i just received an e-mail containing a version of the "W32.Beagle.A@mm" virus. i was within an attachment called MoreInfo.pif. here are the headers:
X-Apparently-To: XXXXXXXXXXXXX@yahoo.com via 216.136.172.58; Tue, 02 Mar 2004 17:22:09 -0800
Return-Path: <jqh1@gourmet.spamgourmet.com>
Received: from 216.218.230.146 (EHLO gourmet.spamgourmet.com) (216.218.230.146) by mta159.mail.scd.yahoo.com with SMTP; Tue, 02 Mar 2004 17:22:09 -0800
Received: from gourmet.spamgourmet.com (localhost [127.0.0.1]) by localhost (8.12.10/8.12.9) with ESMTP id i231M9BH017890 for <XXXXXXXXXXXXXXX@yahoo.com>; Tue, 2 Mar 2004 17:22:09 -0800
Received: (from jqh1@localhost) by gourmet.spamgourmet.com (8.12.10/8.12.10/Submit) id i231M9xW017889 for XXXXXXXXXXXXXXXXX@yahoo.com; Tue, 2 Mar 2004 17:22:09 -0800
Received: from Teresa (arh2185.urh.uiuc.edu [130.126.70.97]) by gourmet.spamgourmet.com (8.12.10/8.12.9) with SMTP id i231M7BI017859 for <uberprofile.x.username@spamgourmet.com>; Tue, 2 Mar 2004 17:22:08 -0800
Date: Tue, 02 Mar 2004 19:21:50 -0600
To: uberprofile.x.username@spamgourmet.com
Subject: E-mail account disabling warning. (uberprofile: message 4 of 20)
From: +uberprofile+username+59fb74af74.admini ... ourmet.com Add to Address Book
Message-ID: <csmiplmbxyvpgobqrvh@spamgourmet.com>
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="--------qqoqxugqymjmpdyfgvyi"
Content-Length: 11909
the body of the message:
Hello user of Spamgourmet.com e-mail server,
Some of our clients complained about the spam (negative e-mail
content)
outgoing from your e-mail account. Probably, you have been infected by
a proxy-relay trojan server. In order to keep your computer safe,
follow the instructions.
Further details can be obtained from attached file.
Kind regards,
The Spamgourmet.com team
http://www.spamgourmet.com
------------------------------------------
has anyone else received this? is this a solid spoof and a threat?