Previous Thread
Next Thread
Print Thread
Rate Thread
#40080 01/26/04 11:45 PM
Joined: Nov 2002
Posts: 1,146
Likes: 1
Ice
Offline
UGN News Staff
UGN News Staff
Joined: Nov 2002
Posts: 1,146
Likes: 1
Antivirus firms warned on Monday of a new mass-mailing computer virus that had gained a foothold in a large number of PCs by masquerading itself as an e-mail error.

The virus, dubbed MyDoom, arrives in an in-box with one of several different random subject lines, such as "Mail Delivery System," "Test," or "Mail Transaction Failed." The body of the e-mail contains an executable file and a statement such as: "The message contains Unicode characters and has been sent as a binary attachment."

Antivirus firms were scrambling Monday afternoon to learn more about the virus, which started spreading at about 1 p.m. PST.

"A lot of the information is encrypted so we have to decrypt it," said Sharon Ruckman, senior director for antivirus software maker Symantec's security response center. Symantec has had about 40 reports of the virus in the first hour, a high rate of submission, Ruckman said.

Antivirus firms are still analyzing the virus. Variations in the body text include, "The message cannot be represented in 7-bit ASCII encoding and has been sent as a binary attachment."

The virus also seems to install another program on the victim's computer, but until the antivirus firms decrypt the program's code, the purpose of the file is unknown.

Mail systems that remove executable files from e-mails can stop the program from spreading.

More details to follow.

CNet News


Good artists copy, great artists
steal.

-Picasso
Sponsored Links
▼ Sponsored Links ▼ ▲ Sponsored Links ▲
Joined: Feb 2002
Posts: 7,203
Likes: 11
Community Owner
Community Owner
Joined: Feb 2002
Posts: 7,203
Likes: 11
Man, I got it 5 times in my work email, 20 times from other emails, and numerous times through my mail filter! All in all I'd estimate the total of this JUST TODAY as at LEAST 300 mailings...


Donate to UGN Security here.
UGN Security, Back of the Web, and VNC Web Services Owner
Joined: Feb 2002
Posts: 7,203
Likes: 11
Community Owner
Community Owner
Joined: Feb 2002
Posts: 7,203
Likes: 11
All that I've been recieving:

Scan type: Scheduled Scan
Event: Virus Found!
Virus name: W32.Novarg.A@mm
File: C:\Program Files\DigiPortal Software\choicemail\mailboxes\gizmo\[email protected] [email protected]>>message.zip
Location: Quarantine
Computer: LAPTOP
User: Gizmo
Action taken: Clean failed : Quarantine succeeded :
Date found: Wed Jan 28 03:58:53 2004


Donate to UGN Security here.
UGN Security, Back of the Web, and VNC Web Services Owner
Joined: Jun 2003
Posts: 807
Likes: 2
G
UGN Super Poster
UGN Super Poster
G Offline
Joined: Jun 2003
Posts: 807
Likes: 2
yeah this thing is wreaking havoc at my school. every two hours there is an announcement about it. "Plese shut off your computers" "You may now turn them back on but no email use." "You may use email again, we will keep you posted." Gets annoying. Hope it gets over with soon.

Joined: Dec 2002
Posts: 3,255
Likes: 3
UGN Elite
UGN Elite
Joined: Dec 2002
Posts: 3,255
Likes: 3
I got it 2 times yesterday and I never get anything in my email at work.

Joined: Nov 2002
Posts: 1,146
Likes: 1
Ice
Offline
UGN News Staff
UGN News Staff
Joined: Nov 2002
Posts: 1,146
Likes: 1
just 12 in Hotmail = (


Good artists copy, great artists
steal.

-Picasso
Joined: Feb 2002
Posts: 7,203
Likes: 11
Community Owner
Community Owner
Joined: Feb 2002
Posts: 7,203
Likes: 11
Oh god, i went through my log on norton, 4000 quarenteened items...


Donate to UGN Security here.
UGN Security, Back of the Web, and VNC Web Services Owner

Link Copied to Clipboard
Member Spotlight
None yet
Forum Statistics
Forums41
Topics33,840
Posts68,858
Members2,176
Most Online3,253
Jan 13th, 2020
Latest Postings
Top Posters
UGN Security 41,392
Gremelin 7,203
§intå× 3,255
SilentRage 1,273
Ice 1,146
pergesu 1,136
Infinite 1,041
jonconley 955
Girlie 908
unreal 860
Top Likes Received
Ghost 2
Dartur 1
Cyrez 1
Girlie 1
unreal 1
Powered by UBB.threads™ PHP Forum Software 8.0.0