Just spent an hour and a half with my son getting THIS (http://www.pandasoftware.com/virus_info/encyclopedia/overview.aspx?idvirus=18181&sind=0) off his computer.
Nasty little bugger- :(

My son "Didn't get around to installing any anti-virus software" since he got home from college. :mad:
And he happens to be a file sharing nut.(Unlike the ol' man....I'm just a regular nut) :p

Notice it happens to be #2 after Klez on Pandas list? Be on the lookout!

I just got a generous offer in my email tonight for some refinancing or penile enlargement or something that consisted of an attachment that came to about 80K. I deleted it with MailWasher, but I was wondering if it might be a virus (a bit small, but who knows??). I wonder if it could be your nasty little friend....:eek: :mad: :eek:

Boy- I don't know. You have to be on your toes all the time. I had never even heard of this "Parite.B" until his computer had an unusually large number of temp files with weird extensions.
(It puts a file 177,622 bytes in size in the Windows temp directory)

Then error messages started popping up, along with strange happenings in his system properties info window....Like missing system information, strange acting screen savers etc.

Did an on-line virus scan and there were over 900 files infected....Took a lot of cleaning and other special procedures like removing restore points as recommended in some of the links for removal.

It's interesting that "Countries most effected" are:
GERMANY 5,88%
BELGIUM 3,49%
NETHERLANDS 3,17%
ITALY 2,45%
DENMARK 2,42%
Who knows what kind of files he's been downloading. :eek:

It's apparently been around since 2001 and has recently resurfaced.
Also creates a registry key: HKCU\ Software\ Microsoft\ Windows\ CurrentVersion\ Explorer\ PINF

Needless to say...After removal, he now has some Anti-Virus software. Several more scans and things look clean...And it runs a whole lot better now too! :p

Actually, it is very good advice to blow out previous restore points after any kind of infection (viral, trojan, spyware), at least back to the point of the last known clean one.

That's good to know mjc...And makes sense. I blew them all out!
I don't think he had it that long-(Not sure), but it was spreading like crazy.