Shoutbox

quote:

---

You may of heard of one of the biggest security flaw ever found in Windows known as the WMF exploit has now reached our world of MSN Messenger says Kaspersky Labs, using Christmas as a con via sending a link called xmas-2006 FUNNY.jpg". across multiple websites.

This is important around now many of these will be popping up, be very careful of what you view and make sure you can trust links and downloads your contacts may send you

The wmf file embedded into the .jpg as an html file which will download and execute a .vbs file, which in turn will become an Sdbot. The IRC bot is known as Backdoor.Win32.SdBot.gen by KAV and as reported earlier this week the latest MSN Messenger virus known as Kelveir is responsible but as a new clever variant and we may expect a string of these to come. The believed perpetrators are thought-out to be CyberCrimals in the UK.

---

I just wrote up this for my site as i think it is extemtly important thus should be made sticky i honestly would fall for this.

Errrrrrrrrrrrrrrrrrr, how is this news, it is just a different place to send the link to people....

News would be if somehow they exploited it by sending it as a custom emoticon or something.

quote:

---

Originally posted by ShawnZ
Errrrrrrrrrrrrrrrrrr, how is this news, it is just a different place to send the link to people....

News would be if somehow they exploited it by sending it as a custom emoticon or something.

---

i would click any .jpg link and most virus threads are sticky anyway and the WMF flaw is huge + this is the second varient of a new virus released last week

quote:

---

Originally posted by vaiper
thats y u dont open any emails from no one u dont no

---

this isn't an email, it's a link posted through MSN messenger.

oh ok then i dont get many links sent to and open ones form my freinds nd not some randomz

I suggest everyone install the windows patch to fix this huge flaw, said to be window's biggest sercuity bug of the last few years.

Would you view any jpg file saying x-mas it in , i sure would fall for it and the whole thing is not detected by anti virus software.

quote:

---

Originally posted by vaiper
oh ok then i dont get many links sent to and open ones form my freinds nd not some randomz

---

its not from random people. read before posting uselessness.

--

quote:

---

Originally posted by Absorbation
I suggest everyone install the windows patch to fix this huge flaw, said to be window's biggest sercuity bug of the last few years.

Would you view any jpg file saying x-mas it in , i sure would fall for it and the whole thing is not detected by anti virus software.

---

where is this windows fix?

have a look in Neowin.net , the fix may have been posted there

quote:

---

Originally posted by Neowin

SANS and many other security sites recommend un-registering Shimgvw.dll (Microsoft picture and fax viewer) and using the unofficial patch to protect aginst the virus, until Microsoft can release an official patch. A virus scanner isn't enough to protect against some of the more advanced variants of the exploit.

---

http://www.neowin.net/index.php?act=view&id=31931

how to unregister the .dll

   

Click Start, click Run, type "regsvr32 -u %windir%\system32\shimgvw.dll" (without the quotation marks), and then click OK.

A dialog box appears to confirm that the un-registration process has succeeded. Click OK to close the dialog box.

Hum anyone seen the virus in action yet?

quote:

---

Originally posted by Animal
how to unregister the .dll



Click Start, click Run, type "regsvr32 -u %windir%\system32\shimgvw.dll" (without the quotation marks), and then click OK.

---

know how I can register the dll again? nothing is working