Good day,
We Offer Private, Commercial and Personal Loans with very Minimal annual Interest Rates as Low as 0.3% within a 1year to 50 years repayment duration period to any part of the world. We give out loans within the range of $5,000 to $90,000,000 USD. Our loans are well insured for maximum security is our priority Are you losing sleep at nights worrying how to get a Legit Loan Lender? Are you biting your fingernails to the quick? Instead of beating yourself up, call the Cindy Loan Investment now, Loan specialists who help stop Bad Credit History, to discover a win-win solution which is Our Mission.
* Are you financially squeezed?
* Do you seek funds to pay off credits and debts?
* Do you seek finance to set up your own business?
* Are you in need of private or business loans for various purposes?
* Do you seek loans to carry out large projects?
* Do you seek funding for various other processes?
* If you have any of the above problems, I can be of assistance to you but I want you to understand that I give out my loans at an interest rate of 0.4%.
* Borrow anything up to $90,000,000 USD.
* Choose between 1 to 50 years to repay.
* Choose between Monthly and Annual repayments Plan.
* Flexible Loan Terms.
Interested Persons should fill out the Application Form below.
APPLICATION:
1)Name
2)Prefix (Mr., Mrs., Ms., Dr., etc.):
3)First name:
4)Last name:
5)Business name(If Any):
6)Purpose of loan:
7)Date of birth (yyyy-mm-dd):
8)Gender:
9)Marital status:
10)Next Of Kin:
11)City:
12)State/Province:
13)Occupation:
14)Company name:(if Any )
15)Work address:
16)State/Province:
17)Zip/postal code:
18)Country:
19)Phone:
20)Fax:
21) Amount Needed As The Loan.......
22) Duration ---
Thanks For Your Co-operation
E-mail: loan.investment.bureau@gmail.com
(Loan Agent)
Thursday, January 22, 2015
Employee Documents - Internal Use
DOCUMENT NOTIFICATION, Powered by NetDocuments
DOCUMENT NAME: Employee Documents
DOCUMENT LINK: http://spitalcuzavodaiasi.ro/CUSTOMER.DOCUMENT-STORAGE-DATA/get_invoice_document.html
DOCUMENT LINK: http://lamichelangelo.it/CUSTOMER-DOCUMENT-STORAGE_DATA/get_last_document.html
DOCUMENT LINK: http://www.trans-arts.com/CUSTOMER~DOCUMENT-DATA/last-invoice-document.html
Documents are encrypted in transit and store in a secure repository
---------------------------------------------------------------------------------
This message may contain information that is privileged and confidential. If you received this transmission in error, please notify the sender by reply email and delete the message and any attachments.
Email analysis :
NOTE : no-replay@invoice.com
NOTE : User-Agent : Roundcube Webmail/1.1.1
NOTE : Received : from unknown (HELO invoice.com) (37.191.103.140)
NOTE : Received : from unknown (HELO invoice.com) (69.42.188.58)
NOTE : Received : from unknown (HELO invoice.com) (80.156.199.162)
Process Analysis :
CLICK : one of the three links.
