but I got rid of it.
I think...
how do I know for sure?
I think...
how do I know for sure?
I got KLEZ
- Thread starter Smash
- Start date
starlifter
Deity
- Joined
- Jun 17, 2001
- Messages
- 4,210
I'm assuming that is a spyware program? If so, search your registry for that string. Look at the registry keys the string appears in. Compare it to my post about how programs activate, and delete the key if it is in one of my posted registry locations for how a program can start.
If in doubt, Export the key, post it cut and paste with the # function of the edit window (that will give you mono-spaced text as a quate called "code:").
If in doubt, Export the key, post it cut and paste with the # function of the edit window (that will give you mono-spaced text as a quate called "code:").
Starlifter, Klez is a virus
Smash, take a look at this.
http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM_KLEZ.H
Klez does modify the registry, so you have to clean that up too, something Anti-virus programs don't do.
There is also a Klez removal tool available there.
Smash, take a look at this.
http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM_KLEZ.H
Klez does modify the registry, so you have to clean that up too, something Anti-virus programs don't do.
There is also a Klez removal tool available there.
I can't believe starlifter hasn't heard of the KLEZ worm.Its very "popular".Just previewing an e-mail message is enough.I got the one sent by the virus itself so somebody who has my e-mail address somewhere on their machine is unaware they have it.PLEASE don't put my e-mail address ANYWHERE on your machine 
I used some klez removal utility from d/l.com.Very easy.I tryed the Mcafee site directions but it was unsuccessful and quite complicated.It appears to have worked.I just wondered if there anything I can look for to see if there are any bits and pieces leftover.
The one I used is made by Kaspersky Lab or something.It even seemed to remove any trace in
system restore.That was somewhat unexpected and time saving as well.
I used some klez removal utility from d/l.com.Very easy.I tryed the Mcafee site directions but it was unsuccessful and quite complicated.It appears to have worked.I just wondered if there anything I can look for to see if there are any bits and pieces leftover.
The one I used is made by Kaspersky Lab or something.It even seemed to remove any trace in
system restore.That was somewhat unexpected and time saving as well.
starlifter
Deity
- Joined
- Jun 17, 2001
- Messages
- 4,210
Yes, as I mentioned before,check the Registry. From the link, here is even more detail for this particular registry search:
1. Click Start>Run, type Regedit then hit the Enter key.
2. In the left panel, double click the following:
HKEY_LOCAL_MACHINE>Software>Microsoft>Windows
>CurrentVersion>Run
3. In the right panel, look for and then delete these registry values. * is any random characters:
Wink* = %System%\Wink*.exe
WQK = %System%\Wqk.exe
4. In the left panel, double click the following:
HKEY_LOCAL_MACHINE>System>CurrentControl Set>Services
5. Under the Services key, look for and then delete this subkey:
Wink*
I would also search the registry for the virus name, just to be sure.
I avoid most viruses by not using MS E-mail rpoducts, which are outright invitations to have your system messed up. MS is completely unable to produce a safe E-mail product, and they never have been able to.
Use Eudora. It is much safer, much more secure, and it is an industry standard. All MS E-mail programs are Industry Garbage.
About your virus that MS allowed to infect your machine (Klez)... it is also not possible to propogate with a better e-mail program like Eudora ( the AV experts say: "this worm uses a vulnerability in HTTP-based email clients like Microsoft Outlook and Outlook Express" ). There are several thousand viruses that attack and spread thru MS E-mail. None work in Linux, and few can use other e-mail programs to propogate.
It is mind-boggling (actually, it make sense when you know MS) that MS is so rich and powerful, yet screws up the PC industry like it does for the last 8 to 12 years... people generally don't even "expect" much, and MS pretends that all this is somehow as natural as the rising sun.... but only MS OS's and programs are hammered by crashes, viruses, etc. to a massive extent... that is because of the inferior underlying design. It is almost impossible to infect a Linux system with a virus, because Linux simply says "nope". The very few viruses that are effective in Linus come from running MS compatible products, in particular Office macros. Funny how MS can even corrupt other OS's.
