Письмо пришло -
внутри Update-KB1031-x86.zipX-AntiVirus: Checked by Dr.Web [version: 4.33, engine: 4.33.4.07270, virus records: 148102, updated:
14.10.2006]
Return-path: <[email protected]>
Received: from [84.204.212.10] (port=2256 helo=petroff)
by mx21.mail.ru with esmtp
id 1GaQKc-00059E-00
for ХХХ@bk.ru; Thu, 19 Oct 2006 0942 +0400
Received-SPF: none (mx21.mail.ru: 84.204.212.10 is neither permitted nor denied by domain of
selectplans.com) client-ip=84.204.212.10; [email protected]; helo=petroff;
Message-Id: <[email protected]>
Received: (qmail 1489 invoked by uid 0); Thu, 19 Oct 2006 09:19:31 -0000)
Received: from unknown (HELO ggl) (192.168.0.202)
by 192.168.0.102 with SMTP; Thu, 19 Oct 2006 09:19:31 -0000
Date: Thu, 19 Oct 2006 09:09:31 +0400
From: [email protected]
Mime-Version: 1.0
To: ХХХ@bk.ru
Subject: Mail server report.
Content-Type: multipart/mixed;
boundary="-----------51EFFB6F97664C1E"
X-Spam: Not detected
Mail server report.
Our firewall determined the e-mails containing worm copies are being sent from your computer.
Nowadays it happens from many computers, because this is a new virus type (Network Worms).
Using the new bug in the Windows, these viruses infect the computer unnoticeably.
After the penetrating into the computer the virus harvests all the e-mail addresses and sends the
copies of itself to these e-mail
addresses
Please install updates for worm elimination and your computer restoring.
Best regards,
Customers support service
Complete scanning result of "Update-KB1031-x86.zip", received in VirusTotal at 10.19.2006, 13:17:27 (CET).
Antivirus Version Update Result
AntiVir 7.2.0.30 10.19.2006 TR/Dldr.Stration.C
Authentium 4.93.8 10.19.2006 W32/Downloader.AHQM
Avast 4.7.892.0 10.19.2006 Win32:Warezov-ME
AVG 386 10.19.2006 I-Worm/Stration
BitDefender 7.2 10.19.2006 no virus found
CAT-QuickHeal 8.00 10.19.2006 no virus found
ClamAV devel-20060426 10.19.2006 Worm.Stration.JB
DrWeb 4.33 10.19.2006 Win32.HLLM.Limar.based
eTrust-InoculateIT 23.73.28 10.19.2006 Win32/Stration!ZIP!Worm
eTrust-Vet 30.3.3143 10.19.2006 Win32/Stration!ZIP!generic
Ewido 4.0 10.19.2006 no virus found
Fortinet 2.82.0.0 10.19.2006 no virus found
F-Prot 3.16f 10.19.2006 security risk named W32/Downloader.AHQM
F-Prot4 4.2.1.29 10.19.2006 W32/Downloader.AHQM
Ikarus 0.2.65.0 10.19.2006 Email-Worm.Win32.Warezov.dc
Kaspersky 4.0.2.24 10.19.2006 Email-Worm.Win32.Warezov.dc
McAfee 4876 10.18.2006 no virus found
Microsoft 1.1603 10.19.2006 no virus found
NOD32v2 1.1814 10.19.2006 Win32/Stration.HW
Norman 5.90.23 10.19.2006 no virus found
Panda 9.0.0.4 10.19.2006 no virus found
TheHacker 6.0.1.101 10.19.2006 no virus found
UNA 1.83 10.18.2006 no virus found
VBA32 3.11.1 10.19.2006 no virus found
VirusBuster 4.3.7:9 10.19.2006 Trojan.DL.Agent.QLU
Aditional Information
File size: 12506 bytes
MD5: 013ce91aa8f303aaae44b1f114adbed8
SHA1: e91c44c26f4eb167b1b0ddfb2475cc600ec13143
Для тех кто не знает инглиша - в письме речь о том, что с вашего компа приходят письма с вирусами, так как он инфицирован неким сетевым вирусом, и предлагается установить обновление, которое его прибьёт