astridv: (Default)
astridv ([personal profile] astridv) wrote2005-08-05 02:21 am
  • Add Memory
  • Share This Entry

"Windows Messenger is trying to monitor your mouse movements and keyboard strokes"

Filed under 'computer messages you really don't need to see at one in the morning'. Funnily enough, google gave me no results on this message. However, I don't think I was being paranoid, for when I googled the suspect (msmsgs.exe) I did get interesting results. Looks like it's a virus/trojan/whatever disguising as the Windows Messenger exe file, but located in C:\program files\messenger instead of C:\Windows\System32 [eta: at least I think. I'm doing some more checking just to be sure. Because those computer wizkids online contradict themselves on that matter. But whatever, mine seems to be deactivated after I renamed the one in the messenger folder to msmsgs.exealt][eta again: all right, apparently those guys got it wrong and the exe in the messenger folder is harmless, if annoying. So the other one must have been the culprit... there were two of them running at the same time... weird.]

Anyway, looks like I caught the critter in time. Good thing I updated Zone Alarm today. Plus, I finally got that idiotic, useless Windows Messenger deleted from my startup folder as well. Have been trying that for a year.

I hope the system is clean now. Blch.
Flat | Top-Level Comments Only
ext_7287: (Default)

[identity profile] lakrids404.livejournal.com 2005-08-05 04:29 pm (UTC)(link)
I have thought about installing and playing around with one the linux distroes in particulary the Ubuntu Linux. After reviews I have seen, it should be a good intro Linux distro, that can make automatically a multiboot partion with windows. But then again I have not had any problems with my win2k system for years, and after installed Firefox plus Thunderbird and some antispyware I have not had any spyware for month. But as many other thing it will have to wait for the end of the season, and the last and only virus I have had on my computer was in 97, as far as I know.
By the way if you receive a scan of the article in sfx, would you mind to post it on your lj?, inquiring mind wants to know.
ext_2027: (Default)

[identity profile] astridv.livejournal.com 2005-08-05 08:57 pm (UTC)(link)
Eh, I don't want to switch to Linux. All shortcomings aside, I got used to Windows. It's like an old, comfy shoe. And same here, since I switched to Firefox I had almost no problems with viruses or trojans. This is the first infection since last October, so not too bad. I just hope it's gone.

I still don't know which of the two msmsgs.exe files running was the regular, annoying Windows program, and which the virus. I just shut them both down for good measure. Hehe.

I have to admit, a little part of me enjoys the challenge in this. ;) Of course it's not so much fun when the virus is winning and ends up f*cking up your system, though.

Can you believe that some computer expert told someone I know they don't need a firewall? Am I totally paranoid or what? I think that's an irresponsible thing to tell a customer. Last I heard, an unprotected computer stays clean for about 20 minutes. Not too promising odds.
ext_2027: (Default)

[identity profile] astridv.livejournal.com 2005-08-05 08:58 pm (UTC)(link)
Oh, and scan: yeah, can do that when I get it.

[identity profile] jwaneeta.livejournal.com 2005-08-05 05:46 pm (UTC)(link)
Yikes, that's scary.

Say, I meant to mention (since you had to listen to my tale of spyware woe in SD) that I finally found a anti-spyware program that killed ABI/Ceres. It's called STOPzilla, and it certainly halted the shenanigans. The only thing is, I don't know whether the infection is gone or merely locked up tight. I want it gone! How I hate these virus guys. Sigh.
ext_2027: (Default)

[identity profile] astridv.livejournal.com 2005-08-05 08:47 pm (UTC)(link)
I was gonna ask how your system is doing. Maybe I'll look into STOPzilla as well. I'm already using six different anti-spyware and anti-virus programs, and update practically every minute, but apparently it's not enough. How do these critters get through that net?

The only thing is, I don't know whether the infection is gone or merely locked up tight. I want it gone!

I assume you've tried scanning in safe-mode and running HijackThis? It's my impression HJ is still the most reliable, only a lot of the time I have no idea how to interpret the log.

I'm joining you in the loathing of these lowlifes. The last trojan I caught cost me three weeks, and I had to clean-install my OS. At least this one I got rid of in a few hours. Or maybe it's still there, who knows. My computer has been behaving strangely for several weeks, too, this is just the first time it showed up on a scan.
ext_7287: (Default)

[identity profile] lakrids404.livejournal.com 2005-08-05 09:58 pm (UTC)(link)
It’s not, that I don’t feel, that Windows does not work for me. But more I am little curios on running a different OS. And perhaps is the grass greener on the other side.

About the computer expert and firewall. I would like to think, that he did mean that the firewall that there is with Win Xp SP2 as a standard. is adequate enough to normal home users
ext_2027: (Default)

[identity profile] astridv.livejournal.com 2005-08-05 10:20 pm (UTC)(link)

About the computer expert and firewall. I would like to think, that he did mean that the firewall that there is with Win Xp SP2 as a standard. is adequate enough to normal home users

Could be. That would be the first time I heard someone putting their trust in that firewall, though. You don't hear too many good things about it. Hmm... I'd be interested in running Ad-Aware and Spybot on that system and see if the built-in firewall holds up.

[identity profile] starborn-scribe.livejournal.com 2005-08-06 12:41 pm (UTC)(link)
Blargh. Stupid trojans. I'm glad you caught it before the situation got out of hand.

There are two things you can do that will help you avoid many of the viruses (virii?) and trojans out there: ditch Internet Explorer and Outlook if you currently use them. Most of the viruses and trojans target Microsoft products, so switching to something else helps a lot. I highly recommend the Firefox (http://www.google.com/url?sa=t&ct=res&cd=1&url=http%3A//www.mozilla.org/products/firefox/&ei=7a70QriiCbe0aMrMvYoO) web browser and Eudora (http://www.eudora.com/) or Thunderbird (http://www.google.com/url?sa=t&ct=res&cd=1&url=http%3A//www.mozilla.org/products/thunderbird/&ei=ja_0Qo-kFoaSaeKpsJcO) for email.

Thus endth my unsolicited $0.02. :)
ext_2027: (Default)

[identity profile] astridv.livejournal.com 2005-08-06 06:16 pm (UTC)(link)
Yes, I'm a Mozilla convert myself. I praise Firefox at every opportunity. I made the switch last year, after I caught a particularly nasty trojan that there was no way of getting rid of. I had to wipe my harddrive clean of everything and do a clean-install. This is the first virus in almost a year, and I caught it quickly enough.

Plus, Firefox is not just much safer, it's also more comfortable than IE, with useful features. Never again am I gonna surf with &"§%§ IE.
Flat | Top-Level Comments Only