I got attachments with 5 different file names in this virus attack. ALL that came to me had a double extension "(file name).zip.pfl" (showing it was coming from users of Outlook-type programs). None I got carried the EXE extension which might have been imbedded within the zip file. A ZIP extension usually indictes a Trojan but those do not replicate and these were very busy. The fellow I got them from first said it came in on RootsWeb's weekly update newsletter. He said something on his computer was acting strange, something wasn't right. We agreed those attachments coming in might be viruses, especially since they compounded with every email. He ran McAfee, Norton and some other program (he builds computers so has a lot of options) but none of those programs identified the virus. He called his provider who checked his emails and confirmed it was a virus. At that point he had no choice except to dump his total hard drive and clean it out since no software would identify and disinfect. A double-extension file name was easy to spot right away from my end. It was a warning not to open plus it would not open, plus I cannot open PFL files anyway. As Tina said, RootsWeb does not allow attachments to go through on their mail list, BUT one of these virus files did get through via a post on another mail list I have. The only way I can figure out that it got through is the person must have his email set to "include attachments in body of message" - that way it doesn't go through as an attachment, per se - and RootsWeb's software didn't filter out the word "attach" in the body. Notifying people of a possible virus contamination isn't always easy - many have a hard time admitting they might be an unwitting carrier. I sent a warning to the list immediately and so far nobody has complained about getting the virus. Crossed fingers here. I have never had a problem with viruses since I stay away from Microsoft's integrated internet operations. Ruby At 10:20 AM 04/23/01 -0700, you wrote: >This is another good point, but unnecessary if you have your windows program >updated through critical updates on Microsoft's web site. The only fear you >have in this manner are Active X controls that are being used through the >signature lines. If you have your system updated regularly, this is not a >threat. > >.exe and .vbs files have to be activated (clicked on), in order to do their >damage, so viewing your e-mail will not cause them to do anything. As long >as a dirty diaper is closed, you aren't going to get dirty, and it is the >same principle with these viruses. If you do not click on them, they cannot >do any damage. This idea has often caused new computer users to avoid their >e-mails altogether because they did not understand how these viruses worked, >and I do not want anyone on this list to be concerned about opening their >mail from this list. They are safe, just don't open attachments. > >Tina Hall >list admin.: Byrd-L, Surgener-L > >-----Original Message----- >From: Goodheart, Berny [mailto:[email protected]] >Sent: Monday, April 23, 2001 9:34 AM >To: [email protected] >Subject: RE: [SURGENER-L] re: New virus warnings > > >Good one Tina, > Another thing though, don't have your email browser set in preview mode. >If you preview you email as it comes in then you are effectively reading it. >This means your too late even if you select it to delete it without reading >it. > >In Outlook click View and turn Preview Pane OFF (there should be NO tick) >next to it. > >Cheers, >Berny > > >==== SURGENER Mailing List ==== >+++++++++++++++++++++++++++++++++++++++++++++++++ >To unsubscribe, send the message "unsubscribe" without the quotes to: >[email protected] > >============================== >Join the RootsWeb WorldConnect Project: >Linking the world, one GEDCOM at a time. >http://worldconnect.rootsweb.com > > >