Note: To protect the privacy of our members, e-mail addresses have been removed from the archived messages. As a result, some links may be broken.

Find Lesson Plans on getty.edu! GettyGames

virus again???

---------

Rdunkelart_at_TeacherArtExchange
Date: Wed Sep 05 2001 - 05:13:33 PDT


Because of the highlighted language I wonder if the virus hacker we have had
trouble with has not hacked into MacAfee - the rest of this message read as
it always does
but the line - I look forward to hear from you again - is all too familiar a
line from the
hacker that used to use names from our list for his/her postings. Anyone know
about this one? There was no attachment. Roberta

Fwd: VIRUS ALERT - W32/APost@MM ("APost" or "New Backdoor")

In a message dated 9/4/01 10:51:48 PM Central Daylight Time,
dispatch@mcafee.com writes:

<< Subject: As per your request!
 Body: Please find attached file for your review.
 I look forward to hear from you again very soon. Thank you.
 Attachment: README.EXE >>

attached mail follows:


(((((((((((((((((( McAfee.com Dispatch )))))))))))))))))))))

[This message is brought to you as a subscriber to the
McAfee.com Dispatch. To unsubscribe, please follow the
instructions at the bottom of the page.]

------------------------------------------------------------
** VIRUS ALERT - W32/APost@mm ("APost" or "New Backdoor") **
------------------------------------------------------------

W32/APost@mm ("APost" or "New Backdoor") worm has been
spreading over the past 24 hours This is a MEDIUM ON WATCH
worm. The infected email can come from addresses that you
recognize and may contain the following information:
 
Subject: As per your request!
Body: Please find attached file for your review.
I look forward to hear from you again very soon. Thank you.
Attachment: README.EXE

Running the attachment causes the worm to copy itself to the
Windows directory and send a copy of itself to every entry
in the user's Microsoft Outlook Address Book. It will then
display a small dialog box titled "Urgent!". This dialog box
contains one single large button labeled "Open". If this
button is pressed then the worm sends out further copies of
itself, displays an error message box with the title "WinZip
SelfExtractor: Warning" and then terminates.

For detection and removal instructions for the W32/APost@mm
("APost" or "New Backdoor") worm, click here.

McAfee.com VirusScan Online and Clinic subscribers:
If you don't have ActiveShield installed and updated, you
are not protected from this virus. Click here to download ActiveShield.

Retail VirusScan Users:
Version 4.0.70 and above with DAT file 4157 will detect and
remove this worm. To download the latest DAT files,
<a href="http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=2253"> click here</a>.

________________________Virus Fixes_________________________

Find out more about this virus. Click here to go to the W32/APost@mm ("APost" or
"New Backdoor") worm Help Center.

Become a McAfee.com subscriber and check your system online.
<a href="http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=2377"> Click here</a>.

Buy the latest VirusScan in the McAfee Store! Click here.

Is your VirusScan current? Purchase the VS Maintenance Plan
for $22.45 (USD) and upgrade to the most current version.
<a href="http://mcafeestore.beyond.com/AF77887-SMP_400/Product/0,1057,3-18-SN102899,00.html"> Click here</a>.

Download the latest DAT files, click here.

_____________________Anti-Virus Tips!_______________________

Find out how to detect and prevent viruses with these handy
tips. Click here.

______________________Special Offers_________________________

SAVE $20 and prevent online fraud! Get Visual Trace for
$19.95 (USD) -- half off of the regular price $39.95.
<a href="http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=23423"> Click here</a>!

Get a 2-year subscription of VirusScan Online now only
$39.90 (USD)! SAVE $10! Click here.

Get a 2-year subscription of Personal Firewall now only
$49.90 (USD)! SAVE $10! Click here.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

McAfee.com Support: To contact us about this dispatch, click here.

Subscribe: If you received this message from a friend and
would like to subscribe to McAfee.com Dispatch, click here.

Unsubscribe: If you do not wish to receive email, click here. click here.

Note: Promotions are subject to change without notice.

<a href="http://dispatch.mcafee.com/permission_policy.asp"> Click here</a> to view our permission policy.

Copyright 2001 McAfee.com Corporation / All Rights Reserved.

---