Theos-Talk Archives (February 2004 Message tt00113)

Dennis:



In the case of your email, the first RECEIVED: line shows the message coming
from 129.108.41.43. If I do a traceroute command, I get the following. It
shows the path between my home computer (the address of which I've x'ed out
so it's not published on the Internet) and 129.108.41.43. Looking at the
nearest identified address in the path that it took, it looks like the email
may have come from a computer at the University of Texas at El Paseo. If I
were following up on this, I'd look up their email address, and write to
them, asking if 129.108.41.43 is one of their computers, and if so, could
they look into viruses as possibly coming from it.



(Note that recent versions of Windows also have the traceroute command,
although they call it "tracert". It would be run from a DOS command prompt.)



-- Eldon



- - - - - - - - - -



Tracing route to 129.108.41.63 over a maximum of 30 hops



1 <1 ms <1 ms <1 ms XXX.XXX.XXX.XXX

2 6 ms 5 ms 7 ms 10.40.96.1 

3 5 ms 22 ms 6 ms FE2-8.CNPKCA2-RTR2.socal.rr.com
[24.24.192.73] 

4 24 ms 5 ms * SRP1-1.CHSWCA1-GSR2.socal.rr.com
[24.24.192.157] 

5 7 ms 7 ms 8 ms SO-0-0-2.LSANCA1-RTR1.socal.rr.com
[24.24.192.1] 

6 16 ms 7 ms 8 ms pop1-las-P5-0.atdn.net [66.185.143.5] 

7 7 ms 7 ms 8 ms ex1-p13-0.eqlaca.sbcglobal.net
[151.164.248.61] 

8 7 ms 8 ms 7 ms bb1-p11-1.lsan03.pbi.net [151.164.241.102] 

9 8 ms 7 ms 7 ms core1-p6-1.cranca.sbcglobal.net
[151.164.241.210] 

10 8 ms 8 ms 7 ms core2-p1-0.cranca.sbcglobal.net
[151.164.241.222] 

11 31 ms 12 ms 11 ms core1-p4-0.crrvca.sbcglobal.net
[151.164.243.230] 

12 13 ms 10 ms 12 ms core2-p8-0.crrvca.sbcglobal.net
[151.164.188.50] 

13 51 ms 60 ms 49 ms core2-p3-0.crhstx.sbcglobal.net
[151.164.241.125] 

14 50 ms 49 ms 50 ms bb2-p10-0.hstntx.sbcglobal.net
[151.164.188.10] 

15 50 ms 52 ms 49 ms bb1-p14-0.hstntx.sbcglobal.net
[151.164.240.241] 

16 62 ms 72 ms 63 ms bb2-p3-1.elpstx.sbcglobal.net
[151.164.243.97] 

17 63 ms 62 ms 61 ms ded1-fa8-0.elpstx.swbell.net
[151.164.73.226] 

18 62 ms 66 ms 61 ms
University-of-Texas-at-El-Paso-4160518.cust-rtr.swbell.net [151.164.74.30] 

19 65 ms 62 ms 64 ms utep-gw.tx-bb.net [192.12.10.58] 

20 64 ms 66 ms 88 ms 129.108.41.63 

21 63 ms 64 ms 64 ms 129.108.41.63 

Trace complete.



- - - - - - - - - 



-----Original Message-----

From: Dennis Kier [mailto:dennw3k@earthlink.net] 

Sent: Thursday, February 19, 2004 5:05 PM

To: theos-talk@yahoogroups.com

Subject: Re: Theos-World what to do about viruses



Eldon:



Here is the first paragraph from the "Properties" of the message.



****

Status: U

Return-Path: <dalval14@earthlink.net>

Received: from ieee ([129.108.41.63])

by robin (EarthLink SMTP Server) with SMTP id 1aTb3I3Ye3NZFjX0

for <dennw3k@earthlink.net>; Tue, 17 Feb 2004 11:39:06 -0800 (PST)

Date: Tue, 17 Feb 2004 12:38:33 -0700

To: dennw3k@earthlink.net

Subject: ID bkksxglro... thanks

From: dalval14@earthlink.net

Message-ID: <flndwgxabubaqevuqwi@earthlink.net>

MIME-Version: 1.0

Content-Type: multipart/mixed;

boundary="--------651657377073770"



*******************

Dennis



----- Original Message ----- 

From: "Eldon B Tucker" <eldon@theosophy.com>

To: <theos-talk@yahoogroups.com>

Sent: Wednesday, February 18, 2004 5:59 PM

Subject: Theos-World what to do about viruses





> It's common for a virus to forge the email header so that it makes

it look

> like the email came from someone other than the real sender. The

FROM: line

> can be faked, although near the top of the email header you can

often see

> the original IP address from which the message came. Using that

address,

> it's sometimes possible to locate the infected machine that the

message

> originated from. Even locating that machine may tell little, because

that

> machine may have been hacked or infected by someone other than its

owner.

> 

> I disabled email attachments on Theos-talk many years ago so that

people

> would be unable to accidentally send out viruses to everyone on the

list.

> 

> The best thing to do is just get the best antivirus program and

always keep

> its definitions up-do-date.

> 

> -- Eldon

> 

> -----Original Message-----

> From: Dennis Kier [mailto:dennw3k@earthlink.net]

> Sent: Tuesday, February 17, 2004 5:32 PM

> To: theos-talk@yahoogroups.com

> Subject: Re: Theos-World RE: Fw: [bn-study] Man as (Manas) the

thinker or

> Reflective Being.

> 

> Dallas:

> 

> Investigating the message that seemed to come from you, the

attachment

> contained the file,"yrubijakspo.exe"

> 

> I don't know what it did.

> 

> Dennis





[Non-text portions of this message have been removed]