Inbox - I am not an Italian and have no account with BancaEtruria

Ci e arrivata una segnalazione di accredito di Euro 100,00.
L’accredito e stato temporaneamente bloccato a causa dell’incongruenza dei suoi dati.
Potra ora verificare i suoi dati e successivamente sara accreditato l’accredito ricevuto:

Clicca qui: Riattiva imediatamente il tuo conto.

Cordiali saluti, Banca Etruria TELEFONO Numero gratuito 800.68.68.68 (dal lunedì al sabato dalle ore 9 alle ore 20)

Subject > Archives > Properties - to find sender´s IP
Return-Path:
Received: from smtpsmart2.aruba.it (smtpweb113.aruba.it [62.149.158.113])
by mailer.ran.es (8.14.2/8.13.8) with SMTP id nBL7oTX8031888
for ; Mon, 21 Dec 2009 08:50:50 +0100
Received: (qmail 26446 invoked by uid 89); 21 Dec 2009 07:50:25 -0000
Received: by simscan 1.2.0 ppid: 26266, pid: 26281, t: 1.4749s
scanners: clamav: 0.88.4/m:40/d:1945 spam: 3.1.4
X-Spam-Checker-Version: SpamAssassin 3.2.5 (2008-06-10) on
smtpsmart2.ad.aruba.it
X-Spam-Level: ***
X-Spam-Status: No, score=3.8 required=5.0 tests=BAYES_00,HTML_IMAGE_ONLY_16,
HTML_TAG_BALANCE_HEAD,MIME_HTML_ONLY,RDNS_NONE,SUBJECT_NEEDS_ENCODING,
URIBL_PH_SURBL autolearn=disabled version=3.2.5
Received: from unknown (HELO webs215.aruba.it) (62.149.130.225)
by smtpsmart2.fe.aruba.it with SMTP; 21 Dec 2009 07:50:23 -0000
Received: from WEBS215 ([127.0.0.1]) by webs215.aruba.it with Microsoft SMTPSVC(6.0.3790.3959);
Mon, 21 Dec 2009 08:48:04 +0100
Date: Mon, 21 Dec 2009 08:48:04 +0100
Subject: Potra ora verificare i suoi dati e successivamente sara accreditato l’accredito ricevuto:
To: webmaster@itccommunications.net
From: Banca Etruria
Reply-To: info@bancaetruria.it
MIME-Version: 1.0
Content-Type: text/html
Content-Transfer-Encoding: 8bit
Message-ID:
X-OriginalArrivalTime: 21 Dec 2009 07:48:04.0887 (UTC) FILETIME=[EDC86A70:01CA8211]
X-UIDL: H?E"!DRM"!'`:!!a]*!!
Status: U
Old-X-EsetId: E74D982990713469F84B987C992770
X-EsetId: E74D982990713469F84B987C992770
X-EsetScannerBuild: 6241

158.113 IP Address: 62.149.158.113 WhoIs Lookup IP BlackList Lookup

IP address 62.149.158.113 seems to belong to a Suspicious (1) with threat level 16, last malicious activity 44 days ago

Hostname: smtpweb113.aruba.it Reverse DNS

[See complete information about your system with our IP Information tool!]

IP Address Conversion - IP Convert for 62.149.158.113 to Hex & to Dec

IP to Dec [IP Address to decimal]: 1049992817
IP to Hex [IP Address to hexadecimal]: 3e959e71
IP to Bin [IP to binary]: 111110100101011001111001110001

IP Address Lookup results for Europe

IP Address Continent: Europe
IP Continent Code:(EU)
IP Continent Population: 731,000,000
IP Continent Area: 10,180,000 km²
IP Continent Total Population: 11%
IP Continent Density People: 70.00 per km²
IP Continent Latitude: (48.69083)
IP Continent Longitude: (9.1405)

IP Location Lookup results for Italy

IP Country Name: Italy
IP Country Capital: Rome
IP Language: Italian
IP Currency: Euro(€) (EUR)
IP Country Latitude: (42.83)
IP Country Longitude: (12.83)
IP Country Code: ITA (IT)

IP Location Lookup results for 62.149.158.113 in Toscana

IP Address Region: Toscana
IP Address City: Arezzo
IP Address Latitude: (43.4167)
IP Address Longtitude: (11.8833)

Additional IP Location information for 62.149.158.113

IP Address Organization: Aruba S.p.A. - Shared Hosting and Mail services
IP Address ISP: Aruba S.p.A.

