| Current File : /home/mak/mail/cur/1582730677.M727755P13287.cloud.berardocollection.com,S=15353,W=15705:2, |
Return-Path: <>
Delivered-To: mak@cloud.berardocollection.com
Received: from cloud.berardocollection.com
by cloud.berardocollection.com with LMTP
id 0LBEK7WNVl7nMwAAuY/3dA
(envelope-from <>)
for <mak@cloud.berardocollection.com>; Wed, 26 Feb 2020 15:24:37 +0000
Return-path: <>
Envelope-to: rgrs@mak.pt
Delivery-date: Wed, 26 Feb 2020 15:24:37 +0000
Received: from relay01.bancaifis.it ([85.18.22.50]:10660)
by cloud.berardocollection.com with esmtp (Exim 4.93)
id 1j6yXf-0003hx-Jc
for rgrs@mak.pt; Wed, 26 Feb 2020 15:24:37 +0000
MIME-Version: 1.0
From: <postmaster@bancaifis.it>
To: <rgrs@mak.pt>
Date: Wed, 26 Feb 2020 16:24:06 +0100
Content-Type: multipart/report; report-type=delivery-status;
boundary="d285ef6c-285c-4be7-93af-a681c96af137"
X-MS-Exchange-Message-Is-Ndr:
Content-Language: en
In-Reply-To: <003401d5ec8e$04e8980b$94ea9290$@mak.pt>
References: <003401d5ec8e$04e8980b$94ea9290$@mak.pt>
Thread-Index: Aces7uh2oes7uh2oes7uh2oes7uh2px/k8Gv
Subject: Undeliverable: Check the confidentiality of your information
(according to our security service, your account has been hacked).
Auto-Submitted: auto-replied
X-Spam-Status: No, score=
X-Spam-Score:
X-Spam-Bar:
X-Ham-Report:
X-Spam-Flag: NO
--d285ef6c-285c-4be7-93af-a681c96af137
Content-Type: multipart/alternative; differences=Content-Type;
boundary="8befb33e-1d80-4d04-bda8-1e47a8920725"
--8befb33e-1d80-4d04-bda8-1e47a8920725
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Delivery has failed to these recipients or groups:
sarah.pon@bancaifis.it<mailto:sarah.pon@bancaifis.it>
The email address you entered couldn't be found. Please check the recipient=
's email address and try to resend the message. If the problem continues, p=
lease contact your email admin.
Diagnostic information for administrators:
Generating server: SPWEXC01.intranet.ifis.local
sarah.pon@bancaifis.it
Remote Server returned '550 5.1.10 RESOLVER.ADR.RecipientNotFound; Recipien=
t not found by SMTP address lookup'
Original message headers:
Received: from SPWEXC01.intranet.ifis.local (192.168.0.62) by
SPWEXC01.intranet.ifis.local (192.168.0.62) with Microsoft SMTP Server
(version=3DTLS1_2, cipher=3DTLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384) id
15.1.1847.3; Wed, 26 Feb 2020 16:24:06 +0100
Received: from relay01.bancaifis.it (172.20.0.254) by
SPWEXC01.intranet.ifis.local (192.168.0.62) with Microsoft SMTP Server id
15.1.1847.3 via Frontend Transport; Wed, 26 Feb 2020 16:24:06 +0100
Received: from unknown (HELO [142.54.207.110]) ([142.54.207.110])
by relay01.bancaifis.it with ESMTP; 26 Feb 2020 16:24:05 +0100
From: <rgrs@mak.pt>
To: <sarah.pon@bancaifis.it>
Subject: Check the confidentiality of your information (according to our se=
curity service, your account has been hacked).
