A Journey Through Life: Spam? Worm? Or, a Bot?

A lifelog of a well-travelled single parent who had a life extension in 2000, blogs indiscriminately about her journey through life fulfilling unfinished business and promises that will soon complete her existence...

Spam? Worm? Or, a Bot?

Thursday, October 07, 2004

Are you an ICQ user? Did you ever received a message on ICQ today to update your current ICQ program just like the one below?

[11:49] 261277622: Hello Laila* You need an update for icq! TEAM_ICQ
[11:50] Laila*: why?
[11:50] 261277622: Click on the link to get the update!
            http://portfolio.dotgeek.org/icq_update.exe
[11:50] Laila*: thanks for your concern....
[11:50] 261277622: Click on the link to get the update!
            http://portfolio.dotgeek.org/icq_update.exe
[11:51] Laila*: r u a bot?
[11:51] 261277622: Click on the link to get the update!
            http://portfolio.dotgeek.org/icq_update.exe

Well, I suspected this is run by a bot and I checked the site http://portfolio.dotgeek.org/ and it looks neat but, why they have to spam me to update my ICQ? However, it looks suspicious when I saw COM plugins? And I had thought, is this site one of those spreading spyware worms that resides in a victim's OS? But, WHY?

After I cooked our lunch and I went back to relax infront of my PC, I received again similar message but from ICQ number 292268288! Playing smart, I replied to it with their update message and, the same message was sent to me exactly like the one above...

I verified the domain owner of http://portfolio.dotgeek.org/ and here is what I found:

Registrant:
David Costa
Place de la Poste 4
Delemont 2800
Switzerland

Registered through: GoDaddy.com (http://www.godaddy.com)
Domain Name: DOTGEEK.ORG
Created on: 30-Aug-03
Expires on: 30-Aug-05
Last Updated on: 17-Mar-04

Administrative Contact:
Costa, David Linux@college.ch
Place de la Poste 4
Delemont 2800
Switzerland
01141324
Technical Contact:
Costa, David Linux@college.ch
Place de la Poste 4
Delemont 2800
Switzerland
01141324

Domain servers in listed order:
NS.DOTGEEK.ORG
NS2.DOTGEEK.ORG

Posted on October 7, 2004 06:44 PM TrackBack

Let me know you were here, your thoughts are welcome!

Hello, Elegant John. Sometimes, I was thinking how can we file a complain against those spammers or hackers damaging our files and data.

My PC until now is infected with spyware ads that popup each time I run a program associated with internet explorer. It isn't funny they are redirecting me to download their software to get rid of spywares ads they created... it's causing me inconvenience especially when I was running Yahoo! webcam. I cannot watch my son's webcam without suffering these ads popping up in my desktop...

Posted by: Laila* on October 10, 2004 07:07 PM

I would approach that very cautiously Laila. Anything with an .exe, .pif, etc should be suspect these days.

I'm experimenting with SUSE Linux which is virtually immune to all these viri and spam attacks. They have the new 9.2 Pro coming out on 1 Nov. Might be something you could uses

Posted by: Elegant John on October 10, 2004 11:03 AM

I did. It's pretty :)

I won about 21 mystery points.

Posted by: Afonso on October 8, 2004 01:52 PM

Did you see my banner? And, were you able to receive any mystery credits?

Posted by: Laila* on October 8, 2004 02:15 AM

Hey, guess what Laila?
BlogExplosion just sent me to your blog...hehe

Don't download anything other than from sites you know well Laila. Or if you're very, very curious, first install one of those programs that allows us to track changes in the registry, etc.

Posted by: Afonso on October 8, 2004 02:05 AM

I checked the three sites you sent me but, I just wonder what was in that .exe file I must open? Is it some kind of trojan virus that will infect my PC?

I am not over yet with spyware worm that controls internet explorer...

Posted by: Laila* on October 8, 2004 12:09 AM

Guess what? I googled and found the following sites:

http://www.college.ch/?page=faculty

http://www.collegelinux.org/

http://www.osnews.com/story.php?news_id=3305

Posted by: Afonso on October 7, 2004 11:54 PM

Please write responsibly. Thank you!

Monthly Archives

ARCHIVE INDEX
08JAN 08FEB 08MAR 08APR 08MAY 08JUN 08JUL 08AUG 08SEP 08OCT 08NOV 08DEC	07JAN 07FEB 07MAR 07APR 07MAY 07JUN 07JUL 07AUG 07SEP 07OCT 07NOV 07DEC	06JAN 06FEB 06MAR 06APR 06MAY 06JUN 06JUL 06AUG 06SEP 06OCT 06NOV 06DEC	05JAN 05FEB 05MAR 05APR 05MAY 05JUN 05JUL 05AUG 05SEP 05OCT 05NOV 05DEC	04JAN 04FEB 04MAR 04APR 04MAY 04JUN 04JUL 04AUG 04SEP 04OCT 04NOV 04DEC	03JAN 03FEB 03MAR 03APR 03MAY 03JUN 03JUL 03AUG 03SEP 03OCT 03NOV 03DEC

Birthday Reminders

02 Jan., Mama (71)
03 May, Paul Denise Ko (26)
19 May, Veronica Reyes-Arias (52)
06 June, My Birthday (47)
26 Sep., Papa (73)
31 Oct., Randy Hicks (52)
09 Nov., Junjun Ko (28)
05 Dec., Sweety Pearl (24)
01 July, Noel Padilla (22)
02 July, Donita Rose Lozares (16)
05 July, Asif Khan (29)
06 July, Melody Bergundo (20)
06 July, Ian Balbueno
08 July, Susana Mara (30)
10 July, Maddy Raj
10 July, Edgardo Jr Go (18)
10 July, Madhusudhan Das kr
12 July, Fil Anthony Cazenas (23)
17 July, Cüneyt Uçar (33)
18 July, Bonus Rowena
19 July, Joiz Arviola (26)
21 July, Marwa Mahmoud (23)
22 July, Peter Raddaq (26)
23 July, Annie Leonhart (29)
24 July, Gles Fajardo (26)
26 July, yusuf "Jato" Luspo
27 July, Maria cecilia Casino (33)
27 July, Lilibeth Ruiz
27 July, Pratap Sapra (45)
28 July, Analiza Go (37)
31 July, Mark Dale Sumangkilay (21)
31 July, Gretchen Jade Pascua (18)
31 July, Jennifer Inoncillo (31)
02 Aug., Abusivet Rabbit
02 Aug., Marylann Alinsug (18)
02 Aug., Abusive Rabbit
03 Aug., Joni Reyes (52)
06 Aug., Jun Alcoran (26)
10 Aug., Frederick Hitchcock (44)
10 Aug., Aileen Shield Salcedo (24)
13 Aug., Mart kenneth Cortes (19)
16 Aug., Sheerwood John Caday (16)
16 Aug., Rox Francisco
17 Aug., Anaruth Dela vega (19)
19 Aug., Gwen Reyes
20 Aug., Princess Augeli Abejo (19)
20 Aug., Saad Al juwaied (34)
21 Aug., Craig Rudd
21 Aug., Chito Salvador (47)
21 Aug., Tricia Go (12)
22 Aug., Edgardo Go (38)
23 Aug., Sharon Buck (61)
24 Aug., Maricel Abadier (25)
25 Aug., Carmela Ramos (19)
25 Aug., Rashida Jacobs (19)
27 Aug., Missy Downer (41)
27 Aug., Jay kenneth Concha (23)
29 Aug., Synthia Wilson (37)
30 Aug., Marwa Omar (24)
30 Aug., Wed Iglesia
31 Aug., Marlene Malgapo (30)
31 Aug., Jennylinne Magpantay
*Click here to add yours!*

Life's Journeys

XML Annoying Experience [22]
XML Bills & Utilities [47]
XML Blogging Stuffs [55]
XML Blogosphere [16]
XML BlogShares [76]
XML Charity [13]
XML Chat Programs [1]
XML Close to Perfection [89]
XML Computers [10]
XML Daily Rants [3]
XML Did You Know? [38]
XML Diet and Fitness [13]
XML E-Mail [10]
XML Family Matters [92]
XML Film & Television [22]
XML Flash [8]
XML Friends [10]
XML General [13]
XML Global News [19]
XML Haiku [1]
XML Health Issues [43]
XML Internet [22]
XML IS No 04-B-413 [4]
XML Joke Only [7]
XML Kids [50]
XML Lyrics [4]
XML Money Matters [6]
XML Neopets [16]
XML Notable Days [44]
XML Online Auction [7]
XML Online Gaming [4]
XML Online Survey [1]
XML Parenting [6]
XML Personal [42]
XML PH 2004 Election [14]
XML Philippine Politics [34]
XML Philippines [65]
XML Property Dispute [38]
XML Rose Online [5]
XML Service Center [4]
XML Shopping [13]
XML Soap Opera [1]
XML Social Network [3]
XML Spammers [16]
XML Sports [3]
XML Sympathy and Prayers [40]
XML Tech News [16]
XML Thoughtful Friends [15]
XML Three Men, Three Cases [51]
XML Tickle Tests [1]
XML Today's Quotes [5]
XML Travel [1]
XML Tribal Wars [3]
XML Unification Wars [17]
XML Views / Opinion [10]
XML Virus Alert [17]
XML Wireless and Mobility [20]
XML Wish List [6]
XML World Domination [19]

Links

ChinWags From AbuDhabi
R W O
More Than Quotes
Save A Child
Winter Sonata
Blogroll Me!

Movable Type 2.661
MT-Blacklist
PlogHost Webhosting