|
|
KnewEyes
Joined: 23 Apr 2001
Posts: 667
Location: under those cloud-like things |
Virus Hoax Alert
 Sun Dec 23, 2001 8:17 pm
|
 |
|
I received this letter yesterday,and I did find this file in my computer. I deleted it as the instructions suggested, and have not run into any trouble because I did so :
This message was sent to me and may easily relate to your computer too......It concerns an insidious virus, that attaches itself to email somehow, and does not need you to open it for it to operate. It is invisible until you go looking for it, but may cause disaster if you don't bother. Please eliminate it if you have it, and pass the message on to others. The instructions given below are complete, fairly simple and work! No need to panic........
Thanks and best wishes.
Sorry to have to tell you this, but I found the virus described below on my hard drive after a friend sent me this message. Apparently I received it by being in his address book. Since you all are in my address book, you may have it too. Please follow the directions below to find out. The virus may be lying in your hard drive. It lies dormant for 14 days and then KILLS YOUR HARD DRIVE. Stop everything you are doing right now and take 10 seconds to delete the virus file. Following are directions to do this. If you've got it, send this to everyone in your address book.
The directions for removing it are easy.
1. Go to "start", then to "find or search" (depending on your computer).
2. In the "search for" files or folders' type in sulfnbk.exe......this is the virus.
3. In the "look in" make sure you're searching Drive C.
4. Hit "search" button (or find)
5. If this file shows up (it's an ugly blackish icon that will have the name "sulfnbk.exe..) DO NOT OPEN IT.
6. Right click on the file- go down to delete and left click.
7. It will ask you if you want to send it to the recycle bin; say yes.
8. go to your desktop (where all your icons are) and double click on the recycle bin.
9. Right click on sulfnbk.exe and delete again-that is, empty the bin.
10. If you find it send this email to all in your address book, because that's how it is transferred.
Mitakuye Oyasin
|
| |
|
|
Lulu
Joined: 22 Dec 2000
Posts: 2501
Location: right here |
|
Sun Dec 23, 2001 8:32 pm
|
|
|
Thanks for the heads-up KnewEyes!
Also...
To prevent any e-mail viruses from accessing your address book, add a "new contact" to your book with !0000 for the NAME, and NO address listed. This !0000 will appear as the first entry in your book.
|
| |
|
|
Thermit
Joined: 08 Jul 2000
Posts: 3136
Location: Texas |
|
Sun Dec 23, 2001 8:35 pm
|
|
|
KnewEyes,
I think I got this email too, or something quite similar but I didn't look at it. I did a search on the filename they ask you to remove "sulfnbk.exe", and found out this is apparently a hoax...
quote:
Symantec Security Response encourages you to ignore any messages regarding this hoax. It is harmless and is intended only to cause unwarranted concern.
Type: Hoax
Description:
The following hoax email was first reported in Brazil, and the original email was in Portuguese. Other language versions are in circulation. Currently, the English language versions are most common.
CAUTIONS:
This particular email message is a hoax. The file that is mentioned in the hoax, however, Sulfnbk.exe, is a Microsoft Windows utility that is used to restore long file names, and like any .exe file, it can be infected by a virus that targets .exe files.
The virus/worm W32.Magistr.24876@mm can arrive as an attachment named Sulfnbk.exe.
The Sulfnbk.exe file used by Windows is located in the C:\Windows\Command folder. If the file is located in any other folder, or arrives as an attachment to a email message, then it is possible that the file is infected. In this case, if a scan with the latest virus definitions and with NAV set to scan all files does not detect the file as being infected, quarantine and submit the file to SARC for analysis by following the instructions in the document How to submit a file to SARC using Scan and Deliver.
