Skip to comments.
VIRUS ALERT! W32/Badtrans.B
Private Email ^
| Now
| Private Email
Posted on 11/29/2001 11:40:41 AM PST by -No Way-
click here to read article
Navigation: use the links below to view more comments.
first 1-20, 21-40, 41-43 next last
Check yer' machines! Especially if you use MS Outlook!!
1
posted on
11/29/2001 11:40:41 AM PST
by
-No Way-
To: -No Way-
This is a real booger of a virus folks!!!! We have been battling it with our users for two days now. Heads Up!
Bit of advice, use Eudora email program. This will prevent you from opening attachments automatically.
2
posted on
11/29/2001 11:43:27 AM PST
by
asneditor
To: -No Way-
Somebody help this ole techno-illiterati out. I'm using Windows 3.1 (I think, circa 1996), and Netscape 4.7. I have a Dell XPS P200 machine and a crappy dial up connecton. Can I even get this virus?
3
posted on
11/29/2001 11:48:10 AM PST
by
mercy
To: asneditor
Agreed. If anyone's running Outlook at this point, you NEED to have a real-time virus scanner installed...AND MAKE SURE YOUR VIRUS DATA FILES ARE UPDATED!
4
posted on
11/29/2001 11:54:01 AM PST
by
Arthalion
To: -No Way-; asneditor
It hit our office yesterday.
The IT manager has been having one hell of a time!
To: -No Way-
So what you are saying is that just by receiving the email you can get this even if you don't open the attachment?
To: Constitution Day
It hit me last night. I downloaded the latest stuff from McAfee, ran a scan and found the infection. McAfee told me to delete KERNEL32.EXE which I did. Now where can I get an uninfected copy of that file, and what folder does it belong in?
7
posted on
11/29/2001 11:59:38 AM PST
by
Publius
To: -No Way-
Another good way to prevent most infections:
Use a pre-screening program, such as MailWasher or ScanMail to see mail headers on the server. Then delete those that look suspicious; after scanning, you can preview them through the pre-scan or open your regular email program.
MailWasherScanMail
8
posted on
11/29/2001 12:04:14 PM PST
by
TomGuy
To: Publius
You should be able to get it from your Windows Installation disk.
What version of Windows are you running?
9
posted on
11/29/2001 12:06:07 PM PST
by
TomGuy
To: TomGuy
Can you answer my question in #3? Would really appreciate it.
10
posted on
11/29/2001 12:07:25 PM PST
by
mercy
To: Publius
KERNEL32.EXE is not a Windows file. There is no need to replace it.
The worm also drops a file called KDLL.DLL which should be deleted. Check any of the anti-virus software vendor sites for further information.
11
posted on
11/29/2001 12:09:52 PM PST
by
fteuph
To: mercy
YES.
Even using Netscape mail if you open the attachment it will infect your system. Since you're not an Outlook user the virus can't send itself to people in your address book BUT the virus installs a backdoor which sends your IP address to the author and may allow the author to "control" your PC right down to formatting your hard drive.
Also note: A keystroke registry which will watch for passwords, credit cards numbers, etc. entered at the keyboard is installed and can send this info out over your web connection.
If you don't have virus protection regularly updated you're playing ruskie roulette.
You can get McAfee for 29.95 (Virus Scan) and updates are free via the web.
Symantec - Norton AntiVirus allows a year of "free" updates but then you have to pay for updates - which last time I looked were "3.950" per year. Frankly, I suspect its 39.50 a year as $3.95 annually seems hardly worth the processing costs - anyone want to help out?
Go here for the McAfee Info on this virus
To: mercy
I believe it only infects through a security hole in MS Outlook and Outlook Express.
13
posted on
11/29/2001 12:11:20 PM PST
by
fteuph
To: mercy
Re infection of W3.1 and Netscape 4.77. I doubt that you're vulnerable, at least not through automatic execution of the virus file. That seems to require Outlook or Interet Explorer 5.01 or 5.5. I'm not sure what happens if you get a mail with an attached executable, and then proceed to execute it to see what it does. Don't! I'm also assuming you are using Netscape as your mail program.
