Wow, when are these people gonna stop sending these??? It makes me wonder, cause I’ve only used this email address once for PayPal…
Below is the text of the email, and I’ve posted the email headers below.
During our regularly scheduled account maintenance and verification procedure we have detected a
slight error in your PayPal account.
This might be due to the following reasons:
1. A recent change in your personal information (ie. change of address, email address)
2. An inability to accurately verify your selected option of payment due to an internal
error within our systems.
We have attached a form to this email. Please download the form and follow the
instructions on your screen. NOTE: The form needs to be opened in a modern browser which has
javascript enabled (ex: Internet Explorer, Firefox ,Netscape)
Please understand that this is a security measure intended to help protect you and your account.
We apologize for any inconvenience.
If you choose to ignore our request, you leave us no choice but to temporary suspend your account.
Sincerely,
PayPal Account Review Department.
Please do not reply to this e-mail. Mail sent to this address are not monitored.
For assistance, log in to your PayPal account and choose the “Help” link in the footer of any page.
PayPal Account Limited.htm

Restore Your Account
Secure
Please fill in all the details that are required to complete this verification process in order to restore your account.
NOTE: All fields are required
Please fill in all the fields.
Email Address:
PayPal Password:
Full Name:
Credit/Debit Card Number
Card Expiration Date
- (mm/yyyy)
CSC What’s this?
Zip:
<>
By clicking the button below, I agree to the PayPal User Agreement and Privacy Policy.
Agree and Submit
Copyright © 1999-2010 PayPal. All rights reserved.
No virus found in this incoming message.
Checked by AVG – www.avg.com
Version: 9.0.856 / Virus Database: 271.1.1/3156 – Release Date: 09/24/10 01:34:00
Here’s The headers…
From – Fri Sep 24 15:26:54 2010
X-Account-Key: account2
X-UIDL: UID16-1282847278
X-Mozilla-Status: 0001
X-Mozilla-Status2: 10000000
X-Mozilla-Keys:
Return-path:
Envelope-to: info@music-city.net
Delivery-date: Fri, 24 Sep 2010 12:45:47 -0500
Received: from dukecmmtar03.coxmail.com ([68.99.120.44]:53824)
by gator1153.hostgator.com with esmtp (Exim 4.69)
(envelope-from
id 1OzCLC-0007fj-Dx
for info@music-city.net; Fri, 24 Sep 2010 12:45:47 -0500
Received: from dukecmimpo02.coxmail.com ([68.99.120.135])
by dukecmmtar03.coxmail.com
(InterMail vM.7.08.02.01 201-2186-121-102-20070209) with ESMTP
id <20100924174548.WCHN5018.dukecmmtar03.coxmail.com@dukecmimpo02.coxmail.com>;
Fri, 24 Sep 2010 13:45:48 -0400
Received: from vincegroup.com ([70.167.16.93])
by dukecmimpo02.coxmail.com with bizsmtp
id Ahln1f00720Uaam01hln3F; Fri, 24 Sep 2010 13:45:48 -0400
Received: from User ([202.7.88.30]) by vincegroup.com with Microsoft SMTPSVC(6.0.3790.4675);
Fri, 24 Sep 2010 13:45:46 -0400
From: “PayPal”
Date: Sat, 25 Sep 2010 03:45:46 +1000
MIME-Version: 1.0
Content-Type: multipart/mixed;
boundary=”—-=_NextPart_000_0082_01C2AA85.460321EA”
X-Priority: 1
X-MSMail-Priority: High
X-Mailer: Microsoft Outlook Express 6.00.2800.1081
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1081
Bcc:
Message-ID:
X-OriginalArrivalTime: 24 Sep 2010 17:45:46.0918 (UTC) FILETIME=[51A4D460:01CB5C10]
X-Spam-Status: Yes, score=8.6
X-Spam-Score: 86
X-Spam-Bar: ++++++++
X-Spam-Report: Spam detection software, running on the system “gator1153.hostgator.com”, has
identified this incoming email as possible spam. The original message
has been attached to this so you can view it (if it isn’t spam) or label
similar future email. If you have any questions, see
the administrator of that system for details.
Content preview: During our regularly scheduled account maintenance and verification
procedure we have detected a slight error in your PayPal account. This might
be due to the following reasons: 1. A recent change in your personal information
(ie. change of address, email address) [...]
Content analysis details: (8.6 points, 5.0 required)
pts rule name description
—- ———————- ————————————————–
1.6 MISSING_HEADERS Missing To: header
2.8 XMAILER_MIMEOLE_OL_1ECD5 XMAILER_MIMEOLE_OL_1ECD5
4.2 FORGED_MUA_OUTLOOK Forged mail pretending to be from MS Outlook
X-Spam-Flag: YES
Subject: [SPAM] PayPal Account Limited
X-Antivirus: AVG for E-mail 9.0.856 [271.1.1/3156]
This is a multi-part message in MIME format.
——=_NextPart_000_0082_01C2AA85.460321EA
Content-Type: text/plain;
charset=”Windows-1251″
Content-Transfer-Encoding: 7bit
During our regularly scheduled account maintenance and verification procedure we have detected a
slight error in your PayPal account.
This might be due to the following reasons:
1. A recent change in your personal information (ie. change of address, email address)
2. An inability to accurately verify your selected option of payment due to an internal
error within our systems.
We have attached a form to this email. Please download the form and follow the
instructions on your screen. NOTE: The form needs to be opened in a modern browser which has
javascript enabled (ex: Internet Explorer, Firefox ,Netscape)
Please understand that this is a security measure intended to help protect you and your account.
We apologize for any inconvenience.
If you choose to ignore our request, you leave us no choice but to temporary suspend your account.
Sincerely,
PayPal Account Review Department.
Please do not reply to this e-mail. Mail sent to this address are not monitored.
For assistance, log in to your PayPal account and choose the “Help” link in the footer of any page.
——=_NextPart_000_0082_01C2AA85.460321EA
Content-Type: application/octet-stream;
name=”PayPal Account Limited.htm”
Content-Transfer-Encoding: base64
Content-Disposition: attachment;
filename=”PayPal Account Limited.htm”
