API tools faq
paste
Advertisement
wavellan

201803026_PHISHING_SCAM_2

wavellan
Mar 26th, 2018
438
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 5.87 KB | None | 0 0
raw download clone embed print report
  1. Received: from MBX05D-ORD1.mex08.mlsrvr.com (172.29.9.24) by
  2. MBX05C-ORD1.mex08.mlsrvr.com (172.29.9.23) with Microsoft SMTP Server (TLS)
  3. id 15.0.1293.2 via Mailbox Transport; Mon, 26 Mar 2018 04:00:48 -0500
  4. Received: from MBX09D-ORD1.mex08.mlsrvr.com (172.29.9.39) by
  5. MBX05D-ORD1.mex08.mlsrvr.com (172.29.9.24) with Microsoft SMTP Server (TLS)
  6. id 15.0.1293.2; Mon, 26 Mar 2018 04:00:47 -0500
  7. Received: from gate.forward.smtp.ord1c.emailsrvr.com (108.166.43.128) by
  8. MBX09D-ORD1.mex08.mlsrvr.com (172.29.9.39) with Microsoft SMTP Server (TLS)
  9. id 15.0.1293.2 via Frontend Transport; Mon, 26 Mar 2018 04:00:47 -0500
  10. Return-Path: <[email protected]>
  11. X-Spam-Threshold: 95
  12. X-Spam-Score: 100
  13. Precedence: junk
  14. X-Spam-Flag: YES
  15. X-Virus-Scanned: OK
  16. X-Orig-To: REMOVED
  17. X-Originating-Ip: [208.113.200.129]
  18. Authentication-Results: smtp16.gate.ord1c.rsapps.net; iprev=pass policy.iprev="208.113.200.129"; spf=neutral smtp.mailfrom="[email protected]" smtp.helo="homiemail-a50.g.dreamhost.com"; dkim=pass header.d=pcsolucion.com.mx; dmarc=none (p=nil; dis=none) header.from=pcsolucion.com.mx
  19. X-Suspicious-Flag: NO
  20. X-Classification-ID: 2c134b22-30d4-11e8-9f77-bc305bf036a4-1-1
  21. Received: from [208.113.200.129] ([208.113.200.129:51133] helo=homiemail-a50.g.dreamhost.com)
  22. by smtp16.gate.ord1c.rsapps.net (envelope-from <[email protected]>)
  23. (ecelerity 4.2.1.56364 r(Core:4.2.1.14)) with ESMTPS (cipher=DHE-RSA-AES256-SHA)
  24. id 35/7F-10501-EB6B8BA5; Mon, 26 Mar 2018 05:00:47 -0400
  25. Received: from homiemail-a50.g.dreamhost.com (localhost [127.0.0.1])
  26. by homiemail-a50.g.dreamhost.com (Postfix) with ESMTP id 452A0801A01C
  27. for REMOVED; Mon, 26 Mar 2018 02:00:46 -0700 (PDT)
  28. DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=pcsolucion.com.mx; h=from
  29. :to:subject:date:message-id:mime-version:content-type; s=
  30. pcsolucion.com.mx; bh=ubBtEHwrGRP2h04EGJvdrk3qDaA=; b=U5q/nnrvgW
  31. 6XSQcUUpuorP2oT2WKYz4o2aD50MzGX/dvyWHIi1DGFOMGUSQP1oWxGkq2DdLEff
  32. ZRHgSOCzyZyix9B/N8G/8N4PjtDzXWSg3efPuNrk5J45nLJ6A7gVpudAXJt0VchX
  33. rXhlzE6RyIW8GUvS85mSN2fRn94VeSiWg=
  34. Received: from mail.dreamhost.com (unknown [106.219.148.145])
  35. (Authenticated sender: [email protected])
  36. by homiemail-a50.g.dreamhost.com (Postfix) with ESMTPA id B1F0D801A013
  37. for REMOVED; Mon, 26 Mar 2018 02:00:44 -0700 (PDT)
  38. From: Tara Foster <[email protected]>
  39. To:
  40. Subject:
  41. Date: Mon, 26 Mar 2018 09:00:29 +0000
  42. Message-ID: <376696812941$8nhigv9m$9gnt4t4z$@Valerie-PC>
  43. MIME-Version: 1.0
  44. X-Mailer: Microsoft Outlook 16.0
  45. Thread-Index: T1p3cTFvRkRlTGlUVkFJVmgzS0ZNRA==
  46. Content-Language: en-us
  47. X-MS-Exchange-Organization-Network-Message-Id: 4d9b8841-34a3-4788-0694-08d592f810bc
  48. X-MS-Exchange-Organization-AVStamp-Mailbox: SMEXzs^g;1415100;0;This mail has
  49. been scanned by Trend Micro ScanMail for Microsoft Exchange;
  50. X-MS-Exchange-Organization-SCL: 5
  51. X-MS-Exchange-Organization-AuthSource: MBX09D-ORD1.mex08.mlsrvr.com
  52. X-MS-Exchange-Organization-AuthAs: Anonymous
  53. Content-type: multipart/alternative;
  54. boundary="B_3604898230_281882393"
  55.  
