API tools faq
paste
Advertisement
wavellan

20181103_PHISHING_SCAM_1

wavellan
Nov 3rd, 2018
1,842
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 6.38 KB | None | 0 0
raw download clone embed print report
  1. Received: from MBX05C-ORD1.mex08.mlsrvr.com (172.29.9.23) by
  2. MBX05C-ORD1.mex08.mlsrvr.com (172.29.9.23) with Microsoft SMTP Server (TLS)
  3. id 15.0.1367.3 via Mailbox Transport; Sat, 3 Nov 2018 14:17:07 -0500
  4. Received: from MBX02C-ORD1.mex08.mlsrvr.com (172.29.9.14) by
  5. MBX05C-ORD1.mex08.mlsrvr.com (172.29.9.23) with Microsoft SMTP Server (TLS)
  6. id 15.0.1367.3; Sat, 3 Nov 2018 14:17:07 -0500
  7. Received: from gate.forward.smtp.iad3b.emailsrvr.com (146.20.86.8) by
  8. MBX02C-ORD1.mex08.mlsrvr.com (172.29.9.14) with Microsoft SMTP Server (TLS)
  9. id 15.0.1367.3 via Frontend Transport; Sat, 3 Nov 2018 14:17:07 -0500
  10. Return-Path: <m.schnura@freenet.de>
  11. X-Spam-Threshold: 95
  12. X-Spam-Score: 0
  13. X-Spam-Flag: NO
  14. Authentication-Results: smtp15.gate.iad3b.rsapps.net x-tls.subject="/C=DE/O=freenet.de GmbH/ST=Hamburg/L=Hamburg/CN=*.freenet.de"; auth=pass (cipher=DHE-RSA-AES128-GCM-SHA256)
  15. X-Virus-Scanned: OK
  16. X-Orig-To: REMOVED
  17. X-Originating-Ip: [195.4.92.93]
  18. Authentication-Results: smtp15.gate.iad3b.rsapps.net; iprev=pass policy.iprev="195.4.92.93"; spf=pass smtp.mailfrom="m.schnura@freenet.de" smtp.helo="mout3.freenet.de"; dkim=none (message not signed) header.d=none; dmarc=none (p=nil; dis=none) header.from=freenet.de
  19. X-Suspicious-Flag: NO
  20. X-Classification-ID: 0d4d92ce-df9d-11e8-b1b6-5254003d6d3a-1-1
  21. Received: from [195.4.92.93] ([195.4.92.93:36616] helo=mout3.freenet.de)
  22. by smtp15.gate.iad3b.rsapps.net (envelope-from <m.schnura@freenet.de>)
  23. (ecelerity 4.2.38.62370 r(:)) with ESMTPS (cipher=DHE-RSA-AES128-GCM-SHA256
  24. subject="/C=DE/O=freenet.de GmbH/ST=Hamburg/L=Hamburg/CN=*.freenet.de")
  25. id E3/94-08574-234FDDB5; Sat, 03 Nov 2018 15:17:07 -0400
  26. Received: from [195.4.92.164] (helo=mjail1.freenet.de)
  27. by mout3.freenet.de with esmtpa (ID m.schnura@freenet.de) (port 25) (Exim 4.90_1 #2)
  28. id 1gJ1Pt-0007Tp-RG
  29. for ; Sat, 03 Nov 2018 20:17:05 +0100
  30. Received: from [::1] (port=35984 helo=mjail1.freenet.de)
  31. by mjail1.freenet.de with esmtpa (ID m.schnura@freenet.de) (Exim 4.90_1 #2)
  32. id 1gJ1Pt-0000JU-QT
  33. for REMOVED; Sat, 03 Nov 2018 20:17:05 +0100
  34. Received: from sub1.freenet.de ([195.4.92.120]:42884)
  35. by mjail1.freenet.de with esmtpa (ID m.schnura@freenet.de) (Exim 4.90_1 #2)
  36. id 1gJ1Ni-0002uJ-9w
  37. for REMOVED; Sat, 03 Nov 2018 20:14:50 +0100
  38. Received: from [5.153.158.22] (port=57318 helo=mx.freenet.de)
  39. by sub1.freenet.de with esmtpsa (ID m.schnura@freenet.de) (TLSv1:ECDHE-RSA-AES128-SHA:128) (port 587) (Exim 4.90_1 #2)
  40. id 1gJ1Ni-0006Uf-0o
  41. for REMOVED; Sat, 03 Nov 2018 20:14:50 +0100
  42. From: Ryan Fiaschetti <m.schnura@freenet.de>
  43. To: REMOVED
  44. Reply-To: Ryan Fiaschetti <fiaschettirv@yahoo.com>
  45. Subject:
  46. Date: Sat, 3 Nov 2018 15:14:42 -0400
  47. Message-ID: <918096svqxxx$7pb3n46y$70tpkfd7$@freenet.de>
  48. MIME-Version: 1.0
  49. X-Mailer: Microsoft Outlook 16.0
  50. Thread-Index: OSMxMS16M0BnODcucyluKjUhdzgxIw==
  51. Content-Language: en-us
  52. X-Originated-At: 5.153.158.22!57318
  53. X-MS-Exchange-Organization-Network-Message-Id: 89747c4f-c5c5-4382-d864-08d641c0f22f
  54. X-MS-Exchange-Organization-AVStamp-Mailbox: SMEXzs^g;1460300;0;This mail has
  55. been scanned by Trend Micro ScanMail for Microsoft Exchange;
  56. X-MS-Exchange-Organization-SCL: 0
  57. X-MS-Exchange-Organization-AuthSource: MBX02C-ORD1.mex08.mlsrvr.com
  58. X-MS-Exchange-Organization-AuthAs: Anonymous
  59. Content-type: multipart/alternative;
  60. boundary="B_3624092961_1321566020"
  61.  
