1. Oooops!

    Oooops! MajorGeek

    Hi,

    Yesterday, I received an e-mail in my Junk Folder showing my own e-mail address as both the sender and the topic.
    (I have copied and pasted it below).

    - Can I block the e-mail, or will it end up blocking my own e-mail (because they're using my account?)
    - Can I ignore this junk and call B.S., or is my computer infected?
    - I don't have a webcam, I don't visit nasty web sights, I'm female.
    Please advise.


    "Hello pervert, I've sent thіs message from your Microsoft account.
    I want to іnform you about a very bad sіtuatіon for you. However, you can benefіt from іt, іf you wіll act wіsely.
    Have you heard of Pegasus? Thіs іs a spyware program that іnstalls on computers and smartphones and allows hackers to monіtor the actіvіty of devіce owners. It provіdes access to your webcam, messengers, emaіls, call records, etc. It works well on Androіd, іOS, macOS and Wіndows. I guess, you already fіgured out where I’m gettіng at.
    It’s been a few months sіnce I іnstalled іt on all your devісes because you were not quіte choosy about what lіnks to clіck on the іnternet. Durіng thіs perіod, I’ve learned about all aspects of your prіvate lіfe, but one іs of specіal sіgnіfіcance to me.
    I’ve recorded many vіdeos of you jerkіng off to hіghly controversіal рorn vіdeos. Gіven that the “questіonable” genre іs almost always the same, I can conclude that you have sіck рerversіon.
    I doubt you’d want your frіends, famіly and co-workers to know about іt. However, I can do іt іn a few clіcks.
    Every number іn your contact Iіst wіll suddenly receіve these vіdeos – on WhatsApp, on Telegram, on Instagram, on Facebook, on emaіl – everywhere. It іs goіng to be a tsunamі that wіll sweep away everythіng іn іts path, and fіrst of all, your former lіfe.
    Don’t thіnk of yourself as an іnnocent vіctіm. No one knows where your рerversіon mіght lead іn the future, so consіder thіs a kіnd of deserved рunіshment to stop you.
    I’m some kіnd of God who sees everythіng. However, don’t panіc. As we know, God іs mercіful and forgіvіng, and so do I. But my merсy іs not free.
    Transfer 1550$ to my Lіtecoіn (LTC) wallet: ltc1q53kz6xddp6h6zr4vqyq79erddy7pfzk4668knc
    Once I receіve confіrmatіon of the transactіon, I wіll рermanently delete all vіdeos compromіsіng you, unіnstall Pegasus from all of your devіces, and dіsappear from your lіfe. You can be sure – my benefіt іs only money. Otherwіse, I wouldn’t be wrіtіng to you, but destroy your lіfe wіthout a word іn a second.
    I’ll be notіfіed when you open my emaіl, and from that moment you have exactly 48 hours to send the money. If cryptocurrencіes are unchartered waters for you, don’t worry, іt’s very sіmple. Just google "crypto exchange" or "buy Litecoin" and then іt wіll be no harder than buyіng some useless stuff on Amazon.
    I strongly warn you agaіnst the followіng:
    * Do not reply to thіs emaіl. I've sent іt from your Mіcrosoft account.
    * Do not contact the polіce. I have access to all your devісes, and as soon as I fіnd out you ran to the cops, vіdeos wіll be publіshed.
    * Don’t try to reset or destroy your devісes. As I mentіoned above: I’m monіtorіng all your actіvіty, so you eіther agree to my terms or the vіdeos are рublіshed.
    Also, don’t forget that cryptocurrencіes are anonymous, so іt’s іmpossіble to іdentіfy me usіng the provіded address.
    Good luck, my perverted frіend. I hope thіs іs the last tіme we hear from each other.
    And some frіendly advіce: from now on, don’t be so careless about your onlіne securіty."
     
  2. Oh My!

    Oh My! Malware Expert Staff Member

    Greetings and welcome to the Major Geeks Malware Forum.

