| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 41941 | 2004-01-27 03:59:00 | What is "Worm.sco.a up to?? | Billy T (70) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 210316 | 2004-01-27 06:42:00 | > Can I assume that the use of my son's email address > is a spoof, or should I keep looking for an infection > in this particular box which is the only one I use to > download email? One of mine was a spoofed addy - rejected email from MAILER-DAEMON@oulu.fi because it was addressed to an unknown user at oulu.fi and contained a attached filename of "readme.zip" which would of been the worm. It quite clearly had my home email addy in the return path. My system is unaffected (being Linux) so I know it didn't originate from me. If your NAV is freshly updated and doesn't detect the worm your box should be clean (until the next variant gets released). |
Jen C (20) | ||
| 210317 | 2004-01-27 06:57:00 | Well :( I have just finished downloading over 60 messages from my son's account, nearly all of them carrying a live virus payload. Norton caught each one and cleaned it on the way through, but at 20 seconds per message that was a long time to sit waiting. Now I need to get an anti-spam program that lets me check and delete without downloading. I thought Mailwasher did this but on reading the June 2003 PCW article I see no sign of that feature. What program do I need? I can't stand the thought of clearing hundreds tomorrow X-(. BTW, the suffixes were doc.doc, doc.txt, pif, scr, zlo, zlg, htm, and bat. The zl* suffixes were for the files picked up by ZoneAlarm and quarantined before Norton got hold of them. I'm not sure what the precise mechanism is for that as I thought it would be one or the other program catching them, not both. Cheers Billy 8-:) :| |
Billy T (70) | ||
| 210318 | 2004-01-27 07:38:00 | hmmm... i might run norton antivirus update before getting email tonight ;) | Megaman (344) | ||
| 210319 | 2004-01-27 07:52:00 | Hi Billy T - Mailwasher does allow for checking & deletion of mail without downloading, I use it every day. M... |
Martina (4232) | ||
| 210320 | 2004-01-27 08:00:00 | Ta M BT :D |
Billy T (70) | ||
| 210321 | 2004-01-27 08:02:00 | AVG Antivirus Free Edition has an update with the release date 26-01-04. If that's northern hemisphere timing, we can hope it covers this...? If not, watch for more very soon. (Just posted a similar message on another thread when I saw this one) Obviously common sense about opening any email attachments should prevail regardless. |
Laura (43) | ||
| 210322 | 2004-01-27 09:06:00 | MY-Doom, AVG had an update for this at about 1pm today. From what I can gather about 2 hours after it surfaced. | gerrypics (323) | ||
| 210323 | 2004-01-27 10:14:00 | Just had a virus alert notification on this one from C.A. This virus does pretend to be a bonced email. So I would any bounced emails I would not open . From what I can found out so far about this one the attachment is a scr (hidden file extension again I suppose). For outlook and outlook express users disable the preview pane, (once a email is previewed which is the same as you opening it Do I need to say more). Do this by going to View... layout. just one thing that may help you prevent infection |
beama (111) | ||
| 210324 | 2004-01-27 21:49:00 | Update: As of 10pm last night, my son's account had received 87 virus-related emails, of which 70 carried the live virus payload. The other 17 were bounces of messages auto-cleaned by other ISPs. What was interesting was the number of reputable NZ companies that have either been infected or have strayed into XXX sites where their email adress has been harvested. I haven't dared open that account this morning, instead I have downloaded mailwasher and wil delete them tonight without downloading. I think I might dump that email address!!!! Cheers Billy 8-{) |
Billy T (70) | ||
| 210325 | 2004-01-27 22:35:00 | Just something you might like Billy: I have 3 Email addresses. One main address with Orcon, the other two are re-directs to this. I use the Main one for long-term contacts, or people I'll meet in Real-Life (Such as friends/relatives/business contacts). This is because its my firstname_lastname@orcon... Ive then got another @Orcon.... Redirects to the main one Then there's another I use to sign up to whatever I may need to online. Should I start getting Spam, I'll just drop my 3rd one and change it from its current to something else. That way any mail that would go to it simply bounces at the ISP level, and I have a fresh start.... Just something I thought you might like to know, works for me ;-) Chill. |
Chilling_Silently (228) | ||
| 1 2 3 | |||||