Hello,
Incase anyone receives weird NON RFC bounces, from @gmail.com customers
saying:
Technical details of permanent failure:
read error: generic::failed_precondition: read error (0): error
What this means is:
Google Inc does REPLACE the "Blocked for abuse / spam /scams / phish /
virus / spyware messages from the various filters
and sens a cryptic non RFC message to their users implying that the
receivers email server is broken in some way....
This is truly EVIL of Google to do...
As they, Google are the ones sending PHISH / VIRUS/ SCAMS / SPAM!
Example: @209.85.218.43
http://www.scammed.by/scam.php?id=185816
Instead of SOLVING the abuse - Google chooses to send CRYPTIC technical
failure messages...
Because they are a monopoly and they are simply just too large to care??
Yes, of course!
Andre
Dear colleagues,
The RIPE NCC has published a transparency report that details the nature
of the requests we received from law enforcement agencies (LEAs) in 2015.
https://www.ripe.net/ripe/docs/ripe-664
Kind regards,
Athina Fragkouli
Legal Counsel
RIPE NCC
Another millionth phishing that I get of this provider - Aruba.it - managed by motherfuckers. Criminal psychopaths. A provider above the law, rules and regulations. A provider managed by greedy psychopaths.
For years this provider (Aruba.it) has been complicit in this practice of crime - phishing.
Nobody does anything. If only these domains were blocked, more days less days, Aruba would have to stop practicing crime.
And gmail-google and Cert.br and RIPE, partners of this criminal activity, do nothing. Psychopaths greedy. Mobsters.
No one, no one has the right to complain about my impoliteness. Two years complaining, denouncing without solution, gives me the right to qualify them as they deserve. Learn to respect to be respected, motherfuckers. Block my email is hard work, is not motherfucker?
I'm impressed. The lack of ethics, turpitude, the rascality, greed and lack of respect for people shows a rotten globalized economy where even the ISIS is a lesser evil, much smaller. Volkswagen is the caricature of all of you. The agenda is "cheat if you can, if possible try don't get caught as Volkswagen, HSBC, Chartered, FIFA, Brazilian government, Petrobras, Odebrecht...” God save NSA! Long live the NSA! Fuck the spammers, scammers, ISPs and Registrars!
From: toolbar(a)netcraft.com
Sent: Friday, April 08, 2016 12:41 PM
To: marilson.mapa
Subject: Thank you from Netcraft
The URL you recently submitted has been accepted as a phishing site by
Netcraft.
URL:
http://www. art-design.uz/ rt.php
Netcraft
McAfee Home→Customer URL Ticketing System
Categorization in URL Filter database version '192766'
Parte superior do formulário
URL
Status
Categorization
Reputation
http://www.art-design.uz
Categorized URL
- Phishing
High Risk
https://sitecheck.sucuri.net/results/art-design.uz
Free Website Malware and Security Scanner
--------------------------------------------------------------------------------
· SiteCheck Results
· Website Details
· Blacklist Status
Warning: Malicious Code Detected on This Website!
Website:
art-design.uz
Status:
Infected With Malware. Immediate Action is Required.
Web Trust:
Blacklisted (10 Blacklists Checked): Indicates that a major security company (such as Google, McAfee, Norton, etc) is blocking access to your website for security reasons. Please see our recommendation below to fix this issue and restore your traffic.
Scan
Result
Severity
Recommendation
WebsiteBlacklisting
Detected
Critical
CLEAN UP Clean Up & Remove Blacklisting
Malware
Detected
Critical
GET YOUR SITE CLEANED
ISSUE DETECTED
DEFINITION
INFECTED URL
Website Malware
MW:JS:GEN2?web.js.malware.fake_jquery.001
http://art-design.uz/about-us ( View Payload )
Website Malware
MW:JS:GEN2?web.js.malware.fake_jquery.001
http://art-design.uz/gallery ( View Payload )
Website Malware
MW:JS:GEN2?web.js.malware.fake_jquery.001
http://art-design.uz/uslugi ( View Payload )
Website Malware
MW:JS:GEN2?web.js.malware.fake_jquery.001
http://art-design.uz/akciya ( View Payload )
Website Malware
MW:JS:GEN2?web.js.malware.fake_jquery.001
http://art-design.uz/clients ( View Payload )
http://quttera.com/detailed_report/www.art-design.uz
Warning: Malware Detected On This Website!
