友人からの報告です。
初歩的な偽装迷惑メールです。

宛先
Recipients
差出人
shenne.molina@chevrolet-greenhills.com.ph
返信先
Recipients
件名
ABOUT MR. SUSUMU YOUR BROTHER.
内容

Good day,
My name is Prof. David Hamilton (RETIRED), I live in London, United Kingdom, I am looking for any family member of an old friend who used to live here in UK and was in the business of Crude Oil brokerage mostly between Europe and Middle East.

His first name is (SUSUMU) ,but you and him have the same (FAMILY NAME), and this is why I have decided to contact you with this letter to try to find out from you if you know him or if he is one of your relations, he was my client for ten years when I was still working as legal adviser to so many foreigners who were doing businesses here in the UK before I retired.

Mr. Susumu died some years ago in the terrible Tsunami that hit Japan ,and unfortunately he was travelling to Miyagi prefecture with his wife (Keiko) and his only daughter (Namiko) when the Tsunami hit Japan and killed them all, it was a tragic event and I was so sad with the terrible accident.

The reason why I am looking for anyone related to Mr. Susumu is because Mr. Susumu bank account officer contacted me a year ago regarding the ($50,000,000.00) Fifty Million United States Dollars Mr. Susumu kept in the security vault of the bank before he died, the bank made me to know that Mr. Susumu died with his family in the Japan Tsunami, they knew after they did not see him visit the bank to check his cash deposits in their vault, the bank has searched through the Japanese Family Register for anyone who may be related to him, but he has no relation living in Japan ,because his father and mother traveled to USA in the early time and both died there in the USA, so it became very difficult to locate anyone who is directly his relations.

The reason for all this search is because the bank is looking for anyone who is related to him ,so that they can pay out the $50,000,000.00 to the person according to the banking laws of United Kingdom, the bank could not do anything because they couldn’t find anyone related to him, now the bank is under the law to contact me as the last person who consulted for Mr. Susumu on all legal matters here in the UK to ask me to find anyone who is related to him to come forward and claim the $50,000,000.00, but I have also searched and could not find anyone related to him.

I am now using information’s I gathered on the internet to contact people who have the same family name as Mr. Susumu to ask if they know him, please reply to me quickly after you receive this letter to inform me if you are his relative, so that we can discuss how the funds will be paid to you immediately, because by law if the bank does not find anyone to claim the funds they have the right to take the funds without paying it to anyone.

Please keep this information confidential and do not share it with anyone because this is a confidential letter.

I will be waiting and hoping for a reply from you.

Sincerely Yours,

Prof. David Hamilton (Retired)
15 Cunningham Avenue
ENFIELD, Middx EN3 6LB
United Kingdom
TEL/Fax: +44703 196 6282

———————————————-

添付ファイル なし

———————————————-
ソース

From – Mon May 8 08:
X-Account-Key:
X-UIDL:
X-Mozilla-Status:
X-Mozilla-Status2:
X-Mozilla-Keys:
Return-Path:
X-Original-To:
Delivered-To:
Received: from mail.chevrolet-greenhills.com.ph (mail.chevrolet-greenhills.com.ph [210.213.155.82])
by (Postfix) with ESMTP id
for <>; Fri, 5 May 2017 06:0
Received: (qmail 8751 invoked by uid 89); 4 May 2017
Received: from unknown (HELO ?10.10.0.8?) (shenne.molina@chevrolet-greenhills.com.ph@210.213.57.121)
by mail.chevrolet-greenhills.com.ph with ESMTPA; 4
Content-Type: text/plain; charset=”utf-8″
MIME-Version: 1.0
Content-Transfer-Encoding: quoted-printable
Content-Description: Mail message body
Subject: ABOUT MR. SUSUMU YOUR BROTHER.
To: Recipients
From: shenne.molina@chevrolet-greenhills.com.ph
Date: Fri, 05 May 2017
Reply-To: pureorangeandpurelondon@hotmail.com
Message-Id: <>
X-EsetId:

Good day, =

My name is Prof. David Hamilton (RETIRED), I live in London, United=
Kingdom, I am looking for any family member of an old friend who used to l=
ive here in UK and was in the business of Crude Oil brokerage mostly betwee=
n Europe and Middle East.

His first name is (SUSUMU) ,but you and him have the same (FAMILY NAME), an=
d this is why I have decided to contact you with this letter to try to find=
out from you if you know him or if he is one of your relations, he was my =
client for ten years when I was still working as legal adviser to so many f=
oreigners who were doing businesses here in the UK before I retired.

Mr. Susumu died some years ago in the terrible Tsunami that hit Japan ,and =
u

–以下略

————————
Received: from mail.chevrolet-greenhills.com.ph (mail.chevrolet-greenhills.com.ph [210.213.155.82])
IPv4 address:

210.213.155.82
IPv4 expanded:

210.213.155.082
IPv4 decimal:

3537214290
Internet service provider:
Philippine Long Distance Telephone
Organization:
Philippine Long Distance Telephone
Country name:
Philippines
Country ISO alpha-2 code:
PH
Timezone:
Asia/Manila
Longitude:
120.9721
Latitude:
14.5955
WHOIS last updated:
WHOIS data frequency request limit is reached. Try again later.
Update WHOIS data:

Enter to update WHOIS:
Reverse DNS host:
chevrolet-greenhills.com.ph
Reverse DNS pointer:
mail.chevrolet-greenhills.com.ph
Reverse DNS in-addr.arpa:
82.155.213.210.in-addr.arpa domain name pointer mail.chevrolet-greenhills.com.ph.
Reverse DNS last updated:
0 seconds ago on May 8, 2017, 12:21 am GMT Time
Reverse DNS next check:
in 5 months, 29 days on May 8, 2017, 12:21 am GMT Time
Update DNS Records:

Enter to update DNS:
Bot/spider
No
————————
unknown (HELO ?10.10.0.8?) (shenne.molina@chevrolet-greenhills.com.ph@210.213.57.121)
IPv4 address:

210.213.57.121
IPv4 expanded:

210.213.057.121
IPv4 decimal:

3537189241
Internet service provider:
True Internet
Organization:
True Internet
Country name:
Thailand
Country ISO alpha-2 code:
TH
State:
Bangkok
City:
Bangkok
Timezone:
Asia/Bangkok
Longitude:
100.5167
Latitude:
13.7833
WHOIS last updated:
WHOIS data frequency request limit is reached. Try again later.
Update WHOIS data:

Enter
————————
“419” sender addresses “P” (blacklisted by jwSpamSpy)
pureorangeandpurelondon@hotmail.com
————————

友人からの報告です。
初歩的な偽装迷惑メールです。

宛先
自分メアド
差出人
Paula Wright” 返信先
自メール
件名
Affordable Graphic and Logo Designing Services (LX4)
内容

Hello,

I will make for you a professional modern logo based on my experience in graphic
design and I will make it sure that the logo is unique and different. Please
contact me for more details and portfolio.

Regards,
Paula Wright
———————————————-

添付ファイル なし

———————————————-
ソース

From – Mon May 8 08:
X-Account-Key: a
X-UIDL:
X-Mozilla-Status:
X-Mozilla-Status2:
X-Mozilla-Keys:
Return-Path:
X-Original-To:
Delivered-To:
Received: from rollinstech.luxic.pl (ip231.ip-5-196-105.eu [5.196.105.231])
by (Postfix) with ESMTP id
for <; Fri, 5 May 2017 19:0 (JST) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=treasuretech.info; s=mail; h=Content-Transfer-Encoding:Content-Type: List-Unsubscribe:MIME-Version:Reply-To:From:Date:Message-ID:Subject:To:Sender :Cc:Content-ID:Content-Description:Resent-Date:Resent-From:Resent-Sender: Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To:References:List-Id: List-Help:List-Subscribe:List-Post:List-Owner:List-Archive; bh= Received: from root by rollinstech.luxic.pl with local (Exim 4.89) (envelope-from )
id 1d6aLx-00049L-3R
for Fri, 0:
To:
Subject: Affordable Graphic and Logo Designing Services (LX4)
X-PHP-Originating-Script: 0:email.php
Message-ID: <06dd9bc3>
Date: Fri, 05 May 2017
From: “Paula Wright” Reply-To: paula.wright@treasuretech.info
MIME-Version: 1.0
X-Mailer-LID: 9
List-Unsubscribe:
X-Mailer-RecptId: 279115
X-Mailer-SID: 11
X-Mailer-Sent-By: 1
Content-Type: text/html; charset=”UTF-8″
Content-Transfer-Encoding: 8bit
X-EsetId: 373

–以下略

————————
Domain Name:

treasuretech.info
Check status
Update SEO Report:

Enter to update SEO:
Internet service provider:
Net4India
Organization:
Net4India
Country name:
India
Country ISO alpha-2 code:
IN
State:
Uttar Pradesh
City:
Noida
Timezone:
Asia/Kolkata
Longitude:
77.32
Latitude:
28.57
WHOIS last updated:
WHOIS data frequency request limit is reached. Try again later.
Update WHOIS data:

Enter to update WHOIS:
Forward DNS primary host:
net4india.com
mail.net4india.com
Forward DNS expanded data:
treasuretech.info has address 202.71.129.6
treasuretech.info mail is handled by 10 mail.net4india.com.
Forward DNS last updated:
0 seconds ago on May 8, 2017, 12:04 am GMT Time
Forward DNS next check:
in 5 months, 29 days on May 8, 2017, 12:04 am GMT Time
Reverse DNS in-addr.arpa:
No valid reverse DNS record has been found at this time.
Reverse DNS last updated:
0 seconds ago on May 8, 2017, 12:04 am GMT Time
Reverse DNS next check:
in 1 day on May 8, 2017, 12:04 am GMT Time
Update DNS Records:

Enter to update DNS:
Record requests
2
Record views
46
————————

Domain Name:

tectech.info
Check status
Update SEO Report:

Enter to update SEO:
Internet service provider:
Net4India
Organization:
Net4India
Country name:
India
Country ISO alpha-2 code:
IN
State:
Uttar Pradesh
City:
Noida
Timezone:
Asia/Kolkata
Longitude:
77.32
Latitude:
28.57
WHOIS last updated:
WHOIS data frequency request limit is reached. Try again later.
Update WHOIS data:

Enter to update WHOIS:
Forward DNS primary host:
net4india.com
mail.net4india.com
Forward DNS expanded data:
tectech.info has address 202.71.129.6
tectech.info mail is handled by 10 mail.net4india.com.
Forward DNS last updated:
0 seconds ago on May 8, 2017, 12:00 am GMT Time
Forward DNS next check:
in 5 months, 29 days on May 8, 2017, 12:00 am GMT Time
Reverse DNS in-addr.arpa:
No valid reverse DNS record has been found at this time.
Reverse DNS last updated:
0 seconds ago on May 8, 2017, 12:00 am GMT Time
Reverse DNS next check:
in 1 day on May 8, 2017, 12:00 am GMT Time
Update DNS Records:

Enter to update DNS:
Record requests
1
Record views
46
————————
rollinstech.luxic.pl (ip231.ip-5-196-105.eu [5.196.105.231])
5.196.105.231
IPv4 address:

5.196.105.231
IPv4 expanded:

005.196.105.231
IPv4 decimal:

96758247
Proxy Server IP:
The proxy server IP address has been assigned to the ISP provider name
Internet service provider:
OVH SAS
Organization:
OVH SAS
Country name:
France
Country ISO alpha-2 code:
FR
Timezone:
Europe/Paris
Longitude:
2.3387
Latitude:
48.8582
WHOIS last updated:
new WHOIS data is currently unavailable for all requests [GL3000-3000]. Try again in 39 sec.
Reverse DNS host:
ip-5-196-105.eu
Reverse DNS pointer:
ip231.ip-5-196-105.eu
Reverse DNS in-addr.arpa:
231.105.196.5.in-addr.arpa domain name pointer ip231.ip-5-196-105.eu.
Reverse DNS last updated:
0 seconds ago on May 7, 2017, 11:59 pm GMT Time
Reverse DNS next check:
in 5 months, 29 days on May 7, 2017, 11:59 pm GMT Time
————————

PCにマイクロソフトをかたる偽の警告画面を表示し、偽のサポート窓口への連絡を促す詐欺が有ったよって言ってるよ。
「マイクロソフトセキュリティアラーム・support.microsoft.com」を名乗る警告画面がウェブブラウザーに表示され、ウイルスとスパイウェアを検出したとして、偽のサポート窓口への連絡を表示。
「あなたのPCはブロックされました」と表示され、操作を受け付けない状態になる。

この場合は、
［Ctrl］＋［Alt］＋［Delete］キーを同時に押す
「タスクマネージャー」を選択起動されるよ
もしくは
Ctrl］＋［Shift］＋［Esc］キーを同時に押す
ウェブブラウザーのタスクを強制終了させることを推奨している。
状況は、
ウェブブラウザーでクリックをすると全画面表示に切り替わる
右クリックなどのマウス操作を受け付けないようする
PCの操作ができなくなったと錯覚させる
全画面表示時に表示されないアドレスバーにMicrosoftの正規サイトのURLを表示させる

https://news.microsoft.com/ja-jp/2017/04/26/170426-information-support/#sm.00001tpf95azkjditsw4xwh7i2a2c#OvIMBfBqqtlHAzTb.97

この手の内容は数十年前からある、キャッシュや設定にゴミも残るので一番簡単なのは、microsoft系ブラウザを使わないのが手っ取り早い。
完全に防ぐ手立てが全く無いからなのだが。※設定では、有効、無効のみ　今時スクリプトの無いサイトはないけどね
これが有ったから今は、Firefoxを使ってる。
早いとか、便利とか、安定とかではなく、面倒だからその1点
Firefoxそのままだとあまり変化はないが、豊富なプラグインを使うとこれは簡単に防げる。
プラグイン 広告 で探して、適意なものを導入すればいい。
接続する先にある不良な広告を、アクセスそのものできないようにもできる。
お金をかけれるなら、セキュリティソフトが防いでくれるが非常に遅くなるのは防ぎたいものなので。