Lately, I've been getting quite a number of annoying spam-like emails with large executable attachments, with vague suggestions that "you really should run this." So I'm supposed to run that "Windows Security Patch" executable sent from a stranger by email? Right.
More puzzling - these emails are NOT sent from the typical [blah123]@yahoo.com or spam-friendly-nation (*.cn, *.kr, *.ru) domains that spammers normally use. Is there some sort of virus loose that hijacks the email programs of innocent computer users with poorly-protected machines and uses them to send copies of itself?
(continued from main journal)
Received: from livejournal.com ([184.108.40.206]);
Fri, 2 Aug 2002 06:21:15 -0700
Received: from sccrmhc02.attbi.com (sccrmhc02.attbi.com [220.127.116.11])
by livejournal.com (Postfix) with ESMTP id 9DC1C33DBF
for <email@example.com>; Fri, 2 Aug 2002 06:21:10 -0700 (PDT)
Received: from Xjqnoi ([18.104.22.168]) by sccrmhc02.attbi.com
(InterMail vM.4.01.03.27 201-229-121-127-20010626) with SMTP
for <firstname.lastname@example.org>; Fri, 2 Aug 2002 13:21:05 +0000
From: jgess <email@example.com>
Subject: W32.Elkern removal tools
Date: Fri, 2 Aug 2002 13:21:10 +0000
X-OriginalArrivalTime: 02 Aug 2002 13:21:15.0851 (UTC) FILETIME=[7AD1F1B0:01C23A27]
Mcafee give you the very W32.Elkern removal tools
W32.Elkern is a very dangerous virus that can infect on Win98/Me/2000/XP.
For more information,please visit http://www.Mcafee.com
This is the fourth time this week I've received an unsolicited executable ... has anybody else dealt with this, or did I just recently provoke the enmity of a determined-but-none-too-bright cracker-wannabe?