Blog: What a Mac life!

ついでに，もう一つ来ていた．
「バイト斡旋？実はマネーロンダリング」や「就職斡旋？」で紹介した，求人メール．
これも資金洗浄の求人メールなんでしょうか．

社名も名乗らず，連絡先もgmailとyahooメールって，どんな会社だよ，オイ．

---------------------

Return-path: <*****@bostik.com>
Received: from [200.91.199.219] by mail01.par.totalfinaelf.net; Thu,12 Jul 2007 15:15:11 +0500
Date: Thu, 12 Jul 2007 15:15:11 +0500
From: Charles H Bentley <*****@bostik.com>
Subject: Real job, no investment is reqired.
X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.3790.2663
X-Mailer: Microsoft Outlook, Build 10.0.3416
Content-type: text/plain; charset=Windows-1252
Content-transfer-encoding: 7bit


Dear Emplyee,

Our International Corporation has a variety of high-paid jobs available at the moment.
We are proud to offer you an interesting, respectable job in a field of Financial Services.
If you are a honest, responsible and hard-working person we would be glad to do business with you.
Our company is a respectable international organization.
We believe that the success of our company depends on maintaining high standards of business conduct,
integrity, safety, quality and respect for people and the environment in everything we do.
We are working honestly. We will never ask you to pay or invest something.
You work - we pay for the result.
We will never ask you to provide us with your private information such as credit card number or your bank requisites.

There are no geographical limits for our employees.
People from all over the world are welcomed.
No degree is required in order to join us.
We value educated people very much but we believe that there are a lot of perspective persons without any degree.
We have job for everyone.
Most of people who is working as our local representative for 2-3 years has embodied all their financial dreams in a reality.
They know that working with us is a right way to acheive the financial success.

It's impossible to tell everything in this short introduction message.
If you are interested just contact us and we will forward you the complete information about available jobs.
It is absolutely free.

Thank you,
we are waiting for your prompt response to *****@gmail.com
Please include "Application number 311500" in a subject line.

P.S.
If you believe that our message has come to you by mistake just reply with "unsubscribe" to *****@yahoo.com
and you'll never hear from us again. We apologize for any inconveniences.

---------------------


この手のスパムは長文が多く，意外に真面目に人材募集しているなあ．
このメールはちょっとぎこちなく不自然な所もあるが，ぱっと見，ホント求人．
でも，学歴不問の財務サービス業って，どんな仕事なのか．イカにもヤバイ．

IT関係のニュースを見ていたら，新生銀行をかたったフィッシングメールが出回っているという記事を発見．




ウチにも来ているのかしら？と，迷惑メールフォルダを見てみると，あら，職場メアド宛にちゃんと来てますがな．
英語人で新生銀行の利用者って，そんなにいるのかしら？
フィッシングする人達も，良く見つけてくるな〜．こんな外国の銀行．


本文はこんな感じ．

------------

Return-path: <*****@bonsai-in-asia.com>
Received: from [82.72.171.161] by mx8.daemonmail.net; Thu,12 Jul 2007 10:41:22 -0100
Date: Thu, 12 Jul 2007 10:41:22 -0100
From: *****@shinseibank.co.jp
Subject: Suspend your account!
Reply-to: *****@bonsai-in-asia.com
X-Mailer: The Bat! (v2.00.3) Business
Content-type: text/html; charset=windows-1250
Content-transfer-encoding: 8BIT


Dear Shinsei Bank Online Customer,

We regret to inform you, that we had to lock your Shinsei Bank Online Access because we have some definite reasons to believe that your account may have been illegaly accessed by outside parties. In order to protect your confidential data, we temporarily suspended your account.

To access your account, please contact Shinsei Bank Customer Service at:

https://direct03.shinseibank.co.jp/FLEXCUBEAt/LiveConnect.dll?EntryFunc&fldAppID=RT&fldTxnID=LGN&fldScrSeqNo=00&fldLangID=ENG&fldDeviceID=*****&fldRequestorID=*****

We are proud to help you with all of your financial needs and to protect your privacy and security.

As a part of our service, we may occasionally send you informative e-mail in order to:

- Keep you up to date with our special offers, products, features, and services.
- Let you know how Shinsei Bank and its affiliates can help you financially.
- Provide you with the tools and resources you need to make your financial decisions

You may not reply to this automatically generated e-mail.

We know you have a wide choice of banks.
Thanks for choosing ours.

