FYI: email with malicious attchmnt.

Tapang, Roderick Eugenio (GXS) RoderickEugenio.Tapang at
Fri Aug 8 23:24:27 EDT 2003


I know it's obvious to most subscribers that I am using an M$
email client.  I've been receiving emails 'pretending' to be
coming from 'admin at' with a zipped attachment
containing a windows binary file named 'message.html'.

Anyone receiving such email here?

here's part of its header:

Received: (from postman at localhost)
	by (8.12.9/8.12.0.Beta16) id h78DWB9C009162
	for info-cyrus-list; Fri, 8 Aug 2003 09:32:11 -0400
Received: from ( [])
	by (8.12.9/8.12.0.Beta16) with ESMTP id
	for <info-cyrus at>; Fri, 8 Aug 2003 09:32:11
Received: from localhost (
	by (8.12.9/8.12.3.Beta2) with SMTP id
	for <info-cyrus at>; Fri, 8 Aug 2003 09:31:19 -0400
Date: Fri, 8 Aug 2003 09:30:52 -0400
Message-Id: <200308081331.h78DUqT7022420 at>
From: admin at

Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit

Content-Type: application/x-zip-compressed; name=""
Content-Transfer-Encoding: base64
Content-Disposition: attachment; filename=""

>-----Original Message-----
>From: admin at [mailto:admin at]
>Sent: Friday, August 08, 2003 9:31 AM
>To: Info-cyrus
>Subject: your account shkouevo
>Importance: High
>Hello there,
>I would like to inform you about important information regarding your
>email address. This email address will be expiring.
>Please read attachment for details.
>Best regards, Administrator



More information about the Info-cyrus mailing list