Anyone know about chocolate BALLS?
Page 1 of 2 12 LastLast
Results 1 to 10 of 14

Thread: Anyone know about chocolate BALLS?

  1. #1
    Junior Member
    Join Date
    Mar 2002
    Posts
    9

    Anyone know about chocolate BALLS?

    Ok, sounded weird but it probably caught your attention. I looked thru the security databases on the web and open forums but didn't find anything. I recieved an email that was a recipe about making chocolate balls in the text of the message. But it then had an attachment called "floaf.exe", it also came from someone I didn't know. I didn't know the person so I didn't open the attachment, and then I forwarded it to the abuse@ prodigy.net (server where the original senders email came from). Does anyone know if this was a virus or malicious attachment? Or was I just being paranoid?

    It sounded really strange, .exe email attachment for a text message about a recipe.

  2. #2
    Senior Member
    Join Date
    Dec 2001
    Posts
    884
    Uh...yeh, probably a virus. Tried scanning the thing, though?

  3. #3
    BS, EnCE, ACE, Cellebrite 11001001's Avatar
    Join Date
    Mar 2002
    Location
    Just West of Beantown, though nobody from Beantown actually calls it "Beantown."
    Posts
    1,228
    I just checked Symantec for it, and it returned nothing.
    http://securityresponse.symantec.com.../vinfodb.html/
    It could be a new virus.
    Either way, you did the right thing by not opening it and letting Prodigy Know.
    Good Luck.
    That's Officer 11001001 to you...
    Now you see me | Now you don't
    "Relax, Bender; It was just a dream. There's no such thing as two." ~ Fry
    sometimes my computer goes down on me

  4. #4
    AO Soccer Mom debwalin's Avatar
    Join Date
    Mar 2002
    Posts
    2,185
    I would have done the same thing, but then I'm psycho about my email....I deleted a message from my best friend the other day, cause she sent it from her parents house and I didn't recognize the address, and the subject was Hey you....so sometimes I may go overboard....lol.
    But I would have done the same thing...
    Outside of a dog, a book is man's best friend. Inside of a dog it's too dark to read.

  5. #5
    Junior Member
    Join Date
    Mar 2002
    Posts
    9
    I didn't scan the attachment pretty much just steered clear of it. Here's a newbie question though: even if the attachment had come back clean from the virus scan, because it was an executeable file, couldn't it still have been malicious?

    I recieved an auto reply from Prodigy, letting me know that the email had been recieved. The attachment was also broken down to the code level and while there was a lot of "apparent encoding" there seemed to be some identifiable strings similar to the "REGEDIT4" string of a .reg file. I could be wrong about this but it sure looked familiar.

    P.S. I watch the forum off and on a bit but don't post a whole lot, just wanted to say thanks to those who have taken the time to reply.

  6. #6
    Senior Member
    Join Date
    Jan 2002
    Posts
    682
    remember that a lot of virus/worm infectors come with random filenames/attachments...so floaf.exe could mean nothing...and still be dangerous...and i'd bet my last drink that it is....

    rule number one....never everevereverevereverever run an exe you recieve in the mail...from ANYONE...even someone you know...we all know enoguh about mail-everyone-in-outlook-address-book to know that even your friends can send nasty stuff...

    you did the right thing...consider yourself pleased with yourself...btw....you can always run a v-scan on your attachment dir ....should tell you what you got...
    I used to be With IT. But then they changed what IT was. Now what I'm with isn't IT, and what's IT seems scary and weird." - Abe Simpson

  7. #7
    Senior Member
    Join Date
    Dec 2001
    Posts
    884
    No prob for taking the time to say my so-called helpful sentences, hehe. And you're right in saying that it could still have been malicious. I was just asking if you had scanned it anyway, just so I'd know about the file if it came back virus-positive. You did the right thing in just sending it to them, though. Good man!

  8. #8
    Senior Member
    Join Date
    Jan 2002
    Posts
    682
    even if the attachment had come back clean from the virus scan, because it was an executeable file, couldn't it still have been malicious?
    absolutement.....it could be new...or a simple vb exe which says basically...format c: or del *.* which might not be classified as a 'virus"...

    think of your computer as your tongue....someone gives you something and says go ahead...lick it...it's ok...are you going to?....
    I used to be With IT. But then they changed what IT was. Now what I'm with isn't IT, and what's IT seems scary and weird." - Abe Simpson

  9. #9
    Junior Member
    Join Date
    Mar 2002
    Posts
    9
    Hey thanks again to everyone, I didn't scan the attachment though. I pretty much stay clear of .exe files. I unfortunately share the system with others and have made it a point as the self appointed B.M.O.C. (big mutha on computer), that they also not open .exe files. This particular attachment was on another users email and was brought to my attention. I forwarded the email to Prodigy and deleted it from the system, lots of precaution has kept this system virus free for almost 3.5 yrs. I appreciate all the advice from everyone.

  10. #10
    Junior Member
    Join Date
    Mar 2002
    Posts
    9

    Thumbs up AN ANSWER!!!

    After the replies I got on this discussion, I got to thinking, while I did not scan or open the attachment "floaf.exe", I went back to the Norton report log and found that the file was an infected attachment:

    Date: 4/1/02, Time: 08:37:30, ###### on OEMCOMPUTER
    The email attachment fLOAF.exe is infected with the W32.Magistr.39921@mm virus.
    The file was repaired.

    Apparently the user whose email this was sent to either attempted to open the attachment (argh!!!) or Norton caught the infected file when the email was retrieved from the server. I'm sure that Prodigy would catch it and send a reply, but that saves me some additional thumb twidling and unnecessary searching the net.

    Thanks to all who replied for at least getting me to think about some other possibilities and finding out more about this virus and viruses in general.

    Thumbs up to the board!!!

    P.S. ac1dsp3ctrum I will post the Prodigy reply as soon as I get it, it it helps anyone out in watching out for the origin of the email.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

 Security News

     Patches

       Security Trends

         How-To

           Buying Guides