Baddog
12-17-2004, 02:06 PM
This one tryed to get me this morning.......
---------------------------------------------------------------
"Dear user of hovac.com, mail system administrator of hovac.com would like to inform you
Your account has been used to send a huge amount of unsolicited commercial email
messages during the recent week.
Probably, your computer was compromised and now contains a hidden proxy server.
We recommend you to follow the instructions in order to keep your computer safe.
Virtually yours,
The hovac.com team."
-----------------------------------------------------------------
"Virus Description - W32.MyDoom.M@mm
Created: 26/07/04
Aliases:
Description
W32.MyDoom.M@mm is a mass-mailing worm that compromises the security of your PC and uses your PC to send out masses of infected emails.
MyDoom.M messages come in many varities. Three examples follow:
To: (Surname), (Firstname)
Subject: Returned mail: Data format error
Dear user (i.surname)@lancaster.ac.uk,
Your account has been used to send a large amount of
spam during this week. We suspect that your computer
was compromised and now runs a hidden proxy server.
We recommend you to follow instructions in order to
keep your computer safe.
Best wishes,
The lancaster.ac.uk team.
And one more example:
Dear user (i.surname)@lancaster.ac.uk, mail server
administrator of lancaster.ac.uk would like to inform you
We have detected that your account has been used to send
a large amount of spam messages during the last week.
Probably, your computer had been compromised and now
contains a hidden proxy server.
We recommend that you follow our instruction in order
to keep your computer safe.
Sincerely yours,
lancaster.ac.uk support team.
Another example - which seems to come from 'user support Team' (it doesn't):
Subject: Returned mail: see transcript for details
Dear user of lancaster.ac.uk,
We have detected that your account has been used to send a
huge amount of junk email during this week. Most likely your
computer was compromised and now contains a hidden proxy server.
Please follow the instructions in order to keep your computer safe.
Have a nice day,
lancaster.ac.uk user support team.
A shorter (seemingly broken) version:
Mail Delivery Failure - This mail couldn't be shown.
------------- failed message -------------
P||M�+zsW�5KNU|DzZz!qtw�X�HM9~_nECW8~6i-5k
gVVLW>3Xu7PdE�C�ea9J4E7�0eyS��Jp1TFUqi�%u3bX�
Y#O-d6a0Ae8!kH�T?l4�n�yb$P+%A:9_5n5Ts(_k,NtZ
%�X-NZ0gJ�pV?F%W0v?:v9pLajWBpQAf:yhNc�Z_�yNeen
_s9?P:Z6e
Received message has been attached.
Damage
Spreads, clogs email servers, opens your PC to attack from hackers.
:rolleyes:
---------------------------------------------------------------
"Dear user of hovac.com, mail system administrator of hovac.com would like to inform you
Your account has been used to send a huge amount of unsolicited commercial email
messages during the recent week.
Probably, your computer was compromised and now contains a hidden proxy server.
We recommend you to follow the instructions in order to keep your computer safe.
Virtually yours,
The hovac.com team."
-----------------------------------------------------------------
"Virus Description - W32.MyDoom.M@mm
Created: 26/07/04
Aliases:
Description
W32.MyDoom.M@mm is a mass-mailing worm that compromises the security of your PC and uses your PC to send out masses of infected emails.
MyDoom.M messages come in many varities. Three examples follow:
To: (Surname), (Firstname)
Subject: Returned mail: Data format error
Dear user (i.surname)@lancaster.ac.uk,
Your account has been used to send a large amount of
spam during this week. We suspect that your computer
was compromised and now runs a hidden proxy server.
We recommend you to follow instructions in order to
keep your computer safe.
Best wishes,
The lancaster.ac.uk team.
And one more example:
Dear user (i.surname)@lancaster.ac.uk, mail server
administrator of lancaster.ac.uk would like to inform you
We have detected that your account has been used to send
a large amount of spam messages during the last week.
Probably, your computer had been compromised and now
contains a hidden proxy server.
We recommend that you follow our instruction in order
to keep your computer safe.
Sincerely yours,
lancaster.ac.uk support team.
Another example - which seems to come from 'user support Team' (it doesn't):
Subject: Returned mail: see transcript for details
Dear user of lancaster.ac.uk,
We have detected that your account has been used to send a
huge amount of junk email during this week. Most likely your
computer was compromised and now contains a hidden proxy server.
Please follow the instructions in order to keep your computer safe.
Have a nice day,
lancaster.ac.uk user support team.
A shorter (seemingly broken) version:
Mail Delivery Failure - This mail couldn't be shown.
------------- failed message -------------
P||M�+zsW�5KNU|DzZz!qtw�X�HM9~_nECW8~6i-5k
gVVLW>3Xu7PdE�C�ea9J4E7�0eyS��Jp1TFUqi�%u3bX�
Y#O-d6a0Ae8!kH�T?l4�n�yb$P+%A:9_5n5Ts(_k,NtZ
%�X-NZ0gJ�pV?F%W0v?:v9pLajWBpQAf:yhNc�Z_�yNeen
_s9?P:Z6e
Received message has been attached.
Damage
Spreads, clogs email servers, opens your PC to attack from hackers.
:rolleyes: