Re: "Undelivered Mail..." has me pulling my hair out!
by "Dusty" <designsbydusty(at)tiadon.com>
|
| Date: |
Sat, 8 Jun 2002 15:21:21 -0500 |
| To: |
<hwg-techniques(at)hwg.org> |
| References: |
cirex |
| |
todo: View
Thread,
Original
|
|
Hello.......
My boyfriend (at 58 years old, I wonder if the term BOYfriend is entirely
appropriate, but oh well) has worked with computers for 20 years. He put
together the following information on dealing with computer viruses, and I
thought I would pass it along. You can use it or discard it, as you see fit.
Hope it helps....
Dusty
Following are 4 links that help with detecting the latest computer viruses,
scanning, removal, and virus hoaxes.
1.
Following is the link to the Symantec web site to check out the latest virus
threats using information posted on the web. You can also search for a
specific virus by name.
http://securityresponse.symantec.com/avcenter/vinfodb.html/
NOTE_1: When searching for a specific virus, you might find multiple
references to variations on that virus. The easiest solution when this
occurs is to run the web virus scan and clean program found in the link
below (Item numbered '2').
NOTE_2: Most current worm type viruses, such as both KLEZ and MAGISTER, get
addresses from the 'SentMail' folder and/or the 'InBox' and other folders in
addition to the 'AddressBook'. This is why eMail addresses you might not
be familiar with are "bouncing" sent mail back to you. If this happens, be
sure that you use the free online virus scan service to clean them.
2.
Here is the link to Trend Micro's free web based virus scan service. :
http://housecall.antivirus.com/housecall/start_corp.asp
Remember that the initial load of the this free virus scan engine will take
about 20 minutes over a 26k baud modem and then up to an hour to scan all
the files.
NOTE_3: The only reason that I'm advocating the use of Trend Micro's free
online service is that they tend to get a virus 'fix' up faster than the
other services (Norton, etc.). Further I can (at least so far ---- knock on
wood ---- !!) run a web based scan when I've not been able to run the
download and install of my computer's anti virus definitions. The reason
for this is that some viruses today attack installed computer antivirus
programs and so far the web antivirus scanner and cleaner hasn't been
attacked.
3.
Here are two good virus hoax resources. If you ever get an eMail (even from
a known and trusted friend) that references that they received a virus
receiving a virus and could have sent it on to you, then these links should
be checked first to insure that there is indeed a virus threat.
http://vmyths.com/hoax.cfm?page=0
and
http://hoaxbusters.ciac.org/
4.
.After you have run the Trend Micro scan and clean and IF you have actually
found and cleaned viruses,
the final link is to whichever web site that is for the antivirus program
that runs on your computer. Check to ensure that that antivirus program
manufacturer has a scan and clean protocol for the virus you found on your
computer. When the information on the manufacturer's site indicates that
they do, then download their update definition file and install it.
----- Original Message -----
From: "Bob Unger" <rbu(at)cirex.net>
To: <hwg-techniques(at)hwg.org>
Sent: Friday, June 07, 2002 4:10 PM
Subject: "Undelivered Mail..." has me pulling my hair out!
> For the last few weeks I have been bombarded by "Undelivered Mail Returned
> to Sender" messages. I get around 20 to 30 a day saying it's returned to
> me because it's infected with Klez - or the recipient doesn't accept
> attachments, etc.... all kinds of reasons. But most of the "undelivered"
> address's are not in my address book (I use Eudora) and all the messages
> have my address in the "from" field.
>
> I've scanned my disk with Norton and it comes up clean - yet I am getting
> all these "returned mails" with my address on it.
>
> How does Klez work? Is Klez grabbing my address from other peoples
address
> books that are infected with the virus - and then I get the returned
> mail? Is there ANYTHING I can do to stop getting all these "returned"
> messages???????
>
> The kicker to all this is, is that it's using my brand new email address
> that I've had for just about a
> month now. It's driving me insane!
>
> Bob Unger
> rbu(at)cirex.net
>
>
>
HWG hwg-techniques mailing list archives,
maintained by Webmasters @ IWA