got this virus (or malware im not sure) yeasterday when my son used the computer. His friend sent him a LINK, he clicked it and the file “IM87853.JPG-www.myspace.com” was downloaded to the computer automatically. he ran it after download, than things happened, his MSN keep sending all these links to everybody on his list, but except that there has nothing strange occurred… AVAST can find any threat either… anyone can help to rid off this virus???
If anything is found come back and post the scan logs here
If you have the file, can you upload it to VirusTotal www.virustotal.com and when you have the result, copy the URL in the addressbar and post it here
If your kid had done this before opening the file…
-The person who sent it to him, will probably not know, but they are infected in the same way too…
Some preventative measures once you are clean…
-‘Options’ → ‘File transfer’ → Check ‘Automatically reject transfers for known unsafe filetypes’
-‘Options’ → ‘File transfer’ → Set it to scan with: C:\Program Files\Alwil Software\Avast5\ashQuick.exe
-'Options → ‘Security’ → UN check ‘Allow links in conversation windows and my contact list’
Teach your son not to allow anything…
This kind of infection was what brought me here…I hate them >:(
Had the same problem with avast. I ran the file in virtualised mode just for curiosity’s sake. I removed the virus from one of my friends’ computer.
Here are the steps.
From Control Panel\Folder options\View uncheck all the boxes which say hide (3 of them) and choose the show all files radio button.
Open task manager and end the process called “infocard.exe”
Search your c drive for “infocard.exe” (no quotation marks) and delete all the files that are not in .NET framework folders. It’s usually in c:\windows. You can also delete the .pf (prefetch) file.
Start\run\regedit [enter]. Do a full search for “infocard” and delete all entries. Also, delete any suspicious entries from Current Version\Run. Be careful not to delete .Net framework entries (which also have an infocard.exe).
Restart!
You should be clean.
LE: I see this virus is pretty old, but avast still doesn’t detect it. It’s really shameful for avast >:(.
You can also set MSN only to receive messages from known contacts, which means you won’t see much of this spam (unless it’s from an infected contact, of course).