OwlCyberSecurity - MANAGER

Edit File: 1736095804.M191394P2919769.server254.web-hosting.com,S=9324,W=9480

Return-Path: <info@sportspesatips.com> Delivered-To: info+spam@sportspesatips.com Received: from server254.web-hosting.com by server254.web-hosting.com with LMTP id YCKMCjy4emdZjSwAUzp1tw (envelope-from <info@sportspesatips.com>) for <info+spam@sportspesatips.com>; Sun, 05 Jan 2025 11:50:04 -0500 Return-path: <info@sportspesatips.com> Envelope-to: info@sportspesatips.com Delivery-date: Sun, 05 Jan 2025 11:50:04 -0500 Received: from [185.253.73.205] (port=62530 helo=sportspesatips.com) by server254.web-hosting.com with esmtp (Exim 4.96.2) (envelope-from <info@sportspesatips.com>) id 1tUTp7-00CEc0-2T for info@sportspesatips.com; Sun, 05 Jan 2025 11:50:03 -0500 From: info@sportspesatips.com To: info@sportspesatips.com Date: 5 Jan 2025 18:49:16 +0200 Message-ID: <20250105184916.A1FC8822FF0C70B9@sportspesatips.com> MIME-Version: 1.0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable X-Spam-Status: Yes, score=34.7 X-Spam-Score: 347 X-Spam-Bar: ++++++++++++++++++++++++++++++++++ X-Spam-Report: Spam detection software, running on the system "server254.web-hosting.com", has identified this incoming email as possible spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see root\@localhost for details. Content preview: Hello there! Unfortunately, there are some bad news for you. Around several months ago I have obtained access to your devices that you were using to browse internet. Subsequently, I have proceeded with tracking do [...] Content analysis details: (34.7 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 4.7 RCVD_IN_XBL RBL: Received via a relay in Spamhaus XBL [185.253.73.205 listed in zen.spamhaus.org] 1.2 RCVD_IN_BL_SPAMCOP_NET RBL: Received via a relay in bl.spamcop.net [Blocked - see <https://www.spamcop.net/bl.shtml?185.253.73.205>] 0.2 KAM_BLANKSUBJECT Message has a blank Subject 0.0 RCVD_IN_VALIDITY_SAFE_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [185.253.73.205 listed in sa-trusted.bondedsender.org] 1.5 SPF_SOFTFAIL SPF: sender does not match SPF record (softfail) 1.5 SPF_HELO_SOFTFAIL SPF: HELO does not match SPF record (softfail) 0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [185.253.73.205 listed in bl.score.senderscore.com] 0.0 HTML_MESSAGE BODY: HTML included in message 0.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts 1.8 MISSING_SUBJECT Missing Subject: header 0.2 KAM_DMARC_NONE DKIM has Failed or SPF has failed on the message and the domain has no DMARC policy 0.0 KAM_DMARC_STATUS Test Rule for DKIM or SPF Failure with Strict Alignment 2.0 RDNS_NONE Delivered to internal network by a host with no rDNS 8.5 KAM_CRIM Extortion Email 0.5 PDS_BTC_ID FP reduced Bitcoin ID 3.5 BITCOIN_TOEQFM Bitcoin + To same as From 3.0 BITCOIN_YOUR_INFO BitCoin with your personal info 0.0 TO_EQ_FM_DIRECT_MX To == From and direct-to-MX 2.1 BITCOIN_SPAM_07 BitCoin spam pattern 07 0.4 BITCOIN_MALWARE BitCoin + malware bragging 0.0 TO_NO_BRKTS_NORDNS_HTML To: lacks brackets and no rDNS and HTML only 3.4 MALWARE_NORDNS Malware bragging + no rDNS X-Spam-Flag: YES Subject: ***SPAM*** <!DOCTYPE HTML> <html><head><title></title> <meta http-equiv=3D"X-UA-Compatible" content=3D"IE=3Dedge"> </head> <body style=3D"margin: 0.4em;"><p>Hello there!</p><p>Unfortunately, there a= re some bad news for you.<br>Around several months ago I have obtained acce= ss to your devices that you were using to browse internet.<br>Subsequently,= I have proceeded with tracking down internet activities of yours.</p><p>Be= low, is the sequence of past events:<br>In the past, I have bought access f= rom hackers to numerous email accounts (today, that is a very straightforwa= rd task that can be done online).<br> Clearly, I have effortlessly logged in to email account of yours ( <font co= lor=3D"#fc0319">info@sportspesatips.com</font>&nbsp; ).</p><p>A week after = that, I have managed to install Trojan virus to Operating Systems of all yo= ur devices that are used for email access.<br>Actually, that was quite simp= le (because you were clicking the links in inbox emails).