[Am-info] anyone else get the viri message with the empty subject line?
Geoffrey
esoteric@3times25.net
Fri, 16 Aug 2002 09:34:16 -0400
Received another infected email from the am-info list, so someones still
infected. This is a particular nasty viri as it picks up random files
from the infected machine and adds the file to the email as an
attachment. Your checking account information or that compromising
picture of you could be finding it's way across the internet. Seems the
common thread here is references to an AOL address. The one I received
does in fact have a jpeg attached. Here are the headers, in the event
someone recognizes anything:
From - Fri Aug 16 07:25:34 2002
X-UIDL: Heb"!X3A!!,gC"!-46"!
X-Mozilla-Status: 0001
X-Mozilla-Status2: 00000000
Return-Path: <Am-info@venice.essential.org>
Received: from rly-ip01.mx.aol.com (rly-ip01.mx.aol.com [205.188.156.49])
by [65.82.36.73] (8.10.2/8.10.2) with ESMTP id g7GBPKL13954
for <esoteric@3times25.net>; Fri, 16 Aug 2002 07:25:20 -0400
Received: from logs-wl.proxy.aol.com (logs-wl.proxy.aol.com
[205.188.199.5]) by rly-ip01.mx.aol.com (v83.35) with ESMTP id
RELAYIN1-0816071605; Fri, 16 Aug 2002 07:16:05 -0400
Received: from Aimauavff (AC8101CA.ipt.aol.com [172.129.1.202])
by logs-wl.proxy.aol.com (8.10.0/8.10.0) with SMTP id g7GBEOQ158147
for <esoteric@3times25.net>; Fri, 16 Aug 2002 07:14:24 -0400 (EDT)
Date: Fri, 16 Aug 2002 07:14:24 -0400 (EDT)
Message-Id: <200208161114.g7GBEOQ158147@logs-wl.proxy.aol.com>
From: Am-info <Am-info@venice.essential.org>
To: esoteric@3times25.net
Subject: Subject
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary=X50zQ3AYSG60bW2f3Ul7v883L26d9wsjLTbb
X-Apparently-From: LHWhitty@aol.com
X-UIDL: Heb"!X3A!!,gC"!-46"!
--X50zQ3AYSG60bW2f3Ul7v883L26d9wsjLTbb
Content-Type: text/html;
Content-Transfer-Encoding: quoted-printable
<HTML><HEAD></HEAD><BODY>
<iframe src=3Dcid:A76c913Nrgv6 height=3D0 width=3D0>
</iframe>
<FONT></FONT></BODY></HTML>
--X50zQ3AYSG60bW2f3Ul7v883L26d9wsjLTbb
Content-Type: audio/x-wav;
name=Froggy.pif
Content-Transfer-Encoding: base64
Content-ID: <A76c913Nrgv6>
--
Until later: Geoffrey esoteric@3times25.net
I didn't have to buy my radio from a specific company to listen
to FM, why doesn't that apply to the Internet (anymore...)?