Sincerely, Online Shinsei BankTeam

Ö?Copyright 2001, Shinsei Bank, Limited

---------------


ちなみに，UFJも．他にも大手消費者金融を騙ったフィッシングとか，色々あるらしいっすね．
ホント，良く見つけてくるなあ．

こんなメール.職場のアドレス宛にlilianaさんよりお便り.
外国からの出会い系スパム？

「どこぞかでアドレスを見つけました．迷惑じゃないなら文通しましょう.でも返信は自分のメールアドレスに直接お願いね.」とまあそんな文面.
頼めば写真も送ってくれるそうである.


-------------

Return-path: <*****@ashcroftunofficial.co.uk>
Received: from [201.150.71.104] by n57.mail.pth.fanclub.ro with NNFMP; Sun,01 Jul 2007 16:31:21 -0800
Received: from [66.218.532.684] by e8.mail.hhx.fanclub.ro with NNFMP; Sun,01 Jul 2007 16:31:21 -0800
Received: from [127.0.0.9] by mmapi7.mail.szj.fanclub.ro with NNFMP; Sun,01 Jul 2007 16:31:21 -0800
Date: Sun, 01 Jul 2007 16:31:21 -0800
From: liliana <*****@ashcroftunofficial.co.uk>
Subject: is it you? liliana here
Errors-to: *****@ashcroftunofficial.co.uk
Reply-to: *****@ashcroftunofficial.co.uk


Do not ignore me please,
I found your email somewhere and now decided to write you.
Let me know if you do not mind. If you want I can send you some pictures of me.
I am a nice pretty girl. Don't reply to this email.
Email me direclty at *****liliana*****@supervisioncare.info

-------------


super vision careのlilianaさんからのお便り？
ukドメインアドレスだが，ルーマニアからだし．
もしホントに出会い系サイトからだとしても，なぜ外国の出会い系にワシの職場のメアドが載っているのだろう・・・？
だが返信先のユーザーアカウントと差出人の名前が一致している所なんて，ちょっと丁寧だな．ホントに外国からペンパル募集メールが来たかと思ってしまいそう．
お返事したら，lilianaさんに眼鏡でも買わされるのだろうか．


ちなみに，危険な国別ドメインでは，ルーマニア(.ro)がトップだそうな．また，最も危険な汎用ドメインは.info．
両方入ってますがな．

久しぶりにフィッシングサイト.
「グリーティングカードが届きました」と偽って，アクセスさせるというヤツ．職員用のメーリングリストに来た.

送り主が無い，アクセス先のアドレスが怪しい，メーリングリストに来た，ってので気づいたが，個人宛に来たら誰かからかと思ってクリックしちゃいそうだなあ.
でもクリックしちゃうとマルウエアをダウンロードさせられちゃったりするらしい.

以下，メールの内容-----

Received: from llnql.qjxjv ([55.218.215.164]) by bellehaven.dsl.enter.net withMicrosoft SMTPSVC(6.0.3790.0); Thu, 28 Jun 2007 14:18:08 -0400
Date: Thu, 28 Jun 2007 14:18:08 -0400
From: "GreetingCards.Com"
Subject: You've received a postcard from a family member!
X-MIMEOLE: Produced By Microsoft MimeOLE V5.50.4807.1700
X-Mailer: Microsoft Outlook Express 5.50.4807.1700
Content-type: text/plain; format=flowed; charset=Windows-1252;reply-type=original
Content-transfer-encoding: 7bit


Good day.

Your family member has sent you an ecard from GreetingCards.Com.

Send free ecards from GreetingCards.Com with your choice of colors, words and music.

Your ecard will be available with us for the next 30 days. If you wish to keep
the ecard longer, you may save it on your computer or take a print.

To view your ecard, choose from any of the following options:

--------
OPTION 1
--------

Click on the following Internet address or
copy & paste it into your browser's address box.

http://140.146.30.111/?03ac1719146019a1823497b969c

--------
OPTION 2
--------

Copy & paste the ecard number in the "View Your Card" box at
http://140.146.30.111/

Your ecard number is
03ac1719146019a1823497b969c

Best wishes,
Postmaster,
GreetingCards.Com

以上，メールの内容-----


ちなみに後日，職場の個人メアドにも同じモノが来た.以前からだが，仕事のメールより迷惑メールのが多い．
職場のサーバもいい加減対策したらどうだ．

ブログにアクセス数カウンターとアクセス先取得のjavascriptタグを入れているのだが，ACR webの簡易アクセスランキングに，時々エロサイトからの訪問が来た事になっている.しかも一時期に微妙に複数．足跡スパムですか．

だが，別のアクセス解析ログをみると，無い．怪しいなあ．アクセスと装ってエロサイトに誘導するんだから，足跡フィッシング？
見つけた時はそういうサイトは除外リストに入れるのだが，次々新しいドメインが現れるのでいたちごっこの感がある.最近は少ないから良いけど.

