[sdiy] definate virus problem with Kolaric
Scott Gravenhorst
music.maker at gte.net
Wed Jan 23 08:38:29 CET 2002
Hi Theo,
The only thing you missed is to turn OFF any automatic
attachment open/execute feature your email program has,
ESPECIALLY if you use Microsoft Outlook. (LookOut!)
Doing this will help to prevent your system from being
infected again once you get rid of the worm.
"Theo" <t.hogers at home.nl> wrote:
>There is a ongoing BADTRANS worm infection on the SDIY list.
>Probably pp keep infecting each other over and over.
>(Among other things) Badtrans sends replies to unanswered mail in you
>in box, therefore it is kind of hard to exterminate from a mailing list.
>Even when the worm can't spread though the list itself.
>
>Please _EVERY ONE_ on the windos platform, any variation.
>Don't care about how perfect your virus protection/firewall is,
>this will only cost you a minute, so PLEASE.
>Check if there is a file named KERNEL32.EXE in your windows system
>directory.
>If the file is there you are infected with badtrans.
>Mind _.exe_ NOT _.dll_ which is you windos kernel, you do want to keep that
>one.
>
>To clean:
>Hard reset your PC and press F8 to start in dos mode (don't use the start
>menu!!)
>Go to your windows system dir; delete KERENEL32.EXE and KDLL.DLL.
>Start windows.
>Check your registry for any KERNEL32.EXE entry and delete.
>The worm itself is now gone, but there are still some related files on your
>system.
>To delete these best run a resent (free online!) virus scan on your system.
>
>Last but not least, change your pass words, KDLL is a password logger!.
>
>
>Theo.
>In an utter attempt to get the list worm free again.
>
>
>From: Peter B <dragonservicing at success4business.com>
>
>> hi,
>> just to say that I also have got a suspicious email from J A Kolaric,
>> subject re[ sdiy ] divider ic's.
>> but not sent via the list it seems .
>> regards Peter
>>
>> --
>> web page http://home.clara.net/dragonser/index.html
>>
>>
>>
>
>
=========================================================
- Government: The other religion.
- The media's credibility should always be questioned.
- Lambs who lie down with lions are lunch.
-- Scott Gravenhorst | LegoManiac / Lego Trains / RIS 1.5
-- Linux Rex | RedWebMail by RedStarWare
-- FatMan: home1.GTE.NET/res0658s/TekLab_FatMan_WebSite/index.html
-- NonFatMan: home1.GTE.NET/res0658s/electronics/index.html
More information about the Synth-diy
mailing list