Implementing new login authentication procedures in order to safeguard your account information no. 37435374 (Lloyds Phishing)

Important Notice

Please Note: Starting from October 27th 2015, we will be implementing new login authentication procedures in order to safeguard your account information. Part of these procedures will be the introduction of our two step authentication system which will prevent access to your account by a third party, this system will work by comparing information from the device being used to access our sites against data we previously hold regarding the devices you most frequently use.

In order for us to launch these new login authentication procedures we require you to complete our account verification process this should only take you a few minutes to complete and will help us in safeguarding your account information.

Get Started ⇒

Please note: Failure to comply with our account verification process may lead to temporary suspension of access to our online and telephone banking service.

Best regards,
Lloyds Corporate Banking Team

Phishing analysis :

CLICK : Get Started ⇒
OPEN : http://saunacity.ch/r/
REDIRECT : http://trilogyenvironmental.co.uk/a/Lloyds-Corporate/Logon.php?sslchannel=true&sessionid=***

REDIRECT : https://www.google.co.uk/url?
REDIRECT : https://commercialbanking.lloydsbank.com/online-services/

saunacity.ch whois :

Domain name: saunacity.ch
Holder of domain name:
Immo Secura GmbH
Pedretti Sandra
Storchengasse 4
CH-4800 Zofingen
Switzerland
Contractual Language: German
Registrar:
switchplus AG
First registration date:
2004-09-17
DNSSEC:N
Name servers:
ns1.csdns.ch [93.157.48.10]
ns2.csdns.ch [194.116.186.230]

trilogyenvironmental.co.uk whois :

Domain name: trilogyenvironmental.co.uk
Registrant: Trilogy Environmental Solutions

Registrant's address:

134 Provost Rust Drive
Aberdeenshire
Aberdeen
AB16 7YL
United Kingdom

Registrar:

TUCOWS Inc t/a TUCOWS [Tag = TUCOWS-CA]
URL: http://www.tucowsdomains.com

Relevant dates:

Registered on: 01-Jul-2008
Expiry date: 01-Jul-2016
Last updated: 03-Jun-2014

Name servers:

ns1.abodehosting.net
ns2.abodehosting.net

Email analysis :

NOTE : BANK@solucionlopd.es
NOTE : LLOYDS@solucionlopd.es
NOTE : data@solucionlopd.es
NOTE : client-ip=93.189.94.102;

NOTE : 93.189.94.102 as permitted sender

Mr. Gordon Hills

I sincerely apologize if my message does not suit your current status, my name is Mr. Gordon Hills from London, I am a South African - British Citizen, happily married with two kids. I'm contacting you now because I have huge interest for investment in your country as well as seek your services in a private and confidential matter. I am a lawyer and personal attorney to Late Simon Davis, A military man who died on a United Nations peace keeping mission in Kabul city of Afghanistan. My client died as a divorcee without any children thereby having NO one as next of kin. The United Nations Organization and International Monetary Fund’s (UNO/IMF) compensation payment office in London had contacted me and urge me to provide a partner to my client who will stand to claim his compensation funds. the compensation fund valued at US$5,000.000.00 (Five Million United States Dollars Only) is due to be released to whoever I am going to present as a partner to my client hence I'm contacting you.

Therefore I write to seek your indulgence and assistance in transferring this fund to your country through legal means as UNO/IMF compensation payment for onward Investment into any segment of your country`s economy. I am proposing to make this transfer to a designated bank account of your choice in your country for investment without any risk involved. At the conclusion of this transaction, I promise to give you 30% of the total amount for your assistance, 70% will be for me and my family which i will entrust under your care for investment purpose. Kindly get back to me with Your full names and Your mobile telephone numbers. Also let me know immediately if you can handle this job. Kindly advise me on which areas of investment you want us to channel the funds in your country. For more information you can reach me by clicking on the reply button. Thank you!

Yours sincerely,
Mr. Gordon Hills., Attorney @Law.

New order 1320

Dear supplier,

Please find the attached purchase order and acknowledge the receipt.

We await your response with details.

