An
Email with the Subject "Attention! Your PayPal account has been limited!" was
received in one of Scamdex's honeypot email accounts on Wed, 19 Mar 2008 14:13:27 -0700
and has been classified as a Generic Scam Email.
The sender shows as paypal servic <paypal@servic.com>.
The email address was probably spoofed. Do not reply to or contact any persons or organizations referenced in
this email, or follow any URLs as you may expose yourself to scammers and, at the very least, you will be
added to their email address lists for spam purposes.
Scam TagCloud
paypalpaypal.comlog inlogincreditactivityendedpasswordcontactwinsafeaccountminderinternetaccesssecuremailreferencesincerely will security(e.g. internet explorer o...(http://paypal.com/)dearhttp://paypal.com/)https://www.paypal.com/us...fs
NO CHART DATA - EMAIL HAS NOT YET BEEN ANALYSED
Scam Email Headers
This a (redacted) view of the raw email headers of this scam email.
Personally Identifiable Information (PII) has been suppressed, but can be
supplied as received to appropriate investigating or law enforcement agencies on request.
EEEEEstdClass Object
(
[return-path:] =>
[envelope-to:] => scamdex@scamdex.com
[delivery-date:] => Wed, 19 Mar 2008 14:13:27 -0700
[received:] => Array
(
[0] => from eu2177f.lyceu.net ([213.193.2.227] helo=mcorep05.live.webc.lyceu.net)by bartok.o7e.net with esmtp (Exim 4.68)(envelope-from )id 1Jc5ay-0002vN-5cfor scamdex@scamdex.com; Wed, 19 Mar 2008 14:13:27 -0700
[1] => from mcorep05.live.webc.lyceu.net (localhost.localdomain [127.0.0.1])by localhost (Postfix) with ESMTP id B4C4D34051for ; Wed, 19 Mar 2008 22:13:05 +0100 (CET)
[2] => from eu1348f.lyceu.net (eu1348f.lyceu.net [213.193.2.148])by mailcore.webc.lyceu.net (Postfix) with ESMTP id AFE2D34047for ; Wed, 19 Mar 2008 22:13:05 +0100 (CET)
[3] => by eu1348f.lyceu.net (Postfix, from userid 1773003)id 7F46316CAB; Wed, 19 Mar 2008 22:13:05 +0100 (CET)
)
[to:] => scamdex@scamdex.com
[subject:] => Attention! Your PayPal account has been limited!
[x-webc-mail-request-ip:] => 196.206.21.107
[x-webc-mail-from-script:] => http://www.motuoshop.be/abo.php/go.php
[from:] => paypal servic
[reply-to:] =>
[mime-version:] => 1.0
[content-type:] => text/html
[x-mailer:] => <20080319211305.7F46316CAB@eu1348f.lyceu.net>
[date:] => Wed, 19 Mar 2008 22:13:05 +0100 (CET)
[content-transfer-encoding:] => quoted-printable
[x-spam-status:] => No, score=-1.0
[x-spam-score:] => -9
[x-spam-bar:] => -
[x-spam-flag:] => NO
[message-id:] =>
[x-scamdex-scores:] => S:55 P:64 A:63 L:51 E:57 G:50
[x-scamdex-classtype:] => P
[x-scamdex-classscore:] => 64
[x-scamdex-totscore:] => 340
[x-scamdex-kw:] => \%,access,account,activity,card,contact,credit,ended,inc.,internet,log in,login,ltd,password,paypal,safe,user
[x-scamdex-dir:] => P
[x-scamdex-id:] => P1206474677.M879625P27016V
[x-scamdex-copyright:] => This Email is Copyright Scamdex.com 2009, Reproduction Prohibited
)
Domain Names used for collecting scam email ("Honeypot email accounts") have been obscured and replaced with the token 'HUN1P0T'
Community Action - SPAM/non-Scam Report
Occasionally, incorrectly categorized emails get into the Scamdex Scam Email Database and need to be removed. If this
email has Personally Identifiable Information (PII), or is, in your opinion, from a bona-fide entity, let us know.
Scamdex will, as soon as is practicable, take-down any emails that in our opinion should not
be in our database. Note that ALL emails in the Scamdex Scam Email Database were received as Unsolicited Commercial Email, aka UCE or
SPAM, via unpublished 'Honeypot' email addresses.
Information Regarding Your account:
Dear PayPal Member:
Attention! Your
PayPal account
has been limited!
As part of our security
measures, we regularly screen activity in the
PayPal system.We recently
contacted you after noticing an issue on your
account.We requested information
from you for the following reason:
Our system detected unusual charges
to a credit card linked to your
PayPal account.
Reference Number:
PP-259-187-991
This is the Last reminder to log in to PayPal as soon
as possible. Once
you log in, you will be provided with steps to restore your
account
access.
Once you log in, you will be provided with steps to
restore your account access. We appreciate your understanding as we work to
ensure
account safety.
Click
here to activate your account
We thank you for your prompt attention to this matter. Please
understand that this is a security measure intended to help protect you and your
account. We apologise for any inconvenience..
To safely and securely access the PayPal website or your
account, open a new web browser (e.g. Internet Explorer or Netscape)
and type in the PayPal login page (http://paypal.com/) to be sure you are
on the real PayPal site.
For more information on protecting
yourself from fraud, please review our Security Tips at
https://www.paypal.com/us/securitytips
Protect Your Password
You should never give your PayPal password to
anyone.
