PLEASE RESPOND TO ME

Hello

I am Mr frank collins, a staff of BANK BICIA-B here in Burkina Faso. I am very sorry about this sudden mail as I know it might come as a surprise banging into your private life especially when we have not met before.

It was an urgent need for a foreign partner, which has pushed me to send you this proposal. I know we have not met before, but I am very optimistic that we might be able to establish the necessary trust needed to execute this project.

I just need your services in a confidential matter regarding (fund) in my bank.This requires a private arrangement. You will receive these funds under legitimate arrangement that will protect both of us. All legal documents will be carefully worked out to ensure a risk free transfer. 50% of the total sum would be your own portion at the end of this deal. The said sum is the profit / interest my branch realized during a period of 10 banking years. Further details will be sent to you as soon as possible. So if you are willing to assist, please get back to me on this email address frankcollin18@gmail.com soonest.

Thanks as I expect to hear from you soon.

My dearest regards.

frank collins

Email analysis :

NOTE : PLEASE RESPOND TO ME
NOTE : frank.collins30@aol.fr
NOTE : X-Originating-Ip : [151.80.254.227]

Seeking serious relationship

How are you ?

My name is Martin from Florida, USA. I am divorced looking for a serious relationship / partner also to learn more of your language and tradition. we can get to know each other if you don't mind. You can write me more about you at (matinanders57@gmail.com) or send me your e-mail address to write you more about myself also to share photos for better correspondence. Martin

Email analysis :

NOTE : martinanders57@gmail.com
NOTE : jamesclap150@gmail.com

Where do you suggest?

Attention;

With due respect My Dear, I seek your consent to have a discussion with you. Do you suggest through your e-mail or telephone conversation? Please your quick response is highly appreciated.

Thanks,
Mr. Roosevelt Ogbonna.

Email analysis :

NOTE : mrroosevelt10@yahoo.com
NOTE : rooseveltogbonna1@gmail.com

The faithful believe. (Cancer Scam)

The faithful believe.

I want you to read this letter very carefully and i must apologize for bringing this massage to your box without any formal introduction due to the urgency confidential of this issue. I am happy to know you. How are you? Hope everything goes well. Mrs Arslan Nafisat Kayihan Mahzun am, I was browsing online about your country when I found your email and I decided to contact you.

I am writing this mail to you with heavy tears In my eyes and great sorrow in my heart, I want to tell you this because I don't have any other option than to tell you as I was touched to open up to you, I married to Mr.Melik Mahzun who was exporter of Gold from Burkina Faso mining to worldwide for nine years before he died in the year 2005.We were married for eleven years without a child. He died after a brief illness that lasted for only five days. Since his death I decided not to remarry, When my late husband was alive he deposited the sum of US$ 8.5M (Eight Million Five hundred Thousand Dollars) in bank and presently this money is still in bank He made this money available for exportation of Gold from Burkina Faso mining to worldwide.

Recently, I suffer from throat cancer terminally ill. My Doctor told me that i am condemned to certain death due to cancer problem. The one that disturbs me most is my stroke sickness .Having known my condition I decided to hand you over this money to take care of the less-privileged people, you will utilize this money the way I am going to instruct herein.

I want you to take 30 Percent of the total money for your personal use While 70% of the money will go to charity" people in the street and helping the orphanage. I grew up as an Orphan and I don't have anybody as my family member, just to endeavor that the house of God is maintained. Am doing this so that God will forgive my sins and accept my soul because these sicknesses have suffered me so much.

As soon a s I receive your reply I shall give you the contact of the bank in Burkina Faso and I will also instruct the Bank Manger to issue you an authority letter that will prove you the present beneficiary of the money in the bank that is if you assure me that you will act accordingly as I
Stated herein.

I await your quick and prompt reply

Thanks
Mrs Arslan Nafisat Kayihan Mahzun

Email analysis :

NOTE : arslanmelikmah@gmail.com
NOTE : mrsukrumukal@yahoo.fr

You have a dropbox message (Dropbox phishing)

Greetings from Dropbox Team!

You have a new document shared with you via dropbox
Click to open: Secure Message

Happy Dropboxing!
- The Dropbox Team

P.S. To get even more space, invite your friends or upgrade your Dropbox.
© 2016 Dropbox

Phishing analysis :

CLICK : Secure Message
OPEN : http://siliconleaf.com/js/drop/TT/Dropbox.html
SCREENSHOT :

NOTE : Phishing was removed.

