From | Message |
PopGenie Dodge Dakota JOIN HERE
7/23/2002 13:01:47
|
Subject: VIRUS IN E-MAIL FROM BERND! IP: Logged
Message: Hey guys,
Just a heads-up: I received an e-mail from one of Bernd's addresses at speedtweaks.net (turbokits@speedtweaks.net) and it contains what looks like a worm virus. Message title is "The Garden of Eden".
'Web.mim' is a compressed file that WinZip or a similar compression utility will recognize. The file contained in the archive is named "Unknown.001". DO NOT TRY TO EXECUTE THIS FILE! This is where the virus is contained.
I'm lucky to have good virus programs that caught it in time -- I would hate for one or more of you guys to think Bernd sent you a goody and end up with a virus.
Mike T.
01 CC Sport 6A 2WD
|
FlameRed01 Dodge Dakota JOIN HERE
7/23/2002 13:27:03
| RE: VIRUS IN E-MAIL FROM BERND! IP: Logged
Message: well we all know that hes not sending us viruses, someones "do bad" program prolly picked up a bunch of info from this site and is using it as a disguiuse. hasnt this happened many times before?
|
PopGenie Dodge Dakota JOIN HERE
7/23/2002 13:46:40
| RE: VIRUS IN E-MAIL FROM BERND! IP: Logged
Message: Right... that's what a 'worm' virus is. The program is somehow loaded in the computer, then it looks at address books kept on the drive, and copies and sends itself from that e-mail address to the other ones... I know Bernd wouldn't send out a virus and I hope I didn't come across that way.
Mike T.
01 CC Sport 6A 2WD
|
MightyDakSXT GenIII
7/23/2002 14:06:50
| RE: VIRUS IN E-MAIL FROM BERND! IP: Logged
Message: I've received several e-mails from various people on this site. Looks like they got infected and it started sending e-mails out. Be careful when opening e-mail from people you don't know. McAfee has kept me safe so far! =)
2002 SXT, 3.9 Liter V6, RC, 5-speed, 3.55 rear, Extang Tonneau, Autolite 3923 Plugs, Borg Warner Cap & Rotor, Quick D Intake, Modified V8 TB, Gibson Catback Exhaust, Robert Shaw 180 Degree T-stat, Custom Grille
|
SinCity R/T Dodge Dakota JOIN HERE
7/23/2002 14:30:28
| RE: VIRUS IN E-MAIL FROM BERND! IP: Logged
Message: The Klez worm virus takes a random person from your address book, and inserts it into the 'from' field in the e-mail. If you look at the actual properties of the mail, you'll find out who the actual e-mail came from.
Speaking of which...
If the user with the e-mail address KIRKDOLL@ARTELCO.COM doesn't get their viruses purged from their computer, I'm going to contact your ISP and have your account frozen. You'd think they would get their computer cleaned after receiving 8 warnings that they've sent out a minimum of 12 infected messages to my e-mail. My anti-virus program is top-notch, but I'm sick of receiving 2-3 infected messages from you per day.
SinCity R/T
http://www.dakota-durango.com
|
92dakotahd GenII
7/23/2002 17:16:01
| RE: VIRUS IN E-MAIL FROM BERND! IP: Logged
Message: I've had the same problem. In the last month or two I've recieved like 100+ e-mails with viruses. Luckily I'm using a school e-mail server and they have Norton built it and if I get one it filters it before it hits the box and takes the virus out.
|
EBOLAVIRS Dodge Dakota JOIN HERE
7/24/2002 14:21:48
| RE: VIRUS IN E-MAIL FROM BERND! IP: Logged
Message: You cant freeze someones account......nice scare tactic though.
|
SinCity R/T Dodge Dakota JOIN HERE
7/24/2002 16:27:23
| RE: VIRUS IN E-MAIL FROM BERND! IP: Logged
Message: You'd be amazed how much an ISP is willing to go through when someone calls up with problematic users, especially smaller ISP's like his. I've had accounts tracked back to he owner's home, suspended, and in one case at a college deleted because of abusive users.
|
Bernd *GenIII*
7/24/2002 21:18:44
| RE: VIRUS IN E-MAIL FROM BERND! IP: Logged
Message: It's not coming from our machines...we've checked them quite thoroughly. The virus in question does a "spoof" on the email...if you check the headers, you can spot it easily. (You wouldn't believe how many we get a day...but they're all caught so they don't bother us.)
