[Fwd: Virus]

Subject: [Fwd: [sibrob] Virus]
From: D* P*
Date: Mon, 07 May 2001 06:57:28 -0700

Ellen,

The cracker made a third attempt to infect this computer with a virus
this morning using a message from <sibrob>. This message was addressed
directly to my e-mail account, so <sibrob@yahoogroups.com> was not used
for the delivery. Apparently, the no attachments policy is effective in
halting those types of attacks conducted through the <sibrob>
distributions.

Dallas Patterson
nye@fidalgo.net


Received: 
                by mail.fidalgo.net (mbox nye) (with Cubic Circle's
cucipop (v1.31 1998/05/13) Mon May 7 06:33:03 2001)
        X-From_: 
                Otara.birch@xtra.co.nz Mon May 7 05:10:30 2001
     Return-Path: 
                <Otara.birch@xtra.co.nz>
       Received: 
                from mta2-rme.xtra.co.nz (mta2-rme.xtra.co.nz
[203.96.92.3]) by mail.fidalgo.net (8.9.3/8.9.3) with ESMTP id FAA08318
for
                <nye@mail.fidalgo.net>; Mon, 7 May 2001 05:10:29 -0700
(PDT)
       Received: 
                from work ([203.96.104.171]) by mta2-rme.xtra.co.nz with
SMTP id <20010507121023.IJDI2173058.mta2-rme.xtra.co.nz@work>
                for <nye@mail.fidalgo.net>; Tue, 8 May 2001 00:10:23
+1200
     Message-ID: 
                <005c01c0d6ee$28815920$ab6860cb@work>
           From: 
                "Eddie Johns" <Otara.birch@xtra.co.nz>
             To: 
                <nye@mail.fidalgo.net>
         Subject: 
                Re: Re: [sibrob] Virus
  MIME-Version: 
                1.0
    Content-Type: 
                multipart/mixed;
boundary="----=_NextPart_000_0059_01C0D752.BC881960"
       X-Mailer: 
                Microsoft Outlook Express 5.00.2919.6600
    X-MimeOLE: 
                Produced By Microsoft MimeOLE V5.00.2919.6600
           Date: 
                Tue, 8 May 2001 00:10:33 +1200
 X-Mozilla-Status: 
                8011




'D. Patterson' wrote:
====
- Dave,
- 
- If you take a look at the full headers for those e-mail messages, you
- may see the answer to your questions. Crackers often send forged
e-mail
- messages directly to you containing the virus/trojan horse/etc. they
- wish to install on your computer system. You get the impression that
the
- messages are coming from the <sibrob@yahoogroups.com> or
- <sibrob@onelist.com> maillist, but you may actually be receiving it
from
- the cracker directly or indirectly via ...'


> Take a look to the attachment. 





    Norton AntiVirus report - 1.txt

                                          Content-Type: 
                                                       plain/text;
name="Norton AntiVirus report - 1.txt"
                               Content-Transfer-Encoding: 
                                                       base64
                                     Content-Disposition: 
                                                       attachment;
filename="Norton AntiVirus report - 1.txt"



This file: "news_doc.scr" was infected with the: "W32.Badtrans.13312@mm"
virus.

The file was quarantined by Norton AntiVirus. Monday, May 07, 2001 
06:37

[Non-text portions of this message have been removed]


------------------------ Yahoo! Groups Sponsor ---------------------~-~>
Clubmom is the first free organization dedicated to rewarding and celebrating Moms! Join today - it's free - and get a free year-long subscription
for Parents magazine - just for being a Mom!
http://us.click.yahoo.com/BVVVCC/YKfCAA/OZ8EAA/VTJVlB/TM
---------------------------------------------------------------------_->

 

Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/

Follow-Ups:
- Re: [Fwd: Virus]
  - From: E* G*
- Re: [Fwd: Virus]
  - From: N* Z*

Prev by Date: Re: in answer to Jim Sullivan
Next by Date: Re: [Fwd: Virus]
Prev by thread: Re: ADMIN: please read
Next by thread: Re: [Fwd: Virus]

Other Mailing lists | Author Index | Date Index | Subject Index | Thread Index