Microsoft Update Scam!!

[GraphicEngineer]

These seems to be a transmission for a possible trojan
and/or virus. Please confirm or deny. The email attempts
to look official from the Mircosoft corporation, but
realistically, as a graphic designer, it seems to be
lacking the true look. Also, it seems Microsoft would
NEVER ask to have a system update via email - its not
possible nor efficient - nor are there any related systems
to email lists. Just my ideas...please discuss.

Basil

HEADER:
Return-Path: <[email protected]>
Delivered-To: (e-mail address removed)
Received: (qmail 24126 invoked from network); 18 Sep 2003
22:48:36 -0000
Received: from defout.telus.net (HELO priv-
edtnes57.telusplanet.net) (199.185.220.240)
by pjn.net with SMTP; 18 Sep 2003 22:48:36 -0000
Received: from gbdos ([142.173.78.71]) by priv-
edtnes57.telusplanet.net
(InterMail vM.5.01.05.17 201-253-122-126-117-
20021021) with SMTP
id <20030918222737.WFIX24218.priv-
edtnes57.telusplanet.net@gbdos>;
Thu, 18 Sep 2003 16:27:37 -0600
FROM: "Microsoft Customer Support" <cemttxuhivv-
(e-mail address removed)>
TO: "User" <[email protected]>
SUBJECT: Last Microsoft Upgrade
Mime-Version: 1.0
Content-Type: multipart/mixed; boundary="ezdhzzjwqhsh"
Message-Id: <20030918222737.WFIX24218.priv-
edtnes57.telusplanet.net@gbdos>
Date: Thu, 18 Sep 2003 16:27:41 -0600

CONTENT:
Email rec'd:
Microsoft All Products | Support | Search |
Microsoft.com Guide
Microsoft Home


Microsoft User

this is the latest version of security update,
the "September 2003, Cumulative Patch" update which
resolves all known security vulnerabilities affecting MS
Internet Explorer, MS Outlook and MS Outlook Express as
well as three newly discovered vulnerabilities. Install
now to protect your computer. This update includes the
functionality of all previously released patches.


System requirements Windows 95/98/Me/2000/NT/XP
This update applies to MS Internet Explorer, version
4.01 and later
MS Outlook, version 8.00 and later
MS Outlook Express, version 4.01 and later
Recommendation Customers should install the patch at the
earliest opportunity.
How to install Run attached file. Choose Yes on displayed
dialog box.
How to use You don't need to do anything after installing
this item.

Microsoft Product Support Services and Knowledge Base
articles can be found on the Microsoft Technical Support
web site. For security-related information about Microsoft
products, please visit the Microsoft Security Advisor web
site, or Contact Us.

Thank you for using Microsoft products.

Please do not reply to this message. It was sent from an
unmonitored e-mail address and we are unable to respond to
any replies.

-----------------------------------------------------------
---------------------
The names of the actual companies and products mentioned
herein are the trademarks of their respective owners.

Contact Us | Legal | TRUSTe
©2003 Microsoft Corporation. All rights reserved. Terms
of Use | Privacy Statement | Accessibility

 

[Nicholas]

Some devious person is "spoofing" Microsoft. The email message is
not from Microsoft and should be deleted immediately!

Microsoft never sends a file attachment with email. They will always
provide a link to a Microsoft web site.

Please take a moment to read the following article:

Information on Bogus Microsoft Security Bulletin E-mails
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/news/patch_hoax.asp

--
Nicholas

-----------------------------------------------------------------------------------

These seems to be a transmission for a possible trojan

and/or virus. Please confirm or deny. The email attempts
to look official from the Mircosoft corporation, but
realistically, as a graphic designer, it seems to be
lacking the true look. Also, it seems Microsoft would
NEVER ask to have a system update via email - its not
possible nor efficient - nor are there any related systems
to email lists. Just my ideas...please discuss.

Basil

HEADER:
Return-Path: <[email protected]>
Delivered-To: (e-mail address removed)
Received: (qmail 24126 invoked from network); 18 Sep 2003
22:48:36 -0000
Received: from defout.telus.net (HELO priv-
edtnes57.telusplanet.net) (199.185.220.240)
by pjn.net with SMTP; 18 Sep 2003 22:48:36 -0000
Received: from gbdos ([142.173.78.71]) by priv-
edtnes57.telusplanet.net
(InterMail vM.5.01.05.17 201-253-122-126-117-
20021021) with SMTP
id <20030918222737.WFIX24218.priv-
edtnes57.telusplanet.net@gbdos>;
Thu, 18 Sep 2003 16:27:37 -0600
FROM: "Microsoft Customer Support" <cemttxuhivv-
(e-mail address removed)>
TO: "User" <[email protected]>
SUBJECT: Last Microsoft Upgrade
Mime-Version: 1.0
Content-Type: multipart/mixed; boundary="ezdhzzjwqhsh"
Message-Id: <20030918222737.WFIX24218.priv-
edtnes57.telusplanet.net@gbdos>
Date: Thu, 18 Sep 2003 16:27:41 -0600

