SPAM WARNING*

Greetings All-
I'm trying to help a friend out. All emails that he sends out are tagged in the subject line with: ****SPAM****.
He has a small website. If he accesses webmail.xyz.com through his browser to send out an email, it is not so marked. A copy of his long headers :
From: [email protected]
Subject: ****SPAM**** test c
Date: February 12, 2009 10:30:16 AM EST
To: [email protected]
X-Apparently-To: [email protected] via 67.195.8.178; Thu, 12 Feb 2009 07:30:19 -0800
X-Yahoofilteredbulk: 207.150.192.142
X-Ymailisg: E6Z3Pf8WLDsLfqo0EiYiOU2.i29Uvm6x2lTo86MZn3RhHDVuIv3.yEwRCnOFUbzC4dNXeDF
JYPbhXjHfGCo6UjUkJ5ONBsYtO9qKSZeooHex5QDz9o0SevALBvY5Ht.KicGqW7PDO5Pv3qYDJtuN.G9 LRDv7wiaHQvfyE2l0j.C7M5Se7rBM4svye.p9e0eX..rFSThAQFL8C2v5rP6VDSRC9B8g.V.YbrxWhPG kgexSCa8sIrRFKO45tYFUPRGLGS4tGWkFNXjub99DaAtwgnUTphrSvyJRvAfwVDx8jjuKCL8-
X-Originating-Ip: [207.150.192.142]
Authentication-Results: mta345.mail.re4.yahoo.com from=; domainkeys=neutral (no sig); from=; dkim=neutral (no sig)
Received: from 207.150.192.142 (EHLO mx.barrymelvin.com) (207.150.192.142) by mta345.mail.re4.yahoo.com with SMTP; Thu, 12 Feb 2009 07:30:19 -0800
Received: from cpe-98-14-139-30.nyc.res.rr.com ([98.14.139.30]) by barrymalvin.com with MailEnable ESMTP; Thu, 12 Feb 2009 09:30:17 -0600
X-Spam-Flag: YES
X-Spam-Checker-Version: SpamAssassin 3.2.3 (2007-08-08) on wtfs207.aus.us.siteprotect.com
X-Spam-Level: ****
X-Spam-Status: Yes, score=6.9 required=5.0 tests=AWL,BAYES_99, FHHELO_EQ_D_D_D_D,HELO_DYNAMIC_DHCP,HELO_DYNAMIC_IPADDR,RDNSNONE autolearn=no version=3.2.3
X-Spam-Report: * 3.5 BAYES_99 BODY: Bayesian spam probability is 99 to 100% * [score: 1.0000] * 0.1 RDNS_NONE Delivered to trusted network by a host with no rDNS * 1.5 HELODYNAMICDHCP Relay HELO'd using suspicious hostname (DHCP) * 0.6 FHHELO_EQ_D_D_DD Helo is d-d-d-d * 2.6 HELODYNAMICIPADDR Relay HELO'd using suspicious hostname (IP addr * 1) * -1.4 AWL AWL: From: address is in the auto white-list
Message-Id: <[email protected]>
Content-Type: text/plain; charset=US-ASCII; format=flowed
Content-Transfer-Encoding: 7bit
Mime-Version: 1.0 (Apple Message framework v930.3)
X-Mailer: Apple Mail (2.930.3)
X-Spam-Prev-Subject: test c
It's quite annoying for him when dealing with clients. I've gone through his Apple Mail Preferernces with him and they all seem ok.
I do this by phone as we live 300 miles apart. It looks to me that these headers are saying that he has a 'suspicious Host name.'
His ISP has been of no help. Has anyone out there had a similar problem, and if so, how was it resolved?
Thanks in advance. ~jeff
Message was edited by: JeffX
Message was edited by: JeffX

X-Spam-Checker-Version: SpamAssassin 3.2.3 (2007-08-08) on wtfs207.aus.us.siteprotect.com
The receiver is running SpamAssassin and it's determining that the e-mail is spam. The recipient may need to use (a lot) more examples to train his spam filter. You can minimize the probability of flagging this as spam by setting up the sending mail server correctly. It appears that it's not identifying itself to other mail servers by the registered DNS name, and doesn't have reverse DNS set. Fixing those things will help.

Similar Messages

Updating SPAM : Warning , No Response

While Updating SPAM on my IDES SAP ECC 6.0 server , i got this error log and the update process doesn't respond at "DD IMPORT finished with returncode 4" . Here is the error log file .
Sat Oct 20 00:56:08 2007
Trace File of External Event Raiser (Level=2, Append=0)
EventID: SAP_TRIGGER_RDDIMPDP
SAP message server host: sdisvr36
SAP message server service (new): 3900
SAP message server service (old): sapmsS36
MsIAttachEx: connect to sdisvr36 / 3900
NiIInit: allocated nitab (2048 at 00EDB080)
NiHsLInit: alloc host/serv bufs (100/100 entries)
NiPGetNodeAddrList: got 1 interface(s) from operating system
[0] IP-Address: 192.168.1.36
NiHsLGetNodeAddr: got hostname 'sdisvr36' from operation system
HN='sdisvr36'; Add[0]=192.168.1.36
NiIGetNodeAddr: hostname 'sdisvr36' = addr 192.168.1.36
NiIGetServNo: servicename '3900' = port 0F.3C/3900
NiICreateHandle: hdl 0 state NI_INITIAL
NiIInitSocket: set default settings for new hdl 0 / sock 3948 (I4; ST)
NiIBlockMode: set blockmode for hdl 0 FALSE
NiITraceByteOrder: CPU byte order: little endian, reverse network, low val .. high val
NiIConnectSocket: hdl 0 is connecting to 192.168.1.36:3900 (timeout=5000)
Sat Oct 20 00:56:09 2007
SiPeekPendConn: connection of sock 3948 broke (10061-WSAECONNREFUSED: Connection refused)
NiHsLGetHostName: found address 192.168.1.36 in cache
NiIGetHostName: addr 192.168.1.36 = hostname 'sdisvr36'
***LOG Q0I=> NiPConnect2: connect (10061: WSAECONNREFUSED: Connection refused) [nixxi.cpp 2764]
ERROR => NiPConnect2: SiPeekPendConn failed for hdl 0 / sock 3948
(SI_ECONN_REFUSE; I4; ST; 192.168.1.36:3900) [nixxi.cpp    2764]
NiICloseHandle: closing initial hdl 0
ERROR => MsIAttachEx: NiBufConnect to sdisvr36/3900 failed (rc=NIECONN_REFUSED) [msxxi.c      652]
ERROR ***: MsAttach (host=sdisvr36, serv=3900), rc = -100
MsIAttachEx: connect to sdisvr36 / sapmsS36
NiHsLGetNodeAddr: found hostname 'sdisvr36' in cache
NiIGetNodeAddr: hostname 'sdisvr36' = addr 192.168.1.36
NiHsLGetServNo: got service name 'sapmsS36' from operation system
SN='sapmsS36'; Port=0E.10/3600; PC=tcp
NiIGetServNo: servicename 'sapmsS36' = port 0E.10/3600
NiICreateHandle: hdl 0 state NI_INITIAL
NiIInitSocket: set default settings for new hdl 0 / sock 3948 (I4; ST)
NiIBlockMode: set blockmode for hdl 0 FALSE
NiIConnectSocket: hdl 0 is connecting to 192.168.1.36:3600 (timeout=5000)
Sat Oct 20 00:56:10 2007
SiPeekPendConn: connection of sock 3948 broke (10061-WSAECONNREFUSED: Connection refused)
NiHsLGetHostName: found address 192.168.1.36 in cache

