tag:blogger.com,1999:blog-30452683356627237602023-11-16T18:50:34.204+00:00SPAM From FriendsJust that. SPAM and SCAMS that we've found or that have been blocked by our powerful SPAM Mail Filter. Posted here in an effort to help people avoid a grave mistake.Unknownnoreply@blogger.comBlogger89125tag:blogger.com,1999:blog-3045268335662723760.post-89491951640207677002018-02-28T13:37:00.000+00:002018-02-28T13:37:23.760+00:00OutlookMicrosoftMail365 - You Have 23 Undelivered/Pending MessagesThis is a very well done phishing message that slipped through Microsoft's Office 365 mail filters this morning. Do not open it. Do not click the links. Just delete it and move on!<br />
<br />
The message originated from IP Address 176.28.102.181 in Madrid Spain on the Acens Technologies, S.L. Internet Service Provider.<br />
<br />
Phishing message text below.<br />
<br />
<table border="1" cellpadding="0" cellspacing="0" class="MsoNormalTable" style="border-collapse: collapse; border: none; mso-border-left-alt: solid #E3E3E3 .75pt; mso-border-right-alt: solid #E3E3E3 .75pt; mso-padding-alt: 0in 0in 0in 0in; mso-yfti-tbllook: 1184; width: 611px;">
<tbody>
<tr>
<td style="background: #0072C6; border: solid #E3E3E3 1.0pt; mso-border-alt: solid #E3E3E3 .75pt; padding: 9.0pt 0in 9.0pt 0in; width: 232.5pt;" width="310">
<h1>
<span lang="EN" style="color: white; mso-ansi-language: EN;">You Have 23 Undelivered/Pending Messages</span><span lang="EN"><o:p></o:p></span></h1>
</td>
</tr>
</tbody></table>
<br />
Hi <br />
<br />
Outlook Mail Service Server On 26th of February 2018 UTC 12:00AM, Detected<br />
About (23) clustered messages Undelivered/Pending to your MailBox, They are awaiting your aproval to be delivered.<br />
Below are list of approved actions to be taken as to restor messages back to your mailbox:<br />
*View/Authorize Delivery for pending mails From "Outlook Cloud Sever"<br />
*Report Error To Office Helpdesk Microsoft Administrators at "Outlook IT Help Desk"<br />
Further messages might be prevented if any of the above actions are not performed.<br />
<br />Unknownnoreply@blogger.com0Madrid, Spain40.4167754 -3.703790199999957640.0300434 -4.3492371999999575 40.8035074 -3.0583431999999577tag:blogger.com,1999:blog-3045268335662723760.post-1238454454389280482015-04-15T15:06:00.000+01:002015-04-15T15:06:32.313+01:00Facebook Data Equals Personalized Spam and Attacks Spammers and scammers are not dumb and they are not idiots. They are not doing what they do to bother or annoy us or because they have "nothing better to do with their time". They are in business and they will target their "customers" like anyone else; with research.<br />
<br />
Be aware!<br />
<br />
Full story here - <a href="http://www.bbb.org/blog/2013/01/new-wave-of-phishing-scams-uses-facebook-info-for-personalized-spam/" target="_blank">New Wave of Phishing Scams Uses Facebook Info for Personalized Spam</a><br />
<br />
"You receive an email that appears to be sent by a friend or family member. The message addresses you by name, but the content is strange. Usually, it’s just a link to a website. If you click on it, you could end up downloading malware to your computer.<br />
<br />
What’s going on here? The scammers are exploiting the fact that you’re more likely to click on a link if it was sent by a friend.<br />
<br />
Scammers find your information through Facebook or other social media accounts. Some set up fake accounts and send out friend requests. When you accept the request, they can view your friends and personal and contact information. Other scammers rely on social media users not locking down their privacy settings, so basic information, such as your name, email address and friends’ names, is publicly available."Unknownnoreply@blogger.com0Denver, CO, USA39.7392358 -104.99025139.3486558 -105.635698 40.1298158 -104.344804tag:blogger.com,1999:blog-3045268335662723760.post-73434426152122580962014-11-28T20:54:00.002+00:002014-11-28T20:54:31.395+00:00INTERNAL FAX - CryptoWall 2.0 E-mail ExampleI finally tracked down an example of one of the many variants of the CryptoWall 2.0 RansomWare / MalWare / Virus e-mails. This is not the only version out there so be aware!<br />
<br />
As a general rule of thumb, never open a zip file attachment from someone you don't know. Even then scan it for viruses before opening it.<br />
<br />
Here's what to look out for;<br />
<br />
The e-mail subject was INTERNAL FAX<br />
<br />
The attachment name I received was FAX827-482-9123.zip . The infectious software is contained inside the zip file. It also contained an attachment named ATT00001.txt (which is not a virus).<br />
<br />
RansomWare message body text;<br />
<br />
You have received fax from EPSON09964727 at sidsolve.com<br />
<br />
Scan date: Wed, 26 Nov 2014 10:18:44 -0500<br />
<br />
Number of page(s): 61<br />
<br />
Resolution: 400x400 DPI<br />
<br />
Name: FAX827-482-9123.pdf<br />
<br />
_________________________________<br />
Attached file is scanned image in PDF format.<br />
<br />
The message came from XTLAMJHEK (74.252.107.66) around the Orlando, Florida area. The sender's address was 8GEGBYXZ.4384595@bleuit.com . The return path is cidejilk@bleuit.com . The sender spoofed a fake address named fax@sidsolve.com. This would likely be customized to the victim's domain. The company that owns the domain is based on Guernsey in the Channel Islands.<br />
<div>
<br /></div>
<div>
<br /></div>
<div>
<br /></div>
Unknownnoreply@blogger.com0Saint Peter Port GY1 1HB, Guernsey49.455443 -2.536871099999984849.125895 -3.1823180999999847 49.784991000000005 -1.891424099999985tag:blogger.com,1999:blog-3045268335662723760.post-61675177099640098682014-10-14T14:05:00.000+01:002014-10-14T14:05:36.333+01:00Shipping Info for you@yourdomain.comThe SPAM filter picked up this one today and I've had a couple of recent client calls about this type of e-mail and another one that claims there is a "New Fax Waiting". The e-mail contains an embedded link that will attempt to compromise any system that visits it.<br />
<br />
The message originated in Provo, Utah on an ISP called Unified Layer. The IP Address that sent it was 162.144.32.106. The claimed sender's address is saadi@ihc.com.sa . The company at ihc.com.sa is an insurance broker that has likely been compromised.<br />
<br />
Don't believe this. It is an attempt to infect you!<br />
<br />
Delete it and move on with your day!<br />
<br />
<br />
SPAM MAIL CONTENTS:<br />
<br />
Purchase Notice<span class="Apple-tab-span" style="white-space: pre;"> </span><br />
Please see the shipping information Date ordered: October 13/ 2014<span class="Apple-tab-span" style="white-space: pre;"> </span><br />
For your information that the item is being shipped to you.<br />
We also included delivery file to specified address.<br />
Order No: 104213335<br />
Order total: 1779.07 USD<br />
Processed date: Oct 13 2014.Unknownnoreply@blogger.com0Provo, UT, USA40.2338438 -111.6585337000000240.0399588 -111.98125720000002 40.427728800000004 -111.33581020000003tag:blogger.com,1999:blog-3045268335662723760.post-46065645809875891562014-10-14T13:50:00.002+01:002014-10-14T13:50:31.208+01:00Help !!!!!!!!!!!!!! Cathleen and MarkI haven't received one of these in a long time due to our filter capturing the vast majority of all the SPAM that hits our servers. This one made it through because it came from as client's personal account on AOL that we have whitelisted. Someone, somewhere, got hold of their password as is sending out spam. If you get one of these, they aren't really where the e-mail claims.<br />
<br />
Although it claims to be from Simferopol, Ukraine, the message originates at IP Address 64.12.231.63 in Ashburn, Virginia. It was sent on an MCI network. It routed through AOL in New York City.<br />
<br />
Delete the e-mail, Don't read it, don't respond.<br />
<br />
Do contact your friend and tell them that they've been compromised. A heavy scan and password changes are in order.<br />
<br />
SPAM EMAIL TEXT:<br />
<br />
Hello ,<br />
Sorry to bother you this time but this seems to me more than a dreadful ill-luck for me and my family.I am in Simferopol (UKRAINE) right now for a short vacation and unfortunately i ran out of cash, i have tried to access my credit card from the cash machines here but it keeps saying network errors.<br />
I also tried to withdraw funds from my own bank account here but the lady at the paid desk informed me that i can't withdraw from my account here in a foreign country,wondering if i could get a quick loan of ($2,900 USD) from you to clear some little things here and also take a cab to the airport i promise to refund it as soon as i get back home later this week.<br />
I anticipate your response .<br />
Cathleen and Mark<br />
<div>
<br /></div>
Unknownnoreply@blogger.com0Ashburn, VA, USA39.0437567 -77.48744160000001138.945078200000005 -77.648803100000009 39.1424352 -77.326080100000013tag:blogger.com,1999:blog-3045268335662723760.post-5570073643241244502014-10-10T17:38:00.001+01:002014-10-10T17:38:58.599+01:00The Stocktip Of The YearUh... no... I think not. Maybe another candidate for scam of the year?<br />
<br />
This scam, pump and dump, attempt to infect your systems, comes courtesy of pete25a2@bistrita.astral.ro a Romanian ISP. The message came in from the IP address 83.103.156.27 in Harghita, Romania.<br />
<br />
The message is definitely not from TheStreet, Inc. at 63 South Main Street, Newtown CT 06470.<br />
<br />
Don't click the links, don't read it, don't believe it. Delete and move on with your day!<br />
<br />
Spam e-mail text;<br />
<br />
TheStreet Daily<br />
Your newsletter from<br />
TheStreet, Inc.. Trouble viewing?<br />
You've been patient for a while now and finally<br />
it's time.<br />
Confederation MineraIs (CNRMF)<br />
is on the verge of exploding.Thats because they<br />
have hundreds ofmillions of precious metals on their<br />
property and they are weeks away from beginning to dig<br />
it out and selling it up the distribution chain.It is<br />
trading at such a bargain right now that<br />
CNRMF is a no-brainer.<br />
Snap up as many shares of it as you can today before it<br />
goes up too high.Everyone is certain that we<br />
will see it hit past 40cents before month's end.<br />
63 South Main Street, Newtown CT 06470<br />
The<br />
TheStreet, Inc. Press<br />
| Customer Service<br />
| Privacy Policy<br />
<br />
You received this message because you are a<br />
TheStreet, Inc. customer or have registered at<br />
TheStreet.com.<br />
This email was sent to you by The TheStreet, Inc..<br />
<br />
Click here<br />
to update your email preferences.<br />
<div>
<br /></div>
Unknownnoreply@blogger.com0Harghita County, Romania46.4928507 25.64566960000001945.0976527 23.063882600000021 47.8880487 28.227456600000018tag:blogger.com,1999:blog-3045268335662723760.post-7423485309132213642014-10-08T17:24:00.001+01:002014-10-15T15:02:15.312+01:00Your PC Has Critical Errors - Fix Now!UPDATE! UPDATE! - 10-15-2014<br />
This is the first time this has happened since I started this little blog. I got word from the guys at <a href="http://www.host1plus.com/" target="_blank">HOST1PLUS </a>in Santiago, Chile and they have shut down the spammer on their systems! You should keep an eye out for this bad message because it is still out there and showing up from other sources, but won't be coming from this host anymore. It is awesome that someone out there is on top of their systems! Props to <a href="http://www.host1plus.com/" target="_blank">HOST1PLUS</a>!<br />
<br />
Original post -<br />
<br />
Here's a little scam I was just notified about. This came in to a client's e-mail account and they called us right away about it. If they had followed the e-mail's advice they'd likely be infected with a nasty piece of MalWare and a handful of Trojans.<br />
<br />
The entire e-mail is a massive image link! Don't click it, don't follow the links, don't try to visit their site. It is a SCAM! <br />
<br />
The link in the e-mail leads to http://images.reviewfacilitate.co/RWn6saYa6xELa9ss9 a non-responsive website. The e-mail that claims sending it is info@reviewfacilitate.co . In reality the message references the domain handleinsure.net and originates from IP Address 181.214.149.76 located in Santiago, Chile. The ISP is either Host1plus Hosting Services or Digital Energy Technologies.<br />
<br />
Image of the spam scam;<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjUOlArjN2sHVIyReFcuLgXkEYZiCCMOm7MTXoVPj-tX2MxJ8rKCNMPPr-gvKDFDnKODbYIthceEWvwLLGvH0250TOFMRR_eFuDh4aA15gkWlfJzHzS3eloQDXVUCFC0v_XA6bCzCtF8_U/s1600/Windows+PC+Repair.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjUOlArjN2sHVIyReFcuLgXkEYZiCCMOm7MTXoVPj-tX2MxJ8rKCNMPPr-gvKDFDnKODbYIthceEWvwLLGvH0250TOFMRR_eFuDh4aA15gkWlfJzHzS3eloQDXVUCFC0v_XA6bCzCtF8_U/s1600/Windows+PC+Repair.png" height="397" width="400" /></a></div>
<div class="separator" style="clear: both; text-align: center;">
<br /></div>
<div class="separator" style="clear: both; text-align: left;">
Spam Scam e-mail text;</div>
<div class="separator" style="clear: both; text-align: left;">
<br /></div>
<div class="separator" style="clear: both; text-align: left;">
Windows PC Repair</div>
<div class="separator" style="clear: both; text-align: left;">
Diagnose @ Fix Your PC Problems in 3 simple steps:</div>
<div class="separator" style="clear: both; text-align: left;">
1. Download Windows Repair Tool</div>
<div class="separator" style="clear: both; text-align: left;">
2. Doubleclick on teh Setup file and Follow teh On-Screen Instructions to Install the Procuct.</div>
<div class="separator" style="clear: both; text-align: left;">
