On Wed, 30 Jan 2002 08:08:17 -0600 Robert C Wittig <[EMAIL PROTECTED]> wrote:
<snip> > As I mentioned a couple days ago on this list... about 1 hour > after the post plus attachment appeard... it is an Internet worm, > and if you click on it (which I advised people not to do... it > will infect your computer, and remail itself to your address > book. (see below) <snip> > ----- Original Message ----- > From: <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Sent: Monday, January 28, 2002 6:59 AM > Subject: Virus News: Not Everything Starting with 'www' and > Ending in '.com' Is a Web Site >> Virus News. Monday, January 28, 2002 > ***************************************************************** > * >> 1. Not Everything Starting with 'www' and Ending in '.com' Is a > Web Site <snip> This isn't news to anyone because everybody knows that any file ending in COM is most likely an executable program. >> As is apparent, the file carrier purposely poses as a > Web-site It DOES NOT pose as a web site. It most clearly represents itself as an inserted UUENCODED executable program named "www.myparty.yahoo.com". How could anybody possibly be tricked into believing that it is anything other than the name of the executable program that will result from the decoding of the attachment? BTW. I have discovered that http://www.myparty.yahoo.com is also a valid URL. The URL describes the virus by saying that it falsely poses as a URL. It DOES NOT falsely pose as a URL. I don't understand how anyone be tricked into thinking it is the name of a URL. It is most obviously the name of the program that will result from the decoding of the attachment. >> address. A user's trust is taken into account so that when >> double-clicking on the enclosure, the said user ends up at some > Internet >> address. However, what actually occurs is that a malicious > program is >> activated upon enclosure opening. As seen in my email client program there is nothing to click on. The virus is sent as inserted text, being a UUENCODED file. There is no hyperlink to click on unless you are using some really weird and unusual email client program that nobody in his right mind would want to have on his computer, and one that only a most sadistic software developer would unleash upon the unsuspecting public. Sam Heywood -- This mail was written by user of The Arachne Browser - http://arachne.cz/ To unsubscribe from SURVPC send a message to [EMAIL PROTECTED] with unsubscribe SURVPC in the body of the message. Also, trim this footer from any quoted replies. More info can be found at; http://www.softcon.com/archives/SURVPC.html
