Warning

 

Close

Confirm Action

Are you sure you wish to do this?

Confirm Cancel
BCM
User Panel
springfield
SDS
skd
palmetto
VP
jt
troy
silencerShop
delton
primaryArms
CA
geissele
JRH
fightlite
RS
vortex
magpul
GS
aim
Hit
laRue
brownells
midwest
bravocompany

RS
fightlite
springfield
geissele
Pro2A
Faxxon
cmmg
blackhills
LAPG
ar15com
gray
THBRD
bravocompany
SAS
palmetto
JRH
CA
LAPG
silencerShop
dsa
jt
primaryArms
brownells
bravocompany
cmmg
tnvc
trijicon
RKBA
Users Online4749 Online
bravocompany missing Hydra
Page Hometown » Washington
Archived [ARCHIVED THREAD] - HEADS UP - VIRUS WARNING!!!
Posted: 12/18/2005 2:15:01 PM EDT


THIS IS TRUE - You can confirm it for yorself by going to www.snopes.com

Emails with pictures of Osama Bin-Laden hanged are being sent and the moment that you open these emails your computer will crash and you will not be able to fix it!

This e-mail is being distributed through countries around the globe, but mainly in the US and Israel.

Don't be inconsiderate; send this warning to whomever you know.

If you get an email along the lines of "Osama bin Laden Captured" or "Osama Hanged" do not open the attachment.

Confirmed at: http://www.snopes.com/computer/virus/osamahanged.asp

Origins: There are few headlines that would grab the attention of more computer users around the world than "Osama bin Laden Captured," and that's exactly what whoever created this lure was counting on to snare unsuspecting victims who use Microsoft platforms.

"Osama bin Laden Captured" isn't a virus in itself; it's the text of a message that includes a link to a file called EXPLOIT.EXE. When a message recipient clicks on this link to view what he thinks are pictures of Osama bin Laden's capture, he can end up downloading an executable Trojan known as Backdoor-AZU, BKDR_LARSLP.A, Download.Trojan, TrojanProxy.Win32.Small.b,or Win32.Slarp. Clicking the embedded link in the "Osama bin Laden Captured" message auto-executes a file called "EXPLOIT.EXE," which exploits a known security hole to download the Trojan. According to McAfee Security:

The Trojan opens a random port on the victim's machine. It sends the Port information to a webpage at IP address 66.139.77.145. The Trojan listens on the open port for instructions and redirects traffic to other IP addresses. Spammers and hackers can take advantage of compromised systems by using the infected computer as a middleman, allowing them to pass information through it and remain anonymous

Link Posted: 12/18/2005 4:59:23 PM EDT
[#1]
this is a bit old

securityresponse.symantec.com/avcenter/venc/data/backdoor.hacarmy.d.html

June 2004

However the lesson learned is still applicable.  Don't open files attached to emails that are suspicious.  Don't click links to emails that are suspicious.  Email is just like your regular mail.  Would you open a package you were not expecting, from somebody you do not know?

ETA: Make sure you have virus protection and that it is up to date.

"If there is any doubt, there is no doubt" -Robert Deniro
Link Posted: 12/18/2005 5:28:48 PM EDT
[#2]
Quoted:
However the lesson learned is still applicable.  Don't open files attached to emails that are suspicious.  Don't click links to emails that are suspicious.  Email is just like your regular mail.  Would you open a package you were not expecting, from somebody you do not know?


I most definitely would open a snail mail package addressed to me.

I do not even bother opening any email if I don't recognize the sender, let alone file attachments.
Archived [ARCHIVED THREAD] - HEADS UP - VIRUS WARNING!!!
Page Hometown » Washington
Close Join Our Mail List to Stay Up To Date! Win a FREE Membership!

Sign up for the ARFCOM weekly newsletter and be entered to win a free ARFCOM membership. One new winner* is announced every week!

You will receive an email every Friday morning featuring the latest chatter from the hottest topics, breaking news surrounding legislation, as well as exclusive deals only available to ARFCOM email subscribers.


By signing up you agree to our User Agreement. *Must have a registered ARFCOM account to win.
bravocompany
Pro2A
SAS
ar15com
LAPG
RS
geissele
JRH
dsa
jt
cmmg
silencerShop
springfield
fightlite
brownells
THBRD
primaryArms
Faxxon
gray
blackhills
palmetto
CA
LAPG
missing
AR-15 AK-47 Handgun Precision Rifles Armory Training Competitive Shooting General Outdoors Archery Hometown Industry

About AR15.COM

Become an AR15.COM Team Member

AR15.COM is the world's largest firearm community and is a gathering place for firearm enthusiasts of all types.

From hunters and military members, to competition shooters and general firearm enthusiasts, we welcome anyone who values and respects the way of the firearm.

Stay Connected

AR15.COM Facebook AR15.COM Twitter AR15.COM YouTube AR15.COM Instagram
Pepperjam Verification

Newsletter

Subscribe to our monthly Newsletter to receive firearm news, product discounts from your favorite Industry Partners, and more.

Contact Us

Advertising
[email protected]
General
[email protected]

Copyright © 1996-2024 AR15.COM LLC. All Rights Reserved.
Any use of this content without express written consent is prohibited.

AR15.Com reserves the right to overwrite or replace any affiliate, commercial, or monetizable links, posted by users, with our own.

Advertising Memberships ARFCOM Shop Gear Deals Virtual Weapon Build Discussion Forums Help Privacy DMCA About Your Privacy Choices California Consumer Privacy Act (CCPA) Opt-Out Icon   Goat Signal
** When you click on links to various merchants on this site and make a purchase, this can result in this site earning a commission. Affiliate programs include, but are not limited to, the eBay Partner Network and Amazon.
Top Top