Pelican Parts Forums - Does this look legit ?

Pelican Parts Forums (http://forums.pelicanparts.com/)

- Off Topic Discussions (http://forums.pelicanparts.com/off-topic-discussions/)

- - Does this look legit ? (http://forums.pelicanparts.com/off-topic-discussions/1033670-does-look-legit.html)

Does this look legit ?

Chinese company contacts me saying that a company in China wants to register a bunch of domains similar to our domain. This looks like it is a legitimate e-mail, but there are SO MANY scams out there. They contacted the address on our website.

Where my "scam" alert comes on is the letter says to transfer to our "CEO".

Quote:

Dear CEO,
(It's very urgent, please transfer this email to your CEO. If this email affects you, we are very sorry, please ignore this email. Thanks)
We are a Network Service Company which is the domain name registration center in China.
We received an application from Hua Hai Ltd on July 1, 2019. They want to register " tetrawestsolar " as their Internet Keyword and " tetrawestsolar .cn "、" tetrawestsolar .com.cn " 、" tetrawestsolar .net.cn "、" tetrawestsolar .org.cn " 、" tetrawestsolar .asia "domain names, they are in China and Asia domain names. But after checking it, we find " tetrawestsolar " conflicts with your company. In order to deal with this matter better, so we send you email and confirm whether this company is your distributor or business partner in China or not?

The e-mail header looks legitimate

Quote:

Return-Path: <info@cnygdomainco.cn>
Delivered-To: james@682763.696310
Received: (qmail 11464 invoked by uid 78); 2 Jul 2019 09:39:47 -0000
Delivered-To: sales@tetrawest.com
Received: (qmail 11459 invoked by uid 0); 2 Jul 2019 09:39:47 -0000
Received: from unknown (HELO atl4mhib49.myregisteredsite.com) (209.17.115.184)
by 0 with ESMTPS (DHE-RSA-AES256-GCM-SHA384 encrypted); 2 Jul 2019 09:39:47 -0000
Received: from mx19.dns.com.cn (mx19.dns.com.cn [180.76.192.19])
by atl4mhib49.myregisteredsite.com (8.14.4/8.14.4) with ESMTP id x629b3h1012750
for <sales@tetrawest.com>; Tue, 2 Jul 2019 05:37:05 -0400
Received: from ygh (unknown [115.217.178.157])
by mx19.dns.com.cn (DNS Email Server) with ESMTPA id DC50E100AEF
for <sales@tetrawest.com>; Tue, 2 Jul 2019 17:37:00 +0800 (CST)
Reply-To: <mike.zhang@cnygdomain.cn>
Sender: info@cnygdomainco.cn
Message-ID: <3A2FB50A1C5CD506D338E7941245EA8A@ygh>
From: "mike.zhang@cnygdomain.cn" <mike.zhang@cnygdomain.cn>
To: <sales@tetrawest.com>
Subject: "tetrawestsolar"
Date: Tue, 2 Jul 2019 17:36:48 +0800
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="----=_NextPart_000_0CAC_01153CE4.1C3CF5D0"
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2900.5512
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.5512
X-Scanned-By: AntiSpam on 127.0.0.1
X-SpamScore: 2.2
X-MailHub-Apparently-To: sales@tetrawest.com

No, it's not legit.

Has not been even once in the last 20 years or so thats been floating around.

The scam meter is pegged off the scale.

How could anyone not think that's a scam?

Scam or not, I don't think you have any obligation to do anything. There problem, not yours.

Agreed

Theirs ;)

This is Mike Zhang. This is legit and I gather your post on this car forum indicates that this company is not your business partner in China.

Great, we can help with that, but we will need an initial deposit to cover our costs. We prefer bitcoin. I'll send you the details on how to pay and how to get set up if you aren't familiar with that type of payment.

Look forward to working with you.

Mike

" In order to deal with this matter better, so we send you email and confirm..."

Enough for me to hit delete.

Quote:

Originally Posted by Zeke (Post 10510709)

" In order to deal with this matter better, so we send you email and confirm..."

Enough for me to hit delete.

"Dear" from someone I don't know is enough for me to hit delete. "Dear CEO", LOL, oh yeah, that sounds legit.

I got an email from GoDaddy.com telling me our old card was expiring. It even gave last 4 and expiration date. Said to Click Here to update the card. Fuch that, I went to GD.com and logged in and made the change. CEOs can never be too careful these days.

NO!

Way back when International domain names were first available in other countries it was common to get your comapany domain in those countries you did business in and just point it to your english .com domain or provide your site in various languages. Then some countries start requiring you to have an address in their country to get a country specific domain. After a few years most compainies decided it was not worth keeping the domain registrations up AND start using SSL certificstes to provide proof their main domain is legit.

Never go to an unsolicited link in an email. That is just opening the door for possible hacking.