Strange e-mails coming, appear to be viruses


#1

They’re all really obvious, but I’m not sure how they’re coming in. They typically look like this:

Dear user name,

You have successfully updated the password of your domain account.

If you did not authorize this change or if you need assistance with your account, please contact domain customer service at: administrator@domain

Thank you for using domain!
The domain Support Team

+++ Attachment: No Virus (Clean)
+++ domain Antivirus - www.domain.com

We also receive ones that are slightly different, and all have attachments (likely virus/worm)

Where are these coming from?

::


#2

You can look into the message header of the mail; there should be a trail of servers, although they might be fake.

TorbenGB
Try out DreamHost with a free WebIDChoose a plan!


#3

Ya I don’t know. I’m getting like 5+ a day now.

I found this in the header… but I’m not sure what to do with it…

216-197-154-34.sktn.hsdb.sasknet.sk.ca

::


#4

My sister who is on a DH account is also getting these. I am on a DH account and not getting them, either are any of my friends who are using DH. It may be just a coincidence that you (and my sister) happened to enter your email at a site which had their member info stolen. From there, it’s easy to generate these fake emails with auto domain entries into certain fields. The attachements are definite virii and should be deleted immediately. Is everyone at your domain getting these?


#5

Just 2 (of 6) address are getting them.

Very strange.

::