VIRUS "Homepage"

[123gad]

We had the virus "homepage". Somebody said you can block this viruses (vb attachements) from Internet Explorer. We use MS-Outlook for e-mail.
We have McAfee Virus protection on ea. computer, but it didn't warned us at all.

Any idea how I can block future attachements.

Thank you very much for your help

 

[Javrix]

Well you will be fine if you just watch your attachement. If it ends in anything like .exe, .vbs., or any other extension that isn't familiar, I wouldn't open it. Especially if it's like "homepage.html.vbs". Here you can see they're trying to fool you, but no file EVER has 2 extensions. You can always tell what the file is by the last extension. In this case it's a visual basic script, not an HTML document.

Extensions like .jpg, .gif, .mgp, .avi, .txt, .doc, etc are ok, because they're just pictures, movies, documents, and you should recognize those.
~Javrix

If you gave an infinate number of rednecks, an infinate number of shotguns to shoot at an infinate number of street signs, they would eventually write Romeo and Juliet in braille.

 

[edfair]

You won't block future attachments, you'll just stop the scripting from running so you won't get infected.
It is in outlook security.
Trace it down from the virus FAQs. Ed Fair
efair@atlnet.com

Any advice I give is my best judgement based on my interpretation of the facts you supply.

Help increase my knowledge by providing some feedback, good or bad, on any advice I have given.

 

[2ffat]

Jarvix,

[tab]Be careful with .doc because macro viruses can be embedded in them, too.

123gad,
[tab]The problem with most, if not all, AV products is they have to have an update to the signature of a known virus. Most AV companies take 24+ hours to get a new signature out the door.

[tab]Your best bet is to have an e-mail policy in place that follows what you were told above. Blocking e-mail attachements and stopping scripts from running are a good start. So is keeping your AV software up to date, but educating your users and having a written policy in place to remind them of their responsiblity takes it one more step forward.

[tab]OK, I'm done preaching. Sorry about that B-) . James P. Cottingham

http://www.ivcusa.com

 

[dcain]

If you have money available you can try some of the content blocking virus checkers which will strip out attachments based on file type. We use Trend Viruswall on our mail relay server and it automatically removes .vbs attachments (amongst others) before they get to the Exchange server. It also automatically downloads signature updates directly from the Trend site. My Exchange server uses InoculateIT, but hasn't seen any of these viruses in over a year. Here's hoping it never has to again!

Hope this helps

David

 

[Billman1]

Almost all email viruses today make use of handful of VB Script commands. Either you specify these commands and block such emails from entering your office network or just specify file extensions to be blocked.

We use netMailshar (

http://www.netmailshar.com)

to block email viruses. It is very effective.

Billman1

 

[AVChap]

If McAfee didn't detect it, you might have not updated your DAT files. I detected it on my machine when someone sent that to me. I was using 1-month old DAT files!

Try updating your DAT files.