Spammers are getting desprate again in wanting legit emails. This time they are targeting Yahoo email account holders. below in the full article you will see the actual email letter that was sent out to the masses. Keep in mind, no provider will EVER send out anything remoptely like the below. If you see anything that begs the question, "VERIFY AND CONFIRM YOUR EMAIL ACCOUNT" or any other account, avoid any type of return remittance to these criminals. In fact, it is strongly advised to just delete these types of messages. READ MORE
If you look at the header , you will notice allot of classic errors that would tell you for sure that this message did not originate from Yahoo. The received IPs should be a give away on its own if you know what you are looking for. However, if not, then continue on checking the domain names that are listed. Like Received: from User (41-134-75-226.dsl.mweb.co.za [22.214.171.124]) is a give away. Receiving almost any email from an IP range of 126.96.36.199 to 188.8.131.52 is pretty much a guarantee that its either spam or some hacker wanting to gain some type of information from you, up to and including money. Look at the reply address. Is it from the same sending domain? Reply-To: <firstname.lastname@example.org>. One last thing thats obvious to look for, is the To: line. Is it addressed to your email and name directly? To: undisclosed-recipients:; if not, then you know that there is a problem.
In any case, DO NOT respond to these emails.
Received: from 184.108.40.206 by node4.ns2.spacequad.com (Spacequad Internet Services - When reporting spam, please include this header and send reports in English, to email@example.com. All SPAM emails are automatically deleted and never delivered to user inboxes. If you feel you emails have been unjustly deleted without cause, then contact us through our website at http://www.spacequad.net); Fri, 4 Feb 2011 20:55:45 -0500
Received: from User (41-134-75-226.dsl.mweb.co.za [220.127.116.11])
by mail.alta.com.cn (Postfix) with ESMTP id B2B771050EA9;
Sat, 5 Feb 2011 09:05:07 +0800 (CST)
From: "Yahoo Account Services"<firstname.lastname@example.org>
Date: Sat, 5 Feb 2011 03:22:02 +0200
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
X-com_cn-MailScanner-Information: Please contact the ISP for more information
X-com_cn-MailScanner: Found to be clean
X-com_cn-MailScanner-SpamCheck: spam, SpamAssassin (cached, score=19.898,
required 6, autolearn=spam, BAYES_50 0.00, DATE_IN_FUTURE_12_24 2.19,
DOS_OE_TO_MX 2.75, FORGED_MUA_OUTLOOK 3.12, MSOE_MID_WRONG_CASE 0.82,
RCVD_IN_PBL 0.91, RCVD_IN_SORBS_DUL 0.88, RCVD_IN_XBL 3.03,
RDNS_NONE 0.10, SUBJ_ALL_CAPS 2.08, TVD_PH_SUBJ_ACCOUNTS_POST 3.00,
Subject: **SPAM** VERIFY AND CONFIRM YOUR EMAIL ACCOUNT TO AVOID CLOSURE !
X-Server: LogSat Software SMTP Server
X-Rejection-Reason: 12 - 521 The IP 18.104.22.168 is Blacklisted by bl.spamcop.net. Blocked - see http://www.spamcop.net/bl.shtml?22.214.171.124 --
Dear Account User,
VERIFY AND CONFIRM YOUR EMAIL ACCOUNT TO AVOID CLOSURE !
This Email is issued by Yahoo Account Services of the merging unit of operating board. We have sent this email to you for safety. We are having unnecessary congestion resulting from numerous anonymous registrations of various email accounts.
Due to the congestion, we would be shutting down most email accounts which appeared anonymous and unused on our secret assessment unit. Your Email account was among those to be deleted. This email is a notification for you to verify and indicate to us if you still want to keep and use this account.
To confirm your E-mail account, fill out your Login Informations below after clicking the reply button.
* User name: .............
* Password: ................
* Date of Birth: ...........
Subject to Email accounts client protection policy, we will not access your email account. We require your user name, password and date of birth to due automatically on our secret assessment unit were every valid account appears to safeguard your email account from automatic deletion by our system.
Your account will not be interrupted and will continue as normal if you fill out your Login Informations as listed above.
Warning!!! Refusal to this demand will suspended your Email account anonymously and your email account will be closed permanently without further notification on our termination date.
Thanks for your attention to this request.
Yahoo ! Account Services
Do bear with us as we upgrade to serve you better