Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Message Header (#1):
- Return-Path: <nobody@server.jparadiso.com>
- Received: from mxe25.s.uw.edu (mxe25.s.uw.edu [173.250.227.25])
- by mailman13.u.washington.edu (8.14.4+UW14.03/8.14.4+UW16.03) with ESMTP id v0AHIlWM021128
- for <pluuw@mailman13.u.washington.edu>; Tue, 10 Jan 2017 09:18:48 -0800
- Received: from server.jparadiso.com (server.jparadiso.com [72.44.81.201])
- by mxe25.s.uw.edu (8.14.4+UW14.03/8.14.4+UW16.03) with ESMTP id v0AHIW27001955
- (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO)
- for <pluuw@u.washington.edu>; Tue, 10 Jan 2017 09:18:33 -0800
- Received: from nobody by server.jparadiso.com with local (Exim 4.87)
- (envelope-from <nobody@server.jparadiso.com>)
- id 1cR048-0006nv-1z
- for pluuw@u.washington.edu; Tue, 10 Jan 2017 12:18:32 -0500
- To: pluuw@u.washington.edu
- Subject: Webmail Security Alert
- From: "Webmail Security" <radicals@u.washington.edu>
- Reply-To:
- Content-Type: multipart/alternative; boundary=94k12dx0d4zwb57rtq47oh4rovcu
- Message-Id: <E1cR048-0006nv-1z@server.jparadiso.com>
- Date: Tue, 10 Jan 2017 12:18:32 -0500
- X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
- X-AntiAbuse: Primary Hostname - server.jparadiso.com
- X-AntiAbuse: Original Domain - u.washington.edu
- X-AntiAbuse: Originator/Caller UID/GID - [99 99] / [47 12]
- X-AntiAbuse: Sender Address Domain - server.jparadiso.com
- X-Get-Message-Sender-Via: server.jparadiso.com: uid via acl_c_vhost_owner from authenticated_id: jparadis from //vweb.jparadiso.com/hm.php /only user confirmed/virtual account not confirmed
- X-Authenticated-Sender: server.jparadiso.com: jparadis
- X-PMX-Version: 6.3.1.2588712, Antispam-Engine: 2.7.2.2107409, Antispam-Data: 2017.1.10.171518
- X-PMX-Server: mxe25.s.uw.edu
- X-Uwash-Spam: Gauge=XXI, Probability=21%, Report='
- REPLY_TO_EMPTY 1.699, MIME_HEADER_CTYPE_ONLY 0.5, PHISH_SPEAR_CONTENT_X3 0.1, PHISH_SPEAR_CONTENT_X4 0.1, BODYTEXTH_SIZE_10000_LESS 0, BODYTEXTP_SIZE_3000_LESS 0, BODY_SIZE_1200_1299 0, BODY_SIZE_2000_LESS 0, BODY_SIZE_5000_LESS 0, BODY_SIZE_7000_LESS 0, CTYPE_MULTIPART_NO_QUOTE 0, DATE_TZ_NA 0, IP_HTTP_ADDR 0, NO_URI_HTTPS 0, SMALL_BODY 0, SPF_NONE 0, URI_ENDS_IN_PHP 0, __ANY_URI 0, __CP_URI_IN_BODY 0, __CT 0, __CTYPE_HAS_BOUNDARY 0, __CTYPE_MULTIPART 0, __CTYPE_MULTIPART_ALT 0, __FRAUD_ANTIABUSE 0, __FRAUD_INTRO 0, __FROM_DOMAIN_IN_ANY_TO2 0, __FROM_DOMAIN_IN_RCPT 0, __HAS_FROM 0, __HAS_HTML 0, __HAS_MSGID 0, __HTML_AHREF_TAG 0, __HTML_TAG_DIV 0, __MIME_HTML 0, __MIME_TEXT_H 0, __MIME_TEXT_H1 0, __MIME_TEXT_H2 0, __MIME_TEXT_P 0, __MIME_TEXT_P1 0, __MIME_TEXT_P2 0, __MULTIPLE_URI_TEXT 0, __PHISH_SPEAR_GREETING 0, __PHISH_SPEAR_SUBJECT 0, __PHISH_SPEAR_TEAM 0, __PHISH_SUBJ_PHRASE2 0,
- __SANE_MSGID 0, __SPEAR_FROM_NAME_A 0, __SUBJ_ALPHA_END 0, __TO_MALFORMED_2 0, __TO_NO_NAME 0, __URI_IN_BODY 0, __URI_NO_MAILTO 0, __URI_NO_WWW 0, __URI_WITH_PATH 0'
- Message Body (#1):
- Dear Webmail User,
- We have embarked on a new security enhancement on all accountswith us. And as such, you are required to enroll for this security feature.
- Please note that on failure to comply your mail service will be
- discontinued. to enroll, visit Our security enhancement portal
- <http://69.65.119.25/~smirnov/portal/cache/account/enhancement/strongauth.php?id=pluuw@u.washington.edu>
- .
