[Deceit]

Recently many members have been complaining of the Pbnation.com mailer sending e-mail with attachments containing a virus.

The body of the e-mail goes something like:

Quote:

Hello user of Pbnation.com e-mail server,

We warn you about some attacks on your e-mail account. Your computer may
contain viruses, in order to keep your computer and e-mail account safe,
please, follow the instructions.

Please, read the attach for further details.

For security purposes the attached file is password protected. Password is "52568".

Sincerely,
The Pbnation.com team http://www.pbnation.com

Also they might say something pertaining to your e-mail being discontinued.

Recent e-mail were cloaked to appear to be coming from support@pbnation.com and staff@pbnation.com. We urge you if you recieve any e-mail making a claim besides your regularly sent e-mail (thread subscriptions and private message notifications) that you delete it immediately.

Pbnation.com will never send you an e-mail containing attachments. Be suspicious if it makes claims and requires you to read an attachment for more information. If you are unsure please contact Abuse@Pbnation.com.

The Pbnation.com e-mail server is not hacked. Whomever is sending them is cloaking their e-mails with our e-mail addresses. Be sure to read the full header to verify.

The recent addresses are:

lucey4@aol.com (HELO jared)


The file name of the virus is:

pigbdpyaj.exe zipped into a file named TextFile.zip and it will be 12-13k in size.

Scan type: Realtime Protection Scan
Event: Virus Found!
Virus name: W32.Beagle.A@mm
File: C:\DOCUME~1\User\LOCALS~1\Temp\Temporary Directory 1 for TextFile.zip\pigbdpyaj.exe
Location: Quarantine
Computer: YOUR-SMYLJR82PW
User: User
Action taken: Quarantine succeeded : Access denied
Date found: Thursday, March 04, 2004 12:37:48 AM


If you have any new information please e-mail it to Abuse@Pbnation.com or Kyle.

[AyanamiRei (Banned)]

O______O track those mofos down and slap em silleh

[ns20]

I just got one today. Good thing im lazy and didnt feel like clicking on the attachment and following the steps. See being lazy sometimes pays off.

[Not a former member]

and thus shows why i never open pbnation mails


i just delete em all.... dont feel like taking the time i guess



oh well i got that email but deleted it... haha stupid hackers

[VApaintballer400]

Wow dammit, I got the same thing from my ISP. It was from Support@cox.net saying that people have complained about the spam coming out of my outbox and that i probabaly have a Trojan. Well it sent me the text file with the password, and i downloaded it. Dammit i suck. How can i get rid of it?

[ShortStroke]

Yeah, I got banned from AOL after somebody used my email to send about 200 emails containing a porno virus (spams your comp w/ porno pop ups until it can no longer function properly) or something. Hope you guys can get them.

[spencer069]

ya i got it from yahoo.

[aspazatak]

Everyone, I work for an IP carrier and the best rules to follow I can give you all is this.

1. Your ISP will never send you an annoucement such as in this thread with an attachment. They should alway just type whatever they want to say in the body of the message.

2. Your ISP will never ask for your password

3. Do not open attachments if you were not expecting to receive them. Used to you could open them from people you knew, but with the worm virus's today it's really hard to tell.

4. Use a Mail program that doesn't open the email on a preview without sanitizing it. I.E. No Outlook prior to 2003, and no outlook express.

5. Use a spam filtering program to weed out a lot of the garbage. Personally I use Spambayes because it's free and it catches about 95% of the spam I receive with about a 5% false positive rating.

6. Keep your computer up to date with critical updates and security patches

7. Run a virus scanner all the time. Personal choice is Mcafee, but if money is a concern you can to to grisoft.com and they provide one for free.

I also received one of these messages, but the funny thing was the virus spoofed my email as the sender. So it was obivously questionable when I received a mail from myself telling me something was wrong with my mailbox and instructing me to open an attachment to clean it.

[MeRcaNtiCo]

tell me if you need any help finding them or tracking them down.

[*NiTr0*]

Actually, My parents have gotten this from Comcast, and i got about 5 of them from Yahoo.com, Its everywhere.

[kookiemonstar]

Information on "virus" I got this strain yesterday from a friend. It's the j@mm strain, your sending the A@mm strain, but it's the same basic thing. I'm having a hard time getting rid of it. It messed up my norton auto-update files so I had to reinstall that before i updated and removed it. It's actually a worm your sending out.

[miney]

Quote:

Originally posted by kookiemonstar
Information on "virus" I got this strain yesterday from a friend. It's the j@mm strain, your sending the A@mm strain, but it's the same basic thing. I'm having a hard time getting rid of it. It messed up my norton auto-update files so I had to reinstall that before i updated and removed it. It's actually a worm your sending out.

They're not sending anything out, that's the whole point. The virus is forging message headers. Pbnation, like many other domains, is a victim by association. They're not infected with anything nor are they sending anything out.

[Bunkerboy707]

I got one today also..

[::TraumaheaD::]

I open most of my pbnation emails... is it safe to click on the link for the thread? or Should we be looking for a specific name to avoid. ( a name on the "PBnation" emial)

[TanGo404]

Holy crap

I got one of these emails this morning from noreply@thrill-tech.com, saying that my account has been suspended due to unauthorized use, with an attached .pif that was said to go into further detail. Frustrated by the fact that outlook xp was blocking all my attachments from being downloaded, I looked for a good 30-45 min on how to actually modify the list of accepted file types. As I came across the solution, my mom dragged my off the comp to go to school before I actually had a chance to download the .pif. I was angry at her at first, but now I will go home and thank her!

[mauikalohe]

Yeah I run a mail server too, we got the same problem. Pretty cleaver the way they did that, dumb idiots for doing it though, get a life people

[bgnorm69]

yea i got that **** too loaded my comp with viruses that beagle crap took me hours to remove that **** i was pissed thinking it came from the nation ,yahoo sent me the same thing too

[c|w (Banned)]

somsone send this to SP

[PBguy889]

dude i got that same virus except it was from the "yahoo administration" the only thing they didnt know is anything from yahoo to a yahoo account wont go into the bulk folder and its always highlighted blue. so anyone who has a yahoo email address you might have gotten the same virus.

[dirty-resdogs]

Thats crazy!
Exact same one was going around my school - University of Guelph.
3 different bodys however

[mrtodd13]

Nasty.

I happen to be a co-owner of paintballnorthwest.com

Got an email on a personal AOL account from - guess who - info@paintballnorthwest - with all that jazz. The irony! They sent it to the wrong person! Hah.

Creepy; they've got into my website and pbnations .

-Todd