API tools faq
paste
Advertisement
wavellan

201807245_PHISHING_SCAM_1

wavellan
Jul 25th, 2018
187
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 6.41 KB | None | 0 0
raw download clone embed print report
  1. Received: from MBX05D-ORD1.mex08.mlsrvr.com (172.29.9.24) by
  2. MBX05C-ORD1.mex08.mlsrvr.com (172.29.9.23) with Microsoft SMTP Server (TLS)
  3. id 15.0.1367.3 via Mailbox Transport; Wed, 25 Jul 2018 04:11:02 -0500
  4. Received: from MBX11D-ORD1.mex08.mlsrvr.com (172.29.8.36) by
  5. MBX05D-ORD1.mex08.mlsrvr.com (172.29.9.24) with Microsoft SMTP Server (TLS)
  6. id 15.0.1367.3; Wed, 25 Jul 2018 04:11:02 -0500
  7. Received: from gate.forward.smtp.iad3b.emailsrvr.com (146.20.86.8) by
  8. MBX11D-ORD1.mex08.mlsrvr.com (172.29.8.36) with Microsoft SMTP Server (TLS)
  9. id 15.0.1367.3 via Frontend Transport; Wed, 25 Jul 2018 04:11:02 -0500
  10. Return-Path: <[email protected]>
  11. X-Spam-Threshold: 95
  12. X-Spam-Score: 0
  13. X-Spam-Flag: NO
  14. X-Virus-Scanned: OK
  15. X-Orig-To: REMOVED
  16. X-Originating-Ip: [196.47.172.198]
  17. Authentication-Results: smtp24.gate.iad3b.rsapps.net; iprev=pass policy.iprev="196.47.172.198"; spf=neutral smtp.mailfrom="[email protected]" smtp.helo="mail.mci-ci.com"; dkim=none (message not signed) header.d=none; dmarc=none (p=nil; dis=none) header.from=mci-ci.com
  18. X-Suspicious-Flag: NO
  19. X-Classification-ID: a5fc650c-8fea-11e8-9c5c-525400892b35-1-1
  20. Received: from [196.47.172.198] ([196.47.172.198:56917] helo=mail.mci-ci.com)
  21. by smtp24.gate.iad3b.rsapps.net (envelope-from <[email protected]>)
  22. (ecelerity 4.2.1.56364 r(Core:4.2.1.14)) with ESMTP
  23. id EF/05-16590-4AE385B5; Wed, 25 Jul 2018 05:11:01 -0400
  24. Received: from localhost (localhost [127.0.0.1])
  25. by mail.mci-ci.com (Postfix) with ESMTP id 15A7CB76536
  26. for <REMOVED>; Wed, 25 Jul 2018 09:06:25 +0000 (GMT)
  27. Received: from mail.mci-ci.com ([127.0.0.1])
  28. by localhost (mail.mci-ci.com [127.0.0.1]) (amavisd-new, port 10032)
  29. with ESMTP id z3SH2A7I92_5 for <REMOVED>;
  30. Wed, 25 Jul 2018 09:06:24 +0000 (GMT)
  31. Received: from localhost (localhost [127.0.0.1])
  32. by mail.mci-ci.com (Postfix) with ESMTP id 8BC69B76532
  33. for <REMOVED>; Wed, 25 Jul 2018 09:06:24 +0000 (GMT)
  34. Received: from mail.mci-ci.com ([127.0.0.1])
  35. by localhost (mail.mci-ci.com [127.0.0.1]) (amavisd-new, port 10026)
  36. with ESMTP id XLReaxGLSOCC for <REMOVED>;
  37. Wed, 25 Jul 2018 09:06:24 +0000 (GMT)
  38. Received: from mail.mci-ci.com (unknown [59.52.27.130])
  39. by mail.mci-ci.com (Postfix) with ESMTPSA id 835F4B76537
  40. for <REMOVED>; Wed, 25 Jul 2018 09:06:22 +0000 (GMT)
  41. From: REMOVED <[email protected]>
  42. To: REMOVED
  43. Subject: Hello REMOVED
  44. Date: Wed, 25 Jul 2018 09:12:10 +0000
  45. Message-ID: <[email protected]>
  46. MIME-Version: 1.0
  47. X-Mailer: Microsoft Outlook 15.0
  48. Thread-Index: ZDhuaGMkLTJ6bmJeQHZ3YmcpK2IodQ==
  49. Content-Language: en-us
  50. X-MS-Exchange-Organization-Network-Message-Id: ce3aaab0-e3fb-4975-bb54-08d5f20e8b50
  51. X-MS-Exchange-Organization-AVStamp-Mailbox: SMEXzs^g;1440100;0;This mail has
  52. been scanned by Trend Micro ScanMail for Microsoft Exchange;
  53. X-MS-Exchange-Organization-SCL: 0
  54. X-MS-Exchange-Organization-AuthSource: MBX11D-ORD1.mex08.mlsrvr.com
  55. X-MS-Exchange-Organization-AuthAs: Anonymous
  56. Content-type: multipart/alternative;
  57. boundary="B_3615361346_954475692"
  58.  
  59. > This message is in MIME format. Since your mail reader does not understand
  60. this format, some or all of this message may not be legible.
  61.  
  62. --B_3615361346_954475692
  63. Content-type: text/plain;
  64. charset="UTF-8"
  65. Content-transfer-encoding: 7bit
  66.  
