email virus

Discussion in 'Networking and Security' started by nkhoi, Mar 8, 2004.

  1. nkhoi


    first time ever that I get tricked into click open an attatchment, luckily my pc-cillin get to the virus first, email as follow;

    From: Save Address | Headers
    To : <>
    CC :
    Date : Tue, 09 Mar 2004 01:25:24 +0000
    Subject : [Boomspeed] Warning about your e-mail account.

    Dear user of gateway e-mail server,

    Your e-mail account will be disabled because of improper using in next
    three days, if you are still wishing to use it, please, resign your
    account information.

    For details see the attach.

    In order to read the attach you have to use the following password: 25320.

    Have a good day,
    The team

    _______warn.txt (Binary attachment)

    what I see when I click on attatchment;

    RAV AntiVirus has deleted this file
    because it contained dangerous code!

  2. Diode


    Yes, someone is getting clever. I got this one (below), and a friend got one targeted specifically for Lycos users. I'm sure that quite a few people are falling for these tricks.

    To: [me]
    Sent: Wed 3/3/2004 3:19 PM
    Subject: Notify about your e-mail account utilization.

    Dear user of,

    Our main mailing server will be temporary unavaible for next two days, to continue receiving mail in these days you have to configure our free auto-forwarding service.

    For details see the attached file.

    Attached file protected with the password for security reasons. Password is 01168.

    The team
  3. i'mlong


    The typo should've given that one away.
  4. Diode


    Not by itself - I've seen legitimate sysadmin email full of typos and grammatical mistakes. But it looked suspicious enough that I examined the full email header, which showed that it was spoofed.

    And thus avoided the trap.
  5. My computer was acting strangely and so I got on ET and asked about a free antivirus software. I got one and activated it. My computer is 4 years old and had never been scanned. There were 8 separate viruses on the machine. Is this a guiness record of something, i.e., trading on a computer with 8 viruses.:confused:
  6. Hi folks:
    If you leave your machines on during the day (or evening), you should have either a monitoring software like Norton or Grisoft, or a hardware router like Linksys. If you leave your computer unprotected, what happens is that there are people out there who go trolling for CPU's. The way they do this is to scan for open ports. Another way of handling this is simply to disconnect from the internet when you are not using your computer. Good luck. Steve46

    P.S. I waited until I had an expensive problem. If I had it to do over, I would get up to speed on this subject and put in some protection before you find yourself calling dailing your local computer repair tech's phone number.
  7. I recently got a similar e-mail that actually came from a friend's work e-mail address.
    Before I opened the attachment I e-mailed him to ask what it was...then he told me that he didn't send it, everyone on his address book got it etc.
  8. nkhoi


    what got me is it say you need password to open the file, to my way of thinking virus should make it easy for you to open the file not harder, some subtle reverse psychology at play here.
  9. gaj


    what happened here is that the virus scanners couldn't (before this past week) scan zipped files properly for viruses.

    so, zip the file! however, most people wouldn't know to unzip it or what to putting the password in there implies it's 'real' and bypasses the scanner.

    i've heard (haven't verified) that the major anti-virus vendors have modified their code to look for this.
  10. Here's the four essential pieces of software that I have installed. All very easy to use and all top rated in their category:

    Stick that lot on your PC and you'll be protected better than 99% of windows users. I also avoid using Outlook for email (since most people use it and therefore most viruses are written for it). is simply the best email program out there. I even go the extra mile and use Opera web browser instead of IE which I only use if Opera has a problem with a particular site.

    Nothing is foolproof but there are simple things that can be done to protect yourself. In an age of privacy invasion, Total Net Shield in particular is excellent. Not only does it anonymize you, but it also provides encyption so that EVERYTHING sent out by your PC goes through secure tunneling (no more worries about questionable security at web sites asking for your credit card). The above works just great with IB and other broker's software too. Never had a conflict.
    #10     Mar 9, 2004