The Avira tech people explained that a CIH infection is pretty unlikely. None of the variants work on modern operating systems ( last supported OS was win 98 ). Also the CIH Bios infection is actually a destructive function, not with the aim of keeping the virus active, but to render the system unbootable.

So after long discussion, then come up the conclution as mentioned below. I am quoting from the forum
Just in case, you experience this kind of virus, please do the four step repairing process:

1. Flash the bios.
2. Overwrite the MBR.
3. Recover “bad sectors” with a low level hard disk scanner.
4. Fix the partition table with chkdsk /f.

Formatting the disk is not always be necessary, but reinstalling Windows does.
The virus attacking the bios, the MBR and the partition table. It has the ability to hide itself in “bad sectors”.

Please note that I didn’t mention the word antivirus in the fours steps detailed before. I tried it, but it wasn’t useful in this case.

As simple user, in order to face this threat which has been around since some years ago (at leas since 2009), a good antivirus should:

• Save the current bios when installed.
•  Identify the motherboard and download a safe bios from the motherboard manufacturer (or the antivirus) website at the first update, or ask the user for the bios in the motherboard manufacturer installation CD.
• Check the bios at every boot against the safe bios previously saved.
• Check the MBR at every boot.
•  Be able to flash the bios and overwrite the MBR if needed.
• Be able to run a low level surface disk test if needed.

There are several freeware tools that can perform those task, so perhaps to achieve an agreement about the license could be better than develop them from scratch.

I’d also recommend not buy/manufacture motherboards without a jumper to avoid/impede/prevent/disable bios flashing.

Hope this will help.

Incoming search terms:

• best free antivirus for bios
• chernobyl bios
• cih/chernobyl
• virus cernobyl avira

As part of this initiative, the company recently employed security industry veteran Yuval Ben-Itzhak as senior vice-president of engineering, as well as added two more researchers to guide in discovering trends and preventing intrusions.

As you might know that Ben-Itzhak is founder and CTO of KaVaDo, a leader in Web application security.Ben-Itzhak was formerly Chief Technology Officer (CTO) for a global Web security company, where he led the company’s vision, strategy, innovation, IP and technology. For your information, as an innovator, Ben-Itzhak holds a number of various US patents and patent applications. He is regularly quoted in the international business and technology press and has been a key speaker in dozens of security conferences around the world.
Ben-Itzhak was selected as InfoWorld’s “Top 25 Most Influential CTOs of 2004″ and Computerworld’s “40 Innovative IT People to Watch, Under the Age of 40″ for 2007.

AVG’s Virus Research Lab controls its network of more than 110 million computers throughout the world – each and every one installed with AVG LinkScanner technology – to identify exploit trends in real-time and report back information that is in turn licensed by top security software companies to update their products. The Virus Research Lab works regularly with law enforcement and industry leaders to detect and avoid online bank scams, buyer phishing schemes, determine theft scams and many other cybercrime activities.

Roger Thompson as Chief Research Officer of AVG Technologies said that The AVG Virus Research Lab is the cornerstone of our operations, working at the front lines to hunt down the bad guys and protect our customers from their malicious schemes

Ben-Itzhak and alot of the staff in the AVG Virus Research Lab offer regular responses and analyses of the latest spyware, viruses, Internet exploits and other cybercrime trends at http://viruslab.blog.avg.com/.

If you have the misfortune to fall into the scam, be sure to dispute the charge with your credit card company. Win 7 infection usually occurs Antispyware 2010 during a visit to questionable Web sites, music downloading infected files, video and others, and listen to e-mail downloads. If you download the file to a P2P software user navigate dangerous Web sites, the team is in danger. For this reason, an active scanner is highly recommended. Win 7 To get rid of Antispyware 2010 XP or Vista Antivirus 2010 Antivirus 2010, you must first unlock access to the Windows Task Manager. This virus and many others like that clogs your system tools.

You must start Windows in safe mode and try av.exe off, which is the same in each family member for this software. Then you have a reputable virus and spyware removal to clean your computer and have to act again. I recommend a couple of virus removal tools, in particular, on the basis of its history and recent prices. I recommend you try a spyware rel = nofollow free analysis of your system to quickly see what is hidden in your system and where.

These emails are very simple and have subjects such as “Naked Shakira Clip,” “Rihanna Exposed,” or “Scarlett Johansson Spills Boobs,” and includes a link with the text “Download and Watch.”

If the user clicks the link, they will download a copy of the Agent.IMB Trojan to their computer. This malicious code copies itself to the system under the name “CbEvtSvc.exe” and creates a service with the same name to run whenever the system is started up.

“This social engineering technique is not new at all, however, given the number of cyber-crooks that keep using it there must still be many users who fall into the trap,” explains Luis Corrons, Technical Director of PandaLabs. “Malware creators sometimes use the same kind of email to spread different malware strains, so it wouldn’t be surprising to find junk mail like this being used over the next few days to distribute other malicious codes like downloader Trojans, banker Trojans, and others.”

To avoid falling victim to this type of attack, PandaLabs advises users not to open any email messages that come from unknown sources or click any links that these may contain.

Panda Security offers several free tools for scanning computers for malware. You can use them from http://www.infectedornot.com.