1997 Dodge Dakota SLT - V6 Supercharged/Intercooled @ 10# w/Nitrous 14.55 @ 96.01mph
|
92dakotahd GenII
7/25/2002 00:34:46
| RE: VIRUS IN E-MAIL FROM BERND! IP: Logged
Message: The wierd thing is that 99.9% of the ones I get are from people who I don't know and who wouldn't have my e-mail.
|
Muzzy GenIII
7/25/2002 01:06:52
| RE: VIRUS IN E-MAIL FROM BERND! IP: Logged
Message: The SMTP protocol is an unsecure protocol, so anyone with a sniffer can intecept and read your email. Especially those of you with cable modems. There are lots of aspiring hackers that like to port scan cable modem subnets. If you have a cable modem and don't have a firewall, then it is a matter of time before you get hacked. I get 1 to 2 port scans a day that hit my firewall.
It's as simple as this... I can setup an auto ping script to ping every possible IP on a subnet and log which ones reply. Then it's just a matter of pointing my sniffer at one of the IP's that replied and scan TCP port 25 (SMTP). I can watch every packet coming and going from your computer on that port. Of course, port 25 being email, I can read all your mail coming and going. Now if you had a firewall, your firewall would drop all incoming request packets, so my auto ping script wouldn't get a reply from your IP. I could go into greater detail, but I am sure you get the idea.
As you can see, it's not hard for a well written virus to snatch your email address.
-Muzzy
2001 EC Dakota 4x4 - 287ci V8 - 5 Speed - 3.92 gears/w Sure Grip Borla Stainless Steel Headers - IAT Adjuster Flowmaster Force II Cat Back - Ported TB/Custom Cold Air intake H&K USC Security System Coming Soon - head porting/ install HO cams & valve springs
|
EBOLAVIRS Dodge Dakota JOIN HERE
7/25/2002 10:57:28
| RE: VIRUS IN E-MAIL FROM BERND! IP: Logged
Message: Yah and one time at band camp I had an ISP track an abusive user via GPS and vaporize them with a laser which was connected to a sharks head..........You wouldnt happen to be selling some ocean front property in Arizona would you?
|
Muzzy GenIII
7/25/2002 12:59:32
| RE: VIRUS IN E-MAIL FROM BERND! IP: Logged
Message: EBOLAVIRS-
I bet you went to an all boy's band camp. Is your nickname Peter Puffer?? Play the skin flute did you? What correctional facility were you educated in? Aren't ISP and GPS fairly large acronyms for you? Are you even old enough to drive?
2001 EC Dakota 4x4 - 287ci V8 - 5 Speed - 3.92 gears/w Sure Grip Borla Stainless Steel Headers - IAT Adjuster Flowmaster Force II Cat Back - Ported TB/Custom Cold Air intake H&K USC Security System Coming Soon - head porting/ install HO cams & valve springs
|
YJ Dodge Dakota JOIN HERE
7/25/2002 13:11:59
| RE: VIRUS IN E-MAIL FROM BERND! IP: Logged
Message: Hey muzzy, good info. If 25 is SMTP would that just scan the outgoing? Is POP on a different port (incoming)?
Pretty off-topic thread but just had to ask. Sorry guys.
YJ
|
Tom Slick GenII
7/25/2002 13:14:40
| RE: VIRUS IN E-MAIL FROM BERND! IP: Logged
Message: BTW, turbokits@speedtweaks.net is my e-mail addy, not Bernd's...
he he he
Later!
Tom "Slick" 96 Dakota Sport 5.2 RC SB
|
Muzzy GenIII
7/25/2002 13:28:01
| RE: VIRUS IN E-MAIL FROM BERND! IP: Logged
Message: SMTP is the mail protocol that handles the transfer of email. The POP3 protocol allows email to be stored on your ISP's mail server until you connect. It doesn't actually deal with the mail transmission. Once you connect to your ISP's mail server, your mail is transferred to your PC via the SMTP protocol on port 25. Some ISP's allow you to choose to leave your mail on the server rather than download it to your local machine. In that case the only SMTP transfer that would occur would be from the sender to the ISP's mail server.
POP3 was also created to allow email to be sent to you while you aren't connected. Without POP3, the mail message would be undeliverable to your address unless you were connected at the time it was transmitted. So basically, if you email client wasn't running, you would get mail or it would "queue" for you on the mail server.
I hope this helps.
-Muzzy
P.S. There are ways to encrypt your mail, which requires you to have an encryption client and the person you send it to would need the encrytion key to decrypt it.
