Malicious mail met afzender Dommel e-adres.
Geplaatst: 08 sep 2016, 11:33
'k Ontvang plots geregeld een mail van dommel met "gevaarlijke inhoud".
Kwestie om hier zoveel als mogelijk mensen op de hoogte te stellen.
Het afzender ip-nummer is 117.198.155.129 en komt ergens vanuit India denk ik (Jumda/New Bhagwati...)
De headers:
------------------------------
Return-Path: <[email protected]>
Delivered-To: [email protected]
Received: (qmail 26017 invoked from network); 6 Sep 2016 19:14:32 +0200
Received: from louis.schedom-europe.net (193.109.184.93)
by els.schedom-europe.net with SMTP; 6 Sep 2016 19:14:32 +0200
Received: (qmail 12880 invoked by uid 507); 6 Sep 2016 19:14:32 +0200
X-Spam-Checker-Version: SpamAssassin 3.2.5 (2008-06-10) on
louis.schedom-europe.net
X-Spam-Level: **************
X-Spam-Status: No, score=14.6 required=15.0 tests=BAYES_95,FH_DATE_PAST_20XX,
RCVD_IN_PBL,RCVD_IN_SORBS_DUL,RCVD_IN_XBL,RDNS_NONE autolearn=disabled
version=3.2.5
Received: from unknown (HELO ?117.198.155.129?) (117.198.155.129)
by louis.schedom-europe.net with SMTP; 6 Sep 2016 19:14:24 +0200
From: <[email protected]>
Subject: Message from "CUKPR0658668"
To: <[email protected]>
Date: Tue, 06 Sep 2016 22:44:21 +0530
Message-ID: <[email protected]>
MIME-Version: 1.0
Content-Type: multipart/mixed;
boundary="_d4cb360a6e-34bb4b1-fb58f1-0685a-c0878ed3e16cc57da4_"
Return-Path: [email protected]
--_d4cb360a6e-34bb4b1-fb58f1-0685a-c0878ed3e16cc57da4_
Content-Type: text/plain; charset="US-ASCII"
Content-Transfer-Encoding: 7bit
This E-mail was sent from "CUKPR0658668" (Aficio MP C305).
Scan Date: Tue, 06 Sep 2016 22:44:21 +0530
Queries to: <[email protected]
--_d4cb360a6e-34bb4b1-fb58f1-0685a-c0878ed3e16cc57da4_
Content-Type: application/zip; name="20160906224421.zip"
Content-Transfer-Encoding: base64
Content-Disposition: attachment; filename="20160906224421.zip"
-----------------------------
Mvg
Kwestie om hier zoveel als mogelijk mensen op de hoogte te stellen.
Het afzender ip-nummer is 117.198.155.129 en komt ergens vanuit India denk ik (Jumda/New Bhagwati...)
De headers:
------------------------------
Return-Path: <[email protected]>
Delivered-To: [email protected]
Received: (qmail 26017 invoked from network); 6 Sep 2016 19:14:32 +0200
Received: from louis.schedom-europe.net (193.109.184.93)
by els.schedom-europe.net with SMTP; 6 Sep 2016 19:14:32 +0200
Received: (qmail 12880 invoked by uid 507); 6 Sep 2016 19:14:32 +0200
X-Spam-Checker-Version: SpamAssassin 3.2.5 (2008-06-10) on
louis.schedom-europe.net
X-Spam-Level: **************
X-Spam-Status: No, score=14.6 required=15.0 tests=BAYES_95,FH_DATE_PAST_20XX,
RCVD_IN_PBL,RCVD_IN_SORBS_DUL,RCVD_IN_XBL,RDNS_NONE autolearn=disabled
version=3.2.5
Received: from unknown (HELO ?117.198.155.129?) (117.198.155.129)
by louis.schedom-europe.net with SMTP; 6 Sep 2016 19:14:24 +0200
From: <[email protected]>
Subject: Message from "CUKPR0658668"
To: <[email protected]>
Date: Tue, 06 Sep 2016 22:44:21 +0530
Message-ID: <[email protected]>
MIME-Version: 1.0
Content-Type: multipart/mixed;
boundary="_d4cb360a6e-34bb4b1-fb58f1-0685a-c0878ed3e16cc57da4_"
Return-Path: [email protected]
--_d4cb360a6e-34bb4b1-fb58f1-0685a-c0878ed3e16cc57da4_
Content-Type: text/plain; charset="US-ASCII"
Content-Transfer-Encoding: 7bit
This E-mail was sent from "CUKPR0658668" (Aficio MP C305).
Scan Date: Tue, 06 Sep 2016 22:44:21 +0530
Queries to: <[email protected]
--_d4cb360a6e-34bb4b1-fb58f1-0685a-c0878ed3e16cc57da4_
Content-Type: application/zip; name="20160906224421.zip"
Content-Transfer-Encoding: base64
Content-Disposition: attachment; filename="20160906224421.zip"
-----------------------------
Mvg