An
Email with the Subject "PayPal Account Security Measures Notification [Thursday, October 17, 2006 02:45:10 DST -0400 UTC]" was
received in one of Scamdex's honeypot email accounts on Wed, 18 Oct 2006 11:13:43 -0700
and has been classified as a Generic Scam Email.
The sender shows as PayPal <custumorservice@paypal.com>.
The email address was probably spoofed. Do not reply to or contact any persons or organizations referenced in
this email, or follow any URLs as you may expose yourself to scammers and, at the very least, you will be
added to their email address lists for spam purposes.
Scam TagCloud
paypalpaypal.comthird partywinaccountnotificationserviceinc.accesssecurerespect will security[thursday, october 17, 20...(your case id for this re...https://www.paypal.com/cg...
NO CHART DATA - EMAIL HAS NOT YET BEEN ANALYSED
Scam Email Headers
This a (redacted) view of the raw email headers of this scam email.
Personally Identifiable Information (PII) has been suppressed, but can be
supplied as received to appropriate investigating or law enforcement agencies on request.
EEEEEstdClass Object
(
[return-path:] =>
[envelope-to:] => scams@scamdex.com
[delivery-date:] => Wed, 18 Oct 2006 11:13:43 -0700
[received:] => Array
(
[0] => from server.gruposcreenmedia.com ([72.29.82.210])by sun.newsblaze.com with esmtps (TLSv1:AES256-SHA:256)(Exim 4.52)id 1GaFvD-0001uI-7jfor scams@scamdex.com; Wed, 18 Oct 2006 11:13:43 -0700
[1] => from nobody by server.gruposcreenmedia.com with local (Exim 4.52)id 1GaFuu-0005oD-Czfor scams@scamdex.com; Wed, 18 Oct 2006 14:13:24 -0400
)
[to:] => scams@scamdex.com
[subject:] => PayPal Account Security Measures Notification [Thursday, October 17, 2006 02:45:10 DST -0400 UTC]
[content-type:] => text/html; charset=us-ascii
[from:] => PayPal
[reply-to:] => PayPal
[content-transfer-encoding:] => 7bit
[x-accept-language:] => en-us, en
[message-id:] =>
[date:] => Wed, 18 Oct 2006 14:13:24 -0400
[x-antiabuse:] => Array
(
[0] => This header was added to track abuse, please include it with any abuse report
[1] => Primary Hostname - server.gruposcreenmedia.com
[2] => Original Domain - scamdex.com
[3] => Originator/Caller UID/GID - [99 500] / [47 12]
[4] => Sender Address Domain - server.gruposcreenmedia.com
)
[x-source:] =>
[x-source-args:] => /usr/local/apache/bin/httpd -DSSL
[x-source-dir:] => jabadve.com:/public_html/galerias/pictures/send/xender
[status:] => RO
[x-status:] =>
[x-keywords:] =>
[x-uid:] => 17179
[x-scamdex-scores:] => S:41 P:46 A:47 L:37 E:42 G:36
[x-scamdex-classtype:] => A
[x-scamdex-classscore:] => 47
[x-scamdex-totscore:] => 249
[x-scamdex-kw:] => access,account,first,inc.,notification,paypal,report,service,third party
[x-scamdex-dir:] => P
[x-scamdex-id:] => P1204769268.M83242P20228V
[x-scamdex-copyright:] => This Email is Copyright Scamdex.com 2009, Reproduction Prohibited
)
Domain Names used for collecting scam email ("Honeypot email accounts") have been obscured and replaced with the token 'HUN1P0T'
Community Action - SPAM/non-Scam Report
Occasionally, incorrectly categorized emails get into the Scamdex Scam Email Database and need to be removed. If this
email has Personally Identifiable Information (PII), or is, in your opinion, from a bona-fide entity, let us know.
Scamdex will, as soon as is practicable, take-down any emails that in our opinion should not
be in our database. Note that ALL emails in the Scamdex Scam Email Database were received as Unsolicited Commercial Email, aka UCE or
SPAM, via unpublished 'Honeypot' email addresses.
PayPal is constantly working to ensure security by regularly screening the accounts in our system. We recently reviewed your account, and we need more information to help us provide you with secure service. Until we can collect this information, your access to sensitive account features will be limited. We would like to restore your access as soon as possible, and we apologize for the inconvenience.
Why is my account access limited?
Your account access has been limited for the following reason(s):
October 16, 2006: We have reason to believe that your account was accessed by a third party. Because protecting the security of your account is our primary concern, we have limited access to sensitive PayPal account features. We understand that this may be an inconvenience but please understand that this temporary limitation is for your protection.
(Your case ID for this reason is PP-257-057-154.)
To remove the limitation click on the following link:
PayPal is constantly working to ensure security by regularly screening the accounts in our system. We recently reviewed your account, and we need more information to help us provide you with secure service. Until we can collect this information, your access to sensitive account features will be limited. We would like to restore your access as soon as possible, and we apologize for the inconvenience.
Why is my account access limited?
Your account access has been limited for the following reason(s):
October 16, 2006: We have reason to believe that your account was accessed by a third party. Because protecting the security of your account is our primary concern, we have limited access to sensitive PayPal account features. We understand that this may be an inconvenience but please understand that this temporary limitation is for your protection.
(Your case ID for this reason is PP-257-057-154.)
To remove the limitation click on the following link:
