Visit the following Symantec site for some useful info;
http://securityresponse.symantec.com/avcenter/venc/data/false.nimda.aris.email.message.html
--
Sir_George
For better access to newsgroups;
http://www.microsoft.com/windowsxp/pro/using/newsgroups/setup.asp
"yankele" <yankel...@hotmail.com> wrote in message
news:02a301c39a6a$92155bb0$a401...@phx.gbl...
Many thanks for the info. Hey, YoKenney, I DID do searches for
win32cfg in both Google and Symantec and came up with nothing useful.
However, after disabling the virus, I ran the searches again and this
time the searches were fruitful. I suspect that the virus may also
block web searches for it. I also noticed that the keyboard.* files
mentioned by Symantec as being apart of the trojan were absent from my
computer--a little strange. Furthermore, I am virtually certain that I
did not run this trojan myself. I do NOT open unidentified e-mail
attachments. And finally, I did an AVG scan of the win32cfg file using
the latest updates both before and after disabling the virus and both
times the result was negative! Hmmm...
You can submit the file to AVERT Labs for analysis at http://www.webimmune.net
or you can send it to me attached to an email. If it is identified as
being a threat, you will receieve an automated email in return.
--
AZC
MVP
---
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.530 / Virus Database: 325 - Release Date: 22/10/2003
Darn! I tried to do just that by offering to send the file to AVG but
I received an automated response saying that support was provided only
to regitered users. So I just deleted the file. tried to recover it,
but too late--it's been quite a while now. Thanks anyway.