ATTN: member gene stills - Team Camaro Tech
Tech 2001 General Tech questions from 2001
Replies ONLY, no new topics.

 
LinkBack Thread Tools Display Modes
post #1 of 10 (permalink) Old Oct 25th, 01, 06:02 PM Thread Starter
DjD
Retired
Dennis
 
DjD's Avatar
 
Join Date: Apr 1999
Location: Fortuna, CA
Posts: 26,548
Garage
Post

Gene - you have a virus on your computer... I just received an e-mail (the virus sent it) from you. It's titled "55 CHEVY PARTS" and the message is;

<BLOCKQUOTE>quote:</font><HR>Hi! How are you?

I send you this file in order to have your advice

See you later. Thanks

<HR></BLOCKQUOTE>

The attachment is "55 CHEVY PARTS.doc.pif"

I believe this one's called "sircam" you can find out more at www.symantec.com/avcenter/venc/data/[email protected]

I know you didn't send this intentionally, this is just to inform you so you can stop it from spreading... I didn't think it wise to e-mail you this as activity in your inbox could cause it to send more infected messages...

Dennis
DjD is offline  
Sponsored Links
Advertisement
 
post #2 of 10 (permalink) Old Oct 25th, 01, 06:16 PM
Senior Tech
 
Join Date: Jan 2002
Posts: 505
Post

I get those "your advise" mails ALL THE TIME...always from a different sender...
cavemate is offline  
post #3 of 10 (permalink) Old Oct 25th, 01, 06:18 PM
Senior Tech
 
Join Date: Jan 2002
Posts: 505
Post

The virus isn't sent grom the named mailer...A hacker has broken into his account and wrote sent the virus to others..you may be on his buddy list (AOL) or in his computer somewhere.
cavemate is offline  
 
post #4 of 10 (permalink) Old Oct 25th, 01, 06:52 PM Thread Starter
DjD
Retired
Dennis
 
DjD's Avatar
 
Join Date: Apr 1999
Location: Fortuna, CA
Posts: 26,548
Garage
Post

There are many ways for this one to spread. There have been so many lately I can't keep track of them.... This type, the most common way is for someone to receive the message and open the attachment (note the double extension ".doc.pif) which sets off a chain of events. It goes to the IE browser's cache folder and finds graphics files, and other various files (actually looks for a theme, "cars & parts" etc) on the infected PC and matches them with e-mail addresses that were listed on the pages you have visited. It then sends your docs and graphics (with the added extension) to those addresses with itself imbeded in them...

My email address is listed in a page that is linked off the ads main page at this site. I bet Gene has a Word document titled 55 CHEVY PARTS.doc on his PC...

There are over 55,000 defined virus' that Norton Anti Virus knows about!! Each has it's own twist!! That doesn't include worms and joke virus' that are out there as well!!

DjD is offline  
post #5 of 10 (permalink) Old Oct 26th, 01, 02:24 AM
Moderator
Guess
 
HwyStarJoe's Avatar
 
Join Date: Jan 2001
Location: New Taxes York
Posts: 15,366
Post

Here's at least one link to full info on the Sircam worm, and every other virus out there if anyone wants complete information....
http://www.symantec.com/avcenter/[email protected]

Here's another good link to check out.....
http://www.antivirus-online.de/english/



[This message has been edited by HwyStarJoe (edited 10-26-2001).]
HwyStarJoe is offline  
post #6 of 10 (permalink) Old Oct 26th, 01, 02:30 AM
Senior Tech
John
 
Join Date: Feb 2001
Location: Maine
Posts: 3,099
Post

I got one of those over the summer, but it was written in Spanish.
boodlefoof is offline  
post #7 of 10 (permalink) Old Oct 26th, 01, 02:34 AM
Gold Lifetime Member
Rick
 
Join Date: Feb 2000
Location: Accord, NY
Posts: 4,817
Post

We also need to be aware of the need to constantly update the virus definition files.

We just spent 2 days at work recovering from Nimda.

------------------
Rick Dorion
69 RS Conv,355,M20,4.10's and I don't worry about stone chips.
RickD is offline  
post #8 of 10 (permalink) Old Oct 26th, 01, 04:05 AM
xodus921
Guest
 
Posts: n/a
Post

Nimda was a bad one. Actually shut down our internet server at work. We normally don't get bothered by the virus's. The last one to hit was the Anna kornakova (the 15 year old tennis girl) naked virus. it forwarded its self out everytime to everyone every time you opened it. It was pretty funny to see the higher up people in the company trying to open the picture 5 and 6 times to see this poor girl naked.

------------------
Tony
<UL TYPE=SQUARE>
<LI>1979 Z-28, 350- Edelbrock Performer RPM Package- TH350
<LI>1970 Cadillac Hearse - 472 BB automatic 375hp
<LI>2000 Gmc Sonoma - 5-speed 4.10 rear[/list]
[This message has been edited by xodus921 (edited 10-26-2001).]
post #9 of 10 (permalink) Old Oct 26th, 01, 05:30 AM Thread Starter
DjD
Retired
Dennis
 
DjD's Avatar
 
Join Date: Apr 1999
Location: Fortuna, CA
Posts: 26,548
Garage
Post

Symantic has a disclamer for the nimda virus that says even though their products can detect it and rid the infected PC of symptoms, they cannot promise it to be 100% effective. It's not confirmed but it's believed to capture password and login IDs for remote drive connections etc. Our corp policy is to shut down and fdisk any workstation infected with nimda. The corp feeling is the loss of company data at the PC level is a small price to pay compared to having it run rampent!!
DjD is offline  
post #10 of 10 (permalink) Old Oct 26th, 01, 06:09 AM
Senior Tech
 
Join Date: Feb 2001
Location: IL ,USA
Posts: 256
Post

I kept receiving emails similar to that a few weeks ago I just kept deleiting them they finally quit coming after 4-5 days
I quess its a good thing i didnt open it
3DUDE is offline  
Sponsored Links
Advertisement
 
Reply

Quick Reply
Message:
Options

Register Now



In order to be able to post messages on the Team Camaro Tech forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.

User Name:
Password
Please enter a password for your user account. Note that passwords are case-sensitive.

Password:


Confirm Password:
Email Address
Please enter a valid email address.
NOTE we receive a lot of registrations with bad email addresses. IF you do not receive your confirmation email you will not be able to post. contact support and we will try and help.
Be sure you enter a valid email address and check your spam folder as well.



Email Address:
OR

Log-in










Thread Tools
Show Printable Version Show Printable Version
Email this Page Email this Page
Display Modes
Linear Mode Linear Mode



Posting Rules  
You may not post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On

 
For the best viewing experience please update your browser to Google Chrome