TECHNET Archives

February 2009

TechNet@IPC.ORG

Options: Use Monospaced Font
Show Text Part by Default
Show All Mail Headers

Message: [<< First] [< Prev] [Next >] [Last >>]
Topic: [<< First] [< Prev] [Next >] [Last >>]
Author: [<< First] [< Prev] [Next >] [Last >>]

Print Reply
Subject:
From:
Phil Nutting <[log in to unmask]>
Reply To:
TechNet E-Mail Forum <[log in to unmask]>, Phil Nutting <[log in to unmask]>
Date:
Tue, 17 Feb 2009 17:18:16 -0500
Content-Type:
text/plain
Parts/Attachments:
text/plain (149 lines)
Take a look at Symantec's website for info/fixes.  I think there is also a site www.hoax.com or something like that that lists all known hoaxes.

-----Original Message-----
From: TechNet [mailto:[log in to unmask]] On Behalf Of Inge
Sent: Tuesday, February 17, 2009 4:34 PM
To: [log in to unmask]
Subject: Re: [TN] Virus Hoax

Microsoft has this program:

http://support.microsoft.com/kb/890830/en-us

but they do NOT list worms or anything officially.  Got further about
AgentBX : it uses Windows Explorer sometimes, which means, if you leave your
C: and goes to D: or whatever you name your other HDs or partitions, the
worm multiplies there too. Not fun, so as to say. I will use my Linux
machine next, and change  DSL too. Hoax or not, I will not risk being worm
generator!

Have a nice day


Inge


----- Original Message -----
From: "Robert Kondner" <[log in to unmask]>
To: <[log in to unmask]>
Sent: Tuesday, February 17, 2009 9:49 PM
Subject: [TN] Virus Hoax


> Inge,
>
>  I think this Agent.bx virus is a hoax. Microsoft say nothing about it
> that
> I could find. Maybe you have a link to Microsoft?
>
> Bob Kondner
>
>
>
>
>
> -----Original Message-----
> From: TechNet [mailto:[log in to unmask]] On Behalf Of Inge
> Sent: Tuesday, February 17, 2009 2:40 PM
> To: [log in to unmask]
> Subject: Re: [TN] NTC anti-this-and-that programs
>
> Remeber I've been warned that agent.BX may have infiltered my computer? I
> got the below information from a friend who is initiated. Microsoft  has a
> awaiting award of a hundred k for the one who can IDENTIFY that worm. It's
> not identified! I can't believe my ears. Can't Microsoft themselve, how
> then
>
> on earth can you do it at home. My friend told me that agentBX does not
> need
>
> exe or dll or any other common file types for hiding. It's seemingly one
> of
> the most dangerous intruders today and you may not know about it in your
> computer for months!  I was told that there is only one way to get rid of
> it: format the HD and reinstall. To have a second HD for saving or an
> external one is not at safe either, not to mention memory sticks. So,
> without knowing anything, you may contribute to spreading this evil thing
> worldwide. Hence, not to risk be blacklisted one day by TN, I will now
> kill
> my OS and start from  scratch.
>
> Inge
>
> Worm.Agent.bx is a nefarious Trojan infection that tends to be installed
> onto a computer via a web browser security exploit, and without the user's
> consent or knowledge thereof. Once Worm.Agent.bx is installed it begins to
> download and install additional malware onto the infiltrated system, which
> may in turn cause serious issues and may render the infected computer
> useless. The fact that Worm.Agent.bx can easily enter any PC system via
> security exploits and flaws, most times without the user's interaction,
> means that it is that much easier for Worm.Agent.bx to enter the system
> and
> ensure the system's security is immensely compromised. All financial and
> personal data is at serious risk of being stolen, should a computer system
> have Worm.Agent.bx present. Worm.Agent.bx allows for a remote attacker to
> gain access to all personal information, which is highly capable of
> resulting in identity theft. The term Trojan refers to the fact this
> particular malware, Worm.Agent.bx, is not only installed under deceptive
> pretences, infiltrating the user's PC without their approval or knowledge,
> but is also highly capable of serious system damage and data loss.
> Worm.Agent.bx is particularly damaging to a computer system, once it has
> fully embedded itself within the PC's system, therefore it is given a high
> priority security risk status by many computer analysts. Risks which may
> affect the PC's system functions include: the opening of illicit network
> connections, the use of polymorphic tactics to self-mutate, the disabling
> of
>
> already installed security software, modification of system files, and not
> forgetting the installation of additiona
>
> ---------------------------------------------------
> Technet Mail List provided as a service by IPC using LISTSERV 15.0
> To unsubscribe, send a message to [log in to unmask] with following text in
> the BODY (NOT the subject field): SIGNOFF Technet
> To temporarily halt or (re-start) delivery of Technet send e-mail to
> [log in to unmask]: SET Technet NOMAIL or (MAIL)
> To receive ONE mailing per day of all the posts: send e-mail to
> [log in to unmask]: SET Technet Digest
> Search the archives of previous posts at: http://listserv.ipc.org/archives
> Please visit IPC web site http://www.ipc.org/contentpage.asp?Pageid=4.3.16
> for additional information, or contact Keach Sasamori at [log in to unmask] or
> 847-615-7100 ext.2815
> -----------------------------------------------------
>
> ---------------------------------------------------
> Technet Mail List provided as a service by IPC using LISTSERV 15.0
> To unsubscribe, send a message to [log in to unmask] with following text in
> the BODY (NOT the subject field): SIGNOFF Technet
> To temporarily halt or (re-start) delivery of Technet send e-mail to
> [log in to unmask]: SET Technet NOMAIL or (MAIL)
> To receive ONE mailing per day of all the posts: send e-mail to
> [log in to unmask]: SET Technet Digest
> Search the archives of previous posts at: http://listserv.ipc.org/archives
> Please visit IPC web site http://www.ipc.org/contentpage.asp?Pageid=4.3.16
> for additional information, or contact Keach Sasamori at [log in to unmask] or
> 847-615-7100 ext.2815
> -----------------------------------------------------