DOWNLOAD : invoice_pdf80985.zip
EXTRACT : invoice_pdf40132.exe
invoice_pdf40132.exe analysis :
AVG : Crypt3.BTYL : 20150122
Ad-Aware : Gen:Variant.Zbot.154 : 20150122
AhnLab-V3 : Spyware/Win32.Zbot : 20150122
Avast : Win32:Malware-gen : 20150122
BitDefender : Gen:Variant.Zbot.154 : 20150122
CMC : Packed.Win32.Katusha.3!O : 20150120
Cyren : W32/Trojan.RHQS-4975 : 20150122
DrWeb : Trojan.Upatre.128 : 20150122
ESET-NOD32 : Win32/TrojanDownloader.Waski.F : 20150122
Emsisoft : Gen:Variant.Zbot.154 (B) : 20150122
F-Prot : W32/Trojan3.NGH : 20150122
F-Secure : Gen:Variant.Zbot.154 : 20150122
GData : Gen:Variant.Zbot.154 : 20150122
K7AntiVirus : Trojan-Downloader ( 0049d22b1 ) : 20150122
Kaspersky : Trojan.Win32.Staser.awtk : 20150122
Malwarebytes : Trojan.Email.FakeDoc : 20150122
McAfee : Downloader-FAHF!01F769E9BD9A : 20150122
MicroWorld-eScan : Gen:Variant.Zbot.154 : 20150122
Qihoo-360 : Malware.QVM20.Gen : 20150122
Rising : PE:Malware.FakePDF@CV!1.9C3A : 20150121
Sophos : Troj/Dyreza-AM : 20150122
Symantec : Downloader.Upatre : 20150122
nProtect : Trojan/W32.Agent.15872.TX : 20150122
DOCUMENT NAME: Employee Documents
DOCUMENT LINK: http://spitalcuzavodaiasi.ro/CUSTOMER.DOCUMENT-STORAGE-DATA/get_invoice_document.html
DOCUMENT LINK: http://lamichelangelo.it/CUSTOMER-DOCUMENT-STORAGE_DATA/get_last_document.html
DOCUMENT LINK: http://www.trans-arts.com/CUSTOMER~DOCUMENT-DATA/last-invoice-document.html
Documents are encrypted in transit and store in a secure repository
---------------------------------------------------------------------------------
This message may contain information that is privileged and confidential. If you received this transmission in error, please notify the sender by reply email and delete the message and any attachments.
Email analysis :
NOTE : no-replay@invoice.com
NOTE : User-Agent : Roundcube Webmail/1.1.1
NOTE : Received : from unknown (HELO invoice.com) (37.191.103.140)
NOTE : Received : from unknown (HELO invoice.com) (69.42.188.58)
NOTE : Received : from unknown (HELO invoice.com) (80.156.199.162)
Process Analysis :
CLICK : one of the three links.
DOWNLOAD : invoice_pdf80985.zip
EXTRACT : invoice_pdf40132.exe
invoice_pdf40132.exe analysis :
AVG : Crypt3.BTYL : 20150122
Ad-Aware : Gen:Variant.Zbot.154 : 20150122
AhnLab-V3 : Spyware/Win32.Zbot : 20150122
Avast : Win32:Malware-gen : 20150122
BitDefender : Gen:Variant.Zbot.154 : 20150122
CMC : Packed.Win32.Katusha.3!O : 20150120
Cyren : W32/Trojan.RHQS-4975 : 20150122
DrWeb : Trojan.Upatre.128 : 20150122
ESET-NOD32 : Win32/TrojanDownloader.Waski.F : 20150122
Emsisoft : Gen:Variant.Zbot.154 (B) : 20150122
F-Prot : W32/Trojan3.NGH : 20150122
F-Secure : Gen:Variant.Zbot.154 : 20150122
GData : Gen:Variant.Zbot.154 : 20150122
K7AntiVirus : Trojan-Downloader ( 0049d22b1 ) : 20150122
Kaspersky : Trojan.Win32.Staser.awtk : 20150122
Malwarebytes : Trojan.Email.FakeDoc : 20150122
McAfee : Downloader-FAHF!01F769E9BD9A : 20150122
MicroWorld-eScan : Gen:Variant.Zbot.154 : 20150122
Qihoo-360 : Malware.QVM20.Gen : 20150122
Rising : PE:Malware.FakePDF@CV!1.9C3A : 20150121
Sophos : Troj/Dyreza-AM : 20150122
Symantec : Downloader.Upatre : 20150122
nProtect : Trojan/W32.Agent.15872.TX : 20150122
SEEKING A LOANS
UNIVERSAL HOME LOAN
Email: logvault1@cnegal.com
Web: http://www.***.com.au
We are the private investors we give out secured guarantee loans to Business Men and women who are into Business transaction, auto-mobile purchase, house purchase loan and other personal loans E.T.C. We give out long term loan for five to fifty years maximum with 3% interest rate in this you can as well tell us the amount you need so that we will send to you the terms and condition that is if you are really interested in getting a loan from us, Loans are given out in Great British Pounds and United States Dollar the maximum we give is 20,000,000 both in pounds and USD and the minimum 5,000 pounds.
APPLICATION DETAILS
First Name:___________________________
Last Name:____________________________
Gender:_______________________________
Marital status:_______________________
Contact Address:______________________
City/Zip code:________________________
Country:______________________________
Date of Birth:________________________
Amount Needed as Loan:________________
Loan Duration:________________________
Monthly Income/Yearly Income:_________
Occupation:___________________________
Purpose for Loan:_____________________
Phone:________________________________
Fax:__________________________________
Regards,
Universal Home Loan.
Whois :
Domain Name: ***.com.au
Last Modified: 25-Nov-2013 23:36:03 UTC
Status: ok
Registrar Name: TPP Wholesale Pty Ltd
Registrant: Universal Home Loans Pty Ltd
Registrant ID: OTHER 090 366 153
Eligibility Type: Other
Registrant Contact ID: DIT002050
Registrant Contact Name: Jay McNabb
Registrant Contact Email: Visit whois.ausregistry.com.au for Web based WhoIs
Tech Contact ID: DIT-1143928
Tech Contact Name: Charlie Bevan
Tech Contact Email: Visit whois.ausregistry.com.au for Web based WhoIs
Name Server: ns1.***.com.au
Name Server IP: 118.127.30.35
Name Server: ns2.***.com.au
Name Server IP: 118.127.30.35
DNSSEC: unsigned
Email: logvault1@cnegal.com
Web: http://www.***.com.au
We are the private investors we give out secured guarantee loans to Business Men and women who are into Business transaction, auto-mobile purchase, house purchase loan and other personal loans E.T.C. We give out long term loan for five to fifty years maximum with 3% interest rate in this you can as well tell us the amount you need so that we will send to you the terms and condition that is if you are really interested in getting a loan from us, Loans are given out in Great British Pounds and United States Dollar the maximum we give is 20,000,000 both in pounds and USD and the minimum 5,000 pounds.
APPLICATION DETAILS
First Name:___________________________
Last Name:____________________________
Gender:_______________________________
Marital status:_______________________
Contact Address:______________________
City/Zip code:________________________
Country:______________________________
Date of Birth:________________________
Amount Needed as Loan:________________
Loan Duration:________________________
Monthly Income/Yearly Income:_________
Occupation:___________________________
Purpose for Loan:_____________________
Phone:________________________________
Fax:__________________________________
Regards,
Universal Home Loan.
Whois :
Domain Name: ***.com.au
Last Modified: 25-Nov-2013 23:36:03 UTC
Status: ok
Registrar Name: TPP Wholesale Pty Ltd
Registrant: Universal Home Loans Pty Ltd
Registrant ID: OTHER 090 366 153
Eligibility Type: Other
Registrant Contact ID: DIT002050
Registrant Contact Name: Jay McNabb
Registrant Contact Email: Visit whois.ausregistry.com.au for Web based WhoIs
Tech Contact ID: DIT-1143928
Tech Contact Name: Charlie Bevan
Tech Contact Email: Visit whois.ausregistry.com.au for Web based WhoIs
Name Server: ns1.***.com.au
Name Server IP: 118.127.30.35
Name Server: ns2.***.com.au
Name Server IP: 118.127.30.35
DNSSEC: unsigned
Investment Letter
Dear Sir/Madam,
My name is Mr. Alberto Lehmann, a business consultant and I have some investors who will like to move their funds out of Africa to abroad for investments because of the unstable economy of our nations. Do let me know if you would like to partner with him to receive the fund in your country for fruitful investment in your country and upon your interest on this, your share of the business will be mentioned to you. Indicate your direct contact numbers for effective communication.
I wait your early response.
Kind regards,
Mr. Alberto Lehmann.
E-mail: mralbertolehmann@gmail.com
My name is Mr. Alberto Lehmann, a business consultant and I have some investors who will like to move their funds out of Africa to abroad for investments because of the unstable economy of our nations. Do let me know if you would like to partner with him to receive the fund in your country for fruitful investment in your country and upon your interest on this, your share of the business will be mentioned to you. Indicate your direct contact numbers for effective communication.
I wait your early response.
Kind regards,
Mr. Alberto Lehmann.
E-mail: mralbertolehmann@gmail.com
PAYMENT AUTHENTICATION.
UNITED NATIONS / WORLD BANK ORGANIZATION / FBI
United Nations House, 617/618.
Diplomatic Zone,
Central Area District,
Federal Capital Territory,
Abuja, Nigeria.
Our Ref: YBNGWB/UN/2012.
Attention: Dear Beneficiary,
APPROVED COMPENSATION PAYMENT AWARD OF US$10M.
This is to inform you that a Debit Cash Card Number 7876310003001420 Valued at $10 Million United States Dollars has been accredited in your favour. Please contact Mr. Daniel Nelson, an Expertriate mandated by United to cover all outstanding claims due to foreigners since 1998 till date. Contact him on his Email: danielnelson917@gmail.com with the following information to facilitate your claims as the FBI, WORLD BANK and The United Nation has made every necessary provision to ensure that payment goes to you as the beneficiary:.
FULL NAME:
AGE:
GENDER:
ADDRESS:
COUNTRY:
OCCUPATION:
MOBILE NUMBER:
Best Regards,
Sir. Goerge Wilkins.
CIV NAVSUBTORPFAC YORK.
United Nations House, 617/618.
Diplomatic Zone,
Central Area District,
Federal Capital Territory,
Abuja, Nigeria.
Our Ref: YBNGWB/UN/2012.
Attention: Dear Beneficiary,
APPROVED COMPENSATION PAYMENT AWARD OF US$10M.
This is to inform you that a Debit Cash Card Number 7876310003001420 Valued at $10 Million United States Dollars has been accredited in your favour. Please contact Mr. Daniel Nelson, an Expertriate mandated by United to cover all outstanding claims due to foreigners since 1998 till date. Contact him on his Email: danielnelson917@gmail.com with the following information to facilitate your claims as the FBI, WORLD BANK and The United Nation has made every necessary provision to ensure that payment goes to you as the beneficiary:.
FULL NAME:
AGE:
GENDER:
ADDRESS:
COUNTRY:
OCCUPATION:
MOBILE NUMBER:
Best Regards,
Sir. Goerge Wilkins.
CIV NAVSUBTORPFAC YORK.
Wednesday, January 21, 2015
Facture FR-5286-44060 (Phishing Free)
réf. Mail : 528644060
Paris le, Mercredi 21 Janvier 2015
Cher Freenaute
Conformément à la facture n° 08- 501813929, établie le 21 Janvier 2015 nous avons émis une demande de prélèvement d'un montant de 30.98 euros auprès de votre établissement bancaire.
Il semble que ce prélèvement ait été refusé par votre banque pour le motif suivant:
Absence de provision ou provision insuffisante (20)
Afin de régulariser votre situation au plus vite auprès de nos services, nous vous remercions de bien vouloir nous faire parvenir votre règlement en cliquant ci-dessus
J'accède à ma facture
Persuadés qu'il ne s'agit que d'un incident isolé, nous vous prions de bien vouloir procéder à la régularisation de votre situation dans les meilleurs délais afin d'éviter l'ouverture d'une procédure de recouvrement consécutive à l'impayé.
Merci de la confiance que vous nous témoignez.
L'équipe Freebox
Email analysis :
NOTE : celinejobert@hotmail.fr
NOTE : Noreplye@free.fr
NOTE : X-Remote : 178.33.90.180 (zimbra.sinabs.com)
NOTE : X-Virus-Scanned : amavisd-new at sinabs.fr
NOTE : X-Priority : 3
NOTE : Content-Type : text/html;
NOTE : X-Library : Indy 8.0.25
NOTE : Received : from zimbra.sinabs.com (178.33.90.180)
NOTE : Received : from zimbra.sinabs.com ([127.0.0.1])
NOTE : by localhost (zimbra.sinabs.com [127.0.0.1])
NOTE : Received : from vps-76103 (unknown [185.81.157.142])
NOTE : by zimbra.sinabs.com (Postfix)
NOTE : Facture FR-5286-44060
Phishing analysis :
CLICK : J'accède à ma facture
OPEN : http://www.thungsong.ac.th//ts/4
REDIRECT : http://forza.websitewelcome.com/~domain/fre/freee/***/
SCREENSHOT :
REDIRECT : http://forza.websitewelcome.com/~domain/fre/freee/***/freebox.php
SCREENSHOT :
ACTION : VALIDATE FORM
REDIRECT : https://subscribe.free.fr/login/
thungsong.ac.th analysis :
Whois Server Version 2.1.2
Domain: THUNGSONG.AC.TH Registrar: T.H.NIC Co., Ltd.
Name Server: NS83.HOSTINGLOTUS.NET
Name Server: NS84.HOSTINGLOTUS.NET
Status: ACTIVE Updated date: 23 Jun 2014
Created date: 22 May 2006
Renew date: 22 May 2014
Exp date: 21 May 2017
Domain Holder: Thungsong School
44 M.2 Tambol Thamyai Amphor Thungsong Nakhonsrithamarat 80110 TH
Tech Contact: 565973 44 2 80110 TH >>>
Paris le, Mercredi 21 Janvier 2015
Cher Freenaute
Conformément à la facture n° 08- 501813929, établie le 21 Janvier 2015 nous avons émis une demande de prélèvement d'un montant de 30.98 euros auprès de votre établissement bancaire.
Il semble que ce prélèvement ait été refusé par votre banque pour le motif suivant:
Absence de provision ou provision insuffisante (20)
Afin de régulariser votre situation au plus vite auprès de nos services, nous vous remercions de bien vouloir nous faire parvenir votre règlement en cliquant ci-dessus
J'accède à ma facture
Persuadés qu'il ne s'agit que d'un incident isolé, nous vous prions de bien vouloir procéder à la régularisation de votre situation dans les meilleurs délais afin d'éviter l'ouverture d'une procédure de recouvrement consécutive à l'impayé.
Merci de la confiance que vous nous témoignez.
L'équipe Freebox
Email analysis :
NOTE : celinejobert@hotmail.fr
NOTE : Noreplye@free.fr
NOTE : X-Remote : 178.33.90.180 (zimbra.sinabs.com)
NOTE : X-Virus-Scanned : amavisd-new at sinabs.fr
NOTE : X-Priority : 3
NOTE : Content-Type : text/html;
NOTE : X-Library : Indy 8.0.25
NOTE : Received : from zimbra.sinabs.com (178.33.90.180)
NOTE : Received : from zimbra.sinabs.com ([127.0.0.1])
NOTE : by localhost (zimbra.sinabs.com [127.0.0.1])
NOTE : Received : from vps-76103 (unknown [185.81.157.142])
NOTE : by zimbra.sinabs.com (Postfix)
NOTE : Facture FR-5286-44060
Phishing analysis :
CLICK : J'accède à ma facture
OPEN : http://www.thungsong.ac.th//ts/4
REDIRECT : http://forza.websitewelcome.com/~domain/fre/freee/***/
SCREENSHOT :
REDIRECT : http://forza.websitewelcome.com/~domain/fre/freee/***/freebox.php
SCREENSHOT :
ACTION : VALIDATE FORM
REDIRECT : https://subscribe.free.fr/login/
thungsong.ac.th analysis :
Whois Server Version 2.1.2
Domain: THUNGSONG.AC.TH Registrar: T.H.NIC Co., Ltd.
Name Server: NS83.HOSTINGLOTUS.NET
Name Server: NS84.HOSTINGLOTUS.NET
Status: ACTIVE Updated date: 23 Jun 2014
Created date: 22 May 2006
Renew date: 22 May 2014
Exp date: 21 May 2017
Domain Holder: Thungsong School
44 M.2 Tambol Thamyai Amphor Thungsong Nakhonsrithamarat 80110 TH
Tech Contact: 565973 44 2 80110 TH >>>
Subscribe to:
Posts (Atom)