 antiphishingPhishing Scam TerminatorPremium
join:2004-06-09
Wilkes Barre, PA
kudos:2
 ·PenTeleData
 ·ProLog
| Phony Microsoft Outlook/Outlook Express update install#2 Critical Update
Update for Microsoft Outlook / Outlook Express (KB910721)Brief Description Microsoft has released an update for Microsoft Outlook / Outlook Express. This update is critical and provides you with the latest version of the Microsoft Outlook / Outlook Express and offers the highest levels of stability and security.
Instructions
To install Update for Microsoft Outlook / Outlook Express (KB910721) please visit Microsoft Update Center:
(real link)
»update.microsoft.com/microsoftof···74966619
Link going to malware
httx://update.microsoft.com.kill1k.***/microsoftofficeupdate/isa
pdl/default.aspx?ln=3Den-us&id=3D5619619321022488015397526174966619
id=3D5619619321022488015397526174966619
Quick Details
File Name: officexp-KB910721-FullFile-ENU.exe
Version: 1.4
Date Published: Wed, 24 Jun 2009 15:30:48 +0100
Language: English
File Size: 81 KB
System Requirements
Supported Operating Systems: Windows 2000; Windows 98; Windows ME; Windows NT; Windows Server 2003; Windows XP; Windows Vista
This update applies to the following product: Microsoft Outlook / Outlook Express
Contact Us
© 2009 Microsoft Corporation. All rights reserved. Contact Us |Terms of Use |Trademarks |Privacy Statement
--
Specializing in "takes downs" of phishing and advance fee scams
Send your Phishing/Advance fee scams to: phish@antihotmail.com
»www.phishtank.com
»www.fraudwatchers.org
|
|
|
|
 OmenQSpazzPremium
join:2003-03-21
Continuum | Thank you for posting this, I came to this forum specifically for this issue. I received at least 3 in my own mailbox this morning, and I'm sure many of my users have also received it.
As a precaution, I sent out a reminder message to my users to beware of this kind of thing.
--
Cogito Ergo Nom |
|
antiphishingPhishing Scam TerminatorPremium
join:2004-06-09
Wilkes Barre, PA
kudos:2 Reviews:
·PenTeleData
·ProLog
| said by OmenQ:Thank you for posting this, I came to this forum specifically for this issue. I received at least 3 in my own mailbox this morning, and I'm sure many of my users have also received it. As a precaution, I sent out a reminder message to my users to beware of this kind of thing. ....and once again education of internet users does work to prevent computers from being infected and or Identity/Credit
Card theft from happening. 
--
Specializing in "takes downs" of phishing and advance fee scams
Send your Phishing/Advance fee scams to: phish@antihotmail.com
»www.phishtank.com
»www.fraudwatchers.org
|
|
 DennisPremium,Mod
join:2001-01-26
Algonquin, IL
kudos:5 | reply to antiphishing
I've gotten 40 of these damn things in the last two days. I don't know why I even turn on my email anymore... |
|
antiphishingPhishing Scam TerminatorPremium
join:2004-06-09
Wilkes Barre, PA
kudos:2 Reviews:
·PenTeleData
·ProLog
| said by Dennis:I've gotten 40 of these damn things in the last two days. I don't know why I even turn on my email anymore... Wow!!! I'm getting like that also, most of the junk email in my spam trap is fraudulent in nature. I guess the Idiots in Nigeria have nothing better to do with their time but send me phony stories of money that needs to be rescued.
--
Specializing in "takes downs" of phishing and advance fee scams
Send your Phishing/Advance fee scams to: phish@antihotmail.com
»www.phishtank.com
»www.fraudwatchers.org
|
|
 nwrickertsand groperPremium,MVM
join:2004-09-04
Geneva, IL
kudos:7
 ·AT&T U-Verse
| reply to antiphishing
See phish #37736 for an example. Note that it appears to come from the rock phishers (part of RBN).