  67. salutations REMOVED
  68.  
  69.  
  70.  
  71.  
  72.  
  73. https://goo.gl/zpTMuY
  74.  
  75.  
  76.  
  77.  
  78.  
  79.  
  80.  
  81.  
  82.  
  83.  
  84.  
  85. REMOVED
  86.  
  87.  
  88. --B_3615361346_954475692
  89. Content-type: text/html;
  90. charset="UTF-8"
  91. Content-transfer-encoding: quoted-printable
  92.  
  93. <html xmlns:v=3D"urn:schemas-microsoft-com:vml" xmlns:o=3D"urn:schemas-microsof=
  94. t-com:office:office" xmlns:w=3D"urn:schemas-microsoft-com:office:word" xmlns:m=
  95. =3D"http://schemas.microsoft.com/office/2004/12/omml" xmlns=3D"http://www.w3.org=
  96. /TR/REC-html40">
  97. <head>
  98. <meta http-equiv=3D"Content-Type" content=3D"text/html; charset=3Dutf-8">
  99. <meta name=3D"Generator" content=3D"Microsoft Word 15 (filtered medium)">
  100. <style><!--
  101. /* Font Definitions */
  102. @font-face
  103. {font-family:"Cambria Math";
  104. panose-1:2 4 5 3 5 4 6 3 2 4;}
  105. @font-face
  106. {font-family:Calibri;
  107. panose-1:2 15 5 2 2 2 4 3 2 4;}
  108. /* Style Definitions */
  109. p.MsoNormal, li.MsoNormal, div.MsoNormal
  110. {margin:0cm;
  111. margin-bottom:.0001pt;
  112. font-size:11.0pt;
  113. font-family:"Calibri","sans-serif";}
  114. a:link, span.MsoHyperlink
  115. {mso-style-priority:99;
  116. color:#0563C1;
  117. text-decoration:underline;}
  118. a:visited, span.MsoHyperlinkFollowed
  119. {mso-style-priority:99;
  120. color:#954F72;
  121. text-decoration:underline;}
  122. span.EmailStyle17
  123. {mso-style-type:personal-compose;
  124. font-family:"Calibri","sans-serif";
  125. color:windowtext;}
  126. .MsoChpDefault
  127. {mso-style-type:export-only;
  128. font-family:"Calibri","sans-serif";}
  129. @page WordSection1
  130. {size:612.0pt 792.0pt;
  131. margin:2.0cm 42.5pt 2.0cm 3.0cm;}
  132. div.WordSection1
  133. {page:WordSection1;}
  134. --></style><!--[if gte mso 9]><xml>
  135. <o:shapedefaults v:ext=3D"edit" spidmax=3D"1026" />
  136. </xml><![endif]--><!--[if gte mso 9]><xml>
  137. <o:shapelayout v:ext=3D"edit">
  138. <o:idmap v:ext=3D"edit" data=3D"1" />
  139. </o:shapelayout></xml><![endif]-->
  140. </head>
  141. <body lang=3D"EN-US" link=3D"#0563C1" vlink=3D"#954F72">
  142. <div class=3D"WordSection1">
  143. <p class=3D"MsoNormal"><span lang=3D"EN-US" style=3D"font-size:12.3pt;font-family=
  144. :sans-serif">salutations REMOVED<o:p></o:p></span></p>
  145. <p class=3D"MsoNormal"><span lang=3D"EN-US" style=3D"font-size:12.3pt;font-family=
  146. :sans-serif"><o:p>&nbsp;</o:p></span></p>
  147. <p class=3D"MsoNormal"><span lang=3D"EN-US" style=3D"font-size:12.3pt;font-family=
  148. :sans-serif"><o:p>&nbsp;</o:p></span></p>
  149. <p class=3D"MsoNormal"><span lang=3D"EN-US" style=3D"font-size:12.3pt;font-family=
  150. :sans-serif"><a href=3D"https://goo.gl/zpTMuY">https://goo.gl/zpTMuY</a><o:p><=
  151. /o:p></span></p>
  152. <p class=3D"MsoNormal"><span lang=3D"EN-US" style=3D"font-size:12.3pt;font-family=
  153. :sans-serif"><o:p>&nbsp;</o:p></span></p>
  154. <p class=3D"MsoNormal"><span lang=3D"EN-US" style=3D"font-size:12.3pt;font-family=
  155. :sans-serif"><o:p>&nbsp;</o:p></span></p>
  156. <p class=3D"MsoNormal"><span lang=3D"EN-US" style=3D"font-size:12.3pt;font-family=
  157. :sans-serif"><o:p>&nbsp;</o:p></span></p>
  158. <p class=3D"MsoNormal"><span lang=3D"EN-US" style=3D"font-size:12.3pt;font-family=
  159. :sans-serif"><o:p>&nbsp;</o:p></span></p>
  160. <p class=3D"MsoNormal"><span lang=3D"EN-US" style=3D"font-size:12.3pt;font-family=
  161. :sans-serif"><o:p>&nbsp;</o:p></span></p>
  162. <p class=3D"MsoNormal"><span lang=3D"EN-US" style=3D"font-size:12.3pt;font-family=
  163. :sans-serif">REMOVED<o:p></o:p></span></p>
  164. </div>
  165. </body>
  166. </html>
  167.  
  168.  
  169. --B_3615361346_954475692--
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!