Date: Wed, 26 Feb 2020 04:15:03 -0600
Message-ID: <003401d5ec8e$04e8980b$94ea9290$@mak.pt>
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary=3D"----=3D_NextPart_000_0031_01D5EC8E.04E6B193"
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: Aces7uh2oes7uh2oes7uh2oes7uh2o=3D=3D
Content-Language: en
x-cr-hashedpuzzle: 2D4=3D 7uh2 oes7 uh2o es7u h2oe s7uh 2oes 7uh2 oes7 uh2o=
es7u h2oe s7uh 2oes 7uh2;1;oes7uh2oes7uh2oes7uh2oes7uh2oes7uh2oes7uh2oes7u=
h;Sosha1_v1;7;\{4EC95993-84DE-034E-C959-9384DE034EC9\};ZQB3AGUAZg7uh2oes7uh=
2oes7uh2oes7uh2oes7uh2oes7uh;26 Feb 2020 04:15:03 -0600;2oes7uh2oes7uh2o
x-cr-puzzleid: \{4EC95993-84DE-034E-C959-9384DE034EC9\}
Return-Path: rgrs@mak.pt
--8befb33e-1d80-4d04-bda8-1e47a8920725
Content-Type: text/html; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
<html>
<Head></head><body>
<p><b><font color=3D"#000066" size=3D"3" face=3D"Arial">Delivery has failed=
to these recipients or groups:</font></b></p>
<font color=3D"#000000" size=3D"2" face=3D"Tahoma"><p><a href=3D"mailto:sar=
ah.pon@bancaifis.it">sarah.pon@bancaifis.it</a><br>
</font>
<font color=3D"#000000" size=3D"3" face=3D"Arial">The email address you ent=
ered couldn't be found. Please check the recipient's email address and try =
to resend the message. If the problem continues, please contact your email =
admin.<br>
</font>
<font color=3D"#000000" size=3D"2" face=3D"Tahoma"><br>
</p>
</font>
<br><br><br><br><br><br>
<font color=3D"#808080" size=3D"2" face=3D"Tahoma"><p><b>Diagnostic informa=
tion for administrators:</b></p>
<p>Generating server: SPWEXC01.intranet.ifis.local<br>
</p>
<p>sarah.pon@bancaifis.it<br>
Remote Server returned '550 5.1.10 RESOLVER.ADR.RecipientNotFound; Recipie=
nt not found by SMTP address lookup'<br>
</p>
<p>Original message headers:</p>
<pre>Received: from SPWEXC01.intranet.ifis.local (192.168.0.62) by
SPWEXC01.intranet.ifis.local (192.168.0.62) with Microsoft SMTP Server
(version=3DTLS1_2, cipher=3DTLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384) id
15.1.1847.3; Wed, 26 Feb 2020 16:24:06 +0100
Received: from relay01.bancaifis.it (172.20.0.254) by
SPWEXC01.intranet.ifis.local (192.168.0.62) with Microsoft SMTP Server id
15.1.1847.3 via Frontend Transport; Wed, 26 Feb 2020 16:24:06 +0100
Received: from unknown (HELO [142.54.207.110]) ([142.54.207.110])
by relay01.bancaifis.it with ESMTP; 26 Feb 2020 16:24:05 +0100
From: <rgrs@mak.pt>
To: <sarah.pon@bancaifis.it>
Subject: Check the confidentiality of your information (according to our se=
curity service, your account has been hacked).
Date: Wed, 26 Feb 2020 04:15:03 -0600
Message-ID: <003401d5ec8e$04e8980b$94ea9290$@mak.pt>
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary=3D"----=3D_NextPart_000_0031_01D5EC8E.04E6B193"
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: Aces7uh2oes7uh2oes7uh2oes7uh2o=3D=3D
Content-Language: en
x-cr-hashedpuzzle: 2D4=3D 7uh2 oes7 uh2o es7u h2oe s7uh 2oes 7uh2 oes7 uh2o=
es7u h2oe s7uh 2oes 7uh2;1;oes7uh2oes7uh2oes7uh2oes7uh2oes7uh2oes7uh2oes7u=
h;Sosha1_v1;7;\{4EC95993-84DE-034E-C959-9384DE034EC9\};ZQB3AGUAZg7uh2oes7uh=
2oes7uh2oes7uh2oes7uh2oes7uh;26 Feb 2020 04:15:03 -0600;2oes7uh2oes7uh2o
x-cr-puzzleid: \{4EC95993-84DE-034E-C959-9384DE034EC9\}
Return-Path: rgrs@mak.pt
</pre>
</font>
</body>
</html>=
--8befb33e-1d80-4d04-bda8-1e47a8920725--
--d285ef6c-285c-4be7-93af-a681c96af137
Content-Type: message/delivery-status
Reporting-MTA: dns;SPWEXC01.intranet.ifis.local
Received-From-MTA: dns;relay01.bancaifis.it
Arrival-Date: Wed, 26 Feb 2020 15:24:06 +0000
Final-Recipient: rfc822;sarah.pon@bancaifis.it
Action: failed
Status: 5.1.10
Diagnostic-Code: smtp;550 5.1.10 RESOLVER.ADR.RecipientNotFound; Recipient not found by SMTP address lookup
--d285ef6c-285c-4be7-93af-a681c96af137
Content-Type: message/rfc822
Received: from SPWEXC01.intranet.ifis.local (192.168.0.62) by
SPWEXC01.intranet.ifis.local (192.168.0.62) with Microsoft SMTP Server
(version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384) id
15.1.1847.3; Wed, 26 Feb 2020 16:24:06 +0100
Received: from relay01.bancaifis.it (172.20.0.254) by
SPWEXC01.intranet.ifis.local (192.168.0.62) with Microsoft SMTP Server id
15.1.1847.3 via Frontend Transport; Wed, 26 Feb 2020 16:24:06 +0100
Received: from unknown (HELO [142.54.207.110]) ([142.54.207.110])
by relay01.bancaifis.it with ESMTP; 26 Feb 2020 16:24:05 +0100
From: <rgrs@mak.pt>
To: <sarah.pon@bancaifis.it>
Subject: Check the confidentiality of your information (according to our security service, your account has been hacked).
Date: Wed, 26 Feb 2020 04:15:03 -0600
Message-ID: <003401d5ec8e$04e8980b$94ea9290$@mak.pt>
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="----=_NextPart_000_0031_01D5EC8E.04E6B193"
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: Aces7uh2oes7uh2oes7uh2oes7uh2o==
Content-Language: en
x-cr-hashedpuzzle: 2D4= 7uh2 oes7 uh2o es7u h2oe s7uh 2oes 7uh2 oes7 uh2o es7u h2oe s7uh 2oes 7uh2;1;oes7uh2oes7uh2oes7uh2oes7uh2oes7uh2oes7uh2oes7uh;Sosha1_v1;7;\{4EC95993-84DE-034E-C959-9384DE034EC9\};ZQB3AGUAZg7uh2oes7uh2oes7uh2oes7uh2oes7uh2oes7uh;26 Feb 2020 04:15:03 -0600;2oes7uh2oes7uh2o
x-cr-puzzleid: \{4EC95993-84DE-034E-C959-9384DE034EC9\}
Return-Path: rgrs@mak.pt
------=_NextPart_000_0031_01D5EC8E.04E6B193
Content-Type: text/plain; charset="ibm852"
Content-Transfer-Encoding: quoted-printable
_Hello!Í am a hacker who has access to yoür operatíng =
system.Í also have full access to yoür =
accoüňt.Í've been watchíng yoü for a few months =
now.The fact ís that yoü were ínfected wíth malware =
throügh an adült síte that yoü =
vísíted.Íf yoü are not famílíar wíth =
thís, Í wíll explaín.Trojan Vírüs =
gíves me füll access and control over a compüter or other =
devíce.Thís means that Í can see everythíng on =
yoür screen, türn on the camera and mícrophone, büt =
yoü do not know aboüt ít.Í also have access to all =
yoür contacts and all yoür correspondence.Why yoür =
antívírüs díd not detect malware?Answer: My malware =
üses the dríver, Í üpdate íts =
sígnatüres every 4 hoürs so that yoür =
antívírüs ís sílent.Í made a vídeo =
showíng how yoü satísfy yoürself ín the left =
half of the screen, and ín the ríght half yoü see the =
vídeo that yoü watched. Wíth one clíck of the =
moüse,Í can send thís vídeo to all yoür =
emaíls and contacts on socíal networks. Í can also post =
access to all yoür e-maíl correspondence and messengers that =
yoü üse.Íf yoü want to prevent thís, transfer =
the amoünt of $950(USD) to my bítcoín address (íf =
yoü do not know how to do thís, wríte to Google: =
'Büy Bítcoín').My bítcoín address (BŤC =
Wallet) ís: 18Jro9LNFqBQarcc63WYGf3w7PdDAiwXpkAfter =
receívíng the payment, Í wíll delete the vídeo =
and yoü wíll never hear me agaín.Í gíve =
yoü 48 hoürs to pay.Í have a notíce readíng =
thís letter, and the tímer wíll work when yoü see =
thís letter.Fílíng a complaínt somewhere does not =
make sense becaüse thís emaíl cannot be tracked líke =
my bítcoín address.Í do not make any =
místakes.Íf Í fínd that yoü have shared =
thís message wíth someone else, the vídeo wíll be =
ímmedíately dístríbüted.Best regards!
