bug-gplusplus
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Mail Interception: incoming E-mail contained a virus

From: UCSD virus scanner
Subject: Mail Interception: incoming E-mail contained a virus
Date: Wed, 10 Dec 2003 00:52:23 -0800 (PST) 
  This is a message from the UCSD E-Mail Virus Protection Service
  ---------------------------------------------------------------

Our virus scanner indicates that an attachment or part of an E-mail
message addressed to you was infected with a virus, so THAT part of
the message has been removed from your mail.

This does NOT mean that your computer has a virus.

The rest of the original message is enclosed below.

The *INFECTED* attachment file is being held in quarantine.

If you do not want this file, you need do nothing
further and it will be destroyed automatically after 30 days.

The mail scanner program may (rarely) remove a valid attachment to a
message, part of which coincidently resembled a known virus.  If you need to
retrieve a removed message part, please read the following:

The attachment you download is likely to still be infected.
Please use EXTREME CARE in handling it.

To download the attachment, please use your browser to access:

Message part originally titled "britney_spears.scr"
has been quarantined and is retrievable at
   HTTP://WWW-NO.UCSD.EDU/Q?29c23c3a83ac0229353fb0d01a22527e.gz
   (scan reported VIRUS Troj/Hackarmy-A Found in file ./5.b64)

If you do not have a Web browser, you may use anonymous FTP to
connect to FTP.UCSD.Edu and GET the file directly.

   /quarantine/29c23c3a83ac0229353fb0d01a22527e.gz

The /quarantine directory cannot be listed, so you must
specifically retrieve the file by the name given above.

Note that in all cases the file name of the original attachment has
been changed, and the file contents compressed with GNUZip. This
was done to help prevent it from infecting your system automatically
should you actually download it.

The original message headers and the uninfected portion of the
contents follow.  Please remember that the To: and From: addresses in
infected E-mail are often forgeries.  It is not unusual for the author
or site shown in the message to have no knowledge nor actual
responsibility for the message you received.

Following the original message (below), there is a technical data summary
which contains information our help desk personnel will need if you
call with questions about this interception.

        address@hidden

Office of Network Operations
Academic Computing Services
University of California, San Diego
+1 858 534-1857
--- Begin Message --- Subject: Britney Spears nude Date: Wed, 10 Dec 2003 08:52:05 +0000 (GMT) 
Britney Spears nude
Britney Spears nude
Britney Spears nude
Britney Spears nude
Britney Spears nude
Britney Spears nude
Britney Spears nude
Britney Spears nude
Britney Spears nude
Britney Spears nude
Quarantined file "britney_spears.scr"
<ftp://mailbox4.ucsd.edu/quarantine//quarantine/29c23c3a83ac0229353fb0d01a22527e.gz>
Transfer-mode: IMAGE
Expires: Sun, 04 Jan 2004 00:52:23 -0800 (PST)
If you call our helpdesk, please have the following
technical information to hand:

mailscan Version 1.2.8 on mailbox4.ucsd.edu at Wed Dec 10 00:52:23 2003

Scan results for hBA8qJ7T041343 Message-id: <address@hidden>
7 parts: 6 clean, 1 virus, 0 filetrap, 0 error
part   0: CLEAN ./qfhBA8qJ7T041343
part   1: CLEAN ./dfhBA8qJ7T041343
part   2: CLEAN ./1.preamble
part   3: CLEAN ./2.header
part   4: CLEAN ./3.plain
part   5: VHEAD
part   6: VIRUS Troj/Hackarmy-A Found in file ./5.b64
        start=546, end=-1
        file=5.b64
        tftp=/nfs/ftp/quarantine/29c23c3a83ac0229353fb0d01a22527e.gz
        af=britney_spears.scr


Original Message headers:
> Received: from cmail.srv.hcvlny.cv.net (cmail.srv.hcvlny.cv.net 
> [167.206.112.40])
>       by mailbox4.ucsd.edu (8.12.10/8.12.9) with ESMTP id hBA8qJ7T041343
>       for <address@hidden>; Wed, 10 Dec 2003 00:52:19 -0800 (PST)
> Path: not-for-mail
> Received: from news4.srv.hcvlny.cv.net
>  (news4-hme0.srv.hcvlny.cv.net [167.206.7.67]) by cmail.srv.hcvlny.cv.net
>  (iPlanet Messaging Server 5.2 HotFix 1.16 (built May 14 2003))
>  with ESMTP id <address@hidden> for
>  address@hidden; Wed, 10 Dec 2003 03:52:19 -0500 (EST)
> Received: by news4.srv.hcvlny.cv.net (8.9.3/8.9.3) id DAA27834; Wed,
>  10 Dec 2003 03:52:06 -0500 (EST)
> X-Trace: news4.srv.hcvlny.cv.net 1071046325 68.194.149.228
>  (Wed, 10 Dec 2003 03:52:05 EST)
> Date: Wed, 10 Dec 2003 08:52:05 +0000 (GMT)
> From: underground <address@hidden>
> Subject: Britney Spears nude
> Sender: underground <address@hidden>
> To: address@hidden
> Reply-to: address@hidden
> Message-id: <address@hidden>
> Organization: .
> X-Complaints-to: address@hidden
> MIME-version: 1.0
> Content-type: multipart/mixed; boundary="Boundary_(ID_MraGR3QQ7Pm8QpijAYW7Ew)"
> NNTP-posting-date: Wed, 10 Dec 2003 03:52:05 EST
> X-Priority: 3
> X-Library: Indy 9.00.10
> Newsgroups: 
>  
> gnu.epoch.misc,gnu.g++.bug,gnu.g++.help,gnu.g++.lib.bug,gnu.gcc,gnu.gcc.announce,gnu.gcc.bug,gnu.gcc.help
> Lines: 543
> NNTP-posting-host: 68.194.149.228
> X-Spam-Level: Level **
> X-Spamscanner: mailbox4.ucsd.edu  (v1.4 Oct 30 2003 22:20:52, 2.3/5.0 2.60)

--- End Message ---
reply via email to
[Prev in Thread] Current Thread [Next in Thread]