a Virus

• Although you are Virus Protected / Free - What about Protection against a Trojan Horse / Backdoor Attack?

• Phishing Scams and E-Mails

• Other Types/Expanded threats spy/ad/mal-ware that exist outside of commonly known definitions of viruses, worms, and Trojan Horses

• Hoaxes - HUGE VIRUS COMING !!! PLEASE READ & FORWARD !!! which is a Hoax, do not perpetuate any Hoax, find out first if a Hoax

• Norton's Internet Security 200x - Essential Internet protection from viruses, hackers, and privacy threats.

• Anti-Virus - Internet Security Fraudulent Sites - Back Door Viruses - Spam - Anti-Phishing Protection

• Free AntiSpyware - This link will open a new page

Internet and E-Mail Netiquette #1 - #2 -

Security - 

Although the vast majority of the Internet is safe to visit, there are some areas of cyberspace that pose potential security and privacy risks.  Using Symantec's Norton Internet Security, you can protect yourself and your family from the following Internet-based threats:

• Viruses: The threat of receiving infected files over the Internet is very real. Infected files can be downloaded from Web sites, instant messaging programs, email attachments, or by other means. 

• Malicious active content: Web pages can run ActiveX controls on your PC without your knowledge or permission. If used maliciously, ActiveX controls can allow a hacker to ransack the contents of your hard disk, delete files, or steal passwords. 

• Trojan horses: These programs are typically copied to your PC through email attachments, pushed content, or browser plug-ins. Once on your machine, a Trojan horse can take control of your PC for the purpose of stealing passwords or making your files available to the outside world.

• Dropper: a program that when run will install a virus, Trojan horse or worm onto a hard drive, floppy disk or other memory media. The dropper itself is not a virus – it does not replicate; instead, it’s more like a Trojan horse in that it carries the malicious code with it and is not detected by virus-scanning software because it is not an infected file, but carries the code to “drop” a virus into a system. Droppers are uncommon."  

Privacy settings: 

• High: Prompts you each time confidential information is sent from the computer to a non-secured Web site (HTTP). Likewise, you are prompted each time a cookie is sent to a Web site. Browser privacy is also enabled to prevent Web sites from retrieving the address of the last Web site visited or the email address used with the browser.

• Medium: Prompts you each time confidential information is sent from the computer to a non-secured Web site (HTTP). Cookies, however, are sent to Web sites without requiring your permission. Browser privacy is also enabled to prevent Web sites from retrieving the address of the last Web site visited or the email address used with the browser.

• Minimal: Disables the monitoring of confidential information sent to Web sites. Cookies are not blocked but browser privacy is enabled so that Web sites cannot retrieve the last Web site that was visited or the email address used with the browser.

The default setting is Medium. It provides a good balance between security benefits and possible issues of convenience and performance. 

To protect credit card information and other sensitive data from being sent out over the web, click Confidential Info. 

To control specific Security settings, click Custom Level. If you change the Security settings and want to revert to the original settings, click Default Level.

Add Blocking - Many sites use banner ads in their web pages that often employing animated graphics to get the attention of visitors. If you find banner ads to be distracting, you can block them using Norton Internet Security. In addition, you can also use the ad blocking feature to block specific ads that are featured on a web page.

Top

• First rule, make sure to have an anti-virus program installed current with virus definitions.  Over 500 viruses are written monthly and a must to keep your anti-virus program current.  Once current in your updates, run a full system scan.
   

• Never download/accept files from anyone you do not know or be fooled by e-mail subject lines/titled.
   

• Turn Off preview feature  in your e-mail program which should have the option to "Preview" e-mail attachments.  Previewing could be cause to execute a virus command.
   

• Do not accept forwarded e-mails, or files from a site you feel is not legit and always do a virus scan if you do download/accept before installation.
   

• Delete chain e-mails and junk email.  Do not forward or reply to any to them.  These types of e-mail are considered spam, which is unsolicited, intrusive mail that clogs up the network.  And many are just a Hoax.
   

