In looking at the script...file.
What it does is register it-self, then if you are running outlook ...then it
pops off 3 emails to everyone on the list.
Then it was doing a down load from randon 4 addresses at
http://www.skyinet.net/ (looks like some free address space there..)
Down loaded a program called WIN-BUGSFIX.EXE.
so two problems...the clog the e-mail and 2nd the actual program
All it takes is one person in a large corp running the VB script.
In sending the virus back to where it came from, you could be sending it back
to yourself.
One quick solution is to rename the VBS attachment to .TXT on the mail
server...and kill the emails with subject ILOVEYOU
Alex
NB Keenan wrote:
> At 05:19 PM 5/4/00 -0400, you wrote:
> > Yeah... Why strip them? Why not just reject the whole thing
> >right back into the face of the sender. If they did it intentionally,
> >maybe they'll find another way. If they did it because of an infestation,
> >maybe that's the fastest way to let them know.
>
> OK. But is there a way to bounce email with just certain file type
> attachments ? We use attachments a lot for transferring data. I have no
> problem if someone wants to send a text attachment, but I want to block any
> sort of active content.
>
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