Return code 4 is a warning so you should be able to proceed. Did you restart the SPAM import process (just re-run transaction SPAM and restart the import from the menu)? Having to restart the SPAM import is fairly common.
Hope that helps.
J. Haynes
Message was edited by:
        Joe Haynes

Deleting spam warning threads...

Both BluShadow and I recently reported a spammer.
It appears that they have now been removed, but why have our threads in this forum also been deleted?
Cheers
Ben

Can the same be done for broken doc link threads ?
I reported a broken link here (Broken doc link and it seems to have been fixed.
Thanks
Srini

E-mail from one particular person (my mother) cannot get to me but I did not block her.

My mother has sent me several e-mails today which have not gotten through. The first was an e-mail that was sent to several people. It bounced back to her only on me with a "spam" warning. So then she sent the same information only to me, and it got bounced back again. She tried a third time, just to me, just a simple e-mail. Came back "mailer daemon."

With your help, we found the direction we needed and got the problem solved. THANK YOU SO MUCH!

I want to email everyone I have ever emailed to warn them about a spam message I received and *stoopidly* opened!

How do I email everyone I have ever emailed to warn them about a spam message I received and *stoopidly* opened! I don't want to add them separately to an email - there are hundreds. I would like to do it one foul swoop. Thanks in advance of any pears of wisdom x

You probably don't want to do this. At least not as described.
Think about it. You're talking of sending an email to every individual that you've ever emailed, every mailing list you've ever posted to, and more ... and to tell them, what? that you opened an email. Big deal.
I suspect that >95% of the people won't care. The rest will recognize it for what it was - a momentary lapse of judgement, for which you're now broadcasting to a wider audience.
Seriously, millions of people open spam messages every hour. Think of the mess that email would be if every opened spam message generated a few hundred "oops, I'm sorry, I opened a spam message" additional messages to everyone's contacts.
Unless you have specific reason to believe that they will somehow be affected by your opening of the email, you're just going to make yourself look even sillier.
If you do fear that your opening of this message is going to somehow affect them (in ways i can't imagine) then your first action is to determine a list of people that you want to notify (I'm sure "everyone" is not appropriate). You could write a script to extract the recipient of every message in your Sent folder (or, even better, every selected message, so you can pre-filter the list), but I still question its value.
The following AppleScript will extract a unique list of email addresses from the selected messages in Mail.app - select the messages, then run the script and you'll have a list of addresses. Again, I can't stress how much I think you shouldn't bother running this, but it demonstrates one option.
set recipientsList to {}
tell application "Mail"
set sel to get selection
repeat with msg in sel
repeat with recip in recipients of msg
set addr to address of recip
if addr is not in recipientsList then
copy addr to end of recipientsList
end if
end repeat
end repeat
end tell
return recipientsList

See below - warning of SPAM

-----Original Message-----
From: Apple <[email protected]>
To: louiser599 <***********>
Sent: Thu, 14 Aug 2014 23:30
Subject: Your Apple ID was disabled.
Note: This email has been automatically generated by apple‚®. Please do not respond to this email address.
Dear Customer ( *************),
The following information for your Apple ID was updated on 14/08/2014
Shipping and/or billing address
We've detected unusual activity on your account. This Apple ID has been disabled to protect your account.
Confirm Your Identity
Apple® Team
apple.com
‚® and ¢€ž¢ Registered trade mark and trade mark of Research Resources (ABN 51 001 077 256)
‚® Registered trade mark of Telstra Corporation Limited (ABN 33 051 775 556)
<E-mail Edited by Host>

This is a phishing attack
Report to Apple using Identifying fraudulent "phishing" email

Anybody else having Arch mail being marked as spam?

i dont know who to tell this to - but i just received an email subject "AUR Comment for hydra" and it went into gmail's spam folder. Not only that, it gives me a warning, "Warning: This message may not be from whom it claims to be. Beware of following any links in it or of providing the sender with any personal information". This is the 1st time its ever happened.
Header:
from [email protected]
reply-to [email protected]
to
date Tue, Aug 4, 2009 at 5:05 PM
subject AUR Comment for hydra
Now - i do have an @archlinux.us account that forwards to my @gmail account. If thats relavant or not - i have no idea. Anbody else having this happen?

Can't say I've seen that. My mail goes direct to my gmail account though, with no forwarding in between... Just hit the "Not Spam" button so the Bayesian filter can learn that you don't think it's spam.

Php code is not working as intended in a simple spam block solution

Hi. I'm trying to get some simple php code (as suggested on a tutorial page I found) to work on my form submission test page in order to reduce/stop spam. However, the results so far have not quite been what I expected. Any help will be appreciated.
Basically I used the code given in the two grey boxes on this tutorial page http://myphpform.com/form-spam.php (but had to add this <?php ... ?> around the code given in the second box, otherwise it wouldn't have worked!) for my test page, and the result was supposed to look something like shown on this page http://myphpform.com/contact.php and indeed when I previewed my page in offline mode it displayed as intended with the extra field similar to the "Access code:" as on this example page, however that's not what I got when I uploaded my page.
What happens when I go to the live page is that as soon as it loads it gives me the message: "Wrong access code" before I even have a chance to look at the form there. It's the message the user is supposed to get when they input the suggested code incorrectly, but not when the page first loads! This is what the live test page basically looks like when I go to it http://www.scotiauk.com/contact/forms/smotsContactTest.php. I wonder what's going wrong?
I actually noticed a short while ago, after 'viewing page source' (source code) on the live test page that the page is for some reason only displaying less than half of the html code and cuts off the rest of it (including all of the <body>) just at the point (at the end of the <head> section) where the couple of lines of php script (borrowed from the second grey box in the tutorial) were meant to be - the script that includes "Wrong access code". So I get why it shows a blank page with only that message in it but not why it removes all of the <body> code once it is live!
Just for information, this is what the page is really meant to look like - minus the php code: http://www.scotiauk.com/contact/forms/smotsContact.html. That is the original page that I copied and tried to modify with the new code. So, any ideas will be appreciated, thanks!

