rustock infection

Discussion in 'ESET Smart Security' started by maaster, Jan 25, 2012.

Thread Status:
Not open for further replies.
  1. maaster

    maaster Registered Member

    Joined:
    Aug 12, 2011
    Posts:
    98
    I received a mail from noreplyantiabuse..........in that they are mentioning something as rustock infection....i do not understand anything........
    I have attached the contents of mail..
    my ESS 5 is up to date and i performed scan......no infection!!!!
    some one help me....whether i can ignore this?
     

    Attached Files:

  2. dwomack

    dwomack Eset Staff Account

    Joined:
    Mar 2, 2011
    Posts:
    588
    Submit the file to ESET labs for investigation:

    http://kb.eset.com/esetkb/index?page=content&id=SOLN141&ref=wsf

    This was a fairly well-known botnet that ran from 2006-2011 so ESET is more than well aware of it but new samples are always welcome.

    If you haven't downloaded the file, you're likely not infected, which is why ESET found no infections.
     
  3. Marcos

    Marcos Eset Staff Account

    Joined:
    Nov 22, 2002
    Posts:
    14,374
    If there was no binary file attached consider it spam. The Indian domain listed in the email is no longer active so it's impossible to tell what was there.
     
  4. maaster

    maaster Registered Member

    Joined:
    Aug 12, 2011
    Posts:
    98
    thanks for your replies........
    All domains in that e mail are active and that mail came from my internet service provider...........this only makes me feel that my system may be affected.......and then i don't know which file is causing this inorder to submit to ESET........
     
  5. stratoc

    stratoc Guest

    See if you can log directly into all your e mail accounts, if you can change passwords. I cannot see how they know your system is infected, they usually just close the email account and set you up a new one.
     
  6. agoretsky

    agoretsky Eset Staff Account

    Joined:
    Apr 4, 2006
    Posts:
    4,032
    Location:
    California
    Hello,

    The data on the Rustock botnet ranges from several months to several years old now.

    It could be that this notification is based on very old data, such as an IP address that used to be assigned to an different computer several years ago and is now assigned to your computer by your ISP.

    You can contact your ISP's technical support department to ask them about the email if you are still concerned.

    Regards,

    Aryeh Goretsky
     
Thread Status:
Not open for further replies.