BTW, I hope the virus is gone now, Smash. A defense against many viruses and trojans is to keep a regular eye on your registry (esp. the...\run keys). I only let 4 programs reside from there, and delete any other program from activation in the Registry. It sppeds my machine up, allows conscious control (activate the \run programs by clikcin their icons, or else copying the shortcut to the start menu\startup directory, of you want auto start when you boot).
1. Click Start>Run, type Regedit then hit the Enter key.
2. In the left panel, double click the following:
HKEY_LOCAL_MACHINE>Software>Microsoft>Windows
>CurrentVersion>Run
3. In the right panel, look for and then delete these registry values. * is any random characters:
Wink* = %System%\Wink*.exe
WQK = %System%\Wqk.exe
4. In the left panel, double click the following:
HKEY_LOCAL_MACHINE>System>CurrentControl Set>Services
5. Under the Services key, look for and then delete this subkey:
Wink*
I would also search the registry for the virus name, just to be sure.
I avoid most viruses by not using MS E-mail rpoducts, which are outright invitations to have your system messed up. MS is completely unable to produce a safe E-mail product, and they never have been able to.
Use Eudora. It is much safer, much more secure, and it is an industry standard. All MS E-mail programs are Industry Garbage.
About your virus that MS allowed to infect your machine (Klez)... it is also not possible to propogate with a better e-mail program like Eudora ( the AV experts say: "this worm uses a vulnerability in HTTP-based email clients like Microsoft Outlook and Outlook Express" ). There are several thousand viruses that attack and spread thru MS E-mail. None work in Linux, and few can use other e-mail programs to propogate.
It is mind-boggling (actually, it make sense when you know MS) that MS is so rich and powerful, yet screws up the PC industry like it does for the last 8 to 12 years... people generally don't even "expect" much, and MS pretends that all this is somehow as natural as the rising sun.... but only MS OS's and programs are hammered by crashes, viruses, etc. to a massive extent... that is because of the inferior underlying design. It is almost impossible to infect a Linux system with a virus, because Linux simply says "nope". The very few viruses that are effective in Linus come from running MS compatible products, in particular Office macros. Funny how MS can even corrupt other OS's.
BTW, I hope the virus is gone now, Smash. A defense against many viruses and trojans is to keep a regular eye on your registry (esp. the...\run keys). I only let 4 programs reside from there, and delete any other program from activation in the Registry. It sppeds my machine up, allows conscious control (activate the \run programs by clikcin their icons, or else copying the shortcut to the start menu\startup directory, of you want auto start when you boot).
Greeko
Pallida Mors
Or you can try this free online virus scanner! I use it and it has an option to auto-clean. You can even scan multiple drives! I dont know what auto-clean does exactly but i think it should work.
http://housecall.antivirus.com/housecall/start_pcc.asp
http://housecall.antivirus.com/housecall/start_pcc.asp
The utility I used got rid of the worm itself but left some bits and pieces laying about.
I then ran the one linked by oryx and got rid of some more of it.
Then a reboot and ran mcafee and came up clean expcept for Leak Test by Gibson Research which it identifyed as a virus
..I got rid of it anyways.
I had a look at the regedit but it really doeswn't mean much to me unfortunately.
This is what I saw:
I'm think I'm ok now.Gonna go d/l Eudora now methinks.
I then ran the one linked by oryx and got rid of some more of it.
Then a reboot and ran mcafee and came up clean expcept for Leak Test by Gibson Research which it identifyed as a virus
..I got rid of it anyways.I had a look at the regedit but it really doeswn't mean much to me unfortunately.
This is what I saw:
I'm think I'm ok now.Gonna go d/l Eudora now methinks.
starlifter
Deity
- Joined
- Jun 17, 2001
- Messages
- 4,210
Here is teh Eudora download. I just downloaded the new version myself (I have 5.0.2, and 5.1.1 is current).
http://www.eudora.com/download/
The really cool thing about Eudora is that the same program has 3 built in modes:
1. Totally free, no ads, but some features disabled.
2. Totally free, ads, all features.
3. Totally free, paid, all features.
You can fully try it out, before buying. Or use the 2 free modes forever.
I have used it for tens of thousands of e-mails for almost 10 years. I thouroughly understand the OS-level design of both IE and Eudora, and pretty much for Netscape. Eudora is far far more secure for basic data integrity, and doubly so for backup of data, and changing of users. But I won't go into tech stuff about it.
Eudora is totally compatible with importing/exporting data, including IE, NS, and Opera.
@ anyone, not Smash in particular:
****** READ AND HEED *******
You can simultaneously maintain several e-mail systems of the **same** account on your machine.... but you have to make sure your e-mail program leaves the mail on the server when it checks e-mail!!
Example. You have NS, Outlook, and Eudora. Assume you're smart, and will never use Outlook again (unless forced to by the Government or your work/school), so you want to try both NS and Eudora. You plan to always check with NS first, and want to nake sure your 2nd e-mail program can download the same messages, too. Without long words, here is what you need to do (NS 6.23):
Note: Personally, I never allow e-mail programs to delete any mail on any server anytime. I manually command periodic eradications, as server capacity is reached. A new ISP I am trying has a web page control that lets me wipe any or all the server stored email easily.
In your Browsers, you can easily check the option that makes Eudora the default E-mail program
.
If E-mail is casual, Outlook is OK for light users, or people that read and delete everything, and don't mind system crashes and viruii. But if you'll be keeping e-mail for years, or want to avoid all the terrible problems that plague Outlook (and always will, because MS designed it with grave errors), or want really powerful features... the Eudora is the way to go.
BTW, Pegasus also makes a decent e-mail program, but it is not as industrial strength as Eudora.
I have not tried the Opera mail program, and don't plan to, since I already use Eudora. But Opera's looks promising, though I do not know how it works under the hood.
http://www.eudora.com/download/
The really cool thing about Eudora is that the same program has 3 built in modes:
1. Totally free, no ads, but some features disabled.
2. Totally free, ads, all features.
3. Totally free, paid, all features.
You can fully try it out, before buying. Or use the 2 free modes forever.
I have used it for tens of thousands of e-mails for almost 10 years. I thouroughly understand the OS-level design of both IE and Eudora, and pretty much for Netscape. Eudora is far far more secure for basic data integrity, and doubly so for backup of data, and changing of users. But I won't go into tech stuff about it.
Eudora is totally compatible with importing/exporting data, including IE, NS, and Opera.
@ anyone, not Smash in particular:
****** READ AND HEED *******
You can simultaneously maintain several e-mail systems of the **same** account on your machine.... but you have to make sure your e-mail program leaves the mail on the server when it checks e-mail!!
Example. You have NS, Outlook, and Eudora. Assume you're smart, and will never use Outlook again (unless forced to by the Government or your work/school), so you want to try both NS and Eudora. You plan to always check with NS first, and want to nake sure your 2nd e-mail program can download the same messages, too. Without long words, here is what you need to do (NS 6.23):
Note: Personally, I never allow e-mail programs to delete any mail on any server anytime. I manually command periodic eradications, as server capacity is reached. A new ISP I am trying has a web page control that lets me wipe any or all the server stored email easily.
In your Browsers, you can easily check the option that makes Eudora the default E-mail program
.If E-mail is casual, Outlook is OK for light users, or people that read and delete everything, and don't mind system crashes and viruii. But if you'll be keeping e-mail for years, or want to avoid all the terrible problems that plague Outlook (and always will, because MS designed it with grave errors), or want really powerful features... the Eudora is the way to go.
BTW, Pegasus also makes a decent e-mail program, but it is not as industrial strength as Eudora.
I have not tried the Opera mail program, and don't plan to, since I already use Eudora. But Opera's looks promising, though I do not know how it works under the hood.
starlifter
Deity
- Joined
- Jun 17, 2001
- Messages
- 4,210
@ Smash: Your screenshot is almost there. You need to go to the \run key, and have a look at what is "living" in there:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
You can copy the key data to an icon (shortcut) on your desktop, for these keys (in \run). That is because all of of these happen to be programs, not raw data.
The main thing is to know what you have in there.
A fast way to get to the Run key is use FIND (pull down menu). There is more than one, but this one does the real "damage" most of the time, since programmers like to put their program activations in this particular location.
As always, be slow and deliberate when making registry changes.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
You can copy the key data to an icon (shortcut) on your desktop, for these keys (in \run). That is because all of of these happen to be programs, not raw data.
The main thing is to know what you have in there.
A fast way to get to the Run key is use FIND (pull down menu). There is more than one, but this one does the real "damage" most of the time, since programmers like to put their program activations in this particular location.
As always, be slow and deliberate when making registry changes.
Oh ok.I have these running I guess
I don't know why all that Works stuff is running
Eudora looks great.
I don't know why all that Works stuff is running
Eudora looks great.
starlifter
Deity
- Joined
- Jun 17, 2001
- Messages
- 4,210
OK, here is are details:
The contents of this key (run) are nothing more than programs starting.
If you copy (cut and paste) the entire data contents of each one to a shortcut (perhaps make on on your desktop, for example), then double click each one after you boot, everything will be the same. Do not be afraid of this part of the Registry.... no mysterious codes, etc.
The thing to do is this:
1. Open Notepad.
2. Backup the text (the name and data) of each key.
3. Delete any keys you don't like.
4. Make shortcuts if you want to activate any/all of them manually (insead of automatically, like HKLM ... Run will do).
5. I just put any I want to run each time into the Sart Buttin --> Programs --> StartUp directory, and take them out if I want a program not to automatically start. That's far easier than re-editing the Registry each time!!
(CONTINUED IN NEXT POST)
The contents of this key (run) are nothing more than programs starting.
If you copy (cut and paste) the entire data contents of each one to a shortcut (perhaps make on on your desktop, for example), then double click each one after you boot, everything will be the same. Do not be afraid of this part of the Registry.... no mysterious codes, etc.
The thing to do is this:
1. Open Notepad.
2. Backup the text (the name and data) of each key.
3. Delete any keys you don't like.
4. Make shortcuts if you want to activate any/all of them manually (insead of automatically, like HKLM ... Run will do).
5. I just put any I want to run each time into the Sart Buttin --> Programs --> StartUp directory, and take them out if I want a program not to automatically start. That's far easier than re-editing the Registry each time!!
(CONTINUED IN NEXT POST)
starlifter
Deity
- Joined
- Jun 17, 2001
- Messages
- 4,210
Continued...
Well, now you're an expert in a tiny corner of the Registry!
Well, now you're an expert in a tiny corner of the Registry!
starlifter
Deity
- Joined
- Jun 17, 2001
- Messages
- 4,210
Now for some interesting news!!
My NortonAV 2000 has not shown any viruses on my machine. I decided today to check with a very good porgram that I have used for over 10 years, called F-Prot. It is an Anti Virus program. I downloaded the newest version of the program, and its 19August2002 updates, then ran it on my entire machine, including all archive files (zip, gz, tar, cab, rar, ace, etc.).
Guess what.... I was stunned to see I was "infected" by the Klez and the Sircam viruses!!!
Actually, they were in my Eudora attachment directory, and since Eudora is much much more immune to Viruses than MS outlook. And guess what?! Eudora was never even fazed by them. They never infected my machine at all, they were never activated.
I double checked this with Fix-It 4.0 Antivirus, which is just a licensed copy of the Trend Micro engine, whici is very good. It confirmed the diagnosis. I no longer rely on Norton exclusively for AV scanning.
Here is Trend Micro's website, alond with the Sircam info.
Fix-It's website is www.ontrack.com .
Anyway, here are the attachments that were in my attachment directory:
Can you believe it ?!?!?!
Waaaay to to EEEurooooraaa!! Yea! Eudora is not totally immune to viruses, it is just that MS is so bad, and lots of hackers love to take advantage of it, LOL!!. F-Prot fixed everything. Just goes to show... better off without MS E-mail.
Anyway, Not a single file on my machine is damaged, except for these source attachments. I use Eudora to look at an read e-mails, but I don't activate (double click) or open attachments, unless I know the sources and/or scan first.
My NortonAV 2000 has not shown any viruses on my machine. I decided today to check with a very good porgram that I have used for over 10 years, called F-Prot. It is an Anti Virus program. I downloaded the newest version of the program, and its 19August2002 updates, then ran it on my entire machine, including all archive files (zip, gz, tar, cab, rar, ace, etc.).
Guess what.... I was stunned to see I was "infected" by the Klez and the Sircam viruses!!!
Actually, they were in my Eudora attachment directory, and since Eudora is much much more immune to Viruses than MS outlook. And guess what?! Eudora was never even fazed by them. They never infected my machine at all, they were never activated.
I double checked this with Fix-It 4.0 Antivirus, which is just a licensed copy of the Trend Micro engine, whici is very good. It confirmed the diagnosis. I no longer rely on Norton exclusively for AV scanning.
Here is Trend Micro's website, alond with the Sircam info.
Fix-It's website is www.ontrack.com .
Anyway, here are the attachments that were in my attachment directory:
Can you believe it ?!?!?!
Waaaay to to EEEurooooraaa!! Yea! Eudora is not totally immune to viruses, it is just that MS is so bad, and lots of hackers love to take advantage of it, LOL!!. F-Prot fixed everything. Just goes to show... better off without MS E-mail.
Anyway, Not a single file on my machine is damaged, except for these source attachments. I use Eudora to look at an read e-mails, but I don't activate (double click) or open attachments, unless I know the sources and/or scan first.
starlifter
Deity
- Joined
- Jun 17, 2001
- Messages
- 4,210
Here is some of the most pertinant info about the KLEZ, which I have copied and shortened from Trend Micro:
WORM_KLEZ
Details:
All KLEZ variants, except WORM_KLEZ.B, are mass-mailing worms. They mail themselves to specified addresses by sending SMTP commands to an SMTP server. The worm exploits a vulnerability that opens an executable attachment even in Microsoft Outlook's preview pane.
WORM_KLEZ.B enables a remote user access to its infected computer.
All KLEZ variants, except WORM_KLEZ.B, are multi-threaded worms, where each thread performs a predefined task such as network infection or emailing. WORM_KLEZ.B spawns multiple copies of itself in memory.
I. Propagation
Where it obtains target email addresses from:
KLEZ variants .A, .C, and .D obtain recipients from the entries in the default Windows Address Book (WAB). Variants .A, .E, .F, .G, .H, and .I also gather addresses from the following files in the infected computer: MP8, EXE, SCR, PIF, BAT, TXT, HTM, HTML, WAB, DOC, XLS, CPP, C, PAS, MPQ, MPEG, BAK, MP3.
The address used in the FROM field:
Variants A., .C, .D, .E, and .F take the address from a list that is stored in the worm body. The lists changes for each variant.
Variants .G, .H, and .I obtain email addresses to place in the FROM: field from the infected user's address book. This causes a non-infected user to appear as the person who has sent this worm's malicious email. It does this to hide the real sender of the infected email.
Mail Subject
Variants .A, .C, and .D compose the email subject line from a list in the worm's body. This list is the same for each of these three variants.
Variants .E and .F compose the email subject line from a list in the worm's body. This list is the same for variants .E and .F.
For variants .G, .H, and .I, the subject of the email is composed in a complex manner, but also taken from a list in the worm's body.
Mail Body
For variants .A, .C, and .D the message body is as follows:
I'm sorry to do so,but it's helpless to say sorry.
I want a good job,I must support my parents.
Now you have seen my technical capabilities.
How much my year-salary now? NO more than $5,500.
What do you think of this fact?
Don't call my names,I have no hostility.
Can you help me?
Variants .E, .F, .G, .H, and .I generate a random mail body
II. Payload
For variants .A, .C. and .D, on the 13th day of any odd month (January, March, May, July, September, November), the worm attempts to execute its destructive payload. For all fixed and remote drives, it overwrites all files with zeros. This worm routine has a bug in generating the drives, however, and therefore fails to perform the task. The size of the original file does not vary. For each drive the worm sleeps for 30 minutes.
For variants .E and .F, on the 6th day of any odd month, this worm searches the fixed and remote drives for files having the following extensions, and then attempts to overwrite these files with garbage code: TXT, HTM, HTML, WAB DOC, XLS, CPP, C PAS, MPEG, MPG, BAK, MP3, JPG.
Variants .B, .G, .H, and .I have no payload
III. Killing Antivirus Processes in Memory
Variants .A, .C, and .D kill running processes and occasionally delete the executable files of programs associated with some antivirus products. The list is the same for variants .A, .C, and D.
Variants .E, .F, .G, .H, and .I kill running processes and occasionally delete executable files of programs associated with some antivirus products. The list is the same for variants .E, .F and .H.
IV. Network Infection[/]b
The worm is capable of spreading via shared drives/folders with read/write access. ... For each entry, it copies itself to files with randomly generated filenames. Variants .A, .C, .E, .F, .G, .H, .I are capable of this. Variants .B and .D are not capable of network infection.
All I can say is Thank the good Lord that He gave me the brains to know not to use outlook for the last 10 years!! Even Netscape & Opera are immune from these particular viruses, btw. But you still need to scan for them and delete or fix the infected attachments.
WORM_KLEZ
Details:
All KLEZ variants, except WORM_KLEZ.B, are mass-mailing worms. They mail themselves to specified addresses by sending SMTP commands to an SMTP server. The worm exploits a vulnerability that opens an executable attachment even in Microsoft Outlook's preview pane.
WORM_KLEZ.B enables a remote user access to its infected computer.
All KLEZ variants, except WORM_KLEZ.B, are multi-threaded worms, where each thread performs a predefined task such as network infection or emailing. WORM_KLEZ.B spawns multiple copies of itself in memory.
I. Propagation
Where it obtains target email addresses from:
KLEZ variants .A, .C, and .D obtain recipients from the entries in the default Windows Address Book (WAB). Variants .A, .E, .F, .G, .H, and .I also gather addresses from the following files in the infected computer: MP8, EXE, SCR, PIF, BAT, TXT, HTM, HTML, WAB, DOC, XLS, CPP, C, PAS, MPQ, MPEG, BAK, MP3.
The address used in the FROM field:
Variants A., .C, .D, .E, and .F take the address from a list that is stored in the worm body. The lists changes for each variant.
Variants .G, .H, and .I obtain email addresses to place in the FROM: field from the infected user's address book. This causes a non-infected user to appear as the person who has sent this worm's malicious email. It does this to hide the real sender of the infected email.
Mail Subject
Variants .A, .C, and .D compose the email subject line from a list in the worm's body. This list is the same for each of these three variants.
Variants .E and .F compose the email subject line from a list in the worm's body. This list is the same for variants .E and .F.
For variants .G, .H, and .I, the subject of the email is composed in a complex manner, but also taken from a list in the worm's body.
Mail Body
For variants .A, .C, and .D the message body is as follows:
I'm sorry to do so,but it's helpless to say sorry.
I want a good job,I must support my parents.
Now you have seen my technical capabilities.
How much my year-salary now? NO more than $5,500.
What do you think of this fact?
Don't call my names,I have no hostility.
Can you help me?
Variants .E, .F, .G, .H, and .I generate a random mail body
II. Payload
For variants .A, .C. and .D, on the 13th day of any odd month (January, March, May, July, September, November), the worm attempts to execute its destructive payload. For all fixed and remote drives, it overwrites all files with zeros. This worm routine has a bug in generating the drives, however, and therefore fails to perform the task. The size of the original file does not vary. For each drive the worm sleeps for 30 minutes.
For variants .E and .F, on the 6th day of any odd month, this worm searches the fixed and remote drives for files having the following extensions, and then attempts to overwrite these files with garbage code: TXT, HTM, HTML, WAB DOC, XLS, CPP, C PAS, MPEG, MPG, BAK, MP3, JPG.
