RootsWeb: VIRUS-DISCUSSION-L Re: [VIRUS] Which virus is this one?

VIRUS-DISCUSSION-L Archives

Archiver > VIRUS-DISCUSSION > 2003-09 > 1064000941

From: "Rae Brugger" <>
Subject: Re: [VIRUS] Which virus is this one?
Date: Fri, 19 Sep 2003 14:49:36 -0500
References: <200309181752.24209.cpollock@earthlink.net>

A new virus called SWEN has been reported, and examples have been seen at my daughters company computers. SWEN is already considered Medium-Risk for home users. She was sent this warning this morning. The email does look real though. Probably will be opened by many unsuspecting people. Rae in Texas ----- Original Message ----- From: "Chris" <> To: <> Sent: Thursday, September 18, 2003 5:52 PM Subject: [VIRUS] Which virus is this one? I got three of these today, although I'm not in the least bit affected, I know these are not real patches. Those of you out there getting these be warned. Received three of these, all three msg headers are enclosed. The msg test is enclosed also after the last bunch of headers. The msg has four attachments, one being a .exe file with various names. The .exe file is 104k in length. Status: R Return-Path: <> Received: from ns.euregio.net ([194.183.240.1]) by emu (EarthLink SMTP Server) with ESMTP id 1a04Oh4ge3NZFnx0 Thu, 18 Sep 2003 12:51:23 -0700 (PDT) Received: from ehhk (164-45.240.81.adsl.skynet.be [81.240.45.164]) by ns.euregio.net (8.11.1p2/8.8.5) with SMTP id h8IJiYQ09177; Thu, 18 Sep 2003 21:44:34 +0200 (CEST) Date: Thu, 18 Sep 2003 21:44:34 +0200 (CEST) Message-Id: <> FROM: "MS Corporation Technical Support" <> TO: "Microsoft Corporation Partner" <> SUBJECT: Microsoft Security Update Mime-Version: 1.0 Content-Type: multipart/mixed; boundary="drfehiidzcds" X-Status: N - -------------------------------------------------------------------------- --------------- Status: R Return-Path: <> Received: from lakemtao01.cox.net ([68.1.17.244]) by robin (EarthLink SMTP Server) with ESMTP id 1a06mx7pl3NZFjX0 Thu, 18 Sep 2003 14:30:52 -0700 (PDT) Received: from tiknk ([68.11.132.217]) by lakemtao01.cox.net (InterMail vM.5.01.06.05 201-253-122-130-105-20030824) with SMTP id <>; Thu, 18 Sep 2003 17:27:44 -0400 FROM: "MS Corporation Security Bulletin" <> TO: "Client" <> SUBJECT: New Security Patch Mime-Version: 1.0 Content-Type: multipart/mixed; boundary="udjtgduevrsan" Message-Id: <> Date: Thu, 18 Sep 2003 17:27:49 -0400 X-Status: N - -------------------------------------------------------------------------- -------------- Status: R Return-Path: <> Received: from amsfep14-int.chello.nl ([213.46.243.22]) by kite (EarthLink SMTP Server) with ESMTP id 1a06UeKD3NZFkD0 Thu, 18 Sep 2003 15:05:42 -0700 (PDT) Received: from wzzrghjb ([62.163.57.66]) by amsfep14-int.chello.nl (InterMail vM.5.01.05.17 201-253-122-126-117-20021021) with SMTP id <>; Fri, 19 Sep 2003 00:04:32 +0200 FROM: "Microsoft Program Security Center" <> TO: " " <> SUBJECT: Latest Net Upgrade X-ID: 71998249154722221 Mime-Version: 1.0 Content-Type: multipart/mixed; boundary="euzskuwjcrzat" Message-Id: <> Date: Fri, 19 Sep 2003 00:04:44 +0200 X-Status: N Microsoft Partner this is the latest version of security update, the "September 2003, Cumulative Patch" update which eliminates all known security vulnerabilities affecting MS Internet Explorer, MS Outlook and MS Outlook Express. Install now to help protect your computer from these vulnerabilities, the most serious of which could allow an attacker to run executable on your system. This update includes the functionality of all previously released patches. System requirements: Windows 95/98/Me/2000/NT/XP This update applies to: - MS Internet Explorer, version 4.01 and later - MS Outlook, version 8.00 and later - MS Outlook Express, version 4.01 and later Recommendation: Customers should install the patch at the earliest opportunity. How to install: Run attached file. Choose Yes on displayed dialog box. How to use: You don't need to do anything after installing this item. Microsoft Product Support Services and Knowledge Base articles can be found on the Microsoft Technical Support web site. http://support.microsoft.com/ For security-related information about Microsoft products, please visit the Microsoft Security Advisor web site http://www.microsoft.com/security/ Thank you for using Microsoft products. Please do not reply to this message. It was sent from an unmonitored e-mail address and we are unable to respond to any replies. - -------------------------------------------- The names of the actual companies and products mentioned herein are the trademarks of their respective owners. Copyright 2003 Microsoft Corporation. -- Regards Chris A 100% Microsoft free computer Registered Linux User 283774 http://counter.li.org 5:41pm up 9 days, 20:47, 4 users, load average: 0.18, 0.13, 0.08 ______________________________

This thread:

[VIRUS] Which virus is this one? by Chris <>
- Re: [VIRUS] Which virus is this one? by "Rae Brugger" <>
  - Re: [VIRUS] Which virus is this one? by "Myself" <>
    - Re: [VIRUS] NORTON ANTI VIRUS WARNINGS by "Norman Backhouse" <>
- [VIRUS] Fwd: Which virus is this one? by Chris <>
  - Re: [VIRUS] Fwd: Which virus is this one? by "Gene Kelley" <>
  - Re: [VIRUS] Fwd: Which virus is this one? by "Robert Wilson" <>
    - Re: [VIRUS] Fwd: Which virus is this one? by