Just for information, this is what the page is really meant to look like - minus the php code: http://www.scotiauk.com/contact/forms/smotsContact.html. That is the original page that I copied and tried to modify with the new code. So, any ideas will be appreciated, thanks!
The page that you have quoted contains an infection as the following warns.
As far as your problem is concerned, you need to know how a from works. Have a look at this video.

My server is sending SPAM - how do I find out which user(s) are sending it?

I just received a notice from my ISP that some SPAM was sent by my email server. He included samples of the spam. Unfortunately I can't find any info in the spam to tie it to an IP number that would help me find if one of my users is infected.
I think I have the SMTP set so that it can only be used with authentication. We have had this set up for some time now (over two years at least) and this is our first instance.
I'm concerned that one of my users on a PC is infected and using their smtp authentication to send this stuff.
Any advice on where to go from here?
I have included the results of postconf -n to see if I have any configuration problems.
Thanks.
alias_maps = hash:/etc/aliases
command_directory = /usr/sbin
config_directory = /etc/postfix
content_filter = smtp-amavis:[127.0.0.1]:10024
daemon_directory = /usr/libexec/postfix
debugpeerlevel = 2
enableserveroptions = yes
inet_interfaces = all
mail_owner = postfix
mailbox_transport = cyrus
mailq_path = /usr/bin/mailq
manpage_directory = /usr/share/man
mapsrbldomains =
messagesizelimit = 15728640
mydestination = $myhostname,localhost.$mydomain,localhost,zeryn.com
mydomain = zeryn.com
mydomain_fallback = localhost
myhostname = mail.zeryn.com
mynetworks = 127.0.0.1/32,65.39.65.22
mynetworks_style = host
newaliases_path = /usr/bin/newaliases
ownerrequestspecial = no
queue_directory = /private/var/spool/postfix
readme_directory = /usr/share/doc/postfix
recipient_delimiter = +
sample_directory = /usr/share/doc/postfix/examples
sendmail_path = /usr/sbin/sendmail
setgid_group = postdrop
smtpdclientrestrictions = permit_mynetworks rejectrblclient sbl-xbl.spamhaus.org permit
smtpdpw_server_securityoptions = login,cram-md5,plain
smtpdrecipientrestrictions = permitsasl_authenticated,permit_mynetworks,reject_unauthdestination,permit
smtpdsasl_authenable = yes
smtpduse_pwserver = yes
unknownlocal_recipient_rejectcode = 550
virtualaliasmaps = hash:/etc/postfix/virtual
virtualmailboxdomains = hash:/etc/postfix/virtual_domains
virtual_transport = lmtp:unix:/var/imap/socket/lmtp
xserve Mac OS X (10.4.9)

A list of the emails was sent to me, but I'm not sure there is enough header info in them to tell me what I want. However, I searched the log for the "from email" and found some at about the same time in the log. Here is the header and the parts of the log dealing with this email address:
Email header? -------------
From: "alisander gianni" <[email protected]>
To: <Undisclosed Recipients>
Subject: RE: Get the size that kills with enlargement pills. Try Advanced Gain Pro ***** Enlargement Pills.
Date: Sun, 6 May 2007 07:43:43 -0700
Message-ID: <357701c78fec$f1ee7960$0801010a@lye>
MIME-Version: 1.0
Content-Type: text/plain;
charset="koi8-r"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook Express 6.00.2900.2527
Thread-Index: AceP7S2xF77i9UyvRp6aehJVe3GLbg==
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.3028
X-Sieve: CMU Sieve 2.2
X-AOL-IP: 65.39.65.21 (<-- this is my server ip)
SMTP log entries ------------
May 6 07:44:49 zeryn postfix/smtpd[2846]: warning: 60.48.247.22: hostname tm.net.my verification failed: Host not found
May 6 07:44:49 zeryn postfix/smtpd[2846]: connect from unknown[60.48.247.22]
May 6 07:44:50 zeryn postfix/smtpd[2846]: 0621623D6EDE: client=unknown[60.48.247.22]
May 6 07:44:50 zeryn postfix/cleanup[2850]: 0621623D6EDE: message-id=<357701c78fec$f1ee7960$0801010a@lye>
May 6 07:44:50 zeryn postfix/qmgr[118]: 0621623D6EDE: from=<[email protected]>, size=1847, nrcpt=1 (queue active)
May 6 07:44:50 zeryn postfix/smtpd[2853]: connect from localhost[127.0.0.1]
May 6 07:44:50 zeryn postfix/smtpd[2853]: EC70A23D6EE1: client=localhost[127.0.0.1]
May 6 07:44:50 zeryn postfix/cleanup[2850]: EC70A23D6EE1: message-id=<357701c78fec$f1ee7960$0801010a@lye>
May 6 07:44:50 zeryn postfix/qmgr[118]: EC70A23D6EE1: from=<[email protected]>, size=2231, nrcpt=1 (queue active)
May 6 07:44:50 zeryn postfix/smtpd[2853]: disconnect from localhost[127.0.0.1]
May 6 07:44:51 zeryn postfix/smtp[2851]: 0621623D6EDE: to=<[email protected]>, relay=127.0.0.1[127.0.0.1], delay=2, status=sent (250 2.6.0 Ok, id=02590-09, from MTA: 250 Ok: queued as EC70A23D6EE1)
May 6 07:44:51 zeryn postfix/qmgr[118]: 0621623D6EDE: removed
May 6 07:44:51 zeryn postfix/pickup[2343]: 2501123D6EE5: uid=77 from=<[email protected]>
May 6 07:44:51 zeryn postfix/lmtp[2854]: EC70A23D6EE1: to=<[email protected]>, relay=/var/imap/socket/lmtp[/var/imap/socket/lmtp], delay=1, status=sent (250 2.1.5 Ok)
May 6 07:44:51 zeryn postfix/qmgr[118]: EC70A23D6EE1: removed
May 6 07:44:51 zeryn postfix/cleanup[2850]: 2501123D6EE5: message-id=<357701c78fec$f1ee7960$0801010a@lye>
May 6 07:44:51 zeryn postfix/qmgr[118]: 2501123D6EE5: from=<[email protected]>, size=2510, nrcpt=1 (queue active)
May 6 07:44:51 zeryn postfix/smtpd[2846]: disconnect from unknown[60.48.247.22]
May 6 07:44:51 zeryn postfix/smtpd[2853]: connect from localhost[127.0.0.1]
May 6 07:44:51 zeryn postfix/smtpd[2853]: 3949F23D6EE8: client=localhost[127.0.0.1]
May 6 07:44:51 zeryn postfix/cleanup[2850]: 3949F23D6EE8: message-id=<357701c78fec$f1ee7960$0801010a@lye>
May 6 07:44:51 zeryn postfix/qmgr[118]: 3949F23D6EE8: from=<[email protected]>, size=2874, nrcpt=1 (queue active)
May 6 07:44:51 zeryn postfix/smtpd[2853]: disconnect from localhost[127.0.0.1]
I'm not sure how to read the log file. Is there something here out of the ordinary? Does the server consider these valid users/email?

