Unusual Message from Symantec?

  • Thread starter Thread starter Jack Gillis
  • Start date Start date
J

Jack Gillis

I have posted this question in another group I now realized was probably
not an appropriate one so I am goint to try it here hoping it fits
in. ------

Like the fireman on Penny Lane, I try to keep a clean machine by
running, at least once a week, NAV and SpyBot. The latest run was this
morning and every thing came up clean.

Yet, a few minutes ago when I checked my e-mail via OE6 on Earthlink, I
received the following message from
(e-mail address removed) whose subject
was 'Content Violation:'

Content violation found in email message.
From: (e-mail address removed)
To: (e-mail address removed)

File(s): document.pif

Matching filename: *.pif

----end of message--.


The To: doesn't appear anywhere going back a long way in my Sent Items
folder. Nor do I have any idea who or what wilkinsonbuilder is. There
is nothing like it in my address book or favorites.


Has anyone experienced this sort of thing? And, should I be concerned?
I've never received anything like this from Symantec before.

I have suspected for a few days now that my address is on someone's
machine that has been hacked for I've been getting a lot of Spam at that
address even though I've not used it in a while. I've been using
Earthlink for email and ng's for about 2 weeks. As you can see, I hope,
my ng address is not real.

Thank you for your thoughts on this.
 
I would have deleted it as soon as I saw the web address. It was probably a
virus itself.
 
I would say that was a "bogus" email. I have received them from
"microsoft", "Paypal", and "Norton". I eamil each of the real
companies and got the same response. It is bogus email.

I still occassionally get them still.

The delete button gets a good workout.

After clicking the first time on a "microsoft" patch and getting the
Swen 32 virus. I don't mess around with anything I don't recognize as
real.

Best regards
LMH
 
Some additional information is that a file with a .pif extention is an executable in that it can run and do damage if you are to open it. I had an email with an attachment .pif and it was a virus.

blaster452
 
unless you are on a symantec contact me please list they
will not contact you and they will definately not send an
attachment. by the way the new viruses will scan an entire
computer for email address's and not just outloook express.
so for all those that forward and don't copy and paste
,,,,thanks for the keeping the virus chain going. look at
all those email address's in the email properties. yum yum.
when you see over 50 address's in an email it just makes
you sick.
 
Your antivirus software should have picked this up immediately as it is a
known blaster virus since last October.
 
blaster452 said:
Some additional information is that a file with a .pif extention is
an executable in that it can run and do damage if you are to open it.
I had an email with an attachment .pif and it was a virus.

blaster452
Click to expand...

There was no attachment in this case. Just the message itself.
 
Jack said:
Yet, a few minutes ago when I checked my e-mail via OE6 on Earthlink, I
received the following message from
(e-mail address removed) whose subject
was 'Content Violation:'

Content violation found in email message.
From: (e-mail address removed)
To: (e-mail address removed)
Click to expand...

NAV has not yet caught up with the fact that these viruses are all
picking an address from the infected machine's address book, to 'spoof'
as the 'From' of the message. So that they are sending back warnings to
that address - the one machine that certainly did *not* send it. All
you can do is delete the message, and swear at Symantec
 
Someone out there has your address in their address book, inbox,
whatever, and a mass-mailing worm/virus they are infected with spoofed
(forged) your address to make it appear the message was sent from you.

Steve
 
Steve said:
Someone out there has your address in their address book, inbox,
whatever, and a mass-mailing worm/virus they are infected with spoofed
(forged) your address to make it appear the message was sent from you.
Click to expand...

I know what spoofing is and I suspected that was the case. What got my
attention was your use of the word 'forged.'
You are not, perhaps, a Robin Hobb reader are you? In her two Farseer
trilogies, she introduces character who have been 'forged' and lost all
sense of themselves as humans.
Steve

Jack Gillis wrote:
Click to expand...

much snipped.
 
Once again I get the chance to thank you and do so.

I thought that might have been the case -- I've been spoofed!
 
No, haven't read any Robin Hobb.

I am not the first to use the term forged as a synonym for spoofed with
regards to mass-mailing worms.

Steve
 
Back
Top