From owner-freebsd-questions@FreeBSD.ORG  Tue Sep  9 05:56:08 2003
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 981C416A4BF
	for <freebsd-questions@freebsd.org>;
	Tue,  9 Sep 2003 05:56:08 -0700 (PDT)
Received: from stork.mail.pas.earthlink.net (stork.mail.pas.earthlink.net
	[207.217.120.188])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 14B4F43FE0
	for <freebsd-questions@freebsd.org>;
	Tue,  9 Sep 2003 05:56:08 -0700 (PDT)
	(envelope-from algould@datawok.com)
Received: from 22-15.lctv-b4.cablelynx.com ([24.204.22.15]
	helo=yoda.datawok.com)
	by stork.mail.pas.earthlink.net with asmtp (TLSv1:RC4-MD5:128)
	(Exim 3.33 #1)	id 19wi2R-0006Tt-00
	for freebsd-questions@freebsd.org; Tue, 09 Sep 2003 05:56:07 -0700
From: "Andrew L. Gould" <algould@datawok.com>
To: freebsd-questions@freebsd.org
Date: Tue, 9 Sep 2003 07:56:26 -0500
User-Agent: KMail/1.5
MIME-Version: 1.0
Content-Type: text/plain;
  charset="us-ascii"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
Message-Id: <200309090756.26240.algould@datawok.com>
X-ELNK-Trace: ee791d459e3d6817d780f4a490ca69564776905774d2ac4bebdf96005864b79e27c30497c7dae586350badd9bab72f9c350badd9bab72f9c350badd9bab72f9c
Subject: Off-Topic:  Did I receive a virus or worm?
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 09 Sep 2003 12:56:08 -0000

HI all!

I received an email last night from a CPE (Continuing Professional Education) 
vendor.  The email contents contained an web address to their site where I 
could review my test results for an on-line course I had completed.  Clicking 
on the address from within Kmail sent me to the appropriate, secure (https) 
web page in Konqueror.

Below the message, however, were two blocks of gibberish.  Both blocks begin 
with a "begin" line and end with an "end" line.  There is no indication that 
Kmail included an attachment in-line within the email.

Is it possible that the code was needed to access the web page?  If so, I 
don't understand how clicking on the web address would send or use the blocks 
of code.

Should I worry about these blocks of code?

Thanks,

Andrew L. Gould