R3 4.7 upgrade to ECC 60 EHP5 spam error Program terminated jobRDDMNTAB

We're run upgrade procedure for development source system R/3 4.7 set 2.00 to ECC 6.0 EHP 5
on HP-UX 11.31, Oracle 9.2.0.8:
Latest version of SAPEXEDB-378 and SAPEXE-378 levels patch are installed.
-R3trans version 6.13 (release 640 - 19.01.11)
-tp version 340.16.67 (release 640)
-disp+work information
kernel release                640
kernel make variant           640_REL
compiled on                   HP-UX B.11.23 U ia64 for "hpia64"
compiled for                  64 BIT
compilation mode              Non-Unicode
compile time                  Oct 23 2011 20:47:12
update level                  0
patch number                  389
source id                     0.389
- BRCONNECT 6.40 (52)
- spam version 6.20/0038
-SAPKB62068, SAPKA62068, SAPKH47021, SAPKE47018, SAPKIPYH52,
SAPKITLRB4,SAPK-10008INHRCEE, ST-A/PI 01N_620_R3 0000,SAPKGPIB04,
SAPKIPZH52 of support packages installed.
Result of manual running tp commands with options:
tp showbuffer SID pf=/usr/sap/SID/trans/bin/TP_DOMAIN_SID.PFL
This is tp version 340.16.67 (release 640)
Warning: Parameter DBLIBPATH is no longer used.
Warning: Parameter DBSWPATH is no longer used.
SID buffer:
SAPKD62044 |will not be imported because it is tagged.
that makes 0 transports to be imported.
tp finished with return code: 0
meaning: Everything OK
When we're try install latest spam version 6.20/044, next 2 error's
occured at IMPORT_PROPER step:
Import steps not specific to transport request:
-Activate inactive runtime objects->Program terminated (job: RDDMNTAB,
no.: 20543600), Ended with return code: ===> 12 <===
in SM21:
14:50:48 BTC 15 000 DDIC Q0 E Signal 11 received by operating system
14:50:58 BTC 15 Q0 1 Start Workproc15, 7 times since system startup. PID 1104
14:50:58 BTC 15 000 DDIC F3 T Invalid object name for TemSe object: " "
14:50:58 BTC 15 000 DDIC EC F Failed to create log for job RDDIMPDP
14:50:58 BTC 15 000 DDIC F2 0 Calling program reports invalid handle for TemSe object
(magic==X'NULL-ptr')
14:52:53 BTC 16 000 DDIC Q0 E Signal 11 received by operating system
14:52:58 BTC 16 Q0 1 Start Workproc16, 7 times since system startup. PID 1179
14:52:58 BTC 16 000 DDIC F3 T Invalid object name for TemSe object: " "
14:52:58 BTC 16 000 DDIC EC F Failed to create log for job RDDMASGL
14:52:58 BTC 16 000 DDIC F2 0 Calling program reports invalid handle for TemSe object
(magic==X'NULL-ptr')
14:53:53 DIA 02 000 DDIC Q0 E Signal 11 received by operating system
14:53:54 DIA 02 Q0 1 Start Workproc 2, 3 times since system startup. PID 1233
14:53:54 DIA 03 000 DDIC Q0 E Signal 11 received by operating system
14:53:54 DIA 03 Q0 1 Start Workproc 3, 3 times since system startup. PID 1236
14:53:55 DIA 04 000 DDIC Q0 E Signal 11 received by operating system
14:53:55 DIA 04 Q0 1 Start Workproc 4, 3 times since system startup. PID 1239
14:54:07 RD S2 3 Connection to CPI-C client 050 was closed
14:54:07 RD S7 4 > Partner LU name:
14:54:07 RD S0 R > Host: yyyhost
14:54:07 RD S0 I > Partner TP Name: tp
14:54:07 DIA 01 000 DDIC SPAM R4 9 Communication error, CPIC return code 020, SAP return code 223
14:54:07 DIA 01 000 DDIC SPAM R5 A > Conversation ID: 76517657
14:54:07 DIA 01 000 DDIC SPAM R6 4 > CPI-C function: CMSEND(SAP)
14:54:07 DIA 01 000 DDIC SPAM TP 0 Tp call failed (RFC RC = 4: RFC message = ...)
В se37:
RDDIMPDP DDIC Complete 22.11.2011 14:54:04 -!!
RDDIMPDP DDIC Canceled 22.11.2011 14:50:48 -?
RDDMASGL DDIC Complete 22.11.2011 14:53:53 -!!
RDDMASGL DDIC Canceled 22.11.2011 14:52:53 -?
When we 'e try istall another component path (EA-APPL200 for example ), inspam 0038 we 'e see:
Error in phase: IMPORT_PROPER
Reason for error: TP_STEP_FAILURE
Return code: 0012
1 ETP108 tp path : "tp"
1 ETP109 version and release : "340.16.67" "640"
1 ETP198
4 EDA506 -> "/SDF/SWCM_PAT03D" Activation - - -
4 EDA492 Warnings: "0"
4 EDA483 Errors: "0"
4 EDA495 Total runtime: " "
1 ETP173 DISTRIBUTION OF DD-OBJECTS
1 ETP110 end date and time : "20111122145403"
1 ETP111 exit code : "0"
4 EDA492 Warnings: "0"
4 EDA483 Errors: "0"
4 EDA495 Total runtime: " "
1AETR012XProgram terminated (job: "RDDDIS0L", no.: "15141800")
4 EDA492 Warnings: "0"
4 EDA483 Errors: "0"
4 EDA495 Total runtime: " "
1 ETP173 DISTRIBUTION OF DD-OBJECTS
1 ETP110 end date and time : "20111122151518"
1 ETP111 exit code : "12"
SM21 the job RDDDIS0L canceled:
15:14:18 BTC 16 000 DDIC Q0 E Signal 11 received by operating system
15:14:19 BTC 16 Q0 1 Start Workproc16, 9 times since system startup. PID 1946
15:14:19 BTC 16 000 DDIC F3 T Invalid object name for TemSe object: " "
15:14:19 BTC 16 000 DDIC EC F Failed to create log for job RDDDIS0L
15:14:19 BTC 16 000 DDIC F2 0 Calling program reports invalid handle for TemSe object
(magic==X'NULL-ptr')
In 000-client under ddic i'm report RDDMNTAB scheduled( RDDNEWPP),class A(High).
for messages : "Failed to create log for job XXXX" for /usr/sap/YYY/SYS/global/000JOBLG directory( owner: yyyadm:sapsys) next command exeuted: chmod 777 /usr/sap/YYY/SYS/global/000JOBLG
Very difficult situation with this SPAM step's!...
How solve this problem?
PS. sorry for conjoint text, forums' bugs...
Edited by: Baurzhan Lekerov on Nov 22, 2011 4:05 PM

We're getting queue of required packages,new tp and R3trans versions, ABAP nad JAVA corrections for 702,stack.xml and stack_for_slm.xml from MOPZ and put this files under <sid>adm into download directory:
/backup_SID/INSTALL/EHP5_UPGRADE on server:
ll /backup_SID/INSTALL/EHP5_UPGRADE:
in this directory 6 directories with unzipped DVD:
drwxr-x--- BS7i2010_Java_Comp
drwxr-x--- exp_lang
drwxr-x--- exp_pack_all_components
drwxr-x--- export_ehp5 -> 2 Export DVD
drwxr-x--- ecc60_ehp5_components
drwxr-x--- upgr_master -> Upgrade Master
and other files from MOPZ queue:
-rw-rr SAPEXE_90-20006757.SAR
-rw-rr NW70BICNT70504_0-10007518.ZIP
-rw-rr XI7_1_SEM-BW_605-sp5.dlt
-rw-rr sidadm     sapsys     2499937 Jun 9 12:14 XI7_1_SEM-BW_605-sp5.tpt
...... and more
We're started upgrade procedure with STARTUP script and on PREP_EXTRACT/KEY_CHK phase next error occured:
"ERROR: Scanning of download directory failed with the following error: No fix archive found in download directory"
in KEYCHK.LOG:
1 ETQ399 Scanning directory '/backup_SID/INSTALL/EHP5_UPGRADE/EHP5_SPackages'.
1 ETQ399 Found 697 files.
2WETQ399 File '/backup_SID/INSTALL/EHP5_UPGRADE/EHP5_SPackages/BSFOUND70205_0-20004435' could not be recognized!
2WETQ399 File '/backup_SID/INSTALL/EHP5_UPGRADE/EHP5_SPackages/BSFOUND70205_0-20004435.ZIP' could not be recognized!
2 ETQ399 Found #1 'EPS/in' in '/backup_SID/INSTALL/EHP5_UPGRADE/EHP5_SPackages/EA-DFPS603.SAR'.
2 ETQ399 File '/backup_SID/INSTALL/EHP5_UPGRADE/EHP5_SPackages/EA-DFPS603.SAR' determined as 'type=ABAPPACK'.
we're unzipped *.ZIP packages into download directory manually, but next error with *.tpt extensions occured again:
2WETQ399 File '/backup_SID/INSTALL/EHP5_UPGRADE/XI7_1_FINBASIS_605-sp5.tpt' could not be recognized!
2 ETQ399 Setting action for '/backup_SID/INSTALL/EHP5_UPGRADE/K-604DHINISPSCA.SAR' to 'UNPACK_TRANS'.
2 ETQ399 Setting action for '/backup_SID/INSTALL/EHP5_UPGRADE/KW70205.SAR' to 'UNPACK_TRANS'
/upg/abap/log/CHECKS.LOG is empty.
cat PHASES.LOG :
1 ETQ201 Entering upgrade-phase "BEGIN_PRE" ("20111126195508")
4 ETQ399 Set environment for standard connect:
2 ETQ367 Connect variables are set for standard instance access
4 ETQ399 System-nr = '00', GwService = ''
4 ETQ399 Environment variables:
4 ETQ399   auth_shadow_upgrade=0
1 ETQ200 Executing actual phase 'PREP_EXTRACT/BEGIN_PRE'.
4 ETQ010 Date & Time: 20111126195508
cat SAPupchk.log :
This is SAPup release lmt_001 version 40.024 compile time 03:26:32 Nov 23 2011.
This is UNICODE SAPup!
..finished at 20111126195508 with status SUCCEEDED.
CURRENTPHASE PREP_EXTRACT/KEY_CHK
...started at 20111126195508
Using phase log file 'KEYCHK.LOG'.
...begin dialogue at 20111126195508
...end dialogue at 20111126204132
...begin dialogue at 20111126204449
...end dialogue at 20111126205544
...begin dialogue at 20111126205902
...end dialogue at 20111126212808
...begin dialogue at 20111126213133
...end dialogue at 20111126215359
...begin dialogue at 20111126215736
cat SCANCAR.LOG:
drwxr-xr-x        4096    20 Oct 2011 23:40 igs/dump
drwxr-xr-x        4096    20 Oct 2011 23:40 igs/log
-rwxr-xr-x           4    20 Oct 2011 23:44 igs/igshelper.lst
cat SCANCAR.SAV:
ENV: SAPSYSTEMNAME=KDV
ENV: auth_shadow_upgrade=0
ENV: dbms_type=ORA
ENV: dbs_ora_schema=SAPKDV
ENV: dbs_ora_tnsname=KDV
EXECUTING /oracle/KDV/usrsap/upg/abap/tools/SAPCAR (/oracle/KDV/usrsap/upg/abap/tools/SAPCAR) -tvf /backup_KDV/INSTALL/EHP5_UPGRADE/igsexe_3-20007786.sar
SAPCAR: processing archive /backup_KDV/INSTALL/EHP5_UPGRADE/igsexe_3-20007786.sar (version 2.01)
-rwxr-xr-x    31880896    30 Sep 2011 00:22 bwgis.so
-rwxr-xr-x    31720200    30 Sep 2011 00:22 bwgis_c.so
-rwxr-xr-x    36529288    30 Sep 2011 00:24 gfwchart.so
-rwxr-xr-x    36434128    30 Sep 2011 00:25 gfwchart_c.so
-rwxr-xr-x         189    30 Sep 2011 00:32 igsexe.lst
-rwxr-xr-x         438    30 Sep 2011 00:32 igsmanifest.mf
-rwxr-xr-x    34465896    30 Sep 2011 00:31 igsmux_mt
-rwxr-xr-x    15608480    30 Sep 2011 00:31 igspw_mt
-rwxr-xr-x    13518008    30 Sep 2011 00:32 igswd_mt
-rwxr-xr-x    12428336    30 Sep 2011 00:25 imgconv.so
-rwxr-xr-x    19683776    28 Sep 2011 02:20 libsapnwrfc.so
-rwxr-xr-x    10839352    30 Sep 2011 00:25 rspoconnector.so
-rwxr-xr-x    25510112    30 Sep 2011 00:19 sgxgis.so
-rwxr-xr-x    35754952    30 Sep 2011 00:23 xmlchart.so
-rwxr-xr-x    35659800    30 Sep 2011 00:23 xmlchart_c.so
-rwxr-xr-x     6072600    30 Sep 2011 00:25 zipper.so
Are ./STARTUP script can not find 6 DVD-directories in download directory?
or some problems with *>ZIP packages files? we're unzipped *.ZIP and getting *.tpz, *.tpt files in download directory.
What is *.tpz and *tpt-extensions files?
Cai I to ignore this messages in KEYCHK.LOG:
"2WETQ399 File '/backup_SID/INSTALL/EHP5_UPGRADE/EHP5_SPackages/BSFOUND70205_0-20004435.ZIP' could not be recognized!
2WETQ399 File '/backup_SID/INSTALL/EHP5_UPGRADE/XI7_1_FINBASIS_605-sp5.tpt' could not be recognized!
At CURRENT PHASE PREP_EXTRACT/KEY_CHK next error message occured:
"Please enter mount points for the DVDs required for the upgrade.
Enter at least the mount point containing "Kernel DVD for OS HPUX_IA64 and Non-Unicode"
In donwload directory we're don/t have a Kernel DVD for EHP 5 HPUX_IA64 and Non-Unicode.
What is the DVD Kernel (7.01,702, 7.20 releases) we're need to download now?
Edited by: Baurzhan Lekerov on Nov 27, 2011 9:35 AM

