In case you dont read news, a new virus is making its rounds in the internet.
This worm (Sobig) will search your harddrive for mail-messages, extract some valid adresses from those, and send a mail to persons from your addressbook faking the From header (this tells the recipient who sent the mail) with that found emai address.
furthermore this virus contains a small smtp-relay server, so its possible to send mail via the infected host.
To sum up, its almost impossible to track the host / user from which the mail has been sent.
right now, i am getting a lot of bounced messages, what indicates that someone in the renoise-community is infected by that virus and the worm uses my address as the sender.
so. PLEASE PLEASE check your system. i am getting about 20 bounced mails every day. There are several free anti-virus programms available. just get a recent one and scan your system. this applies to outlook / outlook express users.
I suspect someone from norway to be sending a lot of those mails (analyzed the headers a bit)
Not me I haven’t got any, the university are filtering those viruses centrally in their mailserver now. The mail system has been slowed down so much it can take hours and hours for a mail to arrive…
O.K. someone correct me if I am Wrong. There is a hole in Windows IE(bad programming) which allwows this worm to enter. Microsoft has a patch for this. go to “tools” on Internet Explorer then go to “Windows update”.
This will tell you what updates You need. This worm only effects Windows 2000 to XP. I am still running 98 SE so none of this effects me. If You are running ANY Windows operating system and have not updated recently do it now. If You need a good free antivirus program go to: http://www.free-av.com/ If You know You have the virus read the previos posts to remove
Im in Norway and uses Outlook Express, but I dont think there should be any problem here. My virusscan is up to date and I have no problems at all… Havent had a virus since I got the saddam-virus on my Amiga, destroying a few hundred of my octamed modules…
Today I got a bounced mail from the University of Kent saying my sent mailed contained Sobig. That’s pretty wierd since I only use web mail and don’t have my account set up in any other app, except for trillian which can’t send mails… Anyone have an idea what’s going on here??
I don’t mean to freak everybody out but this was taken from Wired News.
"Researchers at two security firms warned that a potentially massive attack was scheduled to be launched Friday when computers infected with the Sobig.F worm would be forced to download and run a mysterious program at 19:00 UTC (3 p.m. EDT).
At 3 p.m., the virus directed a few infected computers to a pornography website but that site shortly collapsed under a flood of network traffic.
“Of the 20 servers identified to be used for the attack, 16 are down, three are not responding and one is responding and directing traffic to a porn site,’’ the antivirus firm Symantec said in a statement.”
I haven’t got any, the university are filtering those viruses centrally in their mailserver now. The mail system has been slowed down so much it can take hours and hours for a mail to arrive…
