===== Begin Phishing Scam Email =====
Dear <recipient_address_omitted>
,
PayPal Security Department noticed third party account
access therefore automatically your account has limited access to sensitive
PayPal account features.
We know that this might be inconvenient for you but this
temporary limitation is only for your protection.
Confirm your identity by answering security questions.
Please make sure you login as soon as possible.
https://www.paypal.com
<http://b4df.com/test/seite.asp>
To help protect your account, we need to confirm that you
are the account holder.
Yours sincerely,
PayPal
===== Begin Phishing Scam Email Header Info =====Return-path: <ghxtourh@fargo.io>
Received: from herald.plexusm2.net ([unknown] [173.193.32.171])
by vms172051.mailsrvcs.net
(Sun Java(tm) System Messaging Server 7u2-7.02 32bit (built Apr 16 2009))
with ESMTP id <0N4800A628JV7HM0@vms172051.mailsrvcs.net> for
<recipient_address_omitted>; Fri, 18 Apr 2014 07:40:43 -0500 (CDT)
Received: from nsc66.147.116-148.newsouth.net
([66.147.116.148]:29395 helo=fargo.io) by herald.plexusm2.net with esmtpa
(Exim 4.80) (envelope-from <ghxtourh@fargo.io>)
id 1Wb5ux-0000FO-BO for <recipient_address_omitted>; Fri,
18 Apr 2014 05:21:11 -0500
Date: Fri, 18 Apr 2014 06:21:53 -0400
From: PayPal <fbotvvvm@fargo.io>
Subject: eric.cissorsky@verizon.net - Important Message
X-Originating-IP: [173.193.32.171]
To: <recipient_address_omitted>
Message-id: <20140418062153.13895CE2EF08EAF9@fargo.io>
MIME-version: 1.0
Content-type: text/html; CHARSET=US-ASCII
Content-transfer-encoding: 7BIT
X-AntiAbuse: This header was added to track abuse,
please include it with any abuse report
X-AntiAbuse: Primary Hostname - herald.plexusm2.net
X-AntiAbuse: Original Domain - verizon.net
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - fargo.io
X-Get-Message-Sender-Via: herald.plexusm2.net: authenticated_id:
kpontone@brighthorizonsrealty.com
Original-recipient: rfc822;<recipient_address_omitted>
No comments:
Post a Comment