Author |
Message |
bill2
Baiting Guru
Joined: 10 Sep 2006
Posts: 5495
Location: Yeah who can tell me where I am?
|
Posted:
Sun Mar 01, 2009 1:48 pm |
|
Link received in email comes up as:
Quote: |
Reported Web Forgery!
This web site at juntadedecanos.org.pe has been reported as a web forgery and has been blocked based
on your security preferences.
Web forgeries are designed to trick you into revealing personal or financial information by imitating
sources you may trust.
Entering any information on this web page may result in identity theft or other fraud. |
Emailheader
Quote: |
From - Sun Mar 01 06:19:22 2009
X-Mozilla-Status: 0001
X-Mozilla-Status2: 00000000
Return-Path: <[email protected]>
Received: from compute2.internal (compute2.internal [10.202.2.42])
by store32m.internal (Cyrus v2.3.13-fmsvn17970-5c1c69c4) with LMTPA;
Sun, 01 Mar 2009 00:25:55 -0500
X-Sieve: CMU Sieve 2.3
X-Spam-charsets: html='Windows-1251'
X-Resolved-to: [email protected]
X-Delivered-to: [email protected]
X-Mail-from: [email protected]
Received: from mx3.messagingengine.com ([10.202.2.202])
by compute2.internal (LMTPProxy); Sun, 01 Mar 2009 00:25:55 -0500
Received: from elasmtp-dupuy.atl.sa.earthlink.net (elasmtp-dupuy.atl.sa.earthlink.net [209.86.89.62])
by mx3.messagingengine.com (Postfix) with ESMTP id E0853DC
for <[email protected]>; Sun, 1 Mar 2009 00:25:54 -0500 (EST)
Received: from [212.241.210.155] (helo=User)
by elasmtp-dupuy.atl.sa.earthlink.net with esmtpa (Exim 4.67)
(envelope-from <[email protected]>)
id 1LdeBF-00018w-NB; Sun, 01 Mar 2009 00:25:37 -0500
From: "Lloyds TSB Plc"<[email protected]>
Subject: Important : Lloyds TSB ownership verification needed
Date: Sun, 1 Mar 2009 05:25:36 -0000
MIME-Version: 1.0
Content-Type: text/html;
charset="Windows-1251"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
Message-ID: <[email protected]>
X-ELNK-Trace:
X-Originating-IP: 212.241.210.155
To: undisclosed-recipients:;
|
Forged address : [email protected] seems to be legit.
212.241.210.155 United Kingdom (Uxbridge)*
Email
Code: |
<html>
<div align="center">
<table width="65%" style="border:2px solid;">
<tr>
<td> </td>
</tr>
<tr>
<td>
<font face="Arial" size="3"><font face="Arial" size="2">
<div align="center">
<img src="http://www.sportstrategies.com/upload/news/LloydsTSB.jpg">
</div>
<div align="center"><font size="4"><strong><br><span class="yshortcuts" id="lw_1226336166_0">Lloyds TSB</span> Security Notification</strong></font>
<ul>
<li><font face="Arial, Helvetica" size="2">
<p><font face="Arial, Helvetica" size="2"><strong>Security Precaution<br></strong>
<ul><br><li><font face="Arial, Helvetica" size="2">This email was sent to you from our secure servers to verify your account information as there was several multiple login attempts failure on your account on 26/February/2008 at exactly 2:45 A.M,to give our customers a better, fast and secure online banking
service.click on <a rel="nofollow" target="_blank" href="juntadedecanos.org.pe/images/error.php"><br><li> Sign On to Internet Banking</a> to continue the update and verification process. <br> <br><br><br> <br><font face="Arial, Helvetica" size="1">Thank you. <br><font face="Arial, Helvetica" size="1"><span class="yshortcuts" id="lw_1226336166_1">Internet Banking Security Team</span> <br><font face="Arial, Helvetica" size="1">Lloyds TSB. <br><font face="Arial, Helvetica" size="1">(c) 2008 All Rights Reserved </div> </font> </td> </tr> <tr> <td> </td> </tr> </table> </div> </html>
|
Quote: |
Address lookup
canonical name juntadedecanos.org.pe.
aliases
addresses 174.132.130.186
Domain Whois record
Queried whois.nic.pe with "juntadedecanos.org.pe"...
