Phishing Scams and Phishing Reports at MillerSmiles.co.uk

     
 
Home
Search
Archives
News
Submit Scam
Articles
F.A.Q.
Forum
About Us
Contact Us
Links
 


 

Notification From: PayPal

Microsoft


 

 
Scam Report
Date Reported: 1st August 2009 Whats this? Risk Level: MEDIUM Whats this?
 
Details
 
Email Subject:
 Notification From: PayPal
Apparent Sender:
 Microsoft Whats this?
Return Address:
 Not found Whats this?
Email Format:  HTML Whats this?
 
URL of Web Content:
 http://pali.host22.com/uk/webscr.php?cmd=_login-ru
 n&dispatchX85d80a13c0db1f1ff80d546411d7f8a8350c132
 bc41e0934cfc023d4e8f9e5e9a45bfe80906a876e6db6d98a3
 dd4abe9a45bfe80906a876e6db6d98a3dd4ab
  Whats this?
Anchor text of URLs:
 1)
http://www.paypal.com/cgi-bin/webscr?cmd=_log
in-run Whats this?
Location:
 Location not available Whats this?
 
Scam number:
 2930-42334-216112
 
Comments:
  • Email asks you to confirm/update/verify your account data at Microsoft by visiting the given link. You will be taken to a spoof website where your details will be captured for the phishers.


  • Microsoft never send their users emails requesting personal details in this way.


  • The anchor text appears as a legitimate URL, but don't be fooled - clicking on it will take you to a phishing site!


     
Content
 
 
Return-path: Envelope-to:
spoof@millersmiles.co.uk Delivery-date: Sun,
02 Aug 2009 18:03:10 +0100 Received: from
57.red-217-126-32.staticip.rima-tde.net
([217.126.32.57] helo=mail.gcarles.es) by
server5.millersmiles.co.uk with esmtp
(Exim 4.69) (envelope-from ) id
1MXeSj-0005bN-Tv for
spoof@millersmiles.co.uk; Sun, 02 Aug 2009
18:03:10 +0100 Received:
from User ([69.10.61.22]) by mail.gcarles.es
with Microsoft SMTPSVC(5.0.2195.6713); Sun, 2
Aug 2009 18:58:03 +0200
Reply-To: From: "...



Click for full size image
 
Website:    
 

Click for full size image
 
  See our most recent scam reports Browse our scam report archives Search


Please send us any scam/phishing emails you have received by reporting them here

For access to our huge blacklist of domain names and to sign up to our live feed of ALL the scams we receive please take a look at our Honeytrap service

If you have received the email below, please remember that it is very common for these email scams to be redistributed at a later date with only slightly different content, such as a different subject or return address, or with the fake webpage(s) hosted on a different webserver.

We aim to report every variant of the scams we receive, so even if it appears that a scam you receive has already been reported, please submit it to us anyway.