    In order to address your situation there are a couple of things I would like to request.

    Please do this.

    I would like you to forward the email to my email address that I will provide via Personal Message.

    Please do this.

    ===================================================

    Farbar Recovery Scan Tool (FRST)

    --------------------
    • Download FRST64 and save the file on your Desktop
    • If your computer language is other than English right click on the FRST64 icon and rename it to FRST64english
    • Right click on the icon and select Run as administrator
    • Note: If you receive any warning about the download it is a false positive and you can ignore it. Click on More info to get the Run anyway option
    • Click Yes to the disclaimer
    • Click Scan and allow the program to run
    • When completed, FRST.txt and Addition.txt reports will be saved on the Desktop
    • Please attach the reports to your reply
    ===================================================

    Things I would like to see in your next reply.
    • Forwarded email
    • Attached reports
     
  3. Oooops!

    Oooops! MajorGeek

    FRST and Addition Reports
    Attached

    Forwarded e-mail
     

    Attached Files:

    Last edited: Jun 10, 2025
  4. Oh My!

    Oh My! Malware Expert Staff Member

    Thank you for the email.

    There is no evidence of malware or corruptions. I commend you on the very clean condition of your computer, the nicest I have seen in quite some time.

    I did not have access to the information I was hoping to get. Here are instructions to follow but I can't test it because I don't have Outlook. Hopefully you can work through the steps.

    • Open the email in Outlook
    • Click File
    • Click Properties
    • Look for a section labeled Internet Headers or Headers
    • Examine the sender's email address typically included in the From field
    • The sender's email address and domain should be listed in the headers, typically in the "From" field
    • Let me know if the information is the same as yours or different
     
  5. Oooops!

    Oooops! MajorGeek

    Thank you for the compliment!

    I wasn't able to find, "File, Properties".

    I did however, stumbleupon something that opens called, "Message Source". A separate white window opens, with a whole lotta informative text in it. Is this what you need? It includes the senders message at the bottom, with different looking text characters added. Do you want me to copy and paste it in here (not sure if there's sensitive information), or e-mail it to you?
     
  6. Oh My!

    Oh My! Malware Expert Staff Member

    Nice work. Email it please.
     
  7. Oooops!

    Oooops! MajorGeek

    "Message Source"
    E-mail sent.
     
  8. Oh My!

    Oh My! Malware Expert Staff Member

    Outstanding work on your part.

    Although we still have some work to do, if it helps at all at this point I am not greatly concerned you have been compromised. Even though your computer is secure if you have not done so already check your banking, social, and other web sites requiring your user name and password and see if there are any irregularities.

    Please allow me some time to evaluate the information. I won't be replying until sometime tomorrow.

    I appreciate your understanding.
     
  9. Oooops!

    Oooops! MajorGeek

    Ok, thank you.
     
  10. Oh My!

    Oh My! Malware Expert Staff Member

    Please send a test email from yourself to yourself using your same email address. Repeat the process you detailed in Post #5 and provide the information to my email address you used previously.
     
  11. Oooops!

    Oooops! MajorGeek

    Sent a test e-mail to myself.
    E-mailed you the "Message Source" information.
     
  12. Oh My!

    Oh My! Malware Expert Staff Member

    Thank you for providing the comparison email.

    From the Header of the original email you received:
    I have confirmed the sender of the email you received spoofed your email address. The IP address from which it was sent is a known untrustworthy source. It was not generated from your account and can be safely ignored.
     
    Oooops! likes this.
  13. Oooops!

    Oooops! MajorGeek

    I appreciate the time that you've spent on this and the way that you explain / show things.
    Thank you for your help.
    All the respect.
    :)
     
  14. Oh My!

    Oh My! Malware Expert Staff Member

    You are quite welcome.

    I appreciate you helping by taking the extra steps. I was sure it was a spoof but I wanted to see the actual evidence.

    Again I commend you on the condition of your computer. Very impressive. :)
     
    Oooops! likes this.

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds