Saturday, February 20, 2010

Inbox - accountant request / IP address 194.25.134.83 seems to belong to a Suspicious (1) with threat level 26, last malicious activity 13 days ago

cnn@hotelseimler.homepage.t-online.de>
Received: from mailout07.t-online.de (mailout07.t-online.de [194.25.134.83])
by mailer.ran.es (8.14.2/8.13.8) with ESMTP id o1K56igY015717
for <xxxxx@xxxxxx>; Sat, 20 Feb 2010 06:06:44 +0100
Received: from fwd09.aul.t-online.de (fwd09.aul.t-online.de )
by mailout07.t-online.de with smtp
id 1NihX2-0002Qi-8A; Sat, 20 Feb 2010 06:05:32 +0100
Received: from User (VgkU2wZQrt71ga8qfvCHq54Wx9JsyKLOX2WkPMiC6vYscLWSo9b8+8XaMjHYWM62mZAZmEVnbH@[77.38.29.86]) by fwd09.t-online.de
with esmtp id 1NihLj-0X1F7A0; Sat, 20 Feb 2010 05:53:51 +0100
Reply-To: <unlimited2@centrum.cz>
From: "john gelsthorp" <cnn@hotelseimler.homepage.t-online.de>
Subject: accountant request
Date: Fri, 19 Feb 2010 22:53:54 -0600
MIME-Version: 1.0
Content-Type: text/plain;
charset="Windows-1251"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
Message-ID: <1NihLj-0X1F7A0@fwd09.t-online.de>
X-ID: VgkU2wZQrt71ga8qfvCHq54Wx9JsyKLOX2WkPMiC6vYscLWSo9b8+8XaMjHYWM62mZAZmEVnbH
X-TOI-MSGID: 9b16cbf9-280b-4ca8-b09d-93520ad82c62
X-UIDL: gcE"!WJV!!)DJ"!~1O!!
Old-X-EsetId: E74D982990713469F84B987C9D2172
X-EsetId: E74D982990713469F84B987C9D2172
X-EsetScannerBuild: 6623
Dear friend,

My name is Mr. John Gelsthorp. I am the accountant of the FinBank Plc Victoria Island Lagos. I am married with two kids.

I am writing to solicit your assistance in the noble transfer of US$3,800,000.00 (Three Million, Eight Hundred Thousand US Dollars). This fund is the excess of what my branch in which I am the accountant made as profit last year. I have already submitted an approved end year report for 2008 and also submitted report of first quarter of this year 2009 to my Head Office here in Lagos and they will never know of this Excess. I have placed this fund on a SUSPENCE ACCOUNT without a beneficiary.

As an officer of the bank, I cannot be directly connected to this money thus I am impelled to request for your assistance to receive this money into your bank account. I intend to part with 30% of this fund to you while 70% shall be for me. I do need to stress that there are practically no risk involved in this. It is going to be a bank-to-bank transfer to your nominated bank account anywhere you feel safe. All I need from you is to stand as the original depositor of this fund.

If you accept this offer, I will appreciate your timely response.

Best regards,

Mr. John Gelsthorp
IP Check IP address 194.25.134.83 seems to belong to a Suspicious (1) with threat level 26, last malicious activity 13 days ago
http://www.find-ip-address.org/ip-address-locator.php34.83
IP Address Location results for 194.25.134.83
IP Address: 194.25.134.83 WhoIs Lookup IP BlackList Lookup
Hostname: mailout07.t-online.de Reverse DNS
[See complete information about your system with our IP Information tool!]

IP Address Conversion - IP Convert for 194.25.134.83 to Hex & to Dec
IP to Dec [IP Address to decimal]: 3256452691
IP to Hex [IP Address to hexadecimal]: c2198653
IP to Bin [IP to binary]: 11000010000110011000011001010011

IP Address Lookup results for Europe
IP Address Continent: Europe
IP Continent Code:(EU)
IP Continent Population: 731,000,000
IP Continent Area: 10,180,000 km²
IP Continent Total Population: 11%
IP Continent Density People: 70.00 per km²
IP Continent Latitude: (48.69083)
IP Continent Longitude: (9.1405)

IP Location Lookup results for Germany
IP Country Name: Germany
IP Country Capital: Berlin
IP Language: German
IP Currency: Euro(€) (EUR)
IP Country Latitude: (51.5)
IP Country Longitude: (10.5)
IP Country Code: DEU (DE)

IP Location Lookup results for 194.25.134.83 in Hessen
IP Address Region: Hessen
IP Address City: Weiterstadt
IP Address Latitude: (49.9078)
IP Address Longtitude: (8.5953)

Additional IP Location information for 194.25.134.83
IP Address Organization: www.t-online.de
IP Address ISP: Deutsche Telekom AG
Time zone for 194.25.134.83: Europe/Berlin
Local time zone for 194.25.134.83: Europe/Berlin
Posted by at No comments:
Labels:

Inbox - Your order has been paid! Parcel NR.7507. email contains Virus Win32/Kryptik.CNC Trojan

From: Shop Manager Tracy Drake
To: xxxxxx
Date: sábado, 20 de febrero de 2010 4:50
Subject: Your order has been paid! Parcel NR.7507 (Well I never made an order with amazon.com so the first warning sign)

Good afternoon!

Thank you for shopping at Amazon.com

Goodafternoon!

Thank you for shopping at Amazon.com

We have successfully received your payment.

Your order has been shipped to your billing address.

You have ordered " Microsoft LifeCam NX-6000 "

You can find your tracking number in attached to the e-mail document.

Print the postal label to get your package.


