SoBig.F variant problem

well this is hard to explain, it has confused me and i am lost as to what is going on but i'll try my best.

To start the story, i was in florida for FIVE days, from august 21st to august 25th, keep the dates in mind.

i came home on august 25th to find my (outlook) hotmail account full with messages saying undelieverable mail. the email titles were "Wicked Screensaver" and "Thank YOU!" so naturally i thought it was SoBig. but the emails were all received on the 25th, being the day i got home, why would it start on a monday if i wasn't home for the previous 5 days?

so my next thought is i was hacked, i am using a linksys router with the latest firmware update. i ran netstat -a to find lots of connections (which all appeared legit), so i rebooted and cleared them out.

then stupid me, i forgot to run a virus scan, so i ran the pc-cillin online scan, which i find very reliable, to find no viruses on my computer. so i downloaded the SARC and MCAFEE virus removal tools for the SoBig virus, and neither of them found the virus...

and right now i am still getting emails of "undelieverable mail" but not only to my hotmail account any more, now it's to my optonline account as well. but i am also receiving the virus now !? today alone i got 6 emails from a seemingly spoofed address (admin@internet.com) that had the virus attached, and no i did not open it...

so i am getting undelieverable mail, and getting the virus attachements in my mailbox, why?

also, i've gotten 3 of the same emails from this person at different times:

subject: "Warning: E-Mail Viruses Detected"

body:

**************************

Our virus detector has just been triggered by a message you sent:-
To: bram@smartelectronix.com
Subject: Re: Approved
Date: Tue Aug 26 15:49:03 2003
Any infected parts of the message (your_details.pif)
have not been delivered.

This message is simply to warn you that your computer system may have a
virus present and should be checked.

The virus detector said this about the message:
Report: your_details.pif contains Worm.Sobig.F
Shortcuts to MS-Dos programs are very dangerous in email (your_details.pif)


--
MailScanner
Email Virus Scanner
www.mailscanner.info
Mailscanner thanks transtec Computers for their support

**********

this came to my optonline email account, which i am pretty sure was not hacked, no one that i know has this email account name, i pretty much have it for no reason. so any suggestions? what is going on ?

btw: i have no clue who bram@smartelectronix.com is

 

it is EXTREMELY IMPORTANT to note how this virus works. If you have friends with YOUR email account on THEIR list and THEY get infected, then the virus will use YOUR email account NAME among others in THEIR list and send out email with your ACCOUNT NAME as the FROM property. So it spoofs your account.
You're not infected.
Be happy, smile, have a beer

 

very interesting... so someone i know has the virus ? time to make a few phone calls

thanks

 

You're welcome.