Scams - We all need to be aware

I was just a recipient of an attempted scam. I sell things online in Facebook groups and I got an email from a woman saying that she wanted to buy an item I had for $25.00. So I said alright, please send a paypal payment to my email address. About 5 minutes later I get an email in my spam folder saying that she had sent $25.00 to my account. The thing is, the email was in Italian and had a strange return email address. I also couldn't see the money in my account. so I emailed her back and she said she sent it to a business account rather than my regular paypal account and she was going to send me another $150.00 to make my Paypal account a business account and I needed to refund her $150 back. This is the letter I got from "Paypal".

Transfer Status:

99.9% Complete - Awaiting Refund Proof

Transaction ID3W492637HE33
Total hold$175.00


Congratulations!! Your bank® Account has been Upgraded Successfully!!!

You have received an additional payment of $150.00 from (Bell) funds is now safely with us and for buyer's safety, the additional payment has to be refunded for your account to be fully credited with the total sum of $175.00 (Bell) has chosen to be refunded the sum of $150.00USD through PayPal.

You are required to make the refund from your own account and reply the email with a proof of refund and you will be fully credited immediately with the total sum of $175.00

You are requested to take these procedure to proof is that you are legit seller and sole owner of this account.

You are hereby requested to make refund available as soon as possible to avoid your buyer losing funds and your profile flagged for fraudulent activities.



Final steps to follow:
1. Ask your buyer for his or her PayPal details
2. Send the total sum of $150.00

3. You are required to send us clear proof (screenshot) that Payment has reflected to your buyer account.

IMPORTANT NOTE: YOUR FUNDS HAS BEEN APPROVED AND SECURED SO YOU ARE TO CARRY ON WITH THE INSTRUCTION GIVEN ABOVE FOR YOUR ACCOUNT TO BE FULLY CREDITED WITH THE TOTAL SUM OF $175.00
Click to expand...
Click to expand...


I was born at night, but it wasn't last night. It was an obvious scam. This was the email address where the emails came from: paypalonlinepayment190@gmail.com

I emailed them/they, him/he, her/she or whatever fucking pronoun they want to use and told them to eat a bag of dicks.

Stay vigilant!!!



This was in our messenger chat:

Yeah if you read and understand the email it trying to say that right now The fonds are on hold on your end once you send back the $150 now and email the screenshot to them the $175 pending will be credited into your account immediately and it’s will be upgraded at once







Enter

Claire​


Claire Bell

Should I send my PayPal details for you to make the refund?

The next message I got:

The payment can’t be canceled it as been withdrawn from my PayPal account already






Enter

Claire​


Claire Bell

once you send back the additional $150 i had to send to upgrade your account you’ll get credited with the total amount and your account will be upgraded






Enter

Claire​


Claire Bell

You won’t get the money credited into your PayPal account, or available balance till you make the refund of the additional $150 back to me for security reasons and safety so they can credit your account total amount once they see like a screenshot proof of the refund sent from your end....



I was just going to send her another message but for some reason it says "This person unavailable on Messenger". Gee, what a surprise!!
 
Last edited:
Lord Guts said:
Always pay attention to the domain for PayPal stuff and when it comes to online payments it's straightforward
Click to expand...
If you're ever suspicious about an email, get the headers. For Outlook, open the email and go to the File tab, then click Properties. Contained in that are the headers. Copy them to your clipboard and go to mxtoolbox.com. There's a link to Analyze Headers; just go there, paste the copied text, and click the button.

A lot of the data is technical, but one thing you'll see looks like this:

1717917258449.png
This shows you every server that was involved in the email's travels. This example isn't very good (legit email), but you can see the IP address. Spam emails generally (but not always!) have more "hops". That first entry (under the FROM column) can be very telling.

Note: If you take the IP address of the first FROM (in this case 192.28.153.178) and go to you web browser, enter in 192.28.153.178.ipaddress.com. It will come back with a lot of info - ISP/IP Owner, Geographic location, and more.

Another thing spammers do is craft the email so the FROM address is whatever they want, and even spoofs the "address" behind it. But, they set the REPLY TO address in the headers to come back to them. The MXTOOLBOX tool will break down the headers in a clean format and you can look for that.

Yes, this is technical. Yes, it is a few steps. But being able to verify (especially if you're checking for someone else - like an older parent - who won't just accept the truth becuase the email sounds so real to them) and show the proof can save someone a lot of money.
 
Last edited:
Lord Chevy said:
If you're ever suspicious about an email, get the headers. For Outlook, open the email and go to the File tab, then click Properties. Contained in that are the headers. Copy them to your clipboard and go to mxtoolbox.com. There's a link to Analyze Headers; just go there, paste the copied text, and click the button.

A lot of the data is technical, but one thing you'll see looks like this:

View attachment 6817
This shows you every server that was involved in the email's travels. This example isn't very good (legit email), but you can see the IP address. Spam emails generally (but not always!) have more "hops". That first entry (under the FROM column) can be very telling.

Note: If you take the IP address of the first FROM (in this case 192.28.153.178) and go to you web browser, enter in 192.28.153.178.ipaddress.com. It will come back with a lot of info - ISP/IP Owner, Geographic location, and more.

