RE: FW: OT check for viruses

[Guest guest]

Yes, this was also too new for my Norton AV to catch. Since these worms and viri can propagate very quickly we still must use common sense no matter how well protected.

This definitely falls under the general description of a suspicious attachment... if in doubt "don't open it".

If it's from somebody you know and spoofing email addresses is a common technique, ask them about it before opening.

BTW if you get an email from a deposed dictator in central Africa promising a rich profit for help in laundering money, delete that too.

JR

-----Original Message-----From: bpinfo@... [mailto:bpinfo@...]Sent: Monday, September 06, 2004 3:26 PM Subject: Re: [ ] FW: check for virusesIn a message dated 9/6/04 3:37:51 PM Eastern Daylight Time, fskelton@... writes:

I suggest that everyone WHO HAS MY PERSONAL ADDRESS IN THEIR ADDRESS BOOKcheck for viruses in their compouter. or, rather than alarming everyone, we can just narrow it down to New Jersey, as alluded to earlier. Specifically, someone on comcast who is in or around Audubon, NJ. (The email headers tell where the worm is from.)If you don't have an antivirus

program you can do a free scan online at http://us.mcafee.com/ In the lowerleft of that page click "Scan Now".nope, that is *probably* wrong. At least for right now. As I've said, the worm is brand new (as of midnight this morning, according to the time stamps on the worm files). As such, mcafee doesn't have a definition on it as of this moment. At least not according to their list of new threats, which shows only W32/Mydoom.t@MM as newest:http://us.mcafee.com/virusInfo/default.asp?cid=10007However, they might have the new definition at any minute.I'd expect this one to be somehow associated with the name BlackWorm, since that string is in the virus itself - and there used to be a Blackworm virus.So a virus scan done right now would give a false negative - UNLESS the online scan also does 'heuristics' and the heuristics by an odd chance do succeed in detecting this one.Btw, the (free) AVG is also not detecting it yet, even with heuristics turned on. TrendMicro doesn't have it yet, either.-- Ken