Hi All, to report an e-mail, you need what is called the "headers"
As an example, let us take a yahoo account and if you look at the bottom right, you will see a sign that says "full headers" if you click this you will see a lot of letters and numbers like this--


X-Apparently-To: xxxxyahoo.com.au via 206.190.49.121; Thu, 07 Jan 2007 03:48:24 -0700
X-Originating-IP: [202.43.219.76]
Return-Path: <buzzy_fabian@yahoo.co.in>
Authentication-Results: mta184.mail.mud.yahoo.com from=yahoo.co.in; domainkeys=pass (ok)
Received: from 202.43.219.76 (HELO web8601.mail.in.yahoo.com) (202.43.219.76) by mta184.mail.mud.yahoo.com with SMTP; Thu, 27 Oct 2005 03:48:24 -0700
Received: (qmail 56803 invoked by uid 60001); 27 Oct 2005 10:48:22 -0000
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024;
d=yahoo.co.in; h=Message-ID:Received:From:Subject:To:
In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=Q/2mGbGLMaCjB/b3bWVISO5BASvLvErdKCIGpDpyrd1A/45YrijjqCP
prTATXgDM8sH284L6pPB7Pe1CSeYQRhpR3sf3pnVohG9pjpjzO TWq4
xiulBk+OhnrDh2RK0H68+7zGuu0ZEnrvtCFKtQic9EZIG4vqSf ohkhbm+
PE7OQ= ;
Message-ID: <20051027104822.56801.qmail@web8601.mail.in.yahoo.c om>
Received: from [196.207.244.220] by web8601.mail.in.yahoo.com via HTTP; Thu, 27 Oct 2005 11:48:22 BST
Date: Thu, 27 Oct 2005 11:48:22 +0100 (BST)
From: Send an Instant Message "buzzen fabian" <buzzy_fabian@yahoo.co.in> Add to Address BookAdd to Address Book
Yahoo! DomainKeys has confirmed that this message was sent by yahoo.co.in. Learn more
Subject: Re: urgent massage.
To: "
xxxx" <xxxxx@yahoo.com.au>
In-Reply-To: <20051027101530.20887.qmail@web54313.mail.yahoo.com>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="0-1317554672-1130410102=:56490"
Content-Transfer-Encoding: 8bit
Content-Length: 1722


I have put xxx where your name will appear!
you then send this, with a copy of the message to abuse@yahoo.com
you will probably get back an automated message acknowledging your e-mail , and in a day or so (depending on them ) you should then get a message saying that they have checked, and in this case appropriate action has been taken!

If you then send an e-mail to the scammer, you should get it back saying something like "the perrson does not have an account with us.
This means that the account has been closed and you can claim a "kill" and give your self a pat on the back!! as you have just saved some one from losing their money to this scammer!
If you have any questions then please contact, Thank you "De Master Yoda"

Just a reminder; This has been posted to assist you in closing down a "phone" scammers account.
Please use caution if thinking about closing down any other type scammers account! as they can easily set up another one, and the old one MAY be being used by a baiter!! so in this case it could be counter productive!

Hi All, to report an e-mail, you need what is called the "headers"
As an example, let us take a yahoo account and if you look at the bottom right, you will see a sign that says "full headers" if you click this you will see a lot of letters and numbers like this--


X-Apparently-To: xxxxyahoo.com.au via 206.190.49.121; Thu, 07 Jan 2007 03:48:24 -0700
X-Originating-IP: [202.43.219.76]
Return-Path: <buzzy_fabian@yahoo.co.in>
Authentication-Results: mta184.mail.mud.yahoo.com from=yahoo.co.in; domainkeys=pass (ok)
Received: from 202.43.219.76 (HELO web8601.mail.in.yahoo.com) (202.43.219.76) by mta184.mail.mud.yahoo.com with SMTP; Thu, 27 Oct 2005 03:48:24 -0700
Received: (qmail 56803 invoked by uid 60001); 27 Oct 2005 10:48:22 -0000
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024;
d=yahoo.co.in; h=Message-ID:Received:From:Subject:To:
In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=Q/2mGbGLMaCjB/b3bWVISO5BASvLvErdKCIGpDpyrd1A/45YrijjqCP
prTATXgDM8sH284L6pPB7Pe1CSeYQRhpR3sf3pnVohG9pjpjzO TWq4
xiulBk+OhnrDh2RK0H68+7zGuu0ZEnrvtCFKtQic9EZIG4vqSf ohkhbm+
PE7OQ= ;
Message-ID: <20051027104822.56801.qmail@web8601.mail.in.yahoo.c om>
Received: from [196.207.244.220] by web8601.mail.in.yahoo.com via HTTP; Thu, 27 Oct 2005 11:48:22 BST
Date: Thu, 27 Oct 2005 11:48:22 +0100 (BST)
From: Send an Instant Message "buzzen fabian" <buzzy_fabian@yahoo.co.in> Add to Address BookAdd to Address Book
Yahoo! DomainKeys has confirmed that this message was sent by yahoo.co.in. Learn more
Subject: Re: urgent massage.
To: "
xxxx" <xxxxx@yahoo.com.au>
In-Reply-To: <20051027101530.20887.qmail@web54313.mail.yahoo.com>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="0-1317554672-1130410102=:56490"
Content-Transfer-Encoding: 8bit
Content-Length: 1722


I have put xxx where your name will appear!
you then send this, with a copy of the message to abuse@yahoo.com
you will probably get back an automated message acknowledging your e-mail , and in a day or so (depending on them ) you should then get a message saying that they have checked, and in this case appropriate action has been taken!
If you then send an e-mail to the scammer, you should get it back saying something like "the person does not have an account with us "this means that the account has been closed and you can claim a "kill" and give your self a pat on the back!! as you have just saved some one from losing their money to this scammer!
If you have any questions then please contact, Thank you "Master Yoda"


can i have one please Master Yoda???? :D


janxxx....btw great info def will use it :)

I thought it was almost impossible to get yahoo to ever close an account...

Sometimes it seems like it!!
Usually if you can show them that the account is in breach of their TOS and it is obvious, then they seem to close them ok !
I think that it depends a lot on their mood on the day!!

Or maybe the phase of the moon. Or whether the moon is in the 7th house, or Jupiter aligns with Mars. You know, the Age of Asparagus thing.

When reporting to Yahoo, Hotmail, etc, persistence pays off. This especially true when you simply present the facts and let them do their thing.

Some of their security techs will eventually recognize your name and email address as a source for legitimate reports. At this point you have obtainied credibility with them. Keep it professional and they will close the accounts.

One thing we've noted is that in order to obtain maximum damage to the scammer, ignore your impulse to report them immediately. Remember that they are sending out thousands of "format" mails. If they have gone through the trouble (and hours) of sending out that big of a batch, they lose all that work when the account is closed.

Also, remember that any ReplyTo addresses are the more important accounts to get closed. If they can't get answers, all their mails are wasted.

If you're reporting 419 advance fee frauds, you can use the abuse addresses and just include the mention 419 advance fee fraud above the header info. This always does the trick. You do not have to submit a name. :)

I'm forgetting to say that you have to read your header correctly and be sure it is a gmail or yahoo address....many scam emails are spoofed.

You're right, I've always used the abuse@gmail.com as it's easier to just stay in the actual email and forward it...but I was doing this from a gmail account. I don't know if this changes anything. Then again, it shouldn't as I also reported to other email hosts.

Try abuse@xxx.com, Then the Public / press relations / investor relations,
CC New York Times and or the Sun in the UK.
Include the original mail with the whole full headers.
Include the infractions / offences the 419 scammer had breached.
That will get them moving.
They do not like bad press.
On the other hand, bait the scammer.
Could be fun. :rolleyes:

From - Yahoo! Mail <mail-abuse@cc.yahoo-inc.com>
Reply-To - Yahoo! Mail <mail-abuse@cc.yahoo-inc.com>
To Me
Hello,

Thank you for writing to Yahoo! Mail.

In this particular case, we have taken appropriate action against the
Yahoo! account in question that was reported for fraudulent activities,
as per our Terms of Service (TOS). For further details about the Yahoo!
TOS, you can visit: http://docs.yahoo.com/info/terms/

Please know that Yahoo! is unable to disclose the action taken on
another user's account with a third party. We are not able to make
exceptions to this rule.

You may also visit the URL below for useful tools to combat spam: http://antispam.yahoo.com/tools

Please let me know if you still need assistance so I may assist you
further.

Your patience during this process is greatly appreciated.
Thank you again for contacting Yahoo! Mail.

Regards,

Prack

Yahoo! Customer Care
68669095

For assistance with all Yahoo! services please visit: http://help.yahoo.com/

Original Message Follows:
-------------------------

[ Attachment 2.2 Type: text/plain]
Dear Sir,

This is a Spam / Phish/ Scam.
It is an unwarranted illeagal solicitation for the sale of securities.
The Sender has also appeared on : http://www.topix.com/forum/business/banking/TS376S1N7G82J40S5
Securities are not sold this way and there is no mention of brokerage at all.

The request for personal details in the attachment is clearly a Phish as
warned in fraud alerts by the Securities Exchange Commission and several other governing bodies.

His email is from Gmail, thereby having his IP tracks covered and his
reply is to Yahoo.

Thank You

Me

See :

Gentlemen,
The attached is available now and only serious requests would be
attended to I have another seller on exactly the same terms and pricing
as before on 50B. I have attached template LOI for buyer's convenience.
This time around please, as soon as possible, forward buyers LOI or at
least LOR to secure a negotiating position on the deal and thereafter CC
and closing immediately. Seller is Top 10 Bank Address LOI / LOR to the
mandate: MR ALEXANDER HAKKENBERG VAN GAASBREEKHVG & HVG
INTERMEDIAIRS Chris Skype chris.contactFull Header and attachment
content cut and pasted below

From chris.johncolemanconsults@gmail.com Thu Feb 18 09: 52: 14 2010
Received | by 10.204.15.141 with SMTP id
Reply-To | chris_consults@yahoo.com
Date | Thu, 18 Feb 2010 15: 51:21 +0100
X-Hanmail-Peer-IP | 209.85.218.224
BUYERSLETTERHEAD LETTER OF INTENT(LOI)

TN
67+1 / ��50Billion w Rolls


Date: Feb18 Day, 2010

Attention of: (Compliance) on behalf of Provider / Issuer via HVG

I/ WE, (Buyer Signatory Name), with passport number: XXXXXXX issued
by(Country), do hereby confirm with full legal and corporate
responsibility andwith full control of all funds, under the penalty of
perjury, that (Company /Organization Name) is ready, willing and able to
purchase with good, clean andcleared Euros (��) of non-criminal
origins, through our banking source, thefollowing describedMedium Term
Notes (��SMTNs���) derived from legal sources and of non-criminalorigin.

BANK INSTRUMENTDESCRIPTION
Instrument: Medium Term Note- Cash Back
Term: Ten(10) Year
Issuing Banks: Top10 Banks
Age : SlightlySeasoned
Currency: European Community Currency (EURO)
Contract Amount: EURO FIFTY BILLION (��50,000,000,000.00) withRolls and
Extensions
Invoice Price: (67 %) Plus 1% or better
Coupon Rate: Sevenand One Half Percent (7.5%)
Commission: One Percent (1%) of Face Value
First Tranche: Five Hundred Million Euros
(��500,000,000.00 Million)
Price: 67+1
Subsequent Tranches: To be mutually agreed upon
Mode of Payment: SWIFTMT-103 and Screen Block and Pay after
receipt of Corporate Invoice.-
Settlement: MT103
Delivery: Performance bond only followed by Hardcopy to bedelivered via
Bank-bonded courier within four (4) banking days


TRANSACTION PROCEDURES
1. Buyer submitsthis Letter of Intent to MTN Seller/Provider with
full-banking details.
2. Seller acceptssigns and returns the LOI.

A) CUSIP, ISISNAND Custodial Safekeeping Receipt Numbers.
B) Medium TermNote showing text, terms, denomination, issuing bank,
dates of issue
and maturity andbeneficiary with complete address.
C) Access Code andpertinent data necessary for Buyer��"s Bank to
authenticate and validate
data of InvoicedInstrument via Euroclear or Brussels Euroclear.
D) Full BondingPower
E) Guarantee ofSeller��"s Bank to deliver the Invoiced Bank Instruments

3. After EUROCLEARor BRUSSELS EUROCLEAR screen authentication,
verification and validation of theMTN��"s, within Four (4) International
Banking Hours, and instruct their Bank tosend full payment of the First
(1) Tranche to the Seller��"s Bank.

4. Within Two (2)international banking hours of clear funds, Seller��"s
Bank will electronicallydeliver the MTN��"s via Swift MT 760, followed
by the delivery of the Originalswithin four (4) international banking
days to the Buyer��"s Bank via Special BankCourier.


BANKING INFORMATION
BUYER��"S BANKING CO-ORDINATES:
BANK NAME :
BANK ADDRESS :
SWIFT CODE :
BANK OFFICER :
BANK PHONE :
BANK FAX :
ACCOUNT HOLDER :
ACCOUNT NUMBER :
IBAN :

how can i shut down possibly with e-adds from a user of hotmail?thanks so much..big help!whew!