Email Virus - False Alarm?

[PornFlake]

Does this seem to fall under that category?

From: Mail Delivery System [mailto:[email protected]]

Sent: Tuesday, May 18, 2004 12:00 PM

To: (e-mail address removed)

Subject: Mail delivery failed





This message was created automatically by mail delivery software.



A message that you have sent could not be delivered to one or more

recipients. This is a permanent error. The following address failed:



<[email protected]>: 554 Message rejected. Contains the MyDoom

virus!







Included is a copy of the message header:

-----------------------------------------

Received: from ool-182f0871.dyn.optonline.net [24.47.8.113] (EHLO

onebox.com)

by p01m175.mxlogic.net (mxl_mta-1.3.7-34) with ESMTP id

2e23aa04.13172.019.p01m175.mxlogic.net;

Tue, 18 May 2004 09:59:30 -0600 (MDT)

From: (e-mail address removed)

To: (e-mail address removed)

Subject: Re: Thanks!

Date: Tue, 18 May 2004 11:52:29 -0400

MIME-Version: 1.0

Content-Type: multipart/mixed;

boundary="----=_NextPart_000_0010_00004B98.000057FD"

X-Priority: 3

X-MSMail-Priority: Normal

 

[William Morris]

No, probably not a false alarm.

 

[PornFlake]

Hmm, very strange then.

All mail goes through an Exchange 5.5 server running TrendMicro's AV. I
know the AV is working because email with viruses is being flagged at the
server.

No, probably not a false alarm.

Does this seem to fall under that category?

From: Mail Delivery System [mailto:[email protected]]

Sent: Tuesday, May 18, 2004 12:00 PM

To: (e-mail address removed)

Subject: Mail delivery failed





This message was created automatically by mail delivery software.



A message that you have sent could not be delivered to one or more

recipients. This is a permanent error. The following address failed:



<[email protected]>: 554 Message rejected. Contains the MyDoom

virus!







Included is a copy of the message header:

-----------------------------------------

Received: from ool-182f0871.dyn.optonline.net [24.47.8.113] (EHLO

onebox.com)

by p01m175.mxlogic.net (mxl_mta-1.3.7-34) with ESMTP id

2e23aa04.13172.019.p01m175.mxlogic.net;

Tue, 18 May 2004 09:59:30 -0600 (MDT)

From: (e-mail address removed)

To: (e-mail address removed)

Subject: Re: Thanks!

Date: Tue, 18 May 2004 11:52:29 -0400

MIME-Version: 1.0

Content-Type: multipart/mixed;

boundary="----=_NextPart_000_0010_00004B98.000057FD"

X-Priority: 3

X-MSMail-Priority: Normal

 

[William Morris]

Can't help you there. What I DO know is that two or three weeks ago I was
getting a dozen of these messages a day, and each one had an attachment with
a virus. It's down to one or two a week.

Hmm, very strange then.

All mail goes through an Exchange 5.5 server running TrendMicro's AV. I
know the AV is working because email with viruses is being flagged at the
server.

No, probably not a false alarm.

Does this seem to fall under that category?

From: Mail Delivery System [mailto:[email protected]]

Sent: Tuesday, May 18, 2004 12:00 PM

To: (e-mail address removed)

Subject: Mail delivery failed





This message was created automatically by mail delivery software.



A message that you have sent could not be delivered to one or more

recipients. This is a permanent error. The following address failed:



<[email protected]>: 554 Message rejected. Contains the MyDoom

virus!







Included is a copy of the message header:

-----------------------------------------

Received: from ool-182f0871.dyn.optonline.net [24.47.8.113] (EHLO

onebox.com)

by p01m175.mxlogic.net (mxl_mta-1.3.7-34) with ESMTP id

2e23aa04.13172.019.p01m175.mxlogic.net;

Tue, 18 May 2004 09:59:30 -0600 (MDT)

From: (e-mail address removed)

To: (e-mail address removed)

Subject: Re: Thanks!

Date: Tue, 18 May 2004 11:52:29 -0400

MIME-Version: 1.0

Content-Type: multipart/mixed;

boundary="----=_NextPart_000_0010_00004B98.000057FD"

X-Priority: 3

X-MSMail-Priority: Normal