> > Sorry James if this is the wrong topic tag. I send an original message (as > apposed to a reply) only a few times a year, so I forget the details and I'm > not on line right now. It was. I changed it to the proper ADMIN tag. > > I just received two messages directly to me with the email address I only > use on the PIClist. I assume some others probably got them too. These > messages may contain viruses. Each had an attachment that was named > .doc.bat. My advice is DON'T OPEN IT!. This is one of the > sneaky ways viruses get into your system. Some people have the setting > "Don't show file extensions of know file types" enabled, so this will appear > like a harmless ".doc" file. However it is really a ".bat" file, which can > do whatever it wants on your computer if you are dumb enough to run it. Of > course the kind of people that leave know file extensions off already > flunked the first intelligence test, so they are more likely to invite a > virus in too. > > I looked at the BAT files, and they contained mostly binary, which is even > more suspicious. Here is the full message with header, up to the > attachment: It's an ugly virus. It got so annoying in the last week that I finally had to add a procmail filter to filter it out. I even have a couple where the query is in Spanish! Fortunately I'm a Unix user and the request is always the same. So it's easily filterable and the attachment has no way to run on my machines. I've gotten 10 copies since yesterday when I added the filter. In fact this message was in my ADVISE bin because it has the magic phrase. I really wish they'd find the bastard that released this and torture them with BB gun pellets. Hurts like hell but doesn't kill you. BAJ -- http://www.piclist.com hint: To leave the PICList mailto:piclist-unsubscribe-request@mitvma.mit.edu