================================================================
This example incident report is void - for testing purposes only
================================================================

From e-citizen@hisdomain.de Fri Oct 12 09:31:05 2001
Date: 13 Sep 2001 23:19:24 -0000
From: e-citizen@hisdomain.de
To: contact@ourdomain.pl
Subject: 10.1.1.2 - Code Red Virus detected
Resent-Date: Fri, 14 Sep 2001 10:56:16 +0200 (MET DST)
Resent-From: contact <contact@ourdomain.pl>
Resent-To: Abuse Team <abuse@ourdomain.pl>
Resent-Subject: 10.1.1.2 - Code Red Virus detected

Automated message,
you don't have to reply to this email.

Your system with the IP number 10.1.1.2 seems to be infected
with the Code Red virus.

For more information see http://www.incidents.org/react/code_redII.php

Please fix the problem
or inform a person who is responsible for that machine to do so.

>From our web server logs (Port 80):
10.1.1.2 - - [13/Sep/2001:18:11:21 +0200] "GET /default.ida?XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX%u9090%u6858%ucbd3%u7801%u9090%u6858%ucbd3%u7801%u9090%u6858%ucbd3%u7801%u9090%u9090%u8190%u00c3%u0003%u8b00%u531b%u53ff%u0078%u0000%u00=a  HTTP/1.0" 404 11732 "-" "-"