---------- Forwarded message ----------
From: Andrey Kopelev <ansvet_99@yahoo.com>
Date: Friday, January 14, 2022
Subject: Fraud/Phishing emails Fwd: respond back to me because is very urgent now
To: spam@fightspam.gc.ca, reportphishing@antiphishing.org, reportphishing@apwg.org, phishing-report@us-cert.gov, fraudreporting@unaids.org, contact@cyber.gc.ca, abuse@contactprivacy.com, emailscamalerts@gmail.com, network-abuse@google.com, arin-contact@google.com, google-abuse-bounces-reports@devnull.spamcop.net, google-cloud-compliance@google.com, security@google.com, abusecomplaints@markmonitor.com, ccops@markmonitor.com, hostmaster@markmonitor.com, dns-admin@google.com, david@davidstrauss.net, abuse@pantheon.io, mrchristopherawray10@gmail.com
This person bombards me with fraud/phishing emails asking for personal information. My emails address is not officially listed anywhere. The only way this person could get it is from the spam list. This person is a spammer/scammer/hacker. Please block his accounts. Below is the full header, his original email, abuse reports and the example messages sent from this IP address.
Other email address provided: jillbiden09@gmail.com
Phone number +1262-290-4683
X-Originating-Ip: [209.85.167.49]
209.85.167.49 listed in dnsbl.sorbs.net ( 1 )
| Geographic Location | |
| First Received From | approximately 2 years, 5 months, 1 week ago |
| Last Received From | within 1 week |
| Number Received | 287 email(s) sent from this IP |
| Dictionary Attacks | 6 email(s) sent from this IP |
| First Received From | approximately 4 months, 4 weeks ago |
| Last Received From | within 1 month, 3 weeks |
| Example Messages Sent From |
| Subject: none/blank |
| Subject: A CRY FOR HELP |
| Subject: cc |
| Subject: Merry Christmas |
| Subject: Attention; Beneficiary, |
| Subject: Re: Dear Beneficiary |
| Subject: Foreign Payment Settlement |
| Subject: Dear Email ID Owner, |
| Subject: Business Deal Project |
| Subject: =?UTF-8?B?5YSq5a2Q44G=? |
| Subject: WAITING FOR YOUR URGENT REPLY IMMEDIATELY YOU RE |
| Subject: RE: IMPORTANT BUSINESS PROPOSAL |
| Subject: =?UTF-8?B?44GV44KE44GL44G=? |
| Subject: Attention Pls: |
| Subject: Book Bord - Wasabi Sushi Lounge ApS |
| Subject: LOAN OFFER(V.P) |
| Subject: Contact Mr Green John for your first Payment Asp |
| Subject: CONFIRM YOUR BANK ATM CARD DELIVERY. |
| Subject: Thank you for shopping. |
| Subject: Re: Have you received your funds ? |
| Subject: COMPENSATION UNIT |
| Example User Names Used By |
| User-name: harradon |
| User-name: arradon |
| User-name: llen_p_kissling |
| User-name: llatoriatalib |
| User-name: neeta.sabino |
| User-name: nter.hasip |