For more information: http://www.pandasecurity.com/homeusers/security-info/ About PandaLabs

Since 1990, PandaLab’s mission has been to analyze new threats as rapidly as possible to keep its clients safe. Several teams, each specialized in a specific type of malware (viruses, worms, Trojans, spyware, phishing, spam, etc), work 24/7 to provide global coverage. To achieve this, they also have the support of TruPrevent(R) Technologies, which act as a global early-warning system made up of strategically distributed sensors to neutralize new threats and send them to PandaLabs for in-depth analysis. According to Av.Test.org, PandaLabs is currently the fastest laboratory in the industry in providing complete updates to users. More information is available in the PandaLabs blog (http://www.pandalabs.com).

About Panda Security

Panda Security is one of the world’s leading IT security providers, with millions of clients across more than 200 countries and products available in 23 languages. Its mission is to develop and provide global solutions to keep clients’ IT resources free from the damage inflicted by viruses and other computer threats, at the lowest possible total cost of ownership.

Panda Security proposes a new security model, designed to offer a robust solution to the latest cyber-crime techniques. This is manifested in the performance of the company’s technology and products, with detection ratios well above average market standards and most importantly, providing greater security for its clients. For more information and evaluation versions of all Panda Security solutions, visit our website at: http://www.pandasecurity.com.

SOURCE Panda Security

Incoming search terms:

• angelina jolie erotic photos
• rihanna erotic pictures
• angelina jolie erotic pictures
• Anjelena jolley erotic pictures
• rihanna erotic photos
• Rihanna erotic pics
• new erotic pictuer
• Angelina jolie- rihanna
• angelina jolie foto erotic
• shakira erotic

Creating the file is pretty simple. Just create a new text file and paste the following line of code into it: X5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*

Save the file and rename it to test.com. When executed it displays the message EICAR-STANDARD-ANTIVIRUS-TEST-FILE. No harm will be done to your system if you accidentally execute the file. To test your virus scanner right-click the file and select to test it with your software.

You could also pack it and test it or send it to your email account to test the interaction between virus scanner and email client. After the test finishes you do know if your virus scanner is working as intended and able to detect viruses on your system. This does not necessarily mean that it will detect every virus that exists but it means that it is working.

Incoming search terms:

• best free antivirus test

Cupertino, CA – March 19, 2008 – Trend Micro Incorporated (TSE: 4704), a global leader in Internet content security today warned of a new type of spam, Meeting Invite spam.

During the past 12 months, Trend Micro has tracked spam in numerous formats but this is the first time the Google Calendaring system has been used as a mechanism.  Spam filters may be designed to automatically filter out attachment spam or image spam, however they are less likely to be set up to track for this new delivery mechanism.

In this latest attack, Nigerian scam spammers are using meeting invites to bypass anti-spam engines.  The e-mail invites are personalized with a different link sent to each recipient and may be configured to send meeting alerts in order to draw increased attention to the spam message.

“We will most likely see this spam delivery method used for other types of spam—pump and dump, links to web threats, etc,” said Jamz Yaneza, research project manager at Trend Micro. “It is likely that on the back of this first attack, we can expect to see such tools like Google calendar, further abused to contain malicious links and try to steal sensitive information.”

Trend Micro encourages all businesses and end users to demonstrate extra caution when receiving unexpected meeting invitations and other unexpected mail.  On execution such attacks pose risks to recipients including the possibility of executing malicious code or other malware.

Already, Trend Micro has added this new type of spam to its spam blocking databases. For non-Trend Micro customers, the Company advises users to delete any similar meeting invite messages that might arrive in their inbox.

Incoming search terms:

• download free antivirus format jar
• trend micro meeting format
• trend micro spam advisory
• who invited Antivirus

By Ellen Messmer , NetworkWorld.com , 03/03/2008

If your computer gets infected with a Trojan called the “MonaRonaDona virus,” be careful with what you use to wipe it off your computer, says antimalware software provider Kaspersky Lab. MonaRonaDona is part of an elaborate scam to sell fake antivirus software, Kaspersky researchers say.

Unlike most viruses and Trojans which try to go about their evil task as invisibly as possible, the MonaDonaRona Trojan displays a broadly visibly message in front of the victim. It says, “Welcome to MonaRonaDona. I am a Virus & I am here to wreck your PC. If you observe strange behaviour with your PC, like program Windows disappearing, etc., it’s me who’s doing this.” The message claims it’s all part of a human rights protest.

But according to Kaspersky Lab researcher Roel Schouwenberg, MonaRonaDona is mainly a way to panic victims, who then may start a Web search to find out more about it, only to find fake online stories and bogus commentary that instruct victims to use fake antivirus tools — the prominent one being called Unigray, available from the Unigray.com Web site, for about $39.00.

“There was a link at Digg and at YouTube promoting it,” says Schouwenberg, who writes about it Monday in a Kaspersky Lab blog posting.

While fake antivirus software scams have cropped up in the past, the MonaRonaDona scam may be unprecedented in terms of its reliance on social engineering in the online world to get victims to download software that removes the MonaRonaDona message but may still be in itself dangerous.

As to how the MonaRonaDona Trojan manages to propagate, Kaspersky Lab sees a link with another piece of “fake” software called RegistryCleaner 2008.

“We’re still researching this but it may be connected with this,” says Schouwenberg, who calls the MonaRonaDona Trojan of the past week to be among the most elaborately orchestrated scams he’s seen.

The bottom line is to clean computers with software from valid antimalware vendors that can detect the bad code, he adds.

Incoming search terms:

• free antivirus scam
• scam free antivirus

Incoming search terms:

• clamav samples
• clamav sigmaker