One of my hosting clients got an 'interesting email' and I figured I'd post the details here in case you get this one.
The body of the email follows:
> From: (name and email address removed)
> Subject: I am wait your reply
> To: (recipients email address removed)
> Date: Monday, September 8, 2008, 6:38 PM
> To Whom It May Concern:
> I am tired of receiving messages containing malicious
> computer programs (viruses) from your e-mail address!!!
> If within 1-2 days you do not stop sending messages to my
> e-mail address, I will have to address this issue to the
> Today I received a hard copy of your data logs from my
> Internet service provider. The copy contains your IP
> address, logs of sending malicious programs and your e-mail
> address details...
> I am sending you the copy of the document containing your
> data and logs of sending malicious programs as the proof of
> your fault!!!!!!
> You must print the document containing the list of your
> data and logs of sending malicious programs and pass it on
> to your Internet service provider with, so that they could
> find out why the viruses are sent from your computer to my
> e-mail address!!!!
> Ask your Internet service provider to resolve this
> Do this now!!!
> Once again!!! If you donʼt stop sending the letters, I
> will address to the Police and file a lawsuit against you!!!!!!
There was an attached file to it that was a zip file that supposedly contains IP logs that allegedly prove a crime. Inside was...lo and behold, an exe file masquerading as a pdf!
My spidey sense told me then and there this was a very, very suspicious file indeed. So, like the trained professional I am, I send a copy of the file to Symantec to see what's up.
Turns out the thing is infected with 'Infostealer.Banker.C' which is explained below:
Infostealer.Banker.C - Symantec.com
Lesson: If you get an email similar to this one, ignore it and delete immediately. It's not a real spam complaint, just some yahoo trying to hack your machine.