Have today been receiving an onslaught of e-mails
purporting to be regarding a Microsoft Patch. Haven't
opened any. Also been getting others seemingly to be
concerning returned mail. Regret did open one
attachment!!!! Now can't access anything but my Web-based
e-mail. Get message when starting up, 'Memory access
violation....' and then when try to get into any
programmes get 'Windows cannot access the specified
device, path or file. You may not have the appropriate
permissions to access the item' Then sometimes get 'The
item you selected is unavailable. It might have been
moved, re-named or removed.' Oh Lord, What have I done
and how do I put it right! Please, please help.
A somewhat joyless
Joy

Microsoft NEVER sends file attachments with their email messages!

*** Microsoft did not issue a "Sept. 2003 Cumulative Patch"! ***

A devious sender is "spoofing" Microsoft and attempting to deceive you
into installing a malicious VIRUS in your computer! Delete the VIRUS
laden message immediately!

You have been unwittingly deceived into installing a malicious=20
VIRUS in your computer!

W32.Swen.A@mm is a mass-mailing worm that also attempts=20
to spread through file-sharing networks, such as KaZaA, and IRC,
and will attempt to kill antivirus and personal firewall programs
running on the computer.=20
=20
Ref: =
=
l


Please take a moment to read the following article:

Information on Bogus Microsoft Security Bulletin E-mails
http://www.microsoft.com/technet/treeview/default.asp?url=3D/technet/secu=
rity/news/patch_hoax.asp


--=20
Nicholas

------------------------------------------------------------------------

"Joy" > wrote in message:
...

| Have today been receiving an onslaught of e-mails=20
| purporting to be regarding a Microsoft Patch. Haven't=20
| opened any. Also been getting others seemingly to be=20
| concerning returned mail. Regret did open one=20
| attachment!!!! Now can't access anything but my Web-based=20
| e-mail. Get message when starting up, 'Memory access=20
| violation....' and then when try to get into any=20
| programmes get 'Windows cannot access the specified=20
| device, path or file. You may not have the appropriate=20
| permissions to access the item' Then sometimes get 'The=20
| item you selected is unavailable. It might have been=20
| moved, re-named or removed.' Oh Lord, What have I done=20
| and how do I put it right! Please, please help.
| A somewhat joyless
| Joy

Greetings --

For the flood of purported updates:

What you received is either a very common malicious hoax or the
output of a computer infected by one of several well-known,
wide-spread, mass emailing worms. The most widely-known are:

W32.Gibe_mm


W32.Dumaru_mm


W32.Swen.A_mm


Microsoft never has, does not currently, and never will email
unsolicited security patches. At the most, if, and only if, you
subscribe to their security notification newsletter, they will send
you an email informing you that a new patch is available for
downloading.

Microsoft Policies on Software Distribution
http://www.microsoft.com/technet/treeview/?url=/technet/security/policy/swdist.asp

Information on Bogus Microsoft Security Bulletin Emails
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/news/patch_hoax.asp

Any and all legitimate patches and updates are readily available
at http://windowsupdate.microsoft.com/. (Notice that this is the true
URL, rather than the bogus one that may have been contained in the
email you received.) Any messages that point to any other source(s) or
claim to have the patch attached are bogus.

For the allegedly returned undeliverables, this seems likely:

W32.Sobig.F


W32.Sobig.F_mm Removal Tool



Bruce Chambers

--
Help us help you:
http://dts-l.org/goodpost.htm
http://www.catb.org/~esr/faqs/smart-questions.html

You can have peace. Or you can have freedom. Don't ever count on
having both at once. -- RAH


"Joy" > wrote in message
...
> Have today been receiving an onslaught of e-mails
> purporting to be regarding a Microsoft Patch. Haven't
> opened any. Also been getting others seemingly to be
> concerning returned mail. Regret did open one
> attachment!!!! Now can't access anything but my Web-based
> e-mail. Get message when starting up, 'Memory access
> violation....' and then when try to get into any
> programmes get 'Windows cannot access the specified
> device, path or file. You may not have the appropriate
> permissions to access the item' Then sometimes get 'The
> item you selected is unavailable. It might have been
> moved, re-named or removed.' Oh Lord, What have I done
> and how do I put it right! Please, please help.
> A somewhat joyless
> Joy

Xref: kermit microsoft.public.windowsxp.newusers:96017

Now geting same from BT


>-----Original Message-----
>Greetings --
>
> For the flood of purported updates:
>
> What you received is either a very common malicious
hoax or the
>output of a computer infected by one of several well-
known,
>wide-spread, mass emailing worms. The most widely-known
are:
>
>W32.Gibe_mm
>http://securityresponse.symantec.com/avcenter/venc/data/w

