RE: COMP: Virus -Bogus billmaryott@home.com

Subject: RE: [iris-talk] COMP: Virus -Bogus billmaryott@home.com
From: S* S*
Date: Thu, 6 Jun 2002 23:00:48 -0400
Importance: Normal

Cathy,

That e-mail was not from "billmaryott@home.com".  home.com no longer exists.
That email contained one of the variants of the KLEZ virus that is making
the rounds again and again.  One of the things it does is to spoof the
return address by choosing an address at random from those found on the
infected computer.  You may be able to track down who it came from by
tracing the IP address of the sending computer found in the header of the
message, but I cannot tell you how to do so with AOL mail since they have
such a weird way of handling their mail.

This virus is also interesting in that it will pick addresses not only from
the address book, but from any file that has addresses stored in them.  This
may be from a cached web page, a file with e-mail addresses in it, etc.  It
also uses its own SMTP engine to send the messages so the infected person
will not see the messages sent in their sent items folder of their e-mail
program.  The only real clue, besides a slowing of the normal processing of
files is extraordinary usage of the internet connection (and since most
people no longer have an external modem, which I highly recommend, they
never see all that activity).

Bottom line is that bill and mary are not the ones who sent the
e-mail--someone else did who had their now defunct address and your address
on their computer.

-----Original Message-----
From: cathycampi@aol.com [c*@aol.com]
Sent: Thursday, June 06, 2002 8:50 PM
To: iris-talk@yahoogroups.com
Subject: [iris-talk] COMP: Virus -Bogus billmaryott@home.com


Just received a direct email from "billmaryott@home com" Message  said
announcing a new website BUT attached was a zip file not an URL so I deleted
it. I decicided to check it out and went back,Downloaded and checked the zip
file. It definitely contains a virus so DONT OPEN IT.

If it wasn't such a serious thing I would be tempted to tease Bill about my
not ordering this year...

Cathleen Campi


[Non-text portions of this message have been removed]




Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/


---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.370 / Virus Database: 205 - Release Date: 6/5/2002



 

Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/

Follow-Ups:
- Re: COMP: Virus -Bogus (STEVE)
  - From: S* B*

References:
- COMP: Virus -Bogus billmaryott@home.com
  - From: c*

Prev by Date: Re: COMP: Virus -Bogus billmaryott@home.com
Next by Date: Re: CULT: Attack of the Blob
Previous by thread: Re: COMP: Virus -Bogus billmaryott@home.com
Next by thread: Re: COMP: Virus -Bogus (STEVE)

Other Mailing lists | Author Index | Date Index | Subject Index | Thread Index