Email possibly being piggybacked for spam email?

#1
Received this email message this morning. As I have never (knowingly) attempted to email "soundprolab.ru" or anything like that, I can only think of a couple of options:

1. It's spam, designed to make me think it's a bounced message so I will click on a link; or

2. Someone is piggybacking / hijacking my Hotmail account to sound out emails, one of which has (genuinely) been bounced back to me by the googlemail server.

There are a couple of other email addresses further down, one of which ("reply to") is a .ru address. There is also cyrillic script visibly. I'm suspecting that option 2 might be the more likely explanation.

Thoughts? Will be changing password and security question, but just wondered if anybody technical had a definitive insight.


Delivery to the following recipient failed permanently:

info@soundprolab.ru

Technical details of permanent failure:
Message rejected by Google Groups. Please visit Why has Gmail blocked my messages? - Gmail Help to review our Bulk Email Senders Guidelines.

----- Original message -----

X-Received: by 10.68.237.165 with SMTP id vd5mr3296649pbc.52.1360906656680;
Thu, 14 Feb 2013 21:37:36 -0800 (PST)
X-Received: by 10.68.237.165 with SMTP id vd5mr3296648pbc.52.1360906656663;
Thu, 14 Feb 2013 21:37:36 -0800 (PST)
Return-Path: <xxx@hotmail.com>
Received: from fmailhost06.isp.att.net (fmailhost06.isp.att.net. [207.115.11.56])
by mx.google.com with ESMTP id k8si11156038pax.146.2013.02.14.21.37.36;
Thu, 14 Feb 2013 21:37:36 -0800 (PST)
Received-SPF: softfail (google.com: domain of transitioning xxx@hotmail.com does not designate 207.115.11.56 as permitted sender) client-ip=207.115.11.56;
Authentication-Results: mx.google.com;
spf=softfail (google.com: domain of transitioning xxx@hotmail.com does not designate 207.115.11.56 as permitted sender) smtp.mail=xxx@hotmail.com;
dkim=pass header.i=aavsrch@swbell.net
DKIM-Signature: v=1; q=dns/txt; d=swbell.net; s=dkim02;
i=aavsrch@swbell.net; a=rsa-sha256; c=relaxed/relaxed;
t=1360906656; h=Content-Type:MIME-Version:Date:Subject:To:From:
Message-ID; bh=SCXXz0LQhKAhPKGPH2FpYQYPJxXq5JJBCZJMcKbRYs4=; b=hXt
YB6oTSbYtj/Ivi/fmO+bi12Em94e8jk0khVtgjDudrGJ9jeUZmPFFZEfO88EFyyZADm
4jGdGcpK1c+hDrUyoHo61OzTLRsoXh4HUgsdppTN7wnbYuiCOBH9pdHxBjc8 OZ0cnBm
DrEwTjoA7TsHe3P7pOnQ/7skQp7dLbHpd0=
Received: from unknown ([82.198.123.0]) by isp.att.net (frfwmhc06) with SMTP
id <20130215053719H06004mvq2e>; Fri, 15 Feb 2013 05:37:29 +0000
X-Originating-IP: [82.198.123.0]
Message-ID: <2D6FC06AA72B450189242FF820311E81@mdrwiqm>
Reply-To: =?windows-1251?B?0PPq7uLu5Ojy5ev+?= <lex1990czubakowski@ngs.ru>
From: =?windows-1251?B?0PPq7uLu5Ojy5ev+?= <xxx@hotmail.com>
To: =?windows-1251?B?z+7r6O3g?= <mindy.rathe-hart@nmhs.org>
Subject: =?windows-1251?B?z/Dg4u7i++Ug4PHv5ery+yDx8vDu6PLl6/zt?=
=?windows-1251?B?7uPuIOru7fLw7uv/?=
Date: Fri, 15 Feb 2013 11:37:13 +0600
MIME-Version: 1.0
Content-Type: multipart/mixed;
boundary="----=_NextPart_000_002E_01CE0B70.CCB834F0"
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Windows Live Mail 16.4.3505.912
X-MimeOLE: Produced By Microsoft MimeOLE V16.4.3505.912

&#1056;&#1091;&#1082;&#1086;&#1074;&#1086;&#1076;&#1080;&#1090;&#1077;&#1083;&#1102; &#1086;&#1090;&#1076;&#1077;&#1083;&#1072; &#1089;&#1090;&#1088;&#1086;&#1080;&#1090;&#1077;&#1083;&#1100;&#1089;&#1090;&#1074;&#1072; &#1080; &#1087;&#1088;&#1086;&#1077;&#1082;&#1090;&#1080;&#1088;&#1086;&#1074;&#1072;&#1085;&#1080;&#1103;: &#1043;&#1088;&#1072;&#1076;&#1086;&#1089;&#1090;&#1088;&#1086;&#1080;&#1090;&#1077;&#1083;&#1100;&#1085;&#1099;&#1081; &#1082;&#1086;&#1076;&#1077;&#1082;&#1089; &#1074; 2013 &#1075;&#1086;&#1076;&#1091;.

-----
No virus found in this message.
Checked by AVG - www.avg.com
Version: 2013.0.2899 / Virus Database: 2639/6103 - Release Date: 02/14/13
 

Similar threads

New Posts

Top