«

On Fri, 27 Jun 2003 22:17:46 +0100, °Mike° wrote:

>On Fri, 27 Jun 2003 14:42:00 -0500, in
> <>
> Mara scrawled:

<snip>
>>Thank you for bringing this matter to our attention.
>>
>>The Disciple code 0x29A.h-bqx-0x4.h has already been assigned to Wilfred the
>>Rabid Wolverine, the Abuse Admin at QoE Ltd., who promptly attempted to eat
>>same. We are pleased to report that we were able to distract him with a
>>freshly-caught spammer, however.
>>
>>Just make up a code and send it in. If the SupportDesk Admin (Bjorngin the
>>Highly Flatulent) likes it, it will be assigned to you. If not, Bjorngin will be
>>paying you a short visit. At that point, it is our suggestion that you leave
>>your home, perhaps even the country. Off-planet would probably be the best
>>option.
>>
>>Sincerely,
>>Flinderhnag the Unproven, SupportDesk Flunky #27
>>QoE Ltd.
>
>Dear SupportDesk Flunky #27,
>
>In typical support desk style, you have royally f$cked up; you
>have assigned *my* sig to another being. After seeking *real*
>help from a Uselessnet Newsgroop, it turns out the error I was
>experiencing was due to a mis-alignment of the two toads powering
>my CPU fan, which in turn resulted in my sig being transposed
>into Hexadecimal form. Hence, my sig was never borken in the
>first place. I demand an immediate refund of all posts from
>Wilfred the Rabid Wolverine, in addition to copious amounts of
>groveling from yourself - I will accept 637 truckloads of beer
>in lieu, should you be amenable to bribery.

You expect me to come up with a paltry 637 truckloads of beer and consider that
a decent bribe?!? Geez, what's the Evil business coming to, these days?

"I'll consider furnishing 749 truckloads, and not a gallon less."

>
>Sincerely,
>666-bqx-4

--
"No lusers were harmed in the creation of this usenet article.
AND I WANT TO KNOW WHY NOT!"
--glmar04 at twirl.mcc.ac.uk in a.s.r

On Fri, 27 Jun 2003 15:39:50 -0700, in
<bdih3o$smj1h$>
trout scrawled:

>°Mike° wrote:
>
>> On Fri, 27 Jun 2003 13:16:58 -0500, in
>> <9H%Ka.107$>
>> «{\/}ú[}ßð/\/è» scrawled:
>>
>>>
>>> "°Mike°" <> wrote in message
>>> news:...
>>>> On Fri, 27 Jun 2003 13:02:33 -0500, in
>>>> <Dx%Ka.1798$>
>>>> «{\/}ú[}ßð/\/è» scrawled:
>>>>
>>
>> <snip>
>>
>>>>> Mike you remember that website (I forget who posted)
>>>>> link that was posted here sometime back that launched a
>>>>> virus upon opening that page, well I opened said site page
>>>>> with notepad to see what was going on and sure the code was
>>>>> executed but it did nothing.
>>>>>
>>>>
>>>> I have no idea which web site you are talking about, but you
>>>> *cannot* launch a web site with notepad!
>>>>
>>>
>>> Not *launch* read what is there try it. While online open
>>> notepad, file, open and in the field that says filename clear
>>> it out and enter a site address into that field, (example:
>>> http://www.google.com) and see what it does. I *can't* believe
>>> *you* didn't know you could do this.
>>>
>>
>> I'm well aware that you can read the source of a web page, but
>> you said that you opened the site with notepad and the code was
>> executed - that's not possible.
>>
>> I would be interested to know which site you are talking about.
>
> I know it has nothing to do with viruses; but I'm guessing that he
>means "Area 51"s post:"Don't Blame Me".
>http://tinyurl.com/fgu3
>that contained
>
>*****newbie WARNING: DO *NOT* CLICK!!!*****
>http://www.catholicninjas.org/superfuntime

Oh yes, I might have known.

--
"Shame I don't get to snaffle a new virus."