3 Runa Scan and Fix the Detected Errors by Clicking teh "Fix All" Button.</div>
<div class="separator" style="clear: both; text-align: left;">
<br /></div>
<div class="separator" style="clear: both; text-align: left;">
Ratings: *****</div>
<div class="separator" style="clear: both; text-align: left;">
<br /></div>
<div class="separator" style="clear: both; text-align: left;">
Total Downloads: 103,500,697</div>
<div class="separator" style="clear: both; text-align: left;">
<br /></div>
<div class="separator" style="clear: both; text-align: left;">
Download File Size: 4.1 MB</div>
<div class="separator" style="clear: both; text-align: left;">
<br /></div>
<div class="separator" style="clear: both; text-align: left;">
Download Time: sec on dsl, 2min on dialup</div>
<div class="separator" style="clear: both; text-align: left;">
<br /></div>
<div class="separator" style="clear: both; text-align: left;">
Compatibility; Windows 8, Windows 7, Windows Vista, Windows XP, Windows ME, Windows 2000 32Bit & 64Bit OS Systems</div>
<div class="separator" style="clear: both; text-align: left;">
<br /></div>
<div class="separator" style="clear: both; text-align: left;">
Support: Yes</div>
<div class="separator" style="clear: both; text-align: left;">
<br /></div>
<div class="separator" style="clear: both; text-align: left;">
Upgrade option: Yes</div>
<div class="separator" style="clear: both; text-align: left;">
<br /></div>
<div class="separator" style="clear: both; text-align: left;">
Download Now </div>
Unknownnoreply@blogger.com0Santiago, Santiago Metropolitan Region, Chile-33.4691199 -70.641997-35.1605294 -73.223784000000009 -31.777710400000004 -68.06021tag:blogger.com,1999:blog-3045268335662723760.post-31355418111244216472014-10-02T13:43:00.002+01:002014-10-02T13:47:27.078+01:00Pay For Driving On Toll Road - EZ Pass TrojanWe just ran into this nasty little surprise at a client site yesterday. It's a virus posing as an overdue bill from E-Z Pass. The "Get Invoice" link will attempt to install a Trojan on the system. We happened to catch it right away so no harm was done.<br />
<br />
It was delivered to our end-user's personal e-mail account on Comcast so our filtering system never had a chance to take care of the issue. We attempted to forward the message through our filtering system and it was denied immediately.<br />
<br />
Watch out for this one, it is a very convincing e-mail. It is well built and appears graphically legitimate . However, the English language used in the message is poorly constructed and is the first clue that something is out of place. Also notable are the links pointing to a bogus trojan downloading site when hovering the mouse over them.<br />
<br />
Be careful out there!<br />
<br />
Screenshot of virus/trojan;<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhP6QRxLnp4zUsdli7HGS7fSMPbaLiWWhT4yZeOzicKzo9wfKDYwe-SmApQcPRzb3dFPG4F58srUyo3t_-l7KXA3l54GPQBIOXL91PnRlgyg1U8-x4i_Eb5_x0dIpY23lHOe_yfXWWlEno/s1600/E-Z+Pass+virus.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhP6QRxLnp4zUsdli7HGS7fSMPbaLiWWhT4yZeOzicKzo9wfKDYwe-SmApQcPRzb3dFPG4F58srUyo3t_-l7KXA3l54GPQBIOXL91PnRlgyg1U8-x4i_Eb5_x0dIpY23lHOe_yfXWWlEno/s1600/E-Z+Pass+virus.png" height="180" width="320" /></a></div>
<br />
Trojan spam mail text:<br />
<br />
Dear Customer,<br />
<br />
You have not paid for driving on a toll road. This invoice is sent repeatedly, please service your debt in the shortest possible time.<br />
<br />
<br />
<br />
<br />
Here's a link to an article on the BBB about the same scam; <a href="http://www.bbb.org/blog/2014/07/scammers-pose-as-e-zpass-to-collect-unpaid-tolls/" target="_blank">Scammers Pose as E-ZPass to Collect ‘Unpaid Tolls’</a>Unknownnoreply@blogger.com0Littleton, CO, USA39.613321 -105.0166497999999839.515418499999996 -105.17801129999998 39.7112235 -104.85528829999998tag:blogger.com,1999:blog-3045268335662723760.post-70876925781321828402014-09-26T19:42:00.000+01:002014-09-26T19:42:25.663+01:00Thanks for shopping with our company now! Your purchase will be processed shortly. I just had this one get caught in our SPAM filter. The subject line will be your personal e-mail address. It's a bad one, do not open it! The link in the message leads to a zipped file that will infect your system!<br />
<br />
The sender is listed as info@madeca.ph . Madeca is a restaurant in Manila, Philippines whose e-mail address has either been hacked or spoofed. The message was routed through the pesocruncher.com domain and hit IP Addresses 107.144.198.44 (Pinellas Park, Florida) and 70.32.121.166 (Culver City, California) before making its way into our filter.<br />
<br />
Do not respond to the e-mail, don't open it. Just delete it and go on with your day.<br />
<br />
Virus e-mail text;<br />
<br />
Thanks for shopping with our company now! Your purchase will be processed shortly.<br />
<br />
ORDER DETAILS<br />
<br />
Order Number: BRJ457002144<br />
Purchase Date: 14.19 Thu, September 25, 2014<br />
Customer Email: youremail@yourdomain.com<br />
<br />
Amount: 6073 US Dollars<br />
<br />
Download an order file<br />
<br />
Please click the link given at the top to have more info about your order.<br />
<div>
<br /></div>
Unknownnoreply@blogger.com0Culver City, CA, USA34.0211224 -118.3964664999999733.9684699 -118.47714749999997 34.073774900000004 -118.31578549999998tag:blogger.com,1999:blog-3045268335662723760.post-34554816505419419622014-08-12T14:07:00.002+01:002014-08-12T14:07:15.593+01:00Statament August 2014 ID: 5463709.xls - Statement August 2014 ID: 5463709.xlsOOPS! An unwanted e-mail slipped through our SPAM filter today. This is entirely possible and illustrates that not every filter is perfect.<br />
<br />
How'd they get through? Well, a recently hacked or created e-mail account may not have a history of sending SPAM/viruses <i>and </i> a new threat that hasn't been found in the wild <i>and </i>it was sent to an address that is forwarded to my main e-mail. Tough circumstances, but if everything lines up right a SPAM message can get through. In theses situations remember the old rule; Never open an e-mail from someone you don't know.<br />
<br />
This e-mail that originated from the IP address 14.3.195.1 in Tokyo, Japan on the ISP Asahi Net Inc. It claims to be from Deirdre Silva <Lourdes@avflakkee.nl> in the Netherlands and contains a zip file named August_ID_5463709.zip that is likely loaded with a virus.<br />
<br />