"I'M MRS.JILL BIDEN" <mrchristopherawray10@gmail.com >
respond back to me because is very urgent now
X-Ymailisg: L_WmxR0WLDu8.sECz6PiOHUueabHsnG71L57djYsUVUxzXdR XMtz8x6UVsaIm91g4mohoMBoj_2H76r8efSit6h.IDzjzHSylBrh5eXFdJfr 3KAjQErxfk337DYbwujhwklD5xsE.H4IBxGbv3GF_kzcHR6VI1B6oOTn57AJ 0jC09PyNWa1TVr0bJC0qO_0Bpmqmbhe92.IlEu_f4DATy2neRbA.hgmhLyd8 5qbZww1WJBb.99AXijERIeGnL57kDvOXeW0jWgNlA7htGEPgIpR4Ab.XQNN. gPFBzE0bSTIhLSe6rX2iSe4G6nvwk6Z.vhQPJurp.mnKUspzS0WFAQyM4JEl rLYh5JOnVqqydqmbcefG4ZE5h5bFj0IkPhCRKo7kJIdroZtjUZFyPOYDnrYw ig9PvWcFGe0BF12SFcSR55.NJ6r7PijZ.VtidndNgl.aIUwFlsYBa89u.7iN _wPpWygY3RbBmr29UvPJyNlRaiG7DaEggm8HdRmcBCf_i2pcqhqQcz7jhK6A b8FNRRMe7vyCmTjEiGqLSpGaIA4bhcA3DGSKckgyah7S6lKy6LnzUlkygEFy ZlEoIrz4t1KH0UmW6H2N154cVQnZ8l3UTzJtdihkAdwfYiINKeKPUIQKda3P jwHkGxSEM.bmYxQACzuvZF84VMLga460bYjxRYtLko4mdA2iKM1UmXNO9WMW J.CGPL5JQ4MdqXFZOgMERB8m83ridUlk_oyIG5Bm1vmU4iKy6pRkIOjAqCgN P6BrhdSROVcMZ5j2Ap.kMO5DYD7NREvWCPI.aJCq_6Fyh6J_L3jobCJsccZB AymZdEdA5YNjQoI7B5736o3GsPZGN8kjlbjUu8PhfphuzgoYaqAspRhdAULj ur6DjCvzRklbURpPXuDy88wb.udPCEJ2YzXcNPZLM.nIGk_zSrVaEF.aAqfV Lpg88e4qMxnnZR.3VAAEDgAeiTZKIXvFmo7B3zxZL1Bh9q2hA1K_DKhvoCmp YMBkwuRVFSx03eenPmKzunkznR5Q_84n4olbLhg9CRHbhSWl46Wph.MGZBGJ kbMOcXCYwwS73tRg.bJW7gRufIihxfky.mku49OljYWClkIeT8yTkHG2epfp NKZvV5tHIgStNQYWXcoUfKWTLwvnVN_glxFUAnvv_mU5EPizWKCso4cRTM2f IvS3KRCGBDns9oajb64OeQ0s4cxVgiR.67NlrjdFjMghs419dkYA0zwQ3qC0 rPMTgcKhWHbKHRYZfMJxzGHchAHFQBxoCmxX4V3aMdQ-
X-Received: by 2002:a05:6512:31c8:: with SMTP id j8mr6112893lfe.420.1642148935469; Fri, 14 Jan 2022 00:28:55 -0800 (PST)
Return-Path: <mrchristopherawray10@gmail.com >
X-Originating-Ip: [209.85.167.49]
X-Apparently-To: ansvet_99@yahoo.com; Fri, 14 Jan 2022 08:28:58 +0000
X-Gm-Message-State: AOAM531Bq5UIowb5sPbqcluGhL6f0W+TZPW4J11C0fY86CFNbj20aCCH dafNfTA9TGTzHh44wwyRLUWUCC6EZnNAj8SYJG0=
X-Google-Smtp-Source: ABdhPJxM8zkRAm5TWmU3eSygZ/3iUiHtavgxxEQqEPc/oC2458ywkE5DmvLDZX15nv1jDK8YvuEg2PDCEJmnGYJPGkM=
Mime-Version: 1.0
Authentication-Results: atlas314.free.mail.gq1.yahoo.com ; dkim=pass header.i=@gmail.com header.s=20210112; spf=pass smtp.mailfrom=gmail.com; dmarc=pass(p=NONE,sp=QUARANTINE) header.from=gmail.com;
Content-Length: 1240
Dkim-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=mime-version:reply-to:from:date:message-id:subject:to; bh=gaYPRg+ByWuQdGvjTJQ+Kc0X0mtnPpI+FXazWl3FncE=; b=ZxQ24dLlGfTLBwP/kkU5aLP/sk+ymWkS8B96X7g9FXP3oOwbmC9u2/+sRQTnzdsqFT g0o4QGdhfQA64sSUMiMm6nV3NBb06QJZ6QRFLx83j6mReggek5cVVa5ot1ClFTHyBVtG AFX7ZdDYWqJaDnJGAD6zJLMttwEQpc9tsGZrpFf28URDjYfwT53PYt0hNTT27QFvgJqm XNDerZRN76hWkJIc6gJK347gj3y1FNgVna4txWrDKC4P2oZAP9elFgb1Spo65y8RrfY0 MshYfaiZOB6uyl7bNTChpCgu+aoDS1290ahQv+Pqu3qoU0RtmyPec5DOT3EWO2gWO2qG u+1w==
X-Google-Dkim-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:reply-to:from:date:message-id :subject:to; bh=gaYPRg+ByWuQdGvjTJQ+Kc0X0mtnPpI+FXazWl3FncE=; b=hHa9cwlHASPYdZPwCyB+61IrfnJPBDMYpaXFQa9N32Kh0431y83CGJFgSsXzj8Pkfw TynHTbq75S2fL+7spbb+AS+K/ExR3PFo45QvbKGa/nXzCZeS+OOr9dWFapO1j+83ZBfI 9kRqdIKLG5MBb5jakzYIBEHUqpN1IZQgFLqD7y5Pe6hZBkKmGUjdTBPasUSzskRXZ/Ui M7U5dqKgmcY3Cw5f/40YxTq9CH7mt9MekV1o35msbEg3lWcQ2+puOc27s+Dh/pZH57AM 122/Y0i9V+u82ubvQeWDOBwb0yZeTApjpRo66e8ZyZ93tyyfJkWIwe7VjC++EHWvPOYk LGfw==
Content-Type: text/plain; charset="UTF-8"
Received-Spf: pass (domain of gmail.com designates 209.85.167.49 as permitted sender)
Received: from 10.253.31.116 by atlas314.free.mail.gq1.yahoo.com with HTTPS; Fri, 14 Jan 2022 08:28:57 +0000
Received: from 209.85.167.49 (EHLO mail-lf1-f49.google.com) by 10.253.31.116 with SMTPs (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256); Fri, 14 Jan 2022 08:28:57 +0000
Received: by mail-lf1-f49.google.com with SMTP id m1so27928445lfq.4 for <ansvet_99@yahoo.com>; Fri, 14 Jan 2022 00:28:57 -0800 (PST)
Received: by 2002:a05:651c:12c8:0:0:0:0 with HTTP; Fri, 14 Jan 2022 00:28:54 -0800 (PST)
Begin forwarded message:From: "I'M MRS.JILL BIDEN" <mrchristopherawray10@gmail.com >Subject: respond back to me because is very urgent nowDate: January 14, 2022 at 3:28:54 AM ESTTo: undisclosed-recipients:;Reply-To: jillbiden09@gmail.com--
GREETINGS FROM MRS Jill Biden
CONTENT OF THE BELOW MESSAGE IS SIGNED AND APPROVED BY BANK OF AMERICA.
moreover, in respect of fact the sum of $50 million united states
dollars was instructed to transfer on your favor through ATM Card,
And i wish to let you know that every necessary things has been
accessed by IMF on the economic recovery program done by united state
Government for victim who lost funds during former president Barack
Obama and president Donald J Trump regeme and con african artists
and you have nothing to be worried about.
Below is the required information i need from you so that the delivery
of your ATM Card will proceed immediately to your home Address.
Your Name.........................
Home address:...................................
Your profession/occupation.................................
Your age .......................
Cell phone number:..........................
City:....................................................... .
valid Email Address.........................
Mrs. JILL BIDEN
The White House
(Official Residence of the President of the US)
1600 Pennsylvania Avenue NW
Washington DC 20500 US
(jillbiden09@gmail.com]
contact me with this phone number +1262-290-4683 texts only
No comments:
Post a Comment