• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Nasty virus out there. I've only received seven copies, today.

H

Harvey

Administrator<br>Elite Member
You don't have to open any attachment to get this one. If you're not protected, looking at the e-mail is enough to bite you. This sucker is mean. It changes subject line with every transmission, and it grabs other names from the sender''s address book and places that name as the sender, so it does not appear to be from the same source.

This appears to be a VBS virus. Beyond keeping your AV software up to date, there is one other thing you can do -- Uninstall Windows Scripting Host.

The other name for Windows Scripting Host is Visual Basic Scripthosting -- VBS. Around 95% of all Windoze users will never encounter a need for it. Uninstalling it is easy, and it removes the mechanism these viruses use to do their dirty deed. This means, you can't get a VBS virus, even if the latest update for your AV software has not yet figured it out.

Here's a url with step-by-step instructions for doing it. This will take you to a selector for Win 95, 98, 2K and NT. For other versions, the slightly more techie way is to find the file, WSCRIPT.EXE, and delete it, or just rename it.

This is totally non-destructive. If you ever do need it, all that will happen is, you'll get an error message saying the system can't find it. If so, you have two options -- re-install it, which is just as easy as the uninstall, or find another application that does the same thing without Windows Scripting Host. The latter is obviously the preferred solution.

Good luck. 🙂
 
Explain to me - how do you get a virus from email without opening an attachment? I've never heard of such a thing. Last I knew, I couldn't get a virus from plain text - am I wrong?
 
It's an Outlook only thing.
Outlook allows VBS code in the email text itself (kinda like html).

You don't even need to open it, if you have the preview window activated.

If you use other email clients, you are rather safe. If you use Netscape Mail, make sure you do not allow javascript in emails (defaults to no anyway, though) - it's almost as evil.

I think people only use Outlook because it is free - I wish they would not.
 
Ah - I see. I've always used Eudora for email so I've never had to worry about getting sent a virus via email.

For all of you out there using Outlook for email you should look into using Eudora. It's a very nice and powerful email program and is free.
 
If this is true, keep in mind that it is a flaw in Outlook which is being exploited by the virus. Under no circumstances should instructions be executed without opening the attachment.
 
-- << Under no circumstances should instructions be executed without opening the attachment. >>

Should is nice. What makes you think the idiots who write and launch viruses listen to should. Hell! -- Even Micro$oft can't get that one right. :|

I once read the manual for the human body. It says there is supposed to be only one asshole issued for each human being. Obviously, someone has been overproducing, because there are way too many assholes in the world. :Q
 
> Explain to me - how do you get a virus from email without opening an attachment? I've never heard of such a thing. Last I knew, I couldn't get a virus from plain text - am I wrong?

It exploits a mime vulnerability, tells Outlook it's a wave file which outlook happily tries to play by launching it. Brilliant eh?

That said, no need to remove WSH, the script blocking technology in NAV handles all of that for you (and should be intercepting this virus when you read your mail)

Bill
 
> Is there a way in Outlook XP (2002) to have it NOT auto-run VBS/java scripts

It is a bug in outlook causing it to autorun this, not a normal feature you can control.
Bill
 
<< Is there a way in Outlook XP (2002) to have it NOT auto-run VBS/java scripts >>

Yes. It's called Netscape 6.22 or Mozilla. Haven't tried Opera, yet, but that will probably take care of it, too. 🙂

Windows is a virus with mouse support.
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top