CONTENT:
Email rec'd:
Microsoft All Products | Support | Search |
Microsoft.com Guide
Microsoft Home


Microsoft User

this is the latest version of security update,
the "September 2003, Cumulative Patch" update which
resolves all known security vulnerabilities affecting MS
Internet Explorer, MS Outlook and MS Outlook Express as
well as three newly discovered vulnerabilities. Install
now to protect your computer. This update includes the
functionality of all previously released patches.


System requirements Windows 95/98/Me/2000/NT/XP
This update applies to MS Internet Explorer, version
4.01 and later
MS Outlook, version 8.00 and later
MS Outlook Express, version 4.01 and later
Recommendation Customers should install the patch at the
earliest opportunity.
How to install Run attached file. Choose Yes on displayed
dialog box.
How to use You don't need to do anything after installing
this item.

Microsoft Product Support Services and Knowledge Base
articles can be found on the Microsoft Technical Support
web site. For security-related information about Microsoft
products, please visit the Microsoft Security Advisor web
site, or Contact Us.

Thank you for using Microsoft products.

Please do not reply to this message. It was sent from an
unmonitored e-mail address and we are unable to respond to
any replies.

-----------------------------------------------------------
---------------------
The names of the actual companies and products mentioned
herein are the trademarks of their respective owners.

Contact Us | Legal | TRUSTe
©2003 Microsoft Corporation. All rights reserved. Terms
of Use | Privacy Statement | Accessibility

 

[Raymond Buck Brown]

I just received this same email. It is a scam. My
header is just as circuitus as yours. and Microsoft does
not send their updates out like that, especially if they
are unsolicited. Also, I am on Windows XP with the
automatic updated enabled (prompt mode) so there is no
need for Microsoft to send me updates via email.

One final clue. The email was sent to an address that I
have for a website. It is not an address that is
registered or "runs" a Microsoft product. Conclusion:
The email is definitely a scam.

Best Regards,

Raymond "Buck" Brown

-----Original Message-----
These seems to be a transmission for a possible trojan
and/or virus. Please confirm or deny. The email attempts
to look official from the Mircosoft corporation, but
realistically, as a graphic designer, it seems to be
lacking the true look. Also, it seems Microsoft would
NEVER ask to have a system update via email - its not
possible nor efficient - nor are there any related systems
to email lists. Just my ideas...please discuss.

Basil

HEADER:
Return-Path: <[email protected]>
Delivered-To: (e-mail address removed)
Received: (qmail 24126 invoked from network); 18 Sep 2003
22:48:36 -0000
Received: from defout.telus.net (HELO priv-
edtnes57.telusplanet.net) (199.185.220.240)
by pjn.net with SMTP; 18 Sep 2003 22:48:36 -0000
Received: from gbdos ([142.173.78.71]) by priv-
edtnes57.telusplanet.net
(InterMail vM.5.01.05.17 201-253-122-126-117-
20021021) with SMTP
id <20030918222737.WFIX24218.priv-
edtnes57.telusplanet.net@gbdos>;
Thu, 18 Sep 2003 16:27:37 -0600
FROM: "Microsoft Customer Support" <cemttxuhivv-
(e-mail address removed)>
TO: "User" <[email protected]>
SUBJECT: Last Microsoft Upgrade
Mime-Version: 1.0
Content-Type: multipart/mixed; boundary="ezdhzzjwqhsh"
Message-Id: <20030918222737.WFIX24218.priv-
edtnes57.telusplanet.net@gbdos>
Date: Thu, 18 Sep 2003 16:27:41 -0600

CONTENT:
Email rec'd:
Microsoft All Products | Support | Search |
Microsoft.com Guide
Microsoft Home


Microsoft User

this is the latest version of security update,
the "September 2003, Cumulative Patch" update which
resolves all known security vulnerabilities affecting MS
Internet Explorer, MS Outlook and MS Outlook Express as
well as three newly discovered vulnerabilities. Install
now to protect your computer. This update includes the
functionality of all previously released patches.


System requirements Windows 95/98/Me/2000/NT/XP
This update applies to MS Internet Explorer, version
4.01 and later
MS Outlook, version 8.00 and later
MS Outlook Express, version 4.01 and later
Recommendation Customers should install the patch at the
earliest opportunity.
How to install Run attached file. Choose Yes on displayed
dialog box.
How to use You don't need to do anything after installing
this item.

Microsoft Product Support Services and Knowledge Base
articles can be found on the Microsoft Technical Support
web site. For security-related information about Microsoft
products, please visit the Microsoft Security Advisor web
site, or Contact Us.

Thank you for using Microsoft products.

Please do not reply to this message. It was sent from an
unmonitored e-mail address and we are unable to respond to
any replies.

--------------------------------------------------------- --
---------------------
The names of the actual companies and products mentioned
herein are the trademarks of their respective owners.

Contact Us | Legal | TRUSTe
©2003 Microsoft Corporation. All rights reserved. Terms
of Use | Privacy Statement | Accessibility

.

 

[Bruce Chambers]

Greetings --

What you received is either a very common malicious hoax or the
output of a computer infected by one of several wide-spread, mass
emailing worms. The two most widely-known are:

W32.Gibe_mm
http://securityresponse.symantec.com/avcenter/venc/data/[email protected]

W32.Dumaru_mm
http://securityresponse.symantec.com/avcenter/venc/data/[email protected]

Microsoft never has, does not currently, and never will email
unsolicited security patches. At the most, if, and only if, you
subscribe to their security notification newsletter, they will send
you an email informing you that a new patch is available for
downloading.

Microsoft Policies on Software Distribution
http://www.microsoft.com/technet/treeview/?url=/technet/security/policy/swdist.asp

Information on Bogus Microsoft Security Bulletin Emails
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/news/patch_hoax.asp

Any and all legitimate patches and updates are readily available
at http://windowsupdate.microsoft.com/. (Notice that this is the true
URL, rather than the bogus one that may have been contained in the
email you received.) Any messages that point to any other source(s) or
claim to have the patch attached are bogus.


Bruce Chambers

--
Help us help you:



You can have peace. Or you can have freedom. Don't ever count on
having both at once. -- RAH


These seems to be a transmission for a possible trojan
and/or virus. Please confirm or deny. The email attempts
to look official from the Mircosoft corporation, but
realistically, as a graphic designer, it seems to be
lacking the true look. Also, it seems Microsoft would
NEVER ask to have a system update via email - its not
possible nor efficient - nor are there any related systems
to email lists. Just my ideas...please discuss.

Basil

HEADER:
Return-Path: <[email protected]>
Delivered-To: (e-mail address removed)
Received: (qmail 24126 invoked from network); 18 Sep 2003
22:48:36 -0000
Received: from defout.telus.net (HELO priv-
edtnes57.telusplanet.net) (199.185.220.240)
by pjn.net with SMTP; 18 Sep 2003 22:48:36 -0000
Received: from gbdos ([142.173.78.71]) by priv-
edtnes57.telusplanet.net
(InterMail vM.5.01.05.17 201-253-122-126-117-
20021021) with SMTP
id <20030918222737.WFIX24218.priv-
edtnes57.telusplanet.net@gbdos>;
Thu, 18 Sep 2003 16:27:37 -0600
FROM: "Microsoft Customer Support" <cemttxuhivv-
(e-mail address removed)>
TO: "User" <[email protected]>
SUBJECT: Last Microsoft Upgrade
Mime-Version: 1.0
Content-Type: multipart/mixed; boundary="ezdhzzjwqhsh"
Message-Id: <20030918222737.WFIX24218.priv-
edtnes57.telusplanet.net@gbdos>
Date: Thu, 18 Sep 2003 16:27:41 -0600

CONTENT:
Email rec'd:
Microsoft All Products | Support | Search |
Microsoft.com Guide
Microsoft Home


Microsoft User

this is the latest version of security update,
the "September 2003, Cumulative Patch" update which
resolves all known security vulnerabilities affecting MS
Internet Explorer, MS Outlook and MS Outlook Express as
well as three newly discovered vulnerabilities. Install
now to protect your computer. This update includes the
functionality of all previously released patches.


System requirements Windows 95/98/Me/2000/NT/XP
This update applies to MS Internet Explorer, version
4.01 and later
MS Outlook, version 8.00 and later
MS Outlook Express, version 4.01 and later
Recommendation Customers should install the patch at the
earliest opportunity.
How to install Run attached file. Choose Yes on displayed
dialog box.
How to use You don't need to do anything after installing
this item.

Microsoft Product Support Services and Knowledge Base
articles can be found on the Microsoft Technical Support
web site. For security-related information about Microsoft
products, please visit the Microsoft Security Advisor web
site, or Contact Us.

Thank you for using Microsoft products.

Please do not reply to this message. It was sent from an
unmonitored e-mail address and we are unable to respond to
any replies.

-----------------------------------------------------------
---------------------
The names of the actual companies and products mentioned
herein are the trademarks of their respective owners.

Contact Us | Legal | TRUSTe
©2003 Microsoft Corporation. All rights reserved. Terms
of Use | Privacy Statement | Accessibility