Loading ...
Sorry, an error occurred while loading the content.

2308Re: TEST//Dont do it!!

Expand Messages
  • H. Phil Duby
    Jan 30, 2004
    • 0 Attachment

      I have my virus program (Norton AntiVirus) configured to scan all emails as
      they come in, before they get to my inbox. Even emails without attachments
      can have nasty stuff. I also use spampal to filter the obvious junk mails.
      That has additional options to check for and repair some things that the
      virus checker does not block, especially with html emails. Depending on
      your mail reader, you may not be at risk for the 'extra' threats.

      The email with the virus came from a bigpipe.com account
      h66-244-234-153.bigpipeinc.com [] .
      I sent a report. The user may be on the list. If the above looks familiar,
      you should check your machine for viruses.

      ----- Original Message -----
      From: "Xenia Stanford" <president@...>
      To: <dist-gen@...>
      Sent: Friday, January 30, 2004 12:10 PM
      Subject: RE: TEST//Dont do it!!

      > I now scan all messages with attachments before opening because my
      > was infected by opening an attachment to a message with a subject line
      > made sense in context and from a reliable source known to me. The problem
      > her email address had been spoofed. I received another one today from
      > another well-known contact of mine with the subject line: Speakers needed
      > for an event. Who would suspect any problem but upon running the virus
      > it turned out to be infected with MyDoom virus. When I ran the scan it
      > showed up the message to distgen as containing the same virus
      > also known as Mimail.R, Novarg.A, Shimg, W32.Novarg.A@mm, W32/Mydoom@MM
      > Since the email address (vmalliance.com) from which it was sent is a
      > legitimate one, it was probably spoofed.
      > Here are the headers from the message with my personal email forwarding
      > addresses removed:
      > Return-Path: <owner-dist-gen@...>
      > Received: from mail41.megamailservers.com ([])
      > by priv-edtnes44.telusplanet.net
      > (InterMail vM. 201-2115-109-103-20031105) with ESMTP
      > id
      > s.com>
      > Received: from 3r2.tera-byte.com (3r2.tera-byte.com [])
      > by mail41.megamailservers.com (8.12.10/8.12.9) with ESMTP id
      > Received: (from mail@localhost)
      > by 3r2.tera-byte.com (8.10.2/8.10.2) id i0U5WAU02588
      > for dist-gen_site62-list; Thu, 29 Jan 2004 22:32:10 -0700
      > Received: from vmalliance.com (h66-244-234-153.bigpipeinc.com
      > [] (may be forged))
      > by afhs.ab.ca (8.10.2/8.10.2) with ESMTP id i0U5W8602584
      > for <dist-gen@...>; Thu, 29 Jan 2004 22:32:09 -0700
      > Message-Id: <200401300532.i0U5W8602584@...-byte.com>
      > From: militaryadvantage119987@...
      > To: dist-gen@...
      > Subject: TEST
      > Date: Thu, 29 Jan 2004 22:26:23 -0700
      > MIME-Version: 1.0
      > Content-Type: multipart/mixed;
      > boundary="----=_NextPart_000_0003_F76BBE8B.E8937CEA"
      > X-Priority: 3
      > X-MSMail-Priority: Normal
      > Sender: owner-dist-gen@...
      > Precedence: bulk
      > Reply-To: dist-gen@..., militaryadvantage119987@...
      > http://www.afhs.ab.ca

    • Show all 3 messages in this topic