2001 EC Dakota 4x4 - 287ci V8 - 5 Speed - 3.92 gears/w Sure Grip Borla Stainless Steel Headers - IAT Adjuster Flowmaster Force II Cat Back - Ported TB/Custom Cold Air intake H&K USC Security System Coming Soon - head porting/ install HO cams & valve springs
|
EBOLAVIRS Dodge Dakota JOIN HERE
7/25/2002 13:28:23
| RE: VIRUS IN E-MAIL FROM BERND! IP: Logged
Message: Ahhhh did muzzy get upset? If the conversing of others agitates you to the point where you feel compelled to waste your time posting insults then you have my pity because you need to find other interests.
|
Muzzy GenIII
7/25/2002 21:13:05
| RE: VIRUS IN E-MAIL FROM BERND! IP: Logged
Message: EBOLAVIRS-
"Yah and one time at band camp I had an ISP track an abusive user via GPS and vaporize them with a laser which was connected to a sharks head..........You wouldnt happen to be selling some ocean front property in Arizona would you?"
Do you remember this? If not, you can just scroll up and read your own writing. Were you wasting time too? Sounds like intelligent conversation to me. Actually, there is a lot of insight into your message. I never knew sharks had lasers in their head. Thanks for that tidbit of knowledge. Have a great day!!
2001 EC Dakota 4x4 - 287ci V8 - 5 Speed - 3.92 gears/w Sure Grip Borla Stainless Steel Headers - IAT Adjuster Flowmaster Force II Cat Back - Ported TB/Custom Cold Air intake H&K USC Security System Coming Soon - head porting/ install HO cams & valve springs
|
92dakotahd GenII
7/26/2002 00:33:14
| RE: VIRUS IN E-MAIL FROM BERND! IP: Logged
Message: Muzzy,
I'm not bashing/picking n your or anything but you definitly seem to walk to the beat of your own drummer.(your abbrev in your signature are very unique.) You had me confused for a sec.
|
Muzzy GenIII
7/26/2002 02:43:50
| RE: VIRUS IN E-MAIL FROM BERND! IP: Logged
Message: 92dakotahd-
I have no issue with you. You made some valid comments relating to the topic of this post. I work in IT for a living and was sharing some knowledge on how someone can grab your email address. I was just disappointed with a certian individual's heckling remarks. I think it's sad when some people would rather write a negative post than offer constructive knowledge relating to the topic. I don't claim to know all, but I willing to share what I do know. I am always willing to learn from others.
I apologize to all reading this post for sinking to the level of EBOLAVIRS. My personal integrity is more important to me.
-Muzzy
2001 EC Dakota 4x4 - 287ci V8 - 5 Speed - 3.92 gears/w Sure Grip Borla Stainless Steel Headers - IAT Adjuster Flowmaster Force II Cat Back - Ported TB/Custom Cold Air intake H&K USC Security System Coming Soon - head porting/ install HO cams & valve springs
|
92dakotahd GenII
7/26/2002 12:16:47
| RE: VIRUS IN E-MAIL FROM BERND! IP: Logged
Message: Muzzy,
My last comment was off-topic I was referring to your sig.
"2001 EC Dakota 4x4 - 287ci V8 - 5 Speed - 3.92 gears/w Sure Grip"
Most on here would have typed this:
2001 CC 4X4 4.7L 5-spd 3.92 LSD.
Your EC really got me. I'm not commenting on your actual comments. Every body will snap once in a while on here. People just push the right buttons at times. I've only been on here 8 months and the # of people who just get on here to cause trouble is just getting larger. You gotta vent sometime.
|
EBOLAVIRS Dodge Dakota JOIN HERE
7/26/2002 17:58:22
| RE: VIRUS IN E-MAIL FROM BERND! IP: Logged
Message: Yah actually I was wasting my time but it was in reply to a conversation Sincity and I were having. If you have nothing better to do than comment on the conversations of others then you probably need a hobbie.....better yet go see the new Austin Powers or see the old ones again then you might understand the sharks with lasers if you can grasp anything in that movie. Some humor might be good for your boring stuffy life/personality. I suspect you might have trouble understanding the movie though now that you have sunk to my level and well below it although you were never that high to begin with.
|
Yates-in-DE GenIII
7/26/2002 18:15:09
| RE: VIRUS IN E-MAIL FROM BERND! IP: Logged
Message: Hey All,
Port Listings:
Outgoing SMTP = port 25
Incoming Pop3 = port 110
There are several free available online port scanners that will scan any IP addy, TCP and UDP, from port 1 through 65535. Some will even tell you the vulnerabilty and Trojans that can go through those ports. WO!
The FBI has a great mail reader that they are in court with right now, Carnivore. Have fun with That Search.
Later,
LAN Tech/Sys Admin
MCSE NT-2000, MCT 2000, RHCE, CompTIA A+, Net+, CCNA
My VW Killer Lynn
|
| P 1 |
|
Post a reply to this message:
Username Registration: Optional All visitors are allowed to post messages
|