How sobig works??
Results 1 to 6 of 6

Thread: How sobig works??

  1. #1
    Junior Member
    Join Date
    Apr 2003
    Posts
    24

    Question How sobig works??

    I recently got a bulk of sobig into my yahoo accounts. The from addresses seemed to be known by me. Infact they were of my college friends. Now when I read about the worm on symantec they said it was a mass mailing worm and used the cookies stored on the pc and uses smtp. But we have norton installed on all pcs so all outgoing smtp mails are scanned but i have never noticed any one from this virus..
    So if any one knows how this worm works exactly please let me know....
    Be Cool

  2. #2
    Senior Member tampabay420's Avatar
    Join Date
    Aug 2002
    Posts
    953
    What is it?
    W32.Sobig.F@mm is a mass-mailing, network-aware worm that sends itself to all the email addresses it finds. The worm uses its own SMTP engine to propagate from Spoofed address (which means that the sender in the "From" field is most likely not the real sender). The worm may also use the address admin@internet.com as the sender.
    this should clear things up. the fact that it uses it's own smtp server, could be why it got around yours as far as your antivirues software, it should have detected/cleaned it if properly updated...
    yeah, I\'m gonna need that by friday...

  3. #3
    Super Moderator: GMT Zone nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,192
    Hi, like tampabay420 said, your AV should have spotted this if it was updated and activated to scan e-mails. It may miss ones that dont use your official SMTP engine?

    Might I suggest Mail Control by Yariv kaplan http://www.internals.com

    This acts like an e-mail "firewall" and should pick up malware that uses its own SMTP engine.

    Cheers

    BTW it is free for private use
    If you cannot do someone any good: don't do them any harm....
    As long as you did this to one of these, the least of my little ones............you did it unto Me.
    What profiteth a man if he gains the entire World at the expense of his immortal soul?

  4. #4
    Junior Member
    Join Date
    Apr 2003
    Posts
    24

    Thanks

    Thanks for your help guys....
    Be Cool

  5. #5
    Member
    Join Date
    Dec 2003
    Posts
    52
    Wasn't the sobig virus the virus that sent lots of pointless mail to people as well as duplicates of itself? Or was that another virus,

    forgive my ignorant way's

  6. #6
    Junior Member
    Join Date
    Jan 2003
    Posts
    18
    hi. if you want to know the technical details of 'Sobig' virus/worm, visit www.trendmicro.com or www.symantec.com. use their search engine and it will give you a technical description of the virus: how it works and how to remove the virus.
    Turn on. Tune in. Drop out.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

 Security News

     Patches

       Security Trends

         How-To

           Buying Guides