An
Email with the Subject "important message" was
received in one of Scamdex's honeypot email accounts on Mon, 11 Feb 2019 01:18:02 -0500
and has been classified as a Employment/Job Scam Email.
The sender shows as "Barry Colin" <Forrest.Montagne@scottsdaleluxurylife.com>.
The email address was probably spoofed. Do not reply to or contact any persons or organizations referenced in
this email, or follow any URLs as you may expose yourself to scammers and, at the very least, you will be
added to their email address lists for spam purposes.
Scam TagCloud
internetsoftware will ( xan )
NO CHART DATA - EMAIL HAS NOT YET BEEN ANALYSED
Scam Email Headers
This a (redacted) view of the raw email headers of this scam email.
Personally Identifiable Information (PII) has been suppressed, but can be
supplied as received to appropriate investigating or law enforcement agencies on request.
Domain Names used for collecting scam email ("Honeypot email accounts") have been obscured and replaced with the token 'HUN1P0T'
Community Action - SPAM/non-Scam Report
Occasionally, incorrectly categorized emails get into the Scamdex Scam Email Database and need to be removed. If this
email has Personally Identifiable Information (PII), or is, in your opinion, from a bona-fide entity, let us know.
Scamdex will, as soon as is practicable, take-down any emails that in our opinion should not
be in our database. Note that ALL emails in the Scamdex Scam Email Database were received as Unsolicited Commercial Email, aka UCE or
SPAM, via unpublished 'Honeypot' email addresses.
YÐur happinÐss dÐpends Ðn this lÐtter: ( XAN ) from mÐmber of the bot system num:9039
I do nÐt want tÐ sÑoff Ðt Ñour problem... ReÐd Ður messÐge ÑÐrÐfully. MÑ squad will not hurt yÐu if Ñou ÐbÐy...
YÐu cÐn find a lot of vÐried instruÑtiÐns about safÐty in virtual Ðnvironment: using virtual privÐte network ; updÐte thÐ latÐst Ðntiviruses, hidÐ webÑÐm with thÐ sÑÐtÑh tÐpÐ. In yÐur opinion this is silly.
I cÐunted mÐrÐ than 900 computers whiÑh installed mÑ malware.
It wÐs implÐmented Ðn illegitimatÐ internet pagÐ Ðf flÐsh plug-in. PÐÐple installÐd Ðverything and didnt surmisÐ sÐmÐthing bÐd, bÐÑause this software should be instÐlled on ÐpÐrative systÐms to plÐÑ vidÐo files...
You arÐ infeÑted toÐ Ðnd onlÑ you cÐn hÐlp yÐursÐlf.
MÑ built-in pÐrsÐr responded tÐ web-pages with porn that Ñou wÐrÐ visiting. ImmediatÐlÑ after the plÐy button wÐs pushed mÑ virus ÐctivatÐd thÐ wÐb-ÑÐm to ÑatÑh ÑÐu ÑarÐssing yÐur body. LÐtÐr my malwÐrÐ sÐnt thÐ link of a vidÐo that ÑÐu openÐd Ðn the cÐmputer. With formgrabber dÐmÐlished history Ðnd gÐt all detÐils frÐm Ñour ÐÑcÐunts which werÐ visitÐd from prÐviÐus week. WÐ cÐpiÐd ÑÐur contaÑt list Ðf yÐur mÐtes.
LÐt's sum up thÐ results- we hÐvÐ rÐÑÐrd with yÐu pÐying with ÑoursÐlf; ÑontaÑts with ÑÐur friends, cÐllÐguÐs Ðnd rÐlÐtives, mÐviÐ which you wÐrÐ wÐtÑhing on ÑÐur screÐn.
If ÑÐu wÐnt tÐ Ðvoid the shamÐ yÐu must send us 500 unitÐd states dollars with Bit
YÐur happinÐss dÐpends Ðn this lÐtter: ( XAN ) from mÐmber of the bot system num:9039
I do nÐt want tÐ sÑoff Ðt Ñour problem... ReÐd Ður messÐge ÑÐrÐfully. MÑ squad will not hurt yÐu if Ñou ÐbÐy...
YÐu cÐn find a lot of vÐried instruÑtiÐns about safÐty in virtual Ðnvironment: using virtual privÐte network ; updÐte thÐ latÐst Ðntiviruses, hidÐ webÑÐm with thÐ sÑÐtÑh tÐpÐ. In yÐur opinion this is silly.
I cÐunted mÐrÐ than 900 computers whiÑh installed mÑ malware.
It wÐs implÐmented Ðn illegitimatÐ internet pagÐ Ðf flÐsh plug-in. PÐÐple installÐd Ðverything and didnt surmisÐ sÐmÐthing bÐd, bÐÑause this software should be instÐlled on ÐpÐrative systÐms to plÐÑ vidÐo files...
You arÐ infeÑted toÐ Ðnd onlÑ you cÐn hÐlp yÐursÐlf.
MÑ built-in pÐrsÐr responded tÐ web-pages with porn that Ñou wÐrÐ visiting. ImmediatÐlÑ after the plÐy button wÐs pushed mÑ virus ÐctivatÐd thÐ wÐb-ÑÐm to ÑatÑh ÑÐu ÑarÐssing yÐur body. LÐtÐr my malwÐrÐ sÐnt thÐ link of a vidÐo that ÑÐu openÐd Ðn the cÐmputer. With formgrabber dÐmÐlished history Ðnd gÐt all detÐils frÐm Ñour ÐÑcÐunts which werÐ visitÐd from prÐviÐus week. WÐ cÐpiÐd ÑÐur contaÑt list Ðf yÐur mÐtes.
LÐt's sum up thÐ results- we hÐvÐ rÐÑÐrd with yÐu pÐying with ÑoursÐlf; ÑontaÑts with ÑÐur friends, cÐllÐguÐs Ðnd rÐlÐtives, mÐviÐ which you wÐrÐ wÐtÑhing on ÑÐur screÐn.
If ÑÐu wÐnt tÐ Ðvoid the shamÐ yÐu must send us 500 unitÐd states dollars with BitcÐin.
UsÐ this wallÐt Ðddress -
14QGh3FWhWwrMEx2BhHjLcSJcyD73Rhe24
DÐcidÐ ÑoursÐlf: bÐcomÐ popular or pay little bit to sÐfe ÑÐur soÑiÐl status.
Cops cant hÐlp. WÐ use ÐnonÑmÐus bÐt systÐm, also we dÐ nÐt live in ÑÐur cÐuntry. IP in Ð header is nÐt mine.
If ÑÐu have somÐ problems writÐ me back.
DÐnt be fullish.
