More Viruses!
windows\system directory. Guest
Posts: n/a
That's as I read the virus warning - it's the presence of cfgwiz31.exe that tells you there is a problem.
Seem to be having a big difficulty though in getting the latest update for McAfee - the first download (dcom98.exe, from microsoft downloads) file fails and everything just stops
Seem to be having a big difficulty though in getting the latest update for McAfee - the first download (dcom98.exe, from microsoft downloads) file fails and everything just stops
Guest
Posts: n/a
Just been sent the following email entitled:
SUBJECT: "Hand" - Follow the instructions.
DO:
Leave your hand on the mouse
Doubleclick the symbol below (it'svirus checked)
Concentrate on the dot in the middle of the screen andcount to 30 (It's very important to watch it for 30 seconds! Otherwiseit won't work!)
Now look at your hand on the mouse
5. Don't scream!
The attached file it asks you to click on is a file entitled SULFNBK.EXE
Being somewhat suspicious anyway, I attempted to examine the file from a web based mail account. Norton Anti Virus immediately pinged it as being the virus W32.Magistr.24876@ mm (I have added the space to preclude inadvertent click).
So be warned - it is out there in various guises. And I don't recognise the person who sent it to me either, though it sounds a fairly genuine sort of sender who probably doesn't realise they've got the bug!
SUBJECT: "Hand" - Follow the instructions.
DO:
Leave your hand on the mouse
Doubleclick the symbol below (it'svirus checked)
Concentrate on the dot in the middle of the screen andcount to 30 (It's very important to watch it for 30 seconds! Otherwiseit won't work!)
Now look at your hand on the mouse
5. Don't scream!
The attached file it asks you to click on is a file entitled SULFNBK.EXE
Being somewhat suspicious anyway, I attempted to examine the file from a web based mail account. Norton Anti Virus immediately pinged it as being the virus W32.Magistr.24876@ mm (I have added the space to preclude inadvertent click).
So be warned - it is out there in various guises. And I don't recognise the person who sent it to me either, though it sounds a fairly genuine sort of sender who probably doesn't realise they've got the bug!
Guest
Posts: n/a
I had that sent to me ages ago and didn't think any more of it.
Yesterday I was checking my "exe." files to see if this CFGWIZ 32/31 that is mentioned a few posts up was in my system, it wasn't. Thing is I came across a very strange file that had hand written title that didn't make any sense. Tried to open it and couldn't, in fact I couldn't do anything with it or examine it in any detail, so I left it.
Guess what??? Just checked my files for the SULFNBK.EXE and..........it turns up the same strange file that I found yesterday. I have now deleted it.
I run Mcafee which didn't flag anything up and I regulary scan my files.
Now that I have deleted it do I need to do anything else?
Regards
FBW
Yesterday I was checking my "exe." files to see if this CFGWIZ 32/31 that is mentioned a few posts up was in my system, it wasn't. Thing is I came across a very strange file that had hand written title that didn't make any sense. Tried to open it and couldn't, in fact I couldn't do anything with it or examine it in any detail, so I left it.
Guess what??? Just checked my files for the SULFNBK.EXE and..........it turns up the same strange file that I found yesterday. I have now deleted it.
I run Mcafee which didn't flag anything up and I regulary scan my files.
Now that I have deleted it do I need to do anything else?
Regards
FBW
Guest
Posts: n/a
Now here's a funny thing, just searched my hard drive, I've got SULFNBK.EXE listed as a 44kb application in c|windows|c.... and it was modified 23/4/99 I have scanned the drive with Command Antivirus which reports "no viruses"
Anyone know what this application is? surely it can't be a virus if Command Antivirus doesn't pick it up given that it has presumably been laying in my hard drive since 23/4/99 ?
Anyone know what this application is? surely it can't be a virus if Command Antivirus doesn't pick it up given that it has presumably been laying in my hard drive since 23/4/99 ?
Guest
Posts: n/a
DON'T automatically delete files - especially in the Windows directory or subdirectories 
Check my post "A new type of virus - almost Irish" at http://www.pprune.org/ubb/NonCGI/For...ML/000983.html
This file may be infected, but it's a file that should be there. If you really want to delete it, save it to a floppy first in case you later decide you need it!
Keep up to date with your virus scanner - it's only $20 a year or so for McAfee
------------------
What goes around . . .
. . often lands better!
Check my post "A new type of virus - almost Irish" at http://www.pprune.org/ubb/NonCGI/For...ML/000983.html
This file may be infected, but it's a file that should be there. If you really want to delete it, save it to a floppy first in case you later decide you need it!
Keep up to date with your virus scanner - it's only $20 a year or so for McAfee
------------------
What goes around . . .
. . often lands better!
Guest
Posts: n/a
Ummmmmm! Like ESG says, don't just delete a file. It so happens that the alarms concerning SULFNBK.EXE are a hoax!
Click on this url:
=http://vil.mcafee.com/dispVirus.asp?virus_k=99084&
You will have to put that file back I am afraid!
[This message has been edited by InFinRetirement (edited 02 June 2001).]
[This message has been edited by InFinRetirement (edited 02 June 2001).]
Click on this url:
=http://vil.mcafee.com/dispVirus.asp?virus_k=99084&
You will have to put that file back I am afraid!
