Odd emails

[Jon Light]

My Earthlink spam filter frequently shunts these emails into my "suspect" folder. They are less than 1KB in size, sometimes have a subject title, sometimes not and have no message contents. A large number of them come from two repeat sources: xxxx@worcestericecats.com and xxxx@world.std.com

What's up with these empty spams?

[Jim Phelps]

I get them too, I suspect they might contain malware or tracking cookies.

[Bobby D. Hunter]

Jon;
If you would like to have me analyze one or two of those email messages forward them to me AS ATTACHMENTS, using Outlook Express. When they are sent as attachments I am able to read the complete source code, and see things that are otherwise invisible. Use my link above to contact me. Please note that if they are not forwarded as attachments I will not be able to help you. If you are not able to use Outlook Express to send email with your ISP, consult your webmail options to see how to forward a message as an attachment.

------------------
Bobby D. Hunter
Security for SGF
Hunting down Slimeball Game
Reporting member of SpamCop

<font size="1" color="#8e236b"><p align="center">[This message was edited by Bobby D. Hunter on 07 February 2006 at 10:12 PM.]</p></FONT>

[Jim Phelps]

Bobby, I forwarded some of these odd emails to you as attachments.

[Bobby D. Hunter]

I have looked at the source code for these emails and found absolutely no message body at all. However, the From addresses are forged and different in each one, while they all originated from the exact same computer owned by a Verizon customer in New York.

My impression is that this is a Worm or virus that has been corupted, or an attempted spam run that is missing the spam body or attachments.

------------------
Bobby D. Hunter
Security for SGF
Hunting down Slimeball Game
Reporting member of SpamCop