- Popular
- Most Commented-On

Online Threat Alerts (OTA)

An anti-cybercrime community alerting the public to web or internet threats.

Recently Commented On

www.asianetwork.net a Fake CN and ASIA Domain Name Registration Website - Phishing - Scamming - Fraud - Identity Theft
- 5 years ago
- Views: 3,781
- 12 Comments

351 Area Code Scam Calls - Have You Received One? - Questions and Answers

3 years ago
Views: 1,477
18 Answers

Norskla Limited Scam Store at norskla.com - Phishing - Scamming - Fraud - Identity Theft

1 month ago
Views: 3,170
2 Comments

Is forgottenjews.org a Scam? Review of Forgotten Jews - Questions and Answers

1 year ago
Views: 16,429
159 Answers

Mrs. Gloria C. Mackenzie Donation or Grant Foundation Scams - Lottery - Donation - Inheritance Scams - Ponzi Schemes

6 years ago
Views: 9,780
61 Comments

Virus Email - UPS Delivery Notification Tracking Number

Comments: 14
Views: 36,285
Save
Updated: Oct. 27, 2014 2014-10-27T08:56:05-05:00
Posted: Feb. 7, 2013 2013-02-07T09:43:28-05:00
Online Threat Alerts (OTA)

If you receive an e-mail message claiming to be from United Parcel Service (UPS) with the subject "UPS Delivery Notification Tracking Number", please do not open the attachment. The attachment is a virus/spyware called Mal/JSRedir-J and appears to have been sent from auto-notify@ups.com. But, the malicious e-mail message was not sent by UPS.

The name of the malicious attachment is nvoiceEVKDBQXRTKRXN4CTMI.html. This file name may change.

The aim of the persons behind this malicious e-mail message is, to trick their victims into opening the malicious attachment so that their computers can become infected with the virus/spyware Mal/JSRedir-J.

Here is a copy of the UPS virus e-mail message

From: UPS Quantum View <auto-notify@ups.com>
Subject: UPS Delivery Notification Tracking Number:EVKDBQXRTKRXN4CTMI
You have attached the invoice for your package delivery.

Thank you,
United Parcel Service
*** This is an automatically generated email, please do not reply ***

If your computer is infected with this virus/spyware, you can remove it using Sophos free virus removal tool. Click here to download.

Check the comment section below for additional information, share what you know, or ask a question about this article by leaving a comment below. And, to quickly find answers to your questions, use our search

engine.

Note: Some of the information in samples on this website may have been impersonated or spoofed.

Was this article helpful? +

Yes (1)
No (0)

Share this with others:

The comments, reviews or answers below do not necessarily reflect the views of Online Threat Alerts (OTA).

March 5, 2015 at 2:16 AM by an anonymous user from: Vienna, Austria
Seems it isn't active again now. Got several on my Company address that was sent by auto-notify@ups.com <logistirio@hswigo .gr>
remove
- June 3, 2015 at 6:05 AM by an anonymous user from: Darmstadt, Hesse, Germany
  Received this mail today in Germany.
  remove
February 28, 2015 at 3:10 AM by an anonymous user from: Cologne, North Rhine-Westphalia, Germany
Received this mail from "ups quantum view" the real mailadress was "dijob@dijob .hr". Deleted the mail - guess it was a scam.
remove
- February 28, 2015 at 5:14 AM by info
  Yes, it is a scam.
  remove
October 27, 2014 at 6:05 AM by an anonymous user from: Ashburn, Virginia, United States
How does this virus affect a Kindle Fire if this email virus is opened?
remove
- October 27, 2014 at 9:00 AM by info
  We cannot tell, because the malicious JavaScript will check your device for vulnerabilities, and if there is any, will redirect you to a malicious website that can take advantage of it.
  So, it is recommended not to open the attachment.
  remove
September 22, 2013 at 10:18 PM by an anonymous user from: Dresden, Saxony, Germany
Had one with<br/><br/>NUMBER OF parcel: 1XY2NM48CJ<br/><br/>.zip file.. never a need for these emails to contain zipped files. Ever. ;-) hope.others had the common.sense I had.
remove
August 30, 2013 at 3:23 AM by an anonymous user from: London, England, United Kingdom
I received this email 2 days ago and in my half asleep state opened the attachment on my android phone and then deleted the email, i have since received 2 more deleted without opening. I have Avg virus scan on my phone and its not picking anything up but Im still worried and scared now to log on to online banking, ebay etc. How can i be sure my phone doesn't have a virus? Thanks
remove
August 13, 2013 at 9:53 PM by info
Yes it can infect an IPhone, if there is an exploit in the operating system or an application.
remove
August 13, 2013 at 7:57 AM by an anonymous user from: Ciudad Victoria, Tamaulipas, Mexico
Can this virus afect IPHONEs?
remove
April 29, 2013 at 1:58 PM by info
If you scanned your phone and nothing was detected, we can safely say your phone is ok. Scan your phone weekly and ensure that your antivirus software is updated daily.
remove
April 29, 2013 at 1:54 PM by an anonymous user from: Middlesbrough, England, United Kingdom
Any ideas how to get rid of it? I have downloaded various anti virus apps (Norton, Sophos and avg) and they don't seen to pick anything up when scanning, did that mean my phone is not infected?
remove
April 29, 2013 at 12:09 PM by info
Yes it can infect an Android phone, if there is an exploit in the operating system or an application.
remove
April 29, 2013 at 11:55 AM by an anonymous user from: Middlesbrough, England, United Kingdom
Will this virus infect an Android phone?
remove