I was just sent a link over AIM, but it was sent automatically, and that persom IMed me a min later telling me not to open that link, because he did not send it, it was automatically sent to everyone on their buddy list. I opened the link, it came up to a page asking to save an applet to see a vid relation to Osamas capture.



I would like to know if this is really a virus, or what. The link will follow for anyone who wishes to check it out, and has the means to determine whether it real.



http://www.wgutv.com/osama_capture.php?hcD8



DO NOT CLICK THIS unless you know what youre doing!

i just got that smae thing, but the message was sent in text to my phone from a AIM user i have never heard of before. I think it's a virus i want to the site and just didnt download the applet. But any way if it has the ability to spread through the moble phone networks this coudl be a very serious virus.

except no phones use applets..........



maybe nextels, cause the have java, but i doubt it.



kevin.

I am pretty sure it's a virus. Symantec's site probably has something on it by now.

possible spy/adware...did it to me too.

these types of virii have been going around for a couple years. Just be smart and dont download any active x apps. 95% of the normal computer using population has no idea what active x is, let alone be able to tell if its a bad script or not. Hence why spyware and virii are such problems.



Computers are funny, cause people spend 1000's of dollars on them and have no idea how to use them. Thats like buying a hammer for 1000 bucks and having no arms. Its pointless.



and teknics is right, it will not spread to your phone. phone operating systems are completely different than your (most of you) windows system.

ha, Mozilla saves my dumb ass again. they caught osama OMG!! click.

PHP is a sneaky language with it's capabilities, as are several others. It's against the law to do anything of that nature, but obviously the people macking virus' don't care anyways.

i copied and pasted the link from inside I.E., it took me to a website that said 'click yes to install'.

..Yeah, **** you too *******. I'm not clicking yes.

Dont ask me how, but eveytime my sister uses the comp, it always runs 50% slower and the internet never works. The other day she was on and roasted the Power Supply. Than the parents blame me because they think i take up too much memory on the computer.



There's 51% memory left. https://www.nopistons.com/forums/pub..._DIR#>/dry.png

dudes, i dont know about yall, but i just clicked the link, and i won $1,000,000 !!!!!!! it just got wired to my bank account!



https://www.nopistons.com/forums/pub...1047683785.gif

you need to do some serious clean up on that computer, and tell youre sister to not **** with it anymore.

damn it i clicked it... fun little game but now how the hell do i get rid of it. none of my virus programs even knows its there.

because virus detectors are worthless.

Indeed. I don't even use them.

lol i figure its in the registry.. but where? also it seems to like aol instant messanger only. my msn messanger is fine thus far. google and msn explorer dont have anything about it either

periodically use an online virus scanner such as trend micro to keep on top of popular virii or trojan programs. But to have something like pc cillen and norton on all the time is worthless. I love their marketing ploys about how everyone is trying to "hack" into your computer. Then you get some stray syn packet from a website or some scanner, then some big ass thing pops up on the screen telling you "SOMEONE IS TRYING TO HACK YOU! BUT YOURE USING NORTON FIREWALL! WE STOPPED THEM FROM HACKING YOUR PC AND DISTROYING ALL YOUR VALUABLE FILES!!" ... lol



i love companies that play off of stupid people. I bet i fall into some of those things every once in awhile :( i feel dumb now.

if you want to find a spyware program or "virus", the best way is to use a file and registry monitor. It will log everything happening, every call made to the registry, every call made to and from a file, etc.. anyways, if you dont already know, its probably past your computer skills ... so youre kinda fucked.

well i am kinda computer savvy but i agree this one will probably only be fixed once the big boys figure out how to remove it. i figure that it is in a aim file because as soon as i signed onto aim my friends name sent me the file. so i believe that it is stored in a file that aim uses.

I usually only read on here, but I'll help you out.



Got to your program files folder and look for a folder by the name of buddylinks.com or something similar. There is an uninstall app which actually uninstalls itself and then delete the whole folder.



Hope this helps https://www.nopistons.com/forums/pub...DIR

afterburn,



thanks man for the advice. i actually figured it out after i made that post yesterday. the file was located here C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\WPS1QBWT\ShellInstaller[1].cab and yeah i saw that its a program made by a company called buddylinks. and it is apparently addware thing made to work with aim.

thanks for the advice though. i am sure it will help other people too. oh yea and welcome to nopistons!!!

there are 3 files total just incase any one is curious. i believe they were all listed under shellinstaller

damn thing rebooted when i restarted my machine. i found like 3-4 more files... blengine.dll and a couple others. anyone who has this can follow these instructions to remove it.



http://securityresponse.symantec.com/avcen...buddylinks.html