Variants .B, .G, .H, and .I have no payload
III. Killing Antivirus Processes in Memory
Variants .A, .C, and .D kill running processes and occasionally delete the executable files of programs associated with some antivirus products. The list is the same for variants .A, .C, and D.
Variants .E, .F, .G, .H, and .I kill running processes and occasionally delete executable files of programs associated with some antivirus products. The list is the same for variants .E, .F and .H.
IV. Network Infection[/]b
The worm is capable of spreading via shared drives/folders with read/write access. ... For each entry, it copies itself to files with randomly generated filenames. Variants .A, .C, .E, .F, .G, .H, .I are capable of this. Variants .B and .D are not capable of network infection.
All I can say is Thank the good Lord that He gave me the brains to know not to use outlook for the last 10 years!! Even Netscape & Opera are immune from these particular viruses, btw. But you still need to scan for them and delete or fix the infected attachments.
Thats a pretty strong selling point for Eudora.
I had Klez h.No payload.The problem with the popular AVs is klez can change files so they don't run properly.
I had Klez h.No payload.The problem with the popular AVs is klez can change files so they don't run properly.
- Joined
- Oct 6, 2001
- Messages
- 3,136
Hehe, use squirrelmail! Webmail for nuts. It's what TF set up for the staff to have an easy webbased way to access their e-mail!
You can view it at www.civfanatics.net/squirrelmail/
But you must have a civfanatics staff account to log into it.
It's easy to use and has everything I need.
You can view it at www.civfanatics.net/squirrelmail/
But you must have a civfanatics staff account to log into it.
It's easy to use and has everything I need.
starlifter
Deity
- Joined
- Jun 17, 2001
- Messages
- 4,210
by Smash:
by Gonzo:
The webmail I use is eudoramail ( www.eudoramail.com ), esp. when I travel. Yes, eudoramail is by the same people that make the robust industry standard e-mail program, Eudora. But you don't need one to use the other. One is a standalone product (Eudora) and the other is a fast, reliable, non-overloaded webmail service (you can check, download, etc. with almost any stand-alone emailer, like OL, NS, Opera, Eudora, etc.).
Anyway, everyone should scan their machine for viruses, and if you are able (and if you download a lot), try and use more than one Virus Scanner!!
Klez and Sircam are both listed in the top 5 viruses, worldwide. They need the assistance of MS to activate involuntarily, and they need MS to replicate to other machines. If you activate them after they are downloaded (e.g., double click), they can still do some things on your own machine.
by Gonzo:
Most webmail is pretty secure. The disadvantage is that it not local, and not long term. However, with most webmail, you can access it with programs like Eudora and download it from the webmail's server.
The webmail I use is eudoramail ( www.eudoramail.com ), esp. when I travel. Yes, eudoramail is by the same people that make the robust industry standard e-mail program, Eudora. But you don't need one to use the other. One is a standalone product (Eudora) and the other is a fast, reliable, non-overloaded webmail service (you can check, download, etc. with almost any stand-alone emailer, like OL, NS, Opera, Eudora, etc.).
Anyway, everyone should scan their machine for viruses, and if you are able (and if you download a lot), try and use more than one Virus Scanner!!
Sanaz
Gorilla Joe
I use Eudora exclusively at work and at home (love the search, filtering, and archiving for the 300+ e-mails I receive daily, plus the multiple profiles and many other things). Did you know that development for Eudora has stopped completely?? Since basic e-mail isn't changing very quickly, this should go unnoticed for a while, but there will be a day when we'll miss it...
Thanks for all of your tips here!
well I got it again.Kinda.My machine is supposedly inoculated but it still messed up 1 file in Eudora.No more e-mailers for me.I follow all precautions but the virus makers are always a step ahead.
I'll stick to my account at squrrelmail and I'll use mail2web
It may not be the most secure thing in the world but its better than cleaning virus.
I'll stick to my account at squrrelmail and I'll use mail2web
It may not be the most secure thing in the world but its better than cleaning virus.
Similar threads
