Find the answer to your Linux question:
Results 1 to 8 of 8
Hello! I just wanted to alert everyone that I received a bogus email this morning from the ICS monitoring team. I was suspicious because there were lots of English mistakes, ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #1
    Linux Enthusiast Manchunian's Avatar
    Join Date
    Dec 2007
    Location
    France but my heart stays in Britain
    Posts
    675

    BE WARNED! ICS Virus!


    Hello!

    I just wanted to alert everyone that I received a bogus email this morning from the ICS monitoring team. I was suspicious because there were lots of English mistakes, because the return address was oddie69j@jcresearch.com, and also because I couldn't see why I would be a target of such a letter . The email contains an executable, which I opened using Wine, to see if it would work (yes, I did do this on purpose! I was quite prepared to re-install my system if necessary!), but it produces the following error:

    Code:
    err:seh:setup_exception_record stack overflow 348 bytes in thread 0009 eip 0040dd12 esp 002411d4 stack 0x240000-0x241000-0x340000
    However, if you run this file on a Windows machine, you will be infected with a root kit virus. Here is the message:

    Your internet access is going to get suspended

    The Internet Service Provider Consorcium was made to protect the rights of software authors, artists.
    We conduct regular wiretapping on our networks, to monitor criminal acts.

    We are aware of your illegal activities on the internet wich were originating from

    You can check the report of your activities in the past 6 month that we have attached. We strongly advise you to stop your activities regarding the illegal downloading of copyrighted material of your internet access will be suspended.

    Sincerely
    ICS Monitoring Team
    Distribution: Archlinux
    Processor: 3 x Amd 64 bit
    Ram: 4 GB
    Graphics card: Nvidia GeForce 9800 GT

  2. #2
    Administrator jayd512's Avatar
    Join Date
    Feb 2008
    Location
    Kentucky
    Posts
    5,025

    Thumbs up

    Thanks for the heads up, Manchunian!

    I feel pretty safe now-a-days (Finally Windows free), but having this type of info is still a good thing to be able to pass on to friends and family.

    Thanks again!!!
    Jay

    New users, read this first.
    New Member FAQ
    Registered Linux User #463940
    I do not respond to private messages asking for Linux help. Please keep it on the public boards.

  3. #3
    Linux Enthusiast Manchunian's Avatar
    Join Date
    Dec 2007
    Location
    France but my heart stays in Britain
    Posts
    675
    Nice to hear from you again jayd. I'm afraid I've been very absent from Linux Forums for the past few weeks as work is taking over my life!! Have I been missing anything?
    Yeah, I agree: it's important to report this sort of stuff - it's the only way to beat these bastards! I might send an email to the return address.
    Distribution: Archlinux
    Processor: 3 x Amd 64 bit
    Ram: 4 GB
    Graphics card: Nvidia GeForce 9800 GT

  4. $spacer_open
    $spacer_close
  5. #4
    Trusted Penguin Dapper Dan's Avatar
    Join Date
    Oct 2004
    Location
    The Sovereign State of South Carolina
    Posts
    4,630
    It's just not fair. All the Windows users get to have all the fun. Even with wine, we can't get the same horrific effects of the viruses they get to contend with.
    Linux Mint + IceWM Registered: #371367 New Members: click here

  6. #5
    Linux Enthusiast Manchunian's Avatar
    Join Date
    Dec 2007
    Location
    France but my heart stays in Britain
    Posts
    675
    I know! I mean, I was actually asking for it! I still didn't get infected!
    Distribution: Archlinux
    Processor: 3 x Amd 64 bit
    Ram: 4 GB
    Graphics card: Nvidia GeForce 9800 GT

  7. #6
    Linux Guru
    Join Date
    Nov 2007
    Location
    Córdoba (Spain)
    Posts
    1,513
    Quote Originally Posted by Manchunian View Post
    I know! I mean, I was actually asking for it! I still didn't get infected!
    However, next time I'd use wine under an alternative, empty, user account

    If you feel that deceived you could try to run it under ReactOS, or if you own a legal copy of windows you can install it on a virtual machine

  8. #7
    Linux Enthusiast Manchunian's Avatar
    Join Date
    Dec 2007
    Location
    France but my heart stays in Britain
    Posts
    675
    i92guboj - you're absolutely right! That was stupid of me not to think of that!
    Distribution: Archlinux
    Processor: 3 x Amd 64 bit
    Ram: 4 GB
    Graphics card: Nvidia GeForce 9800 GT

  9. #8
    Linux Guru
    Join Date
    Nov 2007
    Location
    Córdoba (Spain)
    Posts
    1,513
    Quote Originally Posted by Manchunian View Post
    i92guboj - you're absolutely right! That was stupid of me not to think of that!
    Nah hehe, it's always in the easiest thing where we fail. After all, we're just humans

    Most times it's social engineering and simple errors which compromise a machine, that is, assuming that your OS is sane enough.

    Cheers

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •