Solved Real Threat? Should I Worry? #2

Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

jmallard

Jerry
Thread Starter
Joined
Mar 16, 2011
Messages
149
-------- System Info ------------
Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft Windows 7 Professional, Service Pack 1, 64 bit
Processor: Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz, Intel64 Family 6 Model 15 Stepping 11
Processor Count: 4
RAM: 8189 Mb
Graphics Card: NVIDIA GeForce GTX 550 Ti, 1024 Mb
Hard Drives: C: Total - 228933 MB, Free - 107087 MB; D: Total - 457859 MB, Free - 150213 MB; E: Total - 953866 MB, Free - 235295 MB; I: Total - 953866 MB, Free - 594206 MB;
Motherboard: Dell Inc., 0YU822
Antivirus: Panda Dome, Updated and Enabled
---------

Hi,

I recently received three emails concerning my primary email account ([email protected]ctimsdomain.com) being hacked. The last two of the emails are worded almost exactly as the email mentioned in the first thread titled, "Real threat? Should I worry?" in this forum. The first email was received on 09/25/2018. Below is the source code:


----------- email Source Code 1 ------------

Hello!
I'm a member of an international hacker group.

As you could probably have guessed, your account [email protected] was hacked, I sent message you from it.

Now I have access to you accounts! You still do not believe it?
So, this is your password: xxxxxxxx , right?

Within a period from July 5, 2018 to September 21, 2018, you were infected by the virus we've created, through an adult website you've visited.
So far, we have access to your messages, social media accounts, and messengers.
Moreover, we've gotten full damps of these data.

We are aware of your little and big secrets...yeah, you do have them. We saw and recorded your doings on porn websites. Your tastes are so weird, you know..

But the key thing is that sometimes we recorded you with your webcam, syncing the recordings with what you watched!
I think you are not interested show this video to your friends, relatives, and your intimate one...

Transfer $700 to our Bitcoin wallet: 1DzM9y4fRgWqpZZCsvf5Rx4HupbE5Q5r4y
I guarantee that after that, we'll erase all your "data" :D

A timer will start once you read this message. You have 48 hours to pay the above-mentioned amount.

Your data will be erased once the money are transferred.
If they are not, all your messages and videos recorded will be automatically sent to all your contacts found on your devices at the moment of infection.

You should always think about your security. We hope this case will teach you to keep secrets.
Take care of yourself.
------------- end Source Code 1 ---------------

I received this email on 10/17/2018. Source Code below:

-------- email Source Code 2 --------------
Hello!

My nickname in darknet is rene69.
I hacked this mailbox more than six months ago,
through it I infected your operating system with a virus (trojan) created by me and have been monitoring you for a long time.

If you don't belive me please check 'from address' in your header, you will see that I sent you an email from your mailbox.

Even if you changed the password after that - it does not matter, my virus intercepted all the caching data on your computer
and automatically saved access for me.

I have access to all your accounts, social networks, email, browsing history.
Accordingly, I have the data of all your contacts, files from your computer, photos and videos.

I was most struck by the intimate content sites that you occasionally visit.
You have a very wild imagination, I tell you!

During your pastime and entertainment there, I took screenshot through the camera of your device, synchronizing with what you are watching.
Oh my god! You are so funny and excited!

I think that you do not want all your contacts to get these files, right?
If you are of the same opinion, then I think that $567 is quite a fair price to destroy the dirt I created.

Send the above amount on my BTC wallet (bitcoin): 1DBMVxzSPZ95FDyZfopwHgxncFEsp89uuS
As soon as the above amount is received, I guarantee that the data will be deleted, I do not need it.

Otherwise, these files and history of visiting sites will get all your contacts from your device.
Also, I'll send to everyone your contact access to your email and access logs, I have carefully saved it!

Since reading this letter you have 45 hours!
After your reading this message, I'll receive an automatic notification that you have seen the letter.

I hope I taught you a good lesson.
Do not be so nonchalant, please visit only to proven resources, and don't enter your passwords anywhere!
Good luck!
-------------- end Source Code 2 ---------

The second "[email protected]" is hacked was received today (10/19/2018). Below is the source code:

--------- email Source Code 3 ---------------------
Hello!

My nickname in darknet is farrell11.
I hacked this mailbox more than six months ago,
through it I infected your operating system with a virus (trojan) created by me and have been monitoring you for a long time.

So, your password from [email protected] is xxxxxx

Even if you changed the password after that - it does not matter, my virus intercepted all the caching data on your computer
and automatically saved access for me.

I have access to all your accounts, social networks, email, browsing history.
Accordingly, I have the data of all your contacts, files from your computer, photos and videos.

I was most struck by the intimate content sites that you occasionally visit.
You have a very wild imagination, I tell you!

During your pastime and entertainment there, I took screenshot through the camera of your device, synchronizing with what you are watching.
Oh my god! You are so funny and excited!

I think that you do not want all your contacts to get these files, right?
If you are of the same opinion, then I think that $893 is quite a fair price to destroy the dirt I created.

Send the above amount on my BTC wallet (bitcoin): 1FHPbKHcSx9CaXJzDpLoXG733ipQ77UNx9
As soon as the above amount is received, I guarantee that the data will be deleted, I do not need it.

Otherwise, these files and history of visiting sites will get all your contacts from your device.
Also, I'll send to everyone your contact access to your email and access logs, I have carefully saved it!

Since reading this letter you have 48 hours!
After your reading this message, I'll receive an automatic notification that you have seen the letter.

I hope I taught you a good lesson.
Do not be so nonchalant, please visit only to proven resources, and don't enter your passwords anywhere!
Good luck!
------------- end Source Code 3 ------------

FWI. I have had this email account since 1997. After receiving each of these emails I ran System Mechanic and Panda Cloud for viruses and/or problems - each time I found none. I have used both passwords in the past, but a long time ago. I still use them on some web sites that I visit, but nothing important. I will try to find all the websites and change the passwords.

Note: Before I opened the second and third emails " [email protected] is hacked" - I disconnected from the internet (turned off my router/modem). I then opened the emails. I have since turned off sending any return receipts for emails. Also, I have a camera attached to this computer but it is always covered unless in use (which has only been one time - two years ago).

I have three complete computer back-ups (9/26/2018) - (10/09/2018) and (10/18/2018).

I have not had any problems with my computer or files that I have the ability to detect. Should I take any other action?

Thanks.


Jerry
 
Last edited by a moderator:

jmallard

Jerry
Thread Starter
Joined
Mar 16, 2011
Messages
149
Triple6,

Thanks for the reply. That's pretty much what I thought.

I went back and removed the header information from the source code emails.

Jerry
 
Last edited:

dvk01

Derek
Retired Moderator Retired Malware Specialist
Joined
Dec 14, 2002
Messages
56,452
That is a total scam, you are not infected
see https://myonlinesecurity.co.uk/attempted-blackmail-scam-watching-porn/

What to do when you receive a Blackmail, Sextortion Scam email
If you do receive any email like this, Don’t panic, Do not respond to it, Read this page fully and carefully, especially the section about changing passwords and contacting your bank & credit card company. Then contact the appropriate police /fraud authority in your country, follow the advice on their site to report this crime and then delete the email from your computer.



  • Do not reply to the scammer. Do not pay any money to him.
  • He has not hacked or otherwise compromised your computer, Mobile Phone, Tablet or any other device.
  • He does not have any screenshots or videos of you doing anything.
 

dvk01

Derek
Retired Moderator Retired Malware Specialist
Joined
Dec 14, 2002
Messages
56,452
I have also edited you email address & replaced it with a honeypot email address
 
Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

Users Who Are Viewing This Thread (Users: 0, Guests: 1)

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 807,865 other people just like you!

Latest posts

Top