Email I "sent" with viruses

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

Threaded View
See below a message that got sent to a bunch of people.  I had sent a real
email to them the day before.  It links to a "virus site" apparently.  I
scanned with AVG and MS Defender but they didn't turn anything up.  Any
ideas?  Thanks


Subject:  Help
Date:  Thu, 02 Nov 2006 11:10:10 -0800
Quoted text here. Click to load it



Re: Email I "sent" with viruses

It IS a virus.
Virus Total Says that it's a Zlob varient, but your computer's probably
screwed, because only AntiVir, Kapersky, and Trend Micro picked it up.


S wrote:
Quoted text here. Click to load it


Re: Email I "sent" with viruses

Anything I can do?
Quoted text here. Click to load it



Re: Email I "sent" with viruses

Get Trend Micro PC-Cillin:
http://www.trendmicro.com/en/products/desktop/pc-cillin/evaluate/overview.htm
=D
S wrote:
Quoted text here. Click to load it


Re: Email I "sent" with viruses

S aka a@a.com in alt.comp.anti-virus,after much thought,came up with
this jewel:

Quoted text here. Click to load it

S,

Read through my pages(see below)
Stop using Internet Explorer and Outlook Express.
Get rid of AVG and Windows Defender.
Install a decent AntiVirus and AntiSpyware program.(I use AntiVir and
SuperAntiSpyware)
Install a more secure browser,newsgroup reader and email client.(I use
Firefox,XanaNews,and Thunderbird)

max
--
Playing Nice on Usenet:
http://oakroadsystems.com/genl/unice.htm#xpost
My Pages:
Virus Removal Instructions
http://home.neo.rr.com/manna4u /
Keeping Windows Clean
http://home.neo.rr.com/manna4u/keepingclean.html
Windows Help and Tools
http://home.neo.rr.com/manna4u/tools.html
Change nomail.afraid.org to gmail.com to reply.
nomail.afraid.org is setup specifically for use in USENET
Feel free to use it yourself.

Re: Email I "sent" with viruses


| It IS a virus.
| Virus Total Says that it's a Zlob varient, but your computer's probably
| screwed, because only AntiVir, Kapersky, and Trend Micro picked it up.
|

It is NOT a virus.  It is a Trojan.  And yes, this is a NEW so-called CODEC site
purporting
to provide a Video CODEC when it is in actuality a ZLOB Trojan installer.

Registration Service Provided By: ESTDOMAINS INC
Contact: +1.3027224217
Website: http://www.estdomains.com

Domain Name: IVIDEOCODEC.COM

Registrant:
    Key
    Allan Bill Clemmensen        ***@keycodec.com)
    Karlstoftevanget 53
    Rodby
    ,4970
    DK
    Tel. +045.20613652

Creation Date: 31-Oct-2006
Expiration Date: 31-Oct-2007

Using Social Engineering and a JS/Wonka Exploit, the h**p://beam.to/koopers web
site uses a
fake video to get you infected with the ZLob Trojan.

As for "S".  More information about the email is needed.

--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm



Re: Email I "sent" with viruses

Hmmm...I wonder how I got the thing.  I don't recall downloading anything
executable.  I ran SuperAdBlocker and it found Oreans32.  Is this what
caused my PC to send the email with the link?
Quoted text here. Click to load it



Re: Email I "sent" with viruses


| Hmmm...I wonder how I got the thing.  I don't recall downloading anything
| executable.  I ran SuperAdBlocker and it found Oreans32.  Is this what
| caused my PC to send the email with the link?

Insufficient information.  We would have to ask Nick what "Oreans32".  I don't
know if YOUR
PC sent this out as a spambot or if your email address was just used.

--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm



Re: Email I "sent" with viruses

S wrote:
Quoted text here. Click to load it
=========
I downloaded a file called ivideocodec.509.exe
size-> 57.1 KB (58,525 bytes)

Virustotal just had Fortinet call it suspicious, all others said clean.

Of course I didn't execute it!


Site Timeline