Loading ...
Sorry, an error occurred while loading the content.

Virus scan your PC's dude!

Expand Messages
  • Franki
    Hi Ed (and everyone), Posing to CIGHTML for education purposes.. and because many of you are receiving the spam also. Ed, you need to run a virus scanner and
    Message 1 of 1 , Dec 3, 2011
    • 0 Attachment
      Hi Ed (and everyone),

      Posing to CIGHTML for education purposes.. and because many of you are
      receiving the spam also.


      Ed, you need to run a virus scanner and change all of your passwords
      immediately.. either you have a virus or something or one of your
      accounts has been hacked and you are spreading spam around the net
      liberally.

      The first address in your headers is this one:
      [139.195.47.65] by web112701.mail.gq1.yahoo.com via HTTP; Fri, 02

      Which means the IP address 139.195.47.65 was used to send the email to
      one of yahoo's webmail servers. (meaning it's most likely your yahoo
      account has been hijacked)

      Using this http://ip-lookup.net/index.php we can see that the owner of
      this IP is as follows:

      % [whois.apnic.net node-1]
      % Whois data copyright terms http://www.apnic.net/db/dbcopyright.html

      inetnum:139.192.0.0 <http://ip-lookup.net?139.192.0.0> -139.195.255.255 <http://ip-lookup.net?139.195.255.255>
      netname: BM-ID
      descr: PT. First Media,Tbk
      descr: Broadband Internet Service
      descr: Citra Graha Building 4th Floor
      descr: Jl. Gatot Subroto Kav 35-36
      descr: Jakarta - Indonesia
      country: ID
      admin-c: MA1-AP
      tech-c: RS143-AP
      remarks: Spam and Abuse send to:
      remarks: abuse@...,abuse@...
      mnt-by: MNT-APJII-ID
      mnt-lower: MAINT-ID-BM
      mnt-irt: IRT-BM-ID
      status: ALLOCATED PORTABLE
      changed: hm-changed@... 20110330
      changed: hostmaster@... 20111006
      source: APNIC


      So long story short, if your provider is First media broadband, or a reseller thereof, you should check all of your computers for a virus and change all of your passwords.


      If you don't have anything to do with that provider, you should still check all of your computers and change all of your passwords. :-)

      In summary, check your PC's for viruses and change your passwords. This is a really good tool we use for virus cleaning of infected machines at the uni:
      http://support.kaspersky.com/faq/?qid=208282173
      tis free.


      cheers

      Franki





      [Non-text portions of this message have been removed]
    Your message has been successfully submitted and would be delivered to recipients shortly.