  56. > This message is in MIME format. Since your mail reader does not understand
  57. this format, some or all of this message may not be legible.
  58.  
  59. --B_3604898230_281882393
  60. Content-type: text/plain;
  61. charset="UTF-8"
  62. Content-transfer-encoding: 7bit
  63.  
  64. Hi
  65.  
  66.  
  67.  
  68.  
  69.  
  70. https://goo.gl/51xWFU
  71.  
  72.  
  73.  
  74.  
  75. Tara Foster
  76.  
  77.  
  78.  
  79. --B_3604898230_281882393
  80. Content-type: text/html;
  81. charset="UTF-8"
  82. Content-transfer-encoding: quoted-printable
  83.  
  84. <html xmlns:v=3D"urn:schemas-microsoft-com:vml" xmlns:o=3D"urn:schemas-microsof=
  85. t-com:office:office" xmlns:w=3D"urn:schemas-microsoft-com:office:word" xmlns:m=
  86. =3D"http://schemas.microsoft.com/office/2004/12/omml" xmlns=3D"http://www.w3.org=
  87. /TR/REC-html40">
  88. <head>
  89. <meta http-equiv=3D"Content-Type" content=3D"text/html; charset=3Dutf-8">
  90. <meta name=3D"Generator" content=3D"Microsoft Word 15 (filtered medium)">
  91. <style><!--
  92. /* Font Definitions */
  93. @font-face
  94. {font-family:"Cambria Math";
  95. panose-1:2 4 5 3 5 4 6 3 2 4;}
  96. @font-face
  97. {font-family:Calibri;
  98. panose-1:2 15 5 2 2 2 4 3 2 4;}
  99. /* Style Definitions */
  100. p.MsoNormal, li.MsoNormal, div.MsoNormal
  101. {margin:0cm;
  102. margin-bottom:.0001pt;
  103. font-size:11.0pt;
  104. font-family:"Calibri","sans-serif";}
  105. a:link, span.MsoHyperlink
  106. {mso-style-priority:99;
  107. color:#0563C1;
  108. text-decoration:underline;}
  109. a:visited, span.MsoHyperlinkFollowed
  110. {mso-style-priority:99;
  111. color:#954F72;
  112. text-decoration:underline;}
  113. span.EmailStyle17
  114. {mso-style-type:personal-compose;
  115. font-family:"Calibri","sans-serif";
  116. color:windowtext;}
  117. .MsoChpDefault
  118. {mso-style-type:export-only;
  119. font-family:"Calibri","sans-serif";}
  120. @page WordSection1
  121. {size:612.0pt 792.0pt;
  122. margin:2.0cm 42.5pt 2.0cm 3.0cm;}
  123. div.WordSection1
  124. {page:WordSection1;}
  125. --></style><!--[if gte mso 9]><xml>
  126. <o:shapedefaults v:ext=3D"edit" spidmax=3D"1026" />
  127. </xml><![endif]--><!--[if gte mso 9]><xml>
  128. <o:shapelayout v:ext=3D"edit">
  129. <o:idmap v:ext=3D"edit" data=3D"1" />
  130. </o:shapelayout></xml><![endif]-->
  131. </head>
  132. <body link=3D"#0563C1" vlink=3D"#954F72">
  133. <div class=3D"WordSection1">
  134. <p class=3D"MsoNormal"><span style=3D"font-size:11.1pt;font-family:Verdana">Hi =
  135. </p>
  136. <p class=3D"MsoNormal"><span style=3D"font-size:11.1pt;font-family:Verdana"><o:=
  137. p>&nbsp;</o:p></span></p>
  138. <p class=3D"MsoNormal"><span style=3D"font-size:11.1pt;font-family:Verdana"><o:=
  139. p>&nbsp;</o:p></span></p>
  140. <p class=3D"MsoNormal"><span style=3D"font-size:11.1pt;font-family:Verdana"><a =
  141. href=3D"https://goo.gl/51xWFU">https://goo.gl/51xWFU</a><o:p></o:p></span></p>
  142. <p class=3D"MsoNormal"><span style=3D"font-size:11.1pt;font-family:Verdana"><o:=
  143. p>&nbsp;</o:p></span></p>
  144. <p class=3D"MsoNormal"><span style=3D"font-size:11.1pt;font-family:Verdana"><o:=
  145. p>&nbsp;</o:p></span></p>
  146. Tara Foster<o:p></o:p></span>
  147. <p></p>
  148. <p class=3D"MsoNormal"><span style=3D"font-size:11.1pt;font-family:Verdana"><o:=
  149. p></o:p></span></p>
  150. </div>
  151. </body>
  152. </html>
  153.  
  154.  
  155. --B_3604898230_281882393--
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!