---

Time zone for 62.149.158.113: Europe/Rome
Local time zone for 62.149.158.113: Europe/Rome

Inbox - El empleo con horario flexible --Fraude

From: Alejandra Boucher

To: 3dfunkyhairuar@xxxxxxxxxxx

Sent: Monday, December 21, 2009 11:02 AM

Subject: El empleo con horario flexible

Señores:

Somos una Compañía Internacional y actualmente contamos con unas vacantes.

Las vacantes se proponen sólo para los residentes de los países de Europa.

Esta colaboración con nuestra compañía se comprende el cargo de un representante regional (gerente regional). Se trata de efectuar las operaciones financieras con nuestros clientes, o sea en la recepción y envío de las pagas lo más rápido posible.

El labor del gerente regional es bastante sencillo y fácil. Los gerentes de plantilla estarán siempre a su disposición durante el período de adiestramiento cuando ellos les ayudarán a Uds. con el fin brindarle la información y métodos referentes al trabajo en cuestión.

Nuestra compañía cuenta un sistema flexible de remuneración. El salario en el primer mes de colaboración será de 2,400 euros. En lo adelante el salario dependerá de su trabajo: mientras más tiempo se dedica al trabajo, más dinero se cobra. En este caso el aumento del salario será notable y se notará muy rápido.

Para iniciar su colaboración en nuestra sólo hay que hacer el primer paso.

Se les solicita se envíe un mensaje electrónico a la dirección: trishreding47@gmail.com con la siguiente información:

Nombre - Apellidos - País de residencia - Ciudad - Edad - Teléfono de contacto

Los mensajes sin estos datos no se estudiarán.

Una vez recibido este mensaje, dentro de 2 ó 3 días nuestros gerentes se comunicarán con Uds. para brindarles más detalles sobre su cargo.

Subject > Archives > Properties - to find sender´s IP

Return-Path: <prompters95@sanriotown.com>
Received: from ip-77.24.53.148.web.vodafone.de (ip-77.25.122.08.web.vodafone.de [77.25.122.108])
by mailer.ran.es (8.14.2/8.13.8) with ESMTP id nBLA2GfD016839;
Mon, 21 Dec 2009 11:02:37 +0100
Received: from 77.25.122.108 by sanriotown-com-bk.mr.outblaze.com; Mon, 21 Dec 2009 11:02:14 +0100
From: "Alejandra Boucher" <Boucher1935@zipolite.com>
To: <3dfunkyhairuar@xxxxxxxxxxxx
Subject: El empleo con horario flexible
Date: Mon, 21 Dec 2009 11:02:14 +0100
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="----=_NextPart_000_0006_01CA8224.AB960690"
X-Mailer: Microsoft Office Outlook, Build 11.0.5510
Thread-Index: Aca6QHVQNSYYWWBLDLO977LKG316I4==
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106
Message-ID: <000d01ca8224$ab960690$6400a8c0@prompters95>
X-UIDL: ^,"#!-U)!!SHa"![9i"!
Status: RO
Old-X-EsetId: E74D982990713469F84B987C992770
X-EsetId: E74D982990713469F84B987C992770
X-EsetScannerBuild: 6241

IP Address: 77.24.53.148 WhoIs Lookup IP BlackList Lookup

IP address 77.24.53.148 seems to belong to a Suspicious (1) with threat level 14, last malicious activity 2 days ago

Hostname: ip-77-24-53-148.web.vodafone.de Reverse DNS

[See complete information about your system with our IP Information tool!]