• Although the e-mail came from a friend or relative, it maybe a hoax or have an embedded/attached file/virus.  Do not perpetuate hoaxes and pass on virus's.  Check here for potential hoaxes and or current hoaxes http://www.f-secure.com/virus-info/hoax/
   

• Do not forward virus warnings without checking to see if they are  a hoax or not.  Click on the Virus's button below to find out the most current virus alerts and or search for virus's by name.
   

• Always keep your virus program updated of new viruses from your Virus program's library or click here http://www.f-secure.com/virus-info/ and read what viruses are out.
   

• A very good and inexpensive virus program which will check your e-mail as you receive it, is Norton AntiVirus 200x. 
   

• Protect Yourself from a Back Door Virus
   

• Make periodical backups of more important data and programs.  In case of viral infections (or just in case of accidental damage or loss of data) you will be able to restore original situation.  Always Run Full System Virus scan before backing up. 
   

• Absolutely avoid leaving a floppy disk inside of turned off PC's drive. Once turned on, your PC will look for the first floppy's sector, and in case of an infected disk, the virus will run / relocate itself.
   

• Scan each file you download, load from floppies or Cds with an anti-virus program. Sometimes you can receive a virus by floppies or Cds included with magazines!
   

• Disable 'Java' and 'Javascript' in your web browser.  The programming languages Java and JavaScript add interactivity to Web sites—but they also pose serious safety and security risks to Internet users. Many pornographic Web sites employ a JavaScript command that disables your browser's Back button, or else automatically launches another porn site every time you try to close your browser. Getting out of this "porn loop" may involve closing several windows before you can completely shut down your browser.
  
  To avoid these problems, you can disable Java and JavaScript in your browser:
  
  * If you use a Netscape browser, select Edit, Preferences, and Advanced, and then deselect Enable Java and Enable JavaScript.
  
  * For Microsoft Internet Explorer, select Tools, Internet Options, Security and Custom Level. Scroll down until you see Java Permissions, then select Disable Java. Continue scrolling until you see Scripting, then disable Active Scripting and Scripting of Java Applets. 
  
  Once Java is disabled, kids can get off adult sites by using the Back button on the browser, or by closing down the window.
  
  To avoid missing out on good sites that use JavaScript, turn it off when surfing or searching for sites—then turn it back on when you know you're on a safe site.
  

• Beware of exchange of files during chat sessions.  Scan all files with your virus program before opening.

Top

What are Trojan Horses? - Netbus - Back Orifice - SubSeven - Other

They are very dangerous! Trojans or often called backdoors are programs which will most be sent via email, instant-messengers or file sharing-tools.  If you run a Trojan file it will install itself on your computer to get run every time you boot up your machine. Trojans opens a port (channel) on your system which can be used by an attacker to connect to your computer. Trojans can enable almost everything for an attacker to do harmful things like viewing/modifying/deleting data, watching you when you are working or surfing the web, etc. Depending on the Trojan there can be thousands of functions built in which can be remotely used by any attacker to spy you.

NetBus Trojan

NetBus can be placed on your system in the same way as Back Orifice, and the same rules about programs and installers applies here as well.  99% of the time NetBus is gotten when you download a program from the internet, be it a freeware game on your friends web page, to a members only warez ftp site...  It can be an exe installer of itself, OR can be hidden inside a REAL setup.exe, usually planted in it and totally separate from whomever released the actual program.

NetBus is very similar to Back Orifice, and has many of the same features.  It also has more features added, which are there only to annoy and interfere with the computers operator.  However (in NetBus v1.60 and above) there is also a command which allows you to remove the server totally (Which actually works.)

There are three versions of this program which are still in use. Versions 1.5x, 1.60, and 1.70. Each have a different removal process so we have included sections for each. Our scanner on the page will also report this version to you.

Unfortunately with version 1.70 (and above) the port can be changed from 12345.  This brings the same scanning problem we have with BackOrifice, as we can only scan one port.  If you are infected with a NetBus server on a port other than 12345, our scans cant find it to tell you.  In this case you would be better off looking at your registry and looking for lines similar to the ones NetBus installs (Shown in the 1.70 removal instructions.)

We would like to encourage safe internet usage when it comes to downloads and programs.. Never accept an installer, or an exe from a non-reputable site.

