HOME


5h-3LL 1.0
DIR: /home/aissorg/mail/.spam/new
/home/aissorg/mail/.spam/new/
Upload File:
Current File : /home/aissorg/mail/.spam/new/1744203224.M458433P16552.v22437909.sin01.serveradd.com,S=7775,W=7904
Return-Path: <contact@aiss.org.in>
Delivered-To: aissorg+spam@v22437909.sin01.serveradd.com
Received: from v22437909.sin01.serveradd.com
	by v22437909.sin01.serveradd.com with LMTP
	id IA45G9ht9meoQAAA+povcg
	(envelope-from <contact@aiss.org.in>)
	for <aissorg+spam@v22437909.sin01.serveradd.com>; Wed, 09 Apr 2025 08:53:44 -0400
Return-path: <contact@aiss.org.in>
Envelope-to: contact@aiss.org.in
Delivery-date: Wed, 09 Apr 2025 08:53:44 -0400
Received: from [161.248.239.213] (port=49275)
	by v22437909.sin01.serveradd.com with esmtp (Exim 4.98.1)
	(envelope-from <contact@aiss.org.in>)
	id 1u2Uw2-000000004IU-16MA
	for contact@aiss.org.in;
	Wed, 09 Apr 2025 08:53:44 -0400
From: contact@aiss.org.in
To: contact@aiss.org.in
Date: 9 Apr 2025 19:53:01 +0700
Message-ID: <20250409195301.761FC018B4555DD6@aiss.org.in>
MIME-Version: 1.0
Content-Type: text/html
Content-Transfer-Encoding: quoted-printable
X-Spam-Status: Yes, score=20.1
X-Spam-Score: 201
X-Spam-Bar: ++++++++++++++++++++
X-Spam-Report: Spam detection software, running on the system "v22437909.sin01.serveradd.com",
 has identified this incoming email as possible spam.  The original
 message has been attached to this so you can view it or label
 similar future email.  If you have any questions, see
 root\@localhost for details.
 Content preview:  Congratulations! I have bad news for you. I have had access
    to the devices you use to browse the web for months now. During that time,
    I have been tracking all your online activities. Here is the seq [...] 
 Content analysis details:   (20.1 points, 5.0 required)
  pts rule name              description
 ---- ---------------------- --------------------------------------------------
  1.5 SPF_SOFTFAIL           SPF: sender does not match SPF record (softfail)
  0.2 KAM_DMARC_NONE         DKIM has Failed or SPF has failed on the message and
                             the domain has no DMARC policy
  0.0 KAM_DMARC_STATUS       Test Rule for DKIM or SPF Failure with Strict
                             Alignment
  0.0 RCVD_IN_VALIDITY_CERTIFIED_BLOCKED RBL: ADMINISTRATOR NOTICE: The
                             query to Validity was blocked.  See
                             https://knowledge.validity.com/hc/en-us/articles/20961730681243
                              for more information.
                        [161.248.239.213 listed in sa-trusted.bondedsender.org]
  0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to
                              Validity was blocked.  See
                             https://knowledge.validity.com/hc/en-us/articles/20961730681243
                              for more information.
                           [161.248.239.213 listed in bl.score.senderscore.com]
  0.0 RCVD_IN_VALIDITY_SAFE_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to
                              Validity was blocked.  See
                             https://knowledge.validity.com/hc/en-us/articles/20961730681243
                              for more information.
                             [161.248.239.213 listed in sa-accredit.habeas.com]
  0.0 HTML_MESSAGE           BODY: HTML included in message
  0.1 MIME_HTML_ONLY         BODY: Message only has text/html MIME parts
  2.0 RDNS_NONE              Delivered to internal network by a host with no rDNS
  8.5 KAM_CRIM               Extortion Email
  0.5 PDS_BTC_ID             FP reduced Bitcoin ID
  3.5 BITCOIN_TOEQFM         Bitcoin + To same as From
  1.5 BITCOIN_SPAM_07        BitCoin spam pattern 07
  0.0 TO_EQ_FM_DIRECT_MX     To == From and direct-to-MX
  0.0 TO_NO_BRKTS_NORDNS_HTML To: lacks brackets and no rDNS and HTML only
  1.3 BITCOIN_MALWARE        BitCoin + malware bragging
  1.0 MALWARE_NORDNS         Malware bragging + no rDNS
X-Spam-Flag: YES
Subject:    Payment from your account. (Payment from your account.)

