| Linux server.clickboxgo.com 3.10.0 #1 SMP Mon Sep 30 15:36:27 MSK 2024 x86_64 Path : /home/clickboxgo/mail/new/ |
| Current File : /home/clickboxgo/mail/new/1733616526.M435773P21169.server.clickboxgo.com,S=5900,W=6012 |
Return-Path: <[email protected]>
Delivered-To: [email protected]
Received: from server.clickboxgo.com
by server.clickboxgo.com with LMTP
id 17UyGY7jVGexUgAA2xCSNQ
(envelope-from <[email protected]>)
for <[email protected]>; Sat, 07 Dec 2024 19:08:46 -0500
Return-path: <[email protected]>
Envelope-to: [email protected]
Delivery-date: Sat, 07 Dec 2024 19:08:46 -0500
Received: from [60.191.133.236] (port=55449)
by server.clickboxgo.com with esmtp (Exim 4.96.2)
(envelope-from <[email protected]>)
id 1tK4iU-0005Uy-2Y
for [email protected];
Sat, 07 Dec 2024 19:08:46 -0500
Received: from riaeufz ([57.113.246.43]) by 73929.com with MailEnable ESMTP; Sun, 8 Dec 2024 08:08:40 +0800
Received: (qmail 52175 invoked by uid 521); 8 Dec 2024 08:08:38 +0800
From: John Blue <[email protected]>
To: [email protected]
Date: Sun, 8 Dec 2024 08:08:40 +0800
Message-ID: <[email protected]>
Mime-Version: 1.0
Content-type: text/plain;
X-Spam-Status: Yes, score=12.3
X-Spam-Score: 123
X-Spam-Bar: ++++++++++++
X-Spam-Report: Spam detection software, running on the system "server.clickboxgo.com",
has identified this incoming email as possible spam. The original
message has been attached to this so you can view it or label
similar future email. If you have any questions, see
root\@localhost for details.
Content preview: Hi, today there are sadly some bad news for you. Your device
was infected with my private malware, your browser wasn't updated / patched,
in such case it's enough to just visit some website where my iframe is placed
to get automatically infected, if [...]
Content analysis details: (12.3 points, 5.0 required)
pts rule name description
---- ---------------------- --------------------------------------------------
0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was
blocked. See
http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block
for more information.
[URIs: invity.io]
0.0 RCVD_IN_VALIDITY_CERTIFIED_BLOCKED RBL: ADMINISTRATOR NOTICE:
The query to Validity was blocked. See
https://knowledge.validity.com/hc/en-us/articles/20961730681243
for more information.
[60.191.133.236 listed in sa-accredit.habeas.com]
0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The
query to Validity was blocked. See
https://knowledge.validity.com/hc/en-us/articles/20961730681243
for more information.
[60.191.133.236 listed in bl.score.senderscore.com]
1.5 SPF_SOFTFAIL SPF: sender does not match SPF record (softfail)
4.0 MAILBABY_IXHASH BODY: iXhash found @
mailbaby.ixhash.interserver.net
1.0 MAILBABY_GENERIC_IXHASH BODY: iXhash found @
mailbaby.ixhashgeneric.interserver.net
2.0 PYZOR_CHECK Listed in Pyzor
(https://pyzor.readthedocs.io/en/latest/)
0.2 KAM_DMARC_NONE DKIM has Failed or SPF has failed on the message
and the domain has no DMARC policy
0.0 KAM_DMARC_STATUS Test Rule for DKIM or SPF Failure with Strict
Alignment
2.0 RDNS_NONE Delivered to internal network by a host with no rDNS
0.0 KAM_SHORT Use of a URL Shortener for very short URL
0.0 FSL_BULK_SIG Bulk signature with no Unsubscribe
1.0 BITCOIN_EXTORT_01 Extortion spam, pay via BitCoin
0.5 PDS_BTC_ID FP reduced Bitcoin ID
X-Spam-Flag: YES
Subject: ***SPAM*** You got hacked and recorded!
Hi, today there are sadly some bad news for you.
Your device was infected with my private malware, your browser wasn't updated / patched, in such case it's enough to just visit some website where my iframe is placed to get automatically infected, if you want to find out more, Google: Drive-by exploit.
My malware gave me full access to all your accounts, full control over your device and it also was possible to spy on you over your cam.
If you think this is some bad joke, no, I know your password: rcEgEhSn8Mwc
I collected all your private data and I RECORDED YOU (through your cam) SATISFYING YOURSELF!
After that I removed my malware to not leave any traces and this email was sent from some hacked server.
I can publish the video of you and all your private data on the whole web, the darknet, social networks, over email and send everything to all your contacts.
You can stop me and only I can help you out in this situation.
The only way to stop me, is to pay exactly $1800 in Bitcoin (BTC).
It's a very good offer, compared to all that horrible shit that will happen if I publish everything.
You can easily buy Bitcoin (BTC) here:
https://cex.io/buy-bitcoins https://nexo.com/buy-crypto/bitcoin-btc https://bitpay.com/buy-bitcoin/?crypto=BTC https://paybis.com/ https://invity.io/buy-crypto
You can send the Bitcoin (BTC) directly to my wallet, or install the free software: Atomicwallet, or: Exodus wallet, then receive and send to mine.
My Bitcoin (BTC) wallet is: 1K67dnYSuzJEKQbGWxkPoDvbzfHLF3Lzxs
Yes, that's how the wallet / address looks like, copy and paste it, it's (cAsE-sEnSEtiVE).
I give you 3 days time to pay.
As I got access to this email account, I will know if this email has already been read.
After receiving the payment, I will remove everything and you can life your live in peace like before, don't worry, I keep my promise!
Next time make sure that your device has the newsest security updates.
ClientMailID: 5217553