Title: Message
http://us.mcafee.com/virusInfo/default.asp?id=descriptionvirus_k=100715
HTH,
~Patrick
Title: Exploit-ObjectData trojan
Forgive me , I've been out of the loop, working on other things.
What is this Exploit-ObjectData trojan?
I can't seem to find mention of it on McAfee's website and Declude is nabbing them like crazy.
Thanks in advance,
Sharyn
Title: Message
http://us.mcafee.com/virusInfo/default.asp?id=descriptionvirus_k=100715
Got it, thanks.
I'm apparantly a bit brain dead this morning.
:)
Sharyn
Just writing the list to let Declude know that I've forwarded a suspicious
file (report.zip). It was a zip file that contains a PIF file. Neither
F-Prot on mail server nor NAV2k4 on client machine hit on this file.
BANFILE EZIP is enabled within Declude.
Attached to this e-mail is a hex dump
At 07:51 AM 5/20/2004, Jeff Maze wrote:
Just writing the list to let Declude know that I've forwarded a suspicious
file (report.zip). It was a zip file that contains a PIF file. Neither
F-Prot on mail server nor NAV2k4 on client machine hit on this file.
BANFILE EZIP is enabled within Declude.
You can use recip.eml to send a note that says "you were sent a virus",
but none of the the current active viruses and only about half of the
older ones have a valid sender. So, sending "an unknown person", who is
claiming to be somebody else, is infected and knows your e-mail address
is worse
Another example of why that idea is bad is
demonstrated by one of McAfee's mail server virus engines. I have seen
messages forwarded my way that say our email server detected a virus you sent,
please see attachment for details. The problem is the virus is a forging
one the mail server sent
I did manage to fix the problem. Here's what I did in-case you get a
similar problem:
In safe mode you can set services to start
manually/automatically/disable - but you can not start services while in
safe mode. Norton Internet Security must grab the NIC at quite a low
level, as after I disabled
www.winternals.com
ERD commander is an awesome tool, helps change service/device startup
values, registry, connect through the network to other machines, chkdsk, etc
etc...
Might take a look at that, helps me a TON.
Mike
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL
Glad it worked for you. However, word of caution. I would change that
registry back. The reason Windows Installer is not usable in Safe Mode is
some programs being installed or uninstalled in safe mode can cause
problems.
John Tolmachoff
Engineer/Consultant/Owner
eServices For You
-Original
ERD commander is an awesome tool, helps change service/device startup
values, registry, connect through the network to other machines, chkdsk,
etc
etc...
Might take a look at that, helps me a TON.
I was going to recommend that, as I have the 2002 version, but their new
licensing terms has
Scott,
If I read this right, a *.BMP can be used in an e-mail (or website) to
run attack code. But MS has not yet released a patch.
Also, it's not hitting English versions of Windows yet.
Just calling attention to it so that it can be investigated for a
invalid BMP test like the recently added
I also have the 2002 Admin pack. Back then we paid $999 for it.
I have saved several shared servers with it more than covering the $999 but
now it is closer to $5000 I believe.
It may be worth it as well.
All their products are great. Go to the freeware site sysinternals.com and
get all their
13 matches
Mail list logo
