[email] [malware] (60.242.43.46) Fedex tracking number 5091464079
David Ritz
Hash: SHA1
[ SpamCop V2 ]
This message is brief for your comfort. Please use links below for details.
User-targeted report, see notes, if any.
http://www.spamcop.net/w3m?i=z3400006313za868f43a7eecc43b93c26a790979f880z
[ Additional comments from recipient ]
> <http://www.virustotal.com/analisis/3b90d06e6758cae3679f6cdf843ab754>
> File ZD76128824.zip received on 08.20.2008 22:58:43 (CET)
> Antivirus Version Last Update Result
> AntiVir - - TR/Spy.ZBot.DFO
> Authentium - - W32/Downldr2.DIHS
> BitDefender - - Trojan.Spy.Wsnpoem.GT
> DrWeb - - Trojan.Proxy.3747
> Ikarus - - Win32.Outbreak
> Kaspersky - - Trojan-Spy.Win32.Zbot.edw
> NOD32v2 - - Win32/Spy.Agent.PZ
> Sophos - - Mal/EncPk-CZ
> Webwasher-Gateway - - Trojan.Spy.ZBot.DFO
> Additional information
> MD5: e4c6364b2ac52f88da848bf5224b3d3c
> SHA1: ae1fdd20d66e7c34cad99073e1c8d93bd2a13f65
> SHA256: 73024594d359892c2747ee278441179874df657f288b6119ae5e0696776eb9e4
> SHA512: d0e6d6c4567c11e6b4d40e9aa9e4832dddbafb5c08bd183f23ff7419ab69bee6
> f0389df63e59dae852d9cfbe49f73c102bcf68a00754ad39034bad39e5ab2777
>
[ Offending message ]
Return-Path: <ajqyo...@botcorp.com>
X-Original-To: x
Delivered-To: x.mako.ath.cx
Received: from glimmer.mako.ath.cx (localhost [127.0.0.1])
by glimmer.mako.ath.cx (Postfix) with ESMTP id 2414916973DB
for <x>; Wed, 20 Aug 2008 19:47:20 -0500 (CDT)
Received: from pop.mindspring.com
by glimmer.mako.ath.cx with POP3 (fetchmail-6.3.8)
for <x> (single-drop); Wed, 20 Aug 2008 19:47:20 -0500 (CDT)
Received: from noehlo.host ([127.0.0.1])
by james.mail.atl.earthlink.net (EarthLink SMTP Server) with SMTP id 1kvYk26S13Nl3r10; Wed, 20 Aug 2008 20:46:42 -0400 (EDT)
Received: from mail.versalux.com.au ([60.242.43.46])
by james.mail.atl.earthlink.net (EarthLink SMTP Server) with ESMTP id 1kvYfKo63Nl3r10; Wed, 20 Aug 2008 20:42:19 -0400 (EDT)
Received: from [60.242.43.46] by mail.botcorp.com; Thu, 21 Aug 2008 10:42:25 +1000
Message-ID: <01c9__________________f23c@ajqyosokpv>
From: "Buddy Mcbride" <ajqyo...@botcorp.com>
To: <x>
Subject: Fedex tracking number 5091464079
Date: Thu, 21 Aug 2008 10:42:25 +1000
MIME-Version: 1.0
Content-Type: multipart/mixed;
boundary="----=_NextPart_000_0006_01C9037A.9952BE80"
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2800.1478
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1478
X-ELNK-AV: 0
X-ELNK-Info: sbv=0; sbrc=.0; sbf=0b; sbw=000;
- ------=_NextPart_000_0006_01C9037A.9952BE80
Content-Type: text/plain;
format=flowed;
charset="Windows-1252";
reply-type=original
Content-Transfer-Encoding: 7bit
Unfortunately we were not able to deliver postal package you sent on August the 1st in time
because the recipient?s address is not correct.
Please print out the invoice copy attached and collect the package at our office
Your FEDEX.com
- ------=_NextPart_000_0006_01C9037A.9952BE80
Content-Type: Text/Plain; charset=US-ASCII
X-Content-Type: application/zip;
name="ZD76128824.zip"
X-Content-Transfer-Encoding: base64
X-Content-Disposition: attachment;
filename="ZD76128824.zip"
[ The following attachment was DELETED when this message was saved: ]
[ A Application/ZIP (Name="ZD76128824.zip") segment of about 58,716 by ]
- ------=_NextPart_000_0006_01C9037A.9952BE80--
- --
David Ritz <dritz+...@mindspring.com>
Be kind to animals; kiss a shark.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (Darwin)
Comment: Public Keys: <http://dritz.home.mindspring.com/keys.txt>
iD8DBQFIrMCPUrwpmRoS3usRAoq2AJwMbuguRDxMZxdFtQb8f8Z5EO2EEQCfV9XI
vC55PGiubj0rFAQ3KidEgSA=
=h1VQ
-----END PGP SIGNATURE-----
--
All postings to news.admin.net-abuse.sightings are unconfirmed and unverified
unless stated otherwise by the moderators. All opinions expressed above are
considered the opinions of the original poster, not the moderators or their
respective employers. For a copy of the guidelines to this group, see:
http://www.killfile.org/~tskirvin/nana/