Another thing spammers do is craft the email so the FROM address is whatever they want, and even spoofs the "address" behind it. But, they set the REPLY TO address in the headers to come back to them. The MXTOOLBOX tool will break down the headers in a clean format and you can look for that.

Yes, this is technical. Yes, it is a few steps. But being able to verify (especially if you're checking for someone else - like an older parent - who won't just accept the truth becuase the email sounds so real to them) and show the proof cna save someone a lot of money.
Click to expand...

I probably should have mentioned earlier that when she said I needed a Paypal business account to receive the money, I knew she was lying. My Paypal is a business account.
 
LordSensei1958 said:
I probably should have mentioned earlier that when she said I needed a Paypal business account to receive the money, I knew she was lying. My Paypal is a business account.
Click to expand...
Bit of an alarm bell. I posted that quick and dirty since I am still up, and if it helps one person then it was worth it.

But, I am also the type that likes to keep the scam callers on the line as long as I can - especially if I am running scans or something else that includes a lot of "hurry up and wait". And they get pissed off, which is a bonus.
 
Lord Chevy said:
But, I am also the type that likes to keep the scam callers on the line as long as I can - especially if I am running scans or something else that includes a lot of "hurry up and wait". And they get pissed off, which is a bonus.
Click to expand...
When I got scam calls, I used to listen to their speil and say "I'm not really interested but my brother might be". Then I'd change my voice and act like I was a brother. I'd let him go through his talk again and I'd say "I'm not really interested either, but my Dad might be". I'd keep going as long as they kept listening.
 
LordSensei1958 said:
I was just a recipient of an attempted scam. I sell things online in Facebook groups and I got an email from a woman saying that she wanted to buy an item I had for $25.00. So I said alright, please send a paypal payment to my email address. About 5 minutes later I get an email in my spam folder saying that she had sent $25.00 to my account. The thing is, the email was in Italian and had a strange return email address. I also couldn't see the money in my account. so I emailed her back and she said she sent it to a business account rather than my regular paypal account and she was going to send me another $150.00 to make my Paypal account a business account and I needed to refund her $150 back. This is the letter I got from "Paypal".




I was born at night, but it wasn't last night. It was an obvious scam. This was the email address where the emails came from: paypalonlinepayment190@gmail.com

I emailed them/they, him/he, her/she or whatever fucking pronoun they want to use and told them to eat a bag of dicks.

Stay vigilant!!!



This was in our messenger chat:

Yeah if you read and understand the email it trying to say that right now The fonds are on hold on your end once you send back the $150 now and email the screenshot to them the $175 pending will be credited into your account immediately and it’s will be upgraded at once







Enter

Claire​


Claire Bell

Should I send my PayPal details for you to make the refund?

The next message I got:

The payment can’t be canceled it as been withdrawn from my PayPal account already






Enter

Claire​


Claire Bell

once you send back the additional $150 i had to send to upgrade your account you’ll get credited with the total amount and your account will be upgraded






Enter

Claire​


Claire Bell

You won’t get the money credited into your PayPal account, or available balance till you make the refund of the additional $150 back to me for security reasons and safety so they can credit your account total amount once they see like a screenshot proof of the refund sent from your end....



I was just going to send her another message but for some reason it says "This person unavailable on Messenger". Gee, what a surprise!!
Click to expand...
I love how every scam takes so much time to put together with logos, schemes, hiding email addresses, etc, and the grammar is always dogshit.
 
1717944780865.png

The word “bank” is now a registered trademark apparently :rolleyes:

I was gonna go through the whole thing, but I’m too lazy. The number of misapplied capitalization and grammatical errors here is just off the charts.

This is always a foolproof fraud detection method because the actual companies are supposedly sending these messages and have templates.

You’d think these “geniuses” that are going to send this scam to like a million people would at least have a native English speaker write or review the text.
 
I thought this was another Covid thread.

Once I got a call from an Indian guy telling me that my Amazon account had been hacked, and he needed to reset the payment information. So I had to give him my account info so he could reenter. I keep him on the phone for about 20 minutes just fucking him with a wrong number or being unable to read one of the digits, so I'd have to find another card. He finally caught on when I told him I once had the worst case of the shits after eating at an Indian restaurant. He said FUCK YOU and hung up.

Good idea @Lord Chevy
 
You must log in or register to reply here.

Similar threads

LordSensei1958
Bad Cop Videos
12 13 14
Replies
266
Views
2K
Lord ChevyLord Chevy's icon
Lord Chevy
Lord Guts
  • Sticky
SportsBook/PickEm Features
Replies
2
Views
94
Godzilla
Godzilla
Dingleberry
  • Locked
***NFL SEASON PROPS / AUGUST BETTING***
6 7 8
Replies
153
Views
1K
CM Punk
CM Punk
Lord Guts
  • Sticky
MUST-READ Please Read Forum Guidelines
Replies
18
Views
268
TB12 Goat
T
Dingleberry
  • Locked
  • Sticky
MUST-READ ***Football Betting Contest*** GENERAL INFO THREAD
Replies
1
Views
74
Dingleberry
Dingleberry
Back
Top