General discussion


New Worm?

By TheChas ·
I may be wrong, but I just got an email that looks suspiciously like a good way to mess up your computer.

The text of the message is:

"Hey, Just got this from CNN, Osama Bin Laden has been captured! Goto the link below to view the pics and to download the video if you so wish: "Murderous coward he is". God bless America!"

Now, since the sender was NOT anyone I know, I am not going to paste and follow the link.

IMHO, it looks like it is time to send another warning message to your users.


This conversation is currently closed to new comments.

Thread display: Collapse - | Expand +

All Comments

Collapse -


by Oz_Media In reply to New Worm?

My SPAM filters have caught it several times but I will send out a notice all the same.

Thanks much Chas

Collapse -


by TheChas In reply to New Worm?

I got this information from ARIN WHOIS:

Search results for:

VONOC VONOC-03 (NET-209-151-64-0-1) -
EZ Web Hosting VONOC-209-151-88-0-23 (NET-209-151-88-0-1) -

# ARIN WHOIS database, last updated 2004-04-21 19:15
# Enter ? for additional hints on searching ARIN's WHOIS database.


Collapse -

EZ webhosting

by Oz_Media In reply to Who-Is

Sounds like a really good ISP doesn't it?

High-end project happening there I'm sure.

These goobers always use the most idiotic systems, subject lines etc. I can't believe that some people still open all this crap thinking it may be important, if people had half a brain there would be at least 80% less viruses hitting people each day I'm sure.

The one I like is when I get an email from myself from some spoofer. I sent myself an important notice about a document I HAVE to read right now??? Well I'd better unzip it and get on the ball I guess! Oh no, a blue screen, all I did was open my own email? anyone would fall for that one right?

I think virus writers are getting lazy in their old age or something, they aren't even creative anymore. "Hey open this right now!" or "Important document youhave been waiting for (except it is from

Oh well, there's always s sucker I suppose, I just hate it when it's me! HEE-HAW!


Collapse -

Gullible Users

by wdkinsey In reply to EZ webhosting

The problem that I have with those messages is in the form of a 14 year old daughter. Even though we have had the "Don't open if you don't know" discussion repeatedly, something in her overly curious brain can't help opening those emails.

Collapse -

Good Reason to get her

by HAL 9000 Moderator In reply to Gullible Users

Her own computer so she isn't constantly messing up your's.

Sorry been there and done that you'll never get through to her until she is without access to a computer for a long time. I did this for my kids long ago and when they messed them up I just took a little over a week to reload them or fix them it was amazing just how fast they learnt not to do things. But of course we didn't have the problems particularly with the Internet back then either.

Actually what someone said above about lazy "Script Kiddies" I think it isn't so much them getting lazy but we are seeing a new bunch hitting the net as the older ones are getting more involved in attempting to hit the business areas. But then again I've just received several warnings from M$ about believed flaws in 2003 {The Most Secure OS the Microsoft Has Ever Built} now how many meg in patches and hot-fixes is that, that are available for 2003 now?


Collapse -


by Oz_Media In reply to Good Reason to get her

Man you're too soft Colin. I've had the dead boxes people's kids have killed sit on my floor so long that after the initial cleaning, they need to be recleaned before I can put them back together. Dust Bunnies LOVE computers!

I rarely get one of them back again though and no longer get lumbered with other people's kids mistakes.

Collapse -

It's a trojan

by Joseph Moore In reply to New Worm?

Here is a quote from SANS on this e-mail:

Osama Bin Laden Captured E-mail
An email is circulating on the internet today that claims to be from CNN or BBC. The email utilizes this exploit to download a file pics.chm that in turn contains and executes a Trojan. McAfee has identified this as Exploit-MhtRedir.gen and Norton identifies it as Backdoor.Nibu.D. The Trojan once executed attempts to steal passwords and bank account information.

Related Discussions

Related Forums