| Linux server.clickboxgo.com 3.10.0 #1 SMP Mon Sep 30 15:36:27 MSK 2024 x86_64 Path : /home/clickboxgo/mail/new/ |
| Current File : /home/clickboxgo/mail/new/1758624393.M256407P18210.server.clickboxgo.com,S=8846,W=8988 |
Return-Path: <[email protected]>
Delivered-To: [email protected]
Received: from server.clickboxgo.com
by server.clickboxgo.com with LMTP
id UMt7Dol60mgiRwAA2xCSNQ
(envelope-from <[email protected]>)
for <[email protected]>; Tue, 23 Sep 2025 06:46:33 -0400
Return-path: <[email protected]>
Envelope-to: [email protected]
Delivery-date: Tue, 23 Sep 2025 06:46:33 -0400
Received: from [171.247.200.203] (port=21982)
by server.clickboxgo.com with esmtp (Exim 4.98.1)
(envelope-from <[email protected]>)
id 1v10XX-000000004kZ-1HZY
for [email protected];
Tue, 23 Sep 2025 06:46:33 -0400
From: <[email protected]>
To: <[email protected]>
Date: 23 Sep 2025 23:10:49 +0600
Message-ID: <[email protected]>
MIME-Version: 1.0
Content-Type: text/plain;
charset="iso-8859-3"
Content-Transfer-Encoding: 8bit
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: Acub9chk3nocju85ub9chk3nocju85==
Content-Language: en
x-cr-hashedpuzzle: 2D4= 9chk 3noc ju85 ub9c hk3n ocju 85ub 9chk 3noc ju85 ub9c hk3n ocju 85ub 9chk;1;3nocju85ub9chk3nocju85ub9chk3nocju85ub9chk3nocju;Sosha1_v1;7;\{DB9AA3E6-DAE2-DF9F-DEE7-A29EA69BDB9A\};ZQB3AGUAZg9chk3nocju85ub9chk3nocju85ub9chk3nocju;23 Sep 2025 23:10:49 +0600;85ub9chk3nocju85
x-cr-puzzleid: \{DB9AA3E6-DAE2-DF9F-DEE7-A29EA69BDB9A\}
X-Spam-Status: Yes, score=41.7
X-Spam-Score: 417
X-Spam-Bar: +++++++++++++++++++++++++++++++++++++++++
X-Spam-Report: Spam detection software, running on the system "server.clickboxgo.com",
has identified this incoming email as possible spam. The original
message has been attached to this so you can view it or label
similar future email. If you have any questions, see
root\@localhost for details.
Content preview: Greetings! I have to share bad news with you. Approximately
few months ago I have gained access to your devices, which you use for internet
browsing. After that, I have started tracking your internet activities.
Content analysis details: (41.7 points, 5.0 required)
pts rule name description
---- ---------------------- --------------------------------------------------
5.0 BAYES_99 BODY: Bayes spam probability is 99 to 100%
[score: 1.0000]
1.0 BAYES_999 BODY: Bayes spam probability is 99.9 to 100%
[score: 1.0000]
0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The
query to Validity was blocked. See
https://knowledge.validity.com/hc/en-us/articles/20961730681243
for more information.
[171.247.200.203 listed in bl.score.senderscore.com]
0.0 RCVD_IN_VALIDITY_CERTIFIED_BLOCKED RBL: ADMINISTRATOR NOTICE:
The query to Validity was blocked. See
https://knowledge.validity.com/hc/en-us/articles/20961730681243
for more information.
[171.247.200.203 listed in sa-accredit.habeas.com]
1.3 RCVD_IN_BL_SPAMCOP_NET RBL: Received via a relay in
bl.spamcop.net
[Blocked - see <https://www.spamcop.net/bl.shtml?171.247.200.203>]
1.5 SPF_SOFTFAIL SPF: sender does not match SPF record (softfail)
1.9 DATE_IN_FUTURE_06_12 Date: is 6 to 12 hours after Received: date
4.0 MAILBABY_IXHASH BODY: iXhash found @
mailbaby.ixhash.interserver.net
1.8 PYZOR_CHECK Listed in Pyzor
(https://pyzor.readthedocs.io/en/latest/)
2.0 RDNS_NONE Delivered to internal network by a host with no rDNS
0.0 KAM_DMARC_STATUS Test Rule for DKIM or SPF Failure with Strict
Alignment
8.5 KAM_CRIM Extortion Email
1.5 KAM_DMARC_QUARANTINE DKIM has Failed or SPF has failed on the
message and the domain has a DMARC
quarantine policy
0.0 FSL_BULK_SIG Bulk signature with no Unsubscribe
0.5 PDS_BTC_ID FP reduced Bitcoin ID
0.0 TO_EQ_FM_DIRECT_MX To == From and direct-to-MX
3.5 BITCOIN_TOEQFM Bitcoin + To same as From
3.3 BITCOIN_SPAM_07 BitCoin spam pattern 07
1.7 BITCOIN_MALWARE BitCoin + malware bragging
2.8 DOS_OUTLOOK_TO_MX Delivered direct to MX with Outlook headers
0.0 MALWARE_NORDNS Malware bragging + no rDNS
1.2 BITCOIN_ONAN BitCoin + [censored]
X-Spam-Flag: YES
Subject: ***SPAM*** Payment from your account.
Greetings!
I have to share bad news with you.
Approximately few months ago I have gained access to your devices, which you use for internet browsing.
After that, I have started tracking your internet activities.
Here is the sequence of events:
Some time ago I have purchased access to email accounts from hackers (nowadays, it is quite simple to purchase such thing online).
Obviously, I have easily managed to log in to your email account ([email protected]).
One week later, I have already installed Trojan virus to Operating Systems of all the devices that you use to access your email.
In fact, it was not really hard at all (since you were following the links from your inbox emails).
All ingenious is simple. =)
This software provides me with access to all the controllers of your devices (e.g., your microphone, video camera and keyboard).
I have downloaded all your information, data, photos, web browsing history to my servers.
I have access to all your messengers, social networks, emails, chat history and contacts list.
My virus continuously refreshes the signatures (it is driver-based), and hence remains invisible for antivirus software.
Likewise, I guess by now you understand why I have stayed undetected until this letter...
While gathering information about you, I have discovered that you are a big fan of adult websites.
You really love visiting porn websites and watching exciting videos, while enduring an enormous amount of pleasure.
Well, I have managed to record a number of your dirty scenes and montaged a few videos, which show the way you masturbate and reach orgasms.
If you have doubts, I can make a few clicks of my mouse and all your videos will be shared to your friends, colleagues and relatives.
I have also no issue at all to make them available for public access.
I guess, you really don't want that to happen, considering the specificity of the videos you like to watch, (you perfectly know what I mean) it will cause a true catastrophe for you.
Let's settle it this way:
You transfer $1550 USD to me (in bitcoin equivalent according to the exchange rate at the moment of funds transfer), and once the transfer is received, I will delete all this dirty stuff right away.
After that we will forget about each other. I also promise to deactivate and delete all the harmful software from your devices. Trust me, I keep my word.
This is a fair deal and the price is quite low, considering that I have been checking out your profile and traffic for some time by now.
In case, if you don't know how to purchase and transfer the bitcoins - you can use any modern search engine.
Here is my bitcoin wallet: 12CXxgEyFnbyqyJCDXpqsa7BnrCrbzYbsf
You have less than 48 hours from the moment you opened this email (precisely 2 days).
Things you need to avoid from doing:
*Do not reply me (I have created this email inside your inbox and generated the return address).
*Do not try to contact police and other security services. In addition, forget about telling this to you friends. If I discover that (as you can see, it is really not so hard, considering that I control all your systems) - your video will be shared to public right away.
*Don't try to find me - it is absolutely pointless. All the cryptocurrency transactions are anonymous.
*Don't try to reinstall the OS on your devices or throw them away. It is pointless as well, since all the videos have already been saved at remote servers.
Things you don't need to worry about:
*That I won't be able to receive your funds transfer.
- Don't worry, I will see it right away, once you complete the transfer, since I continuously track all your activities (my trojan virus has got a remote-control feature, something like TeamViewer).
*That I will share your videos anyway after you complete the funds transfer.
- Trust me, I have no point to continue creating troubles in your life. If I really wanted that, I would do it long time ago!
Everything will be done in a fair manner!
One more thing... Don't get caught in similar kind of situations anymore in future!
My advice - keep changing all your passwords on a frequent basis