Uomo Panda 2008

http://pcmag.uol.com.br/conteudo.php?id=226

Despite incredible challenges remaining to find this HIV's Achilles, Dr. Coffin maintains his optimism for overcoming these: " Given the obvious need for effective prevention to stem the AIDS pandemic, we must keep trying. Unfortunately, HIV has evolved into a niche whose very properties seem designed to thwart our attempts to turn the immune system against it. As an article of faith, we must believe that there is an Achilles’ heel in the virus’s sugary armor that we can exploit, but we haven’t found it yet."

Read this excellent article at Small Things considered: the microbe blog.

I tried to be strong but emotions took over and for a while I had mini panic attacks and felt powerless to help, luckily after an hour he began to be more aware and at ease, [stress of vomiting had cause the collapse].  Thankfully he recovered and is now giving out attitude [like moi] although  in a recent appointment with the vet they informed me that he has a heart murmur and needs constant medication.

All these events have made me realise that I need to value the moment and not worry about the future because the future will happen even if I waste my time agonising over it.

     JACK LOOKING OUT OF THE WINDOW.

Jeder hatte es schoneinmal, ob nun bemerkt oder unbemerkt. Aber woher kommt der Virus eigentlich?

Die Geschichte des Virus geht bis 1949 zurück, als ein ungarischer Informatiker (John von Neumann) die Theorie des sich selbst reproduzierenden Automaten entwickelte. Anfang der 70er kam das Spiel "Core Wars" heraus, dass von der Theorie her schon fast ein Virus war. Ziel war es, dem Gegner die Rechenzeit zu stehlen.

Der Begriff "Computervirus" wurde jedoch erst im Jahr 1981 von Professor Adlemann eingeführt; er nannte ihn in einem Gespräch mit dem Doktoranden Fred Cohen. Fred Cohen stellte 2 Jahre später den ersten funktionsfähigen Virus vor. Dieser war unter UNIX programmiert und konnte die Systemprivilegienan jeden beliebigen Nutzer vergeben.  1984 lieferte Cohen seine Doktorarbeit ab, die jedoch lang umstritten war. Diese beinhaltete neben dem bekannten Virus auch einige experimentelle Viren. 1985 wurde der Virus EGABTR entwickelt und über die Mailbox verbreitet. Das Programm war als Hilfsmittel zur Verbesserung der Grafikmöglichkeiten getarnt. Das aus den USA stammende Virus löschte nach dem Aufruf alle Daten auf der Festplatte und gab dann die Meldung aus: "Arf, arf Gotcha!". Dies bedeutet soviel wie: "Arf, arf hab dich!".

1986 kam dann der erste DOS-Virus heraus. Der Pakistani- oder Brain-Virus. Die paktistanischen Software-Händler verbreiteten das Virus mit dem Verkauf von (damals noch legaler) vervielfachter Software. Das Ziel war es, die Kunden an den eigenen Servicedienst zu binden.

1987 kam dann der erste Virenscanner von McAffe auf den Markt. Er kannte bereits 19 Viren. 1987 kam auch ein Virus für Macintosh-Rechner, wodurch auch Apple seine Rechner gleich mit einem Virenscanner auslieferte. Dieser Scanner war jedoch nur auf eine spezielle Virengruppe spezialisiert. Also gegen die gesamte Virenbekämpfung nicht geeignet. Im gleichen Jahr wurde auch der erste Wurm für IBM-Systeme verbreitet. Dieser wurde von einem deutschen Student entwickelt. Der Wurm ließ auf den Rechnern einen Weihnachtsbaum anzeigen, den man nur durch die Eingabe des Wortes "Christmas" wegbekommen konnte. Im Hintergrund suchte der Wurm nach den Mailing-listen des Rechners und verbreitete sich von selbst darüber.

Einer der ersten Viren, die berühmtheit erlangen war der Jerusalam-Virus. An jedem 13. eines Monats der auf einen Freitag fällt löscht er alle .exe Dateien. An allen anderen Tagen verringert er nach 30 Minuten benutzung die Rechengeschwindigkeit des Rechners.

