So a couple of years ago my kids setup a hotmail account for my wife, ugh, the worst of the web mails as far as I'm concerned, but that's not really relevant. They also made it wifesname@... so by now she is getting a ton of spam. A couple times a month she gets this notice about "her" PayPal account, da, she doesn't have one. I've been telling her to just delete it but now I'd like to see what would happen opening the link. Do you think it would be safe to open it sandboxed? Check my sig, I have pretty good defenses. I mostly want to do this to show her what happens, especially if NOD and company start throwing alerts, if you open something that you don't know is safe.

Hi ratchet,
If you are doing a demo you should use the same restrictions you would use if you were testing malware as this is what you would probably be doing ;)

You should lock your system down and test inside a VMWare, VPC, or similar image - will be allot fewer headaches in the long run...

YMMV
Mike