アクセス先を見るときに，クリックする事を期待しているのだろう．確かに明らかに見てスパムと判るコメントスパムよりは，アドレスだけのランキングの方が見るモノの好奇心をそそる分，効果的かもしれないが．でもドメイン名があからさまな名前の所が多いんだよね．

コメントスパムとかならさておき，「逆アクセススパム」ってのは，どうやってタグ付けてるサイトを見つけてくるのだろうか．他ブログでも見たことあるのだが，サイドバーに一覧が出るタイプのタグに狙いを絞ってるのかな．

と，思ったら，自動化ツールがあるんですな.




最近始まったサービス「あわせて読みたい」も，面白いサービスだと思ったが，最初はいきなりエロサイトがランキングに表示された．今はスパム報告ボタンも出来て，エロサイトは排除されている様子.

色々サービスが出来ると，それに対応したスパムが出て来る.いたちごっこですなあ.

このところ時折，一見まともそうででも怪しい英語の求人募集のメールが来る（「就職斡旋」参照）．
たまたま見つけたIT関係の記事に，こんなのがあった．



フィッシングとかで得た利益（？）のマネーロンダリングの為の集金役募集スパムメールなのだそうな．やっぱり．
文章はまともなのが多いのだが，そもそも不特定多数に送っているとしか見えない文面，どう見ても怪しいよなあ．


で，先日もこんなメールが来た．

以下メールのコピペ------------

My name is Pavel Holmin. I'm manager of Braiton Inc (Ukraine
departament)
Currently our company is expanding and we have a limited number of job
opportunities available in Japan.

How much will I earn?
You can earn up to USD $2000 weekly

What shall I do?
Receive domestic money transfers from our clients and deliever it to us
fastests way.
It takes 2-3 free hours a day.

How much does it cost?
There is no start-up cost or any other fee to begin working with us. So
you do not need any capital to start

How do I start?
Your confidential details will be used only within our company. Every
employee, who suits our requirements, will be contacted by our company
executive to
carry out a basic
phone or email interview. During the interview you will be able to ask
any questions you might have

If you are ready to start please fill in the form below and send it
back to our email: holmin@gala.net

Just copy this form to your reply
First Name:
Last Name:
Country:
City:
Phone no:
Cel. phone no:
E-mail:
Additional information about yourself :

Thank you.

-------------

いや〜，ホントに求人だなあ．なんだか引っかかってしまいそう．


関連エントリ：
就職斡旋？

ここ数ヶ月，たま〜にこういうお仕事する人募集！メールが来る．
裏の仕事か？！

-----------

From: Mup Foundation
Subject: Regional Manager in Japan
Message-id:
MIME-version: 1.0
Content-type: text/plain; charset=iso-8859-1; format=flowed
Content-transfer-encoding: 8bit
X-Accept-Language: en-us, en
User-Agent: Mozilla Thunderbird 1.0.6 (X11/20050716)

We opening the work-from-home part-time position "Regional Manager". This includes processing payments between our partners'
clients and our company, ensure all personal data relating to customers is maintained, accurate and kept discreet,
identifying opportunities to improve service delivery.
Position Type: Permanent.
Working hours: 9am - 1pm weekdays. Variable overtime is also required.
Occupation Type: part-time (2-5 hours a day occupation).
Probation period: 2 weeks.
Salary: 4'500JPY per hour.
Professional qualities and skills:
* Scrupulous and diligent;
* Computer literate;
* Good organizational and administrative skills;
* Payment procedures prior experience would be an asset;
* Ability to work independently.

No agencies please.
Please respond only to info@mupfoundation.org
www.mupfoundation.org

--------------

こういうメールも良く届く．
いわゆるディプロマ・ミルってやつ．
授業もテストもなんもなしで，博士の学位までとれるんだってさ．
数年前，アメリカの政府高官にもこれで学位取った人がぼろぼろ出てきて，問題になったよな・・・．
金で学位が買えるのは，日本も同じ（特に医歯学系）なんだが，さすがアメリカ，露骨だなあ．

-------------------------
Received: from **.**.**.** (HELO ASPMX5.GOOGLEMAIL.com)
Date: Thu, 22 Feb 2007 02:04:41 +0240
From: Cornell Valle
Subject: Bachelors, Masters, MBA, PhD can be yours in 4 weeks if you qualify.
Message-id: <01c75625$d0af3330$6c822ecf@Sellers'sNa>
MIME-version: 1.0
X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2900.2527
X-Mailer: Microsoft Office Outlook, Build 11.0.5510


University Degree

OBTAIN A PROSPEROUS FUTURE, MONEY-EARNING POWER, AND THE PRESTIGE THAT COMES WITH HAVING THE CAREER POSITION YOU™ФE ALWAYS DREAMED OF. DIPLOMA FROM PRESTIGIOUS NON-ACCREDITED UNVERSITIES BASED ON YOUR PRESENT KNOWLEDGE AND PROFESSIONAL EXPERIENCE.

If you qualify, no required tests, classes, books or examinations.

Confidentiality Assured

1-213-596-5778
24 hours a day, 7 days a week including Sundays and Holidays


Thu, 22 Feb 2007 02:04:41 +0240 the patterns that UY,IX7W/)PPS33'
to do instead). You want JK

-------------------------

PayPalのFraudを装ったフィッシングメールが来た．かなり本格的．一見実際にPayPalから来るメールをそのままである．

自分のアカウントへの不穏な動きを警告するメール．アカウント保護のため，指定されたサイトへ行って個人情報をアップデートしろと書いてある．ここだけドメインが"paypaldirect.hk"で，しかもhttpsではない．行ってみたけど，PayPalのログインサイトそっくり．
このメール，元はhtmlフォーマットなのだが，ソースの画像もpaypalドメインから引っ張ってきている．送り主のアドレスはPayPalのアドレスだし，だましサイト以外のリンクはホントのPayPalへのリンク．
使っていないメアドに来たので気がついたから良かったが，こりゃ〜思わず引っかかりそうな出来である．

一応PayPalにこれってPhoshing?と問い合わせてみたが，返事が来ない．ていうかPayPal，フィッシングが多くてどれがホントなのか信用できぬ．


以下メールの内容「（※）」は補足
*****
Return-path:
Received: from no.name.available by [217.113.76.101] （※国はSierra Leone）
Date: Fri, 03 Nov 2006 06:49:32 +0000
From: PayPal
Subject: PayPal: Update Your PayPal Account
Message-id: <9DD0C2A6.2644127@mitene.or.jp>（※？）
MIME-version: 1.0
Content-type: multipart/alternative;boundary="Boundary_(ID_9udn40w9X1vO2k7PTqKW9A)"
X-Accept-Language: en-us, en
User-Agent: Mozilla Thunderbird 1.0.6 (X11/20050716)

Dear PayPal Member, PayPal is committed to maintaining a safe environment for its community of buyers and sellers. To protect the security of your account, we employ the most advanced security systems in the world and regularly screen our system for unusual activity.

Recently, our Account Review Team identified some unusual activity in your account. Per PayPal's user agreement, we have limited access to your account until this issue has been resolved. This is a fraud prevention measure meant to ensure that your account is not compromised.

In order to secure your account and quickly restore full access, we require some specific information from you.

Login follow our secure site and update all necessary informations to your account.

<</span>http://www.paypaldirect.hk/index.html>Click here to restore your account access（※香港ドメイン）



Thank you for your prompt attention to this matter. Please understand that this is a security measure meant to help protect you and your account. We apologize for any inconvenience.

Sincerely,
PayPal Account Review Department.

Please do not reply to this e-mail. Mail sent to this address cannot be answered. For assistance, log in to your PayPal account and choose the "Help" link in the footer of any page.
PayPal Email ID PP8790 CopyrightԤ 2006, PayPal Inc., All rights reserved. Designated trademarks and brands are the property of their respective owners.
Protect Your Account Info
Make sure you never provide your password to fraudulent websites.

To safely and securely access the PayPal website or your account, open a new web browser (e.g. Internet Explorer or Netscape) and type in the PayPal login page (http://paypal.com/) to be sure you are on the real PayPal site.

PayPal will never ask you to enter your password in an email.

For more information on protecting yourself from fraud, please review our Security Tips at https://www.paypal.com/us/securitytips
Protect Your Password
You should never give your PayPal password to anyone.

