Post by Kitty Kitty on Aug 22, 2003 10:57:59 GMT
This thing is spreading like mad, and whoever got it started is using an email spoof. Meaning they can send it to you from your mom, or your ISP, or some tech support site.. wherever. Or at least, it will look that way.
The common (known) subject heading for the messages this thing is being sent out with so far are:
Your details
Thank you!
Re: Thank you!
Re: Details
Re: Re: My details
Re: Approved
Re: Your application
Re: Wicked screensaver
Re: That movie
The virus itself is a worm. Pain in the rear from what I understand. It seems to most often show up as an attachement of an email message with a .PIF extention (Windows Program Information File), meaning that while not technically an Excecutable, windows WILL run it as one, since it's an internal scripting language of sorts of the OS.
Sooo.. for the time being (and sound advice in general really) don't open ANY .PIF attachments in email. I've seen this thing in my web based mailbox with about 20 different names from at least 4 dozen addresses, and even seen a few messages telling me that when I tried to send it to others, it was caught and bounced back. (Which is of course, impossible since it's web mail based and I never ran it - so all that means is someone HAS sent it using my email address with their spoof, and the auto-virus responder has kicked the message back to where it THOUGHT it came from).
If you (or someone you know) DOES get infected somehow with this, look here:
www.symantec.com/avcenter/venc/data/w32.sobig.f@mm.removal.tool.html
The common (known) subject heading for the messages this thing is being sent out with so far are:
Your details
Thank you!
Re: Thank you!
Re: Details
Re: Re: My details
Re: Approved
Re: Your application
Re: Wicked screensaver
Re: That movie
The virus itself is a worm. Pain in the rear from what I understand. It seems to most often show up as an attachement of an email message with a .PIF extention (Windows Program Information File), meaning that while not technically an Excecutable, windows WILL run it as one, since it's an internal scripting language of sorts of the OS.
Sooo.. for the time being (and sound advice in general really) don't open ANY .PIF attachments in email. I've seen this thing in my web based mailbox with about 20 different names from at least 4 dozen addresses, and even seen a few messages telling me that when I tried to send it to others, it was caught and bounced back. (Which is of course, impossible since it's web mail based and I never ran it - so all that means is someone HAS sent it using my email address with their spoof, and the auto-virus responder has kicked the message back to where it THOUGHT it came from).
If you (or someone you know) DOES get infected somehow with this, look here:
www.symantec.com/avcenter/venc/data/w32.sobig.f@mm.removal.tool.html
