PG&E Energy Statement-Delivery Canceling-Gas and Electric Usage Virus Email

PGE Energy Statement-Delivery Canceling-Gas and Electric Usage Virus Email

Would you share this Article with others?

The PG&E Energy statement below is a fake and contains a link to a dangerous virus or Trojan horse. The email message was not sent by PG&E and was designed to trick the recipients into clicking on a link within it, which will take them to a malicious or compromised website that will ask them to download a virus or Trojan horse disguised as PG&E energy statement.

The Fake and Malicious PG&E Virus Email Message

Subject: Delivery Canceling
Subject: Gas and Electric Usage Statement
Subject: Express Delivery Failure

The Fake and Malicious PG&E Virus Email Message

PG&E ENERGY STATEMENT Account No: 433242797-3
Statement Date: 01/07/2014
Due Date: 02/01/2014

Your Account Summary
Amount Due on Previous Statement
Payment(s) Recieved Since Last Statement

Previous Unpaid Balance
Current Electric Charges
Current Gas Charges $344.70 0.0 $344.70 $165.80 49.20

To view your most recent bill, please click here. You must log-in to your account or register for an online account to view your statement.

Total Amount Due BY 02/01/2014 $559.70

If you click on the link in this malicious email message, you will be taken to malware or compromised website that will prompt you to download a malicious file, which will infect your computer, disguised as a PG&E energy statement.

The file you will be asked to download name begins with "PGE_FullStatement_" and may change.

When we scanned this file, the following threats were detected:

  • Trojan.GenericKD.1491026
  • Trojan/Win32.Kuluoz
  • TR/Agent.bsls.1
  • Win32:Malware-gen
  • Trojan.Win32.Agent.acvg
  • Trojan.GenericKD.1491026
  • Win32/TrojanDownloader.Zortob.B
  • Trojan.GenericKD.1491026 (B)
  • W32/Kryptik.BSLS!tr

Once your computer has become infected with this malicious Trojan horse, the cybercriminals behind this email message will be able to access and take control of your computer remotely from anywhere around the world. They may spy on you, use your computer to commit cybercrimes, or steal your personal and financial information.

Now, if you have already opened this fake and malicious PG&E statement file, please do a full scan of your computer with the antivirus software installed on it.

If you don’t have antivirus software installed on your computer, please click here for a list of free antivirus software.

Also, PG&E recommends that you do the following to protect yourself against scammers:

  • Individuals and companies are posing as PG&E employees or contractors to gain access to your account information or entry into your home. Here are ways to protect your home or business.
  • You should always ask to see identification before allowing anyone claiming to be a PG&E representative inside their home. PG&E employees always carry their identification and are always willing to show it to you.
  • If a person claiming to be a PG&E employee has identification and you still feel uncomfortable, call PG&E's customer service line at 1-800-PGE-5000 to verify an appointment and/or PG&E's presence in the community.
  • If you have an appointment with PG&E, you will receive an automated call back within 48 hours prior to a scheduled visit, or a personal call from a PG&E service representative prior to a scheduled visit.
  • If you have concerns about the legitimacy of a call you have received about a past due bill, a service request or a request for personal information, call PG&E immediately at 1-800-743-5000.
  • PG&E's Credit Department will never ask for personal information, a credit card number or a gift card number over the phone. If you have received such a phone call and provided credit card or checking account information should report it immediately to the credit card company or bank and law enforcement.

Note: Some of the names, addresses, email addresses, telephone numbers or other information in samples on this website may have been impersonated or spoofed.

Please share what you know or ask a question about this article by leaving a comment below. Check the comment section below for additional information, if there is any. Remember to forward suspicious, malicious, or phishing email messages to us at the following email address: And, report missing persons, scams, untrustworthy, or fraudulent websites to us. Tell us why you consider the websites untrustworthy or fraudulent. Also, to quickly find answers to your questions, use our search engine.

You can help maintain Online Threat Alerts (OTA) by paying a service fee. Click here to make payment.

Comments, Questions, Answers, or Reviews
(Total: 12)

To help protect your privacy, please do not post or remove, your full name, telephone number, email address, username, password, account number, credit card information, home address or other sensitive information in or from your comments, questions, or reviews.

The comments, reviews or answers below do not necessarily reflect the views of Online Threat Alerts (OTA).

  • January 17, 2014 at 7:42 PM by an anonymous user from Oak Park, Illinois, United States

    What if I opened this email on my iPhone? I clicked on the link, but it was shut down and so obviously I didn't download anything. Thoughts? Help! Scary thought!


    • January 17, 2014 at 9:17 PM by info

      Once the website is down, you have nothing to worry about.


  • January 17, 2014 at 5:51 PM by an anonymous user from Tacoma, Washington, United States

    Crap, I am typically careful about this, but I have PSE account and thought it was that. Stupid me, clicked on the link from my Mac and page was not found. Nothing to download, but still nervous something may be lingering. Any suggestions???


    • January 17, 2014 at 6:36 PM by info

      You might be safe because most of the malware affects Windows PC, but as a precautionary measure, do a full scan of your computer with your antivirus software.


  • January 17, 2014 at 12:00 PM by an anonymous user from Indianapolis, Indiana, United States

    Thank You for this posting. I just received the email today and was shocked because I have never heard of this company. I did click the link and it wanted me to download a .zip file. Glad I was suspicious of it and didn't open it. Thanks Again


  • January 17, 2014 at 8:07 AM by an anonymous user from Waipahu, Hawaii, United States

    Just delete the message or do what I did and forward it to


  • January 17, 2014 at 6:28 AM by an anonymous user from Sequim, Washington, United States

    Thank you for the information. I was worried they had my CC number.


  • January 17, 2014 at 5:31 AM by an anonymous user from Los Angeles, California, United States

    Thanks for posting this. I did not believe that i owed this money, I too have no account with PG


  • January 16, 2014 at 10:13 PM by an anonymous user from Sydney, New South Wales, Australia

    I surprised when I saw this bill in my email, even I don't have account in this company. Then I researched about any fake bill from PG


  • January 15, 2014 at 1:45 PM by an anonymous user from Tacoma, Washington, United States

    I did click on the link because I have an account. I'm running my virus scan for a full scan but, the scan is not finding a virus. What should I do? I'm using Avast Free Antivirus.


    • January 25, 2014 at 8:39 AM by an anonymous user from Telford, England, United Kingdom

      start your pc in safe mode [press f8 when you boot up]then run you virus scan. some virus hide behind running safe mode only basic stuff is running.


  • January 12, 2014 at 7:23 PM by an anonymous user from Washington, District of Columbia, United States

    I got a fake bill from this company, and I don't even have an account with them. Did not open it and started researching the company and any fake emails relating to company. Found your article. Thanks!!


 Show More Comments (12)
Write Your Comment, Question, Answer, or Review
Write your comment, question, answer, or review in the box below to share what you know or to get answers. NB: We will use your IP address to display your approximate location to other users.
Your comment, question, answer, or review will be posted as an anonymous user because you are not signed in. Anonymous posts cannot be edited or deleted. Sign-in.

PG&E Energy Statement-Delivery Canceling-Gas and Electric Usage Virus Email