PCA Forums

another one folks, I've already gotten 4-5 with this - not picked up by NAV, AVG just issued a patch
maybe that covers this

text may say something about binary

details HERE


MYDOOM DETAILS
From: random e-mail address
To: address of the recipient
Subject: random words
Message body: several different mail error messages, such as: Mail transaction failed. Partial message is available
Attachment (with a textfile icon): random name ending with ZIP, BAT, CMD, EXE, PIF or SCR extension
When a user clicks on the attachment, the worm will start Notepad, filled with random characters

I've been getting these for days too. But I delete them using mailwasher before they get to my system.

More info:
http://securityresponse.symantec.com/av ... .a@mm.html


You get it by opening an attachment in an e-mail. It could look like it comes from a friend or a company, or it could look like a returned failed message.

NEVER open any attachment from anyone you don't know.

i allways get so worried when i see this.. thinking if you get it your screwed... but its allways click on the attachment to get it. so i got nothing to worry about other then my clients being dumbasses and getting it then haveing to go fix them.

AVG sucks on emails. It only shows that the email contains a virus if I manually scan it. I had it set to scan my email when Outlook Express was opened. I now have NAV 2003 reinstalled. NAV does a better job on emails. Looks like I'll also install NAV on the laptop too.

*Edit* I am only getting the virus delivered to my nascarfool.com addy. My PCA addy and Comcast Addy have not been hit yet.

In case someone needs a quick scan this looks like a quick fix.Just remember to disable windows restore
before running it if you are running Xp or (I think 2k). Reboot and run it again (un-plug any internet connections first).
bill


http://securityresponse.symantec.com/av ... .tool.html