---------------------------------------------------
Technet Mail List provided as a service by IPC using LISTSERV 15.0
To unsubscribe, send a message to [log in to unmask] with following text in
the BODY (NOT the subject field): SIGNOFF Technet
To temporarily halt or (re-start) delivery of Technet send e-mail to [log in to unmask]: SET Technet NOMAIL or (MAIL)
To receive ONE mailing per day of all the posts: send e-mail to [log in to unmask]: SET Technet Digest
Search the archives of previous posts at: http://listserv.ipc.org/archives
Please visit IPC web site http://www.ipc.org/contentpage.asp?Pageid=4.3.16 for additional information, or contact Keach Sasamori at [log in to unmask] or 847-615-7100 ext.2815
-----------------------------------------------------

Note: All the information contained in this e-mail and its attachments is proprietary to Kaiser Systems, Inc. and it may not be reproduced without the prior written permission of sender.  If you have received this email in error, please immediately return it to sender and delete the copy you received.

---------------------------------------------------
Technet Mail List provided as a service by IPC using LISTSERV 15.0
To unsubscribe, send a message to [log in to unmask] with following text in
the BODY (NOT the subject field): SIGNOFF Technet
To temporarily halt or (re-start) delivery of Technet send e-mail to [log in to unmask]: SET Technet NOMAIL or (MAIL)
To receive ONE mailing per day of all the posts: send e-mail to [log in to unmask]: SET Technet Digest
Search the archives of previous posts at: http://listserv.ipc.org/archives
Please visit IPC web site http://www.ipc.org/contentpage.asp?Pageid=4.3.16 for additional information, or contact Keach Sasamori at [log in to unmask] or 847-615-7100 ext.2815
-----------------------------------------------------

ATOM RSS1 RSS2