Discussion in 'malware problems & news' started by Franklin, May 7, 2010.
iTunes_certificate_247.exe - Result: 15/41 (36.59%)
I got two of them in my inbox last evening but NOD32 deleted them!
Must be pretty rampant atm.
I just checked my Yahoo mail account and got another one as well.
But I really don't mind getting, running and uploading em if required.
Yes my ISP is a Partner with Yahoo mail so that's where they come from, but doesn't Yahoo use Norton AV as there scanner or has it changed?
EDIT: Yes they do! http://ca.antispam.yahoo.com/virus
Yep, Yahoo mail attachments are scanned with Nortons but it doesn't have the defs as yet and I guess the rogue authors know this and make sure it does bypass at least Nortons for a while.
When Norton does stop me getting the download then I forward the email to my ISP account to grab it from there.
And a day later Nortons grabs it.
Thanks for the update Franklin Alittle to late for the one's that only depend on there web mail security!
Last night I got 2 copys of the iTunes Gift Certificate email, one my inbox pop account and one in my Gmail imap account. The copy on the Gmail server contained contained a virus or a suspicious attachment. It was therefore not fetched from your account carver(at)inbox(dot)com and has been left on the server.. My AV..Avira premium It was a coincidence or not, I really don't think it was coincidence. Avira's Guard was deactivated (red icon); online protection disabled (red icon); last update (yellow icon) showed up to date. I couldn't get Avira started. I tryed in safe mode, I ran the installer again..it worked. I ran a sfc/scandisk I copyed from my Xp Home disk a whole lot of dll files, then ran a auto checkdisk (5 step). What bothers me is a virus or a suspicious attachment wasnt detected by inbox at all .
Carver, did you open the attachment that wasn't detected?
Could be the reason why Avira had been disabled?
May pay to do a quick scan with Malwarebytes, updated after install of course.
No, I don't click on spam. Even someone that might be named similar to some one that I used to know, I would look at the emails raw sorce addresses first and I might email or call them to verify.
Separate names with a comma.