Watch out for this one!Unknownnoreply@blogger.com0Tokyo, Japan35.6894875 139.6917063999999321.7112815 119.03740939999993 49.6676935 160.34600339999992tag:blogger.com,1999:blog-3045268335662723760.post-89974275674993875782014-07-07T14:21:00.000+01:002014-07-07T14:21:05.081+01:00New Job - Up to $85,000 + BonusThe spam filter picked up this job scam recently; pretty low, going after the unemployed. After searching for the sender I found that the address alvertaegelrepollins@outlook.com is routinely being used to send employment scams. on this one the message body was completely blanked out so I can't offer up copy of the scammer's text. The IP address of the sender was 39.48.149.41 and hails from Islamabad, Pakistan. The ISP it was sent through is Pakistan Telecommuication Company LimitedUnknownnoreply@blogger.com2Islamabad, Pakistan33.7293882 73.09314610000001333.5179702 72.770422600000018 33.940806200000004 73.415869600000008tag:blogger.com,1999:blog-3045268335662723760.post-69019315661282288202014-07-05T15:43:00.000+01:002014-07-05T15:43:00.075+01:00IT Service DeskThis is a recent phishing attempt we discovered at a client site. The link contained in the message will lead the user to a web site that will attempt to steal their personal information. Do not open these e-mails. Do not follow the links. Do not visit the site listed below!<br />
<br />
This message sourced from John.Meier@calpine.com; a domain not related to the link contained in the original e-mail. This is a spoofed e-mail address or the perpetrators hacked the mail server at Calpine.<br />
<br />
Phishing E-Mail Text;<br />
<br />
Your Mailbox has exceeded it's louted Quota as set by your IT Service Admin. All emails sent from your account will no longer be deliver and you can no longer receive all emails. Your email account has been schedule for maintenance and to reset your email account, you are to use the link below.<br />
<br />
www.view360.nl/accupgrade/1/<br />
<br />
IT Service Admin<br />
<br />
<br />
CONFIDENTIALITY NOTICE:The information in this e-mail may be confidential and/or privileged and protected by work product immunity or other legal rules. No confidentiality or privilege is waived or lost by mistransmission. If you are not the intended recipient or an authorized representative of the intended recipient, you are hereby notified that any review, dissemination, or copying of this e-mail and its attachments, if any, or the information contained herein is prohibited. If you have received this e-mail in error, please immediately notify the sender by return e-mail and delete this e-mail from your computer system. Thank you.<br />
<div>
<br /></div>
Unknownnoreply@blogger.com0Colorado, USA39.5500507 -105.7820674000000233.2362192 -116.10921590000001 45.8638822 -95.454918900000024tag:blogger.com,1999:blog-3045268335662723760.post-85566386959294008342014-07-03T15:47:00.000+01:002014-07-03T15:47:00.212+01:00FW: IT ServiceDesk<div class="MsoNormal">
This is a recent phishing attempt we discovered at a client site. The link contained in the message will lead the user to a web site that will attempt to steal their personal information. Do not open these e-mails. Do not follow the links. Do not visit the site listed below!</div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
This message sourced from Karyn.Lucas2@GenesisHCC.com; a domain not related to the link contained in the original e-mail; http://www.publi-style.be/accs/ . This is a spoofed e-mail address or the perpetrators hacked the mail server at Genesis Health Care. </div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
Phishing E-Mail Text;<br />
<br />
Your account has exceeded its storage limit. You will not be able to receive or send message, in order to restore your account please Click Here and submit required information.<br />
Thanks.<br />
IT ServiceDesk.<br />
This e-mail and any attachments may contain information which is confidential, proprietary, privileged or otherwise protected by law. The information is solely intended for the named addressee (or a person responsible for delivering it to the addressee). If you are not the intended recipient of this message, you are not authorized to read, print, retain, copy or disseminate this message or any part of it. If you have received this e-mail in error, please notify the sender immediately by return e-mail and delete it from your computer.<br />
<div>
<br /></div>
</div>
Unknownnoreply@blogger.com0Colorado, USA39.5500507 -105.7820674000000233.2362192 -116.10921590000001 45.8638822 -95.454918900000024tag:blogger.com,1999:blog-3045268335662723760.post-88231801364140825002014-07-02T14:15:00.000+01:002014-07-02T14:15:00.132+01:00Announcement: Would you be surprised to learn you have the ???American Parasite????The American Parasite is making the rounds. Who knows you might even have it!<br />
<br />
This is an advertising scam complete with fancy videos from Keybiotics and uses fear tactics to try to convince people that common yeast (Candida) is some new thing that will kill/maim/bloat, etc. the population of the United States. Guess what? There's a big advertising pitch waiting at the end of the day.<br />
<br />
Don't fall for it. Delete and move on!<br />
<br />
This one came in from IP address 208.94.245.140 in Charleston, South Carolina via Joe's Datacenter LLC.<br />
<br />
Spam E-Mail text;<br />
<br />
<html><br />
<head><br />
<meta content="text/html; charset=utf-8" http-equiv="content-type" /><br />
<meta http-equiv="Content-Language" content="en-us"/><br />
</head><br />
<body><br />
<P><br /><A href="http://check.whoop-dangerous-parasite.me">You have to see this - are you infected with the "American Parasite???? </A><br /><br /><br />
<A href="http://check.whoop-dangerous-parasite.me"><img src="http://image.whoop-dangerous-parasite.me" /></A></P><br />
<p><font size="3px" color="#F8F8F7"><br />
</font></p><br />
<P><br><br><br><A href="http://stop.whoop-dangerous-parasite.me"><img src="http://bye.whoop-dangerous-parasite.me" /></A></P><br />
</body><br />
</html>Unknownnoreply@blogger.com0Charleston, SC, USA32.7764749 -79.93105120000001332.3494714 -80.576498200000017 33.203478399999995 -79.285604200000009tag:blogger.com,1999:blog-3045268335662723760.post-15186128538023681272014-06-30T14:26:00.000+01:002014-06-30T14:26:00.328+01:00Re: Reduced numbness and tingling in hands, feet and legsNice touch; the RE: in the subject line. Like I ever had an e-mail exchange with these guys.<br />
<br />
This is another email our spam filter caught in a recent flood of messages from ".me" domains. I don't know what it is about these, but look for more ad scams from."me.". I have yet to receive a legit e-mail from a .me. domain.<br />
<br />
The jist is that the spammers have cornered the market on "rare ingredients" that reduce nerve pain. Nice, prey on people that have nervous system disorders; sweet guys.<br />
<br />
Delete this spam scam and move on with your day.<br />
<br />
The message sources from 178.33.194.67 Roubaix,France from the ISP Ovh Sas<br />
<br />
Neuropathy Support News<br />
======================================================<br />
<br />
Studies indicate these rare ingredients reduce Neuropathy nerve pain.<br />
<br />
Reduce the numbness and tingling in hands, feet and legs.<br />
<br />
Neuropathy Support Formula can also:<br />
*Improve balance & coordination<br />
*Support & strengthen nerves & nerve linings<br />
*Lessen the pain and burning sensations<br />
*Reduce stress & anxiety<br />
<br />
Go here to Relieve Your Pain TODAY: http://check.nerve-pain-down.me<br />
<br />
optoff_admail: http://stop.nerve-pain-down.me<br />
<br />
POBOX No. 5192<br />
47 Rue Au Maire_75003Paris<br />
FranceUnknownnoreply@blogger.com0Roubaix, France50.6927049 3.177846999999928850.6524664 3.0971659999999286 50.7329434 3.258527999999929tag:blogger.com,1999:blog-3045268335662723760.post-76084755194048688542014-06-28T13:36:00.000+01:002014-06-28T13:36:00.040+01:00Another Big Report this Monday at the open!Here's a hazardous little phishing e-mail complete with a bunch of Flak. The random words at the end of the message are supposed to fool spam filters; it doesn't fool ours.<br />
<br />
Claiming to come from TD Ameritrade the message originated from 469@ashcakefamilyphysicians.com, a bogus address at a legitimate domain. Ashcake Family Physicians is either being spoofed or their mail server may have been compromised. The IP address of the sender is 1.171.49.80 and hails from Taipei, Taiwan, China on the ISP Data Communication Business Group.<br />
<br />
The attached link leads to a phishing site that will attempt to steal visitors personal information. Don't give them your TD Ameritrade user info. Delete this message and continue with your day!<br />
<br />
Phishing spam text;<br />
<br />
Open your account https://www.pete.B4D6E19.com/A35B3D60EEF8D9BEB80C42BAEF29A72DD4FE today in just minutes | View online https://www.pete.9F486.com/D22594D3D24FF85B215160A608891D4EB4CB50B59D343CAE1056EC9DD74 <br />
<br />
Youve already taken the first step toward your financial goals by starting your application for a TD Ameritrade account. Take the next step and start trade today.<br />
<br />
Its quick and easy. And as a client, youll have access to the tools and resources you need to trade and invest with more confidence, including our top stocks picks:<br />
<br />
Esopus Valley than anywhere else in the Catskills. Factor, but later returned to Magneto. Columbia River Highway in 1913. There they both became ill with severe cases of malaria. Financial distress in companies can lead to problems that can reduce the efficiency of management. Founding Conference, Chicago, IL, Feb. The show is split in two parts. Hubert Turcotte and Virginie Blagdon. Jimmy offers to buy Kelly a house and support Elliot financially. In the end, she is destroyed by Nanami. Frisia, but she died in 1044, following a Caesarean section. The study of language and gender has developed greatly since the 1970s. He later argued that this explanation might not apply only to the Exeter case, but to many other UFO reports. John Goodwin, who settled here in 1905. Daltrey found himself unable to sing and left midsong. I have nothing against card playing. Following the relocation of the Nanibas, the bluff came to be settled by early European settlers. By 1980, White was insolvent, despite importing Semon E. He was an education major at Nebraska. Another problem of news organizations in China, especially in the 1910s is the heavy dependence on foreign news agencies. They move out from the blood into tissues and organs upon infection or damage. She was executed after a failed uprising and today is considered a heroine in China. He successfully ran for the same position in 1928. This Young Jeezy mixtapes does not include any features and all of the tracks use samples. After the transfer of the Chapter all the Bishop's remains with their tombstones have been moved to Neisse. However, Viktor had a plan. In the example, 2 is the whole number part and 3 is the numerator of the fractional part. Assembly Member Barbara Lifton Receives Top Honors in 2011 Environmental Report Card. The Diaz Brothers are only mentioned in the film but never seen. List of television and radio shows hosted by individuals holding a libertarian viewpoint. Cookbook, with Greta Hilb. There is a children's educational garden and an herb garden. II consists of buildings of special architectural or historical interest. Cathedral's consecration, in its present form, is dated to 1916. The fourth and final stage was when the movement started to lose its drive. This flexibility and connection between internal and external makes virtue epistemology more accessible. Tate N, Rebrikova NL. John Harris becomes Bishop of Llandaff. HDZ was accused of complicity. He later became chief engineer of the Baltimore and Ohio Railroad. Coxe is now coaching one of the most notorious high school hockey teams, The Petoskey Northmen. However, as of the July 2008 sweeps period, WWLP continues its longtime dominance with WGGB stabilizing to a strong second. A dumbstruck Kabita prepares to sacrifice everything. Roman beat Prieur 7,590 votes to 6,782. During drought seasons many elephants damage agricultural land for food. The Pardes Rimmonim is composed of thirteen gates or sections, subdivided into chapters. CD ROM interface could be purchased without a CD ROM drive. Newton has released four recordings of his solo improvisations for flute. The Pantathian race have a nature that most beings find entirely alien, and are known to be born knowing hatred. The Patriots went on to win the historic, controversial contest in overtime. You can often visit him here. The merger was completed on December 14, 2011. A comedy tent, kid's tent, main arena, fair, craft market and green space attracts families as well as the mUnknownnoreply@blogger.com0Taipei City, Taiwan25.091075 121.5598344999999724.8609805 121.23711099999997 25.3211695 121.88255799999996tag:blogger.com,1999:blog-3045268335662723760.post-34573319190956954882014-06-27T14:07:00.000+01:002014-06-27T14:07:00.043+01:00Invest today. Cash Out next monthAnother pump and dump scam showed up in the spam filter the other day. This one isn't particularly well crafted but I though it was humorous.<br />
<br />
I feel so much better that Horace is looking out for me...<br />
<br />
The spam scam sources from 186.195.148.47 in Jundia, Brazil. Fox Telecomunicacao E Internet Ltda.<br />
<div>
is the ISP of the sender.</div>
<div>
<br /></div>
<div>
Spam email text:</div>
<br />
Dear friend,<br />
<br />
I was very furious when I listened to your voicemail last night.<br />
<br />
You know, I didtell you about last month but youre the one who was not interested inbuying at the time. It was trading for just 10 or 15 cents if I remembercorrectly. You cannot now blame me by saying I didnt tell you.<br />
<br />
Anyway bullshit aside if you are still angry about missing the first wave Imtelling you its not too late but you need to listen to me now and buy as manys.h.a.r.es of as you can on Monday morning before they get too expensive and ifyou dont its your own fault I dont want you calling me again and leaving meanother nasty voicemail.<br />
