Google

World Wide Web anti-scam

Seitenindex umschalten Seiten: 1 Thema versenden
Normales Thema A1 Telekom <no_reply@a1.net> (Gelesen: 1.229 mal)
 
x5dr
Themenstarter Themenstarter
Forum Administrator
*****
Offline


Die spinnen, die Scammer!

Beiträge: 5.000
Standort: Oberweis
Mitglied seit: 05. Februar 2012
Geschlecht: männlich
A1 Telekom <no_reply@a1.net>
04. Mai 2016 um 16:53
 
Wahrscheinlich etwas für unsere Abteilung "Viren, Trojaner, Spyware". Der Text kam als Bild. Was als Text kam war: "Sehr geehrte/r Damen und Herren," und das grüne Feld mit "Weiter zum Update". Das ist der Link (www).a1.net.appsecure57695.cc/a1-mobilfunk/
Jedoch bekam ich da nur folgende Fehlermeldung:


Zitat:
Forbidden

You don't have permission to access /a1-mobilfunk/ on this server.

Additionally, a 500 Internal Server Error error was encountered while trying to use an ErrorDocument to handle the request.
Apache/2.4.12 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 mod_fcgid/2.3.9 Server at www.a1.net.appsecure57695.cc Port 80


Spoiler:
Return-path: <no_reply@a1.net>
Envelope-to: xxx@xxx.at
Delivery-date: Wed, 04 May 2016 02:33:47 +0200
Received: from [81.19.149.118] (helo=mx08lb.world4you.com)
     by mail28.world4you.com with esmtp (Exim 4.77)
     (envelope-from <no_reply@a1.net>)
     id 1axkl9-0000sg-HU
     Wed, 04 May 2016 02:33:47 +0200
Received: from [206.80.254.78] (helo=mailer2.acanac.net)
     by mx08lb.world4you.com with esmtps (TLSv1:AES256-SHA:256)
     (Exim 4.77)
     (envelope-from <no_reply@a1.net>)
     id 1axkl8-0006Bb-On
     Wed, 04 May 2016 02:33:47 +0200
Received: from [139.59.143.12] (port=54846 helo=localhost)
     by mailer2.acanac.net with esmtpa (Exim 4.80)
     (envelope-from <no_reply@a1.net>)
     id 1axkTv-0005J0-Hx
     Tue, 03 May 2016 20:15:59 -0400
From: "A1 Telekom Austria" <no_reply@a1.net>
To:
Content-Type: multipart/alternative; boundary="7rh7Xw9ZSLPtHsCe=_tnmL79LfkV4oGwX1"
MIME-Version: 1.0
Date: Wed, 4 May 2016 01:16:00 +0100
Priority: urgent
X-Priority: 1
Importance: high
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - mailer2.acanac.net
X-AntiAbuse: Original Domain - xxx.at
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - a1.net
X-Source: 
X-Source-Args: 
X-Source-Dir: 
X-SA-Exim-Connect-IP: 206.80.254.78
X-SA-Exim-Mail-From: no_reply@a1.net
X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on mx08lb.world4you.com
X-Spam-Flag: YES
X-Spam-Level: *****
X-Spam-Status: Yes, score=5.8 required=5.0 tests=DCC_CHECK,GREYLIST_ISWHITE,
     HTML_MESSAGE,MISSING_MID,SPF_HELO_PASS,SPF_SOFTFAIL,URIBL_BLACK
     autolearn=disabled version=3.3.2
X-Spam-Report: 
     *  1.7 URIBL_BLACK Contains an URL listed in the URIBL blacklist
     *      [URIs: appsecure57695.cc]
     * -0.0 SPF_HELO_PASS SPF: HELO matches SPF record
     *  2.5 SPF_SOFTFAIL SPF: sender does not match SPF record (softfail)
     *  0.0 HTML_MESSAGE BODY: HTML included in message
     *  3.0 DCC_CHECK Detected as bulk mail by DCC (dcc-servers.net)
     *  0.1 MISSING_MID Missing Message-Id: header
     * -1.5 GREYLIST_ISWHITE The incoming server has been whitelisted for this
     *      recipient and sender
Subject: [SPAM] Wichtige Kundeninformation
X-Spam-Prev-Subject: Wichtige Kundeninformation
X-SA-Exim-Version: 4.2.1 (built Sat, 28 Apr 2007 14:02:57 +0200)
X-SA-Exim-Scanned: Yes (on mx08lb.world4you.com)


Mail über Deutschland!

Code
Alles auswählen
IP:	139.59.143.12
Decimal:	2335936268
Hostname:	139.59.143.12
ASN:	201229
ISP:	Digital Ocean
Organization:	Digital Ocean
Services:	None detected
Assignment:	Static IP
Continent:	Europe
Country:	Germany
State/Region:	Hesse
City:	Frankfurt am Main 



Zitat:
Received: from [139.59.143.12] (port=54846 helo=localhost) by mailer2.acanac.net with esmtpa; Tue, 03 May 2016 20:15:59 -0400
Date: Wed, 4 May 2016 01:16:00 +0100
From: "A1 Telekom Austria" <no_reply@a1.net>


Mailserver steht in Kanada!

Code
Alles auswählen
IP:	206.80.254.78
Decimal:	3461414478
Hostname:	mailer2.acanac.net
ASN:	11814
ISP:	Distributel Communications
Organization:	Distributel Communications
Services:	Likely mail server
Type:	Broadband
Assignment:	Static IP
Continent:	North America
Country:	Canada
State/Region:	Ontario
City:	Toronto 

« Zuletzt geändert: 04. Mai 2016 um 17:09 von x5dr »  

A1_003.jpg ( 133 KB | Downloads )
A1_003.jpg
Zum Seitenanfang
 
IP gespeichert
 
Seitenindex umschalten Seiten: 1
Thema versenden
Link zu diesem Thema