*******

最近，スパムが再び活性化．一時職場のメールへのスパムは減ったのだが，ここんとこ増えた．プライベートのアドレスの一つは，中国やヨーロッパ経由で人妻出会い系とかの日本語スパムが良く来るし．聞けば，韓国のメールにも日本語で出会い系スパムが来るそうな．

職場メアドの場合，英語か中国語．腹立つので中国語フォントは全部捨てた．どうせ読めぬ．
大抵は男性向け元気になる薬系や意図不明のメールなのだが，最近「日本に支店を作るので，働く人募集」みたいなスパムも来る．それを職場のメーリングリスト宛に送ってくるから腹が立つ．相手はMLも個人メアドも知らぬのだろうが．
あまりに大量のスパムメールにスパムフィルタを付けたらしい職場のメールサーバ，きっちり全部スルーしてますがな．使えねえ．

で，以下は，Australia経由で来たらしいかの有名なKenya mail．これってフィッシングの部類に入るのだろうか．
昔は迷惑メールの代表格だったが，今じゃこんな文面に凝ったメールはあまりお目にかかれないのだった．


以下，メールの内容-----

Return-path:
Received: from (124.120.145.70)
Date: Mon, 16 Oct 2006 01:09:01 +0900 (JST)
From: "Mr James Udem." <***@walla.com>
Subject: Business Proposal.
Reply-to: "Mr James Udem." <***@walla.com>
MIME-version: 1.0
Content-type: multipart/mixed; boundary=qzsoft_directmail_seperator


From Mr James Udem.

E-mail:***@walla.com

Tel: 66-8-7500****

Dear,

Compliments of the day, before I proceed, I must be grateful to introduce myself. I am Mr. James Udem, a former Aide to one of the ministers of the Sierra-Leonian government, prior to the time of crisis which is presently on and I got your contact from a directory I have just acquired.

Due to my position, I have been able to come away with a reasonable sum of money Six Point five Millon Dollars ( $6.500.000.00)and I have the tendency to invest this money in a company with good line of products like your own company and with potential for a good capital returns. Since your country is one of the good investor friendly nations in the world, I have decieded to live and run business over there I would therefore like you to help me in every possible way in securing this money in
your country.

Furthermore I will like you to assist me in finding a good business that I will invest this fund. However upon acceptance, you will be required to come to Bangkok-Thailand for a meeting. This will enable us to know ourselves better and finalize arrangement towards moving this fund to your country.

In view of your participation, I am ready to give you a good negotiation percentage for your assistance or better still commit it into a joint venture project. Be assured that you stand no risk of any kind as the fund belongs to me only. As soon as I get your consent, I will quickly move this fund to your country and finally move my family over there as well.

I strongly believe that associating with you to embark on this and other business ventures will derive a huge success hereafter. If you have any question do not hesitate to include same in your reply.I am looking forward to hearing from you with regards to our collaboration and our immediate formal meeting. Kindly reply with this E-mail
also add your phone number (probably mobile) for ease of communication.

Best regards

James Udem.

".Mac Tips"の「ウィルス観測: Technorati ユーザを狙ったメールアドレス収集か?」で報告されているのと同じメールが来た．一見Technoratiからを装ってはいるけど，リンク先や送り先ドメインは別のcampainmonitor.com．確かに怪しい．

「これって，お宅様から？」とTechnoratiに問い合わせてみたが，今のところ（10/8時点）返事は無し．"The Buzz Monitor”も来てませんがな．次の金曜って，来週の金曜って事？


-----以下そのメール-----

Return-path:
Received: from m2.campaignmonitor.com (m2.campaignmonitor.com [209.59.181.6])by mac.com (Xserve/smtpin35/MantshX 4.0) with ESMTP id k92JuqdW017744 for<*****@mac.com>; Mon, 02 Oct 2006 12:56:53 -0700 (PDT)
Received: from [66.92.180.250] by M2.campaignmonitor.com via HTTP; Tue,03 Oct 2006 05:56:29 +1000
Date: Tue, 03 Oct 2006 05:56:29 +1000
From: Technorati
Subject: Technorati's Has a Newsletter! The Buzz Monitor
To: "*****@mac.com" <*****@mac.com>
Reply-to: press@technorati.com
X-Complaints-to: abuse@campaignmonitor.com
X-Mailer: Campaign Monitor


Hello from Technorati!

You are receiving this because you are on the mailing list for our
upcoming newsletter, the Buzz Monitor.

