If you receive a mail like below, do NOT reply to it.
This is a lame attempt at lifting your gmail account details.
Looking at the mail header, you can clearly see that this is NOT sent by Gmail.
lame hacker's domain : mansuod.com
lame hacker's IP : 41.113.16.202
lame hacker's mail server : p3plwbeout15-06.prod.phx3.secureserver.net
lame hacker's mail server IP : 173.201.193.115
from :
Gmail [email protected]
to :[email protected]
date :Sun, Sep 18, 2011 at 6:30 PM
subject :Your Google Account
We make every effort to ensure that we provide the Ultimate Security required for maximum protection of all our Email Account from unwanted Users and spy wares. We do not want you to loose access to your Account since your login information are no longer valid on our database system. We need to confirm your profile details below for verification purpose and to confirm that you own this account to avoid Denial of Service.
Username:
Password
Birthdate
Territory
We require all users to respond within a period of 48 hours to avoid account suspension.
Sincerely,
G mail.
This is a lame attempt at lifting your gmail account details.
Looking at the mail header, you can clearly see that this is NOT sent by Gmail.
Code:
Received: by 10.223.87.70 with SMTP id v6cs169081fal;
Sun, 18 Sep 2011 06:00:18 -0700 (PDT)
Received: by 10.68.13.33 with SMTP id e1mr2751295pbc.387.1316350817399;
Sun, 18 Sep 2011 06:00:17 -0700 (PDT)
[COLOR="Red"]Return-Path: <[email protected]>[/COLOR]
Received: from [COLOR="Red"]p3plwbeout15-06.prod.phx3.secureserver.net (p3plsmtp15-06-2.prod.phx3.secureserver.net. [173.201.193.44])[/COLOR]
by mx.google.com with SMTP id c8si8605850pbl.273.2011.09.18.06.00.16;
Sun, 18 Sep 2011 06:00:17 -0700 (PDT)
[COLOR="Red"]Received-SPF: neutral (google.com: 173.201.193.44 is neither permitted nor denied by best guess record for domain of [U][email protected][/U]) client-ip=173.201.193.44;[/COLOR]
Authentication-Results: mx.google.com; spf=neutral (google.com: 173.201.193.44 is neither permitted nor denied by best guess record for domain of [email protected]) [email protected]
Received: (qmail 12210 invoked from network); 18 Sep 2011 13:00:16 -0000
Received: from unknown (HELO localhost) (173.201.193.115)
by p3plwbeout15-06.prod.phx3.secureserver.net with SMTP; 18 Sep 2011 13:00:16 -0000
Received: (qmail 14487 invoked by uid 99); 18 Sep 2011 13:00:16 -0000
Content-Transfer-Encoding: quoted-printable
Content-Type: text/html; charset="utf-8"
[COLOR="Red"]X-Originating-IP: 41.113.16.202[/COLOR]
User-Agent: Web-Based Email 5.6.01
From: "Gmail" <[email protected]>
X-Sender: [email protected]
To: [email protected]
Subject: Your Google Account
Date: Sun, 18 Sep 2011 06:00:14 -0700
Mime-Version: 1.0lame hacker's IP : 41.113.16.202
lame hacker's mail server : p3plwbeout15-06.prod.phx3.secureserver.net
lame hacker's mail server IP : 173.201.193.115
