Microsoft KB Archive/243307

= OL2000: VBS.Freelink Virus in Message with Subject: "Check this. Have fun with these links. Bye" =

Article ID: 243307

Article Last Modified on 9/29/2003

-

APPLIES TO


 * Microsoft Outlook 2000 Standard Edition

-



This article was previously published under Q243307





SUMMARY
If you receive an e-mail message with:
 * The To box empty
 * The message includes an attachment
 * The Subject is, Check this. Have fun with these links. Bye.

You should delete it immediately without opening the attachment and immediately empty the Deleted Items folder.



MORE INFORMATION
The VBS.Freelink virus distributes itself as an e-mail attachment. The e-mail attachment must be opened for the virus to propagate. If a recipient opens the attachment and clicks Yes to create a desktop shortcut, the shortcut is created, and links to an adult Web site. If Outlook is running, the virus will search all address entries in all Outlook address books to create a list of recipients, who are BCCed on a generated message containing the virus attachment. It is important to note that the VBS.Freelink virus does not execute automatically and does not damage data.

This virus is a malicious use of Visual Basic Scripting Edition (VBScript). It is not an Outlook virus; any product that supports VBScript reacts similarly. The virus requires later versions of Microsoft Visual Basic programming language, which means Microsoft Windows 95 users are not affected.

Anti-virus companies have already posted updated software that detects and cleans this virus. For additional information on this and other security issues, click the link below:

http://www.microsoft.com/security

Additional query words: OL2K trojan horse worm macro

Keywords: kbinfo KB243307

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.