------=_NextPart_000_0031_01D5EC8E.04E6B193
Content-Type: text/html; charset="ibm852"
Content-Transfer-Encoding: quoted-printable
<html xmlns:v=3D"urn:schemas-microsoft-com:vml" =
xmlns:o=3D"urn:schemas-microsoft-com:office:office" =
xmlns:w=3D"urn:schemas-microsoft-com:office:word" =
xmlns:m=3D"http://schemas.microsoft.com/office/2004/12/omml" =
xmlns=3D"http://www.w3.org/TR/REC-html40"><head><META =
HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; =
charset=3Dus-ascii"><meta name=3DGenerator content=3D"Microsoft Word 12 =
(filtered medium)"><style><!--
/* Font Definitions */
@font-face
=09{font-family:"Cambria Math";
=09panose-1:0 0 0 0 0 0 0 0 0 0;}
@font-face
=09{font-family:Calibri;
=09panose-1:2 15 5 2 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
=09{margin:0in;
=09margin-bottom:.0001pt;
=09font-size:11.0pt;
=09font-family:"Calibri","sans-serif";}
a:link, span.MsoHyperlink
=09{mso-style-priority:99;
=09color:blue;
=09text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
=09{mso-style-priority:99;
=09color:purple;
=09text-decoration:underline;}
span.EmailStyle17
=09{mso-style-type:personal-compose;
=09font-family:"Calibri","sans-serif";
=09color:windowtext;}
.MsoChpDefault
=09{mso-style-type:export-only;}
@page WordSection1
=09{size:8.5in 11.0in;
=09margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
=09{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext=3D"edit" spidmax=3D"1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext=3D"edit">
<o:idmap v:ext=3D"edit" data=3D"1" />
</o:shapelayout></xml><![endif]--></head><body lang=3DEN-US link=3Dblue =
vlink=3Dpurple><div class=3DWordSection1><p =
class=3DMsoNormal>_Hello!</br>
</br>
Í am a hacker who has access to yoür operatíng =
system.</br>
Í also have full access to yoür accoüňt.</br>
</br>
Í've been watchíng yoü for a few months now.</br>
The fact ís that yoü were ínfected wíth malware =
throügh an adült síte that yoü =
vísíted.</br>
</br>
Íf yoü are not famílíar wíth thís, Í =
wíll explaín.</br>
Trojan Vírüs gíves me füll access and control over a =
compüter or other devíce.</br>
Thís means that Í can see everythíng on yoür screen, =
türn on the camera and mícrophone, büt yoü do not =
know aboüt ít.</br>
</br>
Í also have access to all yoür contacts and all yoür =
correspondence.</br>
</br>
Why yoür antívírüs díd not detect malware?</br>
Answer: My malware üses the dríver, Í üpdate =
íts sígnatüres every 4 hoürs so that yoür =
antívírüs ís sílent.</br>
</br>
Í made a vídeo showíng how yoü satísfy =
yoürself ín the left half of the screen, and ín the =
ríght half yoü see the vídeo that yoü watched. =
Wíth one clíck of the moüse,</br>
Í can send thís vídeo to all yoür emaíls and =
contacts on socíal networks. Í can also post access to all =
yoür e-maíl correspondence and messengers that yoü =
üse.</br>
</br>
Íf yoü want to prevent thís, transfer the amoünt of =
$950(USD) to my bítcoín address (íf yoü do not know =
how to do thís, wríte to Google: 'Büy =
Bítcoín').</br>
</br>
My bítcoín address (BŤC Wallet) ís: =
18Jro9LNFqBQarcc63WYGf3w7PdDAiwXpk</br>
</br>
After receívíng the payment, Í wíll delete the =
vídeo and yoü wíll never hear me agaín.</br>
Í gíve yoü 48 hoürs to pay.</br>
Í have a notíce readíng thís letter, and the =
tímer wíll work when yoü see thís letter.</br>
Fílíng a complaínt somewhere does not make sense =
becaüse thís emaíl cannot be tracked líke my =
bítcoín address.</br>
Í do not make any místakes.</br>
</br>
Íf Í fínd that yoü have shared thís message =
wíth someone else, the vídeo wíll be =
ímmedíately dístríbüted.</br>
</br>
Best regards!<o:p></o:p></p></div></body></html>
------=_NextPart_000_0031_01D5EC8E.04E6B193--
--d285ef6c-285c-4be7-93af-a681c96af137--