Read the Previous Page

Page 2

 

Virus Warning

June 10 - A new and very destructive computer "worm," distributed much the same way as the Melissa virus, is quickly spreading throughout computers in the United States. Hundreds, if not thousands, of machines have already been infected. According to anti-virus experts, the Worm.Explorer.Zip virus first started in Israel on or about Sunday, spreading quickly to Europe. It was first reported in the United States on Tuesday.

Inner Workings of the Worm
The virus primarily affects users of Microsoft's Outlook e-mail program, though any e-mail user who receives a tainted message could be in trouble.

"This doesn't work through Microsoft Word like Melissa did, and it has the potential to spread far more rapidly,"
The Worm.Explorer.Zip program is even sneakier than the famed Melissa virus, and does far more damage.

Here's how it works:
A user receives an e-mail that appears to be from someone they've e-mailed previously. The subject line is usually a response to an e-mail sent by the user. Thus, both the address and subject appear both familiar and innocuous.
When the user opens the e-mail, the following message appears: "Hi, [Recipient Name]! I received your email and I shall send you a reply ASAP. Till then, take a look at the attached zipped docs. Bye." Outlook users will also see a file attachment called "zipped_files.exe" and possibly an icon.

Users should not open or click on this file.
This activates the virus. If the user clicks on the file, he or she gets an error message, which seems innocent enough. At the same time, however, the Worm moves into action, searching for random files on the user's hard drive, deleting Microsoft Word, Excel and Power Point files along with important files directly related to the Windows operating system. At the same time, the Worm replicates itself by sending the same e-mail, "zipped_files.exe" included, to every e-mail address in the user's inbox.

How It Works
The worm enters a target computer through an e-mail that appears to have come from someone the user e-mailed before. It comes with a file attachment called "zipped_files.exe." The text of the e-mail customarily reads: "Hi [Recipient Name]! I received your email and I shall send you a reply ASAP. Till then, take a look at the attached zipped docs. Bye" If a user then clicks to open that file, the worm is activated. It proceeds to randomly destroy certain files on the target computer, then replicates itself through the e-mail addresses in the in box.

How to Stop It
The easiest thing to do to stop the worm is for computer users to be aware of it so that they won't click on the "zipped_files.exe" icon to activate it. Outlook users have learned safe computing practices from the Melissa scare, and may halt the spread of the worm before it causes major damage. "Hopefully this won't spread as far as the Melissa virus." Anti-virus software should also be used. Symantec Corp. and other anti-virus software vendors already have patches on their Web sites.

Read the Next Page
Return To WPCUG Homepage

 

What do you think of having "The TXT" on-line? E-mail Bob Pajot
E-mail me at web_editor@wpcug.com