Puppy Linux Discussion Forum Forum Index Puppy Linux Discussion Forum
Puppy HOME page : puppylinux.com
"THE" alternative forum : puppylinux.info
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

The time now is Thu 24 Jul 2014, 16:09
All times are UTC - 4
 Forum index » Off-Topic Area » Security
Is anybody else getting these viruses?
Post_new_topic   Reply_to_topic View_previous_topic :: View_next_topic
Page 1 of 2 Posts_count   Goto page: 1, 2 Next
Author Message
obxjerry


Joined: 29 Jan 2010
Posts: 394
Location: Louisville, Kentucky

PostPosted: Sun 20 Mar 2011, 17:53    Post_subject:  Is anybody else getting these viruses?
Sub_title: If not you are welcome to mine.
 

I've gotten 3 emails with attachments I would suspect contain viruses. The zip file opens to a 77312 byte .exe file. All 3 come from package delivery companies; UPS, DHL and FedEx. I did contact UPS and they said in part; "Our UPS fraud group is aware of this malicious e-mail." If anybody wants them I haven't used them. Geez, I love Puppy.
_________________
It may be that my sole purpose in life is simply to serve as a warning to others

Meddle Not In The Affairs Of Dragons For You Are Crunchy And Taste Good With Ketchup

I'd rather be sailing
Back to top
View user's profile Send_private_message 
Moose On The Loose


Joined: 24 Feb 2011
Posts: 508

PostPosted: Sun 20 Mar 2011, 18:38    Post_subject: Re: Is anybody else getting these viruses?
Sub_title: If not you are welcome to mine.
 

obxjerry wrote:
I've gotten 3 emails with attachments I would suspect contain viruses. The zip file opens to a 77312 byte .exe file. All 3 come from package delivery companies; UPS, DHL and FedEx. I did contact UPS and they said in part; "Our UPS fraud group is aware of this malicious e-mail." If anybody wants them I haven't used them. Geez, I love Puppy.


It is very common for people who want to do bad things to try to be someone you trust. I can't count how many times I have received an email from Microsoft with the latest updates or a message from a band I don't deal with telling me I needed to sign in and correct my profile or something. In every case, they weren't from where they claimed, except for perhaps the Microsoft one depending on how you define things.
Back to top
View user's profile Send_private_message 
technosaurus


Joined: 18 May 2008
Posts: 4277

PostPosted: Sun 20 Mar 2011, 22:26    Post_subject:  

I always find it amusing to run
strings some_virus.exe
just to see if the programmer left any interesting comments.

_________________
Web Programming - Pet Packaging 100 & 101
Back to top
View user's profile Send_private_message 
obxjerry


Joined: 29 Jan 2010
Posts: 394
Location: Louisville, Kentucky

PostPosted: Sun 20 Mar 2011, 22:47    Post_subject:  

Whoa, over my head. I'll guess and say I save the file and in a console type strings file name.exe. Is that even close?
_________________
It may be that my sole purpose in life is simply to serve as a warning to others

Meddle Not In The Affairs Of Dragons For You Are Crunchy And Taste Good With Ketchup

I'd rather be sailing
Back to top
View user's profile Send_private_message 
technosaurus


Joined: 18 May 2008
Posts: 4277

PostPosted: Sun 20 Mar 2011, 23:47    Post_subject:  

exactly, keep in mind that I run with pfix=ram with all drives unmounted
_________________
Web Programming - Pet Packaging 100 & 101
Back to top
View user's profile Send_private_message 
obxjerry


Joined: 29 Jan 2010
Posts: 394
Location: Louisville, Kentucky

PostPosted: Mon 21 Mar 2011, 16:55    Post_subject:  

I got another one from UPS this morning. The oldest 2 will no longer open. The virus scan on my email stops them and says they are a virus. The strings peek didn't work, it says no file or document. I still have 2 if anybody wants them. You could do a friend a real favor if they need a little push to make them leave M$.
_________________
It may be that my sole purpose in life is simply to serve as a warning to others

Meddle Not In The Affairs Of Dragons For You Are Crunchy And Taste Good With Ketchup

I'd rather be sailing
Back to top
View user's profile Send_private_message 
Makoto


Joined: 03 Sep 2009
Posts: 1774
Location: Out wandering... maybe.

PostPosted: Mon 21 Mar 2011, 21:07    Post_subject:  

Most of the virus scanners seem to have no problems detecting them, so the email providers' scanners probably will detect them. They're still making the rounds, though.

I'll admit I haven't seen one since last year, however. Neutral

As for using strings, it might help to redirect the output to a text file (I mention this, because I was doing that this afternoon. Very Happy), too. I'm not sure if it gets strings in EXEs and binaries that I see a lot of, which are the ones with nulls in between each character (T_e_x_t__l_i_k_e__t_h_i_s, basically).

strings whatever.exe > whatever.txt

_________________
[ Puppy 4.3.1 JP, Frugal install | 1GB RAM | 1.3GB swap ] * My Pidgin Builds for Puppy 4.3.1+
In memory of our beloved American Eskimo puppy (1995-2010) and black Lab puppy (1997-2011).
Back to top
View user's profile Send_private_message 
racepres


Joined: 16 Jan 2009
Posts: 531
Location: Central Michigan, US

PostPosted: Mon 21 Mar 2011, 21:36    Post_subject:  

obxjerry wrote:
I got another one from UPS this morning. .

