"Fun" with malware

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

Threaded View
Received some spam e-mail containing some malware that goes by quite a
few different names.

The attachment was a .hqx that unzipped to filename.zip (bunch of
spaces) .scr.

Windoze had the .zip icon, but I sure wasn't going to double click on
it to see if it would give an 'invalid zip format' or launch the .scr

The e-mail client(Trend Micro) ID'ed it as WORM_GREW.A

Virus total:
AntiVir             TR/KillAV.GR
Avast               Win32:VB-CD
AVG                 Worm/Generic.FX
Avira               TR/KillAV.GR
BitDefender         Win32.Worm.P2P.ABM
CAT-QuickHeal       I-Worm.VB.bi
ClamAV              Worm.VB-8
DrWeb               Win32.HLLM.Generic.391
eTrust-InoculateIT  Win32/Cabinet!Worm
eTrust-Vet          Win32/Blackmal.F
Ewido               Worm.VB.bi
Fortinet            W32/Grew.A!wm
F-Prot              W32/Kapser.A@mm
Ikarus              Email-Worm.Win32.VB.BI
Kaspersky           Email-Worm.Win32.VB.bi
McAfee              W32/Generic.worm!p2p
NOD32v2             Win32/VB.NEI
Norman              W32/Small.KI
Panda               W32/Tearec.A.worm
Sophos              W32/Nyxem-D
Symantec            no virus found
TheHacker           no virus found
UNA                 I-Worm.VB
VBA32               Email-Worm.Win32.VB.bi

I also received e-mail from clueless people that must have CC'ed who
knows who.

Nice one!

I told you that I had viruses set aside for people who continue to send
me Spam mail. I only use these viruses against perpetual spammers who
do not heed my warnings.
My filter has just informed me that YOU have tried to infect me with a
I suggest you explain yourself before something unfortunate happens.
I am a real estate travel writer and if this is the way you treat
people then I feel it could be worth my while to investigate and then
Do you really want that?


I dont even know who the fuck you are, but you can Fuck Off, actually
you tried to spam me with your bull shit real estate scam!


Dear Dale

Can I asked why you CC'ed this to the PC Broadband Address?

Kind regards


 ...And can I too ask what the hell is going on ??

Bloody viruses


Well you can ALL FUCK OFF as far as I am concerned... you people SHIT

This is the most fun I've had from an e-mail and I didn't even have
anything to do with it LOL.

Re: "Fun" with malware

So much for fun - getting e-mails from all over the world saying to
stop sending e-mails to them.     Almost all of them are users using
'reply to' not knowing the reply to address is bogus.   So far I've
gotten about 45 of them, all having this in the header:
Received: from mail1.onnetsecure.net ([]) by
bay0-mc1-f7.bay0.hotmail.com with Microsoft SMTPSVC(6.0.3790.211); Wed,
18 Jan 2006 17:43:57 -0800

Site Timeline