email virus messages with camaroz28dotcom in subject line
Thread Starter
Registered User
Joined: Mar 2002
Posts: 0
From: Lincoln, IL
email virus messages with camaroz28dotcom in subject line
im having a problem that i did not know was occuring with klez32 sending email messages at random with subject line: RE: CamaroZ28 Dot Com. All rights reserved.
what is causing this and why is it with this foum name in the subject line ? i have gotten a threatening message from a military addy that its sent to twice now and threatened to have law action taken against me, this is not a good thing !!!!!!!
help?
what is causing this and why is it with this foum name in the subject line ? i have gotten a threatening message from a military addy that its sent to twice now and threatened to have law action taken against me, this is not a good thing !!!!!!!
help?
Admin Emeritus
Joined: Dec 1997
Posts: 11,157
From: Nashville, TN area
The person that received the e-mail w/virus is obviously unfamilair with how the Klez vuris works and any reports of legal threats carry absolutely no weight.
You getting in trouble for e-mail that you never sent (since the virus spoofs the return address, among other things..see below) would be like me getting accused of killing OJ's wife for wearing an OJ mask on Halloween.
Tell whoever is accusing YOU of sending that e-mail to look at the header information to see who REALLY sent it. Since it is a military use only address, the sending e-mail address may be a military address as well, meaning that the virus possibly came from within their own system. The reason that it said "CamaroZ28 Dot Com" in the subject line is because the virus selects a random subject when it sends itself out. We have no idea how it got to be in the list of subjects to use.
Read all about it here:
http://securityresponse.symantec.com...ez.gen@mm.html
Pay particular attention to the e-mail spoofing portion...
If they still give you a hard time after that, go ahead and tell them to check with their IT department or whatever and they will know that you are not at fault.
Don't sweat it. You didn't do anything wrong. Neither did we, for that matter...only the person who wrote the virus is accountable for anything.
You getting in trouble for e-mail that you never sent (since the virus spoofs the return address, among other things..see below) would be like me getting accused of killing OJ's wife for wearing an OJ mask on Halloween.
Tell whoever is accusing YOU of sending that e-mail to look at the header information to see who REALLY sent it. Since it is a military use only address, the sending e-mail address may be a military address as well, meaning that the virus possibly came from within their own system. The reason that it said "CamaroZ28 Dot Com" in the subject line is because the virus selects a random subject when it sends itself out. We have no idea how it got to be in the list of subjects to use.
Read all about it here:
http://securityresponse.symantec.com...ez.gen@mm.html
Pay particular attention to the e-mail spoofing portion...
Some variants of this worm use a technique known as "spoofing." If so, the worm randomly selects an address that it finds on an infected computer. It uses this address as the "From" address that it uses when it performs its mass-mailing routine. Numerous cases have been reported in which users of uninfected computers received complaints that they sent an infected message to someone else.
For example, Linda Anderson is using a computer that is infected with W32.Klez.E@mm; Linda is not using an antivirus program or does not have current virus definitions. When W32.Klez.gen@mm performs its emailing routine, it finds the email address of Harold Logan. It inserts Harold's email address into the "From" portion of an infected message that it then sends to Janet Bishop. Janet then contacts Harold and complains that he sent her an infected message, but when Harold scans his computer, Norton AntiVirus does not find anything--as would be expected--because his computer is not infected.
If you are using a current version of Norton AntiVirus and you have the most recent virus definitions, and a full system scan with Norton AntiVirus set to scan all files does not find anything, you can be confident that your computer is not infected with this worm.
For example, Linda Anderson is using a computer that is infected with W32.Klez.E@mm; Linda is not using an antivirus program or does not have current virus definitions. When W32.Klez.gen@mm performs its emailing routine, it finds the email address of Harold Logan. It inserts Harold's email address into the "From" portion of an infected message that it then sends to Janet Bishop. Janet then contacts Harold and complains that he sent her an infected message, but when Harold scans his computer, Norton AntiVirus does not find anything--as would be expected--because his computer is not infected.
If you are using a current version of Norton AntiVirus and you have the most recent virus definitions, and a full system scan with Norton AntiVirus set to scan all files does not find anything, you can be confident that your computer is not infected with this worm.
Don't sweat it. You didn't do anything wrong. Neither did we, for that matter...only the person who wrote the virus is accountable for anything.
Thread Starter
Registered User
Joined: Mar 2002
Posts: 0
From: Lincoln, IL
yeah i understand that no parties(this forum, me or the guy who is threatening me) is responsible for this, i just having a hard time explaining it to him even though i shouldnt have to
thanks!
R
thanks!
R
Thread
Thread Starter
Forum
Replies
Last Post
ChrisFrez
CamaroZ28.Com Podcast
1
Dec 15, 2014 03:09 PM