Getting tons of similar spam - You too?

Toggle sidebar Toggle sidebar
S

SuperSix

Elite Member
Oct 9, 1999
9,872
2
0
I've been getting small, cryptic spam emails for a week or so..

They all mention something about a password being attached. I checked the attachment - there's nothing in the attachments - just an empty .zip file. I checked them with 2 different virus scanners. Check out this pic, they are all like this:
http://www.ihadav8.com/images/spam.jpg

Anyone else getting these?

Really a pain in the ass, as the Gmail spam filter doesn't catch them, andI'm probably getting 20-30 per day. :|
 
SagaLore

SagaLore

Elite Member
Dec 18, 2001
24,036
21
81
It's possible that GMail is automatically deleting the virus out of the zip file, which is why it's blank. When you hover over the AOL link, what is the real URL?

Can you forward me one of these spam? (PM me for my email address)
 
Aves

Aves

Lifer
Feb 7, 2001
12,232
30
101
I've been getting those too. All "from" .edu domains all coming to my .edu email address.

They either have the subject "Your Password" or "Registration Confirmation" and the text of the email is "Account and Password Information are attached!"

It started around Monday and I get 2 or 3 right in a row.
 
S

SuperSix

Elite Member
Oct 9, 1999
9,872
2
0
SagaLore - PM Sent

The links are to the correct displayed URL, hence my confusion. Does GMail have automatic virus deletion? Another thing that confuses me is the
"*** AntiVirus: No Virus found
*** "TAMPABAY.RR" Anti-Virus
*** http://www.tampabay.rr.com

line, Tampabay.rr.com does filter viruses, but it doesn't put this tag on all clean emails, making me think they are trying to indicate that it is virus-free, inserting the ISP extension for each sent email.

Again - I'm wondering what their intent is, as there's no redirection or phishing links included.

Originally posted by: Cleaner
Originally posted by: rudeguy
uh...you opened that?
Click to expand...

Its appears he has not learned that lesson yet. Natural Selection is waiting to ponce.
Click to expand...

Thanks for your clever observation.

Yes I opened them, after scanning them with enterprise virus scanners. While I appreciate your candor (not), unless you actually can CONTRIBUTE, STFU noob.

I am trying to decipher why I am getting them, where they are coming from, and who is sending them. I am actively involved in virus, spam, and phishing reporting, that helps keep viruses-phobic idiot users like you safe.

I've forgotten more about viruses than you will ever know. Now I'll just sit here and wait for Natural Selection to ponce. ("Natural Selection" is a proper name and needs to be capitalized?



 
FoBoT

FoBoT

No Lifer
Apr 30, 2001
63,084
15
81
fobot.com
this Sober virus that started at the beginning of the week is currently generating something like 1/20 of all email on the internet, maybe they are from it


*edit*
yes, those are from "Sober" infected machines. read the symantec bulletin on sober

http://securityresponse.symantec.com/avcenter/venc/data/w32.sober.o@mm.html

# Attachment:
One of the following:

# our_secret.zip
# mail_info.zip
# error-mail_info.zip
# account_info.zip
# account_info-text.zip

Note: The attachment will be a zip file containing a copy of the worm. The file name within the zip file will be Winzipped-Text_Data.txt[many spaces].pif or Winzipped-Text_Data.txt[many spaces].exe.
Click to expand...
 
SagaLore

SagaLore

Elite Member
Dec 18, 2001
24,036
21
81
Originally posted by: FoBoT
this Sober virus that started at the beginning of the week is currently generating something like 1/20 of all email on the internet, maybe they are from it


*edit*
yes, those are from "Sober" infected machines. read the symantec bulletin on sober

http://securityresponse.symantec.com/avcenter/venc/data/w32.sober.o@mm.html

# Attachment:
One of the following:

# our_secret.zip
# mail_info.zip
# error-mail_info.zip
# account_info.zip
# account_info-text.zip

Note: The attachment will be a zip file containing a copy of the worm. The file name within the zip file will be Winzipped-Text_Data.txt[many spaces].pif or Winzipped-Text_Data.txt[many spaces].exe.
Click to expand...
Click to expand...

Okay, you got it.

Here's what happening - some antivirus programs and mail relays have an option to scan outgoing attachments, delete infected files, and send the email anyway. So what everyone is getting is a disinfected email worm.
 
Homerboy

Homerboy

Lifer
Mar 1, 2000
30,890
5,001
126
Yeah Im getting them too on one of my RR accounts. Just set up a filter and be on your way.
 
A

aplefka

Lifer
Feb 29, 2004
12,014
2
0
Yes, my sister has been in her UCSC email account as well as my little sister in her yahoo account. Not me personally though.
 
P

PanzerIV

Diamond Member
Dec 19, 2002
6,875
1
0
I am getting upwards of ten a day of those since early this week on my RR account. They go straight into the ole delete folder since they are so blatantly b.s.
 
JDub02

JDub02

Diamond Member
Sep 27, 2002
6,209
1
0
I've been getting a ton of spam at work recently (past week or so). pretty weird since the company tries to filter it out. and it's obvious spam, too.
 
SagaLore

SagaLore

Elite Member
Dec 18, 2001
24,036
21
81
Originally posted by: JDub02
I've been getting a ton of spam at work recently (past week or so). pretty weird since the company tries to filter it out. and it's obvious spam, too.
Click to expand...

Obvious how? Sometimes what is obvious to our eyes, isn't to static ruleset.

What does your company use for antispam?
 
T

ty1er

Senior member
May 14, 2004
807
0
0
I keep getting hundreds of emails with the Sober virus.
Is it possible to pinpoint who im receiving them from?
 
You must log in or register to reply here.

TRENDING THREADS

COMPANY
RESOURCES
FOLLOW
Top Bottom