[This message has been edited by InFinRetirement (edited 02 June 2001).]
[This message has been edited by InFinRetirement (edited 02 June 2001).]
Joined: Sep 1998
Posts: 513
Likes: 0
From: Sydney, Australia
The genuine SULFNBK.EXE is a system file to do with long file name backups. I don't know when you would use it, but I guess Windows does, so you should leave it where it is.
Pilot999, I received tha same toy prog that you received - I found it quite interesting, by the way. I received it as a Word document with a file called optical.exe embedded in it.
AA
Pilot999, I received tha same toy prog that you received - I found it quite interesting, by the way.
I received it as a Word document with a file called optical.exe embedded in it.AA
Guest
Posts: n/a
Have look at this too:
http://www.symantec.com/avcenter/ven...e.warning.html
It does seem that sulfnbk.exe is not a virus but is an important file working in the background of W9*; but I can't find it in Win2000.
If you deleted it you can get it back using Symantec's guidance.
[This message has been edited by fobotcso (edited 01 June 2001).]
http://www.symantec.com/avcenter/ven...e.warning.html
It does seem that sulfnbk.exe is not a virus but is an important file working in the background of W9*; but I can't find it in Win2000.
If you deleted it you can get it back using Symantec's guidance.
[This message has been edited by fobotcso (edited 01 June 2001).]
Guest
Posts: n/a
Re-visited by "Snow White." I think she likes me!
E-mail had a subject line of Hahaha! With an attachment. "Snow White" is hiding in there - so DO NOT open it. Just delete it. I expect McAfee would have done so but having received it before it I just deleted it.
Guest
Posts: n/a
I'm not sure how people like "hahaha" get our email addresses (they've got mine too!) but one thing worth remembering is, when sending out an email to a large addres list, to send the email "to" yourself, and put all the other addressees in "blind copy" (Bcc)
That stops each addressee getting a list of the whole of your email address book - one way in which spammers "harvest" addresses
That stops each addressee getting a list of the whole of your email address book - one way in which spammers "harvest" addresses
Guest
Posts: n/a
Hi Guys,
You get what you pay for.......as they say.
Have a look at the table in the link below and make up your own mind about the AV you have at present.
http://www.nod32.com/awards.htm
I've just changed my AV to the NOD32 !!!
Cheers,
TG
You get what you pay for.......as they say.
Have a look at the table in the link below and make up your own mind about the AV you have at present.
http://www.nod32.com/awards.htm
I've just changed my AV to the NOD32 !!!
Cheers,
TG
Guest
Posts: n/a
ExSimGuy - you wonder how people get addresses.
It's amazing how the same things crop up in different guises!
Viruses (virii?) usually want to do one or more of 3 things:
1) Cause damage to your system
2) Gather information
3) Cause damage to other systems
First of all we had code to do all this, then the clever guys realised they could also cause havoc by disseminatibg the virus hoax e-mails, rather than going to the trouble of writing the real virus.
Think about it. You get a plausible sounding e-mail that warns you about a virus, and exhorts you to forward the e-mail to all your contacts. If you do so, it's a bit like a chain letter building up. It may not damage your machine, but if enough people forward it on then the mail system becomes clogged up. Also, after the mail has been forwarded quite a few times, it builds up quite a long list of e-mail addresses - great for someone down stream who gets it and can them use the information to start spamming you.
Now the clever guys are realising they can also achieve the same results with the opposite - that is an e-mail telling you that something isn't a virus, but is safe. What a hoax!
So, beware. Don't blindly forward mails, and if you do forward something do everyone a favour and strip off all the previous recipients addresses
It's amazing how the same things crop up in different guises!
Viruses (virii?) usually want to do one or more of 3 things:
1) Cause damage to your system
2) Gather information
3) Cause damage to other systems
First of all we had code to do all this, then the clever guys realised they could also cause havoc by disseminatibg the virus hoax e-mails, rather than going to the trouble of writing the real virus.
Think about it. You get a plausible sounding e-mail that warns you about a virus, and exhorts you to forward the e-mail to all your contacts. If you do so, it's a bit like a chain letter building up. It may not damage your machine, but if enough people forward it on then the mail system becomes clogged up. Also, after the mail has been forwarded quite a few times, it builds up quite a long list of e-mail addresses - great for someone down stream who gets it and can them use the information to start spamming you.
Now the clever guys are realising they can also achieve the same results with the opposite - that is an e-mail telling you that something isn't a virus, but is safe. What a hoax!
So, beware. Don't blindly forward mails, and if you do forward something do everyone a favour and strip off all the previous recipients addresses
Guest
Posts: n/a
There are many excellent websites describing virii hoaxes. Some of the best are
http://www.symantec.com/avcenter/hoax.html
http://www.datafellows.com/news/hoax.htm
http://www.stiller.com/hoaxes.htm
http://vil.mcafee.com/hoax.asp
---PPRuNe Dispatcher
http://www.symantec.com/avcenter/hoax.html
http://www.datafellows.com/news/hoax.htm
http://www.stiller.com/hoaxes.htm
http://vil.mcafee.com/hoax.asp
---PPRuNe Dispatcher