Top

Back Orifice is a remote administration system which allows a user to control a computer across a tcpip connection using a simple console or GUI application.  On a local LAN or across the internet, BO gives its user more control of the remote Windows machine than the person at the keyboard of the remote machine has. 

BO is small, and entirely self installing. Simply executing the server on any windows machine installs the server, moving the executable into the system where it will not interfere with other running applications.  To ease distribution, BO can also be attached to any other windows executable which will run normally after installing the server.

Once running, BO does not show up in the task list or close-program list, and is rerun every time the computer is started.  The filename that it runs as is configurable before it is installed, and it's as easy to upgrade as uploading the new version and running it.

Top

SubSeven was made to fill in the gaps left by NetBus.  NetBus was the first 'point and click' trojan that made it very easy for hackers to abuse an infected system. The makers of SubSeven wanted to take this even further and give the hackers even more control than NetBus ever could.

SubSeven can do everything that NetBus can do. This includes things such as

     File controls 
          Upload / Download 
          Move, Copy, Rename, Delete 
          Erase hard drives and other disks 
          Execute programs

     Monitoring 
          Can see your screen as you see it 
          Log any/all keypresses (even hidden passwords) 
          Open/close/move windows 
          Move mouse

     Network control 
          Can see all open connections to and from your computer 
          Can close connections 
          Can 'bounce' or relay from their system to yours, so wherever they connect it seems as if You are doing it.

This is how they prevent getting caught breaking into other computer systems and get You in trouble! 

The SubSeven trojan can also be configured to inform someone when its infected computer connects to the internet, and tells that person all the information about you they need to use the trojan against you.

This notification can be done over an IRC network, by ICQ, or by email.

Top

Phishing Scams and E-Mails - May look very real and legitimate, web sites that look identical to a web site you frequent, here is one such site, I purposely clicked on a link in my e-mail, two images prior to the warning, next image is the warning from my security software blocking my access. 

Help protect yourself from phishing scams and identity theft have and use 8 character passwords, protect your passwords, do not let others use them.  And you may be rolling your eyes, on how stupid one may be to allow some one use their password.  But it happens.  Just as Credit Card, Government, State, Mom & Pop stores, Automobile, Banks, Commercial Businesses and the list is long who have had their Security Systems compromised.

One Parent wanted to know how Porn got on her computer.  I was called and discovered the son used Dad's username & password to access porn sites, not knowing images were being cached to Mom & Pop's computer.  They did not believe me, until I showed them when these files were downloaded.  The time and date, Dad and Mom were at work, the Son was home.

Do not view or open suspicious e-mails, make sure you have Anti-Phishing Software installed and up to date.  The same with Internet Security Software or Anti-virus protection that it is current and up to date.   Steps to take to protect your computer.

Top

Other Types/Expanded threats exist outside of commonly known definitions of viruses, worms, and Trojan Horse that may provide unauthorized access, threats to system or data security, and other types of threats or nuisances. Expanded threats may be unknowingly downloaded from Web sites, email messages, or instant messengers. They can also be installed as a by-product of accepting the End User License Agreement from another software program related to or linked in some way to the expanded threat.

Adware: Programs that secretly gather personal information through the Internet and relay it back to another computer, generally for advertising purposes. This is often accomplished by tracking information related to Internet browser usage or habits.

Adware can be downloaded from Web sites (typically in shareware or freeware), email messages, and instant messengers. A user may unknowingly trigger adware by accepting an End User License Agreement from a software program linked to the adware. 

Dialers: Programs that use a system, without your permission or knowledge, to dial out through the Internet to a 900 number or FTP site, typically to accrue charges.

Hack Tools: Tools used by a hacker to gain unauthorized access to your computer. One example of a hack tool is a keystroke logger -- a program that tracks and records individual keystrokes and can send this information back to the hacker. 

Joke Programs: Programs that change or interrupt the normal behavior of your computer, creating a general distraction or nuisance.

Malware: is software designed to infiltrate or damage a computer system without the owner's informed consent. It is a portmanteau of the words "malicious" and "software". The expression is a general term used by computer professionals to mean a variety of forms of hostile, intrusive, or annoying software or program code.

