What's an eml file?

[Johnny_L.A]

I just received this e-mail:

Mail Delivery System<MAILER-DAEMON@ix.netcom.com>

This message was created automatically by mail delivery software (Exim).

A message that you sent could not be delivered to one or more of its recipients.This is a permanent error. The following address(es) mailed:atl@essential-oil.org

For further assistance, please contact < postmaster@ix.netcom.com >If you do so, please include this problem report. You can delete your own text from the message returned below.

Copy of your message, including all the headers is attached

There is a file attached called swami.eml which ostensibly contains “a copy of my message”.

Naturally, I’ve deleted the mail. There is no reason why I would contact “essential-oil.org”, and I’ve never heard of them. This is a spam that may contain a virus or something.

But I’m curious to know if anyone else has received this e-mail, and what the attachment does.

[Reeder]

.EML MS Outlook Express Electronic Mail <http://service.bfast.com/bfast/serve?bfmid=31684497&siteid=39065523&bfpage=officexp> [Buy Office XP at Shop.Microsoft]
Note: .EML files with “funny” names in multiple folders implies the Nimda worm.
QuickMail Pro

http://filext.com/
Great site to bookmark. I use it often.

[AZCowboy]

As Reeder’s post suggests, the *.eml message type is an email format, used by MS Outlook Express (and apparently QuickMail Pro).

The format includes not only the body of the message, but the headers as well. It stores the body as a text message, as well as the original format (such as RTF or HTML).

What is a bit scary, however, is that the error message is generated because it assumed that you tried to SEND that message, yet you claim to have never heard of essential-oil.org.

That could indicate that you have a virus. Make your your A/V software is up to date, and run a scan. It could also indicate that someone else, whom you’ve exchanged email with, has a virus. Some viruses now use email addresses they find and use them as sent FROM: addresses. So if you don’t have a virus, I suspect that someone you know does.

Good Luck.

[Johnny_L.A]

Now that I think of it…

One of my co-workers is into burning scented oils. I know I have never tried to send anything to “essential-oils.org”, but she may have. Also, we use Outlook at work and I’ve sent e-mails from my home computer to her work computer. We use Norton at work, and it is updated frequently.

I guess I should have not deleted the message, so I could try to trace the path. Did I purge my deleted e-mails yet? I’ll have to look when I get home.

[slortar]

It could also have been Klez–it works by picking two addresses from your address book. One becomes the recipient and the other is the forged return address. The upshot is that just about everyone you know gets the bounced mails and angry complaints than you…

[dantheman]

All the email is saying is that an email that was sent using your email address was received. Your email address could be in anyone’s address book and may have absolutely nothing to do with you or your computer. If you emailed Person A, and they forwarded it to Person B, then your email address might be on Person B’s machine. Then when Person B got Klez, an email was sent ostensibly from your address.

Always good to check if you have the worm, but I wouldn’t assume you do based on that email. I get bounce-back messages all the time for stuff I never sent.

[Jdeforrest]

Another good site to search file extensions is:

www.extsearch.com

[Johnny_L.A]

I bought the newest version of Norton AntiVirus today. (Pain in the ass – It wouldn’t install over the previous version, so I had to delete the old one manually.) It found one virus: W31.Yaha.F@mm. (If that comes up as a link, ignore it.) It was in the trash folder, which means I didn’t open it. It’s gone. I suppose I should have sent it to Earthlink so they could trace it back and try to catch the guy, but I don’t like anything like that on my computer.