Return-Path: <>

Received: from ( [])

by with ESMTPS id b37si8354382iod.87.2015.

Received: from ([]:49234 helo=web)

by with esmtpa (Exim 4.85)

(envelope-from <>)

id 1Z2qTy-00022e-57

Dear Wells Fargo customer,

We have recently detected that a different computer user has attempted=

gaining access to your online account and multiple passwords were attempted=

with your user ID.

It is necessary to re-confirm your account information and complete a profile=


You can do this by downloading the attached file and updating the necessary=


Note: If this process is not completed within 24-48 hours we will be forced=

to suspend your account online access as it may have been used for=

fraudulent purposes. Completion of this update will avoid any possible problems with your account.

Thank you for being a valued customer.

(C) 2015 Wells Fargo. All rights reserved.


Content-type: application/octet-stream; name=”Validation Form.html”

Content-Transfer-Encoding: Base64

Content-Disposition: attachment; FileName=”Validation Form.html”

Content-Description: Attached file: Validation Form.html

Yeah I check My Emails return paths and Origins , Just right click “Show Original ” and bingo you see the shit that someone tries to shove down your throat , or in this case force their way into your system.

Sorry dude , you have been traced and reported


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s