The Buzz Monitor will be your weekly update of what's happening on
the web, right now. We'll pipe you headlines from the blogosphere,
photos from our members, tips and tricks for our publishers, and
guides for our users. All this delivered fresh to your inbox each
week courtesy of the world's leading index of user-generated media.

The Buzz Monitor will arrive in html and text format, and will be
archived and available on www.technorati.com. If you decide you
don't want it, simply http://technorati.cmail1.com/.aspx/u/*5digit*/*8digit*/.

Expect the first edition of the Buzz Monitor to arrive next Friday,
and every Friday thereafter. We'll strive to report the best of
the World Live Web every week, and we're confident you'll like it.

And you may just become addicted, so don't say we didn't warn you.


This email was sent to *****@mac.com.
You can instantly unsubscribe from these emails by clicking the link below:
http://technorati.cmail1.com/.aspx/u/*5digit*/*8digit*/

-------


経由サーバはm2.campaignmonitor.com [209.59.181.6]とdsl092-180-250.sfo1.dsl.speakeasy.net [66.92.180.250] ．
まあ，怪しいリンクへは行かない方が賢明なのね〜．

先日と同じフィッシングメールがまた来た．
文面，ドメインがほぼ一緒．リンク先も全く同じ．

ってことは，amazon.comは対策全く講じてない？
ええかしゃん．

以下，ヘッダのみ．

Return-path:
Received: from acestsw.*** (acestsw.*** [***.170.103.126])by *** for ***; Tue, 14 Feb 2006 09:52:14 +0900 (JST)
Received: (qmail ***** invoked by uid *****); Tue, 14 Feb 2006 00:52:10 +0000
Date: Tue, 14 Feb 2006 00:52:10 +0000
From: "order-update@amazon.com"
Subject: Amazon request: Please follow the Member Verification Procedure
Message-id: <20060214005210.*****.qmail@acestsw.***>
Content-type: text/html;

Amazon.comを装ったフィッシングメールがきた．

Amazon.comにカードで注文が来ているが，悪用かもしれない，確認の為48時間以内にサイトにアクセスせよ，とのメール．ただしアクセス先がamazonを装った別サイト．
最後にはアクセス後48時間は調査に時間がかかるだの，eメールでの問い合わせは余計に時間がかかるだの，とよく考えているというか．

悪用とは思ったが，実際にamazon.comにアカウントを持っているので，念のため問い合わせ．
Phishing or Spoofed E-mailsに報告したところ，すぐ「これはフィッシングメールなので返答しないで」と返事が来た．

見分け方のガイドがIdentifying Phishing or Spoofed E-mailsにある．たぶんamazon.comを語るフィッシングが多いんだろう．

以下フィッシングメールの内容．一部略及び*で隠してある．*************
Return-path: ＜anonymous@unitreth.***＞
Received: from unitreth.*** (unitreth.*** [***.170.103.123])by ***
Received: (qmail ***** invoked by uid *****); Sun, 05 Feb 2006 21:12:51 +0000
Date: Sun, 05 Feb 2006 21:12:51 +0000
From: Amazon Account Update
Subject: FPA NOTICE: Amazon.com Registration Suspension - Action Required
To: ***
Message-id: <20060205211251.*****.qmail@unitreth.***>
Content-type: text/html;

Dear Amazon.com Customer,

Your bank has contacted us regarding some attempts of charges from your credit card via the Amazon system. We have reasons to believe that you changed your registration information or that someone else has unauthorized access to your Amazon account Due to recent activity, including possible unauthorized listings placed on your account, we will require a second confirmation of your identity with us in order to allow us to investigate this matter further. Your account is not suspended, but if in 48 hours after you receive this message your account is not confirmed we reserve the right to suspend your Amazon registration. If you received this notice and you are not the authorized account holder, please be aware that it is in violation of Amazon policy to represent oneself as another Amazon user. Such action may also be in violation of local, national, and/or international law. Amazon is committed t! ! o assist law enforcement with any inquires related to attempts to misappropriate personal information with the intent to commit fraud or theft. Information will be provided at the request of law enforcement agencies to ensure that perpetrators are prosecuted to the full extent of the law.

To confirm your identity with us click the link bellow:

＜http://dili3.**/tmp/＞http://www.amazon.com/exec/obidos/sign-in.html

After responding to the message, we ask that you allow at least 48 hours for the case to be investigated. Emailing us before that time will result in delays. We apologize in advance for any inconvenience this may cause you and we would like to thank you for your cooperation as we review this matter.

Respectfully,
Trust and Safety Department