[an error occurred while processing this directive]

SPAM {Virus?}

To: <vmi-bug@ncsa.uiuc.edu>
Subject: *****SPAM***** {Virus?}
From: "Joey Patterson" <Robertoyy@netcenter.com>
Date: Fri, 28 Apr 2006 15:12:22 +1000
Content-type: multipart/mixed; boundary="----------=_4451ACC8.6114A457"
Reply-to: vmi-bug@ncsa.uiuc.edu
Sender: owner-vmi-bug@ncsa.uiuc.edu

Spam detection software, running on the system "amantadine.ncsa.uiuc.edu", has
identified this incoming email as possible spam.  The original message
has been attached to this so you can view it (if it isn't spam) or label
similar future email.  If you have any questions, see
postmaster@ncsa.uiuc.edu for details.

Content preview:  Warning: This message has had one or more attachments
  removed Warning: (secret.zip, pics..scr). Warning: Please read the
  "NCSA-Attachment-Warning.txt" attachment(s) for more information. I was
  going through my album, and look what I found.. [...] 

Content analysis details:   (8.7 points, 5.0 required)

 pts rule name              description
---- ---------------------- --------------------------------------------------
-2.6 BAYES_00               BODY: Bayesian spam probability is 0 to 1%
                            [score: 0.0000]
 0.0 HTML_MESSAGE           BODY: HTML included in message
 0.2 DNS_FROM_RFC_ABUSE     RBL: Envelope sender in abuse.rfc-ignorant.org
 2.6 DNS_FROM_RFC_DSN       RBL: Envelope sender in dsn.rfc-ignorant.org
 1.7 DNS_FROM_RFC_POST      RBL: Envelope sender in
                            postmaster.rfc-ignorant.org
 2.8 RCVD_IN_NJABL_SPAM     RBL: NJABL: sender is confirmed spam source
                            [132.234.115.179 listed in combined.njabl.org]
 4.1 FORGED_MUA_OUTLOOK     Forged mail pretending to be from MS Outlook

The original message was not completely plain text, and may be unsafe to
open with some email clients; in particular, it may contain a virus,
or confirm that your address can receive spam.  If you wish to view
it, it may be safer to save it to a file and open it with an editor.

--- Begin Message ---

To: <vmi-bug@ncsa.uiuc.edu>
Subject: {Virus?}
From: "Joey Patterson" <Robertoyy@netcenter.com>
Date: Fri, 28 Apr 2006 15:12:22 +1000
Content-type: multipart/mixed; boundary="----=_NextPart_000_0812_C4E83F48.92B120A4"

Warning: This message has had one or more attachments removed
Warning: (secret.zip, pics..scr).
Warning: Please read the "NCSA-Attachment-Warning.txt" attachment(s) for more information.

I was going through my album, and look what I found..

+++ www.pandasoftware.com

This is a message from the MailScanner E-Mail Virus Protection Service
----------------------------------------------------------------------
The original e-mail attachment "secret.zip"
was believed to be infected by a virus and has been replaced by this warning
message.

If you wish to receive a copy of the *infected* attachment, please e-mail the
NCSA Help Desk (help@ncsa.uiuc.edu) and include this message with your
request. Alternatively, you can call them at +1 217 244 0709 with the
contents of this message on hand when you call.

At Fri Apr 28 00:48:51 2006 the virus scanner said:
   ClamAV Module: secret.zip was infected: Exploit.W32.MS05-039
   ClamAV Module: pics..scr was infected: Exploit.W32.MS05-039
   MailScanner: Windows Screensavers are often used to hide viruses (pics..scr)

Note to Help Desk: Look on the NCSA MailScanner (amantadine) in 
/var/spool/quarantine/20060428 (message k3S5mdwA014282).
-- 
The NCSA Email guys

--- End Message ---

Prev by Date: *****SPAM***** {Filename?} USA government abolishes the capital punishment
Next by Date: *****SPAM***** Contact Information Change
Previous by thread: *****SPAM***** {Virus?}
Next by thread: *****SPAM***** {Virus?}

[an error occurred while processing this directive] Other Mailing lists | Author Index | Date Index | Subject Index | Thread Index

*****SPAM***** {Virus?}

SPAM {Virus?}