Don't open from [email protected]

**RoniMan** · 05-19-2003, 09:51 PM

http://www.virusbtn.com/resources/viruses/palyh.xml

don't know if people already know about this. but unfortunately, i DIDN'T so now my comp is infected, any suggestions? or should i wait till may 31?

thanx

**coleslaw** · 05-19-2003, 09:55 PM

Yep. I noticed in MailWasher that I got 2 emails from [email protected] with attachments. One mentioned something about my password. The weird thing is that it was addressed to an electrical and computer engineering class mailing list, so the server at school must have gotten hit.

**nickel** · 05-19-2003, 10:21 PM

i got the same e-mail and my computer couldn't open it.
good thing.

thanks for the heads up Roniman

**NuTs62** · 05-19-2003, 10:36 PM

Fortunately, I use Norton Internet Security. It has blocked out dozens of infected attachments for me

But I have yet to get that one though. Thanks for the heads up!

**chrissy** · 05-20-2003, 06:23 AM

Originally posted by NuTs62
Fortunately, I use Norton Internet Security. It has blocked out dozens of infected attachments for me But I have yet to get that one though. Thanks for the heads up!

Recieved the email this morning, Norton stopped it

**guiseppewv** · 05-20-2003, 08:10 AM

**Joshua** · 05-20-2003, 11:37 AM

Microsoft Launches Virus Information Center as Deceptive Worm Floods
Inboxes
Microsoft, Network Associates (parent company of McAfee), and Trend
Micro announced that they have formed an initiative called the Virus
Information Alliance (VIA), a new way for customers to get information
about virus threats that affect Microsoft technology. The VIA
announcement is well timed; a new network worm called Palyh is
spreading quickly through email and LANs.

Palyh, also called the Mankx worm, appears as mail from
[email protected], a spoofed address. The email message carries a
virus-infected attachment with a .pif extension that Windows treats as
an executable. The message body tells users that "all information is
in the attached file." The new worm isn't the first to prey on
unsuspecting users with deceptive messages. In 1999, the ILOVEYOU
email worm shut down many companies' email servers for several hours.
Like the ILOVEYOU worm, the new worm replicates itself using users'
email address books.

The new worm, which began spreading this weekend, had antivirus
vendors rushing to update their virus definitions. As of yesterday
morning, many vendors hadn't released new antivirus definitions, which
helped lead to the worm's rapid spread. But by last night, all the
major antivirus vendors had updated their definitions. New security
features in Microsoft Outlook protect users who have up-to-date
software: By default, the .pif extension is disabled in Outlook 2000
with Post-Service Release 2 installed and in Outlook XP.

Microsoft and its industry partners hope to educate and alert
customers about virus threats, thereby minimizing the future spread of
worms such as Palyh. The new initiative, which is long overdue,
includes the launch of a new Virus Information Center that contains
virus alerts, including technical information about viruses in the
wild and information about how customers can protect themselves. In
the future, the alliance will add white papers and other resources to
help users prevent viruses from spreading. Network Associates and
Trend Micro will provide information for the site. Microsoft says it
invited all antivirus vendors to participate in the program, but
Network Associates and Trend Micro were the only two companies who
chose to participate at this time. Microsoft hopes to add more vendors
in the future.
http://www.microsoft.com/technet/sec...us/default.asp

**RoniMan** · 05-20-2003, 11:42 AM

Originally posted by SnotRocket
http://www.microsoft.com/technet/sec...us/default.asp

<sandler>once again, information that would have been important to know 3 DAYS AGO!!!!</sandler>

**Jenny** · 05-20-2003, 08:43 PM

I had 10-12 of them, so I deleted them all. damn.

**dRu168** · 05-20-2003, 08:46 PM

i accidently opened it up at work...luckly our anti-virus software caught it...*whew* =P

**NuTs62** · 05-20-2003, 11:22 PM

any clue what to do after you've been hit? my cousin's friend got hit I believe, and can't do anything on the computer I think? I've tried lookin on websites, and all they show us information regarding what has happened, but no cures.

**RoniMan** · 05-20-2003, 11:30 PM

Originally posted by NuTs62
any clue what to do after you've been hit? my cousin's friend got hit I believe, and can't do anything on the computer I think? I've tried lookin on websites, and all they show us information regarding what has happened, but no cures.

from my searches, it seems that the virus is set to "die" on may 31. i basically let a "virus detected" window open, and it hasn't bothered me since.

**Markel** · 05-21-2003, 07:22 PM

From a newsletter I get:
Quick check: right now, look in your Windows folder for a file called
msccn32.exe. If you have it, you're infected. Run over to
http://securityresponse.symantec.com...[email protected]
and pick up the free removal tool.

**Joshua** · 05-21-2003, 08:33 PM

The virus doesn't carry a payload. All it does it use your machine and address to to spread itself. It doesn't actually do anything to damage your machine or others.

**Dave_7** · 05-21-2003, 08:49 PM

Originally posted by DarkFury
All I can say is... Keep a Norton Ghost Backup just in case.

Yep... nothin' beats a recent Ghost Backup.

Dave.

Thread: Don't open from [email protected]

Thread Tools

Search Thread

Display

Don't open from [email protected]

Bookmarks

Bookmarks

Posting Permissions