Remote Access: Programs that allow another computer to gain information or to attack or alter your computer, usually over the Internet. Remote access programs detected in virus scans may be recognizable commercial software, which are brought to the user’s attention during the scan.

Security Risks: Threats which do not conform to the strict definitions of Viruses, Trojan Horses and Worms, but which may present a threat to your computer and its data.

Spyware: Stand-alone programs that can secretly monitor system activity. These may detect passwords or other confidential information and transmit them to another computer.

Spyware can be downloaded from Web sites (typically in shareware or freeware), email messages, and instant messengers. A user may unknowingly trigger spyware by accepting an End User License Agreement from a software program linked to the spyware.

Viruses, Worms and Trojan Horses: A virus is a program or code that replicates; that is, infects another program, boot sector, partition sector, or document that supports macros, by inserting itself or attaching itself to that medium. Most viruses only replicate, though, many do a large amount of damage as well.

A worm is a program that makes copies of itself; for example, from one disk drive to another, or by copying itself using email or another transport mechanism. The worm may do damage and compromise the security of the computer. It may arrive in the form of a joke program or software of some sort.

A Trojan Horse is a program that neither replicates nor copies itself, but causes damage or compromises the security of the computer. Typically, an individual emails a Trojan Horse to you-it does not email itself-and it may arrive in the form of a joke program or software of some sort.

Top

Hoax Warnings - Please disregard the hoax emails - they contain bogus warnings usually intent only on frightening or misleading users

Hello Possible Victim of a Hoax

In the future do not pass on any e-mail regarding a virus, chain letter, etc.   A hoax is a form of cyber terrorism.  These types of e-mails cause to overload servers, e-mail systems and for some who have fallen victim possibly time and important data.  They maybe disguised to look legitimate.

When sending to multiple listing (people in your address book) address the e-mail to yourself, and bcc: to all others you are wishing to send the same e-mail to.  This protects your family, friends and clients e-mail addresses from not only perpetrators of such viruses, hoaxes, but others who do not wish their e-mail address given out freely.  This reduces the chance of junk and unwanted/unsolicited e-mail.

Never click remove me/to be removed from any junk e-mail or mailing list, for this may send information to the sender you may not wish them to have or just add you to another mailing list.

http://www.symantec.com/avcenter/hoax.html

http://www.f-secure.com/virus-info/hoax/

HUGE VIRUS COMING !!! PLEASE READ & FORWARD !!!

IT IS A HOAX - its the Burning Hard Disc Hoax

http://www.symantec.com/security_response/writeup.jsp?docid=2006-022115-0852-99&tabid=2

and from Symantec's link above about this hoax states "Please ignore any messages regarding this hoax and do not pass on messages.  Passing on messages about the hoax only serves to further propagate it."

Also, although the Postcard virus is real, it isn't a "BIG VIRUS COMING" (it's already been around in multiple forms for a long time now), it will not "burn the whole hard disc" of your computer.

As you know, I have been involved with computers over 25 years and I am so into security with redundancy in protection.  Let me share the following.

1) virus warnings come after a Virus has hit, no one is gearing up, they are geared up all the time anticipating the next virus attack
2) most all viruses have some distinguish characteristic about it, that virus protection will detect

Ask yourself who sends these warnings in the first place, a friend or family member and where did they get the e-mail to pass on, from those who fall victim to the hoax, are duped by fear and the person who propagates it in the first place.

Ask yourself, how many read these e-mails, believe them and do pass it on, it could be too late...for one should not open e-mails they do not know who it is from or trust.  And what better way to send or spread a virus under the cover of trust and you do recognize from.

And for the person who passes these forms of e-mails on, usually do not send Bcc: but send showing everyone of your friends and family's e-mail addresses and where do these e-mails end up?  Could they find their way back to the originator or other attacker.  Could this attacker mask themselves as a friend or relative and send you something you would open and click on?   They sure can.

Comments such as I checked with Norton Anti-Virus and I checked Snopes (URL above:), and it is for real!!   Is a ploy, to get you to drop your guard.

