One of the hard working folks at Shopper HQ
sent me a message the other day that suggested I had sent them a
virus. I have a large amount of “stuff” that ensure that I
can’t do this sort of thing, so I took a brief look at the
header and realised it could have been any 10 year old with the
ability to change the “reply to” setting in Outlook….
seem to have received a virus from you, which was safely
However, we have received no copy. Could you rectify
situation asap please.
virus (WORM_KLEZ.H) was detected in the file (border.scr).
taken = remove
Received: from tmailb1.svr.pol.co.uk
by mail.dennis.co.uk with ESMTP id gBDA8iUF027314
for <email@example.com>; Fri, 13 Dec 2002
- > Received: from
by tmailb1.svr.pol.co.uk with smtp (Exim 3.35 #1)
for firstname.lastname@example.org; Fri, 13 Dec 2002 10:09:18
From: william <email@example.com>
Subject: Meeting notice
Date: Fri, 13 Dec 2002 10:09:18 +0000
The bit in the header (highlight the message in outlook inbox, right
click and look at “options” that gives the game away is the
Received: from modem-1825.crocodile.dialup.pol.co.uk
Any ISP worth its salt can trace back from
this information to see which user was logged in and have them
disconnected without much trouble. How else do you imagine that
the plod finds it so easy to organise vast raids on internet porn
connoisseurs? It’s the equivalent of the felon with the bag
marked “swag” slung across his shoulder catching a thread on a
nail and leaving the trail all the way back from the break-in to
I reported this to firstname.lastname@example.org and got an
automated response with a ticket number of 358,676, which I firmly
believe is a sequential number. You have no idea how many people
report abuse in the hope that someone will do something about it,
and Energis provides virtual ISP services to around 20 large ISP
operations – including Freeserve.
Also note that the file with the virus was a
screen saver - border.scr – so for heavens’ sake don’t think
that the only files that can carry infections are .doc or .exe.
You should NEVER open attachments from unknown or un-trusted
sources, so perhaps this pathetic correspondent thought by
sticking my published email details into the “reply-to part of
the header, they would sneak in.
Even without this type of crude name theft,
the amount of spam turning up around the festive season has got
completely out of order this year, and the spamicide filter on the
inbox is working overtime, but it is high time that something was
done about it for real. Politicians will take years and achieve
nothing. A lynch mob and necktie party could probably cure it