IP Address Conversion - IP Convert for 77.24.53.148 to Hex & to Dec

IP to Dec [IP Address to decimal]: 1293432212
IP to Hex [IP Address to hexadecimal]: 4d183594
IP to Bin [IP to binary]: 1001101000110000011010110010100

IP Address Lookup results for Europe

IP Address Continent: Europe
IP Continent Code: (EU)
IP Continent Population: 731,000,000
IP Continent Area: 10,180,000 km²
IP Continent Total Population: 11%
IP Continent Density People: 70.00 per km²
IP Continent Latitude: (48.69083)
IP Continent Longitude: (9.1405)

IP Location Lookup results for Germany

IP Country Name: Germany
IP Country Capital: Berlin
IP Language: German
IP Currency: Euro(€) (EUR)
IP Country Latitude: (51.5)
IP Country Longitude: (10.5)
IP Country Code: DEU (DE)

IP Location Lookup results for 77.24.53.148 in

IP Address Region: No data found for 77.24.53.148
IP Address City: No data found for 77.24.53.148
IP Address Latitude: (51)
IP Address Longtitude: (9)

Additional IP Location information for 77.24.53.148

IP Address Organization: Vodafone D2 GmbH
IP Address ISP: Vodafone D2 GmbH

---

Time zone for 77.24.53.148: Europe/Berlin
Local time zone for 77.24.53.148: Europe/Berlin

Inbox - Rquest to contact you / Suspicious

Date: Sun, 20 Dec 2009 05:33:30 +0800 (CST)
From: "Luke Suton Law Firm"
ReplyTo: lukesutton78@gmail.com
Subject: Rquest to contact you

I am Luke Sutton, a lawyer. I am desperately in need of
your assistance and I have summoned up the courage to contact
you. I need your help in the transfer of my late clients
$8,500,000.00 This is not stolen money and there are no
dangers involved.

Kindly send your response to my private email below for
further details: lukechamberlaw@live.co.uk

Thank you for your time and I look forward to hearing from
you

Regards,
Luke Sutton

Subject right click > Archives > Properties > Details
Return-Path:
Received: from mail.taipei.gov.tw (mail-2.taipei.gov.tw [163.29.36.4])
by mailer.ran.es (8.14.2/8.13.8) with SMTP id nBJLYKwh005538
for ; Sat, 19 Dec 2009 22:34:42 +0100
Received: By OpenMail Mailer;Sun, 20 Dec 2009 05:33:30 +0800 (CST)
From: "Luke Suton Law Firm"
Reply-To: lukesutton78@gmail.com
Subject: Rquest to contact you
Message-ID: <1261258410.834.ea-10918@mail.taipei.gov.tw>
Date: Sun, 20 Dec 2009 05:33:30 +0800 (CST)
MIME-Version: 1.0
Content-Type: text/plain; charset=big5
Content-Transfer-Encoding: quoted-printable
X-UIDL: 4p&#!<"U!!!U6!!2]i"! Status: RO Old-X-EsetId: E74D982990713469F84B987C992770 X-EsetId: E74D982990713469F84B987C992770 X-EsetScannerBuild: 6241

Reference - blacklist lookup
IP address 163.29.36.4 seems to belong to a Suspicious (1) with threat level 19, last malicious activity 21 days ago

ation results for 163.29.36.4
IP Address: 163.29.36.4 WhoIs Lookup IP BlackList Lookup
Hostname: mail-2.tcg.gov.tw Reverse DNS
[See complete information about your system with our IP Information tool!]