<br>All smart thin= gs are quite straightforward. (x_x)</p><p> The software of mine allows me to access to all controllers in your devices= , such as video camera, microphone and keyboard.<br>I have managed to downl= oad all your personal data, as well as web browsing history and photos to m= y servers.<br>I can access all messengers of yours, as well as emails, soci= al networks, contacts list and even chat history.<br>My virus unceasingly r= efreshes its signatures (since it is driver-based), and hereby stays invisi= ble for your antivirus.</p><p> So, by now you should already understand the reason why I remained unnotice= d until this very moment...</p><p>While collecting your information, I have= found out that you are also a huge fan of websites for adults.<br>You trul= y enjoy checking out porn websites and watching dirty videos, while having = a lot of kinky fun.<br>I have recorded several kinky scenes of yours and mo= ntaged some videos, where you reach orgasms while passionately masturbating= =2E</p><p> If you still doubt my serious intentions, it only takes couple mouse clicks= to share your videos with your friends, relatives and even colleagues.<br>= It is also not a problem for me to allow those vids for access of public as= well.<br>I truly believe, you would not want this to occur, understanding = how special are the videos you love watching, (you are clearly aware of tha= t) all that stuff can result in a real disaster for you.</p><p>Let's resolv= e it like this:<br>All you need is <strong> <font color=3D"#fb040b">$850 USD</font></strong> transfer to my account (bi= tcoin equivalent based on exchange rate during your transfer), and after th= e transaction is successful, I will proceed to delete all that kinky stuff = without delay.<br>Afterwards, we can pretend that we have never met before.= In addition, I assure you that all the harmful software will be deleted fr= om all your devices. Be sure, I keep my promises.</p><p> That is quite a fair deal with a low price, bearing in mind that I have spe= nt a lot of effort to go through your profile and traffic for a long period= =2E<br>If you are unaware how to buy and send bitcoins - it can be easily f= ixed by searching all related information online.</p><p>Below is bitcoin wa= llet of mine: <strong><font color=3D"#fc0312">36BCmiU6zwiMHYmd6TLG6CUpKCNvH= 7pG3k</font></strong></p><p>You are given not more than 48 hours after you = have opened this email (2 days to be precise).</p><p> Below is the list of actions that you should not attempt doing:<br>&gt; Do = not attempt to reply my email (the email in your inbox was created by me to= gether with return address).<br> &gt; Do not attempt to call police or any other security services. Moreover= , don't even think to share this with friends of yours. Once I find that ou= t (make no doubt about it, I can do that effortlessly, bearing in mind that= I have full control over all your systems) - the video of yours will becom= e available to public immediately.<br>&gt; Do not attempt to search for me = - there is completely no point in that. All cryptocurrency transactions rem= ain anonymous at all times.<br> &gt; Do not attempt reinstalling the OS on devices of yours or get rid of t= hem. It is meaningless too, because all your videos are already available a= t remote servers.</p><p>Below is the list of things you don't need to be co= ncerned about:<br>&gt; That I will not receive the money you transferred.<b= r> - Don't you worry, I can still track it, after the transaction is successfu= lly completed, because I still monitor all your activities (trojan virus of= mine includes a remote-control option, just like TeamViewer).<br>&gt; That= I still will make your videos available to public after your money transfe= r is complete.<br>- Believe me, it is meaningless for me to keep on making = your life complicated. If I indeed wanted to make it happen, it would happe= n long time ago!</p><p> Everything will be carried out based on fairness!</p><p>Before I forget...m= oving forward try not to get involved in this kind of situations anymore!<b= r>An advice from me - regularly change all the passwords to your accounts.<= /p></body></html>