Re: virus patch for VPC

From: Nariman Riahi (nriahi_at_yahoo.com)
Date: 12/05/04 

Date: Sun, 05 Dec 2004 11:09:58 -0800

On 12/5/04 10:51 AM, in article
fe22271.0412051051.7748c889@posting.google.com, "Brenda"
<brendaeuwer@earthlink.net> wrote:

> "Fredrik Wahlgren" <fredrik.p.wahlgren@mailbox.swipnet.se> wrote in message
> news:<eJ5GrVg2EHA.1400@TK2MSFTNGP11.phx.gbl>...
>> "Bob Harris" <plasticnitlion@wrappermindspring.com> wrote in message
>> news:BDD716B6.44EBA%plasticnitlion@wrappermindspring.com...
>>> Bill Leeper wrote:
>>>> Bob Harris wrote:
>>>>> Brenda wrote:
>>>>>
>>>>>>> I installed a virus protector in my VPC. I installed the AVG 6.0
>>>>>>> (free edition)
>>>>>>> I keep getting this MS security patch (in my e-mail)
>>>>>>> and they recommend to install this patch for security. Does this
>>>>>>> patch work with the AVG 6.0
>>>>>>> or is it seperate? Should I install this patch?
>>>>>
>>>>> and Fredrik Wahlgren replied:
>>>>>
>>>>>> Don't EVER run any kind of "security patch" that comes with email. If
>> you
>>>>>> run the attachment, you will get a a virus or some other kind malware
>> on
>>>>>> your computer. The only way to get real patches from MS is to point
>> your
>>>>>> browser at: http://v4.windowsupdate.microsoft.com/en/default.asp
>>>>>
>>>>>
>>>>> While I believe what you are saying, Fredrik, is there really any
>> reason for
>>>>> Brenda to trust what you're telling her more than what that zombie-sent
>>>>> e-mail is telling her? How does she know that URL is valid?
>>>>>
>>>>> Bob H
>>>>
>>>> If one is going to err in this matter then they should err on the side
>>>> of caution. Which would mean giving more credence to someone advocating
>>>> not to install the patch. And he is right, MS does not email patches to
>>>> people.
>>>
>>> Is it really that clear which side is the cautious one? Arnold says "You
>>> need to install this lock, otherwise someone can break into your house".
>>> Beth says "Don't install his lock, he has a pass key". To "err on the
>> side
>>> of caution", who do you trust?
>>>
>>> Understand, I'm not advocating that Brenda should install the e-mailed
>>> patch. I'm convinced it's a spoof. The point is that Brenda has to be
>>> smart enough to understand whether she should trust that e-mail or trust
>>> advice from Fredrik.
>>>
>>> Fredrik also wrote:
>>>> There is [a way to verify the URL is valid]. After you click on the
>> link, make
>>>> sure the text in the browser is the same as on the link.
>>>
>>> Suppose the URL were to
>>> http://V4.WINDOWSUPDATE.MICR0SOFT.COM/EN/DEFAULT.ASP
>>> Does that look like a valid URL? Depending on the font your browser uses
>> to
>>> dipslay the URL, you may or may not notice the first oh in MICR0SOFT is
>>> really a zero. And that's a different place on the web than the genuine
>>> microsoft, right?
>>>
>>> Bob H
>>>
>>
>> -Bob,
>> you're right. I admit that a link may look valid and that when you click on
>> it, the browser will point at that link and yet you end up somewhere else
>> than on microsoft's site. I have to admit that submiiting a link to a ng
>> could be used as a way to trick people to download some malware to a few
>> computers. I have clicked on some of the URL's that were sent in order to
>> make people enter their credit card numbers or similar. In most - if not
>> all - of these cases, I could clearly see that I had come to sites which
>> clearly different from waht the sender wanted the recipients to believe.
>>
>> / Fredrik
> Hi Again,
>
> Ok, this is what I get often-
> From: "MS Corporation Network Security
> Section",bszvsucip@confidence.ms.com>
> It says attachment (s) deleted due to virus:
> 1. installer63.exe: W32 SwenA@mm
>
> Then I get another e-mail marked as junk that says
> file attachment: hvzqebv.exe
> The file attached to this e-mail was removed because it is infected
> with the W32 Swen.A@mm virus.
>
> Are these fakes?
> They do not send e-mails to people to tell them viruses have been
> removed? right?
>
> Thank you
> Brenda
NOOOOOOOOOOOOOOOO. They DO NOT.
You should never trust any email that talks about virus protection or
deletion.
You Virus protection software will not send you email. It will alert you. On
you desktop with a warning dialog. Microsoft will never send you an email
about a virus. Rule of thumb is if you do not recognize the email address
(and I have to say this email address is very much like a junk address
bszvsucip@confidence.ms.com) then delete is right away. If you want to know
if your computer needs a Microsoft security patch go to
windowsupdate.microsoft.com. It will tell you.
Nariman

Relevant Pages

  • Re: virus patch for VPC
    ... I admit that a link may look valid and that when you click on ... It says attachment deleted due to virus: ... file attachment: hvzqebv.exe ... with the W32 Swen.A@mm virus. ...
    (microsoft.public.mac.virtualpc)
  • Outlook Express access
    ... I am also having this problem with any file attachment of ... The files did not contain any virus. ... Help -- this is a huge pain. ...
    (microsoft.public.security)
  • Re: Amazing email timing
    ... The Webby wrote: ... > file attachment: price.cpl ... That's supposed to be relatively impervious to virus and such... ... I don't see how this file could infect you, ...
    (sci.med.dentistry)
  • Recieved an email with the sender tag of security@microsoft.com 9/14 early AM
    ... use this Internet Explorer patch now! ... There are dangerous virus in the Internet now! ... File attachment: patch.exe ...
    (microsoft.public.security.virus)
  • Email attachment with [w32.swen.a@mm] virus!
    ... or any return delivery email failure notices from qmail. ... the file attachment. ... I scan my pc today and found this virus as I'm sure it comes ...
    (microsoft.public.windows.inetexplorer.ie6_outlookexpress)