Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Delivered-To: xxxxxxxxxxxxxxxxxxx@gmail.com
- Received: by 2002:a2e:2d12:0:0:0:0:0 with SMTP id t18-v6csp4372968ljt;
- Tue, 13 Nov 2018 02:36:02 -0800 (PST)
- X-Google-Smtp-Source: AJdET5dvnXlOEWzERwkfIci6rG5SpS1Y+E0Io82MPuTiVgVYUSmRSwqoHYY+rOcPH4mhDPc0Ev/H
- X-Received: by 2002:a63:cb4a:: with SMTP id m10mr4063870pgi.105.1542105362581;
- Tue, 13 Nov 2018 02:36:02 -0800 (PST)
- ARC-Seal: i=1; a=rsa-sha256; t=1542105362; cv=none;
- d=google.com; s=arc-20160816;
- b=EsxWVjbOo7j3kkvb5LTjahuP7YWje8NPoG6pTWBoMI9qboDVipG/a8MssMpkzloC7a
- 44qbugHJyHqEZ5SQyNdG2x1maIPSs7U0l6KfSxg865kTcEhcb6vqGgPw6Ld0iLWI4AyF
- mPOGNaqIdDB5XMDX8uIyWDYKGmxuR873pcxPnrByybl9WDiiYRdYUGVIv6iMTo1tLWmk
- i6emR5hUkttL4FYcpLW3LHwpczYVlLLUGVsL1ZEPXMu+QguIQhv94YJ1D0gnOVUUM65S
- fNhL+kTDM5VctjCDJ7y8jzPqyZjBF1I1vtn4cd5p2/ceqRd/HHDsNnT2YmVAhQ5DrFBy
- P4gQ==
- ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
- h=content-language:thread-index:content-transfer-encoding
- :mime-version:message-id:date:subject:to:from;
- bh=71D5eYsL48KxEjyTB8j5ebKOxCVaNEaPrmyiKpTiSyg=;
- b=Ivo6oiJjiuiPWwoTIzzdiX6fo9eYmAwpxvAui27+yNMO0cJIw5hGszD806XrMPTuN3
- hiyFAv39pALeQ4yhTVUYTiXRMkNRR1giGPiYTY8se5wAYcqx4aaEOIqkLi09UQv9Sdq8
- NQzQzEFNfZEk1auA3ljoBvcB2Ria2ncn5gVFFgPS5ZfegaqpXImgwk1J2sY9Q0SgBbuP
- xw0Y2BacgfFsLLyRbYcCXsaBjxWkNRPVYr3KKZsP9u9N8UPhBA9uiJamL32o83DjeyB0
- 6QwPqrUq8fK11lOEhBE2BVLLGFCDpDw2HIUoAkkvwWuTuKBaS7aw/LKSzrcPARVSgfQE
- cfSA==
- ARC-Authentication-Results: i=1; mx.google.com;
- spf=softfail (google.com: domain of transitioning xxxxxxxxxxxxxxxxxxx@gmail.com does not designate 41.218.111.158 as permitted sender) smtp.mailfrom=xxxxxxxxxxxxxxxxxxx@gmail.com;
- dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com
- Return-Path: <xxxxxxxxxxxxxxxxxxx@gmail.com>
- Received: from sanzi-nossacasa-loja2-malange.cust.ao.afrisp.net ([41.218.111.158])
- by mx.google.com with ESMTP id g69-v6si20402843plb.400.2018.11.13.02.35.59
- for <xxxxxxxxxxxxxxxxxxx@gmail.com>;
- Tue, 13 Nov 2018 02:36:02 -0800 (PST)
- Received-SPF: softfail (google.com: domain of transitioning xxxxxxxxxxxxxxxxxxx@gmail.com does not designate 41.218.111.158 as permitted sender) client-ip=41.218.111.158;
- Authentication-Results: mx.google.com;
- spf=softfail (google.com: domain of transitioning xxxxxxxxxxxxxxxxxxx@gmail.com does not designate 41.218.111.158 as permitted sender) smtp.mailfrom=xxxxxxxxxxxxxxxxxxx@gmail.com;
- dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com
- From: <xxxxxxxxxxxxxxxxxxx@gmail.com>
- To: xxxxxxxxxxxxxxxxxxxgmai <xxxxxxxxxxxxxxxxxxx@gmail.com>
- Subject: Account Issue. Changed password. (your password:xxxxxxxxxxxxxxxxxxxgmai)
- Date: 13 Nov 2018 11:29:52 +0000
- Message-ID: <002a01d47b45$072790d5$6fe4f68e$@gmail.com>
- MIME-Version: 1.0
- Content-Type: text/plain; charset="ibm852"
- Content-Transfer-Encoding: 8bit
- X-Mailer: Microsoft Outlook 15.0
- Thread-Index: Acvs5bjhyunmf6l4vs5bjhyunmf6l4==
- Content-Language: en-us
- Dear user of gmail.com!
- I am a spyware software developer.
- Your account has been hacked by me in the summer of 2018.
- I understand that it is hard to believe, but here is my evidence:
- - I sent you this email from your account.
- - Password from account xxxxxxxxxxxxxxxxxxx@gmail.com: xxxxxxxxxxxxxxxxxxxgmai (on moment of hack).
- The hacking was carried out using a hardware vulnerability through which you went online (Cisco router, vulnerability CVE-2018-0296).
- I went around the security system in the router, installed an exploit there.
- When you went online, my exploit downloaded my malicious code (rootkit) to your device.
- This is driver software, I constantly updated it, so your antivirus is silent all time.
- Since then I have been following you (I can connect to your device via the VNC protocol).
- That is, I can see absolutely everything that you do, view and download your files and any data to yourself.
- I also have access to the camera on your device, and I periodically take photos and videos with you.
- At the moment, I have harvested a solid dirt... on you...
- I saved all your email and chats from your messangers. I also saved the entire history of the sites you visit.
- I note that it is useless to change the passwords. My malware update passwords from your accounts every times.
- I know what you like hard funs (adult sites).
- Oh, yes .. I'm know your secret life, which you are hiding from everyone.
- Oh my God, what are your like... I saw THIS ... Oh, you dirty naughty person ... :)
- I took photos and videos of your most passionate funs with adult content, and synchronized them in real time with the image of your camera.
- Believe it turned out very high quality!
- So, to the business!
- I'm sure you don't want to show these files and visiting history to all your contacts.
- Transfer $838 to my Bitcoin cryptocurrency wallet: 1ARbihuSkEAojNHgxsgFVKjTJDHXuimB8
- Just copy and paste the wallet number when transferring.
- If you do not know how to do this - ask Google.
- My system automatically recognizes the translation.
- As soon as the specified amount is received, all your data will be destroyed from my server, and the rootkit will be automatically removed from your system.
- Do not worry, I really will delete everything, since I am 'working' with many people who have fallen into your position.
- You will only have to inform your provider about the vulnerabilities in the router so that other hackers will not use it.
- Since opening this letter you have 48 hours.
- If funds not will be received, after the specified time has elapsed, the disk of your device will be formatted,
- and from my server will automatically send email and sms to all your contacts with compromising material.
- I advise you to remain prudent and not engage in nonsense (all files on my server).
- Good luck!
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement