New Email Virus

Have received 3 in the last two days.
First one yesterday... 156Kb, My Norton deleted it. Norton also reported it was Worm.Automat.AHB.
Today before I opened email client, I used my ISP web view..
Two more there today.... 143Kb, 156Kb. The "Subject" and "From" where different among all 3. The ONE thing they did contain, the word Microsoft in subject or from field. I deleted both on ISP server. Received this virus alert from Symantec, stating......
"NOTE: This threat was previously detected as Worm.Automat.AHB by definitions automatically created by Symantec's Digital Immune System. Due to an increase in submissions, Symantec Security Response has upgraded W32.Swen.A@mm to Category 3, as of 6:30pm Thursday, September 18, 2003........ "

 

bulk mail from MS

I started receiving anywhere from 10-20 bulk msgs from various MS titled senders. Its been about 5 days now. I got a clue they were viruses from the headers, seeing the size of the files 144-156k, and deleted them as they came in.
Do I just wait until they stop sending them to me or can I head it off... its just a nuisance for now as my Outlook Express only downloads headers. I am grateful Symantec is on duty, just looking for some advice.
Thanks
nancy

 

bikerchick4God,

You can use this mail utility for free... it is called MailWasher and will let you look at mail and delete/add to the blacklist while still at your server before downloading to your computer.

It is very easy to use and set up, it is free
for one single acount only though. If you would like to use for mutiple accounts you must make a donation. hope this
helps.

MailWasher

Regards,

FireDancer

 

I've gotten about 50-60 in the last 3 days. Kind of a pain, but Norton's catches them and I delete them. Hopefully, they won't last too much longer.

Mike

 

thanks firedancer.
Mike, nice to hear from others with the same prob.
ciao
nancy

 

I started getting them yesterday and the rate went up to 20 in a half hour this morning. It seems to have stopped for now.
Art

 

I can't beleive that there are ISPs in the civilised world that don't do scanning. Even here in Africa, all but one ISP scan messages on the server, using different products. Of course, being in Africa, it takes a while for viruses to start popping up here, for the most part. There are exceptions, but only recently with the Blaster worm, and also Sobig. Other than that, tho, by the time they show up, your personal antivisur has known about it for at least a month.
I miss real civilisation tho....

 

Ryder, PeteC - I might like to have my ISP scan for infected mail if:
- I had control over what the did with it. For instance, if I could elect to have the post deleted silently and at the ISP.
- I could turn off the "feature" when & if I wanted.

I understand why an ISP would run such a service. Fewer infected PCs on their system means less junk traffic taking up bandwidth.

I do not understand the benefit to the user if you have to hear about every infection and since you still need to run your own AV software to guard against non-email infections.

If the AV feature is simply there and you have no controls, it strikes me as one of those unpleasant Big Brother things. The ISP saying, in effect, "You poor stupid user - we will try to protect you since you probably can't protect yourself ".

 

PeteC - in this day and age I also can't think of a reason to open a post with an infected attachment. At one time there was sometimes benefit to cleaning the infection and retaining what was left of the attachment. But not in recent years.

I agree that an ISP that is scanning email and finds an infected one has an obligation to inform the addressee if the addressee wants to be told. But personally, I don't want or need to know about the junk emails.

Out of curiosity, why do you only update your virus def files once a week? I check daily and update Norton if there is one.

 

Does anybody know how to stop these virus laden e-mails from piling up in a web based e-mail provider such as yahoo??
So far I haven't had this problem with my ISP's e-mail yet.

J. M.

 

PeteC,

I have Norton's also and use the Live Update feature to check for updates occasionally. As far as I know, it only downloads the new definitions after comparing what you have and what they have. Do you use LU to check for updates? Since I have broadband, my Norton's is also set to check for new definitions everytime I start my system.

Mike

 

Mike - we get live updates made available over here more often than the UK does from what I understand.

PeteC - I just pull down the 4Mb thing and run it. DSL so not a long process. If you have dial-up or a monthly download limit or something, that wouldn't be practical though and there is no other choice I'm aware of.

 

Newt,

Didn't realize there was a difference with the updates. See, I'm still learning things!

Mike

 

My goodness! But, this is one busy worm! Two days after hearing about I've been getting it in my mail at least 3 times a day. The FROM line is always different, but the subject line is a dead giveaway when you read it. Unreal. Glad my NORTON is catching it!

 

The good news is that the number that I had been getting, 10-20/day, is down to 2-3 a day. This makes it a little quicker getting through my email!

Mike