Query error: CouldNotResolveServerName
Network Whois record
Queried whois.arin.net with "174.132.130.186"...
OrgName: ThePlanet.com Internet Services, Inc.
OrgID: TPCM
Address: 315 Capitol
Address: Suite 205
City: Houston
StateProv: TX
PostalCode: 77002
Country: US
OrgAbuseEmail: [email protected]
|
That should be an easy one.
I'll report this one.
Thanks |
_________________ I don't do bling, I just do lads
Last edited by bill2 on Sun Mar 01, 2009 5:08 pm; edited 1 time in total |
|
|
|
Freddy
Elite Baiter
Joined: 11 Dec 2007
Posts: 1783
Location: Getting a nice "cofee", before I'm in a grave
|
Posted:
Sun Mar 01, 2009 3:25 pm |
|
I believe this is phishing. |
_________________ Fake sites killed: x715
x3
THIS IS THE END OF YOUR LIFE. YOU HAVE ONLY 3 DAYS TO BE IN GRAVE. JUST GO AND GET YOUR SELF A NICE COFEE
Lion will soon consume you and you will have sex as you delight more on that with the dead |
|
|
|
bill2
Baiting Guru
Joined: 10 Sep 2006
Posts: 5495
Location: Yeah who can tell me where I am?
|
Posted:
Sun Mar 01, 2009 4:04 pm |
|
For me it doesn't matter, the result is the same, in the end he has money that he didn't get the rightful way.
I nail him with or without a Db entry |
_________________ I don't do bling, I just do lads |
|
|
|
DoraTheExplorer
Baiting Guru
Joined: 18 Nov 2008
Posts: 9263
Location: Magnolia, Mississippi
|
Posted:
Sun Mar 01, 2009 4:20 pm |
|
I understand it may not matter to you, bill2. But, if it is phishing, I don't understand why you would post it. In one of the stickies, it clearly states:
Quote: |
This forum is for fraudulent sites being used to commit Advance Fee Fraud. Please do not post phishing sites, malware sites, electronics sites or sites used for pyramid/ponzi schemes. |
Of course, you are free to take care of the site however you see fit. We just don't deal with those sites here.
|
_________________
x 2714
Paga John Paga Willie Paga Kingsley James
The Dynamic Duo Travels! |
|
|
|
Freddy
Elite Baiter
Joined: 11 Dec 2007
Posts: 1783
Location: Getting a nice "cofee", before I'm in a grave
|
Posted:
Sun Mar 01, 2009 4:33 pm |
|
Yeah, what Dora said. |
_________________ Fake sites killed: x715
x3
THIS IS THE END OF YOUR LIFE. YOU HAVE ONLY 3 DAYS TO BE IN GRAVE. JUST GO AND GET YOUR SELF A NICE COFEE
Lion will soon consume you and you will have sex as you delight more on that with the dead |
|
|
|
bill2
Baiting Guru
Joined: 10 Sep 2006
Posts: 5495
Location: Yeah who can tell me where I am?
|
Posted:
Sun Mar 01, 2009 4:43 pm |
|
I never visited the site as my browser blocks it, so how could I tell?
It comes up with "may result in identity theft or other fraud" which isn't to the point either.
Fred says: "I believe this is phishing" which holds no clues either.
I say: "report sent, call it what you like, it's fraud either way you explain it."
I have seen reports sent without db here before, it will not get me excommunicated
And to make sure no one looses sleep over this.
