Bernie, Me too, see my post on the rbg7 site about emails from Microsoft that may not be legit. Bernie Lis ----- Original Message ----- From: "Bernie Corrigan" <[EMAIL PROTECTED]> To: "RBASE-L Mailing List" <[EMAIL PROTECTED]> Sent: Friday, September 19, 2003 3:01 AM Subject: [RBASE-L] - RE: NEW VIRUS. Norton and McAfee won't stop it.
> It may not be medium for long. I've received 10 infection attempts in the > last hour; however, maybe I'm just lucky. They have all come in pairs. I > noticed that the messages I sent to RBase-L and RBG7-L came back twice even > though they were submitted just once. The other two list servers, RBJunk > and another, sent only one copy back as they should have. RStreet has yet > to arrive. > > --------------------------------------- > At 01:50 AM 9/19/2003 -0500, you wrote: > >Bernie: > >McAfee considers it a medium security risk and the latest version (Thursday > >morning) detects it and removes it. As R:azzak says, it pays to stay > >current... > >Javier, > > > >Javier Valencia, PE > >President > >Valencia Technology Group, L.L.C. > >14315 S. Twilight Ln, Suite #14 > >Olathe, Kansas 66962-4578 > >Office (913)829-0888 > >Fax (913)649-2904 > >Cell (913)915-3137 > > > >-----Original Message----- > >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Bernie > >Corrigan > >Sent: Friday, September 19, 2003 1:35 AM > >To: RBASE-L Mailing List > >Subject: [RBASE-L] - NEW VIRUS. Norton and McAfee won't stop it. > > > >A major virus assault has just gotten underway. It will blow right through > >both NAV and McAfee. I have received 6 infection attempts in the last half > >hour. I submitted it to Symantec and the result is below. > > > > > >At 06:24 AM 9/19/2003 UT, you wrote: > >> > >>This message is an automatically generated reply. This system is designed > >to analyze and process virus submissions into the Symantec Security Response > >and cannot accept correspondence or inquiries. > >>Please contact your Technical Support representative if more detailed > >information about your submission is required. Do not reply to this > >message. > >> > >>Below is a status update on your virus submission: > >> > >>Date: September 18, 2003 > >> > >>Bernie Corrigan > >>Corrigan Associates > >>2520 Jackson > >>Eugene OR 97405 > >> > >> > >>Dear Bernie Corrigan, > >> > >>We have analyzed your submission. The following is a report of our > >>findings for each file you have submitted: > >> > >>filename: c:\ne\Q687144.exe > >>machine: NOTE04 > >>result: This file is infected with [EMAIL PROTECTED] > >> > >>Developer notes: > >>c:\ne\Q687144.exe is non-repairable threat. NAV with the latest beta > >definition detects this. Please delete this file and replace it if > >neccessary. Please follow the instruction at the end of this email message > >to install the latest beta definitions. > >> > >>Symantec Security Response has determined that the sample(s) that you > >provided are infected with a virus, worm, or Trojan. We have created beta > >definitions that will detect this threat. Please follow the instruction at > >the end of this email message to download and install the latest beta > >definitions. > >>Downloading and Installing Beta Definition Instructions: > >>1. Open your Web browser. If you are using a dial-up connection, connect to > >any Web site, such as: http://securityresponse.symantec.com/ > >>2. Click this link to the ftp site: > >ftp://ftp.symantec.com/public/english_us_canada/antivirus_definitions/norto n > >_antivirus/beta/symcbetadefsi32.exe. If it does not go to the site (this > >could take a minute or so if you have a slow connection), copy and paste the > >address into the address bar of your Web browser and then press Enter. > >>3. When a download dialog box appears, save the file to the Windows > >desktop. > >>4. Double-click the downloaded file and follow the prompts. > >>---------------------------------------------------------------------- > >>This message was generated by Symantec Security Response automation > >> > >>Should you have any questions about your submission, please contact > >>our regional technical support from the Symantec website > >>(http://www.symantec.com/techsupp/) > >>and give them the tracking number in the subject of this message. > >> > >> > >> > >>-------------------------------------------- > >> > > > > > >