<!DOCTYPE HTML>

<html><head><title></title>
<meta http-equiv=3D"X-UA-Compatible" content=3D"IE=3Dedge">
</head>
<body style=3D"margin: 0.4em;">
Congratulations! I have bad news for you. I have had access to the devices =
you use to browse the web for months now. During that time, I have been tra=
cking all your online activities. Here is the sequence of events: Some time=
 ago, I bought access to several emails from some hackers. email accounts (=
it is quite easy to buy such things online these days). This way you can ea=
sily access your email. email account contact@aiss.org.in A week later, he =
installed a Trojan horse on the operating systems of all=20
the devices he used to access his email. It wasn't really that hard (becaus=
e you were clicking on links in your inbox). As simple as it is brilliant. =
=3D) This software gives you access to all the device drivers (such as micr=
ophone, camera and keyboard). I have downloaded all your information, data,=
 photos and web browsing history to my servers. I have access to all your M=
essenger messages, social networks, emails. messages, chat history and cont=
act lists. My virus is constantly updating its=20
signatures (it's driver-based), so it remains invisible to antivirus. Now y=
ou probably understand why I was overlooked until this post... While gather=
ing information about you, I found out that you are a big fan of adult site=
s. You like to visit porn sites and watch interesting videos while having f=
un. Well, I managed to record some of his naughty habits and make videos of=
 him masturbating and having an orgasm. If you don't believe me, you can sh=
are all the videos with your friends, colleagues=20
and family with a few clicks. I have no problem publishing it. I think you =
don't want this to happen to the nature of the videos you like to watch (yo=
u know exactly what I mean) because it would be a real disaster. Here's how=
 to fix it: Transfer $770 (the equivalent of Bitcoin based on the exchange =
rate at the time of the transfer) and as soon as I receive the transfer, I =
will immediately delete all your information. Then we will forget about eac=
h other. I also agree to deactivate and remove=20
all malware from your devices. Trust me, I will keep my word. It's a good d=
eal and the price is quite low, especially since I've been following their =
profile and traffic for a while. If you don't know how to buy and transfer =
bitcoins, you can find out using any modern search engine. This is my bitco=
in wallet: bc1qtmpd20he2qccvazg0a99guw44exm8dtpjup5ry less than 48 hours af=
ter this email. opening the mail (exactly 2 days). What to avoid: *Do not r=
eply to this email. email (I created this email=20
in your inbox and generated the sender address). *Do not try to contact the=
 police or other security agencies. Also, don't even think of telling your =
friends about this. If I find out (as you can see, it's not that hard consi=
dering I control all your systems), I will immediately publish your video. =
*Don't try to contact me, it would be useless. All cryptocurrency transacti=
ons are anonymous. *Don't try to reinstall the operating system on your dev=
ices or throw them away. It wouldn't make sense=20
either, because all videos are stored on remote servers. Things you don't n=
eed to worry about: *I might not be able to accept your funds transfer. - D=
on't worry, I'll see you right after the transfer, because I'm constantly m=
onitoring all your activities (my trojan has a remote control function, a b=
it like TeamViewer). *Share your videos, even if you transferred funds to m=
e. - Trust me, I won't cause you any more problems. If that were my goal, I=
 would have started a long time ago! Everything=20
will be done fairly! One last thing... Try not to find yourself in similar =
situations in the future. My advice: change all your passwords often!</body=
></html>