FW: [dba-Tech] Internet Mail Headers

Mitsules, Mark S. (Newport News) Mark.Mitsules at ngc.com
Mon Jun 28 05:04:13 CDT 2004 

Yep, someone must be spoofing my address.  Two more came in over the
weekend.
**********
This message was created automatically by mail delivery software.

A message that you sent could not be delivered to one or more of its
recipients. This is a permanent error. The following address(es) failed:

  mfgholler at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  mirco.weinberger at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  Mirko.Rolle at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  muchserk at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  natalie-ertel at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  nero-nemesis at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  notar-guettler at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  onkel-moep at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  philipp2505 at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  Pinkiller at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  r.hirt at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  gel at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  Reli.Zimmermann at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  ReneBachran at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  sabbse at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  sasa27 at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  Schade_Jacqueline at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  Schade-Jacqueline at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  snachsel at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  s-shaupt at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  stefanie1 at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  steffen.gretsch at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  SuesserEngel1 at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  Teufelchen1c at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  ThomasBusshardt at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  tine_mhl at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  web-mit-chris at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  witheprincess at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  heidi-16 at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  zmirnoff at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  nadine.ruhland at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  Alexander.Gaedke at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  webpcgo at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  ik8rp at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  P_4EV8GU at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  DYV at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  K0 at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  3p at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  g_ at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded
  8ki at microtouch.co.uk
    Connection timed out:
    retry timeout exceeded

------ This is a copy of the message, including all the headers. ------

Return-path: <Mark.Mitsules at ngc.com>
Received: from [80.185.31.35] (helo=eksae.com)
	by lfallback1.lnd.ops.eu.uu.net with smtp id 1Be7OB-0000Xz-Hv; Sat,
26 Jun 2004 07:14:15 +0000
From: Mark.Mitsules at ngc.com
Date: Sat, 26 Jun 2004 05:31:04 GMT
MIME-Version: 1.0
Subject: Auslaenderanteile in Schweizer Gefaengnissen
Importance: Normal
X-Priority: 3 (Normal)
Message-ID: <c2a7af64368b2f.eda3d.qmail at ngc.com>
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"
Bcc:

Der extrem hohe Auslaenderanteil in den Schweizer Gefaengnissen beruht auf
zwei Tatsachen. Erstens wird ein ueberdurchschnittlich grosser Anteil an
Delikten von Auslaendern veruebt und zweitens sind die Delikte, welche von
Auslaendern veruebt werden, meist schwerer, so dass die Auslaender im
Schnitt laenger in den Gefaengnissen bleiben als Schweizer.
**********









-----Original Message-----
From: Mitsules, Mark 
Sent: Monday, June 28, 2004 5:59 AM
To: 'Discussion of Hardware and Software issues'
Subject: RE: [dba-Tech] Internet Mail Headers


Weird...never even saw my original post regarding this subject.

So, to recap, is this a response to an infected email that *I* sent out...or
what?  Actually, this is the second such email that I have received.  The
first was very similar, yet the "Returned mail" was from the shaw.ca domain
not textpad.net domain.  Basically I'm just curious about all of this, not
really concerned.  I've scanned with Norton, Spybot, and AdAware and found
nothing to suggest an infection on my part.


