Edit: Looks like it's Troj/Tofger-B. I'm not entirely happy that NAV didn't detect the virus. I'll send the file to anyone who uses a different scanner to see if you can detect it.
From: "Serialization F. Ensconced" <tokoe@download.com>
To: me
Date: Sat, 13 Dec 2003 09:30:50 -0500
Subject: Online Order Confirmation
Message-ID: <6097718754.20031213093050@download.com>
Received: from mx24.lax.untd.com (mx24.lax.untd.com [10.130.24.84])
by maildeliver11.lax.untd.com with SMTP id AAA97Z9P7AB5PF6S
for <me> (sender <tokoe@download.com>);
Sat, 13 Dec 2003 22:05:49 -0800 (PST)
Received: from outbound28-2.lax.untd.com (localhost [127.0.0.1])
by mx24.lax.untd.com with SMTP id AAA97Z9P7AATQVAA
for <me> (sender <tokoe@download.com>);
Sat, 13 Dec 2003 22:05:49 -0800 (PST)
Received: from c-24-3-23-140.client.comcast.net (c-24-3-23-140.client.comcast.net [24.3.23.140])
by mx24.lax.untd.com with SMTP id AAA97YJW7AH9DZJJ
for <me> (sender <tokoe@download.com>);
Sat, 13 Dec 2003 06:30:53 -0800 (PST)
Received: from download.com (c10-mail.cnet.com [216.239.112.33])
by c-24-3-23-140.client.comcast.net (Postfix) with ESMTP id 9C082B4557
for <me>; Sat, 13 Dec 2003 09:30:50 -0500
X-Mailer: The Bat! (v2.00.5) Personal
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="----------18458218F53ADE1"
X-Priority: 3
X-ContentStamp: 8:4:1010829191
Return-Path: <tokoe@download.com>
X-RAV-AntiVirus: This message has been scanned for viruses on
c-24-3-23-140.client.comcast.net
Dear Valued User
DELIVERY METHOD CHOSEN: EMAIL ATTACHMENT
_____________________________________________________________________
---------------------------------------------------------------
RECEIPT
================
Order number:5699451
Date: 13-DEC-2003
Customer information:
David Williams
2735 LINDLEY ST
BRIDGEPORT, CT 06606
USA
Qty. Item Unit Price TAX % Total
==========================================================================
1 x Security Update
(Product ID: 069404) USD 99.00 0.00 0.00% 99.00
==========================================================================
TOTAL AMOUNT USD 99.00
===========
Payment type: Credit Card
==========================================================================
Activate the product with the POP code:
87KkMKRJi57-4099WhbHLN067-0dMJaNp-256MTCnBFRm-jhYM057-5275
Please note that you will not receive a delivery by postal mail.
************************************************************************
Thank you for your purchase
From: "Serialization F. Ensconced" <tokoe@download.com>
To: me
Date: Sat, 13 Dec 2003 09:30:50 -0500
Subject: Online Order Confirmation
Message-ID: <6097718754.20031213093050@download.com>
Received: from mx24.lax.untd.com (mx24.lax.untd.com [10.130.24.84])
by maildeliver11.lax.untd.com with SMTP id AAA97Z9P7AB5PF6S
for <me> (sender <tokoe@download.com>);
Sat, 13 Dec 2003 22:05:49 -0800 (PST)
Received: from outbound28-2.lax.untd.com (localhost [127.0.0.1])
by mx24.lax.untd.com with SMTP id AAA97Z9P7AATQVAA
for <me> (sender <tokoe@download.com>);
Sat, 13 Dec 2003 22:05:49 -0800 (PST)
Received: from c-24-3-23-140.client.comcast.net (c-24-3-23-140.client.comcast.net [24.3.23.140])
by mx24.lax.untd.com with SMTP id AAA97YJW7AH9DZJJ
for <me> (sender <tokoe@download.com>);
Sat, 13 Dec 2003 06:30:53 -0800 (PST)
Received: from download.com (c10-mail.cnet.com [216.239.112.33])
by c-24-3-23-140.client.comcast.net (Postfix) with ESMTP id 9C082B4557
for <me>; Sat, 13 Dec 2003 09:30:50 -0500
X-Mailer: The Bat! (v2.00.5) Personal
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="----------18458218F53ADE1"
X-Priority: 3
X-ContentStamp: 8:4:1010829191
Return-Path: <tokoe@download.com>
X-RAV-AntiVirus: This message has been scanned for viruses on
c-24-3-23-140.client.comcast.net
Dear Valued User
DELIVERY METHOD CHOSEN: EMAIL ATTACHMENT
_____________________________________________________________________
---------------------------------------------------------------
RECEIPT
================
Order number:5699451
Date: 13-DEC-2003
Customer information:
David Williams
2735 LINDLEY ST
BRIDGEPORT, CT 06606
USA
Qty. Item Unit Price TAX % Total
==========================================================================
1 x Security Update
(Product ID: 069404) USD 99.00 0.00 0.00% 99.00
==========================================================================
TOTAL AMOUNT USD 99.00
===========
Payment type: Credit Card
==========================================================================
Activate the product with the POP code:
87KkMKRJi57-4099WhbHLN067-0dMJaNp-256MTCnBFRm-jhYM057-5275
Please note that you will not receive a delivery by postal mail.
************************************************************************
Thank you for your purchase
Facebook
Twitter