Thanks,

Monica Paquette
Purchasing Manager.
JUBAILI TRADE COMPANY.
32107 Bad Salzuflen

Germany

T: +49-5208-9102-7523
F: +49-5208-9102-9054
M: +49 151 616023605

Web: www.ararmaturen.net

PO_FY6667544pdf.ace

PO_FY6667544pdf.ace analysis :

PO_FY6667544pdf.ace is a virus.

Virus analysis :

AVG : MSIL9.XGT
Ad-Aware : Gen:Variant.Kazy.758648
Arcabit : Trojan.Kazy.DB9378
BitDefender : Gen:Variant.Kazy.758648
ESET-NOD32 : a variant of MSIL/Kryptik.DZP
Emsisoft : Gen:Variant.Kazy.758648 (B)
F-Secure : Gen:Variant.Kazy.758648
GData : Gen:Variant.Kazy.758648
Ikarus : Trojan.MSIL.Crypt
Kaspersky : Trojan.MSIL.Inject.dbmu
MicroWorld-eScan : Gen:Variant.Kazy.758648
Microsoft : Trojan:Win32/Dynamer!ac
Sophos : Mal/DrodAce-A
TrendMicro : TSPY_GOLROTED.CP
TrendMicro-HouseCall : TSPY_GOLROTED.CP

Email analysis :

NOTE : monica.p@tech-center.com
NOTE : Received : from 210.195.249.3 (klg-58-154.tm.net.my [202.188.58.154])

NOTE : by cactus4.qatar.net.qa (Oracle Communications Messaging Exchange Server)
NOTE : does not designate 82.148.101.71 as permitted sender

Mobile App Development

Hello,

Are you running short of Mobile App Developers? We are here to full fill all your Mobile Apps development needs!

Solution Analysts a perfect destination for enterprise and start-ups to hire expert mobile developer°s for high performance applications at competitive rates. SA designers and developers are brimming with creativity, curiosity and competence.

Our mainstay dedicated developer°s offering "Starting at just US $15/hr" We do more than build mobile, We Build trust with sincere work.

Android Developers
iOS Swift Developers
PhoneGap Developers (Cross Platform)

With SA we can assure you 100% Success with our streamlined project management:

1. We have our own validation process for selecting a development team for you that will be perfectly suited for any business needs.

2. We do complete risk and returns analysis before recommending developers to you.

3. We do not have bid options but conduct precise manual matches on the basis of requirement, size or whatever matters to you. Once you start working with our team, we check on every aspect, because we care about you. We care about customers.

Honest Numbers that will swing your mind to start working with us:

We are the great problem-solvers who value integrity, and many top companies rely on us for their most important projects.

5+ years experience
7+ Android & iOS SDK
187+ Apps delivered so far 100% quality assurance
42+ Testing Devices 52+ Professional Developers and Designers

Building a product? We help you to setup a dedicated team that will perfectly match your needs. Top enterprises and start-ups choose SA developers to accomplish their dream projects. It is your turn.

Looking forward to your response and addressing your business needs.

Sincerely,
Jason Williams
Business Development Team
Contact: harime@sina.com

Email analysis :

NOTE : lindduiy@mail.com
NOTE : serint@aliyun.com
NOTE : yixin_ok@163.com
NOTE : harime@sina.com
NOTE : 103.246.248.150 (less.335075.com)

335075.com whois :

Domain Name: 335075.com
Registry Domain ID:
Registrar WHOIS Server: whois.ename.com
Registrar URL: http://www.ename.net

Updated Date: 2015-10-04 T15:48:08Z
Creation Date: 2015-10-04 T15:48:08Z
Registrar Registration Expiration Date: 2016-10-04 T15:48:08Z
Registrar: eName Technology Co.,Ltd.
Registrar IANA ID: 1331
Registrar Abuse Contact Email: abuse@ename.com
Registrar Abuse Contact Phone: +86.4000044400

Registrant Name: wengyixin
Registrant Organization: weng yixin
Registrant Street: 15 Bashimu, Xixu Country, Huating Town, Chengxiang District
Registrant City: pu tian shi
Registrant State/Province: fu jian
Registrant Postal Code: 351100
Registrant Country: CN
Registrant Phone: +86.05942625229
Registrant Fax: +86.05942625229
Registrant Email: yixin_ok@163.com

