I received one today that has the title - "Spreadsheet on Search Engine Stats at Web Master World"

I have no idea where this came from, and it is trying to open this .pif file.

Click_watcher, pif files (program information file) are windows/program-specific files. Usually, they are setup files to enable a program to run effectively by allocating memory and resources specific to that program when run.

If I remember correctly, the pif files used to help DOS programs run in windows 3.1, although, it seems, they are still used.

I have no idea why someone would send you this without content, however, I would beware of the content, and, also, beware of the e-mail.

Be careful!

I received several files with a .pif extension or doc.pif extension: They had the Syrcam virus.

There was a bug in Macafee antivirus that didn't intercept the email containing the attachement file with that extension. double extension as:
doc.pif or
exe.pif

I was suspicios and I manually did a scansion: there was a Syrcam virus!! If you are using Macafee you should add the PIF extension in the optional extensions, no matter if you selected scan all files.

phew!!! thanks guys.

i investigated further and quickly updated my norton antivirus,

they all had a nice little virus...

for reference two had the attatchment doc.doc.pif

Odds on it's a virus... I have had a VERY hard day with it.

The W32.Badtrans.B@mm virus got through this morning on a blank email with a pif attachment. It zipped through my address book like nobody's business. I eventually cleaned it up... eventually.

The thing about it was that I didn't open it (not being totally stupid). The fact that it was visible unopened through the window of my Outlook Express box was enough. I think it opened itself by virtue of a foreign character in the window which tried to download the translater font. Off it went.

If you get a blank message with an attachment therefore... don't even highlight. Grab and delete.

Thanks again M$ for your great security.

sorry to hear that napoleon

>>>The W32.Badtrans.B@mm virus got through this morning

thats what was transported to me too.

all the best.

card.DOC.pif; info.DOC.scr; news_doc.DOC.scr etc. = W32.Badtrans.B@mm [symantec.com]

Arrived without any attachment indicator in Outlook! The attachment only became evident on preview or attempting to open the message with a request to save attachment to disk.

Seems like this one is going to run and run. Got two of the blighters in the inbox this morning.

Thanks to wmw members for bringing this to our attention.

thanks from me too...all workstations here now configured to scan .pif files

:)

I have noticed an increase in the amount of these received this week. Also, .scc files, which I delete immediately (or is that .ssc, I can't remember).

Also an increase in Sircam32 long after I thought it had died out.

I had never received any of them before this week. I think I have received at least 10 already.

Those extensions I mentioned to look out for are .scr

I have received another 3 between posting my original message, and this one.

I've received a few .pif files with my email, but they don't actually show up in my inbox... Not that it would be a threat to my system anyway. Mac is good. :)

>not that it would be a threat to my system

Itīs only(?) a threat to systems using MS outlook. Why are so many people still using it?

I *think* MS released patches to prevent the autoexecution of attachments. The question is, why are some people still using it *unpatched*?

I can't imagine installing an Outlook patch is much easier than installing Eudora (if there is an Outlook patch)... and you don't need to worry about patching Eudora in the future. People continue using Outlook for the same reason they don't install security patches, I think: Default Configuration Syndrome.

My boss has a nice little NT network here, and a very elaborate network security policy for everyone to follow... but he didn't know it was possible to change the default browser text size, and never considered using a non-MS email program (which would pretty well eliminate the security issues he's worried about).

A lot of people are only as computer literate as they absolutely need to be... there's no curiosity to go beyond the basics, and patching (or installing) software isn't really basic. We have our network support contractor come in to do all Windows software installations... my lonely little Mac is the only machine that's taken care of in-house, and only because I happen to know how.

I just recieved 8 of them within the last couple of hours. Every one of them different. This doesn't include the dozen or so I've already recieved today.

Just got another one...

I've been getting hit by this badtrans variant b virus too.

More details at:

symantec [symantec.com]

and:

nai.com [vil.nai.com]

About patching so it doesn't automatically execute:

ms.com [microsoft.com]

Unfortunately, I haven't found a way to filter it from my e-mail yet.