---------- Forwarded message ----------
From: Andrey Kopelev <ansvet_99@yahoo.com>
Date: Wednesday, January 5, 2022
Subject: Fraud emails -illegal money transaction Fwd: re
To: spam@fightspam.gc.ca, reportphishing@antiphishing.org, reportphishing@apwg.org, phishing-report@us-cert.gov, fraudreporting@unaids.org, contact@cyber.gc.ca, abuse@contactprivacy.com, emailscamalerts@gmail.com, network-abuse@google.com, arin-contact@google.com, google-abuse-bounces-reports@devnull.spamcop.net, google-cloud-compliance@google.com, security@google.com, dns-admin@google.com, david@davidstrauss.net, abuse@pantheon.io, comarc96@gmail.com, abusecomplaints@markmonitor.com, ccops@markmonitor.com, hostmaster@markmonitor.com
This person bombards me with fraud/malicious emails offering illegal money transaction. This person IP address 209.85.166.41 has already sent me identical email to my other email address. It looks like he is searching spam lists for a possible victim to deceive.
My emails address is not officially listed anywhere. The only way this person could get it is from the spam list. This person is a spammer/scammer/hacker. Please block his accounts. Below is the full header, his original email, abuse reports and the example messages sent from this IP address.
Reply email: roslina0za@gmail.com
X-Originating-Ip: [209.85.166.41]
209.85.166.41 listed in dnsbl.sorbs.net ( 1 )
| Geographic Location | |
| First Received From | approximately 2 years, 8 months, 2 weeks ago |
| Last Received From | within 1 week |
| Number Received | 526 email(s) sent from this IP |
| Dictionary Attacks | 4 email(s) sent from this IP |
| First Received From | approximately 4 months, 4 weeks ago |
| Last Received From | within 2 months, 2 weeks |
| Example Messages Sent From |
| Subject: We make packing bags IN China |
| Subject: We make packing bags IN China |
| Subject: We make packing bags IN China |
| Subject: We make packing bags IN China |
| Subject: We make packing bags IN China |
| Subject: We make packing bags IN China |
| Subject: We make packing bags IN China |
| Subject: We make packing bags IN China |
| Subject: We make packing bags IN China |
| Subject: We make packing bags IN China |
| Subject: We make packing bags IN China |
| Subject: leading plastic injection mould makers & mouldin |
| Subject: leading plastic injection mould makers & mouldin |
| Subject: leading plastic injection mould makers & mouldin |
| Subject: leading plastic injection mould makers & mouldin |
| Subject: leading plastic injection mould makers & moulding |
| Subject: leading plastic injection mould makers & moulding |
| Subject: We Make packing bags in China |
| Subject: We Make packing bags in China |
| Subject: We Make packing bags in China |
| Subject: We Make packing bags in China |
| Subject: We Make packing bags in China |
| Subject: We Make packing bags in China |
| Subject: We Make packing bags in China |
| Subject: We Make packing bags in China |
| Example User Names Used By |
| User-name: richard |
| User-name: giganticfaucette |
| User-name: arjory.d.kratt |
| User-name: andis735 |
Roslinawati Zainal <comarc96@gmail.com>
re