Normalized URL:
http://www.art-design.uz:80
Submission date:
Fri Apr 8 16:16:56 2016
Server IP address:
62.209.133.18
Country:
Uzbekistan
Server:
nginx
Malicious files:
53
https://www.virustotal.com/en-gb/url/60cf806ef36cd83e6efeaf20dfea7a07cce066…
URL:
http://www.art-design.uz/
URL Scanner
Result
Quttera
Malicious site
Marilson
HEADER
Delivered-To: marilson.mapa(a)gmail.com
Received: by 10.182.44.36 with SMTP id b4csp19994obm;
Fri, 8 Apr 2016 06:53:45 -0700 (PDT)
X-Received: by 10.28.68.70 with SMTP id r67mr4134160wma.80.1460123625854;
Fri, 08 Apr 2016 06:53:45 -0700 (PDT)
Return-Path: <afdg(a)www.avvocatiforosmcv.com>
Received: from smtplqs-out29.aruba.it (smtplqs-out29.aruba.it. [62.149.158.69])
by mx.google.com with ESMTPS id wt3si13493944wjb.215.2016.04.08.06.53.45
for <marilson.mapa(a)gmail.com>
(version=TLS1 cipher=AES128-SHA bits=128/128);
Fri, 08 Apr 2016 06:53:45 -0700 (PDT)
Received-SPF: neutral (google.com: 62.149.158.69 is neither permitted nor denied by best guess record for domain of afdg(a)www.avvocatiforosmcv.com) client-ip=62.149.158.69;
Authentication-Results: mx.google.com;
spf=neutral (google.com: 62.149.158.69 is neither permitted nor denied by best guess record for domain of afdg(a)www.avvocatiforosmcv.com) smtp.mailfrom=afdg(a)www.avvocatiforosmcv.com
Received: from webxc49s04.ad.aruba.it ([62.149.145.90])
by smartcmd03.ad.aruba.it with bizsmtp
id fptl1s00n1xEgfS01ptlUt; Fri, 08 Apr 2016 15:53:45 +0200
Received: (qmail 13573 invoked by uid 19189154); 8 Apr 2016 13:53:45 -0000
To: marilson.mapa(a)gmail.com
Subject: Cadastramento
X-PHP-Originating-Script: 19189154:index.php
Date: Fri, 8 Apr 2016 15:53:45 +0200
From: Santander-GH <afdg(a)www.avvocatiforosmcv.com>
Message-ID: <0b5f83583bdb7ab60b5f53ef0173eb8b(a)www.futurochateau.it>
X-Priority: 3
X-Mailer: PHPMailer [version 1.73]
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Content-Type: text/html; charset="iso-8859-1"
TEXT – hiperlink removed - URL http:// www.art-design.uz/ rt.php
From: Santander-GH
Sent: Friday, April 08, 2016 10:53 AM
To: marilson.mapa(a)gmail.com
Subject: Cadastramento
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
From: Marilson
Sent: Friday, April 01, 2016 9:28 PM
To: abuse(a)staff.aruba.it ; abuse(a)cdmon.com
Cc: gmail-abuse(a)google.com ; mail-abuse(a)cert.br ; reportphishing(a)apwg.org
Subject: Conspiracy and crime
This must be the millionth phishing that I get of this provider - Aruba.it - managed by motherfuckers. Criminal psychopaths.
And gmail-google and Cert.br, partners of this criminal activity, do nothing. Psychopaths greedy. Mobsters.
https://www.virustotal.com/en-gb/url/1aedbf1bd01aa36211bb92a638922849bfcc78…
URL Scanner Result
Netcraft Malicious site
Fortinet Phishing site
Kaspersky Phishing site
-----Mensagem Original-----
From: toolbar(a)netcraft.com
Sent: Friday, April 01, 2016 5:36 PM
To: marilson.mapa
Subject: Thank you from Netcraft
The URL you recently submitted has been accepted as a phishing site by Netcraft.
URL: http:// www. hospital-macarena.com/ nf.php
Netcraft
As you all will keep practicing crime and protecting criminals without legal consequences, with your government pretending nothing see, to ensure the billing and the jobs of the natives, I suggest taking this phishing spam, to print and wipe your ass, incompetents of shit!
You are all part of the same gang of criminals, specialists in irritate and steal money from the planet's population, and with the knowledge and blessing of your governments and sociopaths security forces.
The lack of ethics, turpitude, the rascality, greed and lack of respect for people shows a rotten globalized economy where even the ISIS is a lesser evil, much smaller. Volkswagen and HSBC are the caricature of all of you. Fuck all of you!
Marilson
HEADER
Delivered-To: marilson.mapa(a)gmail.com
Received: by 10.182.44.36 with SMTP id b4csp375487obm;
Fri, 1 Apr 2016 10:41:00 -0700 (PDT)
X-Received: by 10.194.205.138 with SMTP id lg10mr6118887wjc.153.1459532459975;
Fri, 01 Apr 2016 10:40:59 -0700 (PDT)
Return-Path: <faze_postmaster(a)ristorantepizzeriacasanova.comsaiserramenti.com>
Received: from smtplqs-out29.aruba.it (smtplqs-out29.aruba.it. [62.149.158.69])
by mx.google.com with ESMTPS id v3si17901444wjf.31.2016.04.01.10.40.59
for <marilson.mapa(a)gmail.com>
(version=TLS1 cipher=AES128-SHA bits=128/128);
Fri, 01 Apr 2016 10:40:59 -0700 (PDT)
Received-SPF: neutral (google.com: 62.149.158.69 is neither permitted nor denied by best guess record for domain of faze_postmaster(a)ristorantepizzeriacasanova.comsaiserramenti.com) client-ip=62.149.158.69;
Authentication-Results: mx.google.com;
spf=neutral (google.com: 62.149.158.69 is neither permitted nor denied by best guess record for domain of faze_postmaster(a)ristorantepizzeriacasanova.comsaiserramenti.com) smtp.mailfrom=faze_postmaster(a)ristorantepizzeriacasanova.comsaiserramenti.com
Received: from webxc55s03.ad.aruba.it ([62.149.145.127])
by smartcmd03.ad.aruba.it with bizsmtp
id d5gz1s00w2l8Z9J015gzp0; Fri, 01 Apr 2016 19:40:59 +0200
Received: (qmail 47889 invoked by uid 19142460); 1 Apr 2016 17:40:59 -0000
To: marilson.mapa(a)gmail.com
Subject: Santander-NET
X-PHP-Originating-Script: 19142460:index.php
Date: Fri, 1 Apr 2016 19:40:59 +0200
From: "COMUNICADO." <faze_postmaster(a)ristorantepizzeriacasanova.comsaiserramenti.com>
Message-ID: <808a17e0f1497ac6c4edf17c37e9decb(a)www.asdjacquescousteau.com>
X-Priority: 3
X-Mailer: PHPMailer [version 1.73]
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Content-Type: text/html; charset="iso-8859-1"
TEXT URL http:// www. hospital-macarena.com/ nf.php
From: COMUNICADO.
Sent: Friday, April 01, 2016 2:40 PM
To: marilson.mapa(a)gmail.com
Subject: Santander-NET
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
From: Marilson
Sent: Wednesday, March 23, 2016 1:02 PM
To: abuse(a)staff.aruba.it ; info(a)colombiahosting.com.co
Cc: gmail-abuse(a)google.com ; mail-abuse(a)cert.br ; crime.internet(a)dpf.gov.br
Subject: Conspiracy and crime
Gentlemen,
You are practicing crime sending phishing - http:// zringenieriasa.com.co/ default.
