IWETHEY v. 0.3.0 | TODO
1,095 registered users | 0 active users | 0 LpH | Statistics
Login | Create New User
IWETHEY Banner

Welcome to IWETHEY!

IWETHEY Home / IWETHEY Board / Security Forum / Got it at work last Friday; sneaky social engineering
Post #113,082
by bbronson
8/7/03 2:10:37 PM
Reply
New Got it at work last Friday; sneaky social engineering
Even more so at my employeer at this time. About a month ago, our IS people sent out an email saying they were going to delete one of the allowable email address formats come August. So August shows up, and so does this viral email. But since the from address didn't match one that our IS shop uses, I called and avoided being branded with the Scarlet V.

Brian Bronson
Post #113,168
by dmarker
Picture of dmarker
8/8/03 7:39:49 AM
Reply
New Removing it is a fairly easy process ...

Doesn't require much effort other than confidence in working the registry.

Use the McAfee instructions as they are far more comprehensive & really do remove all copies - some other instructions (Norton I think) only remove one of the registry references to it. Most forget to tell you to remove the prefetch copy (XP only)

Cheers

Doug
Post #113,208
by bbronson
8/8/03 1:31:08 PM
Reply
New Didn't get infected; called helpdesk so I never opened it
Though I am surprised nobody here got caught.

Brian Bronson
     New virus. Receive same warning from our network security - (jbrabeck) - (10) - Aug. 4, 2003, 09:53:43 AM EDT
         I got such an email today. - (a6l6e6x) - Aug. 4, 2003, 12:40:29 PM EDT
         Got it here as well. - (inthane-chan) - Aug. 4, 2003, 02:27:44 PM EDT
         It arrived here as well, but OS/2 is immune. NEXT CASE!! :-) -NT - (n3jja) - Aug. 6, 2003, 10:39:13 PM EDT
         Got it here this morning (in Australia) - (dmarker) - (2) - Aug. 7, 2003, 06:02:28 AM EDT
             My team leader saw it yesterday. - (static) - (1) - Aug. 7, 2003, 09:02:25 AM EDT
                 I took a closer look at it - Microsoft will be miffed !!! - (dmarker) - Aug. 8, 2003, 07:32:44 AM EDT
         Got it at work last Friday; sneaky social engineering - (bbronson) - (2) - Aug. 7, 2003, 02:10:37 PM EDT
             Removing it is a fairly easy process ... - (dmarker) - (1) - Aug. 8, 2003, 07:39:49 AM EDT
                 Didn't get infected; called helpdesk so I never opened it - (bbronson) - Aug. 8, 2003, 01:31:08 PM EDT
         Same old underlying problem, glossed over as usual - (rickmoen) - Aug. 8, 2003, 08:02:31 PM EDT

Colossal liquid insect.
66 ms