--
AT&T dsl; Speedstream 5100b modem; openSuSE 11.0; firefox 3.0.11 |
|
MGDPremium,MVM
join:2002-07-31
kudos:9 | reply to Dennis
There has been a noticeable increase in emails containing bot infecting malware since the surprise disconnect by the FTC of the entire 3FN / Pricewert LLC / APS Telecom network. That action may have resulted in the loss of several bot herds, and cyber criminals are now attempting to replenish them.
MGD |
|
 pcdebbRIP dadkinsPremium
join:2000-12-03
Brandon, FL
kudos:4 | reply to antiphishing
this might be why someone called me about a problem with his email. dont know what this virus does, but i'm told his computer is shutting down or something when he checks his email thru outlook? I havent seen the computer to know what the real problem is
--
| map your city | |
|
antiphishingPhishing Scam TerminatorPremium
join:2004-06-09
Wilkes Barre, PA
kudos:2 Reviews:
·PenTeleData
·ProLog
1 edit | said by pcdebb:this might be why someone called me about a problem with his email. dont know what this virus does, but i'm told his computer is shutting down or something when he checks his email thru outlook? I havent seen the computer to know what the real problem is The person you are referring to that has the computer problem needs to switch to Thunderbird email client because Outlook Express is so tied into the Windows Operating System due to the Microsoft update/service pack process.
The big problem is that so many internet users are so gullible to social engineering bias they fall victim to it just by not doing the proper updating of software, be it Windows or their Anti virus software. The above scam, plays on this gullibility.
--
Specializing in "takes downs" of phishing and advance fee scams
Send your Phishing/Advance fee scams to: phish@antihotmail.com
»www.phishtank.com
»www.fraudwatchers.org
|
|
RowanPremium
join:2008-10-16
Longview, TX | I've been getting bunches of these silly emails, and have noticed that each one has a slightly different 'address':
update.microsoft.com.hhili.***.mx/microsoftofficeupdate/isapdl/default.aspx?ln=en-us&id=0608956832573007288813209151965190470953949383188
update.microsoft.com.kiffil.***.mx/microsoftofficeupdate/isapdl/default.aspx?ln=en-us&id=45349073527004458165968183261300455684375
update.microsoft.com.11f1lkh.***/microsoftofficeupdate/isapdl/default.aspx?ln=en-us&id=95582167904878045247453886763809349069478349581570878041824856877574775
Wasn't sure if it would help to post them here for search engines. I hope I did this right -- they aren't live links. If this is counterproductive, my feelings won't be hurt if this post goes away. 
~Rowan |
|
nwrickertsand groperPremium,MVM
join:2004-09-04
Geneva, IL
kudos:7 Reviews:
·AT&T U-Verse
| I've been getting bunches of these silly emails, and have noticed that each one has a slightly different 'address': Yes, that's the style of the rock phishers. Presumably it helps them evade blocking lists.
--
AT&T dsl; Speedstream 5100b modem; openSuSE 11.0; firefox 3.0.11 |
|
antiphishingPhishing Scam TerminatorPremium
join:2004-06-09
Wilkes Barre, PA
kudos:2 Reviews:
·PenTeleData
·ProLog
1 edit | said by nwrickert:I've been getting bunches of these silly emails, and have noticed that each one has a slightly different 'address': Yes, that's the style of the rock phishers. Presumably it helps them evade blocking lists. Yes in deed, they are in fact rock phish's but it seems the domain name in question is also Fast Flux
Fast Flux Phishing Scam
»en.wikipedia.org/wiki/Fast_flux
People can talk about the problem of phishing scams in this forum, month after month but if you don't take a proactive approach by terminating sites, internet users will continue to be taken by social engineering
I'm going to try to terminate the phishing site at the name server level due to it being fast-flux... wish me luck
----------------------------------
htt*://update.microsoft.com.ijlkif.net/.........
Retrieving DNS records for update.microsoft.com.ijlkif.net...
