If you have a website that uses WordPress, make sure you’re running the most recent version. GoDaddy and other web hosting companies are scrambling at their installations due to a malware attack.

This typically happens when a web hosting company is using a customized version of the software and hasn’t upgraded it yet. Unfortunately, many companies just take too long to patch their systems. We see this with some companies that like to wait for months before running Windows Updates on their servers. The key is to test on systems before doing anything and a lot of places are failing to do that.

So – if you’re using GoDaddy or another hosting provider, check out your blog, as you may be infected. Link for help.
Justin

There is a new type of infection happening that even has some of the best anti-virus companies stumped. Recently, it was found that Virus and Malware writers are getting more sneaky on how they infect you.

They are specifically targeting Google users. Recently, it was found that you could get infected simply by looking through Google Images. On top of this, other sites only infect you if you come from Google. This means, if you type the web address directly, you don’t get infected.

Very sneaky stuff indeed. This makes it harder to clean the infection, as the website owner usually goes directly to the website to check the problem directly.

Be careful out there, it’s getting more dangerous.
Justin

It seems that other computer repair companies in Portland are just starting to see this malware/spyware/virus as well. Protocol16 has clean at least 40 computers infected by this stuff as a lot of people are getting it, and that doesn’t count all the virtual computers we infected studying it (see the video link below for a sample of one of those tests). First – DON’T give your credit card info away! Second, write down our number and just turn the power off on the computer – don’t bother waiting for Windows to shut down.

Give us a call, we’re very experienced with this “software”, as it’s a reincarnation of several other types of programs. Antivirus 2010 is not the only version of this stuff out there, so be careful.

We started studying this software, and others like it, back in October when it first started to become a problem. In fact, we posted a video about how you get infected and what it does (luckily, I stopped recording before the Porn pop-ups started).

The fix for this is normally pretty quick as we have a lot of experience with it. In fact, our latest customer paid less than our hourly fee (currently $70), complete with pickup, cleaning (physically and removing the Antivirus software), updates to several types of programs and drop off… And all that was on our busiest day yet, a record breaker for us.

Give us a call and we’ll be glad to help out: 503-524-9047.
Justin

It’s been a nice and rainy week in Portland, but that doesn’t mean you need to let your guard down!

Today’s post, is brought to you by the letter “R”, for Ransom-ware. Ransom-ware is software that makes it onto your computer, usually mysteriously, then holds your files captive until you pay a fee. This can be a product that’s sold or a virus that holds your MP3′s hostage.

Recently, Sunbelt Software – Protocol16′s recommended anti-virus company, discovered a new “in the wild” ransom-ware package that encrypts the contents of your hard drive (this is actually arguable as to if it encrypts or just causes problems). This means that your hard drive cannot be read within minutes of having the software installed.

After installation, you’re left with the following message:

Ransom-ware from Data Doctor. Shutdown message.

If you get this, it’s too late… The hard drive (specific files, actually), has been encrypted and you’re left with a Windows mess that barely works.

After you see this message and your computer shuts down, you’re stuck with a message stating that “Windows has recovered from serious error. Some files can be corrupted. Disk checking is strongly recommended.” This is NOT a Windows error.

Upon attempting to access a file that’s been encrypted, you’re met with another error message stating: “Unable to open the file due to data corruption.” Upon clicking the “Repair” button, you see the next screen:

Data Doctor 2010, Requesting Payment.

Hey look everyone, my favorite topic! Software asking for credit card information…

Some files may or may not be encrypted, but the software will continue to nag you to purchase it. They’ll even charge you an activation fee so they don’t need to pay any fee’s for the credit card being run.

Don’t install this program. PLEASE don’t.

I’ll fire up a Virtual Machine here shortly and make an infection video for everyone to see how this works as well.

If you’re reading this and curious what we recommend for anti-virus software, we heavily recommend Vipre. We are a local reseller, so if you’re interested, give us a call and we should be able to get you a discount.
Justin

FOR IMMEDIATE RELEASE:

Beaverton, OR —Dec. 21, 2009— Protocol16, a computer company focusing on on-site computer repair, has formed a partnership agreement with Sunbelt Software to provide a unique security solution for customers.

Protocol16 will recommend, and resell, Vipre anti-virus, with anti-spyware capabilities to it’s customers.

“I have used several anti-virus companies over the years, to include Personal and Enterprise level products, and I must say, Vipre is at the top of my list.” said Justin Royce, owner of Protocol16. “Not only is Vipre fast and unobtrusive to computer users, it recently won a VB100 score at the latest anti-virus face off. Finding all 100 random “in the wild” files on the test is a pretty big thing. I’m sure our customers will agree that Vipre is a better solution than others as well.”

About Protocol16
Protocol16 was started in 2007 in response to a growing demand for technical services in the military communities of Germany. Since starting, Protocol16 has relocated to Oregon and launched a website and mobile computer repair business in the Portland Metro region. Headquartered in Beaverton, Protocol16 is quickly becoming a leader in mobile repair for businesses and consumers. Protocol16 maintains that customer satisfaction is the absolute primary goal of the business.

# # #