Email analysis :NOTE :

NOTE : Mime-Version : 1.0
NOTE : lizann50@suddenlink.net designates 208.180.40.72 as permitted sender)
NOTE : smtp.mailfrom=lizann50@suddenlink.net
NOTE : Return-Path : < lizann50@suddenlink.net >
NOTE : Received : from dalofep02.suddenlink.net (txofep02.suddenlink.net. [208.180.40.72])
NOTE : Received : from [10.111.1.6] (really [209.95.50.130])

NOTE : by dalofep02.suddenlink.net (InterMail vM.8.04.03.22)
NOTE : client-ip=208.180.40.72;

NOTE : You have a dropbox message

siliconleaf.com whois :

Domain Name: SILICONLEAF.COM
Registry Domain ID: 1735949442_DOMAIN_COM-VRSN
Registrar WHOIS Server: whois.godaddy.com
Registrar URL: http://www.godaddy.com
Update Date: 2015-07-26T15:27:00Z
Creation Date: 2012-07-27T06:08:40Z
Registrar Registration Expiration Date: 2016-07-27T06:08:40Z
Registrar: GoDaddy.com, LLC
Registrar IANA ID: 146
Registrar Abuse Contact Email: abuse@godaddy.com
Registrar Abuse Contact Phone: +1.4806242505
Registrant Name: Rushabh Parikh
Registrant Organization: Silikonleaf
Registrant Street: 402, Chandanvan-1, Majuragate
Registrant City: Surat
Registrant State/Province: Gujarat
Registrant Postal Code: 395002
Registrant Country: IN
Registrant Phone: +91-902-445-6484
Registrant Email: russ1990@gmail.com
Admin Name: Rushabh Parikh
Admin Organization: Silikonleaf
Admin Street: 402, Chandanvan-1, Majuragate
Admin City: Surat
Admin State/Province: Gujarat
Admin Postal Code: 395002
Admin Country: IN
Admin Phone: +91-902-445-6484
Admin Email: russ1990@gmail.com
Tech Name: Rushabh Parikh
Tech Organization: Silikonleaf
Tech Street: 402, Chandanvan-1, Majuragate
Tech City: Surat
Tech State/Province: Gujarat
Tech Postal Code: 395002
Tech Country: IN
Tech Phone: +91-902-445-6484
Tech Email: russ1990@gmail.com
Name Server: DNS.SITE5.COM
Name Server: DNS2.SITE5.COM
DNSSEC: unsigned

Re : nouveau message disponible (Phishing Free)

bonjour,


Vous étes client déune offre internet Freebox et nous vous remercions de votre confiance.

En effet votre facture Né 139358537B0 date d'émission 16/01/2016 é été doublement débite.

Directement en cliquant sur le lien suivant : Mon suivi de remboursement

Désireux de vous satisfaire, nous vous remercions de votre fidélité.


Votre service clients internet


Phishing analysis :

CLICK : Mon suivi de remboursement
OPEN : https://www.umshop.com.br/1234.html
REDIRECT : http://www.malls99.com/www.Freemobile.fr/id.mobile-free.fr/auth_user/bin/auth0user.cgidate=*/

Email analysis :NOTE :

NOTE : Mime-Version : 1.0
NOTE : Content-Type : text/html; charset="iso-8859-1"
NOTE : X-Mailer : PHPMailer [version 1.73]
NOTE : X-Priority : 3
NOTE : Return-Path : < support@m.deallx.fr >
NOTE : Content-Transfer-Encoding : 8bit
NOTE : Received : from sexshop-germany.sexshop-germany.de ([52.28.140.27])
NOTE : Received : from www.palora.de (localhost [IPv6:::1])
NOTE : by sexshop-germany.sexshop-germany.de (Postfix)
NOTE : Message-Id : < *@www.palora.de >
NOTE : Re : nouveau message disponible

umshop.com.br whois :

nic-hdl-br: MAH165
person: Marcelo Haddad
created: 20011120
changed: 20120507

deallx.fr whois :

domain: deallx.fr
status: ACTIVE
hold: NO
holder-c: UL1566-FRNIC
admin-c: DG7861-FRNIC
tech-c: NH1896-FRNIC
zone-c: NFC1-FRNIC
nsl-id: NSL4564-FRNIC
registrar: EPAG Domainservices GmbH
Expiry Date: 04/04/2016
created: 25/02/2011
last-update: 04/04/2015
source: FRNIC
ns-list: NSL4564-FRNIC
nserver: ns1.nessus.at
nserver: ns2.nessus.at
nserver: ns3.nessus.at
source: FRNIC
registrar: EPAG Domainservices GmbH
type: Isp Option 1
address: Niebuhrstra??e 16b
address: DE-53113 BONN
country: DE
phone: +49 228 3296840
fax-no: +49 228 3296849
e-mail: support@epag.de
website: http://www.epag.de
anonymous: NO
registered: 11/01/2006
source: FRNIC
nic-hdl: UL1566-FRNIC
type: ORGANIZATION
contact: 101Domain Limited
address: 101Domain Limited
address: 72 High Street, Haslemere
address: GU27 2LA Surrey
country: GB
phone: +44 17604448674
fax-no: +44 17605794996
e-mail: domreg@101domain.com
registrar: EPAG Domainservices GmbH
changed: 05/04/2014 nic@nic.fr
anonymous: NO
obsoleted: NO
source: FRNIC
nic-hdl: DG7861-FRNIC
type: ORGANIZATION
contact: Deallx GmbH
address: Industriezeile 54
address: 5280 Braunau
address: Oberoesterreich
country: AT
phone: +49 85719250212
fax-no: +49 85719250229
e-mail: info@deallx.de
registrar: EPAG Domainservices GmbH
changed: 27/03/2014 nic@nic.fr
anonymous: NO
obsoleted: NO
eligstatus: ok
eligsource: REGISTRAR
eligdate: 27/03/2014 12:04:46
reachmedia: email
reachstatus: ok
reachsource: REGISTRAR
reachdate: 27/03/2014 12:04:46
source: FRNIC
nic-hdl: NH1896-FRNIC
type: PERSON
contact: Nessus Hostmaster
address: NESSUS GmbH
address: Fernkorngasse 10/A/2/101
address: 1100 Wien
country: AT
phone: +43 720002828
fax-no: +43 123488779
e-mail: hostmaster@nessus.at
registrar: EPAG Domainservices GmbH
changed: 13/03/2013 nic@nic.fr
anonymous: NO
obsoleted: NO
source: FRNIC