X-Ymailisg: kkRJTo0WLDvU.9gXf3faugqUvdTMlcvhMmB_DieHm7Z.ORfx YPkmly5wpHIbBtRYnnwonaEDViiLU9WKr2oCz9R4U4o_yMoeo6l6K0.i0kF4 9daOnHJ.HfGPajga8s7Y.dWzK8.fIhPZbviGZB1n5X0BlPw81odrzuP5Dcto qd2k3j7q2gKcj7Z_B949xM5HGUJPt0wp30bcyTxOgC7wY.9Bey6fkGIu_TgO FPZxRnwyaQiLZQsEETaq4YJA1oSdbyny47ttTfXGxiFpccsG3GnDXvIGiEHo oWQCDJfJ1unPX3DWs7Xpk6b7lR6rS6h.t3pnmvE0mLprMEtCJSIVypK57pl. j_.Epbm.uYmZKuaBUkqBos5TeVhpgr3I7uGmTbma72ZCqbSYyY2hRfhJ1CPd mJWUiu92ASa3Yu_xB1mwV41lhm.W9jHh8o8IXbELjRBQO9m0PaeFVfr_tzgT gzxNE7KYnP.AmQiy2vqugKJpsfA.gaLmHEKnv.pgZMOQAyUoqtUQQwqEJrfC 90MMu5tAmcG9YXuJmQsJEVt7CBZ3KEHQxqkrtQWcl5zhgnoV7cRubfNf0KHY gybqTj.jGXMMEgjYO4n1igb39uhS3FLX4BeGQx49PVZYCjTMyy.sU6IEzOHa u8wqTVbOBVggd8vqr6PaNyjESYuoyKg.XAGZbCYWMWr3xX6vNTR1o.CeGPQN k5jVLGk1fRlnImDWxSoE7N_OIutlRBxQQWQUMM.KQBLwjNPy2mi4uTrA9eow FARcpllpX8EDUOsk_m.Xmv9yftpTWYIuX8aEq32dLy7hWjZ2JjFXX0OM.zOu EoUQIdhqdlIDgmTgC57_G3wBbB4dOuoq4Pvx5WanJ2UzjhujTo4fhJ5BFuiR xI1z4elw3GESvsvuB.6JQlLkKGtK0DVW4xWDelv2a26qIcRimvMqpRE2FfHm VWTpIMBb2qpMM4IzIwgvg2.bNZEzdKmCJPbq5hZR.EckAT4nkM9RqU2zh.oE u.uvqnx5txsx76Jm0l8ABzMJEIM7B89zSCrbLFK76kP3hazf6RXjwK6AoW9g vKIqFm_xczTedd1CA5slJwN6EyMDr1MbxkKtahLq7iuP62bdzKYY5vBEOQdk eB.ZwCt0up5RzNdR9nIPhdKVyf7uo0xGGb5yGlkeMG3qL_0dC1GQCJNZ8hcR 8NzJYPwnNGb8TI3CpCqOBSjElfePAJsUdwNmAkFYMw--
X-Received: by 2002:a05:6638:2712:: with SMTP id m18mr24033120jav.291.1641340462486; Tue, 04 Jan 2022 15:54:22 -0800 (PST)
Return-Path: <comarc96@gmail.com>
X-Originating-Ip: [209.85.166.41]
X-Apparently-To: ansvet_99@yahoo.com; Tue, 4 Jan 2022 23:54:22 +0000
X-Gm-Message-State: AOAM531BA88TMnU9VlBmCMRTYGIhFH3OAS8HJoP2mL+rHETTQcdmoe7V 5SVjCSNX3gn0lduiBpQCPxBwUfn15BriwAFt/qw=
X-Google-Smtp-Source: ABdhPJwhy5qHB4BT6IGZ49sEObhRcOy1r4wkDfIYT6lzAUH/JR7rOwbxDafTqHTzurCBlhuRuDELZH+HujQls745aKQ=
Mime-Version: 1.0
Authentication-Results: atlas121.free.mail.bf1.yahoo.com ; dkim=pass header.i=@gmail.com header.s=20210112; spf=pass smtp.mailfrom=gmail.com; dmarc=pass(p=NONE,sp=QUARANTINE) header.from=gmail.com;
Content-Length: 936
Dkim-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=mime-version:reply-to:from:date:message-id:subject:to; bh=EaYgi+6dXW6Z9uC2ECYLNgqwpdK75s4wbIDBwDxAlMY=; b=VuPcXyxnuK/H9J9CdXajn4PUYnUi/eTcAg9GEPlxlhSbGVbpD9VJV/8rH6hEkI86sS Dfe0M6errBWq0HroS5BT93U2ZA4aveXuLMleBivuJZSgUBOkZVDHpc5EsgJV8gG8yip9 y0qWYly6gHpkDzSmFFivl0DhS74Vj76NraPz3k7RyCanFOSCTKe6VIk7VDnGizpzdflb QJVaXaxOemWfB9jg5BMx5EST3dv1TVu9uUFtCAQmoBMgIsV1GakullheZ/JVL+NvDR22 Stg16tOu9vQWBzbf/NuP2ADVulkWhi/iwkM9idRvtB0VQ9DbV61wbjIUtLN3eKDzOYYN p6eg==
X-Google-Dkim-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:reply-to:from:date:message-id :subject:to; bh=EaYgi+6dXW6Z9uC2ECYLNgqwpdK75s4wbIDBwDxAlMY=; b=zabjrTdHeeKplQCqhpePpjg2m6b7ty/KGhpbqBtu3XEZvZpyg4Aa74CFE4ShZBBRN1 PLG4ZqjcxP+KhBWitBaYq6Qm0r1Dp3AaGV72Qgs+F17h1A73mMzMyExfdFTlk9ACCVQC qUnAVs7GPU4yncRyXQpx+LLXga3I3eQUfKHlQi+RwMgyl7D0Fz2VCpq2YkvZpQ5jpxQV L71eTvSLgrRNC+5vHEGAJTQb/Lzp9nsfDLhJFanMPFSj9rT8EziBw9RTua3R0rnJyiMy OBmpVa6lGxC8kpPZT43tvK4uEQZcyXzrlx9y2zpluxfn6h8wQ9PnOWzN2XcHYxqr7G0k AEBw==
Content-Type: multipart/alternative; boundary="00000000000038d7e105d4ca5b01"
Received-Spf: pass (domain of gmail.com designates 209.85.166.41 as permitted sender)
Received: from 10.197.39.167 by atlas121.free.mail.bf1.yahoo.com with HTTPS; Tue, 4 Jan 2022 23:54:22 +0000
Received: from 209.85.166.41 (EHLO mail-io1-f41.google.com) by 10.197.39.167 with SMTPs (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256); Tue, 04 Jan 2022 23:54:22 +0000
Received: by mail-io1-f41.google.com with SMTP id i14so45434369ioj.12 for <ansvet_99@yahoo.com>; Tue, 04 Jan 2022 15:54:22 -0800 (PST)
Begin forwarded message:From: Roslinawati Zainal <comarc96@gmail.com>Subject: reDate: January 4, 2022 at 6:54:09 PM ESTTo: undisclosed-recipients:;Reply-To: roslina0za@gmail.com--HAPPY NEW YEAR.
My name is Ms. Zainal from Malaysia I am writing you this mail to solicit for your cooperation in a very confidential business transaction of $3.9 million, I will give you details of the transaction upon your positive reply.
Kind regards
Ms Zainal.
No comments:
Post a Comment