IP Address Conversion - IP Convert for 163.29.36.4 to Hex & to Dec
IP to Dec [IP Address to decimal]: 2736595972
IP to Hex [IP Address to hexadecimal]: a31d2404
IP to Bin [IP to binary]: 10100011000111010010010000000100

IP Address Lookup results for Asia
IP Address Continent: Asia
IP Continent Code:(AS)
IP Continent Population: 3,879,000,000
IP Continent Area: 43,810,000 km²
IP Continent Total Population: 60%
IP Continent Density People: 86.70 per km²
IP Continent Latitude: (29.8405)
IP Continent Longitude: (89.296)

IP Location Lookup results for Taiwan
IP Country Name: Taiwan
IP Country Capital: Taipei
IP Language: Mandarin Chinese
IP Currency: New Taiwan Dollar (TWD)
IP Country Latitude: (23.5)
IP Country Longitude: (121)
IP Country Code: TWN (TW)

IP Location Lookup results for 163.29.36.4 in T'ai-pei
IP Address Region: T'ai-pei
IP Address City: Taipei
IP Address Latitude: (25.0392)
IP Address Longtitude: (121.525)

Additional IP Location information for 163.29.36.4
IP Address Organization: Taipei City Government Information Office
IP Address ISP: MOEC
Time zone for 163.29.36.4: Asia/Taipei
Local time zone for 163.29.36.4: Asia/Taipei

Inbox - Yahoo request? but I am es not co.uk!

De: Webmail Administrative Center
Enviado: vie,18 diciembre, 2009 11:24
Asunto: *****Urgent Notification*****
but I have not got a yahoo.co.uk account so no need to complete?

Dear Web mail Account User,

This is to notify you that we are currently upgrading our database and as such
terminating all unused accounts to reduce congestion on the network for Accounts Owners
safety, We are having congestions due to the anonymous registration of accounts so we
are shutting down some accounts that are no more active and your account might be
deleted or suspended within 72 hours for security reasons if you do not respond to this
mail.

To prevent your account from being terminated, you will have to update it by providing
the information requested below: Failure to do this will immediately render your
account deactivated from our database.

***************************************************
PLEASE CONFIRM YOUR EMAIL IDENTITY NOW!
Email: ......................
Password: ..................
Confirm Password: ………..
Date of Birth: ..............
Alternate Email and Password: ...........why do they want the password of your other e-mail account?
***********************************************************
Warning!!! An account owner that refuses to update their account may lose
such an account permanently.
Message Code: NXDT-4AJ-ACC

Thank you,
Mail Support Team.

IP address 87.248.110.138 seems to belong to a Suspicious (1) with threat level 18, last malicious activity 30 days ago reference http://bit.ly/59ehiw

87.248.110.138

UK

UNITED KINGDOM

-

-

YAHOO! EUROPE http://bit.ly/70izo2

Warnings signes so decided to Google it. Yes someone had Googled it

Quizás quiso decir: Webmail Administrative Center <helpdesk account00@yahoo.co.uk>

Resultados de la búsqueda

Los resultados incluyen tus notas de Búsqueda wiki de Webmail Administrative Center . Compartir estas notas

Copia este enlace y pégalo en un mensaje de correo electrónico o en un mensaje instantáneo:

Obtener una vista previa de la página compartida

1. J'ai reçu ce mail. Qu'est-ce que c'est ? Ils vont fermer mon ...

   - [ Traducir esta página ]
   16 déc. 2009 ... Mer 16 Décembre 2009, 14 h 42 min 47 sDe : Webmail Administrative Center <helpdeskaccount00@yahoo.co.uk> Ajouter dans les contacts ...
   fr.answers.yahoo.com/question/index?qid... - Estados Unidos - En caché -

Quizás quiso buscar: Webmail Administrative Center <helpdesk account00@yahoo.co.uk>

So I translated it into English then clicked on the link http://bit.ly/8w8dAe and here are the comments on the question in English. Leave any comments in the box below as to whether you think it is a scam/spam! If a Frenchman, or anyone queried this, one should investigate. One should be very careful on the internet