Either your PC has the mydoom virus or, more likely, a friend or associate with your email address in their address book has picked up the virus. It's common to see email "cloning" where the address line indicates the mail originate from a blameless third-party.
Have you scanned your pc with the latest virus software updates?
|
Thanks ND. Hopefully not this PC infected as we run Norton with auto update. Will force a manual update now and do a system sweep.
The second option is more likely...but who do we know who can afford to stay in a hotel?
M.M
|
The second option is more likely...but who do we know who can afford to stay in a hotel?
You're asking the wrong person......
|
|
|
M.M
Apparently MyDoom also scans the IE cache of infected machines to find likely-looking urls and turns them into email addresses. Someone with an infected machine has been booking a holiday at Moathousehotels and hasn't cleared the cache. I doubt yours is infected as you'd have noticed the Internet connection grind to a halt while it sends all those emails.
Chris
|
Some skumbag has got very clever with Mydoom. It seems to have a facility to change the cloned address line almost infinitely. So if your e-mail is something like inbox@trustytom.com, you will receive thousands of mailwashed bounced mydoom viruses addressed to tom@trustytom.com; dick@trustytom.com; harry@trustytom.com; sally@trustytom.com and so on until you are driven round the twist.
HJ
|
|
|
|
Hello David
I had the same thing happen to me at the weekend except the incoming mail was from Tesco.com.
If you are seeking free removal tools for MyDoom A and B variants there is one on the Norton site. Or try Bitdefender.com they have free removal tools for all the latest viral offerings and a very good free anti virus programme with free live updates.
As ever
Mark
|
Removing MyDoom is the first and very necessary stage. But the next problem is the number of bounced e-mails an well known mail address can get. All viruses cleaned out. But still thousands of e-mails bombarding the box. That is the intention of MyDoom. To overload the system and overload mailboxes. It's why the BBC Watchdog e-mail address has had to be suspended. But if anyone knows how to stop bounced e-mails hitting your mailbox and mailwash reports being received, then that would be a huge help.
HJ
|
HJ,
How do you keep getting these viruses ?
I get a great deal of e-mail from people I don\'t know, but where I need to read it. A fair number have virues or other nasties of one form or another. A combination of care, up to date viruses scanners and using a remote webmail service with good security stop the problem.
Which e-mail service do you use ? Perhaps you\'re using a webmail account where the servers are not well protected against mail-carried nasties ??
I think I\'ve only been caught out once in about 5 years.
M.
|
Someone is spoofing your email address and sending out the MyDoom virus, this then gets bounced back to your server (unfortunatly) undelivered. There is no way to stop the email from being bounced back, you just have to find an automated way to delete the emails when they appear in your inbox.
It will all depend on how you are recieving mail (downloading through outlook ? using a mail server ?), that will decide on how you get rid of the offending emails.
Just try searching google for MyDoom + Spoofing + email + the email system you using and hopefully you will get lucky.
Or if you are lucky enough to have access to technical support see if they can automate the delete process.
Some other things that the MyDoom virus does is to install a key logger (credit cards numbers) and a relay to allow spammers to send spam through your computer. All been done before in the SoBig virus.
|
check out vil.nai.com/vil/content/v_100983.htm
there is list of names the mydoom virus uses (See below), as long as your domain does not have these already allocated then you can safely delete any that contain (name below)@(your domain).com
sandra, linda, julie, jimmy, jerry, helen, debby, claudia, brenda, anna, alice, brent, adam, ted, fred, jack, bill, stan, smith, steve, matt, dave, dan, joe, jane, bob, robert, peter, tom, ray, mary, serg, brian, jim, maria, leo, jose, andrew, sam, george, david, kevin, mike, james, michael, john, alex.
|
|
|
|
|
Assuming you're not using webmail, could you filter incoming mail so that anything with an attachment bearing the suspect names or suffixes (.zip seems common) goes to a separate mail folder? At least that way you'll be able to see what mail is not virus-laden.
|
|
|
|
|
|
|
