Hunker down people, BIG virus coming your way!!!!! **Updated with removal tools**

[rh71]

Someone let us know when Norton updates their S#IT.

 

[JonnyBlaze]

my definition files are dated 1/23, the latest they have up. ill post back if that changes.

JB

 

[RossMAN]

Originally posted by: JackBurton

Originally posted by: MercenaryForHire
EXE attachments are like Darwin Awards for computer users.

Do not click on them. Ever.

- M4H

Dude, this one is tricky (for regular users). It comes in a zip and when you open the zip, it looks like a text file (has a text icon) but has a *.scr extension. Users not paying attention see a text file, open it and BAM, your toast!

That is tricky/sneaky but I would NEVER open a .zip unless it was from someone I knew and:
1) Was expecting a .zip from them
2) They know what they are doing

If I receive a .zip or any other attachment from someone and I wasn't expecting this or they don't have a clue, I copy the e-mail address, DO NOT OPEN THE ATTACHMENT then delete the email with attachment. Then I e-mail them with WTF?

 

[rh71]

Originally posted by: JonnyBlaze
my definition files are dated 1/23, the latest they have up. ill post back if that changes.

JB

Norton ? WTF - I just liveupdated and it left it at 1/21.

 

[RossMAN]

Mods - Can we please sticky this?

I just received a corporate wide e-mail with a warning about this virus.

Sure enough, 10 minutes later I received 3 e-mails with attachments from co-workers. Didn't open any of them, deleted them all and sent them e-mails telling them that they are TEH INTARWEB N00B

 

[Kelvrick]

Hmm... This is goign to suck for law firms with corporate clients (i'm in one of them). We email tons of stuff back and forth but mainly PDF's. I just bet some some idiot at our client's base is going to be infected and drag down their email system, thereby slowing down our work and wasting money.

 

[JonnyBlaze]

Originally posted by: rh71

Originally posted by: JonnyBlaze
my definition files are dated 1/23, the latest they have up. ill post back if that changes.

JB

Norton ? WTF - I just liveupdated and it left it at 1/21.

live update usually only updates once a week. go here and choose you version and download the intelligent updater.

JB

 

[Freejack2]

Spamnet is probably already blocking them. Norton is doing the same 1/21 thing here. They probably won't put out a liveupdate until later in the week.

 

[rh71]

Liveupdate is usually every Wednesday, but I thought they update on special events like this. :|

 

[gypsyman]

I updated NAV today at 12 noon PST. Nothing. Just updated 4:00 PST and new virus definitions being downloaded.

 

[pg22]

fuck*ng sh*t...my little brother opened this thing on my PC after playing a game. Does anyone have any idea what it does? I've searched for those files listed but have found none. Did I luck out?

 

[NokiaDude]

NAV has a 1/26 update for the virus definitions via Live Update.

 

[NokiaDude]

BTW, I don't know why, but in the 10 years of using a computer I've NEVER gotten a virus. I guess I'm lucky. I do use KAzaa Lite, BT, LimeWire, IRC.

 

[JackBurton]

Originally posted by: pg22
fuck*ng sh*t...my little brother opened this thing on my PC after playing a game. Does anyone have any idea what it does? I've searched for those files listed but have found none. Did I luck out?

Opening the zip doesn't do anything. Running the *.scr file within the zip does. Did he just unzip it


As NokiaDude said, I just did a LiveUpdate and I have a definition date of 1/26/04 now. Launching Outlook now, we'll see what comes down...

edit: Just checked my email. I didn't get the mydoom virus, but I did get klez out the ass. WTF? I've been getting klez infected email for a week now! :|

 

[NokiaDude]

NAV is calling this the "W32.Novarg.A@mm" virus. McAfee calls it "W32/Mydoom@MM". Watch out for either one!

 

[TheBoyBlunder]

Hmm...maybe I should install Norton Anti-Virus again.

 

[NokiaDude]

Originally posted by: TheBoyBlunder
Hmm...maybe I should install Norton Anti-Virus again.

Anything older than 2k, forget about it. ;D

 

[slick230]

Just updated McAfee Av and the DAT file has today's date, 1/26/04. Hopefully it has updated detections for this thing.

 

[TechnoKid]

I just got one in my email and was about to open it...I did...........









not open it! I'm not that stupid!

Message subject syas HELLO.

Body says: Mail transaction failed. Partial message is available.

Attachment is named: doc.zip and is 22KB in size.

 

[pg22]

w00t...just removed the crap from system.

 

[JC]

Originally posted by: JonnyBlaze
i think i already got that emailed to me. it said it was from elaine, the real address was a hotmail account. the zip file had one file in it that said something like pic.jpg ...exe

lol

i feel bad for anyone who actually opens these.

JB

I got an email from there today, address was F*CKENSUICIDE@HOTMAIL.COM

My ISP's email scanner didn't catch it, but I knew it was a virus. NAV (which I updated one hour ago) didn't catch it (and yes, set to scan compressed files), so I unzipped it to have a look, finally NAV caught the '.jpg .exe' file. It contained the W32.Dumaru.Y@mm virus.



JC

 

[ViRGE]

Originally posted by: RossMAN
Mods - Can we please sticky this?

I just received a corporate wide e-mail with a warning about this virus.

Sure enough, 10 minutes later I received 3 e-mails with attachments from co-workers. Didn't open any of them, deleted them all and sent them e-mails telling them that they are TEH INTARWEB N00B

Ross, you're also "TEH INTARWEB N00B," the "from" address is spoofed.

 

[PlatinumGold]

the ones that really get you are from people you know. i was expecting an email from a friend with an attachment and it was the virus.

 

[ViRGE]

Get the latest virus defs, pull up someone's instructions, and disinfect the machine, PG. It's not Feb 1st yet, so the DDoS attack hasn't started.

 

[arod]

BTW norton has 1/26 defs on my computer