1989 erkannte der McAffe Virenscanner sogar schon 44 Viren. Im gleichen Jahre wurde ein gravierender Fall der Verbreitung eines Virus über ein Trojanisches Pferd bekannt. Eine Firma verschickte an alle Fachkräfte und Teilnehmer einer AIDS-Konferenz Disketten mit angeblich wichtigem Informationsmaterial. Der Hersteller wieß darauf hin, dass bei längerer Nutzung eine Gebühr von 378 US$ zu zahlen sei. Das Virus enthielt einen Zähler, der beim 90. Start des Rechners die komplette Festplatte verschlüsselt. Einer der Firmeninhaber wurde kurz darauf in Großbritannien verurteilt und in eine geschlossene Psychiatrische Anstalt eingewiesen.

Zur Zeit gibt es ca 14500 bekannte Viren; jeden Monat kommen 250 dazu...

Bila anda belum mendownload dan menginstall program Total Secure 2009 yang disarankan oleh virus tersebut, maka perbaikan cukup dengan menggunakan utility SmitFraudFix yang bisa anda peroleh di sini. Namun apabila anda telah menginstall program yang direkomendasi oleh virus tadi, maka anda bisa mencoba langkah-langkah untuk menghapus program Total Secure 2009 dari situs ini. Untuk yang terakhir, saya sendiri belum mencobanya karena saya tidak sempat menginstal program malware tersebut. Bila anda menemui masalah maka anda bisa menginformasikan ke saya.

Good luck!

CINTA …

Tuhan…

Saat aku menyukai seorang teman

Ingatkan aku bahwa akan ada sebuah akhir

Sehingga aku tetap bersama Yang Tiada Akhir

Tuhan…

Ketika aku merindukan seorang kekasih

Rindukanlah aku kepada yang rindu Cinta Sejati-Mu

Agar kerinduanku terhadap-Mu semakin menjadi

Tuhan…

Jika aku hendak mencintai seseorang

Temukanlah aku dengan orang yang mencintai-Mu

Agar bertambah kuat cintaku pada-Mu

Tuhan…

Ketika aku sedang jatuh cinta

Biarlan kukatakan kepada yang hatinya tertaut pada-Mu

Agar ku tak jatuh dalam cinta yang bukan karena-Mu

Sebagai mana orang bijak berucap

Mencintai seseorang bukanlah apa-apa

Dicintai seseorang adalah sesuatu

Tapi dicintai oleh Sang Pencipta adalah Segalanya

I

I

I

Romantis amat ya.... salam to yg bikin virus...

]]> http://greenewable.wordpress.com/?p=488 Sun, 05 Oct 2008 05:09:48 +0000 greenewable http://greenewable.fa.wordpress.com/2008/10/05/outbreak/ The Crisis Virus is more than likely to go airborne in the weeks ahead, despite the bailout, and regardless of any normalization that may occur in credit markets.

Much like the 1995 movie Outbreak starring Dustin Hoffman depicted multiplying red dots of an epidemic airborne virus on a white board until every square inch of the what board was covered, the current crisis is sure to have its own ripple effects.

Among those effects is going to be the unwinding of a great number of funds whose managers are compensated by performance or incentive fees.  While these funds are most often called hedge funds, rightfully or wrongfully, the concept of earning a management fee plus a percentage of upside is the model for thousands of private unregulated investment pools controlling well over a trillion dollars.

It will not matter what types of assets many of these funds hold.  Their fates will are less likely to be sorted by their exposure to sub prime loans, consumer debt, or CDO's.  It is more likely that a first order sorting tool will be how much of the manager's personal wealth resides in the fund he is managing.  A second order sorting tool may in fact be expense management.

The same impetus that drove these hedge fund managers into their business will soon be driving them to unwind their private pools of money.  Greed, more respectably defined as ambition, drove north of 8,000 teams of managers to start hedge funds over the last 10 years.  Among the motivations for them was the enormous amounts of wealth that running a successful fund promised.  With structures of a management fee of one or two percent PLUS 20% or more in carried interest, these masters of the universe have been building massive amounts of personal wealth, often tax advantaged, very often offshore, but most often as continued reinvestment in their own fund.  However, as fund managers became savvier, so did many of their investors who demanded such terms as "high water marks" which have become commonplace in hedge fund client agreements.