Drive on down there and ask 'em WTH.
Just a Thought, cause I know that they are right on the south side.
Nah!!! I'm just funnin' ya!!
RP
Back to top
View user's profile Send_private_message Visit_website 
obxjerry


Joined: 29 Jan 2010
Posts: 394
Location: Louisville, Kentucky

PostPosted: Wed 23 Mar 2011, 16:51    Post_subject:  

I've gotten 2 more, both from UPS. It looks like I'm settling in to a one a day routine. I can't believe nobody wants any of these. Why should I have so many when other, more deserving people have none, especially considering I can't use any of them since I run Puppy?
_________________
It may be that my sole purpose in life is simply to serve as a warning to others

Meddle Not In The Affairs Of Dragons For You Are Crunchy And Taste Good With Ketchup

I'd rather be sailing
Back to top
View user's profile Send_private_message 
8-bit


Joined: 03 Apr 2007
Posts: 3355
Location: Oregon

PostPosted: Thu 24 Mar 2011, 00:05    Post_subject:  

Depending on what mail software you use and your service provider, you should be able to block those incoming email addresses.

I use msn hotmail and It has an option called sweep that will block all incoming emails from addresses you select.
Back to top
View user's profile Send_private_message 
Makoto


Joined: 03 Sep 2009
Posts: 1774
Location: Out wandering... maybe.

PostPosted: Thu 24 Mar 2011, 01:33    Post_subject:  

obxjerry: Are you sure your email provider/ISP doesn't have an option to forward spam/virus mails to them, for inspection or to somehow take action, etc.? I think there was a third-party option (police? government?) where you could forward the mails, for reasons like that.

Well, they might want them, anyway. Smile

_________________
[ Puppy 4.3.1 JP, Frugal install | 1GB RAM | 1.3GB swap ] * My Pidgin Builds for Puppy 4.3.1+
In memory of our beloved American Eskimo puppy (1995-2010) and black Lab puppy (1997-2011).
Back to top
View user's profile Send_private_message 
bugman


Joined: 20 Dec 2005
Posts: 2131
Location: buffalo commons

PostPosted: Thu 24 Mar 2011, 06:30    Post_subject:  

i got one today,

Quote:
Dear customer.

The parcel was sent your home address.

And it will arrive within 7 business day.

More information and the tracking number are attached in document below.

Thank you.

© 1994-2011 United Parcel Service of America, Inc.

T1YLUGH6I2Cu48r0GiW

[UPSnotify.rar application/octet-stream (5.7KB)]


i have no idea what kind of person would be fooled by such a lame effort . . .

_________________
. . . the machines are clean
and the machines are not corrupted


- lee "scratch" perry
Back to top
View user's profile Send_private_message Visit_website 
obxjerry


Joined: 29 Jan 2010
Posts: 394
Location: Louisville, Kentucky

PostPosted: Sun 27 Mar 2011, 09:51    Post_subject:  

Since I had no takers on the viruses, I marked them all as spam. I think Yahoo must have sent in a guided missile strike because I've gotten no more virus emails.
_________________
It may be that my sole purpose in life is simply to serve as a warning to others

Meddle Not In The Affairs Of Dragons For You Are Crunchy And Taste Good With Ketchup

I'd rather be sailing
Back to top
View user's profile Send_private_message 
tubeguy


Joined: 28 Aug 2009
Posts: 1326
Location: Park Ridge IL USA

PostPosted: Sun 27 Mar 2011, 15:33    Post_subject:  

bugman wrote:
i got one today,

Quote:
Dear customer.

The parcel was sent your home address.

And it will arrive within 7 business day.

More information and the tracking number are attached in document below.

Thank you.

© 1994-2011 United Parcel Service of America, Inc.

T1YLUGH6I2Cu48r0GiW

[UPSnotify.rar application/octet-stream (5.7KB)]


i have no idea what kind of person would be fooled by such a lame effort . . .

I've gotten those at work and wrote rules to block them. I've never had one get through gmail though.

_________________
Toshiba M115-S1061: PupServer |HP/Compaq D330ST: Dpup 486
Back to top
View user's profile Send_private_message Visit_website 
d4p


Joined: 12 Mar 2007
Posts: 406

PostPosted: Mon 28 Mar 2011, 02:05    Post_subject:  

not sure, is that something to do with the fraudulent certificates?
http://blog.mozilla.com/security/2011/03/25/comodo-certificate-issue-follow-up/
Back to top
View user's profile Send_private_message 
Display_posts:   Sort by:   
Page 1 of 2 Posts_count   Goto page: 1, 2 Next
Post_new_topic   Reply_to_topic View_previous_topic :: View_next_topic
 Forum index » Off-Topic Area » Security
Jump to:  

Rules_post_cannot
Rules_reply_cannot
Rules_edit_cannot
Rules_delete_cannot
Rules_vote_cannot
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group
[ Time: 0.0772s ][ Queries: 11 (0.0034s) ][ GZIP on ]