02. januar 2003 - 22:35Der er
10 kommentarer og 1 løsning
Min PC bliver brugt til at vidresende klez virus
Min PC er med Windows XP og en fuldt opdateret Norton System Works 2002. Jeg får dagligt mails om at jeg har sendt en klez virus til en eller anden tilfældig e-mail adresse. Det er ofte, men ikke altid, til domainer som jeg har i min Outlook, fx. @novonordisk.com. Men adressedelen foran @ har til dato ikke været til en jeg kender. Norton Anti Virus advarer ofte om at der er virus i de mails der sendes retur fra virksomhedernesautomatiske "virusfælder". De sendes derefter i karantæne. Jeg har selvfølgelig checket om min maskine har klez - det har den ikke. Jeg kan sikkert løse problemet ved at scanne udgående mails for virus - men det betyder desværre at alle mine mails sendes to gange (Det er en fejl Symantec er klar over). Der må være en bedre løsning - HVILKEN?????
Det er ikke sikkert at det er dig som sender virussen, det kan være en af dine venners maskiner som udsender virus, og eftersom du står i hans adresseliste får de din afsender. Lav en online scan hos pandasoftware.com
NOTES: Because this worm does use a randomly chosen address that it finds on an infected computer as the "From:" address, numerous cases have been reported in which users of uninfected computers receive complaints that they have sent an infected message to someone else.
For example, Linda Anderson is using a computer that is infected with W32.Klez.E@mm; Linda is not using a antivirus program or does not have current virus definitions. When W32.Klez.E@mm performs its emailing routine, it finds the email address of Harold Logan. It inserts Harold's email address into the "From:" line of an infected email that it then sends to Janet Bishop. Janet then contacts Harold and complains that he sent her infected email, but when Harold scans his computer, Norton AntiVirus does not find anything--as would be expected--because his computer is not infected.
If you are using a current version of Norton AntiVirus, have the most recent virus definitions, and a full system scan with Norton AntiVirus set to scan all files does not find anything, you can be confident that your computer is not infected with this worm.
There have been several reports that, in some cases, if you receive a message that the virus has sent using its own SMTP engine, the message appears to be a "postmaster bounce message" from your own domain. For example, if your email address is jsmith@anyplace.com, you could receive a message that appears to be from postmaster@anyplace.com, indicating that you attempted to send email and the attempt failed. If this is the false message that is sent by the virus, the attachment includes the virus itself. Of course, such attachments should not be opened.
For at finde hans virkelige adresse (outlook express) markerer du mailen så den står blå, går ind i filer - egenskaber - detaljer. Så kan du se hans afsender og ip adresse.
Tilladte BB-code-tags: [b]fed[/b] [i]kursiv[/i] [u]understreget[/u] Web- og emailadresser omdannes automatisk til links. Der sættes "nofollow" på alle links.
