Ayudenme por favor, no se que es...

H

Hil2003

Lanero Regular
11 May 2004
83
:muerto:
No se si es spam o spyware, o nada o que, pero necesito saber que me esta generando esto!!!!!! no se de que sistema habla...
Los correos estan llegando con esta estructura:

Spam detection software, running on the system "srv01.gi-01.com", has
identified this incoming email as possible spam. The original message
has been attached to this so you can view it (if it isn't spam) or block
similar future email. If you have any questions, see
the administrator of that system for details.

Content preview: ------=_NextPart_001_0017_01C56692.C9A613D0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 8bit (Aqui es la paarte donde va el texto real del correo)...... [...]

Content analysis details: (9.6 points, 7.0 required)

pts rule name description
---- ---------------------- --------------------------------------------------
1.7 HTML_IMAGE_ONLY_06 BODY: HTML: images with 400-600 bytes of words
0.1 HTML_FONTCOLOR_BLUE BODY: HTML font color is blue
0.0 HTML_MESSAGE BODY: HTML included in message
0.1 HTML_FONT_BIG BODY: HTML has a big font
1.1 HTML_90_100 BODY: Message is 90% to 100% HTML
1.1 RCVD_IN_SORBS_SOCKS RBL: SORBS: sender is open SOCKS proxy server
[201.128.222.108 listed in dnsbl.sorbs.net]
1.1 RCVD_IN_SORBS_HTTP RBL: SORBS: sender is open HTTP proxy server
[201.128.222.108 listed in dnsbl.sorbs.net]
1.1 RCVD_IN_DSBL RBL: Received via a relay in list.dsbl.org
[<http://dsbl.org/listing?201.128.222.108>]
0.5 RCVD_IN_NJABL_DIALUP RBL: NJABL: dialup sender did non-local SMTP
[201.128.222.108 listed in dnsbl.njabl.org]
2.5 RCVD_IN_DYNABLOCK RBL: Sent directly from dynamic IP address
[201.128.222.108 listed in dnsbl.sorbs.net]
0.1 RCVD_IN_NJABL RBL: Received via a relay in dnsbl.njabl.org
[201.128.222.108 listed in dnsbl.njabl.org]
0.1 RCVD_IN_SORBS RBL: SORBS: sender is listed in SORBS
[201.128.222.108 listed in dnsbl.sorbs.net]

The original message was not completely plain text, and may be unsafe to
open with some email clients; in particular, it may contain a virus,
or confirm that your address can receive spam. If you wish to view
it, it may be safer to save it to a file and open it with an editor.
 
spyware es el software espia que se instala en tu pc cuando entras a paginas malintencionadas o de porno o donde te quieren mirar que haces, spam es correo generado a multiples destinatarios que no han solicitado recibirlo o que no conocen al remitente, que en muchos casos es un programa que genera correos con tu lista de contactos, si tienes virus lo mejor es que te metas a symantec.com y bajes los fixtools para vacunar tu equipo, ahi dice que debes hacer, tambien baja el ad-aware para quitar los spyware, y sobre todo si tienes windows manten actualizado el sistema operativo.


Hil2003 dijo:
:muerto:
No se si es spam o spyware, o nada o que, pero necesito saber que me esta generando esto!!!!!! no se de que sistema habla...
Los correos estan llegando con esta estructura:

Spam detection software, running on the system "srv01.gi-01.com", has
identified this incoming email as possible spam. The original message
has been attached to this so you can view it (if it isn't spam) or block
similar future email. If you have any questions, see
the administrator of that system for details.

Content preview: ------=_NextPart_001_0017_01C56692.C9A613D0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 8bit (Aqui es la paarte donde va el texto real del correo)...... [...]

Content analysis details: (9.6 points, 7.0 required)

pts rule name description
---- ---------------------- --------------------------------------------------
1.7 HTML_IMAGE_ONLY_06 BODY: HTML: images with 400-600 bytes of words
0.1 HTML_FONTCOLOR_BLUE BODY: HTML font color is blue
0.0 HTML_MESSAGE BODY: HTML included in message
0.1 HTML_FONT_BIG BODY: HTML has a big font
1.1 HTML_90_100 BODY: Message is 90% to 100% HTML
1.1 RCVD_IN_SORBS_SOCKS RBL: SORBS: sender is open SOCKS proxy server
[201.128.222.108 listed in dnsbl.sorbs.net]
1.1 RCVD_IN_SORBS_HTTP RBL: SORBS: sender is open HTTP proxy server
[201.128.222.108 listed in dnsbl.sorbs.net]
1.1 RCVD_IN_DSBL RBL: Received via a relay in list.dsbl.org
[<http://dsbl.org/listing?201.128.222.108>]
0.5 RCVD_IN_NJABL_DIALUP RBL: NJABL: dialup sender did non-local SMTP
[201.128.222.108 listed in dnsbl.njabl.org]
2.5 RCVD_IN_DYNABLOCK RBL: Sent directly from dynamic IP address
[201.128.222.108 listed in dnsbl.sorbs.net]
0.1 RCVD_IN_NJABL RBL: Received via a relay in dnsbl.njabl.org
[201.128.222.108 listed in dnsbl.njabl.org]
0.1 RCVD_IN_SORBS RBL: SORBS: sender is listed in SORBS
[201.128.222.108 listed in dnsbl.sorbs.net]

The original message was not completely plain text, and may be unsafe to
open with some email clients; in particular, it may contain a virus,
or confirm that your address can receive spam. If you wish to view
it, it may be safer to save it to a file and open it with an editor.
Haz clic para expandir...
 
entonces te recomiento que combines programas, instala y actualiza:

ad-aware
stinger

obviamente debes tener actualizado el sistema operativo con windows update
Hil2003 dijo:
Tengo Symantec Corporate Edition, y se supone esta actualizado, tengo fecha de 02/06/05
Haz clic para expandir...
 
si te fijas bien ese mensaje fue generado desde afuera, seguro alguien con tu e-mail se contamino y el spam se genero alla.


Hil2003 dijo:
Tengo Symantec Corporate Edition, y se supone esta actualizado, tengo fecha de 02/06/05
Haz clic para expandir...
 
pon mas datos tecnicos... probablemente tu maquina sea un zombi(obvio con el Sysmantec). Necesito saber las Ips y encabezados avanzados del Correo, como se origina le problema o de donde....
 
cambiate a Kaspersky antivirus, e instala Lavasoft AD-aware SE, desde que los tengo no he vuelto a sufrir de spyware, worms, o demas, hace ya mas de 3 meses que no tengo un pinche virus en mi pecesito

Sueter

Perro_Manson
 

Los últimos mensajes

Los últimos temas

Arriba Pie
Atrás