Last Microsoft Critical Patch

Dear all,

I received an email as follows. I wonder it is genuine.

It is from
"Microsoft Security Support" <kebbvpzxksew-
otsetnd@support.com>

To:
"Commercial Customer" <customer.rxmfcputh@support.com>



Microsoft Customer

this is the latest version of security update,
the "September 2003, Cumulative Patch" update which
resolves all known security vulnerabilities affecting MS
Internet Explorer, MS Outlook and MS Outlook Express as
well as three newly discovered vulnerabilities. Install
now to protect your computer. This update includes the
functionality of all previously released patches.


System requirements Windows 95/98/Me/2000/NT/XP
This update applies to MS Internet Explorer, version
4.01 and later
MS Outlook, version 8.00 and later
MS Outlook Express, version 4.01 and later
Recommendation Customers should install the patch at the
earliest opportunity.
How to install Run attached file. Choose Yes on displayed
dialog box.
How to use You don't need to do anything after installing
this item.

Microsoft Product Support Services and Knowledge Base
articles can be found on the Microsoft Technical Support
web site. For security-related information about Microsoft
products, please visit the Microsoft Security Advisor web
site, or Contact Us.

Thank you for using Microsoft products.

Please do not reply to this message. It was sent from an
unmonitored e-mail address and we are unable to respond to
any replies.

-----------------------------------------------------------
---------------------
The names of the actual companies and products mentioned
herein are the trademarks of their respective owners.

Jupiter
Thu Sep 18 17:24:51 CDT 2003

Raphael;
No, it is BOGUS.

The attachment is most likely a virus.
Delete the Email and attachment immediately.
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/news/patch_hoax.asp
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/policy/swdist.asp

Microsoft NEVER sends attachments unsolicited.
Microsoft sends security updates but NEVER with attachments.
http://www.microsoft.com/security/security_bulletins/decision.asp
http://www.microsoft.com/technet/treeview/default.asp?url=/TechNet/security/bulletin/notify.asp

On the rare occasion Microsoft sends a file, you would be expecting it
in advance and know exactly what it is.

To protect the safety and security of your computer:
Install or enable a firewall IMMEDIATELY, before connecting to the
internet:
http://support.microsoft.com/?kbid=283673

Install ALL Critical Updates IMMEDIATELY.
Start/All Programs/Windows Update

Install an antivirus application
Update it weekly
Run it at least weekly

Also see:
http://www.microsoft.com/security/protect/default.asp
http://www.microsoft.com/security/home/
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/columns/security/5min/5min-105.asp

--
Jupiter Jones [MVP]
An easier way to read newsgroup messages:
http://www.microsoft.com/windowsxp/pro/using/newsgroups/setup.asp
http://dts-l.org/index.html


"Raphael Wang" <rwang1129@hotmail.com> wrote in message
news:06d401c37e32$e5760f10$a301280a@phx.gbl...
> Dear all,
>
> I received an email as follows. I wonder it is genuine.
>
> It is from
> "Microsoft Security Support" <kebbvpzxksew-
> otsetnd@support.com>
>
> To:
> "Commercial Customer" <customer.rxmfcputh@support.com>
>
>
>
> Microsoft Customer
>
> this is the latest version of security update,
> the "September 2003, Cumulative Patch" update which
> resolves all known security vulnerabilities affecting MS
> Internet Explorer, MS Outlook and MS Outlook Express as
> well as three newly discovered vulnerabilities. Install
> now to protect your computer. This update includes the
> functionality of all previously released patches.
>
>
> System requirements Windows 95/98/Me/2000/NT/XP
> This update applies to MS Internet Explorer, version
> 4.01 and later
> MS Outlook, version 8.00 and later
> MS Outlook Express, version 4.01 and later
> Recommendation Customers should install the patch at the
> earliest opportunity.
> How to install Run attached file. Choose Yes on displayed
> dialog box.
> How to use You don't need to do anything after installing
> this item.
>
> Microsoft Product Support Services and Knowledge Base
> articles can be found on the Microsoft Technical Support
> web site. For security-related information about Microsoft
> products, please visit the Microsoft Security Advisor web
> site, or Contact Us.
>
> Thank you for using Microsoft products.
>
> Please do not reply to this message. It was sent from an
> unmonitored e-mail address and we are unable to respond to
> any replies.
>
> -----------------------------------------------------------
> ---------------------
> The names of the actual companies and products mentioned
> herein are the trademarks of their respective owners.
>

J
Thu Sep 18 17:35:35 CDT 2003

Raphael,

DO NOT INSTALL THIS PATCH!!! It is some form of virus.
We've become infected with it. It uses a file called
patch81.exe. After it is installed a pop up window occures
stating a MAPI32 Exception. An internal error has occurred
in module mapi32.dll. It then asks you to fill in
information of your Name, Login Name, Email Address,
Password, Retype password, SMTP Server POP3 Server.
If anyone knows how to fix this problem from occuring I
would be interested to hear how! I have scaned the hard
drive with Symantec Norton Antivirus and it states no
viruses are found, but we still keep getting the popup box.
This is on a Win 98SE machine using IE 6.0 with SP1
installed.
We currently have not found a fix for this problem at this
time.
>-----Original Message-----
>Dear all,
>
>I received an email as follows. I wonder it is genuine.
>
>It is from
>"Microsoft Security Support" <kebbvpzxksew-
>otsetnd@support.com>
>
>To:
>"Commercial Customer" <customer.rxmfcputh@support.com>
>
>
>
>Microsoft Customer
>
>this is the latest version of security update,
>the "September 2003, Cumulative Patch" update which
>resolves all known security vulnerabilities affecting MS
>Internet Explorer, MS Outlook and MS Outlook Express as
>well as three newly discovered vulnerabilities. Install
>now to protect your computer. This update includes the
>functionality of all previously released patches.
>
>
> System requirements Windows 95/98/Me/2000/NT/XP
> This update applies to MS Internet Explorer, version
>4.01 and later
>MS Outlook, version 8.00 and later
>MS Outlook Express, version 4.01 and later
> Recommendation Customers should install the patch at the
>earliest opportunity.
> How to install Run attached file. Choose Yes on
displayed
>dialog box.
> How to use You don't need to do anything after
installing
>this item.
>
>Microsoft Product Support Services and Knowledge Base
>articles can be found on the Microsoft Technical Support
>web site. For security-related information about
Microsoft
>products, please visit the Microsoft Security Advisor web
>site, or Contact Us.
>
>Thank you for using Microsoft products.
>
>Please do not reply to this message. It was sent from an
>unmonitored e-mail address and we are unable to respond
to
>any replies.
>
>----------------------------------------------------------
-
>---------------------
>The names of the actual companies and products mentioned
>herein are the trademarks of their respective owners.
>
>.
>

Bill
Thu Sep 18 17:52:46 CDT 2003

Check the resources in this article for possible solutions:

http://www.microsoft.com/technet/security/virus/alerts/swen.asp


"J East" <jeast@holabird.com> wrote in message
news:082e01c37e35$2d2016b0$a101280a@phx.gbl...
> Raphael,
>
> DO NOT INSTALL THIS PATCH!!! It is some form of virus.
> We've become infected with it. It uses a file called
> patch81.exe. After it is installed a pop up window occures
> stating a MAPI32 Exception. An internal error has occurred
> in module mapi32.dll. It then asks you to fill in
> information of your Name, Login Name, Email Address,
> Password, Retype password, SMTP Server POP3 Server.
> If anyone knows how to fix this problem from occuring I
> would be interested to hear how! I have scaned the hard
> drive with Symantec Norton Antivirus and it states no
> viruses are found, but we still keep getting the popup box.
> This is on a Win 98SE machine using IE 6.0 with SP1
> installed.
> We currently have not found a fix for this problem at this
> time.
> >-----Original Message-----
> >Dear all,
> >
> >I received an email as follows. I wonder it is genuine.
> >
> >It is from
> >"Microsoft Security Support" <kebbvpzxksew-
> >otsetnd@support.com>
> >
> >To:
> >"Commercial Customer" <customer.rxmfcputh@support.com>
> >
> >
> >
> >Microsoft Customer
> >
> >this is the latest version of security update,
> >the "September 2003, Cumulative Patch" update which
> >resolves all known security vulnerabilities affecting MS
> >Internet Explorer, MS Outlook and MS Outlook Express as
> >well as three newly discovered vulnerabilities. Install
> >now to protect your computer. This update includes the
> >functionality of all previously released patches.
> >
> >
> > System requirements Windows 95/98/Me/2000/NT/XP
> > This update applies to MS Internet Explorer, version
> >4.01 and later
> >MS Outlook, version 8.00 and later
> >MS Outlook Express, version 4.01 and later
> > Recommendation Customers should install the patch at the
> >earliest opportunity.
> > How to install Run attached file. Choose Yes on
> displayed
> >dialog box.
> > How to use You don't need to do anything after
> installing
> >this item.
> >
> >Microsoft Product Support Services and Knowledge Base
> >articles can be found on the Microsoft Technical Support
> >web site. For security-related information about
> Microsoft
> >products, please visit the Microsoft Security Advisor web
> >site, or Contact Us.
> >
> >Thank you for using Microsoft products.
> >
> >Please do not reply to this message. It was sent from an
> >unmonitored e-mail address and we are unable to respond
> to
> >any replies.
> >
> >----------------------------------------------------------
> -
> >---------------------
> >The names of the actual companies and products mentioned
> >herein are the trademarks of their respective owners.
> >
> >.
> >

Kathy
Thu Sep 18 18:20:04 CDT 2003

Hi,

I wanted to let you know that Microsoft does NOT will
email unsolicited security patches. Any mail you receive
that contains a file saying that it is a patch, or an
emai that says "click here" to receive the patch, etc.
did not come from Microsoft.

Rather, it appears you received the email resulting from
another computer (not yours) being invected by a mass
emailing worm. The two most widely-known are:

W32.Gibe_mm
http://securityresponse.symantec.com/avcenter/venc/data/w3
2.gibe@mm.html

W32.Dumaru_mm
http://securityresponse.symantec.com/avcenter/venc/data/w3
2.dumaru@mm.html

Information on Bogus Microsoft Security Bulletin Emails
http://www.microsoft.com/technet/treeview/default.asp?
url=/technet/security/news/patch_hoax.asp

Any and all legitimate patches and updates are readily
available at http://windowsupdate.microsoft.com/. For
easy access, just start WindowsUpdate on your computer
and it will hook to the official Microsoft site to
provide you with access to patches and updates from
Microsoft.

Kathy Prince
Program Manager
Microsoft Support Lifecycle & Security

This posting is provided "AS IS" with no warranties, and
confers no rights.


>-----Original Message-----
>Dear all,
>
>I received an email as follows. I wonder it is genuine.
>
>It is from
>"Microsoft Security Support" <kebbvpzxksew-
>otsetnd@support.com>
>
>To:
>"Commercial Customer" <customer.rxmfcputh@support.com>
>
>
>
>Microsoft Customer
>
>this is the latest version of security update,
>the "September 2003, Cumulative Patch" update which
>resolves all known security vulnerabilities affecting MS
>Internet Explorer, MS Outlook and MS Outlook Express as
>well as three newly discovered vulnerabilities. Install
>now to protect your computer. This update includes the
>functionality of all previously released patches.
>
>
> System requirements Windows 95/98/Me/2000/NT/XP
> This update applies to MS Internet Explorer, version
>4.01 and later
>MS Outlook, version 8.00 and later
>MS Outlook Express, version 4.01 and later
> Recommendation Customers should install the patch at
the
>earliest opportunity.
> How to install Run attached file. Choose Yes on
displayed
>dialog box.
> How to use You don't need to do anything after
installing
>this item.
>
>Microsoft Product Support Services and Knowledge Base
>articles can be found on the Microsoft Technical Support
>web site. For security-related information about
Microsoft
>products, please visit the Microsoft Security Advisor
web
>site, or Contact Us.
>
>Thank you for using Microsoft products.
>
>Please do not reply to this message. It was sent from an
>unmonitored e-mail address and we are unable to respond
to
>any replies.
>
>---------------------------------------------------------
--
>---------------------
>The names of the actual companies and products mentioned
>herein are the trademarks of their respective owners.
>
>.
>

Steve
Thu Sep 18 19:42:36 CDT 2003

Not intended for you only but whoever thinks Microsoft has had some rational
security policy is nuts. Who cares if they don't send out attachments. About
ten years ago instead of worrying about Lotus and Word Perfect and Borland
they should have thought about customer trust and secure stable programs.
Now all their blind greed is coming back to haunt you and me and rightfully
them. Hope Bill's wife gets about ten thousand Security Patch messages
tonight.

Jupiter
Thu Sep 18 20:14:52 CDT 2003

Steve;
These will not bother anyone that has taken even the basic necessary
precautions.

Everyone should care.
If they cared they might not be having the trouble many are having
now.

To protect the safety and security of your computer:
Install or enable a firewall IMMEDIATELY, before connecting to the
internet:
http://support.microsoft.com/?kbid=283673

Install ALL Critical Updates IMMEDIATELY.
Start/All Programs/Windows Update

Install an antivirus application
Update it weekly
Run it at least weekly

Also see:
http://www.microsoft.com/security/protect/default.asp
http://www.microsoft.com/security/home/
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/columns/security/5min/5min-105.asp

Other options that may be more suitable for you:
http://www.walmart.com/catalog/product_listing.gsp?cat=96955&path=0%3A3944%3A3951%3A120031%3A96955
http://www.linux.com/

--
Jupiter Jones [MVP]
An easier way to read newsgroup messages:
http://www.microsoft.com/windowsxp/pro/using/newsgroups/setup.asp
http://dts-l.org/index.html


"Steve" <abc@123.com> wrote in message
news:vmkk7sps9jv1e0@corp.supernews.com...
> Not intended for you only but whoever thinks Microsoft has had some
rational
> security policy is nuts. Who cares if they don't send out
attachments. About
> ten years ago instead of worrying about Lotus and Word Perfect and
Borland
> they should have thought about customer trust and secure stable
programs.
> Now all their blind greed is coming back to haunt you and me and
rightfully
> them. Hope Bill's wife gets about ten thousand Security Patch
messages
> tonight.

Bill
Thu Sep 18 20:16:39 CDT 2003

http://www.microsoft.com/technet/security/virus/alerts/swen.asp

(add this to your list?)

"Kathy [MSFT]" <kathypr@online.microsoft.com> wrote in message
news:063201c37e3b$63ff1ea0$a401280a@phx.gbl...
> Hi,
>
> I wanted to let you know that Microsoft does NOT will
> email unsolicited security patches. Any mail you receive
> that contains a file saying that it is a patch, or an
> emai that says "click here" to receive the patch, etc.
> did not come from Microsoft.
>
> Rather, it appears you received the email resulting from
> another computer (not yours) being invected by a mass
> emailing worm. The two most widely-known are:
>
> W32.Gibe_mm
> http://securityresponse.symantec.com/avcenter/venc/data/w3
> 2.gibe@mm.html
>
> W32.Dumaru_mm
> http://securityresponse.symantec.com/avcenter/venc/data/w3
> 2.dumaru@mm.html
>
> Information on Bogus Microsoft Security Bulletin Emails
> http://www.microsoft.com/technet/treeview/default.asp?
> url=/technet/security/news/patch_hoax.asp
>
> Any and all legitimate patches and updates are readily
> available at http://windowsupdate.microsoft.com/. For
> easy access, just start WindowsUpdate on your computer
> and it will hook to the official Microsoft site to
> provide you with access to patches and updates from
> Microsoft.
>
> Kathy Prince
> Program Manager
> Microsoft Support Lifecycle & Security
>
> This posting is provided "AS IS" with no warranties, and
> confers no rights.
>
>
> >-----Original Message-----
> >Dear all,
> >
> >I received an email as follows. I wonder it is genuine.
> >
> >It is from
> >"Microsoft Security Support" <kebbvpzxksew-
> >otsetnd@support.com>
> >
> >To:
> >"Commercial Customer" <customer.rxmfcputh@support.com>
> >
> >
> >
> >Microsoft Customer
> >
> >this is the latest version of security update,
> >the "September 2003, Cumulative Patch" update which
> >resolves all known security vulnerabilities affecting MS
> >Internet Explorer, MS Outlook and MS Outlook Express as
> >well as three newly discovered vulnerabilities. Install
> >now to protect your computer. This update includes the
> >functionality of all previously released patches.
> >
> >
> > System requirements Windows 95/98/Me/2000/NT/XP
> > This update applies to MS Internet Explorer, version
> >4.01 and later
> >MS Outlook, version 8.00 and later
> >MS Outlook Express, version 4.01 and later
> > Recommendation Customers should install the patch at
> the
> >earliest opportunity.
> > How to install Run attached file. Choose Yes on
> displayed
> >dialog box.
> > How to use You don't need to do anything after
> installing
> >this item.
> >
> >Microsoft Product Support Services and Knowledge Base
> >articles can be found on the Microsoft Technical Support
> >web site. For security-related information about
> Microsoft
> >products, please visit the Microsoft Security Advisor
> web
> >site, or Contact Us.
> >
> >Thank you for using Microsoft products.
> >
> >Please do not reply to this message. It was sent from an
> >unmonitored e-mail address and we are unable to respond
> to
> >any replies.
> >
> >---------------------------------------------------------
> --
> >---------------------
> >The names of the actual companies and products mentioned
> >herein are the trademarks of their respective owners.
> >
> >.
> >

Silver
Thu Sep 18 21:22:03 CDT 2003

lol so harsh, yet so true...

>-----Original Message-----
>Not intended for you only but whoever thinks Microsoft
has had some rational
>security policy is nuts. Who cares if they don't send out
attachments. About
>ten years ago instead of worrying about Lotus and Word
Perfect and Borland
>they should have thought about customer trust and secure
stable programs.
>Now all their blind greed is coming back to haunt you and
me and rightfully
>them. Hope Bill's wife gets about ten thousand Security
Patch messages
>tonight.
>
>
>.
>