Re: worm/virus impact
- From: "Jim Pickering" <jimp@xxxxxxxx>
- Date: Sat, 16 Apr 2005 20:43:42 -0700
Have you checked that zip files are in the category marked unsafe? Explorer/Tools/Folder Options/File Types
Or just review this article concerning unsafe file list:
Using virus protection features in Outlook Express 6: http://support.microsoft.com/default.aspx?scid=KB;EN-US;Q291387
-- Jim Pickering, MVP, Outlook Express https://mvp.support.microsoft.com/profile=F9F51EF1-4AE3-4D23-B2D8-1171988A62D6
Please deliver feedback to the newsgroup, so that others can be helped. No one gets paid to help here, and the response rate from those that are helped is less than 4-5%. If that were how medical advancements were made we would all have died years ago. Thanks.
"mwood" <mwood@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message news:3EBF2F02-3C6D-4496-BF22-A34285AC2B59@xxxxxxxxxxxxxxxx
Jim, thanks for the response.
I do have SP2 installed, as well as all the latest MS updates; I just double-checked and I'm completely up-to-date.
For some reason, Outlook Express appears to be paying no attention to
whether or not I have "Confirm Open after download" checked. I tried to
block zip, pdf, jpg's and even a file type I made up, but it did not block
the content; however, it does block .exe's so I know it is capable of
blocking some things. I've checked my settings in both OE and the file type
handling.
Moreover, I have OE set to operate in the restricted sites zone; I've tried
to lock this machine down as tightly as I can.
Any other ideas? The worm was executed, but it was run under a limited user account. I see no evidence that it did any harm, except that I'm bothered by the fact that I can't seem to block this kind of attachment in the future, whereas I know I used to be able to.
"Jim Pickering" wrote:
Might want to review this KB article about the attachment manager:
Description of how the Attachment Manager works in Windows XP Service Pack
2:
http://support.microsoft.com/?kbid=883260
If you do not have Service Pack 2 installed, you are running a severely
compromised system and would suggest you get it as soon as possible. Visit
the Windows Update page to check that you have all patches marked as
Critical installed.
--
Jim Pickering, MVP, Outlook Express
https://mvp.support.microsoft.com/profile=F9F51EF1-4AE3-4D23-B2D8-1171988A62D6
Please reply to newsgroup only.
"mwood" <mwood@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:2BA0308A-BAD3-46E0-B13B-E75C9CC7B199@xxxxxxxxxxxxxxxx
>I have a Windows XP machine that was recently hit with an apparent >variant
>of
> the WORM_BAGLE.BE virus. To guard against this type of attack, I am
> trying
> to enable the ability in Outlook Express to block unsafe attachments.
>
> However, for some reason I no longer can block zip files; in fact the
> system
> seems to be ignoring my settings.
>
> I have, in OE, selected the "do not allow attachments to be opened ..."
> setting, and then, in the file types, I've marked for the ZIP file type
> that
> it should "Confirm open after download". The combination of those two
> things
> should cause OE to not open such attachments, but it is cheerfully > letting
> them be opened anyway.
>
> Either I have overlooked something, or that worm somehow caused the > system
> to no longer respect these settings. As far as I can tell, the worm > was
> not
> able to install itself o/w; the user's account that was active when the
> worm
> was run was running with limited user privileges.
.
- References:
- worm/virus impact
- From: mwood
- Re: worm/virus impact
- From: Jim Pickering
- Re: worm/virus impact
- From: mwood
- worm/virus impact
- Prev by Date: Re: worm/virus impact
- Next by Date: Error msgs when trying to import Netscape Comm. 7.2 mail into OE 6
- Previous by thread: Re: worm/virus impact
- Next by thread: Re: worm/virus impact
- Index(es):
Relevant Pages
|