  62. > This message is in MIME format. Since your mail reader does not understand
  63. this format, some or all of this message may not be legible.
  64.  
  65. --B_3624092961_1321566020
  66. Content-type: text/plain;
  67. charset="UTF-8"
  68. Content-transfer-encoding: 7bit
  69.  
  70. REMOVED
  71.  
  72.  
  73.  
  74.  
  75.  
  76. https://goo.gl/JTzSaR
  77.  
  78.  
  79.  
  80.  
  81.  
  82.  
  83.  
  84. Ryan
  85.  
  86.  
  87.  
  88.  
  89. --B_3624092961_1321566020
  90. Content-type: text/html;
  91. charset="UTF-8"
  92. Content-transfer-encoding: quoted-printable
  93.  
  94. <html xmlns:v=3D"urn:schemas-microsoft-com:vml" xmlns:o=3D"urn:schemas-microsof=
  95. t-com:office:office" xmlns:w=3D"urn:schemas-microsoft-com:office:word" xmlns:m=
  96. =3D"http://schemas.microsoft.com/office/2004/12/omml" xmlns=3D"http://www.w3.org=
  97. /TR/REC-html40">
  98. <head>
  99. <meta http-equiv=3D"Content-Type" content=3D"text/html; charset=3Dutf-8">
  100. <meta name=3D"Generator" content=3D"Microsoft Word 15 (filtered medium)">
  101. <style><!--
  102. /* Font Definitions */
  103. @font-face
  104. {font-family:"Cambria Math";
  105. panose-1:2 4 5 3 5 4 6 3 2 4;}
  106. @font-face
  107. {font-family:Calibri;
  108. panose-1:2 15 5 2 2 2 4 3 2 4;}
  109. /* Style Definitions */
  110. p.MsoNormal, li.MsoNormal, div.MsoNormal
  111. {margin:0cm;
  112. margin-bottom:.0001pt;
  113. font-size:11.0pt;
  114. font-family:"Calibri","sans-serif";}
  115. a:link, span.MsoHyperlink
  116. {mso-style-priority:99;
  117. color:#0563C1;
  118. text-decoration:underline;}
  119. a:visited, span.MsoHyperlinkFollowed
  120. {mso-style-priority:99;
  121. color:#954F72;
  122. text-decoration:underline;}
  123. span.EmailStyle17
  124. {mso-style-type:personal-compose;
  125. font-family:"Calibri","sans-serif";
  126. color:windowtext;}
  127. .MsoChpDefault
  128. {mso-style-type:export-only;
  129. font-family:"Calibri","sans-serif";}
  130. @page WordSection1
  131. {size:612.0pt 792.0pt;
  132. margin:2.0cm 42.5pt 2.0cm 3.0cm;}
  133. div.WordSection1
  134. {page:WordSection1;}
  135. --></style><!--[if gte mso 9]><xml>
  136. <o:shapedefaults v:ext=3D"edit" spidmax=3D"1026" />
  137. </xml><![endif]--><!--[if gte mso 9]><xml>
  138. <o:shapelayout v:ext=3D"edit">
  139. <o:idmap v:ext=3D"edit" data=3D"1" />
  140. </o:shapelayout></xml><![endif]-->
  141. </head>
  142. <body link=3D"#0563C1" vlink=3D"#954F72">
  143. <div class=3D"WordSection1">
  144. <p class=3D"MsoNormal"><span style=3D"font-size:10.1pt;font-family:Verdana">Bil=
  145. l<o:p></o:p></span></p>
  146. <p class=3D"MsoNormal"><span style=3D"font-size:10.1pt;font-family:Verdana"><o:=
  147. p>&nbsp;</o:p></span></p>
  148. <p class=3D"MsoNormal"><span style=3D"font-size:10.1pt;font-family:Verdana"><o:=
  149. p>&nbsp;</o:p></span></p>
  150. <p class=3D"MsoNormal"><span style=3D"font-size:10.1pt;font-family:Verdana"><a =
  151. href=3D"https://goo.gl/JTzSaR">https://goo.gl/JTzSaR</a><o:p></o:p></span></p>
  152. <p class=3D"MsoNormal"><span style=3D"font-size:10.1pt;font-family:Verdana"><o:=
  153. p>&nbsp;</o:p></span></p>
  154. <p class=3D"MsoNormal"><span style=3D"font-size:10.1pt;font-family:Verdana"><o:=
  155. p>&nbsp;</o:p></span></p>
  156. <p class=3D"MsoNormal"><span style=3D"font-size:10.1pt;font-family:Verdana"><o:=
  157. p>&nbsp;</o:p></span></p>
  158. <p class=3D"MsoNormal"><span style=3D"font-size:10.1pt;font-family:Verdana">Rya=
  159. n<o:p></o:p></span></p>
  160. <p class=3D"MsoNormal"><span style=3D"font-size:10.1pt;font-family:Verdana"><o:=
  161. p>&nbsp;</o:p></span></p>
  162. </div>
  163. </body>
  164. </html>
  165.  
  166.  
  167. --B_3624092961_1321566020--
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!