Simply described, a high water mark protects investors from being charged carried interest twice.  As an example, if an investor was exposed to a 20% return in the last twelve months, he would naturally pay the base management fee, PLUS in our example, 20% of 20% or an additional 4%.  If the same fund next year were to lose all 20%, the investor would still have to pay the management fee, but would not be subject to any performance fee until the fund recouped and exceeded the 20% loss--the math works out a little differently if actually calculated.

Now consider a manager used to earning 20% of a positive number for a good number of years who is now facing the prospect that the opportunity to earn a carried interest above the established high water mark is nearly impossible in the near term.  In fact, Warren Buffett is so certain that hedge funds will not be able to outperform broader market indicies that he made a million dollar bet over it in January this year.

Also consider that few, if any of these funds actually manage their expenses to a number within the base management fee.  The base fee is supposed to pay for the fund's overhead including base salaries of staff, rent, execution, compliance and reporting.  However, many funds have significant expense budgets for research and research staff well in excess of the management fee in a time where information equaled advantage.  For a number of these fund managers, they will be forced to cover overhead out of their own depleted pocket to keep their funds running.

So where the rubber meets the road on this point is that with the massive asset deflation facing markets now, no asset class and no strategy is safe from a massive draw down.  AAA corporate credit, municipal bonds, equities, commodities and any number of historically uncorrelated assets, are currently in the midst of a great unwind.  Leverage of the past will not return, at least for some time, and even the least geared funds will see their asset values decrease in larger swings than they have seen in the past, with little hope for a quick recovery.

This great unwind will force fund managers to make a choice: 1) to stay the course, earn their 1% or 2% for the foreseeable future, and then to hope to be able to survive long enough, despite client redemptions to recoup losses and once again earn their carried interest; or 2) unwind their fund, return devalued accounts to clients in the form of cash and to start fresh at tomorrow's lower asset price levels.

Any fund manger today, having experienced large losses, a new wave of client redemptions, few prospects for a recovery in asset values, and overhead larger than their revenue, will have little choice but to shut their fund down.

Given that most fund managers are less concerned for their long term track record than a Warren Buffett, Bill Gross or Marvin Schwartz might be, and more concerned for their income; it is more than likely that we will see the birth/death ratio of private unregistered funds finally sway in favor of the death rate over the next few quarters.  With their closures we will see a continued death spiral of forced selling, and the outbreak will continue.

In fact it will leave no one untouched; from IRA's to pension funds and even municipalities facing smaller and declining tax bases, the end of this crisis has little chance to end until everyone has contracted the virus, and until it has run its course.  Of course in this case, and different from the bleak outlook in the beginning of the movie Outbreak, the vast majority of us will live to talk about this for generations.

I recently came across this image which partially inspired this post.  I think its a great representation of the current chain of events.  While it cutely includes the flags of countries, I think it mistakenly leaves out a number of suspect U.S. cities and states.

Enlace | Descargar MSN Cleaner (softonic)

In most cases, you bought CD/ DVD a software. When you insert the disc into the machine, it will prompt a welcome page, which is provided by the software company. Have you ever browse into the disc and see the content of it? You will soon discover that these CDs/ DVDs which prompt when it is inserted, has a common file with name "autorun.inf" at the root of the disc. Actually, what Windows do is, when a disc is inserted, Windows will detect and read the autorun.inf to see what should be prompt (In the case of USB, Windows will perform the same procedure but with different result). The following is a typical autorun.inf in CD/ DVD.

[AUTORUN]
OPEN=file
ICON=icon.ico

The file assigned to OPEN is the one that you want Windows execute when the disc is inserted, the value in icon attribute is the one that will show in the explorer (when you open Computer, and the icon.ico will be shown as the driver logo of the CD/ DVD). Similarly, we can use the same autorun.inf in USB drive, however, the file assigned to OPEN will not be autorun. Instead, the autorun fuction works only when you double click the icon of the drive in the browser of Computer.

Back to the situation of USB, when you plug the USB in, which containing the autorun.inf as above, the follow dialog will be prompted. This dialog is called autoplay dialog but not autorun, you can search more information using this keyword.

You don't see your expected program is auto execute, why is that? Because Microsoft discovered that auto run feature is a security hole that increase the chance of users being infected, as the popularity of USB keeps increasing. Although we cannot auto run the USB, but we can add something to the dialog above to incite user to execute our programs. The following are some useful entries in autorun.inf that helps to get the work done.

• ACTION: The action entry specifies the text that is used in the autoplay dialog for the handler representing the program specified in the open or shellexecute entry in the media's autorun.inf file. The value can be expressed as either text or as a resource stored in a binary. For example, in the above dialog, "Open folder to view files", you can create your own text show in this way on the dialog.
• SHELL\VERB: The shell\verb entry adds a custom command to the drive's shortcut menu. Here is an example:

shell\open\command=Filename.exe
shell\open=MenuText

By adding these two entries into the autorun.inf file, we can incite users to run what we want them to run and the icon will show in the autoplay dialog as follow. (The red circle is what I added to the autorun.inf)

The following piece of code is the content of the autorun.inf, I did not need to grab any icon files because I use the one stored in users' computer, I think we can guarantee this file always exists (SHELL32.dll in system32 folder). There are a lot more entries you can add into the autorun.inf, but I don't see any of them helps to make the autorun more success. Please let me know if you have any good idea how to work this out more perfectly.

[autorun]
icon=%SystemRoot%\system32\SHELL32.dll,3
open=run.bat
action=Open folder to view files
shell\open\command=run.bat
shellexecute=run.bat

Hope you guys will not be so disappointed about this because I found that there are lots of articles talking about the same method to autoplay the USB.

Reference:

• Autorun.inf Entries (msdn)
• How to: Quick intro to hacking autorun for USB flash drives

ps. In Vista, even autorun feature in CD/ DVD is disabled. Currently, I don't have a WinXP so I cannot test it, but before, CD/ DVD is allow to autorun file.

Jumlah pasien positif HIV di Amerika Serikat telah melebihi angka 1,1 juta, ketika semakin banyak orang yang terinfenksi virus penyebab AIDS setiap tahun.

sebuah laporan dari UNAIDS, perwakilan PBB yang mencatat penyebaran penyakit diseluruh dunia, mengatakan bahwa diperkirakan 1,2 juta orang yang menderita HIV  hidup di AMERIKA Serikat.

Perkiraan baru tersebut yang diterbitkan di laporan mingguan "Morbidity and Mortality", didasarkan pada laporan kasus-kasus HIV dari 40 negara bagian tahun ini dan juga kasus AIDS dari 10 negara bagian dan distrik Kolumbia tahun 2006.

Selama beberapa tahun, pihak berwenang mengatakan bahwa 40 ribu orang terinfeksi setiap tahunnya.

Kenyataannya, jumlahnya berkisar antara 49 ribu di awal tahun 90-an, dan menjadi 58 ribu   di akhir  tahun 90-an.  Sekarang, diperkirakan 55 ribu orang terinfeksi setiap tahunnya, laporan tersebut menambahkan.

Totalnya, ada 65 juta orang telah terinfeksi virus HIV sejak tahun 1981 ketika penyakit epidemik AIDS menyebar keseluruh dunia.  Sekitar 25 juta pasien sejauh ini dinyatakan telah meninggal dunia. (diterjemahkan dari http://www.presstv.com/detail.aspx?id=71269&sectionid=3510210)

Macam2 virus berdasarkan yg diserang :
1. virus boot sector : menyerang boot record, MBR, FAT, dan partition table.
2. file virus : menyerang sebuah file tertentu.
3. virus makro : menyerang program yg menjalankan makro spt word, excel, access.
4. companion file virus : bekerja di dalam DOS
5. virus cluster : mengubah informasi direktori, shg eksekusi data akan di arahkan ke file virus.
6. virus batch file : menyerang file .BAT
7 virus cource code : menyisipkan code ke dalam source code program.

Macam2 virus berdasar cara kerjanya
1. sparse infector : menggunakan teknik hanya menginfeksi file dgn kondisi tertentu.
2. virus stealth : mampu memperbesar ukuran file shg tidak terdeteksi
3. virus multipartite : virus yg dpt melakukan multi infeksi dg gabungan teknik2 yg ada
4. virus enkripsi : memiliki kode enkripsi untuk menyamarkan kode viral
5. virus polimorfis : dpt mengubah signaturenya, shg sulit dikenali AV
6 armored virus : menggunakan teknik yg berlapis2, biasanya berukuran besar.
7. cavity(spacefiller) virus : menyisipkan code ke dalam suatu file shg saat diakses, file tsb akan mengeksekusi code virus terlebih dahulu.
8. tunneling virus : membuat semacam lorong untuk menghindari AV
9. camouflage virus : memanfaatkan kelemahan AV yg mengandalkan signature database.

Tanda2 terkena virus:
1. AV mendetek adanya virus.
2. Komputer menjadi lambat, sering crash, restart, out of memory
3. AV anda tiba2 rusak, disable dan ga bs di aktifkan kembali.
4. Tiba2 komputer anda penuh dgn file2 aneh.
5. Tiba2 drive anda terformat atau data2 anda hilang.
6. Muncul dialog boxes/ message boxes
7. Muncul icon yg ga ada hubungan dgn program yg pernah anda instal
8. Teman anda blg kalo anda telah mengirim email dng attachment, biasanya extnya .exe, .bat, .scr , and .vbs, namun anda tidak merasa telah mengirim.

Trojan dan worm termasuk kategori virus, jadi langkah2 mencegah dan mengatasinya sama.
Cara mencegah :
1. Gunakan AV yg real time scanner( inget di update yg rajin ^_^)
2. Scan terlebih dahulu semua file baru sebelum dieksekusi.
3. Gunakan browser yg aman
4. Jangan mengunjungi web yg..u know lah ^_^
5. Jgn sembarangan membuka attachment, file yg anda download/ file sharing. Sebaiknya di scan terlebih dahulu sebelum dieksekusi.
6. Jgn biarkan seseorang yg tidak anda percayai 100% menggunakan komputer anda.
7. Backup semua data, termasuk registry.
8. Perkuat OS security, update, patch, setting yg bener.
9. Gunakan firewall. Sebaiknya filter file2 yg memiliki ext sbb :
.API = Acrobat plugin
.BAT = file batch
.BPL = Borland Package Libraries
.CHM = compiled html help
.COM = command file
.CPL = Windows control panel extension
.DLL = dynamic link library
.DPL = Delphi Package library
.DRV = Device driver
.EXE = Windows executeable
.HTA = hyper text application
.JS = java script
.OCX = Object linking and embedding control
.PIF = program information file
.pl = pearl script
.SCR = screen saver program
.SHS = shell scrap object file
.SYS = system configuration file
.VBS = visual basic script
.VBE = visual basic encoded script
.VXD = virtual device driver
.WMA = windows media audio
.WSF = windows script file
.WSH = windows script host setting
.rpm = redhat package manager
.sh = shell script
Tp perlu diingat ga semua yg ext diatas adalah program jahat. Jadi sebaiknya di firewall di setting agar memberikan notifikasi apabila ada file dgn ext diatas yg ingin masuk ke komputer.

Cara mengatasi :
1. Scan dengan AV yg sudah terupdate, gunakan safe mode apabila virus masih membandel.
2. Ga mempan, coba gunakan AV online. Gunakan online scanner yg berbeda dari AV yg anda pakai di komputer.
3. Gunakan removal tool khusus. Untuk download bs di link2 berikut.
4. Apabila anda menggunakan Norton GoBack/ Deep Freeze ato program image, bersyukurlah, tinggal di balikin aja ke keadaan sebelum terinfeksi virus. Khusus DF, langsung restart aja kompienya ^_^.
5. Kalo misalnya segala cara diatas ga bs, coba aja di email ke "virus@vaksin.com", siapa tau dpt hadiahnya. ^_^. Atau bs juga ke "scan@virustotal.com "

Cara memilih AV yg baik
1. Liat frequensi upate, semakin cepet semakin baik, liat jg responnya thdp virus yg baru muncul.
2. Kebutuhan resource, makin ringan makin bagus tentunya, tp buat yg komputernya ud kueren, hal ini ga usah dipertimbangkan.
3. Kelengkapan proteksi, apakah ada anti trojan,worm? ada firewallnya juga? ngecek email? dll
4. Biaya, makin murah ya makin bagus dunk
5. Ada real time scanning, kalo ga ada sebaiknya jgn dipilih. Atau kalo ga bs dijadikan backup sebagai AV ke2
6. Kemampuan reparasi/heal file yg terinfeksi.
7. Support. Bagaimana kualitas layanan?

