[Am-info] anyone else get the viri message with the empty
subject line?
Sujal Shah
sujal@sujal.net
16 Aug 2002 09:39:11 -0400
It's not from the list... it's from an AOL relay (which might be open or
otherwise foolable).
Someone has both you and am-info in their address books, that's probably
the only AM-INFO connection, just from a quick look at the headers.
Sujal
On Fri, 2002-08-16 at 09:34, Geoffrey wrote:
> Received another infected email from the am-info list, so someones still
> infected. This is a particular nasty viri as it picks up random files
> from the infected machine and adds the file to the email as an
> attachment. Your checking account information or that compromising
> picture of you could be finding it's way across the internet. Seems the
> common thread here is references to an AOL address. The one I received
> does in fact have a jpeg attached. Here are the headers, in the event
> someone recognizes anything:
>
> From - Fri Aug 16 07:25:34 2002
> X-UIDL: Heb"!X3A!!,gC"!-46"!
> X-Mozilla-Status: 0001
> X-Mozilla-Status2: 00000000
> Return-Path: <Am-info@venice.essential.org>
> Received: from rly-ip01.mx.aol.com (rly-ip01.mx.aol.com [205.188.156.49])
> by [65.82.36.73] (8.10.2/8.10.2) with ESMTP id g7GBPKL13954
> for <esoteric@3times25.net>; Fri, 16 Aug 2002 07:25:20 -0400
> Received: from logs-wl.proxy.aol.com (logs-wl.proxy.aol.com
> [205.188.199.5]) by rly-ip01.mx.aol.com (v83.35) with ESMTP id
> RELAYIN1-0816071605; Fri, 16 Aug 2002 07:16:05 -0400
> Received: from Aimauavff (AC8101CA.ipt.aol.com [172.129.1.202])
> by logs-wl.proxy.aol.com (8.10.0/8.10.0) with SMTP id g7GBEOQ158147
> for <esoteric@3times25.net>; Fri, 16 Aug 2002 07:14:24 -0400 (EDT)
> Date: Fri, 16 Aug 2002 07:14:24 -0400 (EDT)
> Message-Id: <200208161114.g7GBEOQ158147@logs-wl.proxy.aol.com>
> From: Am-info <Am-info@venice.essential.org>
> To: esoteric@3times25.net
> Subject: Subject
> MIME-Version: 1.0
> Content-Type: multipart/alternative;
> boundary=X50zQ3AYSG60bW2f3Ul7v883L26d9wsjLTbb
> X-Apparently-From: LHWhitty@aol.com
> X-UIDL: Heb"!X3A!!,gC"!-46"!
>
> --X50zQ3AYSG60bW2f3Ul7v883L26d9wsjLTbb
> Content-Type: text/html;
> Content-Transfer-Encoding: quoted-printable
>
> <HTML><HEAD></HEAD><BODY>
> <iframe src=3Dcid:A76c913Nrgv6 height=3D0 width=3D0>
> </iframe>
> <FONT></FONT></BODY></HTML>
>
> --X50zQ3AYSG60bW2f3Ul7v883L26d9wsjLTbb
> Content-Type: audio/x-wav;
> name=Froggy.pif
> Content-Transfer-Encoding: base64
> Content-ID: <A76c913Nrgv6>
>
> --
> Until later: Geoffrey esoteric@3times25.net
>
> I didn't have to buy my radio from a specific company to listen
> to FM, why doesn't that apply to the Internet (anymore...)?
>
> _______________________________________________
> Am-info mailing list
> Am-info@lists.essential.org
> http://lists.essential.org/mailman/listinfo/am-info
--
---- Sujal Shah --- sujal@sujal.net ---
http://www.sujal.net
Now Playing: none