Widespread Reporting of “Here you have” Virus

Many AP members are knowledgeable about computers. Ask questions and share your knowledge here. (Information are supplied without any guarantee. Do not open any URL or file not posted by someone you know.) (All users can read)
Post Reply
User avatar
Chrisax
President
Posts: 23045
Joined: Wed Apr 19, 2006 1:08 pm

Widespread Reporting of “Here you have” Virus

Post by Chrisax »

http://www.avertlabs.com/research/blog/ ... ave-virus/

(...) new threat commonly referred to as the “Here you have” virus due to the email subject line the worm uses during propagation. It looks like multiple variants may be spreading and may take some time to work through them all to paint a clearer picture. Here’s what we know thus far.

Infectious email messages may have the following properties: The URL does not actually lead to a PDF document, but rather an executable in disguise, such as PDF_Document21_025542010_pdf.scr served from a different domain, such as members.multimania.co.uk this URL is no longer active and the email propagation vector is believed to be crippled at this time (though already infected hosts may continue to spread email messages).


More info at the URL posted at the top of this message.
User avatar
shartris
Strong Leet
Posts: 136
Joined: Sat Jun 24, 2006 12:31 am
Location: USA, Pennslyvania
Contact:

Re: Widespread Reporting of “Here you have” Virus

Post by shartris »

Thx for the heads up Chris much appreciated :D
Shartris 220/30/70 Squad Commander
Alts: Lendahand / Dedicated / Insured / Hammured / Metashar
AP officer PVM / RAIDS / HR
Post Reply