Welcome to WebmasterWorld Guest from 126.96.36.199
Forum Moderators: open
1) I don't know that person
2) I never sent the email
I would not be so surprised if I used Outlook, but I don't (I use Lotus Notes). So what happened?
Is it possible someone used an online mail agent and put my address as sender?
It has happened to us with the email address I use for our newsletter and get nasty emails from people who think we are spreading the virus...
Terrible but there is nothing you can do about it.
However, that's got very little to do with your circumstances, so I'm none too sure why I posted that!
[edited by: mat at 10:28 am (utc) on Nov. 18, 2002]
Guess the only "option" (although it isn't really one) would be to tell every body I know to remove me from their adress book.
Starec, you make it sound like the virus resent the email with Outlook, not an online agent. Does that mean it is able to change the "from" adress in the program? That would be (another) M$ bug, so is there a reason it is not made impossible to have another sender than the person currently looged on the computer?
I know it wouldn't be a solution to the problem in general, but at least I would not be touched.
No...more of just how the virus works.
> This is very disturbing. I mean, this is my professional email we're talking about.
Be a professional webmaster. Don't use insecure systems. Don't use Outlook, and if possible, don't use Microsoft
Klez Virus Info [securityresponse.symantec.com]
See the section on email spoofing, and email.
This worm searches the Windows address book, the ICQ database, and local files for email addresses.
The (infected PC)/person sending the virus might not even know you; it could have found the address in a MSIE cache from a web page.
Unfortunately, there is little that you can do about it. This is assuming that it's one of these worm types. There are other possibilities.
also one time i was gettign a tons of emails telling me that 2this and this address is not valid" ...it tured out that spamer jsut used my address as "reply" address.
try looking at SOURCE of this email,maybe you will find some details. there are more detials when you look source of email(where it came etc)
However, the point that Sinner_G is making is that he was unaware that such worms/viruses could (genuinely) spoof the 'from' sender, and that is news to me also.
If the returned/bounced email has the original headers, you can somewhat determine where it originated, only the IP address. You can't count on any From: or To: headers.
Reading Email Headers [stopspam.org]
If you can determine the originating IP address, you can use samspade or whois or some other tool to see where it might have originated, but you won't be able to id the person.
I see a lot of Outlook bashing here - how about blaming the actual culprits, the users who are too lazy to install anti-virus software to stop a simple virus that's been around for what? A year now? Stopping this thing is not rocket science.
Outlook bashing: I've got some viruses from clients who do have the newest versions of anti-virus software. The problem is that the software is full of holes. The anti-virus industry normaly comes with patches quite fast, but still new viruses are programmed, mostly for Outlook simply because it's the most used tool. Still, no (or less) holes, no (or less) viruses.