Virus upozorenja – E-mail Predmeti – IRS Obavijest – Važne informacije iz IRS



Vidio sam par tih e-mailova i danas želio dati komentar samo upozoriti ljude da su to lažna i da ne bi trebali slijediti vezu predložio u e-mail. NADAM nitko ne čita ovo spada za nju, ali “porez na softversko ažuriranje” da su pritom je virus. (ŠOK!) Tek nešto više od pola prodavač antivirusni trenutno ga otkriju.

Čitajte na za detalje o tijelu poruke…


I ran it through VirusTotal and it’s a variant of mytob according to some antivirus vendors.

Here’s the body:

Dragi porezni obveznik,

As part of new requirements from the IRS, all U.S. Citizens are required by law to update their computers with new tax software.

To begin the update, posjetite http://65.15951047 and click “Otvoreno” when asked how to begin the download.

After doing so, no further action is required on your part.

Thank you for your cooperation,
IRS.GOV Agent #7[3

=======================

The only variation in the text between messages seems to be the last line...

IRS.GOV Agent #0[3

is what I saw in another message.

Both messages seem to be from the same machine... here's the initial received header.

Primljen: from Exploit ([92.48.88.145]) by domainremoved (8.13.1/8.13.1) with SMTP id m24LIbv9002684 for
; Tue, 4 More 2008 14:18:39 -0700

Gee, looks like a cool uberhacker calling their machine “Iskorištavati” —better look out for them….

Sender addresses seem to be quasi-randomname+2-3numbers@irs.org (I wonder why they didn’t just try to spoof irs.gov?)

The address should not be visited obviously without the biohazard suit…, it contains a file program.exe served up in an frameset which means that on visiting the page there is a file popup to download/run.

The http address resolves to a machine at ip address 65.243.100.199 – I can’t seem to get a reverse lookup on itno ptr record?

Kao i uvijek, proceed with caution when dealing with links in emails or files attached to emails.

Povezani postovi

Blog Traffic Exchange Povezani postovi
  • Windows ažuriranja za veljaču mogla postaviti rekord Tu bi mogao biti rekordan broj sigurnosnih propusta rješavati sljedeći tjedan, kada Microsoft releases jedan od očekivanog desetak ažuriranja za svoje Windows i Office proizvodima. (Prema Brian Krebs na Fix sigurnosti.) Utorak 13. veljače je datum zakazana za oslobađanje promjenama. Jedan kritički udpate će utjecati na Microsoft-a ......
  • Dva nova Windows iskorištava u divljini | WordPad Text Converter | Internet Explorer 7 XML parser U svjetlu ogroman patch utorak, Microsoft je dva nova požara se bori. Postoji očito "ograničene i ciljane" napadi mana s komponente Tekst konverter Wordpad. Pogođeni sustavi su Windows 2000 SP4, XP SP2 do, Server 2003 SP1 i 2. Vista je ......
  • Ažuriranje za sustav Windows XP SP2 serijski broj Intelliadmin objavljena ovaj ranije danas ... sa svim problemima neki ljudi imali s Genuine Advantage obavijesti da je njihova kopija sustava Windows ne može biti legitiman (Mnogo je razloga za to ...) možda će biti potrebno kupiti novu kopiju sustava Windows i to bi bilo štetno da imaju ......
Blog Traffic Exchange Povezane stranice
  • Pregled Windows Live Writer Kada pronađete alat koji čini život lakšim, ne postoji ništa uzbudljivije. Potreba za korporacije pojednostaviti i sistematizirati svoje procese ima veze s radom pametan i uzimanje prednost od stvari koje omogućuju radnicima da postignu svoje ciljeve bez potrebe da rade sasvim kao tvrdo. Jedan ......
  • An Early Visit with the Tax Man and Weekend Reading Yesterday was the deadline to pay estimated federal income taxes. Although I have taxes withheld from my paychecks, we always end up owing money at tax time. Sometimes the amount we owe puts us close to or in the underpayment penalty range. My normal method of solving that problem is......
  • Ping.fm for webOS: Update all your Social Networks from your Palm Phone Fed up of having to update each of your social networks one-by-one? Too many passwords to remember? Ping.fm is a cool application which can update all your social networks in one go. All you need to do is configure your social networks with ping.fm and it takes care of syncing......
PDF24    Pošalji članak kao PDF   

Slične postove


Pogledajte što se dogodilo taj dan u povijesti iz bilo BBC Wikipedia
Traži:
Ključne riječi:
Amazon Logo

Komentari su zatvorene.


Prebacite se na našim stranicama mobitel