R
Robotic Arm
Guest
Hi there,
I have been experiencing an email attack on outlook
The attack copies old emails and contact names from my inbox and creates a new email that looks like the emails I have received before but this new email comes from a totally strange email-address and it comes with a potentially dangerous 'office word' attachment.
The attachment is usually 2 or 3 letters followed by a series of numbers. It is said to be a Trojan that installs itself on the hard disk and connects to other websites to install other harmful software into the computer.
I have been experiencing this attack on Outlook since mid August 2020.
Kindly advise on ways I could use to tackle this viral attack. See details below:
Return-Path: <*** Email address is removed for privacy ***>
Received: from hm1481-29.locaweb.com.br (hm1481-29.locaweb.com.br [201.76.49.241])
by spamtitan-filter02.hostserv.co.za (Postfix) with ESMTP id E7ADA86B773
; Wed, 26 Aug 2020 17:21:44 +0200 (SAST)
Received: from mcbain0007.email.locaweb.com.br (189.126.112.75) by hm1481.locaweb.com.br id h8putk2n8lgf for; Wed, 26 Aug 2020 03:25:42 -0300 (envelope-from <*** Email address is removed for privacy ***>)
Received: from proxy.email-ssl.com.br (bartf0032.email.locaweb.com.br [10.31.120.64])
by mcbain0007.email.locaweb.com.br (Postfix) with ESMTP id CADBD28006B
; Wed, 26 Aug 2020 03:26:23 -0300 (-03)Received: from [201.6.175.183] (unknown [201.6.175.183])
(Authenticated sender: *** Email address is removed for privacy ***)
by proxy.email-ssl.com.br (Postfix) with ESMTPSA id CB1A9580DDC
; Wed, 26 Aug 2020 03:26:23 -0300 (-03)
Date: Wed, 26 Aug 2020 03:26:24 -0300
From: "Patrick" <*** Email address is removed for privacy ***>
--------------------------------------------------------------------------------------------------------
X-Virus-Scanned: amavisd-new at system.smarttel.com.np
Received: from system.smarttel.com.np ([127.0.0.1])
by localhost (system.smarttel.com.np [127.0.0.1]) (amavisd-new, port 10026)
with ESMTP id 7qtsQ-SNktIb ;
Wed, 26 Aug 2020 23:59:32 +0545 (NPT)
Received: from [201.176.1.160] (unknown [201.176.1.160])
by system.smarttel.com.np (Postfix) with ESMTPSA id 19CB57A64C2
Continue reading...
I have been experiencing an email attack on outlook
The attack copies old emails and contact names from my inbox and creates a new email that looks like the emails I have received before but this new email comes from a totally strange email-address and it comes with a potentially dangerous 'office word' attachment.
The attachment is usually 2 or 3 letters followed by a series of numbers. It is said to be a Trojan that installs itself on the hard disk and connects to other websites to install other harmful software into the computer.
I have been experiencing this attack on Outlook since mid August 2020.
Kindly advise on ways I could use to tackle this viral attack. See details below:
Return-Path: <*** Email address is removed for privacy ***>
Received: from hm1481-29.locaweb.com.br (hm1481-29.locaweb.com.br [201.76.49.241])
by spamtitan-filter02.hostserv.co.za (Postfix) with ESMTP id E7ADA86B773
; Wed, 26 Aug 2020 17:21:44 +0200 (SAST)
Received: from mcbain0007.email.locaweb.com.br (189.126.112.75) by hm1481.locaweb.com.br id h8putk2n8lgf for; Wed, 26 Aug 2020 03:25:42 -0300 (envelope-from <*** Email address is removed for privacy ***>)
Received: from proxy.email-ssl.com.br (bartf0032.email.locaweb.com.br [10.31.120.64])
by mcbain0007.email.locaweb.com.br (Postfix) with ESMTP id CADBD28006B
; Wed, 26 Aug 2020 03:26:23 -0300 (-03)Received: from [201.6.175.183] (unknown [201.6.175.183])
(Authenticated sender: *** Email address is removed for privacy ***)
by proxy.email-ssl.com.br (Postfix) with ESMTPSA id CB1A9580DDC
; Wed, 26 Aug 2020 03:26:23 -0300 (-03)
Date: Wed, 26 Aug 2020 03:26:24 -0300
From: "Patrick" <*** Email address is removed for privacy ***>
--------------------------------------------------------------------------------------------------------
X-Virus-Scanned: amavisd-new at system.smarttel.com.np
Received: from system.smarttel.com.np ([127.0.0.1])
by localhost (system.smarttel.com.np [127.0.0.1]) (amavisd-new, port 10026)
with ESMTP id 7qtsQ-SNktIb ;
Wed, 26 Aug 2020 23:59:32 +0545 (NPT)
Received: from [201.176.1.160] (unknown [201.176.1.160])
by system.smarttel.com.np (Postfix) with ESMTPSA id 19CB57A64C2
Continue reading...