Here is the header:
***********************
Received: from xcgva081 (xcgva081.nns.com [172.30.10.115]) by
npeimc02.nns.com with SMTP (Microsoft Exchange Internet Mail Service Version
5.5.2657.72)
	id KLPPZY9A; Thu, 24 Jun 2004 16:00:52 -0400
Received: from xcgmd805.northgrum.com ([155.104.117.53]) by xcgva081 with
InterScan Messaging Security Suite; Thu, 24 Jun 2004 16:00:52 -0400
Received: by xcgmd805.md.essd.northgrum.com with Internet Mail Service
(5.5.2653.19)
	id <NSHJQ29Q>; Thu, 24 Jun 2004 12:59:53 -0700
Received: from xcgmd812.northgrum.com ([155.104.240.108]) by
xcgmd812.northgrum.com with SMTP (Microsoft Exchange Internet Mail Service
Version 5.5.2656.59)
	id M28BD4YH; Thu, 24 Jun 2004 13:00:00 -0700
Received: from northgrum.com ([155.104.240.110]) by xcgmd812 with InterScan
Messaging Security Suite; Thu, 24 Jun 2004 12:59:59 -0700
Received: from ([207.44.204.37])
	by xcgmd813.northgrum.com with ESMTP with TLS;
	Thu, 24 Jun 2004 12:55:00 -0700
Received: from localhost (localhost)
	by srv01.textpad.net (8.11.6/8.11.6) id i5OJswV15251;
	Thu, 24 Jun 2004 19:55:00 GMT
From: Mail Delivery Subsystem <MAILER-DAEMON at srv01.textpad.net>
To: "Mitsules, Mark S. (Newport News)" <Mark.Mitsules at ngc.com>
Date: Thu, 24 Jun 2004 19:55:00 GMT
Message-Id: <200406241955.i5OJswV15251 at srv01.textpad.net>
MIME-Version: 1.0
Content-Type: multipart/report; report-type=delivery-status;
	boundary="i5OJswV15251.1088106900/srv01.textpad.net"
Subject: Returned mail: see transcript for details
Auto-Submitted: auto-generated (failure)

This is a MIME-encapsulated message

--i5OJswV15251.1088106900/srv01.textpad.net

--i5OJswV15251.1088106900/srv01.textpad.net
Content-Type: message/delivery-status

--i5OJswV15251.1088106900/srv01.textpad.net
Content-Type: message/rfc822

X-ClientAddr: 80.185.4.129
Return-Path: <Mark.Mitsules at ngc.com>
Received: from fpywq.com (G0481.g.pppool.de [80.185.4.129])
	by srv01.textpad.net (8.11.6/8.11.6) with SMTP id i5OJsbK15185;
	Thu, 24 Jun 2004 19:54:37 GMT
From: Mark.Mitsules at ngc.com
To: Heike.Hilger at textpad.com
Date: Thu, 24 Jun 2004 18:17:30 GMT
MIME-Version: 1.0
Subject: Geschrieben von Margrit am 07. April 2004 -Key:1417-
Importance: Normal
X-Priority: 3 (Normal)
Message-ID: <9e039eab9d372c.c92ad.qmail at ngc.com>
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"
X-TextPad-MailScanner-Information: Please contact the ISP for more
information
X-TextPad-MailScanner: Found to be clean
X-MailScanner-From: mark.mitsules at ngc.com

--i5OJswV15251.1088106900/srv01.textpad.net--
***********************

-----Original Message-----
From: Rocky Smolin - Beach Access Software [mailto:bchacc at san.rr.com] 
Sent: Thursday, June 24, 2004 4:35 PM
To: Discussion of Hardware and Software issues
Subject: Re: [dba-Tech] Internet Mail Headers


Post it.  We'll all take a crack at it.  Lack of knowledge never stopped me
before.

Rocky

----- Original Message ----- 
From: "Mitsules, Mark S. (Newport News)" <Mark.Mitsules at ngc.com>
To: <dba-tech at databaseadvisors.com>
Sent: Thursday, June 24, 2004 1:13 PM
Subject: [dba-Tech] Internet Mail Headers


> Group,
>
> Anyone here at all proficient in deciphering email headers?  If I post
one,
> can someone at least tell me whether it looks like *I* am infected, or
> someone else is?
>
>
> Mark
> _______________________________________________
> dba-Tech mailing list
> dba-Tech at databaseadvisors.com
> http://databaseadvisors.com/mailman/listinfo/dba-tech
> Website: http://www.databaseadvisors.com
>

_______________________________________________
dba-Tech mailing list
dba-Tech at databaseadvisors.com
http://databaseadvisors.com/mailman/listinfo/dba-tech
Website: http://www.databaseadvisors.com

More information about the dba-Tech mailing list