Bob Keeter
Thu, Jul-18-02, 01:17
So far the one apparent "outsider" addressee/sender that I
have had a response from has confirmed that he wanders by this
group, at least occasionally. He also confirms that his system
is well protected with an efficient antiviral program and the
latest versions of Microsoft software. Have a bunch more
"feelers" out looking for those footprints. Right now, they
(all of us "regulars" + 1) all obviously lead back to this
group and/or the paleoanthro Yahoo group.
I did notice that yesterday and today I had not received ANY
of the infected emails or even any of the "bounces" where my
email address was suborned as the sender. Dont know if this
is a sign that the offending computer was simply shut down
over the weekend or if the owner has discovered the infection
and quietly cleaned it up. That is OK, but the way. ;-) If
anyone gets any of these bounced emails or infected emails
this next week, post the fact (and the associated ficticious
addressee's address (bounced emails) or sender's address
(infected emails) ), so that I can continue with the little
"Sherlock Holmes" expedition in search of the history! Geez
give me a spade, a dental pick and a whisk broom; Im ready to
go digging!!!!!!. ;-)
The more I research this little bug that seems to be the
source of our affliction, the nastier it sounds. There are
several variants out there, a while family in fact, not of
which are very sociable neighbors or tenants. Seriously, would
not recommend opening ANY email with an attachment, even if
apparently from reputable people that you know, unless you are
expecting an attachment from that person. The only real
exceptions (since the antiviral/virus arms race is continually
evolving and you may not have a good "fix" for the latest
"problem") would be if you are running a Mac. There are still
Mac macroviruses and such, but this is just not one of these.
Its a Windows-only variety, so all you PC people be careful
and perhaps talk to Anne about that antiviral if you dont
already have a good one.
If you know that your "spoofed" contacts also frequent SAP or
Paleoanthro. there is probably no real point in contacting
them (other than to let them know that their email address has
been hijacked) unless you want to try to 'validate' the email
with the attachment. The one case of interest would be that if
they perhaps are "out of the circle", you might ask if they
have any other contacts in the anthropological/ bio science
world that might be. Assuming that your own computer is
"clean", its perhaps these other "contacts" that have the
problem. If we can find several "non-SAPers" that all lead
back to the same point, . . . . Nah, lynching went out of
favor a while back, but we COULD jointly and firmly suggest
the usage of a good virus removal package! 8-)
Well, lets just hope that the stream of viral garbage is
stopped or is SOON stopped. As for the Korean spam, Jois might
say, "once they know, they know"! Those of us that are on
"that list" are more or less stuck. Im holding off on having
my ISP simply block the stream from Korea because I would just
as soon get any "bounces" that might have these address on
them. The header would possibly make for most interesting
reading. 8-)
Regards bk
have had a response from has confirmed that he wanders by this
group, at least occasionally. He also confirms that his system
is well protected with an efficient antiviral program and the
latest versions of Microsoft software. Have a bunch more
"feelers" out looking for those footprints. Right now, they
(all of us "regulars" + 1) all obviously lead back to this
group and/or the paleoanthro Yahoo group.
I did notice that yesterday and today I had not received ANY
of the infected emails or even any of the "bounces" where my
email address was suborned as the sender. Dont know if this
is a sign that the offending computer was simply shut down
over the weekend or if the owner has discovered the infection
and quietly cleaned it up. That is OK, but the way. ;-) If
anyone gets any of these bounced emails or infected emails
this next week, post the fact (and the associated ficticious
addressee's address (bounced emails) or sender's address
(infected emails) ), so that I can continue with the little
"Sherlock Holmes" expedition in search of the history! Geez
give me a spade, a dental pick and a whisk broom; Im ready to
go digging!!!!!!. ;-)
The more I research this little bug that seems to be the
source of our affliction, the nastier it sounds. There are
several variants out there, a while family in fact, not of
which are very sociable neighbors or tenants. Seriously, would
not recommend opening ANY email with an attachment, even if
apparently from reputable people that you know, unless you are
expecting an attachment from that person. The only real
exceptions (since the antiviral/virus arms race is continually
evolving and you may not have a good "fix" for the latest
"problem") would be if you are running a Mac. There are still
Mac macroviruses and such, but this is just not one of these.
Its a Windows-only variety, so all you PC people be careful
and perhaps talk to Anne about that antiviral if you dont
already have a good one.
If you know that your "spoofed" contacts also frequent SAP or
Paleoanthro. there is probably no real point in contacting
them (other than to let them know that their email address has
been hijacked) unless you want to try to 'validate' the email
with the attachment. The one case of interest would be that if
they perhaps are "out of the circle", you might ask if they
have any other contacts in the anthropological/ bio science
world that might be. Assuming that your own computer is
"clean", its perhaps these other "contacts" that have the
problem. If we can find several "non-SAPers" that all lead
back to the same point, . . . . Nah, lynching went out of
favor a while back, but we COULD jointly and firmly suggest
the usage of a good virus removal package! 8-)
Well, lets just hope that the stream of viral garbage is
stopped or is SOON stopped. As for the Korean spam, Jois might
say, "once they know, they know"! Those of us that are on
"that list" are more or less stuck. Im holding off on having
my ISP simply block the stream from Korea because I would just
as soon get any "bounces" that might have these address on
them. The header would possibly make for most interesting
reading. 8-)
Regards bk