Admin Name: wengyixin
Admin Organization: weng yixin
Admin Street: 15 Bashimu, Xixu Country, Huating Town, Chengxiang District
Admin City: pu tian shi
Admin State/Province: fu jian
Admin Postal Code: 351100
Admin Country: CN
Admin Phone: +86.05942625229
Admin Fax: +86.05942625229
Admin Email: yixin_ok@163.com

Tech Name: wengyixin
Tech Organization: weng yixin
Tech Street: 15 Bashimu, Xixu Country, Huating Town, Chengxiang District
Tech City: pu tian shi
Tech State/Province: fu jian
Tech Postal Code: 351100
Tech Country: CN
Tech Phone: +86.05942625229
Tech Fax: +86.05942625229
Tech Email: yixin_ok@163.com
Name Server: ns1.51dns.com
Name Server: ns2.51dns.com

Consent Request

Hello,

I'm Mr. Peter Wong working with HSBC Malaysia.

There is a certain deceased customer of HSBC Bank who left behind US$19.3M Nineteen Million Three Hundred Thousand Dollars. This person happen to share the same last name as yours.

I seek your honest partnership in receiving this fund as his relative/next of kin. If interested, reply immediately for detailed information.

My sincere regards,
Peter Wong
E-mail: peterwongtung@yahoo.com.my

Email analysis :

NOTE : peter.wongt@yahoo.com.my
NOTE : nobody@server.donkeymails.com
NOTE : X-Php-Script : www.donkeymails.com/pages/m.php for 120.141.126.240
NOTE : client-ip=205.251.156.154;

PLEASE READ

FROM THE PRIVATE DESK OF;
CHARLES PATRICK B. (BARRISTER AT LAW).

I am Barrister Charles Patrick B., a South African residing and practicing Law in United Kingdom. I specialise in family law, will, probate and tax saving strategies. On May 12 2010, one of my senior clients MR. VAN GEERAARD HUSSEN a DUTCH died in a plane crash that happened in Libya. Here is a link for your view: http://www.nytimes.com/2010/05/13/world/middleeast/13libya.html?_r=0Last message received on 02/12 at 08:17.

MR. VAN GEERAARD HUSSEN stated his wife as his next of kin but unfortunately she died also in the crash along with Mr. VAN GEERAARD HUSSEN and their three children. I am the executor of Mr. VAN GEERAARD HUSSEN's will and have shared his assets and properties to his extended family members and they have gone since December 2010. But Mr. VAN GEERAARD HUSSEN deposited the sum of $4.5 million United States Dollars in a fixed deposit account in a bank in United Kingdom not known to anybody. On December 15th 2014 the bank wrote me as his lawyer/executor to bring along the next of kin/beneficiary of Mr. VAN GEERAARD HUSSEN to inherit his funds (US$4.5m). I have therefore decided to contact you to present you as the next of kin/beneficiary to Mr. VAN GEERAARD HUSSEN to enable you receive the fund on our behalf as Mr. VAN GEERAARD HUSSEN spouse and dependant all died in the plane crash with him. All the documents required to claim this funds like the affidavit of claim, death certificate, certificate of deposit, transfer of ownership, certificate of inheritance etc will be prepared by me in the High court of London. I will forward to you all these documents required to claim this funds.

All I need from you is to indicate your interest to be the next of kin/beneficiary to MR. VAN GEERAARD HUSSEN and I will present it to the bank. This is 100% legitimate. When you receive the money in your account I will come over to your country for the sharing as follows; 30% for you and 65% for me. The remaining 5% will be set aside for expenses that will be incurred by both parties during the course of this transfer to your account. As the fiduciary/trusted representative of the deceased, and as the manager of his assets, properties and financial affairs when Mr. VAN GEERAARD HUSSEN was alive i have absolute duty to properly administer the estate for its beneficiary. When I receive your positive reply I will furnish you with my full name, address and telephone number. Await your response.

Best regards,
Charles.

Email analysis :

NOTE : charlesrudlings@live.com
NOTE : charlespb33@gmail.com
NOTE : Received : from 212-166-21-126.win.be
NOTE : ([212.166.21.126]:19339 helo=User)
NOTE : 89.34.26.153 ()