Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- VIRUS (Heuristics.Phishing.Email.SpoofedDomain) in mail FROM [216.33.63.10] <18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa@info.searscard.com>
- From:
- Content-filter at smuckola.org <virusalert@smuckola.org>
- Add
- To: virusalert@smuckola.org
- header (2KB)
- A virus was found: Heuristics.Phishing.Email.SpoofedDomain
- Scanner detecting a virus: ClamAV-clamscan
- Content type: Virus
- Internal reference code for the message is 09044-07/3jCuBGVUm8os
- First upstream SMTP client IP address: [216.33.63.10]
- arm-ei10.bigfootinteractive.com
- According to a 'Received:' trace, the message apparently originated at:
- [216.33.63.10], [192.168.2.228] [192.168.2.228:61308] helo=pimailer108
- Return-Path:
- <18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa@info.searscard.com> (OK)
- From: =?iso-8859-1?B?U2VhcnMgY2FyZA==?= <searscard@info.searscard.com>
- (dkim:AUTHOR)
- Message-ID:
- <18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa.3648.18820.pimailer108.DumpShot.1@info.searscard.com>
- Subject: Your Online Activity Confirmation
- The message has been quarantined as: virus-3jCuBGVUm8os
- Notification to sender will not be mailed.
- The message WAS NOT relayed to:
- <searscard.com@smuckola.org>:
- 250 2.7.0 Ok, discarded, id=09044-07 - INFECTED: Heuristics.Phishing.Email.SpoofedDomain
- Virus scanner output:
- p004: Heuristics.Phishing.Email.SpoofedDomain FOUND
- p001: OK
- p002: OK
- Inline Attachment Follows: header
- Return-Path: <<a ymailto="mailto:18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa@info.searscard.com" href="mailto:18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa@info.searscard.com">18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa@info.searscard.com</a>><BR>X-Greylist: delayed 1800 seconds by postgrey-1.33 at v.smuckola.org; Wed, 05 Jan 2011 03:58:11 CST<BR>X-SMUCKOLA-DNSWL: No<BR>Received: from bigfootinteractive.com (arm-ei10.bigfootinteractive.com [216.33.63.10])<BR> by v.smuckola.org (Postfix) with ESMTP id AA92D101AC2<BR> for <<a ymailto="mailto:searscard.com@smuckola.org" href="mailto:searscard.com@smuckola.org">searscard.com@smuckola.org</a>>; Wed, 5 Jan 2011 03:58:11 -0600 (CST)<BR>DKIM-Signature: v=1; a=rsa-sha1; d=info.searscard.com; s=ei; c=simple/simple;<BR> q=dns/txt; i=@info.searscard.com; t=1294219690;<BR> h=From:Subject:Date:To:MIME-Version:Content-Type;<BR> bh=boCNsfdKr2+Pt4dPQoe9gjn/TOs=;<BR> b=PCDjLIwgcO4En8JYkHpEPJj5172neaclMe2N+DSPOrEe0tjxiyu7ICiew0hyaSEa<BR> xgoKtV7X5QiFL2aAfnYe+AEVZYP1PXEMEXRQaPBeaKU2iqumaHVfo0qbbdZvSLo4<BR> mqGPzeRkSKRYSuSxub9FDEsK7HnyiBCKhSyH4k2KoYc=;<BR>DomainKey-Signature: q=dns; a=rsa-sha1; c=nofws;<BR> s=ei; d=info.searscard.com;<BR> h=Received:Reply-To:Bounces_to:Message-ID:X-SS:X-BFI:Date:From:Subject:To:MIME-Version:Content-Type;<BR> b=XHqFDLJGEURgucWlfCiEPtM/NNuy18FjhJ5sm6d92aU5sDC3oF2dVw2yRgg6/ryZ<BR> 61oLnHrGrypBFaRKCZTV/J2Msdjzxq9Ai9deFKiJEVvQrAgwzEB8xn4BnAhiMYbI<BR> A84ZoF5yVfrY39w4KYpYh1eZPK5kAyEABiVPyH1cVxk=<BR>Received: from [192.168.2.228] ([192.168.2.228:61308] helo=pimailer108)<BR> by unjdrmmtap01.epsiloninteractive.com (envelope-from <<a ymailto="mailto:18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa@info.searscard.com" href="mailto:18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa@info.searscard.com">18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa@info.searscard.com</a>>)<BR> (ecelerity 2.2.2.45 r(34222M)) with ESMTP<BR> id E2/15-30955-AA9342D4; Wed, 05 Jan 2011 04:28:10 -0500<BR>Reply-To: =?iso-8859-1?B?InNlYXJzY2FyZCI=?= <<a ymailto="mailto:18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa@info.searscard.com" href="mailto:18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa@info.searscard.com">18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa@info.searscard.com</a>><BR>Bounces_to: <a ymailto="mailto:searscard.18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa@info.searscard.com" href="mailto:searscard.18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa@info.searscard.com">searscard.18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa@info.searscard.com</a><BR>Message-ID: <<a ymailto="mailto:18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa.3648.18820.pimailer108.DumpShot.1@info.searscard.com" href="mailto:18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa.3648.18820.pimailer108.DumpShot.1@info.searscard.com">18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa.3648.18820.pimailer108.DumpShot.1@info.searscard.com</a>><BR>X-SS: 1-1-9660280-585802303<BR>X-BFI: 18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa<BR>Date: Wed, 05 Jan 2011 04:27:16 EST<BR>From: =?iso-8859-1?B?U2VhcnMgY2FyZA==?= <<a ymailto="mailto:searscard@info.searscard.com" href="mailto:searscard@info.searscard.com">searscard@info.searscard.com</a>><BR>Subject: Your Online Activity Confirmation<BR>To: <a ymailto="mailto:searscard.com@smuckola.org" href="mailto:searscard.com@smuckola.org">searscard.com@smuckola.org</a><BR>MIME-Version: 1.0<BR>Content-Type: multipart/alternative;<BR> boundary="ABCD-18de279f9layfivcianvms3iaaaaaa6p4n3grmuufgeyaaaaa-EFGH"<BR>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement