Understanding Scam Email

This was written for persons who use the Outlook Express email program, however, all persons who use email should read it over. There are links for "Viewing Headers" in other email programs at the bottom of this page, "highlighted like this".

First, you need to understand how to use Outlook Express SAFELY:

In Outlook Express, you need to set up your window to avoid seeing "un-opened email".

Unfortunately, by default, Outlook Express is setup to show the Preview Pane.

If you can see what is inside the email in the "preview pane", then you have opened that email. 

Sure, you have state of the anti- virus, anti- keystroke logging, anti-theft ultra firewall galore,

All of those troublesome problems have patches, except for the new ones being created and sent around via email. 

If it is a new virus or Trojan, then there isn't an update for it YET. So you risk exposing your computer to them.

It doesn't matter if you have set the Outlook Express program to show the email as having an "un-opened envelope flap".

If you can see the contents of the message, it's in your computer.

Don't let yourself be a victim. Please don't use the "preview pane" in Outlook Express.  

When outlook express is open, click on "View" , and then click "Layout...", just like the picture below

Next, an new dialogue box appears. 

If Preview Pane" is checked, UNcheck the box. 

Then click "Apply".

Close Outlook Express. You have now protected yourself from automatically  executing viruses, trojans, and worms in your e- mail. This does not mean you will not get any of these things, which will be explained further, below.

Keystroke Logging, Spyware, and Adware can also be sent into your computer through email. An anti-virus program does NOT protect you against Spyware, Adware, or Keystroke Logging Programs, because these 3 things are NOT viruses, Trojans, or worms.

Keystroke Logging, Spyware, and Adware make a record of the keys you press on your keyboard and what website you are looking at while typing; such as usernames, passwords, credit card numbers....and then they send this information back to the creator of these malicious programs. And bingo, suddenly your credit cards are maxed out, and your PayPal account is empty, and you are in deep trouble. Get an Anti-Spyware/Anti-adware/Anti Keystroke protection program if you use your computer online, for anything online. Adware and the other two can also install on your computer, without you knowing it, just by looking at some websites. ActiveX controls are NOTORIOUS for it. IncrediMail is just as bad. Sure, it's cute stuff. So is a porcupine if you don't know any better. These malicious programs can install into your computer while viewing .pdf files, video clips, even just looking at pictures independently of a website. Malicious programs can be embedded into everything on the Internet. Hopefully this will scare you into protecting yourself, as that is the intent.

Please, go to a real store to purchase a real anti-spyware/adware/keystroke program. There are many free ones and pay-for versions on the Internet; many of these free ones are actually spyware programs themselves. They LIE to you and tell you they are here for free to help you protect yourself. Unless you know for a FACT (which is different from reading a few blogs and assuming those blogs were not written by scammers) that the anti-spyware is truly good stuff,  Buy from a TRUSTED source.

A handy online tool that scans your computer for threats can be found from the folks at Norton. This is not a plug for Norton. Personally, I use a different anti-virus program.  http://www.google.com/search?hl=en&q=symantec+scan+your+computer . Also, be aware, there are many other websites which claim they will scan your computer for you. They might be telling the truth, they might not. They might actually be installing viruses and Trojans and all that mess onto your computer. I learned this handy tip the hard way. 

Okay, so you got rid of that preview pane and closed Outlook Express. On to dealing with Spam; is it really Spam, or is it a scam?

Viewing Headers

Open Outlook Express to see new changes. Just to make sure the changes stick. It's Microsoft after all.  

In the next picture, there is an email which looks just like one from eBay.

(while in the comfort and security of your home, it's late, you had a libation style drink or two, and your defenses are off-guard, because nobody has ever physically attacked you in your own home...they don't want your blood, they just want your money...)

 The Golden Rule: If you do not know for a fact  who the email is from, do not open it.

 Not Directly. You can instead view the source code of the message, without activating any of the code in your computer. 

RIGHT click on a suspected possible Spam/scam email ONCE. Not a double click; just a single Right click.

Select the option  'Properties'.

A Dialog box pops up. 

Click on the "Details" tab at the top.

Then click "Message Source".

This shows you who that email is really from.

This is called "Viewing the Headers" 

Parts of it which are "blued out" pertain to the author of this article, and you don't need to know them.

Anything fishy has been highlighted in red.

You should be able to figure it out. Spelling counts.

First, in the top portion of the Message Source

in the Headers of the email, 

is 'ebey.com' the same as 'ebay.com' ?  Spelling counts.

In the lower portions of the Message Source, 

Blue-boxed pictures in the email are hosted on eBay, . 

There's also something highlighted in red, 

In this example, you can see that cheersfilms.com is not eBay. Someone at cheersfilms has copied a webpage and it likely looks exactly like the sign in page on eBay. Someone there is  harvesting eBay usernames and passwords, via a keystroke logging program installed on their website.

This email is obviously a scam.

If you would like to tell eBay about it, highlight and copy the message source.

Create a new email message to eBay, send it to spoof@ebay.com .

Paste the copied headers in the message body.

Send it.

The Platinum Rule of Email:

NEVER Click on Links in Email that "appear" to have ANYTHING to do with ANYTHING 

.Here is an actual scam email when it is open. Would you have known?

(the blue blocked out area would have been your email address).

Everybody WILL get scam email which LOOKS JUST LIKE REAL EMAIL with subject lines or messages saying, usually with sensational flair or drama (to get you to click something before you THINK IT THROUGH)

It might even have your real name, your real address, and your real other semi-personal information in it.

PayPal, EBay, your bank, my bank, my long lost billionaire uncle in Nigeria, designer handbags, stock brokers accounts, hot deals on tractors, you won an item on eBay, someone has hacked your eBay account, you sold an item, a question from a bidder, a question from a seller, On and on and on...

They say you must click on something in the email immediately or your buying and selling privileges will be suspended, something important you must act fast; button pushing emails that try to catch you off guard in the comfort and security of wherever you are. Dont Do It, Use your Brain, don't respond with heartfelt emotion do NOT click that link in the email!!!

Instead, open eBay on your own through the internet browser. Not through a link in the email.

Sign in to your eBay or PayPal account or your bank or wherever the email was telling you to click to.

Sign into your online accounts through your web browser. If there's truly something wrong with your account, there should be a message on that website to you, from the real website administrators.

Otherwise, look for the contact information for that websites abuse. Send them the spam/scam email Headers.

How to Block Spam/Scam email:

As usual, the blue parts pertain to me and you don't need to know them.

When viewing the message source, highlight & copy the entire email address. yoyo32243@yahoo.com or whatever it is.

Click Tools>Message Rules>Blocked Senders List...

When the Message Rules dialog box pops up on the screen,

click the tab for 'Blocked Senders'. Then click the "Add" button.

Paste the email address into the form field,

Check the box for 'Mail and News Messages', paste the email address you wish to block, and click "OK",  closing out the other dialog box too.

Blocking Unwanted Email, part II.

I'm still working on part II of Blocking Email Addresses, so it is incomplete, as of October 5, 2006.

This part requires more and deeper thinking. You might want to open a bottle of wine if you haven't already done so.

If you notice a pattern in your blocked senders list

You might want to block ALL email from that Website.

Just enter the part of the email address following the @ sign. 

Links

Coalition 419

Hoax Email. You receive a shocking scary or sensational email story about something that you need to worry about, usually forwarded to you from a trusted friend, therefore you ASSUME it must be true, so you forward it on to 19 other people instantly. But is it really true, or is it a hoax? Maybe the person who forwarded it to you didn't know to check it out first for accuracy. Try Google for the subject line +Hoax. Make sure you aren't perpetuating an internet myth. 

THE DIAMOND RULE of Everything Internet

Never pay for something with Western Union. NEVER. Just DO NOT do that. Or you will 99.9999999999999 % CHANCE loose the money and never see the item. And there is NO recourse. For more info, please see: http://www.westernunion.com/info/fraudindex.asp

I hope you found this information useful.

Viewing Headers in HotMail and YaHoo: http://www.johnru.com/active-whois/headers-yahoo-hotmail.html -or- http://www.google.com/search?hl=en&q=%22yahoo.com%22%2B%22view+headers%22               

I don't know how to turn on headers in other email programs; try:

http://spamcop.net/fom-serve/cache/19.html and http://www.haltabuse.org/help/headers/index.shtml

And here's more info, for sellers specifically, brought to my attention by an eBay seller: