Come la maionese.
Ho appena ricevuto una mail di phishing con vittima la Banca di Roma.
Però il contenuto della missiva era alquanto strano
[Total] Servers=38 [Server0] Name=72.3.169.180 Port=25 UserID=User BccSize=20 UserName=webmaster Password=webmaster AuthType=0 [Server1] Name=72.3.189.100 Port=25 UserID=User BccSize=20 UserName=test Password=test AuthType=0 [Server2] Name=72.3.196.243 Port=25 UserID=User BccSize=20 UserName=kate Password=123456 AuthType=0 [Server3] Name=72.3.210.227 Port=25 UserID=User BccSize=20 UserName=william Password=william AuthType=0 [Server4] Name=72.3.222.131 Port=25 UserID=User BccSize=20 UserName=webmaster Password=password AuthType=0 [Server5] Name=72.3.224.24 Port=25 UserID=User BccSize=20 UserName=support Password=password AuthType=0 [Server6] Name=72.3.227.152 Port=25 UserID=User BccSize=20 UserName=jessica Password=12345 AuthType=0 [Server7] Name=67.18.66.147 Port=25 UserID=User BccSize=20 UserName=smith Password=password AuthType=0 [Server8] Name=72.3.235.170 Port=25 UserID=User BccSize=20 UserName=support Password=password AuthType=0 [Server9] Name=72.3.241.178 Port=25 UserID=User BccSize=20 UserName=admin Password=password AuthType=0 [Server10] Name=72.3.245.11 Port=25 UserID=User BccSize=20 UserName=support Password=support123 AuthType=0 [Server11] Name=72.3.249.161 Port=25 UserID=User BccSize=20 UserName=test Password=test AuthType=0 [Server12] Name=67.18.104.14 Port=25 UserID=User BccSize=20 UserName=webmaster Password=password AuthType=0 [Server13] Name=72.4.168.249 Port=25 UserID=User BccSize=20 UserName=test Password=test AuthType=0 [Server14] Name=72.5.247.13 Port=25 UserID=User BccSize=20 UserName=mike Password=mike AuthType=0 [Server15] Name=67.15.14.27 Port=25 UserID=User BccSize=20 UserName=test Password=12345 AuthType=0 [Server16] Name=67.15.73.150 Port=25 UserID=User BccSize=20 UserName=mike Password=mike AuthType=0 [Server17] Name=67.15.8.46 Port=25 UserID=User BccSize=20 UserName=douglas Password=123456 AuthType=0 [Server18] Name=72.1.213.44 Port=25 UserID=User BccSize=20 UserName=test Password=test AuthType=0 [Server19] Name=72.3.133.46 Port=25 UserID=User BccSize=20 UserName=mike Password=admin AuthType=0 [Server20] Name=72.3.136.106 Port=25 UserID=User BccSize=20 UserName=root Password=password AuthType=0 [Server21] Name=217.7.62.82 Port=25 UserID=User BccSize=20 UserName=test Password=test AuthType=0 [Server22] Name=217.40.22.48 Port=25 UserID=User BccSize=20 UserName=test Password=test AuthType=0 [Server23] Name=217.41.37.7 Port=25 UserID=User BccSize=20 UserName=test Password=test AuthType=0 [Server24] Name=217.41.41.184 Port=25 UserID=User BccSize=20 UserName=test Password=test AuthType=0 [Server25] Name=217.41.54.219 Port=25 UserID=User BccSize=20 UserName=test Password=test AuthType=0 [Server26] Name=217.45.3.226 Port=25 UserID=User BccSize=20 UserName=info Password=info AuthType=0 [Server27] Name=217.58.104.200 Port=25 UserID=User BccSize=20 UserName=info Password=123456 AuthType=0 [Server28] Name=217.6.142.91 Port=25 UserID=User BccSize=20 UserName=test Password=123456 AuthType=0 [Server29] Name=217.6.245.250 Port=25 UserID=User BccSize=20 UserName=info Password=info AuthType=0 [Server30] Name=217.6.33.187 Port=25 UserID=User BccSize=20 UserName=test Password=test123 AuthType=0 [Server31] Name=217.66.85.115 Port=25 UserID=User BccSize=20 UserName=sales Password=sales AuthType=0 [Server32] Name=217.67.119.47 Port=25 UserID=User BccSize=20 UserName=test Password=test AuthType=0 [Server33] Name=217.67.239.18 Port=25 UserID=User BccSize=20 UserName=info Password=123 AuthType=0 [Server34] Name=217.68.23.132 Port=25 UserID=User BccSize=20 UserName=sales Password=sales AuthType=0 [Server35] Name=217.6.96.204 Port=25 UserID=User BccSize=20 UserName=info Password=info AuthType=0 [Server36] Name=217.70.33.59 Port=25 UserID=User BccSize=20 UserName=info Password=info123 AuthType=0 [Server37] Name=217.7.198.53 Port=25 UserID=User BccSize=20 UserName=info Password=123 AuthType=0
Immagino che i name siano i server da cui ha tentato di uscire. Se qualcuno conosce questi IP magari può far fare un controllo ai relativi amministratori.