DNS servers
ns1.realnet-com-sr.net [216.245.192.115]
ns1lamedelegation.tropikano.net [216.245.192.115]
Answer records
update.microsoft.com.ijlkif.net 1 A 84.121.117.57 1800s
update.microsoft.com.ijlkif.net 1 A 86.121.108.26 1800s
update.microsoft.com.ijlkif.net 1 A 89.115.204.29 1800s
update.microsoft.com.ijlkif.net 1 A 89.151.17.160 1800s
update.microsoft.com.ijlkif.net 1 A 91.146.142.197 1800s
update.microsoft.com.ijlkif.net 1 A 92.249.248.36 1800s
update.microsoft.com.ijlkif.net 1 A 93.103.232.126 1800s
update.microsoft.com.ijlkif.net 1 A 213.63.151.75 1800s
update.microsoft.com.ijlkif.net 1 A
24.99.40.87 1800s
update.microsoft.com.ijlkif.net 1 A 70.74.82.183 1800s
update.microsoft.com.ijlkif.net 1 A 78.97.170.71 1800s
update.microsoft.com.ijlkif.net 1 A 78.157.82.12 1800s
update.microsoft.com.ijlkif.net 1 A 79.165.83.97 1800s
update.microsoft.com.ijlkif.net 1 A 81.203.83.69 1800s
update.microsoft.com.ijlkif.net 1 A
83.9.90.82 1800s
--
Specializing in "takes downs" of phishing and advance fee scams
Send your Phishing/Advance fee scams to: phish@antihotmail.com
»www.phishtank.com
»www.fraudwatchers.org
|
|
antiphishingPhishing Scam TerminatorPremium
join:2004-06-09
Wilkes Barre, PA
kudos:2 Reviews:
·PenTeleData
·ProLog
| Re: NameServer Termination /update.microsoft.com.ijlkif.net -------------------------------
canonical name ns1.realnet-com-sr.net.
aliases
addresses 216.245.192.115
canonical name level.x10hosting.com.
aliases
addresses 216.245.192.115
OrgName: Limestone Networks, Inc.
OrgID: LIMES-2
NetRange: 216.245.192.0 - 216.245.223.255
CIDR: 216.245.192.0/19
-------------------------------
canonical name ns1lamedelegation.tropikano.net
aliases
addresses 216.245.192.115
canonical name level.x10hosting.com.
aliases
addresses 216.245.192.115
OrgName: Limestone Networks, Inc.
OrgID: LIMES-2
NetRange: 216.245.192.0 - 216.245.223.255
CIDR: 216.245.192.0/19
-------------------------------
--
Specializing in "takes downs" of phishing and advance fee scams
Send your Phishing/Advance fee scams to: phish@antihotmail.com
»www.phishtank.com
»www.fraudwatchers.org
|
|
 TrimlinePremium
join:2004-10-24
Windermere, FL
 ·voip.ms
·Callcentric
·RoadRunner Cable
| reply to antiphishing
Re: Phony Microsoft Outlook/Outlook Express update install#2 The signature line gave it away for me..
Contact Us
© 2009 Microsoft Corporation. All rights reserved. Contact Us |Terms of Use |Trademarks |Privacy Statement
__________________________________________________
D O T E A S Y - "Join the web hosting revolution!"
»www.doteasy.com |
|
antiphishingPhishing Scam TerminatorPremium
join:2004-06-09
Wilkes Barre, PA
kudos:2 Reviews:
·PenTeleData
·ProLog
| said by Trimline:The signature line gave it away for me.. Contact Us © 2009 Microsoft Corporation. All rights reserved. Contact Us |Terms of Use |Trademarks |Privacy Statement __________________________________________________ Another on is that Microsoft doesn't support Windows 98 with
updates anymore , but I could be wrong here.
