Skip to main content

Email Abuse Report

F2smmjsksskj sjsjs

I have received an abuse report from datacenter now I want to check who send this email and from which account this email was sent please help me below is the email content

 

Content-Type: text/plain; charset=us-ascii

Date: Mon, 29 Dec 2025 13:05:33 +0100

From: redacted@netcraft.com

Message-Id: <52A2BD84-94BC-421B-9C8D-AB1DB36C8F92@[REDACTED_DOMAIN]>

Mime-Version: 1.0 (1.0)

Received: from server51.gosecuredns.net ([116.202.196.241]) by

 ip-172-18-48-32 (Haraka) with ESMTP id

 E9B6097E-2519-4C11-952A-1435EBC38920.1 envelope-from

 <redacted@netcraft.com>; Mon, 29 Dec 2025 12:08:55 +0000

Subject: No-reply.

To: 0reqs <redacted@netcraft.com>

X-Mailer: iPhone Mail (21G93)

 

Hi,

 

I am a hacker, and I have successfully gained access to your operating system.

I also have full access to your account.

 

I've been watching you for a few months now.

 

The fact is that your computer has been infected with malware through an adult site that you visited.

If you are not familiar with this, I will explain.

Trojan Virus gives me full access and control over a computer or other device.

 

I can see everything on your screen, turn on the camera and microphone, but you do not know about it.

 

I also have access to all your contacts and all your correspondence.

 

Why did your antivirus not detect malware?

Answer: The malware I used is driver-based, I update its signatures every 4 hours. Hence your antivirus is unable to detect its presence.

I made a video showing how you satisfy yourself in the left half of the screen, and the right half shows the video you were watching at the time.

 

With one mouse click, I can send this video to all your emails and contacts on your social networks.

I can also make public all your e-mail correspondence and chat history on the messengers that you use.

 

If you don't want this to happen, transfer $990 in Bitcoin equivalent to my Bitcoin address.

 

My Bitcoin address (BTC Wallet) is: 1BCbQEJN1bHXAsLAk9MEZeCvyZGC4N3F3T

 

After confirming your payment, I will delete the video immediately, and that's it.

I will give you 50 hours to pay.

Comments

1 comment

Date Votes
  • cPRex Jurassic Moderator

    Hey there!  If this mail was sent *from* your server you should be able to check the /var/log/exim_mainlog file to see how that message was sent and that would tell you the compromised account.

    0

Please sign in to leave a comment.

Didn't find what you were looking for?

New post