<br />
I spoke with my analyst buddy who is working on this specific stock-analysis andhe told me we should expect to see shares hit past a dollar within the next 30days. Do what you must.<br />
<br />
Take care<br />
Your bud<br />
HoraceUnknownnoreply@blogger.com0Jundiá - Alagoas, Brazil-8.9404378 -35.555747999999994-33.4195673 -76.864342 15.5386917 5.7528460000000052tag:blogger.com,1999:blog-3045268335662723760.post-75242890155375784502014-06-26T15:41:00.000+01:002014-06-26T15:41:04.982+01:00 IT ServiceDesk<div class="MsoNormal">
This is a recent phishing attempt we discovered at a client site. The link contained in the message will lead the user to a web site that will attempt to steal their personal information. Do not open these e-mails. Do not follow the links. Do not visit the site listed below!</div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
This message sourced from alchavez@stewartaz.com; a domain not related to the link contained in the original e-mail; storageacct.webs.com/ . This is a spoofed e-mail address or the perpetrators hacked the mail server at Stewart Title in Arizona. </div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
Phishing E-Mail Text;</div>
<div class="MsoNormal">
<br /></div>
<div class="MsoNormal">
Your account has exceeded its storage limit. You will not be able to receive or send message, in order to restore your account please Click Here and submit required information. </div>
<div class="MsoNormal">
Thanks.</div>
<div class="MsoNormal">
IT ServiceDesk.</div>
<div>
<br /></div>
Unknownnoreply@blogger.com0Colorado, USA39.5500507 -105.7820674000000233.2362192 -116.10921590000001 45.8638822 -95.454918900000024tag:blogger.com,1999:blog-3045268335662723760.post-39319568332379312392014-06-26T14:00:00.001+01:002014-06-26T14:00:17.007+01:00Millions infected with the "American Parasite" - are you?Here's a new spam advertising scheme that is making the rounds. This one is claiming that Candida (yeast) is a parasite that is attacking Americans due to poor diets. It is a bogus scam like Green Coffee. Don't click it, don't visit; just delete it and move on with your day.<br />
<br />
Bogus advertising spam text:<br />
<br />
<html><br />
<head><br />
<meta content="text/html; charset=utf-8" http-equiv="content-type" /><br />
<meta http-equiv="Content-Language" content="en-us"/><br />
</head><br />
<body><br />
<P><br /><A href="http://view.keen-unsafe-organism.me">How much of the "American Parasite" are you eating every day?<br />
</A><br /><br /><br />
<A href="http://view.keen-unsafe-organism.me"><img src="http://image.keen-unsafe-organism.me" /></A></P><br />
<p><font size="3px" color="#F8F8F7"><br />
</font></p><br />
<P><br><br><br><A href="http://end.keen-unsafe-organism.me"><img src="http://bye.keen-unsafe-organism.me" /></A></P><br />
</body><br />
</html>Unknownnoreply@blogger.com0Colorado, USA39.5500507 -105.7820674000000233.2362192 -116.10921590000001 45.8638822 -95.454918900000024tag:blogger.com,1999:blog-3045268335662723760.post-66616146480742623962014-05-19T13:33:00.000+01:002014-05-19T13:39:36.004+01:00You have received a secure messageLooks like Bank of America has something important to tell me... OR maybe it's just another attempt to hack a computer?<br />
<br />
This is one of the most official looking attempts I've seen in a long time, to infect a computer. The e-mail appears comes from a legitimate BAML.COM e-mail address. The link in the message body is a real BofA website. However, the link in the PDF file that Effie Velasquez attached leads to a site that will download an infected .SCR file onto your system. Don't be fooled!<br />
<br />
The spoofed e-mail originates from stressful8@roycollc.com and came from IP Address 81.255.204.34 in France Choisy-le-roi. The ISP is Orange S.a.<br />
<br />
VIRUS E_MAIL TEXT:<br />
<br />
You have received a secure message from Bank of America Merrill Lynch<br />
<br />
Read your secure message by opening the attachment, SecureMessage.pdf. You will be prompted to open (view) the file or save (download) it to your computer. For best results, save the file first, then open it in a Web browser.<br />
If you have concerns about the validity of this message, contact the sender directly.<br />
<br />
First time users - will need to register after opening the attachment.<br />
Help - https://securemail.bankofamerica.com/websafe/ml/help?topic=RegEnvelopeUnknownnoreply@blogger.com0Choisy-le-Roi, France48.762541 2.408875899999998248.720673999999995 2.328194899999998 48.804408 2.4895568999999984tag:blogger.com,1999:blog-3045268335662723760.post-41267980150701656152014-03-20T20:45:00.000+00:002014-03-21T06:21:20.061+00:00Updated - Microsoft Warning Pop Up on XP Systems - End of Support---UPDATED---<br />
<br />
This is what the pop up looks like. This is the only version I have seen thus far. It shows up this way in Google's Chrome browser. I haven't seen up yet anywhere else on the few XP platforms we have left on client sites.<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="http://3.bp.blogspot.com/-eQzKy5uLUSI/UytTNJ4Y0II/AAAAAAAABx0/-n8b7zQbr9s/s1600/Suport+will+end.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="http://3.bp.blogspot.com/-eQzKy5uLUSI/UytTNJ4Y0II/AAAAAAAABx0/-n8b7zQbr9s/s1600/Suport+will+end.JPG" height="200" width="320" /></a></div>
<div class="separator" style="clear: both; text-align: center;">
<br /></div>
<div class="separator" style="clear: both; text-align: left;">
---UPDATED---</div>
<br />
<br />
Starting tomorrow, March 8th 2014, Microsoft will begin pushing out warnings to Windows XP users that the OS will no longer be supported after April 8th this year. The pop-up will appear on all systems as part of normal patching. The message should read “Windows XP End of Support is on April 8th, 2014. Click Here to learn more”. Here is an article on the subject; <a href="http://techwindowz.com/windows-xp-end-of-support-message-to-start-popping-up-on-saturday/" target="_blank">http://techwindowz.com/windows-xp-end-of-support-message-to-start-popping-up-on-saturday/</a><br />
<br />
Although this looks like a scary pop up it isn’t an immediate or major issue for many Win XP users. What this means to XP users is that MS will no longer supply security and Operating System patches for this OS. It won’t just stop working overnight. Over the next few months to a year it will render your systems more vulnerable to attack by hackers, viruses, and malware. Although it may not be necessary to update now, it will be in the near future so start planning ahead.<br />
<br />