>
>W32.Dumaru_mm
>http://securityresponse.symantec.com/avcenter/venc/data/w

>
>W32.Swen.A_mm
>http://securityresponse.symantec.com/avcenter/venc/data/w

>
> Microsoft never has, does not currently, and never
will email
>unsolicited security patches. At the most, if, and only
if, you
>subscribe to their security notification newsletter,
they will send
>you an email informing you that a new patch is available
for
>downloading.
>
>Microsoft Policies on Software Distribution
>http://www.microsoft.com/technet/treeview/?
url=/technet/security/policy/swdist.asp
>
>Information on Bogus Microsoft Security Bulletin Emails
>http://www.microsoft.com/technet/treeview/default.asp?
url=/technet/security/news/patch_hoax.asp
>
> Any and all legitimate patches and updates are
readily available
>at http://windowsupdate.microsoft.com/. (Notice that
this is the true
>URL, rather than the bogus one that may have been
contained in the
>email you received.) Any messages that point to any
other source(s) or
>claim to have the patch attached are bogus.
>
> For the allegedly returned undeliverables, this
seems likely:
>
>W32.Sobig.F
>http://www.symantec.com/avcenter/venc/data/w32.sobig.f@mm
..html
>
>W32.Sobig.F_mm Removal Tool
>http://www.symantec.com/avcenter/venc/data/w32.sobig.f@mm
..removal.tool.html
>
>
>Bruce Chambers
>
>--
>Help us help you:
>http://dts-l.org/goodpost.htm
>http://www.catb.org/~esr/faqs/smart-questions.html
>
>You can have peace. Or you can have freedom. Don't
ever count on
>having both at once. -- RAH
>
>
>"Joy" > wrote in message
...
>> Have today been receiving an onslaught of e-mails
>> purporting to be regarding a Microsoft Patch. Haven't
>> opened any. Also been getting others seemingly to be
>> concerning returned mail. Regret did open one
>> attachment!!!! Now can't access anything but my Web-
based
>> e-mail. Get message when starting up, 'Memory access
>> violation....' and then when try to get into any
>> programmes get 'Windows cannot access the specified
>> device, path or file. You may not have the appropriate
>> permissions to access the item' Then sometimes
get 'The
>> item you selected is unavailable. It might have been
>> moved, re-named or removed.' Oh Lord, What have I done
>> and how do I put it right! Please, please help.
>> A somewhat joyless
>> Joy
>
>
>.
>

"Bruce Chambers" wrote
>
> For the flood of purported updates:
>
> What you received is either a very common malicious hoax or the
> output of a computer infected by one of several well-known,
> wide-spread, mass emailing worms. The most widely-known are:
>
> W32.Gibe_mm
>
>
> W32.Dumaru_mm
>
>
> W32.Swen.A_mm
>

I found the following advice:-

SQ
Windows users who have not installed the Internet Explorer patch MS01-020
for the incorrect MIME header flaw should do so now to prevent automatic
infection from Swen.
EQ

How do I check my PC to ascertain whether I have installed this patch or
not?

Brian Tozer

Greetings --

Affected Software:

a.. Microsoft Internet Explorer 5.01
b.. Microsoft Internet Explorer 5.5
To verify that the patch has been installed on the machine, open
IE, select Help, then select About Internet Explorer and confirm that
Q290108 is listed in the Update Versions field.


Bruce Chambers

--
Help us help you:
http://dts-l.org/goodpost.htm
http://www.catb.org/~esr/faqs/smart-questions.html

You can have peace. Or you can have freedom. Don't ever count on
having both at once. -- RAH


"Brian Tozer" > wrote in message
...
> "Bruce Chambers" wrote
> >
> > For the flood of purported updates:
> >
> > What you received is either a very common malicious hoax or the
> > output of a computer infected by one of several well-known,
> > wide-spread, mass emailing worms. The most widely-known are:
> >
> > W32.Gibe_mm
> >

> >
> > W32.Dumaru_mm
> >

> >
> > W32.Swen.A_mm
> >

>
> I found the following advice:-
>
> SQ
> Windows users who have not installed the Internet Explorer patch
MS01-020
> for the incorrect MIME header flaw should do so now to prevent
automatic
> infection from Swen.
> EQ
>
> How do I check my PC to ascertain whether I have installed this
patch or
> not?
>
> Brian Tozer
>
>

Microsoft never sends unsolicited files by email.
DO NOT open the file--it is NOT from MS.
REPEAT:Microsoft NEVER sends unsolicited files by email.

It is a virus masquerading as MS security.
The most recent is W32/Swen@MM which can be removed with Stinger
http://vil.nai.com/vil/stinger/

The others circulating are dumaru.b

or a variant of the gibe worm.
Removal tool for gibe is at



--
Larry Samuels MS-MVP (Windows-Shell/User)
Associate Expert
Unofficial FAQ for Windows Server 2003 at
http://home.earthlink.net/~larrysamuels/WS2003FAQ.htm
Expert Zone - www.microsoft.com/windowsxp/expertzone

"Joy" > wrote in message
...
> Have today been receiving an onslaught of e-mails
> purporting to be regarding a Microsoft Patch. Haven't
> opened any. Also been getting others seemingly to be
> concerning returned mail. Regret did open one
> attachment!!!! Now can't access anything but my Web-based
> e-mail. Get message when starting up, 'Memory access
> violation....' and then when try to get into any
> programmes get 'Windows cannot access the specified
> device, path or file. You may not have the appropriate
> permissions to access the item' Then sometimes get 'The
> item you selected is unavailable. It might have been
> moved, re-named or removed.' Oh Lord, What have I done
> and how do I put it right! Please, please help.
> A somewhat joyless
> Joy