The + using
the following display names at various domains:
Subject:(contains
one of the following)
say helo to
my litl friend
click me baby,
one more time
hello
error
status
test
report
delivery failed
Message could
not be delivered
Mail System
Error - Returned Mail
Delivery reports
about your e-mail
Returned mail:
see transcript for details
Returned mail:
Data format error
Body:
The message body will be as follows, where one of each phrase/word in
brackets will appear:
Dear user {[To
address of mail]|of [domain of To address]},{
{{M|m}ail {system|server} administrator|administration} of [domain
of To
address] would like to {inform you{ that{:|,}|}|let you know {that|the
following}{.|:|,}}|||||}
{We have {detected|found|received reports} that y|Y}our {e{-|}mail
|}account
{has been|was} used to send a {large|huge} amount of {{unsolicited{
commercial|}|junk} e{-|}mail|spam}{ messages|} during {this|the
{last|recent}} week.
{We suspect that|Probably,|Most likely|Obviously,} your computer {had
been|was} {compromised|infected{ by a recent v{iru}s|}} and now
{run|contain}s a {trojan{ed|}|hidden} proxy server.
{Please|We recommend {that you|you to}} follow {our |the |}instruction{s|}
{in the {attachment|attached {text |}file} |}in order to keep your
computer
safe.
{{Virtually|Sincerely} yours|Best {wishe|regard}s|Have a nice day},
{[domain of To address] {user |technical |}support team.|The [domain
of To
address] {support |}team.}
{The|This|Your}
message was{ undeliverable| not delivered} due to
the following reason{(s)|}:
Your message {was not|could not be} delivered because the destination
{computer|server} was
{not |un}reachable within the allowed queue period. The amount of
time
a message is queued before it is returned depends on local configura-
tion parameters.
Most likely there is a network problem that prevented delivery, but
it is also possible that the computer is turned off, or does not
have a mail system running right now.
Your message
{was not|could not be} delivered within [random number]
days:
{{{Mail s|S}erver}|Host} [host used to send mail] is not responding.
The following recipients {did|could} not receive this message:
<[To address of mail]>
Please reply to postmaster@{[domain of From address]|[domain of To
address]}
if you feel this message to be in error.
The original message was received at [current time]{
| }from {[domain of From address] [[host used to send mail]]|{[host
used to
send mail]|[[host used to send mail]]}}
----- The following addresses had permanent fatal errors -----
{<[To address of mail]>|[To address of mail]}
{----- Transcript of {the ||}session follows -----
... while talking to {host |{mail |}server ||||}{[domain of To
address].|[host used to send mail]}:
{>>> MAIL F{rom|ROM}:[From address of mail]
<<< 50$d {[From address of mail]... |}{Refused|{Access
d|D}enied|{User|Domain|Address} {unknown|blacklisted}}|554 <[To
address of
mail]>... {Mail quota exceeded|Message is too large}
554 <[To address of mail]>... Service unavailable|550 5.1.2
<[To address of
mail]>... Host unknown (Name server: host not found)|554 {5.0.0
|}Service
unavailable; [[host used to send mail]] blocked using
{relays.osirusoft.com|bl.spamcop.net}{, reason: Blocked|}
Session aborted{, reason: lost connection|}|>>> RCPT To:<[To
address of
mail]>
<<< 550 {MAILBOX NOT FOUND|5.1.1 <[To address of mail]>...
{User
unknown|Invalid recipient|Not known here}}|>>> DATA
{<<< 400-aturner; %MAIL-E-OPENOUT, error opening !AS as output
|}{<<< 400-aturner; -RMS-E-CRE, ACP file create failed
|}{<<< 400-aturner; -SYSTEM-F-EXDISKQUOTA, disk quota exceeded
|}<<< 400}|}
The original message was included as attachment
