/home/arranoyd/mail/.spam/cur/1702683146.M258278P251655.nl53.altushost.com,S=6192,W=6302:2,
Return-Path: <beauty@final.dobunny.com>
Delivered-To: arranoyd+spam@nl53.altushost.com
Received: from nl53.altushost.com
	by nl53.altushost.com with LMTP
	id uAyRDgrifGUH1wMAmQ2V0w
	(envelope-from <beauty@final.dobunny.com>)
	for <arranoyd+spam@nl53.altushost.com>; Sat, 16 Dec 2023 00:32:26 +0100
Return-path: <beauty@final.dobunny.com>
Envelope-to: ana.rakic@jagma.hr
Delivery-date: Sat, 16 Dec 2023 00:32:26 +0100
Received: from [177.152.101.48] (port=10208 helo=177-152-101-48.dynamic.b2networks.com.br)
	by nl53.altushost.com with esmtp (Exim 4.96.2)
	(envelope-from <beauty@final.dobunny.com>)
	id 1rEHfL-0013eb-13
	for ana.rakic@jagma.hr;
	Sat, 16 Dec 2023 00:32:26 +0100
Message-ID: <657CB6C3.1090507@final.dobunny.com>
Date: Fri, 15 Dec 2023 16:27:47 -0400
From: <beauty@final.dobunny.com>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9pre) Gecko/2008050715 Thunderbird/3.0a1
MIME-Version: 1.0
To: <ana.rakic@jagma.hr>
Content-Type: text/plain; charset=ISO-8859-3; format=flowed
Content-Transfer-Encoding: 8bit
X-Spam-Status: Yes, score=24.2
X-Spam-Score: 242
X-Spam-Bar: ++++++++++++++++++++++++
X-Spam-Report: Spam detection software, running on the system "nl53.altushost.com",
 has identified this incoming email as possible spam.  The original
 message has been attached to this so you can view it or label
 similar future email.  If you have any questions, see
 root\@localhost for details.
 Content preview:  Hello, my perverted friend. We've actually known each other
    for a while, at least I know you. You can call me Big Brother or the All-Seeing
    Eye. I'm a hacker who a few months ago gained access to your device, including
    your brow [...] 
 Content analysis details:   (24.2 points, 5.0 required)
  pts rule name              description
 ---- ---------------------- --------------------------------------------------
  0.2 CK_HELO_GENERIC        Relay used name indicative of a Dynamic Pool or
                             Generic rPTR
  1.3 RCVD_IN_VALIDITY_RPBL  RBL: Relay in Validity RPBL,
                             https://senderscore.org/blocklistlookup/
                            [177.152.101.48 listed in bl.score.senderscore.com]
  1.1 DATE_IN_PAST_03_06     Date: is 3 to 6 hours before Received: date
  2.0 PYZOR_CHECK            Listed in Pyzor
                             (https://pyzor.readthedocs.io/en/latest/)
 -0.0 T_SCC_BODY_TEXT_LINE   No description available.
  3.9 HELO_DYNAMIC_IPADDR2   Relay HELO'd using suspicious hostname (IP
                             addr 2)
  2.0 RDNS_NONE              Delivered to internal network by a host with no rDNS
  1.0 KAM_LAZY_DOMAIN_SECURITY Sending domain does not have any
                             anti-forgery methods
  0.0 KAM_DMARC_STATUS       Test Rule for DKIM or SPF Failure with Strict
                             Alignment
  8.5 KAM_CRIM               Extortion Email
  0.5 PDS_BTC_ID             FP reduced Bitcoin ID
  0.7 BITCOIN_EXTORT_01      Extortion spam, pay via BitCoin
  2.1 FSL_BULK_SIG           Bulk signature with no Unsubscribe
  1.1 BITCOIN_SPAM_02        BitCoin spam pattern 02
  0.0 NO_FM_NAME_IP_HOSTN    No From name + hostname using IP address
X-Spam-Flag: YES
Subject:  ***SPAM***  No reply.
X-From-Rewrite: unmodified, forwarded message

Hello, my perverted friend.

We've actually known each other for a while, at least I know you.
You can call me Big Brother or the All-Seeing Eye.
I'm a hacker who a few months ago gained access to your device, including your browser history and webcam.
I recorded some videos of you jerking off to highly controversial "adult" videos.
I doubt you'd want your family, coworkers, and your entire ana.rakic@jagma.hr contact list to see footage of you pleasuring yourself, 
especially considering how kinky your favorite "genre".
I will also publish these videos on porn sites, they will go viral and it will be physically impossible to remove them from the Internet.

How did I do this?
Because of your disregard for internet security, I easily managed to install a Trojan on your hard disk.
Thanks to this, I was able to access all the data on your device and control it remotely.
By infecting one device, I was able to gain access to all the other devices.

My spyware is embedded in the drivers and updates its signature every few hours, so no antivirus or firewall can ever detect it.
Now I want to offer a deal: a small amount of money in exchange for your former worry free life.

Transfer $890 USD to my bitcoin wallet:1LbbzFmNMMFMwsketCSzxAur6yinXBSiQQ

As soon as I receive confirmation of the payment, 
I will delete all the videos that compromise you, remove the virus from all your devices and you will never hear from me again.
It's a very small price for not destroying your reputation in the eyes of others, who think that you are a decent man, according to your messengers. 
You can think of me as some sort of life coach who wants you to start appreciating what you have.

You have 48 hours. I will receive a notification as soon as you open this email, and from this moment, the countdown will begin.
If you've never dealt with cryptocurrency before, it's very easy. Simply type "cryptocurrency exchange" into a search engine, and then all set.

Here's what you shouldn't do:
- Don't reply to my email. It was sent from a temporary email account.
- Don't call the police. 
 Remember, I have access to all your devices, and as soon as I notice such activity, it will automatically lead to the publishing of all the videos.
- Don't try to reinstall your system or reset your device. First of all, I already have the videos, 
 and secondly, as I said, I have remote access to all your devices, and once I notice such an attempt, you know what happens.
 
Remember, crypto addresses are anonymous, so you won't be able to track down my wallet.

So long story short, let's resolve this situation with a benefit for me and you.
I always keep my word unless someone tries to trick me.

Lastly, a little advice for the future. Start taking your online security more seriously.
Change your passwords regularly and set up multi-factor authentication on all your accounts.

Best wishes.
Path: home/arranoyd/mail/.spam/cur