On Fri, 27 Jun 2003 18:13:58 -0500, in
<>
Mara scrawled:

>On Fri, 27 Jun 2003 22:17:46 +0100, °Mike° wrote:
>
>>On Fri, 27 Jun 2003 14:42:00 -0500, in
>> <>
>> Mara scrawled:
>
><snip>
>>>Thank you for bringing this matter to our attention.
>>>
>>>The Disciple code 0x29A.h-bqx-0x4.h has already been assigned to Wilfred the
>>>Rabid Wolverine, the Abuse Admin at QoE Ltd., who promptly attempted to eat
>>>same. We are pleased to report that we were able to distract him with a
>>>freshly-caught spammer, however.
>>>
>>>Just make up a code and send it in. If the SupportDesk Admin (Bjorngin the
>>>Highly Flatulent) likes it, it will be assigned to you. If not, Bjorngin will be
>>>paying you a short visit. At that point, it is our suggestion that you leave
>>>your home, perhaps even the country. Off-planet would probably be the best
>>>option.
>>>
>>>Sincerely,
>>>Flinderhnag the Unproven, SupportDesk Flunky #27
>>>QoE Ltd.
>>
>>Dear SupportDesk Flunky #27,
>>
>>In typical support desk style, you have royally f$cked up; you
>>have assigned *my* sig to another being. After seeking *real*
>>help from a Uselessnet Newsgroop, it turns out the error I was
>>experiencing was due to a mis-alignment of the two toads powering
>>my CPU fan, which in turn resulted in my sig being transposed
>>into Hexadecimal form. Hence, my sig was never borken in the
>>first place. I demand an immediate refund of all posts from
>>Wilfred the Rabid Wolverine, in addition to copious amounts of
>>groveling from yourself - I will accept 637 truckloads of beer
>>in lieu, should you be amenable to bribery.
>
>You expect me to come up with a paltry 637 truckloads of beer and
>consider that a decent bribe?!? Geez, what's the Evil business
>coming to, these days?
>
>"I'll consider furnishing 749 truckloads, and not a gallon less."

Oh, alright then.

--
"But I don't know where I'm going to store the extras!"

°Mike° wrote:
> On Fri, 27 Jun 2003 13:16:58 -0500, in
> <9H%Ka.107$>
> «{\/}ú[}ßð/\/è» scrawled:
>
>>
>> "°Mike°" <> wrote in message
>> news:...
>>> On Fri, 27 Jun 2003 13:02:33 -0500, in
>>> <Dx%Ka.1798$>
>>> «{\/}ú[}ßð/\/è» scrawled:
>>>
>
> <snip>
>
>>>> Mike you remember that website (I forget who posted)
>>>> link that was posted here sometime back that launched a
>>>> virus upon opening that page, well I opened said site page
>>>> with notepad to see what was going on and sure the code was
>>>> executed but it did nothing.
>>>>
>>>
>>> I have no idea which web site you are talking about, but you
>>> *cannot* launch a web site with notepad!
>>>
>>
>> Not *launch* read what is there try it. While online open
>> notepad, file, open and in the field that says filename clear
>> it out and enter a site address into that field, (example:
>> http://www.google.com) and see what it does. I *can't* believe
>> *you* didn't know you could do this.
>>
>
> I'm well aware that you can read the source of a web page, but
> you said that you opened the site with notepad and the code was
> executed - that's not possible.
>
> I would be interested to know which site you are talking about.


I *think* Slumpy had inadvertently posted that link, it was quite some
time back, I *may* still have it somewhere, but yes it *still* got
launched(?) my AV caught it as I viewed it with notepad.
--
"It's impossible to make anything foolproof because fools are so
ingenious." ...Murphy's Law

Some people are alive simply because, it's against the law to kill them.

trout wrote:
> °Mike° wrote:
>
>> On Fri, 27 Jun 2003 13:16:58 -0500, in
>> <9H%Ka.107$>
>> «{\/}ú[}ßð/\/è» scrawled:
>>
>>>
>>> "°Mike°" <> wrote in message
>>> news:...
>>>> On Fri, 27 Jun 2003 13:02:33 -0500, in
>>>> <Dx%Ka.1798$>
>>>> «{\/}ú[}ßð/\/è» scrawled:
>>>>
>>
>> <snip>
>>
>>>>> Mike you remember that website (I forget who posted)
>>>>> link that was posted here sometime back that launched a
>>>>> virus upon opening that page, well I opened said site page
>>>>> with notepad to see what was going on and sure the code was
>>>>> executed but it did nothing.
>>>>>
>>>>
>>>> I have no idea which web site you are talking about, but you
>>>> *cannot* launch a web site with notepad!
>>>>
>>>
>>> Not *launch* read what is there try it. While online open
>>> notepad, file, open and in the field that says filename clear
>>> it out and enter a site address into that field, (example:
>>> http://www.google.com) and see what it does. I *can't* believe
>>> *you* didn't know you could do this.
>>>
>>
>> I'm well aware that you can read the source of a web page, but
>> you said that you opened the site with notepad and the code was
>> executed - that's not possible.
>>
>> I would be interested to know which site you are talking about.
>
> I know it has nothing to do with viruses; but I'm guessing that he
> means "Area 51"s post:"Don't Blame Me".
> http://tinyurl.com/fgu3
> that contained
>
> *****newbie WARNING: DO *NOT* CLICK!!!*****
> http://www.catholicninjas.org/superfuntime


No it *wasn't* that, this happend quite some time back.
--
"It's impossible to make anything foolproof because fools are so
ingenious." ...Murphy's Law

Some people are alive simply because, it's against the law to kill them.

On Sat, 28 Jun 2003 14:54:06 -0500, in
<_dmLa.7496$>
MudBone scrawled:

>°Mike° wrote:
>> On Fri, 27 Jun 2003 13:16:58 -0500, in
>> <9H%Ka.107$>
>> «{\/}ú[}ßð/\/è» scrawled:
>>
>>>
>>> "°Mike°" <> wrote in message
>>> news:...
>>>> On Fri, 27 Jun 2003 13:02:33 -0500, in
>>>> <Dx%Ka.1798$>
>>>> «{\/}ú[}ßð/\/è» scrawled:
>>>>
>>
>> <snip>
>>
>>>>> Mike you remember that website (I forget who posted)
>>>>> link that was posted here sometime back that launched a
>>>>> virus upon opening that page, well I opened said site page
>>>>> with notepad to see what was going on and sure the code was
>>>>> executed but it did nothing.
>>>>>
>>>>
>>>> I have no idea which web site you are talking about, but you
>>>> *cannot* launch a web site with notepad!
>>>>
>>>
>>> Not *launch* read what is there try it. While online open
>>> notepad, file, open and in the field that says filename clear
>>> it out and enter a site address into that field, (example:
>>> http://www.google.com) and see what it does. I *can't* believe
>>> *you* didn't know you could do this.
>>>
>>
>> I'm well aware that you can read the source of a web page, but
>> you said that you opened the site with notepad and the code was
>> executed - that's not possible.
>>
>> I would be interested to know which site you are talking about.
>
>
> I *think* Slumpy had inadvertently posted that link, it was quite some
>time back, I *may* still have it somewhere, but yes it *still* got
>launched(?) my AV caught it as I viewed it with notepad.

I think I remember the page now. Still, the virus did not get
launched by viewing the source in notepad, no matter what you
say. Your antivirus simply reported it because it was opened.
Similarly, if I open a zip file with a virus inside, and extract
that file to the desktop, my AV will alert me, but the virus is
NOT executed.

--
STGP, OGPE24HSHD

"So, Mr Slumpy you *really* are the perpetual comedian, aren't you ?" I
threw back my head and roared with laughter as MudBone continued:

> °Mike° wrote:
>> On Fri, 27 Jun 2003 13:16:58 -0500, in
>> <9H%Ka.107$>
>> «{\/}ú[}ßð/\/è» scrawled:
>>
>>>
>>> "°Mike°" <> wrote in message
>>> news:...
>>>> On Fri, 27 Jun 2003 13:02:33 -0500, in
>>>> <Dx%Ka.1798$>
>>>> «{\/}ú[}ßð/\/è» scrawled:
>>>>
>>
>> <snip>
>>
>>>>> Mike you remember that website (I forget who posted)
>>>>> link that was posted here sometime back that launched a
>>>>> virus upon opening that page, well I opened said site page
>>>>> with notepad to see what was going on and sure the code was
>>>>> executed but it did nothing.
>>>>>
>>>>
>>>> I have no idea which web site you are talking about, but you
>>>> *cannot* launch a web site with notepad!
>>>>
>>>
>>> Not *launch* read what is there try it. While online open
>>> notepad, file, open and in the field that says filename clear
>>> it out and enter a site address into that field, (example:
>>> http://www.google.com) and see what it does. I *can't* believe
>>> *you* didn't know you could do this.
>>>
>>
>> I'm well aware that you can read the source of a web page, but
>> you said that you opened the site with notepad and the code was
>> executed - that's not possible.
>>
>> I would be interested to know which site you are talking about.
>
>
> I *think* Slumpy had inadvertently posted that link, it was quite
> some time back, I *may* still have it somewhere, but yes it *still*
> got launched(?) my AV caught it as I viewed it with notepad.

