These people are getting good.
firstname.lastname@example.org via 188.8.131.52; Fri, 18 Mar 2005 08:15:19 -0800
mta332.mail.scd.yahoo.com from=paypal.com; domainkeys=neutral (no sig)
from 184.108.40.206 (EHLO olive.onlyserver.com) (220.127.116.11) by mta332.mail.scd.yahoo.com with SMTP; Fri, 18 Mar 2005 08:15:19 -0800
from nobody by olive.onlyserver.com with local (Exim 4.43) id 1DCK86-0002Jg-5K for email@example.com; Fri, 18 Mar 2005 11:15:18 -0500
Peter Philbin has just sent you $52.00 USD with PayPal
firstname.lastname@example.org Add to Address Book
This header was added to track abuse, please include it with any abuse report
Primary Hostname – olive.onlyserver.com
Original Domain – yahoo.com
Originator/Caller UID/GID – [99 32003] / [47 12]
Sender Address Domain – olive.onlyserver.com
And here is the URL It leads to:
If it does not begin with “Https” Do not click on it! PayPal Does NOT send you these e mails! So anyone up to tracking down these people? Hello? Government? This is blatent fraud.
I do see that they are using Apache, and that the url is a re direct of some sort. And to the scum that sent me this e mail? Fuck You and your Mother..