- Sincerely,
- The Webmail Team
- <div dir="ltr">Dear Webmail User,<br>
- We have embarked on a new <span>security</span> <span>enhancement</span> on all accounts with us. And as such,<br> you are required to enroll for this <span >security</span> feature. Please note that on failure to comply your mail service <br>will be discontinued. to enroll, visit <a href="http://69.65.119.25/~smirnov/portal/cache/account/enhancement/strongauth.php?id=pluuw@u.washington.edu">
- Our security enhancement portal</a>.<br><br>
- <br>
- Sincerely,<br>
- The Webmail Team<br>
- </div>
- Message Header (#2):
- Return-Path: <nobody@server.jparadiso.com>
- Received: from mxe21.s.uw.edu (mxe21.s.uw.edu [140.142.32.134])
- by mailman13.u.washington.edu (8.14.4+UW14.03/8.14.4+UW16.03) with ESMTP id v0AHMYTi028457
- for <pluuw@mailman13.u.washington.edu>; Tue, 10 Jan 2017 09:22:34 -0800
- Received: from server.jparadiso.com (server.jparadiso.com [72.44.81.201])
- by mxe21.s.uw.edu (8.14.4+UW14.03/8.14.4+UW16.03) with ESMTP id v0AHM5YV006339
- (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO)
- for <pluuw@u.washington.edu>; Tue, 10 Jan 2017 09:22:06 -0800
- Received: from nobody by server.jparadiso.com with local (Exim 4.87)
- (envelope-from <nobody@server.jparadiso.com>)
- id 1cR07Z-0008NW-CL
- for pluuw@u.washington.edu; Tue, 10 Jan 2017 12:22:05 -0500
- To: pluuw@u.washington.edu
- Subject: Re:
- From: "Maximo Lenders" <radicals@u.washington.edu>
- Reply-To: alt.g4-d1o6q5x@yopmail.com
- Content-Type: multipart/alternative; boundary=nhsc1mecbpooijxenuwi1bjakurc
- Message-Id: <E1cR07Z-0008NW-CL@server.jparadiso.com>
- Date: Tue, 10 Jan 2017 12:22:05 -0500
- X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
- X-AntiAbuse: Primary Hostname - server.jparadiso.com
- X-AntiAbuse: Original Domain - u.washington.edu
- X-AntiAbuse: Originator/Caller UID/GID - [99 99] / [47 12]
- X-AntiAbuse: Sender Address Domain - server.jparadiso.com
- X-Get-Message-Sender-Via: server.jparadiso.com: uid via acl_c_vhost_owner from authenticated_id: jparadis from //vweb.jparadiso.com/hm.php /only user confirmed/virtual account not confirmed
- X-Authenticated-Sender: server.jparadiso.com: jparadis
- X-PMX-Version: 6.3.1.2588712, Antispam-Engine: 2.7.2.2107409, Antispam-Data: 2017.1.10.171518
- X-PMX-Server: mxe21.s.uw.edu
- X-Uwash-Spam: Gauge=XXIIII, Probability=24%, Report='
- FRAUD_LITTLE_BODY 2, MIME_HEADER_CTYPE_ONLY 0.5, HTML_NO_HTTP 0.1, REPLYTO_FROM_DIFF_ADDY 0.1, BODYTEXTH_SIZE_10000_LESS 0, BODYTEXTP_SIZE_3000_LESS 0, BODYTEXTP_SIZE_400_LESS 0, BODY_SIZE_1000_LESS 0, BODY_SIZE_2000_LESS 0, BODY_SIZE_5000_LESS 0, BODY_SIZE_7000_LESS 0, BODY_SIZE_700_799 0, CTYPE_MULTIPART_NO_QUOTE 0, DATE_TZ_NA 0, NO_URI_HTTPS 0, SMALL_BODY 0, SPF_NONE 0, __ANY_URI 0, __BOUNCE_CHALLENGE_SUBJ 0, __BOUNCE_NDR_SUBJ_EXEMPT 0, __CT 0, __CTYPE_HAS_BOUNDARY 0, __CTYPE_MULTIPART 0, __CTYPE_MULTIPART_ALT 0, __FRAUD_ANTIABUSE 0, __FRAUD_BODY_WEBMAIL 0, __FRAUD_COMMON 0, __FRAUD_FINANCE_PROBLEM 0, __FRAUD_LOAN_VALUE 0, __FRAUD_MONEY 0, __FRAUD_WEBMAIL 0, __FROM_DOMAIN_IN_ANY_TO2 0, __FROM_DOMAIN_IN_RCPT 0, __HAS_FROM 0, __HAS_HTML 0, __HAS_MSGID 0, __HAS_REPLYTO 0, __HTML_AHREF_TAG 0, __HTML_TAG_DIV 0, __MIME_HTML 0, __MIME_TEXT_H 0, __MIME_TEXT_H1 0, __MIME_TEXT_H2 0,
- __MIME_TEXT_P 0, __MIME_TEXT_P1 0, __MIME_TEXT_P2 0, __SANE_MSGID 0, __SUBJ_ALPHA_NEGATE 0, __TO_MALFORMED_2 0, __TO_NO_NAME 0, __URI_NO_WWW 0, __URI_NS '
- Message Body (#2):
- Hi,
- Get your low interest loans today. with interest rate as low as 8% per
- annum we're hard to beat
- bad credit score? no problem! we have a solution for everyone.
- just send us an email to: maximo.lender@qq.com for more information.
- <div dir="ltr">Hi,<br>Get your low interest loans today. with interest rate as low as 8% per<br>annum we're hard to beat<br>bad credit score? no problem! we have a solution for everyone.<br>just send us an email to: <a href="mailto:maximo.lender@qq.com">maximo.lender@qq.com</a> for more information.<br></div>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement