Virus alert!! - Hot Rod Forum : Hotrodders Bulletin Board
Hotrodders.com -- Hot Rod Forum



Register FAQ Search Today's Posts Unanswered Posts Auto Escrow Insurance Auto Loans
Hot Rod Forum : Hotrodders Bulletin Board > General Discussion> Hotrodders' Lounge
User Name
Password
lost password?   |   register now

Reply
 
LinkBack Thread Tools
  #1 (permalink)  
Old 02-24-2004, 08:57 AM
Member
 
Last photo:
Join Date: Dec 2003
Location: bakersfield, ca
Posts: 137
Wiki Edits: 0

Thanks: 0
Thanked 0 Times in 0 Posts
Virus alert!!

New type of virus came out last friday and its one tricky ****. We got it here at work and almost crashed our whole system. Even if you delete it when you get it, it doesnt go away! A lady here at work got an e-mail and didnt recognize so she deleted. Once deleted the e-mail shot straight to her adress book and took a name then re-e-mailed it self to another employee. That employee thinking this fellow employee e-mailed him, he opened the e-mail and within a couple of mins nearly crashed our whole system.

Everyone update your virus scan since this patch just came out a couple of days ago
Reply With Quote Quick reply to this message
Sponsored Links
Advertisement
 
  #2 (permalink)  
Old 02-24-2004, 09:59 AM
Kevin45's Avatar
Just one of the guys
 

Last journal entry: Garage Toys
Last photo:
Join Date: Jul 2002
Location: Urbana, Ohio
Age: 57
Posts: 3,055
Wiki Edits: 0

Thanks: 1
Thanked 12 Times in 12 Posts
Yea....and what is the name of the virus? Most virus are nothing more than everyone e-mailing everyone telling them about a virus. Then what it does is jam up the e-mail systems. I find it hard to believe if it always happens to someone else or he said,she said, and not even a name for it. Check out www.snopes.com and see if it is a hoax or not.

Kevin
Reply With Quote Quick reply to this message
  #3 (permalink)  
Old 02-24-2004, 10:59 AM
Member
 
Last photo:
Join Date: Dec 2003
Location: bakersfield, ca
Posts: 137
Wiki Edits: 0

Thanks: 0
Thanked 0 Times in 0 Posts
Its called the DOOM worm.
Reply With Quote Quick reply to this message
  #4 (permalink)  
Old 02-24-2004, 11:09 AM
blndweasel's Avatar
paints everything flat black
 

Last journal entry: September 2005 - Current
Last photo:
Join Date: Mar 2003
Location: San Diego, CA
Posts: 363
Wiki Edits: 0

Thanks: 0
Thanked 0 Times in 0 Posts
myDoom won't infect your system unless you actually open the email. It's possible that your co-worker, in the process of deleting the message, allowed the email to display in their "preview pane" which essentially causes the email client to read the entire email message. As standard practice in our department, we disable the preview pane in Microsoft Outlook, to prevent this from happening. In rare cases, the virus payload is in the email message header, and your system can get infected without actually opening it.

All this boils down to, is that your IT department needs to employ a good email filtering schema, and needs to be scanning incoming messages and quarrantine suspect viruses. Course that's all a load of beans if you aren't keeping your virus definitions up to date.

the blonde weasel
san diego, CA
Reply With Quote Quick reply to this message
  #5 (permalink)  
Old 02-24-2004, 05:00 PM
Kevin45's Avatar
Just one of the guys
 

Last journal entry: Garage Toys
Last photo:
Join Date: Jul 2002
Location: Urbana, Ohio
Age: 57
Posts: 3,055
Wiki Edits: 0

Thanks: 1
Thanked 12 Times in 12 Posts
Well I found this on Symnatecs website.

http://securityresponse.symantec.com...varg.a@mm.html

http://www.symantec.com/avcenter/hoax.html


W32.Mydoom.A@mm (also known as W32.Novarg.A) is a mass-mailing worm that arrives as an attachment with the file extension .bat, .cmd, .exe, .pif, .scr, or .zip.

When a computer is infected, the worm sets up a backdoor into the system by opening TCP ports 3127 through 3198, which can potentially allow an attacker to connect to the computer and use it as a proxy to gain access to its network resources.

In addition, the backdoor can download and execute arbitrary files.

There is a 25% chance that a computer infected by the worm will perform a Denial of Service (DoS) on February 1, 2004 starting at 16:09:18 UTC, which is also the same as 08:09:18 PST, based on the machine's local system date/time. If the worm does start the DoS attack, it will not mass mail itself. It also has a trigger date to stop spreading/DoS-attacking on February 12, 2004. While the worm will stop on February 12, 2004, the backdoor component will continue to function after this date.




--------------------------------------------------------------------------------
Notes:
Symantec Consumer products that support Worm Blocking functionality automatically detect this threat as it attempts to spread.
Symantec Security Response has developed a removal tool to clean the infections of W32.Mydoom.A@mm.
Virus definitions dated prior to February 4, 2004 will detect this threat as W32.Novarg.A@mm.

--------------------------------------------------------------------------------


Also Known As: W32.Novarg.A@mm, W32/Mydoom@MM [McAfee], WORM_MIMAIL.R [Trend], Win32.Mydoom.A [Computer Associates], W32/Mydoom-A [Sophos], I-Worm.Novarg [Kaspersky]

Type: Worm
Infection Length: 22,528 bytes, variable file size for a .zip attachment



Systems Affected: Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows XP
Systems Not Affected: DOS, Linux, Macintosh, OS/2, UNIX, Windows 3.x

Last edited by Kevin45; 02-24-2004 at 05:11 PM.
Reply With Quote Quick reply to this message
  #6 (permalink)  
Old 02-24-2004, 10:14 PM
crazy larry's Avatar
Member
 

Last journal entry: better comparison before and after shots
Last photo:
Join Date: Oct 2002
Location: East Texas
Age: 42
Posts: 2,299
Wiki Edits: 0

Thanks: 0
Thanked 0 Times in 0 Posts
it works. my home puter caught it. sob hasn't worked right since. so i just unplugged it.
Reply With Quote Quick reply to this message
  #7 (permalink)  
Old 02-26-2004, 08:16 PM
King of my Man-cave.
 
Last photo:
Join Date: Nov 2003
Location: Michigan
Age: 55
Posts: 2,836
Wiki Edits: 0

Thanks: 2
Thanked 4 Times in 2 Posts
And people wonder why I prefer Macs!
Reply With Quote Quick reply to this message

Recent Hotrodders' Lounge posts with photos

Quick Reply
Message:
Options

Register Now

In order to be able to post messages on the Hot Rod Forum : Hotrodders Bulletin Board forums, you must first register.
Please enter your desired user name (usually not your first and last name), your email address and other required details in the form below.
User Name:
If you do not want to register, fill this field only and the name will be used as user name for your post.
Password
Please enter a password for your user account. Note that passwords are case-sensitive.
Password:
Confirm Password:
Email Address
Please enter a valid email address for yourself.
Email Address:

Log-in

Human Verification

In order to verify that you are a human and not a spam bot, please enter the answer into the following box below based on the instructions contained in the graphic.




Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools

Posting Rules
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT -6. The time now is 01:29 PM.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.
Search Engine Optimization by vBSEO 3.6.0 PL2
Copyright Hotrodders.com 1999 - 2012. All Rights Reserved.