That was the Nigerian Banking scam page, which I got scorched severly for

--
slumpy
no more
no less
just slumpy

MudBone wrote:
>
> I *think* Slumpy had inadvertently posted that link, it was quite some
> time back, I *may* still have it somewhere, but yes it *still* got
> launched(?) my AV caught it as I viewed it with notepad.

Notepad does not "launch" code. I have used it numerous time to inspect
virus code and it cannot execute it. It is simply a text editor.

--
Artemis

On Thu, 26 Jun 2003 16:15:00 -0400, "Smiley" <>
wrote:

>> In a word, NO. The link you clicked to download the file may have SAID
>it
>> was an avi file, but the file you downloaded had some other extension like
>> .com, .exe, .bat, .scr, .zip, .doc. etc.
>> One trick I've seen used is to use a very long filename and have the true
>> extension at the end. For example: (I'll put it in quotes so you can
>see
>> the actual end)
>> "Matrex.avi .exe"
>
>No, that doesn't seem to be the case. I use WinMX, and it actually filters
>the files by their extensions - I'm pretty sure they would have set it so
>that the program would only read the last 3 characters for the filter, if
>not that's pretty sloppy. But I checked it out just to be on the safe side,
>and there are no extra spaces and .exe at the end.
>
Most likely it was an exe renamed to avi. Try it with eicar and
you'll get a virus warning.

You can get eicar at www.eicar.org

ShadyJ
Remove yourunderware to reply.

°Mike° wrote:
> On Sat, 28 Jun 2003 14:54:06 -0500, in
> <_dmLa.7496$>
> MudBone scrawled:
>
>> °Mike° wrote:
>>> On Fri, 27 Jun 2003 13:16:58 -0500, in
>>> <9H%Ka.107$>
>>> «{\/}ú[}ßð/\/è» scrawled:
>>>
>>>>
>>>> "°Mike°" <> wrote in message
>>>> news:...
>>>>> On Fri, 27 Jun 2003 13:02:33 -0500, in
>>>>> <Dx%Ka.1798$>
>>>>> «{\/}ú[}ßð/\/è» scrawled:
>>>>>
>>>
>>> <snip>
>>>
>>>>>> Mike you remember that website (I forget who posted)
>>>>>> link that was posted here sometime back that launched a
>>>>>> virus upon opening that page, well I opened said site page
>>>>>> with notepad to see what was going on and sure the code was
>>>>>> executed but it did nothing.
>>>>>>
>>>>>
>>>>> I have no idea which web site you are talking about, but you
>>>>> *cannot* launch a web site with notepad!
>>>>>
>>>>
>>>> Not *launch* read what is there try it. While online open
>>>> notepad, file, open and in the field that says filename clear
>>>> it out and enter a site address into that field, (example:
>>>> http://www.google.com) and see what it does. I *can't* believe
>>>> *you* didn't know you could do this.
>>>>
>>>
>>> I'm well aware that you can read the source of a web page, but
>>> you said that you opened the site with notepad and the code was
>>> executed - that's not possible.
>>>
>>> I would be interested to know which site you are talking about.
>>
>>
>> I *think* Slumpy had inadvertently posted that link, it was quite
>> some time back, I *may* still have it somewhere, but yes it *still*
>> got launched(?) my AV caught it as I viewed it with notepad.
>
> I think I remember the page now. Still, the virus did not get
> launched by viewing the source in notepad, no matter what you
> say. Your antivirus simply reported it because it was opened.
> Similarly, if I open a zip file with a virus inside, and extract
> that file to the desktop, my AV will alert me, but the virus is
> NOT executed.

You are misunderstanding me, I agree with you it's *not* being executed
my bad terminology (I consider *anything* I open as being executed. )
But the AV is seeing it as still a threat. Sorry.