Interesting URL in PayPal Phish - Page 2
Page 2 of 2 FirstFirst 12
Results 11 to 15 of 15

Thread: Interesting URL in PayPal Phish

  1. #11
    Super Moderator: GMT Zone nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,191
    Hmmmm,

    I am tempted to report "The Socialist Republic of Hillingdon" to the "Public Auditor" for this blatant attempt to supplement their local property taxation revenues.



    (the check for my "consultancy fees" bounced)
    If you cannot do someone any good: don't do them any harm....
    As long as you did this to one of these, the least of my little ones............you did it unto Me.
    What profiteth a man if he gains the entire World at the expense of his immortal soul?

  2. #12
    Banned
    Join Date
    May 2006
    Posts
    20
    Originally posted here by ric-o
    Cool. I reported it to the Fried Phish folks at CastleCops - http://www.castlecops.com/pirt
    Wow, didn't know about that service. Thanks.

  3. #13
    Master-Jedi-Pimps0r & Moderator thehorse13's Avatar
    Join Date
    Dec 2002
    Location
    Washington D.C. area
    Posts
    2,883
    Though not popular with anyone other than the nasty folks on the net, IP addresses can be represented in:

    1) Binary
    2) Hex
    3) decimal

    Of course dotted quad is used and is the most widely recognized format.

    For some fun with this, see this site.
    http://www.kloth.net/services/iplocate.php

    --TH13

    PS
    Sending this to the PIRT team was an excellent move. I get to review their reports each day so I'll look for this one.
    Our scars have the power to remind us that our past was real. -- Hannibal Lecter.
    Talent is God given. Be humble. Fame is man-given. Be grateful. Conceit is self-given. Be careful. -- John Wooden

  4. #14
    Member
    Join Date
    Oct 2004
    Posts
    92
    ooh aren't I the lucky one, I have just got another one... I have never had one of these emails...ever since that last one and I have been using various email providers for nearly 4 years, and now I have two in the same month... something seems phishy to me (bad pun intended)... anyway I'll go ahead and report this... don't worry I won't be posting every single spam email I get here:-) this will be the last

    LMAO I Just Love The Fake Address Bar!
    http://img417.imageshack.us/my.php?image=phish3br.jpg

    X-Gmail-Received: a9bc6fd8e61949c7a44801322e67a0a73513d784
    Delivered-To: jamestech@gmail.com
    Received: by 10.36.224.43 with SMTP id w43cs50501nzg;
    Thu, 18 May 2006 09:40:49 -0700 (PDT)
    Received: by 10.35.8.1 with SMTP id l1mr781550pyi;
    Thu, 18 May 2006 09:40:48 -0700 (PDT)
    Return-Path: <viabikenet@clust10-www03.powweb.com>
    Received: from clust10-www03.powweb.com (clust10-www03.powweb.com [66.152.98.103])
    by mx.gmail.com with ESMTP id m78si671347pye.2006.05.18.09.40.47;
    Thu, 18 May 2006 09:40:48 -0700 (PDT)
    Received-SPF: pass (gmail.com: best guess record for domain of viabikenet@clust10-www03.powweb.com designates 66.152.98.103 as permitted sender)
    Received: by clust10-www03.powweb.com (Postfix, from userid 179687)
    id 9C0B3158AA3; Thu, 18 May 2006 09:40:47 -0700 (PDT)
    To: jamestech@gmail.com
    Subject: PayPal Security Notice No:16914
    From: PayPal Alert <mail16914@alert169.security.com>
    Content-Type: text/html
    Message-ID: <1675903695.JavaMail.16914@on-Mail009>
    X-PayPal-EID:000-336418498
    X-PayPal-MailTracker: 10426.191.196.0
    X-PayPal-invdate:May 18, 2006
    Date: Thu, 18 May 2006 09:40:47 -0700 (PDT)


    <HTML>



    <table width="600" cellspacing="0" cellpadding="0" border="0"

    align="center">

    <tr valign="top">

    <td><A href="https://www.paypal.com/us"><IMG

    src="http://images.paypal.com/en_US/i/logo/email_logo.gif" alt="PayPal"

    border="0" width="255" height="35"></A>

    </td>

    </tr>

    </table>



    <p>Dear PayPal Member,</p>

    <BR>



    <div>

    You have recived this email as part of a Verified PayPal campaign meant to increase security for<br>

    your credit card against online credit card fraud.

    </div>

    <BR>

    <div>

    Verified PayPal has detected that you have been using this email address for online purchases and in<br>

    order to protect yourself against online credit card fraud we would like to introduce you to a new<br>

    system that will protect you against frauds.

    </div>

    <BR>

    <div>

    You can associate your email address to your credit card and recive a password that you will use<br>

    for any online purchase. Also you will be notified by Verified PayPal when an online purchase is<br>

    made.

    </div>

    <BR>

    <div>Follow the below and go to Verified PayPal. You can join the Verified PayPal system or learn more<br>

    about this.

    <BR>

    <BR><BR><BR>Alert code: 1691438328 <BR><BR>



    <a target=_blank HREF='http://correo.ase.qroo.gob.mx/horde/imp/graphics/Identity.html' target='_self'>

    https://www.paypal.com/us/cgi-bin/we...md=_notice=169</a>





    <p>PayPalís Fraud Investigation Team,</p>

    </html>

    <hr>

    <div><p><tt>Please do not reply to this email as this is only a notification. Mail sent<br>

    to this address cannot be answered.</tt></p>

    <p><tt>Copyright © 1999-2006 PayPal. All rights reserved.</tt></p>
    I\'m Dying To Find Out The Hard Way

  5. #15
    Member
    Join Date
    Oct 2004
    Posts
    92
    Now then... what kind f admin would allow directory listing... tut tut tut http://www.skycar.net.cn/bbs/.../
    I\'m Dying To Find Out The Hard Way

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •