This morning's crop of spam contained one from
(contents: "> Your important document, correction is finished!" accompanied by the usual zip-file)
Is this the result of harvesting on the wreck or of infection? PvR
Infection. And probably *not* in Steve's computer, either. The most likely source is some third person who has both you and Steve in his Outlook address book, and is infected by a virus that forges From: headers.
-- Regards, Doug Miller (alphageek-at-milmac-dot-com)
Get a copy of my NEW AND IMPROVED TrollFilter for NewsProxy/Nfilter by sending email to autoresponder at filterinfo-at-milmac-dot-com You must use your REAL email address to get a response.
First thing to realize, is that it's not from Steve. Every outlook-enabled virus in the last several years forges the From: on the email to look like someone else.
So. Someone who reads this group, is running windows, who is probably running Outlook as an email client, and who has Mr. Rijckevorsel and Steve Knight in their address book, and who is behind in their virus updates, needs to go fix that. If you're reading this and have that uneasy feeling that it might be you, please take care of it.
By the way, there's a free antivirus program which is excellent, at
Dave Hinz
Note to self: before posting responses, check to see if anyone else has written essentially the same thing. Again.
Hrm.
KMail: 1.7 KNode: 0.8.0
I'm clean. :)
And the second most likely source is something that posts spam with to-from addresses based on threading from Useent .
This must be a difficult concept to grasp, as I have to have the above conversation with certain clients over and over.
todd
I knew it wasn't you, Silvan!
Indeed. I'm more gnomish most weeks, but yeah, it's not either of us, that much is clear.
Dave
It apparently is. Our first-level helldesk people _still_ don't get it, despite having been told this, over and over and over and over, for years. "...then we scanned (Joe's) system and it had no virus, so we're confused and escalating it to the virus team". Again. and again. and again.
The global statement "A virus is never from who it claims to be from" is true enough that exceptions would be, well, exceptional.
Dave Hinz
I've got one I'm having difficulty with :-).
I recently switched ISPs to one where my email address is xxx.intergate.xxx. I started getting spam almost immediately, most of it addressed to xxx.qaccess.xxx. Turns out one is an alias of the other.
But the qaccess address has never been used anywhere. I didn't even know it existed.
How did the spammers get it?
BTW, it's easy for me to filter out anything with qaccess in the headers, so the problem is more one of curiosity.
likely source is some third person who has both you and Steve in his Outlook address book, and is infected by a virus that forges From: headers.
*** Thanks. Assuming that the virus makes random combinations it is quite possible that Steve got one with my address? Just great. PvRxxx.intergate.xxx.
Might want to go here and do some reading, particularly the section on "envelope headers":
nope not mine. between spamcop and not opening attachments and AVG I am pretty secure. but since I don't mung my email I am all over (G)
not yet anyway (G)
good program I bought it and replaced norton. hell I have so few addresses in outlook they would have limited ammo (G)
Add to the the dumba^H^H^H^H^Hfools who still configure their corporate email virus scanners to send out the "you sent us an infected attachment" replies. If everyone would just stop that, it would seriously limit the number of times I have this conversation.
todd
Random generation. Once in a while I get SPAM that is addressed to snipped-for-privacy@blahblahblah.net, snipped-for-privacy@blahblahblah.net, snipped-for-privacy@blahblahblah.net, snipped-for-privacy@blahblahblah.net, snipped-for-privacy@blahblahblah.net, snipped-for-privacy@blahblahblah.net, snipped-for-privacy@blahblahblah.net . . .
Generally they'll prune the ones that bounce.
nuking outlook is high on the list of things I do in a windows installation....
I am stuck with it. I used to use agent for email but I needed more. I had outlook xp and it did what I needed. but I tried eudora and it never worked right. though most of the time it could not import email from outlook like I needed. I have three years worth of emails that would need to move. outlook xp will not let you open several kinds of attachments. that's good for virus control but bad of someone emails you a .exe file you need.
Take another look at Eudora. I just set someone up on Eudora 6 to get them away from a marginally functional OE setup. It imported all their messages, mailboxes and addresses just fine. I won't guarantee it, but the import function has gotten a lot better in the last release or two.
Tim Douglass
HomeOwnersHub website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.