However, if you are in the medical industry or accepting credit cards on an XP computer you will need to update your systems right away. Credit card companies, Point of Sale systems, and industry standards for financial and health systems will be required to leave Windows XP behind. There is still time to get the more familiar Windows 7 OS to replace them.<br />
<br />
This is a pop up message from Microsoft, it is not a scam. That said, the potential for abuse is massive. It will not be long before malware/virus writers and hackers begin making phony versions of this pop-up. My suggestion is that, when and if this comes up, click the “Don’t show this message again” check box and make a physical note on each machine you've updated. It is unlikely that Microsoft will send this out multiple times so if you've noted the machines its addressed you can hopefully avoid clicking on a fake pop-up in the future.<br />
<br />
Please read this article on the subject; <a href="http://techwindowz.com/windows-xp-end-of-support-message-to-start-popping-up-on-saturday/" target="_blank">Windows XP end-of-support message to start popping up on Saturday</a><br />
<div>
<br /></div>
Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-3045268335662723760.post-35570254512220965422014-03-05T16:27:00.001+00:002014-03-05T16:27:13.386+00:00NetFlix Scam - Phishing for your dataBig NetFlix phishing scam - watch out!<br />
<br />
Just posting this out there as a warning...<br />
<br />
LINK: <a href="http://bgr.com/2014/03/03/how-to-avoid-nextflix-scam-warning-alert/">http://bgr.com/2014/03/03/how-to-avoid-nextflix-scam-warning-alert/</a>Unknownnoreply@blogger.com0tag:blogger.com,1999:blog-3045268335662723760.post-79961486351227469962014-03-05T13:07:00.000+00:002014-03-05T13:07:00.148+00:00FEDERAL MINISTRY OF FINANCEHere we go again with the free money from Benin. I mean, what are we waiting for? It's there for the taking! My favorite thing about this one is that they used a Yahoo Calendar Event Invitation to send the request to over 35 recipients. The original e-mail even had the *.ics file so we could put it on our schedule.<br />
<br />
Wouldn't want to miss this important date...<br />
<br />
Of course this is a scam. People at a "Federal Ministry of Finance" don't use Yahoo accounts. In fact, anyone with a business or legitimate organization shouldn't use Yahoo mail, it is the most polluted "free" mail service out there.<br />
<br />
Delete the e-mail, don't communicate with them. Move on with your day!<br />
<br />
<a href="http://cotonou.usembassy.gov/scam.html" target="_blank">LINK: Warning from the Benin Embassy</a><br />
<br />
Spam email text;<br />
<br />
From: Usa Johnson <usajohnson301@yahoo.com><br />
Date: Thu, Dec 5, 2013 at 1:58 PM<br />
Subject: Invitation: FEDERAL MINISTRY OF FINANCE<br />
To:<br />
<br />
DEC<br />
05 <span class="Apple-tab-span" style="white-space: pre;"> </span>"FEDERAL MINISTRY OF FINANCE"<br />
When <span class="Apple-tab-span" style="white-space: pre;"> </span>Thursday, 05 December 2013<br />
08:30 PM to 09:30 PM<br />
(GMT) Greenwich Mean Time - Dublin / Edinburgh / Lisbon / London<br />
<span class="Apple-tab-span" style="white-space: pre;"> </span><br />
Where <span class="Apple-tab-span" style="white-space: pre;"> </span><br />
<span class="Apple-tab-span" style="white-space: pre;"> </span><br />
Message <span class="Apple-tab-span" style="white-space: pre;"> </span>FEDERAL MINISTRY OF FINANCE NATIONAL HOUSE OF ASSEMBLY COMPLEX SENATE HOUSE - UPPER CHAMBERS WUSE DISTRICT, COTONOU BENIN Our Ref: FGN /SNT/STB I have to inform you again that we are not playing over this matter that we have sent to you several times, I know my reason for the continuous sending of this notification to you, the fact is that you can't seem to trust any one again over this payment For what you have been in cantered in many months ago, but I want you to be assured that you will received your funds THROUGH THE HELP OF THIS OFFICE.I cannot scam you for $40. The bank processing of your payment which is BANK OF AFRICA (B.O.A), requested the processing fee of $40 .The requested $40 is clearly written to you before, I did not invent the bill to defraud you of $40 it is an official bank payment processing fee, and the good part of this is that you will never ever be disturbed again over any kind of payment. This is final and the forms from there becomes effective once we submit your payment application processing fee and pay the form fee of $39 I don't want you to loose this fund this time because you may never get another such good opportunity, the federal government is keen and very determined to pay your overdue debts, this is not a fluke, I would not want you to loose this fund out of ignorance, I will send you all the documents as soon as bank payment processing fee is paid, you have to trust me, you will get your fund, find a way to get $40 you will not loose it, instead it will bring your financial breakthrough, find the money and send it to our bursary. The reason why am sending you this email is because i want you to receive your USD$800,000.00 immediately, we are trying to round up for this payment program. Here Is the Payment Information through Western Union money transfer or Money Gram money transfer, finally my advice to you is not to abandon this transaction because of the requirement of ($40) Receivers Name:EMMANUEL UDALOR Address: COTONOU BENIN REPUBLIC Test Question: WHEN Answer: NOW MTCN________________ Send all the details of the MTCN direct to this email.Furthermore I am waiting for the payment details in your next urgent reply Yours in service Mrs. Mary Maduome<br />
<span class="Apple-tab-span" style="white-space: pre;"> </span><br />
Invitees<br />
35 more...<br />
<span class="Apple-tab-span" style="white-space: pre;"> </span><br />
<span class="Apple-tab-span" style="white-space: pre;"> </span>Respond<br />
This event invitation was sent from Yahoo Calendar<br />
<div>
<br /></div>
Unknownnoreply@blogger.com0Benin9.30769 2.31583399999999531.3105689999999992 -8.0113145000000046 17.304811 12.642982499999995tag:blogger.com,1999:blog-3045268335662723760.post-47669533829681743582014-03-04T13:18:00.000+00:002014-03-04T13:18:59.921+00:00FINAL NOTIFICATION LETTERYet another scam out of Benin Africa. This one was enough to get a chuckle out of me. It is one of the most poorly crafted scam mails I've seen recently. Go ahead and read it. It may get a laugh.<br />
<br />
However, I'll put this as plainly as I can. People fall for this ridiculous stuff every day, don't be one of them. I know it sounds crazy, but be wary. These over the top e-mails may sound insane to many of us, but the victims of these e-mails are often tech illiterate, elderly, and/or lonely and desperate.<br />
<br />
<a href="http://cotonou.usembassy.gov/scam.html" target="_blank">LINK: Warning from the Benin Embassy</a><br />
<br />
That said, there are many more scams that are very subtle and harder to detect. Just watch out!<br />
<br />
Spam scam text:<br />
<br />
From: DR.CHIMA <officerinchargemohammedyusufu@gmail.com><br />
Date: Tue, Jan 14, 2014 at 5:52 AM<br />
Subject: FINAL NOTIFICATION LETTER<br />
To:<br />
<br />
<br />
INTERNATIONAL MONITORING FUND I.M.F<br />
<br />
ATTN:<br />
<br />
I WISH TO INFORM YOU THAT YOUR NAME HAS BEEN LISTED AMONG OTHERS THAT THERE<br />
FUND HAS BEEN APPROVED FOR IMMEDIATE TRANSFER TO YOUR ACCOUNT.THE APPROVAL WAS<br />
MADE POSSIBLE AFTER MEETING HELD TODAY WITH THE UNITED STATE CONGRESS ON<br />
FINANCIAL MATTERS REGARDING BENEFICIARIES WHO'S FUNDS IN SOME BANKS AND<br />
CONSIGNMENT THAT HAS BEEN HELD UP IN DIFFERENT AIR PORTS ALSO BANK DRAFTS AND<br />
CHEQUES THAT IS BEEN STOPPED BY SOME DIPLOMAT.<br />
<br />
IN THIS REGARD, INSTRUCTION WAS GIVING TO THE CREDIT CONTROLLER OF BRITISH<br />
INTERNATIONAL FINANCIAL DEPT. TO MAKE SURE THAT YOU RECEIVE YOUR FUND WITHIN<br />
48HRS FROM TODAY. THEREFORE, I WILL ADVISE YOU TO SEND IMMEDIATELY THE<br />
FOLLOWING INFORMATION'S IMMEDIATELY SO THAT I WILL SUBMIT IT TO THE BANK TO<br />
CONTACT YOU AND TELL YOU WHEN YOUR FUND WILL BE IN YOUR ACCOUNT.<br />
<br />
1). YOUR FULL NAME AND ADDRESS:<br />
<br />
2). YOUR PRIVATE TELEPHONE AND FAX NUMBERS :<br />
<br />
3). YOUR AGE ND OCCUPATION<br />
<br />
NOTE THAT AS SOON AS WE RECEIVE THESE INFORMATION, THEN YOUR FUND WILL BE<br />
APPROVED AND TRANSFER TO YOUR ACCOUNT AND A TELEX CONFIRMATION SLIP WILL BE<br />
SEND TO YOUR BANK AND COPY WILL BE SEND TO YOU FOR YOU TO START MAKING<br />
WITHDRAWAL. YOU ARE REQUIRED TO UPDATE THIS OFFICE AND FIRM YOUR FULL BANKING<br />
INFORMATION AND CONTACT DETAILS FOR THE ONWARD TRANSFER.IT IS IMPERATIVE FOR<br />
YOU TO MAKE THIS PAYMENT OF $109 USD FOR THE ACTIVATION AND THE WITHDRAW CODE<br />
<br />
THIS IS THE INFORMATION TO SEND US THIS MONEY TRU OUR SERVICE WESTERN UNION<br />
MONEY TRANSFER<br />
<br />
SENDER'S NAME<br />
RECEIVER'S NAME: INNOCENT ONUORAH<br />
ADDRESS: IMF Central District,OWANDO<br />
COUNTRY: BENIN REPUBLIC<br />
AMOUNT: $109 USD<br />
MTCN MONEY CONTROL #:<br />
EXT QUESTIONS : what is your color<br />
TEXT ANSWER :White<br />
<br />
Below Is the Transfer Details<br />
<br />
Date: 7/1/2014 11:58: 24 Am<br />
Reference No: D3a63-5e02f-885e<br />
Account Code: QW-21905-AZ<br />
Withdrawing Code: **************<br />
From: Corresponded dollars account no: 46587921354<br />
Format: Standard Top World Bank<br />
Issuing Bank: Bank OFFICE<br />
Current Status: Pending Transfer<br />
Activation and the with drawer code (Charge): $109 USD<br />
Additional Fee: Zero<br />
Total Amount: USD 35. 5 Million<br />
Currency: USD<br />
Interest: Zero (0.0%)<br />
<br />
As soon as our A/c Officer confirm your payment of $109 USD, the activation<br />
and the drawers code would be forwarded to the transfer department for onward<br />
telegraphic transfer. A login and the password to our Online-Bank account<br />
would be created at the receipt of the activation code<br />
<br />
YOURS FAITHFULLY<br />
HUHU KUKU<br />
FINANCIAL CONTROLLER<br />
INTERNATIONAL MONITORING FUND (IMF)<br />
<div>
<br /></div>
Unknownnoreply@blogger.com0Benin9.30769 2.31583399999999531.3105689999999992 -8.0113145000000046 17.304811 12.642982499999995tag:blogger.com,1999:blog-3045268335662723760.post-65760715937479129002014-03-03T13:33:00.002+00:002014-03-03T13:34:28.382+00:00Are you a smart investor? Let me show you how to tripleMore Random text SPAM e-mails... Flak... Spam. Curious about what it means? Visit my other post here; <a href="http://spamfromfriends.blogspot.com/2014/01/nonsense-random-word-email-spam-what-i.html" target="_blank">FLAK MAIL OR RANDOM TEXT MAIL EXPLAINED</a>.<br />
<br />
This spam message originated on the Mega Cable S.a. De C.v. network somewhere near Los Mochis, Sinaloa, Mexico.<br />
<br />
Flak mail text;<br />
<br />
I have sworn to fight to the death to protect my family, but somehow the memory of my family makes it hard to keep that promise. These attributes can be enhanced using special items found in the game, or by visiting the in game swordsmith. June 4, 1936, p. LiveCloud, focusing on bands and music. The transmitters are designed and placed so as to avoid inadvertent triggering of the automated shutoffs. He was a prolific author, although his literary researches were sometimes lacking in method. Daniel was signed to the Atlanta Braves in 2005 before being released. Luba Cherbakov et al. As the name suggests, it is a collection of cover versions, focusing on songs that have influenced and inspired the band. Meanwhile in Paris, Louis Philippe assumed the post of Lieutenant General of the Kingdom. King Denamunda IV by different mothers. Pierce Granger and Clarissa Trumbull. Mahayana texts, which often generalize monastic norms to laity, require this of lay people as well. Dabs, the balloon contestant, has his body replaced after being inadvertently popped. Museum of Modern Art, formerly collection Lillie P. The last occupants left in 1684. Many in use but becoming difficult on support and parts. On February 16, 2010, Attorney General Kenneth T. A touch of convenient thunder rumbles in the sky. But it's the kids who provide the highlights in this one, with their antics at Duff Gardens. Their reign consisted of five emperors from 1491 till 1570. Plan of Studies, of the Jesuits. The Talk time and other validity will be terminated during porting. Early experiments used the existing theories of the movement of charged particles through an electrical conductor. Final Olympic Qualification Tournament at just 17 years of age, making him the youngest player to play for Australia. It was created for snowboarders who suffered snow withdrawal during the summer. They will also sometimes lick people for similar reasons. How the cartographer displays the data in different hues can greatly affect the understanding or feel of the map. Drew, who ends up with her best friend, Katie. Chip Douglas and released on his own label in 1976. During the second world war, the Young Building was converted into a military hospital. In the episode, senior citizens are running over people in the city of South Park, causing them to lose their driver's licenses. Midhe vol 6 pt1 1975 p. Government Gazette 2007, No. On July 13, the Pike County venue will host glam rockers KISS in its first show since 2007. Passenger trains were reinstated in 1936. Muvattupuzha river is the prime victim of river pollution nowadays. Cicero and continuing in German philosophy until present, and some English philosophers prefer this in English too. Deerfield High School was in the top 500 public U. Occupy key tactical zones around the map to score points.Unknownnoreply@blogger.com0Los Mochis, Sinaloa, Mexico25.7904657 -108.98588225.6760812 -109.1472435 25.9048502 -108.8245205