If you have deleted the Sulfnbk.exe file from the C:\Windows\Command folder and want to know how to restore the file, see the How to restore the Sulfnbk.exe file section at the end of this document.
http://www.symantec.com/avcenter/venc/data/sulfnbk.exe.warning.html |
| |
|
|
Thermit
Joined: 08 Jul 2000
Posts: 3136
Location: Texas |
|
Sun Dec 23, 2001 8:43 pm
|
|
|
Lulu,
Also found out that the !0000 trick has a few caviats...
quote:
!0000 Trick
Trick or Treat?
"Here's a little trick you can use to stop the spread of pc viruses" - Not! The misguided email outlines an alleged trick to prevent mass-mailing email worms from sending from your computer. This seemingly easy tip involves adding the bogus contact "!0000" to the Windows Address Book. The premise is that when the virus tries to send itself out to everyone in the address book, the mail client will falter on the bogus address and the attempt to send will fail. Of course, this assumes the virus intends to do a "send all" from the mail client in the first place. Most of the modern day viruses prefer to randomly select individual addresses or supplement the addresses with those found cached on the system. In fact, most of the new viruses bypass the mail client altogether and use their own SMTP engine to send their viral email. In other words, the tip will only be effective in limited cases. What the tip can do effectively is lead to a false sense of security, and that can sometimes be worse than doing nothing at all.
http://antivirus.about.com/library/weekly/aa082801b.htm
[Edited 1 times, lastly by Thermit on 12-23-2001] |
| |
|
|
KnewEyes
Joined: 23 Apr 2001
Posts: 667
Location: under those cloud-like things |
|
Mon Dec 24, 2001 12:09 am
|
|
|
Oh Cripe! So I deleted a neccesary file?? I am having a hard time finding my windows "options" file, can't find it anywhere to restore this file I deleted |
| |
|
|
Thermit
Joined: 08 Jul 2000
Posts: 3136
Location: Texas |
|
Mon Dec 24, 2001 3:21 am
|
|
|
The good news is you will probably never need this file.  |
| |
|
|
David
Joined: 20 Oct 2000
Posts: 1381
|
|
Mon Dec 24, 2001 4:39 am
|
|
|
Being on the net without background scanning virus protection is like having unprotected sex with strangers, it feels good for awhile but sooner or later you catch something.
|
| |
|
|
mark sky
Joined: 14 Oct 2000
Posts: 3616
Location: SW coast of Oregon |
|
Tue Dec 25, 2001 4:08 am
|
|
|
Yah David~ but at least its your COMPUTER
that caught it
and naught some one you LOVE
Harrpy CHRIST MASS
glad YOU are getting well
ferk the hard drive snotty
get this boat
out of here
this atmosphere cant support life for very long captain
i am doin all i can
the natural air regenerators wernt made for this |
| |
|
|
Lulu
Joined: 22 Dec 2000
Posts: 2501
Location: right here |
|
Wed May 22, 2002 1:55 pm
|
|
|
I have received a number of blank e-mails with Headers "Cellpadding" and attachment(s)...
mbelliii2002
maksa96
zxander007
munk_gurl116
etc.
Source ~ blueyonder.co.uk
other e-mail sources/route IPs
195.188.53.121 (HSD Knowsley Central Office GB)
62.31.123.11
A couple of the e-mails were from "Webmaster" stating Hi,This is a WinXP patch
I wish you would like it.
With ATTATCHMENT.
Beware the word conspriracyon
My advice to anyone is to not open these attachments as I suspect a VIRUS lurking. More in my mail box this morning.
And on it goes...
|
| |
|
|
Duncan Kunz
Joined: 19 Oct 2000
Posts: 582
|
|
Wed May 22, 2002 3:29 pm
|
|
|
Thanks, Thermit, for the tip.
I've always considered "people" that send such malicious thingies through the e-mail as morally equivalent to people who pull wings off butterflies.
------------------
Duncan Kunz / duncankunz@cox.net
Mesa AZ / 480-891-2525 |
| |
|
|
 
|
|
All times are GMT. The time now is Tue May 22, 2012 5:48 pm
|
|
|
|
|
Login
