Worm Comes Disguised As Windows Warning


The Info (http://www.washingtonpost.com/wp-dyn/articles/A35735-2003Sep19.html)

got the same ! arrrrg . yes it seems it was from Microsoft( or stated it was) but the format was wrong. and my ISP didnt clean it, but they have cleaned alot since. same as the Sobig , it was sent to someone , by someone, ( neither in my book), but ended up in my inbox ? bugga, hate that garbage ! had several thousand like that from Sobig.

Strange isn't it, that people still believe and click.

How much money has to be spent by MS advertising the fact that they do not send out virus warning emails to individual users of their programs. That's the job of the AV companies.

Hi Shep.... at least just the presence of so many emails would turn on a switch that flashed a sign saying "Warning........... something is not right here!!!"
I thought that until I saw around 300 on an Inbox list at a friend's place and she was getting ready to go through them.

Thanks for the link Hybridmonolith. We will be hearing more about this one, if only because of it's disguise.

Croc.

http://forums.speedguide.net/showthread.php?s=&threadid=125338

I saw quite a few hits Friday already on the Sven.A virus. We'll be busy next week, I think this one will be a big spreader.

Originally posted by Croc
Strange isn't it, that people still believe and click.

How much money has to be spent by MS advertising the fact that they do not send out virus warning emails to individual users of their programs. That's the job of the AV companies.

Croc. You trying to get me started on my soapbox again there Croc? :p

I got the same thing! I got the message last week and got the Virus. This week I have got the Micsosort E-mail twice today 9-20-03 and 3 times on friday. I bounce the E-mail back to them with Mailwasher. Lucky for me my Anti virus works great.

Try not to bounce e-mails with viruses... Most viruses spoof their sender lines, meaning you could be inadvertantly spreading the virus yourself...

I have had 30 to 50 emails with the Worm.Automat.AHB attched with the to line like inet user, microsoft user, client, net client and others that are close

Originally posted by blebs99
You trying to get me started on my soapbox again there Croc? :p
:nope: Not me!!
Been there, seen that. ;)

If you do feel the need to vent, go for it but only if you have the urge and the time. :p I'm in recovery so there's plenty of time spare except when the wife is around lol. ;)

Croc.

Man I get about 30 of them a day on the SG mail account!

My guess is that lots of folk don't have a clue it's bogus...Especially if they don't look at their email headers.

yep, I get to go today , like I have been doing for a few days, and help someone recover from this. Not that I really mind, it pays... but geez they just open and click those attachments to see "what " they are ! "oh boy , it's for me !" hahaha... it just amazes me.... like the one about that silly little bear in the windows folder.
Thanks SG ! and Salute to all of those who come and post here ! may the silicon gods smile ever so brightly on you.

I received 2 emails with installation23.exe file I didn't open it as I never open .exe .vbs files etc

It was from some made up msn email address. And was a very authentic Windows Update page, links and all. Saying it was Critical for Outlook. I checked windows update website and theres no such update needed for me.

I only went to MSN site yesterday for the first time in 2 years, is someone scanning email addresses.

Anyone know if they were dodgy, panda antivirus didn't say anything? And didn't even tell me it had an exe attached!

Also can html be turned off for incoming, I turned it off for outgoing but can't find an incoming option. Outlook 2000

Cheers

Here's a copycat..came out yesterday or so..

"Dumaru"

http://securityresponse.symantec.com/avcenter/venc/data/w32.dumaru.m@mm.html

Stevejrc....as a matter of fact there is a way to prevent those pesky .exe attaxments( lol) from opening.... let me dig up the tweak for you...
Block Executable Attachments in Outlook Express for all versions of windows

Outlook Express normally allows you to view and save all e-mail attachments. This tweak blocks executable files that potentially contain harmful viruses.

Open your registry and find or create the key below.

HKEY_CURRENT_USER\Software\Microsoft\Outlook Express

Create a new String value, or modify the existing value, called "BlockExeAttachments" and set it according to the value data below.

0 = disable restriction, 1 = enable restriction

Reboot to have the settings take effect.

hope this helps you out.. it should let you securely run Outlooks . Now, theres yet another tweak for making a Secure Folder for sending those exe's , (that you may want) to allow you to open them safely in a special folder.... then decide what to do... but let me know if you want that tip... I will dig it up then.

thanks, is that the same for Outlook or is that for Outlook Express
only. I have full Outlook 2000 (there different). I found the registry
key for Outlook Express but Outlook is under:
HKEY_CURRENT_USER\Software\Microsoft\Office\Outlook
with all my email accounts.

Outlook 2000 has the option under securuity to warn you before opening exe's etc. I checked that on.

ok.. it said for all Outlooks.. but since you have that checkbox.. it may not matter.
But again it said for all....

Originally posted by stevejrc
Also can html be turned off for incoming, I turned it off for outgoing but can't find an incoming option. Outlook 2000

Cheers

As far as I know, that option wasn't available until Service Pack 1 for Office XP....meaning Outlook 2002.

My advice...download all updates for Office 2000
http://office.microsoft.com Including service packs, and the Outlook E-Mail Security update.

And all updates from Microsoft for Windows.(well, critical, and whatever recommended ones you want)

Also, from what I've read, any/all updates for Internet Explorer still improves your sysmtems HTML weaknesses...even when viewing HTML messages through Outlook.

You can turn off the preview pane in all versions of Outlook though.

ok thanks. are IE6 and Outlook service packs reliable, i've heard that windows service packs can screw the system up. all my stuff is 'out of the box' but I have all other possible updates that work
with pre service packs.

Originally posted by stevejrc
ok thanks. are IE6 and Outlook service packs reliable, i've heard that windows service packs can screw the system up. all my stuff is 'out of the box' but I have all other possible updates that work
with pre service packs.

Well...in all my years of supporting computers and networks...I've religiously kept up with Windows Updates. It's my rule of thumb....every machine I work on...gets every Windows Update. Servers included. I tell all my customers to maintain that themselves. It's part of safe computing...goes hand-in-hand with antivirus software now adays. Gone are the days where simply having antivirus software did the job...now having windows critical updates is a must have...it's half the battle.

I've yet to have one screw up a system...in my opinion, if a service pack or critical update hoses a system...it's because something was screwy with the system in the first place...there was already something wrong with it.

A system that has all updated software (OS, and apps such as Office), and an antivirus program...is more likely to shrug off a virus than a system with little or not updates...that's running the same antivirus software.

I have all the updates for all software, hardware fermware ALL. the last criticle update i got, on restart the boot cut to the option screene like for safe mode said the power was cut. It did start normole that was 2 weeeks back. It dose that every 3 days now. Is that OK or do I need a new power suply