Author Topic: Virus/Backdoor Trojan alert!  (Read 727 times)

0 Members and 1 Guest are viewing this topic.

Offline Johnnie F.

Virus/Backdoor Trojan alert!
« on: September 14, 2012, 07:59:42 AM »
USPS notification #5105362

sent by "USPS Inc. []"

Received: from [] by with SMTP

Dear customer.

The parcel number #5105362 was sent your home adress.
And it will arrive within four days.

More information and the tracking number are attached in document below.

Thank you.
Copyright© 2012 USPS. All Rights Reserved.

Full Path: usps
On computers as of:
Not Available
Last Used:
9/14/2012 at 7:45:13 AM
Startup Item:
Number of users in the Norton Community that have used this file: Unknown
This file risk is high.

Threat Details
Threat type: Virus. Programs that infect other programs, files, or areas of a computer by inserting themselves or attaching themselves to that medium.
Downloaded from  URL Not Available

Subject: USPS notification #5105362

Sender: "USPS Inc." <>

Recipient: ...
File Actions
usps document.exe

Fun is the one thing that money can't buy


  • Guest
Re: Virus/Backdoor Trojan alert!
« Reply #1 on: September 14, 2012, 11:59:11 AM »
Can we have that in English, please?  ;D

Offline thaiga

Re: Virus/Backdoor Trojan alert!
« Reply #2 on: September 14, 2012, 12:02:28 PM »
I think

This fake USPS email tries to get you to download and open an attachment. Under no circumstances should you do so. Flag the message as spam and delete it right away. In other variations of this scam you might be prompted to click on a link, again simply flag as spam and delete the message. If you clicked on any links or downloaded/opened the attachment you should scan for viruses and other threats as soon as you can. Did you receive this scam?

From: “U.S. Postal Service”
Subject: USPS Delivery Failure Notification
File attached: USPS (20 KB)



Unfortunately we failed to deliver the postal package you have sent on the 19th of September in time because the recipient’s address is erroneous.

Please print out the shipment label attached and collect the package at our office.
Anyone who goes to a psychiatrist should have his head examined.

Offline Johnnie F.

Re: Virus/Backdoor Trojan alert!
« Reply #3 on: September 14, 2012, 01:21:11 PM »
The attached document is a .zip file. If you do unzip it, the application usps document.exe  will open and have fun spoiling your file system, infect your computer, and probably report your bank accounts, passwords etc. to its master, who will maybe use that information to deposit/withdraw (?) money in your bank as an act of social redistribution.

Normally documents are .pdf files not .exe! PDF stands for portable document format, a static file, while EXE comes from the verb "execute" and is always used for an application that will do something on your computer, when released or triggered.

That email isn't a mere scam, it contains a virus. You can already see that from the alleged document being zipped. This serves to hide the fact that it doesn't contain a .pdf file, but rather an .exe application.

Some "nice" person had sent that to me this morning. My Norton 360 detected it in my email client before I even noticed it. I never open zipped attachments from sources I'm not sure about, or before Norton has checked them for viruses.
Fun is the one thing that money can't buy

Offline Baby Farts

Re: Virus/Backdoor Trojan alert!
« Reply #4 on: September 14, 2012, 05:50:59 PM »
I get those pesky UPS spam mails now and then.  I block the entire domain.