|
ProwlerOnline, Plymouth/Chrysler Prowler Discussion Forum
Off Topic Virus with E-mail from Gary C (Page 2) UBBFriend: Email This Page to Someone!
profile | register | preferences | faq | search
|
This topic is 2 pages long: 1 2 This topic was originally posted in this forum: Tires, Rims Discusssion |
Author | Topic: Virus with E-mail from Gary C |
Denis W.Sloan Prowler Junkie Posts: 46 |
posted 11-07-2002 05:07 PM
Gary I got an E-mail with your name on it and it said from the prowleronline.com and when I opened it this afternoon there was a virus in it according to my Norton and so I scanned it and quarantined it then got rid of it. I was wondering if you sent an E-mail to me and if so did you happen to know that there is virus attaching itself to your downloads? Just thought that you might want to know this since you E-mail others in the group. As soon as I opened it the Norton red screen popped up to warn me. Take care, Denis W.Sloan |
ed monahan Prowler Junkie Posts: 33595 |
posted 11-08-2002 12:26 AM
Denis, Gary did not send that email. That is how the KLEZ virus works. It is sent out in someone else's name. It attaches to an address book and forwards it. Trying sending it back to Gary and see what you get from the email post office. |
Gary C Prowler Junkie Posts: 12017 |
posted 11-08-2002 12:52 AM
Thanks Ed, pretty fried to explain, Dennis sorry this happened and no I didn't send ya an email,,,,,,,Very glad you caught it,,,,,, Dennis first beer is on me when I get back,,, ------------------ |
Denis W.Sloan Prowler Junkie Posts: 46 |
posted 11-08-2002 07:19 AM
Thanks Ed for explaining that virus. It was strange because it had as the title the word height and if I remember some of the guys were kidding Gary about having a tall PT Cruiser for the winter here. So being the normal person I opened it and there was when thank goodness my Norton kicked in. Gary you can stop up here at the bird store and I will sell you a bird to keep you company for the winter months. I am across the street from Castleton Square mall. Look forward to meeting you someday soon. Denis |
Black Tie 161 Prowler Junkie Posts: 3563 |
posted 11-11-2002 07:23 AM
FYI: Virus Profile --- Update 4/18/2002 --- This latest W32/Klez variant is already detected as W32/Klez.gen@MM by McAfee products using the 4182 DATs (23 January 2002) or greater. W32/Klez.h@MM has a number of similarities to previous W32/Klez variants, for example: W32/Klez.h@MM makes use of Incorrect MIME Header Can Cause IE to Execute E-mail Attachment vulnerability in Microsoft Internet Explorer (ver 5.01 or 5.5 without SP2). The worm may also copy itself into RAR archives, for example: The worm mails itself to email addresses in the Windows Address Book, plus addresses extracted from files on the victim machine. It arrives in an email message whose subject and body is composed from a pool of strings carried within the virus (the virus can also add other strings obtained from the local machine). For example: Subject: A very funny website The file attachment name is again generated randomly, and ends with a .exe, .scr, .pif, or .bat extension, for example: Thanks to the use of the exploit described above, simply opening or previewing the message in a vulnerable mail client can result in infection of the victim machine. W32/Klez.h@MM masquerades as a free immunity tool in at least one of the messages used. Below is the message sent by the virus itself. Subject: Worm Klez.E Immunity NOTE: Because this tool acts as a fake Klez to fool the real worm,some AV monitor maybe cry when you run it. If so,Ignore the warning,and select 'continue'. If you have any question,please mail to me. .txt Ensure that you are using the minimum DAT specified or higher. Klez can delete anti-virus software files. It may be necessary to reinstall VirusScan after cleaning a system. Additional Windows ME/XP removal considerations |
This topic is 2 pages long: 1 2 All times are CT (US) | This is an ARCHIVED topic. You may not reply to it! |
All material contained herein, Copyright 2000 - 2012 ProwlerOnline.com
Powered by Infopop www.infopop.com © 2000
E-Innovations, LP
Ultimate Bulletin Board 5.45c