We hope you enjoy your order!
Amazon.com



__________ Alerta de ESET NOD32 Antivirus, versión de la base de firmas de virus 4881 (20100219) __________

Alerta, ESET NOD32 Antivirus ha encontrado las siguientes amenazas en este mensaje:

Postal_package_NR8422.zip - una variante de Win32/Kryptik.CNC Troyano - eliminado
Postal_package_NR8422.zip > ZIP > Postal_package_NR8422.exe - una variante de Win32/Kryptik.CNC Troyano - era parte de un objeto eliminado

http://www.eset.com
Posted by at 1 comment:
Labels: ,

Thursday, February 18, 2010

Vodafone.co.uk Nokia X6 is available on pre-order from today!

Nokia X6

The Nokia X6 is available on pre-order from today!



FREE on tariffs from £30

Copy:
Feeling good? Bit down? Need a burst of energy? Let the Nokia X6's built in DJ choose the music for your mood. Then let it treat your eyes as well as your ears - its stunning touchscreen brings everything to life, from videos to the web. That huge widescreen also makes photos taken with the X6's five megapixel camera look stunning. The high quality Carl Zeiss lens gives you super sharp pictures - and the dual LED flash is perfect for those night time shots. All this in a slim, head-turning phone with a massive 16GB of storage - plus a standard headphone socket, so you can plug in your favourite pair.

Order yours today and we will aim to deliver by 1 March

Best sellers
BlackBerry Bold 9700
Samsung Genio Touch Pink
Sony Ericsson W595
Posted by at No comments:
Labels: ,

Inbox - Receipt for Your Payment to busyne623@msn.com Paypal scam

service@paypals.co.uk>
Received: from mail.gtventura.com (adsl-76-243-55-198 invalid IP adress.dsl.irvnca.sbcglobal.net [76.243.55.198])
by mailer.ran.es (8.14.2/8.13.8) with ESMTP id o1H6FJL4020625
for <xxxxxx@xxxxxx>; Wed, 17 Feb 2010 07:15:21 +0100
Received: from User ([203.131.139.66]) by mail.gtventura.com with Microsoft SMTPSVC(6.0.3790.3959);
Tue, 16 Feb 2010 07:40:35 -0800
Reply-To: <service@paypals.co.uk>
From: "PayPal"<service@paypals.co.uk>
To: customer@paypal.co.uk
Subject: Receipt for Your Payment to busyne623@msn.com
Date: Tue, 16 Feb 2010 23:40:27 +0800
MIME-Version: 1.0
Content-Type: text/html;
charset="Windows-1251"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
Message-ID: <SERVERB37QfZxjAUWcs00001ff9@mail.gtventura.com>
X-OriginalArrivalTime: 16 Feb 2010 15:40:35.0530 (UTC) FILETIME=[61A0FAA0:01CAAF1E]
X-UIDL: Y!K!!d1)!!X)##!A!G"!
Status: U
Old-X-EsetId: E74D982990713469F84B987C9D2270
X-EsetId: E74D982990713469F84B987C9D2270
X-EsetScannerBuild: 6611
Dear PayPal Member,

This email confirms that you have sent an eBay payment of GBP 347.85 to busyne623@msn.com for an eBay item.

Payment Details
-----------------------------------

Amount: GBP 347.85

Transaction ID: 2LC956793J776333Y

Subject: New 32GB Iphone Touch
-----------------------------------

Note:

If you haven't authorized this charge ,click the link below to cancel transaction

Cancel Transaction:

https://www.paypal.co.uk/cgi-bin/webscr?login-run.webscrcmd=_account-run.CaseIDNumberPP-046-631-789

*SSL connection:
PayPal automatically encrypts your confidential information
in transit from your computer to ours using the Secure
Sockets Layer protocol (SSL) with an encryption key length
of 128-bits (the highest level commercially available)

IP Checks
76-243-55-198 invalid IP adress - It is a SCAM
203.131.139.66
IP Address Location results for 203.131.139.66
IP Address: 203.131.139.66 WhoIs Lookup IP BlackList Lookup
Hostname: adsl-131.139.66.info.com.ph Reverse DNS
[See complete information about your system with our IP Information tool!]

IP Address Conversion - IP Convert for 203.131.139.66 to Hex & to Dec
IP to Dec [IP Address to decimal]: 3414395714
IP to Hex [IP Address to hexadecimal]: cb838b42
IP to Bin [IP to binary]: 11001011100000111000101101000010

IP Address Lookup results for Asia
IP Address Continent: Asia
IP Continent Code:(AS)
IP Continent Population: 3,879,000,000
IP Continent Area: 44,579,000 km²
IP Continent Total Population: 60%
IP Continent Density People: 89.00 per km²
IP Continent Latitude: (29.8405)
IP Continent Longitude: (89.296)

IP Location Lookup results for Philippines
IP Country Name: Philippines
IP Country Capital: Manila
IP Language: Filipino, English
IP Currency: Peso (Filipino: peso ) (PHP)
IP Country Latitude: (13)
IP Country Longitude: (122)
IP Country Code: PHL (PH)

IP Location Lookup results for 203.131.139.66 in Manila
IP Address Region: Manila
IP Address City: Makati
IP Address Latitude: (14.5667)
IP Address Longtitude: (121.0333)

Additional IP Location information for 203.131.139.66
IP Address Organization: RMD Kiwkform Philippines Inc
IP Address ISP: Infocom Technologies, Inc.
Time zone for 203.131.139.66: Asia/Manila
Local time zone for 203.131.139.66: Asia/Manila
Posted by at No comments:
Labels: ,
Subscribe to: Posts (Atom)