--
Specializing in "takes downs" of phishing and advance fee scams
Send your Phishing/Advance fee scams to: phish@antihotmail.com
»www.phishtank.com
»www.fraudwatchers.org
|
|
 amysheehanPremium,VIP,MVM
join:1999-12-21
Huntington Beach, CA
kudos:9
·RoadRunner Cable
1 edit | said by antiphishing:said by Trimline:The signature line gave it away for me.. Contact Us © 2009 Microsoft Corporation. All rights reserved. Contact Us |Terms of Use |Trademarks |Privacy Statement __________________________________________________ Another on is that Microsoft doesn't support Windows 98 with
updates anymore , but I could be wrong here. Win98 no more security updates - you're correct
Also Outlook Express is not a part of Vista OS either.
--
Proud Member of ASAP
DSLR Phishtracker |
|
antiphishingPhishing Scam TerminatorPremium
join:2004-06-09
Wilkes Barre, PA
kudos:2 Reviews:
·PenTeleData
·ProLog
| said by amysheehan:said by antiphishing:said by Trimline:The signature line gave it away for me.. Contact Us © 2009 Microsoft Corporation. All rights reserved. Contact Us |Terms of Use |Trademarks |Privacy Statement __________________________________________________ Another on is that Microsoft doesn't support Windows 98 with
updates anymore , but I could be wrong here. Win98 no more security updates - you're correct Also Outlook Express is not a part of Vista OS either. In my humble opinion , people need to get training in internet security before they even touch a computer. At the end of the training, they would get a license that says they know how to protect their computer property from outside threats. If their computer gets infected and becomes a zombie machine, they would lose their license/ computer privileges and have to go back to internet training so they can get their act together.
A person who has proper internet security knowledge, should know that Microsoft doesn't support a platform that's over ten years old. This should be a dead give away that the email is total B.S. and internet users should not fall for this kind of
social engineering attack
--
Specializing in "takes downs" of phishing and advance fee scams
Send your Phishing/Advance fee scams to: phish@antihotmail.com
»www.phishtank.com
»www.fraudwatchers.org
|
|
 madylarianThe curmudgeonlyPremium
join:2002-01-03
Parkville, MD | said by antiphishing:A person who has proper internet security knowledge, should know that Microsoft doesn't support a platform that's over ten years old. This should be a dead give away that the email is total B.S. and internet users should not fall for this kind of social engineering attack The dead giveaway is that Microsoft has been warning people for how many years now that they do NOT send updates as email attachments!
mady
--
Honi soit qui mal y pense |
|
 scelliNative New YorkerPremium
join:1999-08-07
FLOT/FEBA
kudos:1 | The dead giveaway is that Microsoft has been warning people for how many years now that they do NOT send updates as email attachments!
Bingo.....this has been preached by MS time and time again ad infinitum ad nauseam.
--
The maximum effective range of an excuse is ZERO meters! |
|
antiphishingPhishing Scam TerminatorPremium
join:2004-06-09
Wilkes Barre, PA
kudos:2 Reviews:
·PenTeleData
·ProLog
| reply to madylarian
said by madylarian:said by antiphishing:A person who has proper internet security knowledge, should know that Microsoft doesn't support a platform that's over ten years old. This should be a dead give away that the email is total B.S. and internet users should not fall for this kind of social engineering attack The dead giveaway is that Microsoft has been warning people for how many years now that they do NOT send updates as email attachments! mady It seems that Microsoft warnings are going unnoticed because you would have to "assume" that internet users would have to visit their security site and or receive their security newsletters by email. Many People who are online are not taking internet security seriously enough or just don't care.
I see many people on a daily basis who know nothing about Microsoft updates or what they do to protect Windows.
These naive internet users are part of the problem, not part of the solution and this is why they fall for these emails.
--
Specializing in "takes downs" of phishing and advance fee scams
Send your Phishing/Advance fee scams to: phish@antihotmail.com
»www.phishtank.com
»www.fraudwatchers.org
»mozilla.com
|
|