malls99.com whois :

Domain Name: MALLS99.COM
Registry Domain ID: 1951021053_DOMAIN_COM-VRSN
Registrar WHOIS Server: whois.godaddy.com
Registrar URL: http://www.godaddy.com
Update Date: 2015-08-04T16:25:04Z
Creation Date: 2015-08-04T16:25:04Z
Registrar Registration Expiration Date: 2016-08-04T16:25:04Z
Registrar: GoDaddy.com, LLC
Registrar IANA ID: 146
Registrar Abuse Contact Email: abuse@godaddy.com
Registrar Abuse Contact Phone: +1.4806242505
Registry Registrant ID:
Registrant Name: dishank gupta
Registrant Organization:
Registrant Street: s22 ashok vihar near by arjun nagar phatak
Registrant Street: jaipur
Registrant City: jaipur
Registrant State/Province: Rajasthan
Registrant Postal Code: 302015
Registrant Country: IN
Registrant Phone: +91.8955879778
Registrant Email: dishank.gupta1991@gmail.com
Registry Admin ID:
Admin Name: dishank gupta
Admin Organization:
Admin Street: s22 ashok vihar near by arjun nagar phatak
Admin Street: jaipur
Admin City: jaipur
Admin State/Province: Rajasthan
Admin Postal Code: 302015
Admin Country: IN
Admin Phone: +91.8955879778
Admin Email: dishank.gupta1991@gmail.com
Registry Tech ID:
Tech Name: dishank gupta
Tech Organization:
Tech Street: s22 ashok vihar near by arjun nagar phatak
Tech Street: jaipur
Tech City: jaipur
Tech State/Province: Rajasthan
Tech Postal Code: 302015
Tech Country: IN
Tech Phone: +91.8955879778
Tech Email: dishank.gupta1991@gmail.com
Name Server: NS1.DOTICONIC.COM
Name Server: NS2.DOTICONIC.COM
DNSSEC: unsigned

palora.de whois :

Domain holder: Scandia Trading ApS
Address: Buen 36
Postal code: 6340
City: Kruså
Country: DK
Administrative contact
Name: Sandra Zell
Organisation: PTS Privacy & Trustee Services GmbH
Address: Neunkircher-Str. 43
Postal code: 66299
City: Friedrichsthal
Country: DE
Technical contact
Name: Hostmaster Funktionen
Organisation: UnoEuro
Address: Danmarksvej 26
Postal code: 8660
City: Skanderborg
Country: DK
Phone: +45-86515030
Fax: +45-70235567
E-mail: hostmaster@unoeuro.com
Zone administrator
Name: Hostmaster Funktionen
Organisation: UnoEuro
Address: Danmarksvej 26
Postal code: 8660
City: Skanderborg
Country: DK
Phone: +45-86515030
Fax: +45-70235567
E-mail: hostmaster@unoeuro.com
Name server: ns-121.awsdns-15.com
Name server: ns-1275.awsdns-31.org
Name server: ns-1961.awsdns-53.co.uk
Name server: ns-839.awsdns-40.net

sexshop-germany.de whois :

Domain holder: QE GmbH & Co. KG
Address: Martinistr. 3
Postal code: 49080
City: Osnabrück
Country: DE
Administrative contact
Name: Ansas Meyer
Organisation: QE GmbH & Co. KG
Address: Martinistr. 3
Postal code: 49080
City: Osnabrück
Country: DE
Technical contact
Name: Hostmaster of the day
Organisation: QE GmbH & Co. KG
Address: Martinistr. 3
Postal code: 49080
City: Osnabrück
Country: DE
Phone: +49-541-40666-180
Fax: +49-541-40666-189
E-mail: info@birawu.com
Zone administrator
Name: Hostmaster of the day
Organisation: QE GmbH & Co. KG
Address: Martinistr. 3
Postal code: 49080
City: Osnabrück
Country: DE
Phone: +49-541-40666-180
Fax: +49-541-40666-189
E-mail: info@birawu.com
Technical data
Name server: ns1.birawu.com
Name server: ns2.birawu.com

Domains used for this phishing :

• umshop.com.br
• malls99.com
• deallx.fr
• sexshop-germany.de
• palora.de