Lots of these mails.
From: Validator <[email protected]>
To: Receiver <random50860173875 ...
show moreLots of these mails.
From: Validator <[email protected]>
To: Receiver <random508601738759998@r####.hu>
Date: 2025-02-05T18:23:19+05:30
Subject: This is a test email subject for validation (2025-02-05T18:23:19+05:30)
Message-ID: <[email protected]>
show less
Sent infected mail
Received: from server2.iworx-host.com (server2.iworx-host.com [5.56.39.60])
Fri ...
show moreSent infected mail
Received: from server2.iworx-host.com (server2.iworx-host.com [5.56.39.60])
Fri, 1 Nov 2024 03:13:37 +0100 (CET)
Comment: DomainKeys? See http://domainkeys.sourceforge.net/
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws;
s=default; d=vasarhely.hu;
Received: (qmail 8688 invoked by uid 108); 1 Nov 2024 03:12:14 +0100
Received: from unknown (HELO server2-new.iworx-host.com) (127.0.0.1)
by server2-new.iworx-host.com with SMTP; 1 Nov 2024 03:12:14 +0100
Received: from 127.0.0.1 ([127.0.0.1])
by server2-new.iworx-host.com with ESMTPA
id XIVhFf44JGfOIAAAqficvw
(envelope-from <sz####[email protected]>); Fri, 01 Nov 2024 03:12:14 +0100
Date: Fri, 01 Nov 2024 02:12:13 +0000
From: Vladimir Marić <sz####[email protected]>
To: undisclosed-recipients:;
Subject: Fwd: Fizetés31102024
Message-ID: <[email protected]>
X-Sender: sz####[email protected]show less
Sent infected content.
Received: from relay-mil-04.rdigitale.net (relay-mil-04.rdigitale.net [109 ...
show moreSent infected content.
Received: from relay-mil-04.rdigitale.net (relay-mil-04.rdigitale.net [109.168.125.155])
Message-ID: <[email protected]>
show less
Sent multiple mail with infected content (Amalgamers.exe) in an img file.
Received: from vmf201.c ...
show moreSent multiple mail with infected content (Amalgamers.exe) in an img file.
Received: from vmf201.chsel.eu (vmf201.chsel.eu [194.116.246.151])
Received: from localhost (localhost [127.0.0.1])
by vmf201.chsel.eu (Postfix) with ESMTP id 73D5618362C;
X-Virus-Scanned: Debian amavisd-new at vmf201.chsel.eu
Received: from vmf201.chsel.eu ([127.0.0.1])
by localhost (vmf201.chsel.eu [127.0.0.1]) (amavisd-new, port 10026)
with LMTP id EmLCRrkaD4u2;
Received: from mail.romexim-direct.ro (localhost [IPv6:::1])
by vmf201.chsel.eu (Postfix) with ESMTP id 6CDB5183621;
Wed, 30 Oct 2024 12:51:25 +0200 (EET)
Message-ID: <[email protected]>
X-Sender: s###[email protected]
User-Agent: Roundcube Webmail/1.1.5
show less
Sent infected attachment.
Received: from dailygl0ballogistics.com (dailygl0ballogistics.com [193.42 ...
show moreSent infected attachment.
Received: from dailygl0ballogistics.com (dailygl0ballogistics.com [193.42.60.182])
Thu, 17 Oct 2024 16:39:19 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed;
d=dailygl0ballogistics.com; s=dkim
Received: from [127.0.0.1] (helo=dailygl0ballogistics.com)
by dailygl0ballogistics.com with esmtpa (Exim 4.98)
(envelope-from <ex###@dailygl0ballogistics.com>)
id 1t1RQR-00000003akQ-10RW;
Date: Thu, 17 Oct 2024 07:24:27 -0700
From:### <ex###@dailygl0ballogistics.com>
Message-ID: <[email protected]>
show less
Sent Phishing mails.
Received: from MAIL.themysticoracle.com (hwsrv-1229784.hostwindsdns.com [23.25 ...
show moreSent Phishing mails.
Received: from MAIL.themysticoracle.com (hwsrv-1229784.hostwindsdns.com [23.254.227.155])
Subject: Re: Syncing Error - (4) Incoming failed! ####@####.hu
show less
Received: from ecom-hosting2.com (ecom-hosting2.com [52.178.40.45])
Tue, 25 Jun 2024 12:03:19 ...
show moreReceived: from ecom-hosting2.com (ecom-hosting2.com [52.178.40.45])
Tue, 25 Jun 2024 12:03:19 +0200 (CEST)
Received: from webmail.ecom-hosting2.com (localhost.localdomain [IPv6:::1])
by ecom-hosting2.com (Postfix) with ESMTPA id CD1E71120D4;
Tue, 25 Jun 2024 12:02:28 +0200 (CEST)
Authentication-Results: pleskweb1VM;
spf=pass (sender IP is ::1) smtp.mailfrom=####@neoperl.com smtp.helo=webmail.ecom-hosting2.com
Received-SPF: pass (pleskweb1VM: connection is authenticated)
Date: Tue, 25 Jun 2024 12:02:28 +0200
From: "Neoperl Bulgaria, EOOD" <####@neoperl.com>
To: You <####@rackoon.net>
Subject: Purchase Order 135761
Reply-To: ####@rackoon.net
Mail-Reply-To: ####@rackoon.net
Message-ID: <[email protected]>
show less
Sent multiple empty mails with randomized subject
Received: from mail.opticalse.de (mail.opticalse ...
show moreSent multiple empty mails with randomized subject
Received: from mail.opticalse.de (mail.opticalse.de [31.28.27.58])
by web.realcsoport.hu (Postfix) with ESMTP id 7F6B3E24CA
for ; Wed, 8 Nov 2023 19:26:41 +0100 (CET)
Received: from opticalse.de (mail.opticalse.de [31.28.27.58])
by mail.opticalse.de (Postfix) with ESMTPA id B69D124DF3;
Wed, 8 Nov 2023 19:48:34 +0200 (EET)
Message-ID: <85571055M54582700G06758065Y48575286U@toafhuzps>
Reply-To: "Amalla" <@opticalse.de>
From: "Ami" <@opticalse.de>
To: <@rafflesmilano.it>
Subject: ajkymrs yfkimkj ahfaqzf
Date: Wed, 08 Nov 2023 19:48:41 +0200
MIME-Version: 1.0
Content-Type: text/plain;
charset="windows-1251"
Content-Transfer-Encoding: 7bit
X-MSMail-Priority: Normal
X-Mailer: Microsoft Windows Live Mail 14.0.8117.416
X-MimeOLE: Produced By Microsoft MimeOLE V14.0.8117.416
show less
Sent forged mails.
Received: from bonbon-kiszolg.bonbon.local (unknown [213.16.81.163])
(Au ...
show moreSent forged mails.
Received: from bonbon-kiszolg.bonbon.local (unknown [213.16.81.163])
(Authenticated sender: ####@univerzalkop.rs)
by mail.univerzalkop.rs (Postfix) with ESMTPSA id 76DBD3520B4
for <####@####>; Thu, 31 Aug 2023 09:41:26 +0200 (CEST)
show less
Sent infected mails
Received: from sav.dery9.team (dery9.team [84.54.51.224])
(using TLSv1. ...
show moreSent infected mails
Received: from sav.dery9.team (dery9.team [84.54.51.224])
(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256)
(No client certificate requested)
Mon, 28 Aug 2023 13:34:31 +0200 (CEST)
Received: from webmail.dery9.team (localhost [127.0.0.1])
by sav.dery9.team (Postfix) with ESMTPSA id 717F661867;
Mon, 28 Aug 2023 11:05:36 +0000 (UTC)
Authentication-Results: sav.dery9.team;
spf=pass (sender IP is 127.0.0.1) [email protected] smtp.helo=webmail.dery9.team
Received-SPF: pass (sav.dery9.team: connection is authenticated)
show less