Recently I was attacked over 25 times by a "dropper" defined "a program that when run will install a virus, Trojan horse or worm onto a hard drive, floppy disk or other memory media. The dropper itself is not a virus – it does not replicate; instead, it’s more like a Trojan horse in that it carries the malicious code with it and is not detected by virus-scanning software because it is not an infected file, but carries the code to “drop” a virus into a system. Droppers are uncommon."

So the uncommon happens to the best of protection detection.  My problem now was not that Norton Symantec was not protecting, but the annoyance of it repeatedly notifying me of an attack blocked and my asking how do I stop it.  Symantec could not help me, other than saying your software is working as designed and if I wanted the "dropper" to go away, it would cost me more than the software that is protecting me.

I spent a few hours and resolved my own dilemma, after a few days of the annoying dropper attacking.

Another why of spreading a virus is by using a search engine, i.e. Googling a warning about a virus or hoax, the site link you click on may take you to a fraudulent site that attempts to send you a Trojan or Dropper.   I use SafeWeb which hits/finds in Google have an indicator of Fraudulent sites Site Unsafe this is a known malicious site, Site Unknown about Security and ones Safe (No Security Risks Detected) see attached screen captures.

Top

Important email etiquette tips: Think of Others as Yourself, your preferences and Respect the wishes of others as you would them of you.

1. Be concise and to the point
2. Answer all questions, and pre-empt further questions
3. Use proper spelling, grammar & punctuation
4. Make it personal
5. Use templates for frequently used responses
6. Answer swiftly
7. Do not attach unnecessary files
8. Use proper structure & layout
9. Do not overuse the high priority option
10. Do not write in CAPITALS - this hurts to read and means SHOUTING!
11. Don't leave out the message thread
12. Add disclaimers to your emails
13. Read the email before you send it - So very important, it may be understandable to you, but not to others
14. Do not overuse Reply to All
15. Mailings > use the bcc: field - Do Not Forward Junk, Spam, sending your family and friends e-mail addresses possibly to strangers or a hacker/attacker.
16. Take care with abbreviations and emoticons
17. Be careful with formatting - Not every E-Mail Client/Program views e-mails the same and can be difficult to read.
18. Take care with rich text and HTML messages - Not every E-Mail Client/Program can view HTML
19. Do not forward chain letters - Please Do Not perpetuate Junk, Spam, or Pass this onto 10 of your friends, it slows down the Internet, Bottleneck E-Mail Servers too.
20. Do not request delivery and read receipts
21. Do not ask to recall a message.
22. Do not copy a message or add an attachment without permission
23. Do not use email to discuss confidential information - E-Mail can be intercepted and read, just as anyone can listen in on Wireless communication, cordless & cell phones.
24. Use a meaningful subject
25. Use active instead of passive
26. Avoid using URGENT and IMPORTANT
27. Avoid long sentences - create small paragraphs too...as to avoid one long continous e-mail.
28. Don't send or forward emails containing libelous, defamatory, offensive, racist or obscene remarks - there are Federal communication laws.  An employee can be fired, your employer should make all employees aware about Electronic Communication be it a Company/Corporation Phone or Computer.  And your Employer on their computers have a right to monitor and read any e-mail coming in or out. 
29. Don't forward virus hoaxes and chain letters - Ties up mail servers and bogs down the Internet.  Do the math, if 100 people sent 10 e-mails to their family and friends = 1000 e-mails and there are several million computer users.
30. Keep your language gender neutral - keep personal information out if all possible as e-mail can be intercepted and read.
31. Don't reply to spam - do not open or view spam have Anti-Spy, Spam, Virus, Phishing software up to date.
32. Use cc: field sparingly - Direct your correspondence to one person, Bc: others who need to know & aware.  Cc: is fine for those partaking in the same event and need to know, who know each other.  If not wanting to reply to All, check to see how your reply is addressed To:  Others may not want certain people to see or have their e-mail address.

Think of Others as Yourself your preferences and Respect the wishes of others

Top

To Report Site Problems - Invalid Links - Contact Us

More than a Computer Service - Begnal Enterprises - Fire Fighters - Safety - Genealogy - Photography - Quilting and more.