I received a spam message from my iCloud email to my hotmail account - what gives?

So I have my Hotmail email and iCloud (@me.com) account on my iPhone. Suddenly today, I received an email from my @me.com account - to my Hotmail account - this is very odd as I rarely-to-never use my iCloud email account. So I have a feeling either A. it was a genuine security breach or B. it's some weird hoax.
Yes, I know many people spam with names that look similar etc - but I've checked the message headers - and they appear like a legitimate message. Also, I replied to the message - and received it in my @me.com account. I'm not some n00b who calls the help desk - but was wondering if anyone else had this issue today...
I've included the message header below - *note that I've replaced my real email address with 'main_user'
x-store-info:J++/JTCzmObr++wNraA4Pa4f5Xd6uensxNRGNyaWNydXPXcED4E6wrUhfaiZqpZKByo GDWQObmTLUKdwtwlRkTRev4908JE96hAcKLDUvCgXNiY8OnYRCFzSWBzdcvGHfGDnW7FMhqY=
Authentication-Results: hotmail.com; sender-id=pass (sender IP is 17.158.161.9) [email protected]; dkim=none header.d=me.com; x-hmca=pass
X-SID-PRA: [email protected]
X-SID-Result: Pass
X-DKIM-Result: None
X-Message-Status: n:0:n
X-AUTH-Result: PASS
X-Message-Delivery: Vj0xLjE7dXM9MDtsPTE7YT0xO0Q9MTtHRD0xO1NDTD0w
X-Message-Info: NhFq/7gR1vRjUmbB+D0yqAkLsNaqWYoPZC+kT1p39YSm427nLMzOn27OajnAnounhvDMEvDB3BxOswC Q5ARMIJZpm6vNY6QFEeAiv0RCxttwFBeH3Jz380eNc/Wmov/uQK3yFnMXSDftfv8M3KMoxg==
Received: from nk11p00mm-asmtp010.mac.com ([17.158.161.9]) by SNT0-MC3-F43.Snt0.hotmail.com with Microsoft SMTPSVC(6.0.3790.4900);
     Wed, 16 May 2012 12:09:55 -0700
MIME-version: 1.0
Content-type: multipart/alternative;
boundary="Boundary_(ID_IkKHXnVwOqs8JawmT8F6hw)"
Received: from nk11p00mm-spool001.mac.com ([17.158.161.66])
by nk11p00mm-asmtp010.mac.com
(Oracle Communications Messaging Server 7u4-23.01(7.0.4.23.0) 64bit (built Aug
10 2011)) with ESMTP id <[email protected]> for
[email protected]; Wed, 16 May 2012 19:09:55 +0000 (GMT)
X-Proofpoint-Virus-Version: vendor=fsecure
engine=2.50.10432:5.6.7580,1.0.260,0.0.0000
definitions=2012-05-16_08:2012-05-16,2012-05-16,1970-01-01 signatures=0
X-Proofpoint-Spam-Details: rule=notspam policy=default score=45 spamscore=45
ipscore=0 suspectscore=0 phishscore=0 bulkscore=0 adultscore=0 classifier=spam
adjust=0 reason=mlx scancount=1 engine=6.0.2-1012030000
definitions=main-1205160215
Date-warning: Invalid date header replaced by nk11p00mm-spool001.mac.com;
original content: 16 2012 12:09:42
Received: from localhost ([17.158.42.222]) by nk11p00mm-spool001.mac.com
(Oracle Communications Messaging Server 7u4-23.01(7.0.4.23.0) 64bit (built Aug
10 2011)) with ESMTP id <[email protected]>; Wed,
16 May 2012 19:09:45 +0000 (GMT)
To: [email protected] <<<Some other addresses were here that appear in my contacts both in Hotmail and iPhone/iCloud>>>
From: [email protected]
Subject:
Date: Wed, 16 May 2012 19:09:45 +0000 (GMT)
X-Mailer: MobileMe Mail (1J25+8525)
X-Originating-IP: [188.241.134.225]
Message-id: <[email protected]>
Return-Path: [email protected]
X-OriginalArrivalTime: 16 May 2012 19:09:55.0678 (UTC) FILETIME=[7ACA77E0:01CD3397]
--Boundary_(ID_IkKHXnVwOqs8JawmT8F6hw)
Content-type: text/plain; CHARSET=US-ASCII; format=flowed
Content-transfer-encoding: 7BIT
Ways to make, earn or get money on the Internet   http://www.salvatorespagnolo.com/fastmoney.php?sypage=02tu1
--Boundary_(ID_IkKHXnVwOqs8JawmT8F6hw)
Content-type: multipart/related;
boundary="Boundary_(ID_W03CW7iVvP4VrFE/UiqRZw)"; type="text/html"
--Boundary_(ID_W03CW7iVvP4VrFE/UiqRZw)
Content-type: text/html; CHARSET=US-ASCII
Content-transfer-encoding: 7BIT
<html><body>Ways to make, earn or get money on the Internet   http://www.salvatorespagnolo.com/fastmoney.php?sypage=02tu1</body></html>
--Boundary_(ID_W03CW7iVvP4VrFE/UiqRZw)--
--Boundary_(ID_IkKHXnVwOqs8JawmT8F6hw)--

Also, I have same problem.
In my case, I received a spam message from my iCloud to other people. They r in my iCloud contact.
my sent box isuue.
case 1:
sent date:
5-16-2012 15:15
subject:
Re:
body:
Earn extra cash in your spare time!
case 2:
sent date:
5-16-2012 15:15
subject:
Re:9
body:
Start making money immediately without risk - from the comfort of your home
case 3:
sent date:
5-16-2012 15:15
subject:
(none)
body:
Step by Step How You Can Work From Home
case 4:
sent date:
5-16-2012 15:15
subject:
Re:f
body:
Get Back Some Financial Independence Into Your Life.
Now, I've just changed my password immediately.
Should I call to Apple suport center?
<Links Edited by Host>

Subject/Question: "WARNING: SUSPECTED PHISHING SITE" message has just recently come up for me EVERY time I go to a website on Safari. What do I do?

