Advertisement
Guest User

Untitled

a guest
Jan 5th, 2011
1,601
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 5.20 KB | None | 0 0
  1. VIRUS (Heuristics.Phishing.Email.SpoofedDomain) in mail FROM [216.33.63.10] <18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa@info.searscard.com>
  2. From:
  3. Content-filter at smuckola.org <virusalert@smuckola.org>
  4. Add
  5. To: virusalert@smuckola.org
  6.  
  7. header (2KB)
  8. A virus was found: Heuristics.Phishing.Email.SpoofedDomain
  9.  
  10. Scanner detecting a virus: ClamAV-clamscan
  11.  
  12. Content type: Virus
  13. Internal reference code for the message is 09044-07/3jCuBGVUm8os
  14.  
  15. First upstream SMTP client IP address: [216.33.63.10]
  16. arm-ei10.bigfootinteractive.com
  17. According to a 'Received:' trace, the message apparently originated at:
  18. [216.33.63.10], [192.168.2.228] [192.168.2.228:61308] helo=pimailer108
  19.  
  20. Return-Path:
  21. <18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa@info.searscard.com> (OK)
  22. From: =?iso-8859-1?B?U2VhcnMgY2FyZA==?= <searscard@info.searscard.com>
  23. (dkim:AUTHOR)
  24. Message-ID:
  25. <18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa.3648.18820.pimailer108.DumpShot.1@info.searscard.com>
  26. Subject: Your Online Activity Confirmation
  27. The message has been quarantined as: virus-3jCuBGVUm8os
  28.  
  29. Notification to sender will not be mailed.
  30.  
  31. The message WAS NOT relayed to:
  32. <searscard.com@smuckola.org>:
  33. 250 2.7.0 Ok, discarded, id=09044-07 - INFECTED: Heuristics.Phishing.Email.SpoofedDomain
  34.  
  35. Virus scanner output:
  36. p004: Heuristics.Phishing.Email.SpoofedDomain FOUND
  37. p001: OK
  38. p002: OK
  39.  
  40. Inline Attachment Follows: header
  41. Return-Path: &lt;<a ymailto="mailto:18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa@info.searscard.com" href="mailto:18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa@info.searscard.com">18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa@info.searscard.com</a>&gt;<BR>X-Greylist: delayed 1800 seconds by postgrey-1.33 at v.smuckola.org; Wed, 05 Jan 2011 03:58:11 CST<BR>X-SMUCKOLA-DNSWL: No<BR>Received: from bigfootinteractive.com (arm-ei10.bigfootinteractive.com [216.33.63.10])<BR>&nbsp;&nbsp;&nbsp; by v.smuckola.org (Postfix) with ESMTP id AA92D101AC2<BR>&nbsp;&nbsp;&nbsp; for &lt;<a ymailto="mailto:searscard.com@smuckola.org" href="mailto:searscard.com@smuckola.org">searscard.com@smuckola.org</a>&gt;; Wed,&nbsp; 5 Jan 2011 03:58:11 -0600 (CST)<BR>DKIM-Signature: v=1; a=rsa-sha1; d=info.searscard.com; s=ei; c=simple/simple;<BR>&nbsp;&nbsp;&nbsp; q=dns/txt; i=@info.searscard.com; t=1294219690;<BR>&nbsp;&nbsp;&nbsp; h=From:Subject:Date:To:MIME-Version:Content-Type;<BR>&nbsp;&nbsp;&nbsp; bh=boCNsfdKr2+Pt4dPQoe9gjn/TOs=;<BR>&nbsp;&nbsp;&nbsp; b=PCDjLIwgcO4En8JYkHpEPJj5172neaclMe2N+DSPOrEe0tjxiyu7ICiew0hyaSEa<BR>&nbsp;&nbsp;&nbsp; xgoKtV7X5QiFL2aAfnYe+AEVZYP1PXEMEXRQaPBeaKU2iqumaHVfo0qbbdZvSLo4<BR>&nbsp;&nbsp;&nbsp; mqGPzeRkSKRYSuSxub9FDEsK7HnyiBCKhSyH4k2KoYc=;<BR>DomainKey-Signature: q=dns; a=rsa-sha1; c=nofws;<BR>&nbsp;&nbsp;&nbsp; s=ei; d=info.searscard.com;<BR>&nbsp;&nbsp;&nbsp; h=Received:Reply-To:Bounces_to:Message-ID:X-SS:X-BFI:Date:From:Subject:To:MIME-Version:Content-Type;<BR>&nbsp;&nbsp;&nbsp; b=XHqFDLJGEURgucWlfCiEPtM/NNuy18FjhJ5sm6d92aU5sDC3oF2dVw2yRgg6/ryZ<BR>&nbsp;&nbsp;&nbsp; 61oLnHrGrypBFaRKCZTV/J2Msdjzxq9Ai9deFKiJEVvQrAgwzEB8xn4BnAhiMYbI<BR>&nbsp;&nbsp;&nbsp; A84ZoF5yVfrY39w4KYpYh1eZPK5kAyEABiVPyH1cVxk=<BR>Received: from [192.168.2.228] ([192.168.2.228:61308] helo=pimailer108)<BR>&nbsp;&nbsp;&nbsp; by unjdrmmtap01.epsiloninteractive.com (envelope-from &lt;<a ymailto="mailto:18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa@info.searscard.com" href="mailto:18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa@info.searscard.com">18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa@info.searscard.com</a>&gt;)<BR>&nbsp;&nbsp;&nbsp; (ecelerity 2.2.2.45 r(34222M)) with ESMTP<BR>&nbsp;&nbsp;&nbsp; id E2/15-30955-AA9342D4; Wed, 05 Jan 2011 04:28:10 -0500<BR>Reply-To: =?iso-8859-1?B?InNlYXJzY2FyZCI=?= &lt;<a ymailto="mailto:18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa@info.searscard.com" href="mailto:18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa@info.searscard.com">18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa@info.searscard.com</a>&gt;<BR>Bounces_to: <a ymailto="mailto:searscard.18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa@info.searscard.com" href="mailto:searscard.18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa@info.searscard.com">searscard.18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa@info.searscard.com</a><BR>Message-ID: &lt;<a ymailto="mailto:18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa.3648.18820.pimailer108.DumpShot.1@info.searscard.com" href="mailto:18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa.3648.18820.pimailer108.DumpShot.1@info.searscard.com">18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa.3648.18820.pimailer108.DumpShot.1@info.searscard.com</a>&gt;<BR>X-SS: 1-1-9660280-585802303<BR>X-BFI: 18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa<BR>Date: Wed, 05 Jan 2011 04:27:16 EST<BR>From: =?iso-8859-1?B?U2VhcnMgY2FyZA==?= &lt;<a ymailto="mailto:searscard@info.searscard.com" href="mailto:searscard@info.searscard.com">searscard@info.searscard.com</a>&gt;<BR>Subject: Your Online Activity Confirmation<BR>To: <a ymailto="mailto:searscard.com@smuckola.org" href="mailto:searscard.com@smuckola.org">searscard.com@smuckola.org</a><BR>MIME-Version: 1.0<BR>Content-Type: multipart/alternative;<BR>&nbsp; boundary="ABCD-18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa-EFGH"<BR>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement