those bastards

Detox · #1 February 16th, 2002, 01:51 PM

Hmm today I opened Outlook express and AVG was on the job, first time I've seen it in action. I had an email from "hahaha@sexyfun.net" (maybe com??) and it had an attached file "dwarf4u.exe" It told me what virus it was but i figured I would still be able to see it in the virus vault and I can't... The msg text was about snow white but I don't think AVG called the virus snow white.. anyway this is the second time i have received this, last time Vcatch caught it.

Detox · #2 February 16th, 2002, 01:53 PM

oh I think it said "worm" something..

Paul Wilders · #3 February 16th, 2002, 02:15 PM

Hi Detox,

This is Hybris (or a variant). Read the specs over here:

http://securityresponse.symantec.com/avcenter/venc/data/w95.hybris.gen.html

regards.

paul

Krusty · #4 February 16th, 2002, 06:02 PM

Hello Detox
I got that same "hahaha thingy" and one encrypted file once together. You should remember that senders address and block it from your server. Atleast that option is on outlook express.(thank God) I also responded the sender and it was nothing I could put it here C/;: -). I got them from simlive@willmar.com and stevej353@excite.com. They won´t bother me anymore.
-Ari a.k.a Krusty

wizard · #5 February 16th, 2002, 06:40 PM

The worm uses a fake email address hahaha@sexyfun.net. Some people opened a webpage on http://www.sexyfun.net/ with a lot of good information and removal help about the hybris worm.

wizard

Detox · #6 February 17th, 2002, 04:01 PM

Very cool now I should try to figure out who has this that I know, since it would sound like someone with my address in their book is sending it to me unknowingly...

Thanks for the great links those were very informative! Now I definitely know exactly what is trying to attack me!

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search