To: Tunehead54
My Norton has nailed this virus on several received e-mails in the last three days.
It's not a problem, other than a few minutes to tell my Norton what to do with it.
15
posted on
11/29/2001 12:17:34 PM PST
by
ASA Vet
To: -No Way-
Why does ANYone still use Outlook? It is beyond me. Microsoft knows about the open port problem, but they continue to ship version after version with the same goddamned problem. They could care less. Read their license agreement sometime.
Run Netscape 4.7x for browsing and mail (avoid v.6.x). To reduce your exposure to .exe attachments, buy a Mac. If you must run Windoze, Eudora is a fine e-mail app.
Anyone who uses Outlook for mail is just asking to be delivered to hell, and I find it hard to have sympathy for them. It's not like this is new and unheard of.
To: -No Way-
Warning! Warning! Warning! Dangerous bug around! Bad Times Virus!
If you receive an e-mail entitled "Bad Times," delete it immediately! Do not open it! Apparently this one is pretty nasty. It will not only erase everything on your hard drive, it will also delete anything on disks within 20 feet of your computer.
It demagnetizes the strips on all of your credit cards. It reprograms your ATM access code, screws up the tracking on your VCR, and uses subspace field harmonics to scratch any CDs you attempt to play. It will program your phone auto dial to call only 900 numbers. The virus will mix antifreeze into your fish tank. It will cause your toilet to flush while you are showering. It will drink all of your beer.
For God's sake, are you listening to me?
It will leave dirty underwear on the coffee table when you are expecting company. It will replace your shampoo with Nair and your Nair with Rogaine, all the while dating your current boy- or girlfriend behind your back and billing the hotel rendezvous to your Visa card, which has been wiped clean.
It will cause you to run with scissors and throw things in a way that is only fun till someone loses an eye. It will rewrite your backup files, change all of your active verbs to passive tense, and incorporate undetectable misspellings which will grossly change the interpretations of key sentences.
If the badness message is opened in a Windows 95 or 98 environment, it will leave the toilet seat up and leave your hair dryer plugged in dangerously close to a full bathtub. It will not only remove the forbidden tags from your mattress and pillows, it will also refill your skim milk with whole milk.
Warn as many people as you can! If you don't send this to 5,000 people within 20 seconds, you'll expel gas so hard your right leg will spasm and shoot straight out in front of you, sending sparks that will ignite the person next to you!
Be careful with this one.
To: mercy
Yes, you can still get a computer virus. Good news is that most new virii are designed to hit later versions of Windows. Some of the older virii that would affect Win 3.1 are still out there.
You should install some type of virus program designed for Win 3.1. Check this link for information about
F-Prot for Dos/Win31.
18
posted on
11/29/2001 12:41:36 PM PST
by
TomGuy
To: ASA Vet
Ditto!
19
posted on
11/29/2001 1:17:05 PM PST
by
Chapita
To: -No Way-
Ahhh, the joys of running Netscape V4.74, Norton's Antivirus (updated at least once a week) and Zone Alarm Firewall. Receive an average of 3-4 viruses per week. Never been harmed by any of them.
You folks running Outlook or Outlook express are just inviting big trouble. I can understand your not liking Netscape, but Eudora has a swell email client and it is as free as Outlook and not nearly as prone to viruses. HEADS UP!
20
posted on
11/29/2001 1:25:45 PM PST
by
upchuck
Navigation: use the links below to view more comments.
first 1-20, 21-40, 41-43 next last
Disclaimer:
Opinions posted on Free Republic are those of the individual
posters and do not necessarily represent the opinion of Free Republic or its
management. All materials posted herein are protected by copyright law and the
exemption for fair use of copyrighted works.
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson