At 05:18 PM 5/7/2002, Barry E. Muller wrote: >I don't know if I'm the only source to this list, but I did have to get an >update for my anti-virus software to clean the klez-worm from my POS PC. Nowadays <sigh> your definitions are out of date if they're more than a couple days old. I have gotten as many as three updates in a single day! Norton Antivirus presently protects against roughly sixty-one thousand viruses. Most of them are extremely rare or haven't appeared "in the wild" -- but there's a steady trickle of new stinkers and variations on old ones. >Another advantage to a Mac - too rare for most hackers to waste their time >writing nasty code for. Absolutely. Ironic that if Apple has a marketing breakthrough, one of their big selling points will go away... > Have no idea where it came from - is there a way to >find out? With Klez you can examine the headers and find out what IP address the thing actually came from. Figuring out who was using that address at the time is not so simple. It helps somewhat that the infected machine will have both your address and the one that the message supposedly came from -- you can do some elimination if you have several samples to work with. Also most versions of Klez will do serious damage to infected machines of the sixth of each odd month, so people tend to notice when that happens and realize that something is wrong. david
-- David Beierl - Providence, RI http://pws.prserv.net/synergy/Vanagon/ '84 Westy "Dutiful Passage" '85 GL "Poor Relation" |
Please note - During the past 17 years of operation, several gigabytes of
Vanagon mail messages have been archived. Searching the entire collection
will take up to five minutes to complete. Please be patient!
Return to the archives @ gerry.vanagon.com
The vanagon mailing list archives are copyright (c) 1994-2011, and may not be reproduced without the express written permission of the list administrators. Posting messages to this mailing list grants a license to the mailing list administrators to reproduce the message in a compilation, either printed or electronic. All compilations will be not-for-profit, with any excess proceeds going to the Vanagon mailing list.
Any profits from list compilations go exclusively towards the management and operation of the Vanagon mailing list and vanagon mailing list web site.