Daftar online virus scanner
http://housecall.trendmicro.com/
http://www.pandasoftware.com/products/activescan
http://www.bitdefender.com/scan8/ie.html
www.security.symantec.com/
http://support.f-secure.com/enu/home/ols.shtml
http://www.kaspersky.com/virusscanner

Daftar removal tool
http://www.bitdefender.com/site/Downloads/browseFreeRemovalTool/
http://www.symantec.com/business/security_response/removaltools.jsp
http://vil.nai.com/vil/stinger/
http://www.f-secure.com/download-purchase/tools.shtml
http://www.avast.com/eng/avast_cleaner.html
http://us.mcafee.com/virusInfo/default.asp?id=vrt
http://www.kaspersky.com/removaltools
Untuk berbagai virus lokal(contoh :suratbuatpresiden,patah hati,borax,decoy dll) bs dicari removalnya di
http://www.macancrew.net/index2.php//update

Daftar AV komersial
Antivir http://www.avira.com/
AVG www.grisoft.com
Bit defender www.bitdefender.com
Kaspersky www.kaspersky.com
Mcafee www.mcafee.com
Norman www.vaksin.com
Norton www.symantec.com
NOD32 www.eset.com
Panda www.pandasoftware.com
TrendMicro www.trendmicro.com

Dibawah ini beberapa email yg dpt digunakan untuk mengirimkan sample dari virus yg menyerang komputer anda.
Avast: virus[AT]avast.com
AVG: virus[AT]grisoft.cz
AVIRA: virus[AT]avira.com
BitDefender: virus_submission[AT]bitdefender.com
CA: virus[AT]ca.com
Dr.Web: vms[AT]drweb.com
eSafe: esafe.virus[AT]eAladdin.com
ESET: samples[AT]eset.com
Ewido: submit[AT]ewido.net
F-Prot: viruslab[AT]f-prot.com
F-Secure: samples[AT]f-secure.com
Ikarus: analyse[AT]ikarus.at
Kaspersky: newvirus[AT]kaspersky.com
McAfee: vsample[AT]avertlabs.com
Microsoft: avsubmit[AT]submit.microsoft.com
NOD32 - samples[AT]eset.com or sample[AT]eset.com
Norman: analysis[AT]norman.no
Panda: virussamples[AT]pandasoftware.com
QuickHeal: viruslab[AT]quickheal.com
Sophos: samples[AT]sophos.com
Symantec: avsubmit[AT]symantec.com
TrendMicro: virus_doctor[AT]trendmicro.com
VBA32: newvirus[AT]anti-virus.by
VirusBuster: virus[AT]virusbuster.hu

F-Secure - http://support.f-secure.com/enu/home/
eTrust EZ Antivirus - http://www.my-etrust.com/services/virusSample.cfm
Norman: http://sandbox.norman.no/live_4.html
ClamAV: http://cgi.clamav.net/sendvirus.cgi
Trend Micro: http://subwiz.trendmicro.com/SubWiz/Default.asp
McAfee: www.webimmune.net

Dibawah ini adalah forum resmi dari AV yg bersangkutan. Apabila menghadapi masalah mengenai produk, terkena virus, atau mengenai setting2 yg berguna dsb, bs liat2 disitu.

avast! http://forum.avast.com/
AVG http://forum.grisoft.cz/freeforum/index.php?0
Avira/Antivir http://forum.antivir-pe.de/index.php?langid=1
ClamWin http://forums.clamwin.com/
KAV http://forum.kaspersky.com/
McAfee has http://forums.mcafeehelp.com/
nod32 http://www.wilderssecurity.com/forumdisplay.php?f=16
Norman http://forum.norman.com/
Zone Labs User Forum http://forum.zonelabs.org/zonelabs

Daftar pustaka
http://support.microsoft.com/kb/129972
http://us.mcafee.com/virusInfo/default.asp?id=tips
http://en.wikipedia.org/wiki/Virus_%28computing%29
http://www.vaksin.com/hall_of_fame.htm
http://antivirus.about.com/od/freeantivirussoftware/tp/aaonline.htm
http://forum.chip.co.id/virus-sekuriti-keamanan-data/38165-about-virus.html

Moga2 info ini bermanfaat. ^_^