This phishing website is owned by ColombiaHosting S.A.S.
VIRUSTOTAL: https://www.virustotal.com/en-gb/url/5529e29a93e1d37b3a77b29dfb6ec06808c5e2…
URL Scanner Result
CRDF Malicious site
Netcraft Malicious site
Opera Malicious site
Sophos Malicious site
Fortinet Phishing site
Kaspersky Phishing site
As you all will keep practicing crime and protecting criminals without legal consequences, with your government pretending nothing see, to ensure the billing and the jobs of the natives, I suggest taking this phishing spam, to print and wipe your ass, incompetents of shit!
So Aruba.it, I don’t care if the criminal is using your hostname and IP – smtplqs-out34.aruba.it IP 62.149.158.74 - to send scam. But, shame on you! What matters is who is hosting the phishing website practicing scam and stealing financial data from incautious people. You are all part of the same gang of criminals, specialists in irritate and steal money from the planet's population, and with the knowledge and blessing of your governments and sociopaths security forces.
The lack of ethics, turpitude, the rascality, greed and lack of respect for people shows a rotten globalized economy where even the ISIS is a lesser evil, much smaller. Volkswagen and HSBC are the caricature of all of you.
Marilson
HEADER
Delivered-To: marilson.mapa(a)gmail.com
Received: by 10.31.194.70 with SMTP id s67csp2289994vkf;
Tue, 22 Mar 2016 09:30:33 -0700 (PDT)
X-Received: by 10.28.99.6 with SMTP id x6mr22382468wmb.46.1458664233774;
Tue, 22 Mar 2016 09:30:33 -0700 (PDT)
Return-Path: <hosting.windows(a)aruba.it>
Received: from smtplqs-out34.aruba.it (smtplqs-out34.aruba.it. [62.149.158.74])
by mx.google.com with ESMTP id h12si19235152wme.92.2016.03.22.09.30.33
for <marilson.mapa(a)gmail.com>;
Tue, 22 Mar 2016 09:30:33 -0700 (PDT)
Received-SPF: pass (google.com: domain of hosting.windows(a)aruba.it designates 62.149.158.74 as permitted sender) client-ip=62.149.158.74;
Authentication-Results: mx.google.com;
spf=pass (google.com: domain of hosting.windows(a)aruba.it designates 62.149.158.74 as permitted sender) smtp.mailfrom=hosting.windows(a)aruba.it
Received: from websn1s056.aruba.it ([31.11.32.66])
by smartcmd04.ad.aruba.it with bizsmtp
id Z4WZ1s0041Rc5db014WZAP; Tue, 22 Mar 2016 17:30:33 +0100
Received: from websn1s056 ([127.0.0.1]) by websn1s056.aruba.it with Microsoft SMTPSVC(8.5.9600.16384);
Tue, 22 Mar 2016 17:30:32 +0100
Date: Tue, 22 Mar 2016 17:30:32 +0100
Subject: Prezado(a) marilson.mapa(a)gmail.com | Protocolo: [13448]
To: marilson.mapa(a)gmail.com
From: Suporte ltaú <post26432>
Reply-To:Suporte ltaú <post26432>
X-Mailer: Interspire5.2.14MIME-Version: 1.0
Content-type: text/html; charset=ISO-8859-1
Return-Path: hosting.windows(a)aruba.it
Message-ID: <WEBSN1S056qGngOZ2L30000f3af(a)websn1s056.aruba.it>
X-OriginalArrivalTime: 22 Mar 2016 16:30:32.0972 (UTC) FILETIME=[27C5D4C0:01D18458]
TEXT – URL http:// zringenieriasa.com.co/ default
From: post26432
Sent: Tuesday, March 22, 2016 1:30 PM
To: marilson.mapa(a)gmail.com
Subject: Prezado(a) marilson.mapa(a)gmail.com | Protocolo: [13448]
10th March 2016
