Just to warn everyone that there is a new virus going around MSN 8.1 called "img0012-www.photostorage", and I happend to have accepted it from a friend whom he accetped it from, now i have the virus. What it does is send the file img0012.zip to everyone.

Anyone have any idea how to get rid of it? I restarted the computer and now its not doing it anymore but the virus is still on here.

An obvious one would be run your anti-virus...?

Edit: Here's removal instructions. Remember to Google it first next time

quote:

---

Originally posted by http://www.cisrt.org/enblog/read.php?162&part=2
HOW TO REMOVE

STEP 1
Delete registry entry:
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Lsass Services"="%Windows%\system\lsass.exe"

STEP 2
Restart WINDOWS

STEP 3
Delete virus files:
%Windows%\system\lsass.exe
%Windows%\IMG-0012.zip

STEP 4
Remove "Windows Sharing" from exceptions tab of Windows Firewall

STEP 5
Set registry data:
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control]
"WaitToKillServiceTimeout"="20000"

---

quote:

---

Originally posted by http://www.cisrt.org/enblog/read.php?162
A new MSN virus has started spreading recently, it sends itself to MSN contacts as IMG-0012.zip. Like other variants, it sends sham messages to contacts.

In IMG-0012.zip, there is img0012-www.photostorage.com included, the file size is 25,600 bytes, Kaspersky detects it as Backdoor.Win32.SdBot.bxr, and Worm.MSN.Win32.PhotoCheat.f by Rising Antivirus, Win32.Hack.SdBot.bx.25600 by Kingsoft Antivirus.

---

sorry, actualy I got rid of it about 20 minutes after i posted this, after googiling it , thanks for the reply though!