This has been happening for me just recently, 12/2012... EVERY TIME I CLICK ON A WEBSITE, I get: WARNING: SUSPECTED PHISHING SITE.
At first, I thought it was valid, but when I saw that it was doing it before EVERY page, I knew that something was wrong. I read through your comments from the past, but saw no indications of what was causing the problem then or how to fix it.
I have a macbook 10.5.8, & I use Safari. Never had this problem before.
Can anyone tell me what I need to do?
I may have changed a few things in System Preferences... and...
I have copied & pasted the email addresses from my spam to block in Yahoo mail to see if that makes any difference in the number of spam emails that I get. Probably not, as they are constantly changing email addresses, but thought I would try.
That is all that I know that I have done.
And now this is constant & annoying & I don't know what websites that I can trust.
Please help.
I haven't use this site much. Will I get an email to let me know if anyone responds? Or do I have to try to come back here to check for replies?
Thanks again!

Have you tried the Reset Safari... in the pull down menu under Safari?
Allan

Junk Mail Sreening dosn't flag spam

Hello,
I'm trying to get "Junk Mail Sreening" (as they call it in the manual) to work but having little or no success.
We're running on a 10.4.6 Server and configuration chnages have been made with "Server Admin".
First thing I did was enabling virus scanning which worked right out of the box, wih one single exception:
Infected mails won't get deleted as configered in SA but rather will be quarantined in /var/virusmails.
However what doesn't seen to work is junk mail screening.
Here are the relevant settings from within Server Admin in SA's plist format:
<key>required_hits</key>
<integer>5</integer>
<key>spam_action</key>
<string>deliver</string>
<key>spam_enabled</key>
<true/>
<key>spamloglevel</key>
<string>warn</string>
<key>spamnotifyadmin</key>
<false/>
<key>spamnotify_adminemail</key>
<string>[email protected]</string>
<key>spamoklanguages</key>
<string>en fr de</string>
<key>spamoklocales</key>
<string>en</string>
<key>spam_quarantine</key>
<string>[email protected]</string>
<key>spamrewritesubject</key>
<true/>
<key>spamscanenabled</key>
<true/>
<key>spamsubjecttag</key>
<string>* JUNK MAIL *</string>
which result in the folling settings within /etc/amavisd.conf
$satag_leveldeflt = -999;
$satag2_leveldeflt = 5.0;
$sakill_leveldeflt = 22.0;
$saspam_subjecttag = '* JUNK MAIL *';
$saspam_modifiessubj = 1;
I then sent myself ([email protected] in the following log) a GTUBE junk mail (see http://spamassassin.apache.org/gtube/) from a mail account in a different domain (here: mail.sender.org) which should trigger the recognition of that particular mail being spam and to take the appropriate action as defined in SA.
Here's what's in /var/log/amavisd.log:
Jun 16 12:10:58 mail.receiver.com /usr/bin/amavisd[21817]: (21817-01) ESMTP::10024 /var/amavis/amavis-20060616T121058-21817: <[email protected]> -> <[email protected]> Received: SIZE=1660 from mail.receiver.com ([127.0.0.1]) by localhost (mail.receiver.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 21817-01 for <[email protected]>; Fri, 16 Jun 2006 12:10:58 +0200 (CEST)
Jun 16 12:10:58 mail.receiver.com /usr/bin/amavisd[21817]: (21817-01) Checking: [IP_of_sender] <[email protected]> -> <[email protected]>
Jun 16 12:10:59 mail.receiver.com /usr/bin/amavisd[21817]: (21817-01) p001 1 Content-Type: text/plain, size: 504 B, name:
Jun 16 12:10:59 mail.receiver.com /usr/bin/amavisd[21817]: (21817-01) WARN: all primary virus scanners failed, considering backups
Jun 16 12:11:02 mail.receiver.com /usr/bin/amavisd[21817]: (21817-01) local delivery: <[email protected]> -> <spam-quarantine>, mbx=/var/virusmails/spam-a2740fd1baff60a1aa0bfb88a79036d6-20060616-121058-21817 -01.gz
Jun 16 12:11:02 mail.receiver.com /usr/bin/amavisd[21817]: (21817-01) SPAM, <[email protected]> -> <[email protected]>, Yes, hits=1000.124 tag=-999 tag2=5 kill=22 tests=GTUBE, NOREALNAME, quarantine spam-a2740fd1baff60a1aa0bfb88a79036d6-20060616-121058-21817-01 (spam-quarantine)
Jun 16 12:11:02 mail.receiver.com /usr/bin/amavisd[21817]: (21817-01) FWD via SMTP: [127.0.0.1]:10025 <[email protected]> -> <[email protected]>
Jun 16 12:11:02 mail.receiver.com /usr/bin/amavisd[21817]: (21817-01) Passed, <[email protected]> -> <[email protected]>, quarantine spam-a2740fd1baff60a1aa0bfb88a79036d6-20060616-121058-21817-01, Message-ID: <20060616101057.8DB8556A84@web2>, Hits: 1000.124
Jun 16 12:11:02 mail.receiver.com /usr/bin/amavisd[21817]: (21817-01) Passed SPAM, <[email protected]> -> <[email protected]>, Hits: 1000.124, tag=-999, tag2=5, kill=22, 0/Y/Y/Y
Jun 16 12:11:02 mail.receiver.com /usr/bin/amavisd[21817]: (21817-01) TIMING [total 3276 ms] - SMTP EHLO: 15 (0%), SMTP pre-MAIL: 2 (0%), mkdir tempdir: 1 (0%), create email.txt: 1 (0%), SMTP pre-DATA-flush: 6 (0%), SMTP DATA: 1 (0%), body_hash: 2 (0%), mkdir parts: 2 (0%), mime_decode: 23 (1%), get-file-type1: 20 (1%), decompose_part: 2 (0%), parts_decode: 0 (0%), AV-scan-1: 2830 (86%), spam-wb-list: 4 (0%), SA msg read: 1 (0%), SA parse: 5 (0%), SA check: 211 (6%), update_cache: 1 (0%), write-header: 23 (1%), save-to-local-mailbox: 76 (2%), post-do_spam: 3 (0%), fwd-connect: 16 (0%), fwd-mail-from: 2 (0%), fwd-rcpt-to: 3 (0%), write-header: 5 (0%), fwd-data: 0 (0%), fwd-data-end: 3 (0%), fwd-rundown: 2 (0%), mainlogentry: 13 (0%), update_snmp: 0 (0%), unlink-1-files: 2 (0%), rundown: 1 (0%)
As ar as I see, SpamAssassin gets called and rates the mail as spam with a hit-rate of 1000.124 using its buil-in rule GTUBE (see line 6 of the log)
Since the hit rate is far above $sakill_leveldeflt, I would expect both addition of X-Spam-Deteced headers and modification of the mail's subject line, but not even spam-info-headers are added to the mail. The only header that gets added (and the only proof that makes me believe the mail really has gone through amavisd screening) is
X-Virus-Scanned: by amavisd-new at mail.receiver.com
Curently this looks like a major problem in amavisd but I have no clue what to do now.
horst

Does it help if you have this?
dfwserver1:~ root# postconf -n
always_bcc =
command_directory = /usr/sbin
config_directory = /etc/postfix
content_filter = smtp-amavis:[127.0.0.1]:10024
daemon_directory = /usr/libexec/postfix
debugpeerlevel = 2
enableserveroptions = yes
html_directory = no
inet_interfaces = all
localrecipientmaps =
luser_relay = keith
mail_owner = postfix
mailboxsizelimit = 0
mailbox_transport = cyrus
mailq_path = /usr/bin/mailq
manpage_directory = /usr/share/man
mapsrbldomains =
messagesizelimit = 12582912
mydestination = $myhostname,localhost.$mydomain,localhost,mail.dfwdesignsource.com,dfwdesignsou rce.com
mydomain = dfwdesignsource.com
mydomain_fallback = localhost
myhostname = mail.dfwdesignsource.com
mynetworks = 127.0.0.1/32,71.154.29.157/32,192.168.31.8/32,mail.allarycorp.com,allarycorp.co m,12.226.175.43,66.106.197.244,67.155.157.2,66.106.197.242,dfwdesignsource.com,m ail.dfwdesignsource.com,67.155.157.3,66.106.197.245
mynetworks_style = host
newaliases_path = /usr/bin/newaliases
queue_directory = /private/var/spool/postfix
readme_directory = /usr/share/doc/postfix
sample_directory = /usr/share/doc/postfix/examples
sendmail_path = /usr/sbin/sendmail
setgid_group = postdrop
smtpdclientrestrictions = permit_mynetworks rejectrblclient sbl-xbl.spamhaus.org rejectrblclient relays.ordb.org permit
smtpdpw_server_securityoptions = login,plain,cram-md5
smtpdrecipientrestrictions = permitsasl_authenticated,permit_mynetworks,reject_unauthdestination,permit
smtpdsasl_authenable = yes
smtpdtls_keyfile =
smtpduse_pwserver = yes
unknownlocal_recipient_rejectcode = 550
virtualmailboxdomains = hash:/etc/postfix/virtual_domains
virtual_transport = lmtp:unix:/var/imap/socket/lmtp

In Safari when I click in a new window I get a spam window

Every first time when I click in a window of Safari, I get a spam ad window

There is no need to download anything to solve this problem.
You may have installed one of the common types of ad-injection malware. Follow the instructions on this Apple Support page to remove it.
Back up all data before making any changes.
One of the steps in the article is to remove malicious Safari extensions. Do the equivalent in the Chrome and Firefox browsers, if you use either of those. If Safari crashes on launch, skip that step and come back to it after you've done everything else.
If you don't find any of the files or extensions listed, or if removing them doesn't stop the ad injection, ask for further instructions.
Make sure you don't repeat the mistake that led you to install the malware. It may have come from an Internet cesspit such as "Softonic" or "CNET Download." Never visit either of those sites again. You might also have downloaded it from an ad in a page on some other site. The ad would probably have included a large green button labeled "Download" or "Download Now" in white letters. The button is designed to confuse people who intend to download something else on the same page. If you ever download a file that isn't obviously what you expected, delete it immediately.
Malware is also found on websites that traffic in pirated content such as video. If you, or anyone else who uses the computer, visit such sites and follow prompts to install software, you can expect more of the same, and worse, to follow. Never install any software that you downloaded from a bittorrent, or that was downloaded by someone else from an unknown source.
In the Security & Privacy pane of System Preferences, select the General tab. The radio button marked Anywhere should not be selected. If it is, click the lock icon to unlock the settings, then select one of the other buttons. After that, don't ignore a warning that you are about to run or install an application from an unknown developer.
Still in System Preferences, open the App Store or Software Update pane and check the box marked
Install system data files and security updates
if it's not already checked.

Email Bursting subject have to modify instead of Warning

Dear All,
We are using email bursting option to send pdf statement to our investors, with password protected.
Email and encryption options are works well.
Problem is subject line received by the investor's is
[WARNING : MESSAGE ENCRYPTED] FW: [WARNING : MESSAGE ENCRYPTED] Statement Of AccountSome of them thinking that this might be any spam mail because subject line contains the word Warning.
So we need to remove the sentence Warning from the suject line
Any idea please,
Here is our bursting file
select sh.UNITHOLDERID KEY,
'DailySOAEmail'TEMPLATE,
'RTF'TEMPLATE_FORMAT,
'en-US' LOCALE,
'PDF' OUTPUT_FORMAT,
'EMAIL' DEL_CHANNEL,
trim(sh.email) PARAMETER1,
'[email protected]' PARAMETER2,
'[email protected]' PARAMETER3,
'Statement Of Account' PARAMETER4,
'Dear '||holdername||','||chr(13)||'
Thank you for getting in touch with us.
As requested by you, please find attached the Statement of Account.
Your A/c statement has been password protected. Please type your Date Of Birth in the format DDMMYY to open ' PARAMETER5,
'true' PARAMETER6,
'[email protected]' PARAMETER7
from sssl_holder_info_tbl sh,
VW_UHA_UNITHOLDERADDITIONINFO vuu
where sh.unitholderid = vuu.unitholderid
and sh.report_type='B'Thanks in Advance,
G

Hi,
Thanks for your help.
In our bursting code we didnt mention any kind of encryption coding.
Just we have given the from, to address and cc column.
Also for pdf attachment we have given true in the column of 6.
other than that we didnt mention any encryption logic, but dont know how the pdf get encrypted.
Thanks,

******SPAM WARNING*******

Similar Messages

Maybe you are looking for

SPAM WARNING*