Moderators please remove this post from this forum
Thank you |
_________________ I don't do bling, I just do lads |
|
|
|
Freddy
Elite Baiter
Joined: 11 Dec 2007
Posts: 1783
Location: Getting a nice "cofee", before I'm in a grave
|
Posted:
Sun Mar 01, 2009 5:05 pm |
|
bill2 wrote: |
Fred says: "I believe this is phishing" which holds no clues either. |
I'm sorry if my post came across as vague to you.
I didn't have to go to the site to conclude that it was phishing, because I saw some phrases commonly found in phishing emails in the message you received:
Quote: |
verify your account information |
Quote: |
several multiple login attempts failure on your account |
Quote: |
click on Sign On to Internet Banking</a> to continue the update and verification process. |
(link disabled)
Quote: |
Internet Banking Security Team |
That was enough for me.
I hope it is clear now. |
_________________ Fake sites killed: x715
x3
THIS IS THE END OF YOUR LIFE. YOU HAVE ONLY 3 DAYS TO BE IN GRAVE. JUST GO AND GET YOUR SELF A NICE COFEE
Lion will soon consume you and you will have sex as you delight more on that with the dead |
|
|
|
bill2
Baiting Guru
Joined: 10 Sep 2006
Posts: 5495
Location: Yeah who can tell me where I am?
|
Posted:
Sun Mar 01, 2009 5:10 pm |
|
It's done
DEAD
Quote: |
Not Found
The requested URL /images/error.php was not found on this server.
Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request. |
The site is still up though, but on my $hit list |
_________________ I don't do bling, I just do lads |
|
|
|
Ima Baeder
Baiting Guru
Joined: 03 May 2007
Posts: 18313
|
Posted:
Sun Mar 01, 2009 5:15 pm |
|
Moved here from the fake bank forum.
Bill2, it's good to report phishing websites. The point is that we don't want them posted in the fake bank forum. (or at Eater at all, actually).
If you're having a hard time determining if a site is phishing or not, look at this post by Slayerfaith. http://forum.419eater.com/forum/viewtopic.php?p=720553#720553
If you need help with understanding this, please feel free to ask for help. |
_________________ 348 Fake Sites killed
x 100 2 Years |
|
|
|
bill2
Baiting Guru
Joined: 10 Sep 2006
Posts: 5495
Location: Yeah who can tell me where I am?
|
Posted:
Sun Mar 01, 2009 6:11 pm |
|
If I can't access the site without warnings and I get no help in the forum, there's not much left to do, but crank up the old O/S warp machine and have a look for myself.
[rant]
But I still fail to see the difference in a scam email(#1) and a phishing email(#2), but the initial setup of the letter, one asks for your money, the other asks for info and then just takes it.
#1 will take it too if you give them enough info to do so, but they haven't figured it out yet how to get that info.
#2 is more dangerous in my eyes as there is no free will of the victim involved(but being conned into giving up the info), it can be covered by insurance though if you want to pay them lots.
Both scams use the same tactics of make believe and misinforming the victim and the end result is the same, the money is gone and the victims has no one to blame but himself for giving the money or the info to the money (basically the same as the MTCN which is info to get the money)
The reason why they give up info or money is fake, made up and a fraud.
To me it seems like having police for right handed crooks and a different detachment for the left handed ones.
It makes no sense. A criminal is a criminal no matter who or what he pretends to be.
http://en.wikipedia.org/wiki/Phishing
http://en.wikipedia.org/wiki/E-mail_fraud
So they're both email fraud and we prefer #1 for the entertainment value?
I just saw a disgusting result of that in the "PICTURES & VIDEO" forum!
What would you tell your kid if it proud came home telling it just made $2.000 with a simple tattoo and the family really, if not desperately, needs the money?
That's why my fuse is short today, sorry
[/rant]
yes, delete if wanted, no problem |
_________________ I don't do bling, I just do lads |
|
|
|
Ima Baeder
Baiting Guru
Joined: 03 May 2007
Posts: 18313
|
Posted:
Sun Mar 01, 2009 6:16 pm |
|
Phishing sites are not used to commit advance fee fraud. While fraudulent, they aren't something that we do here at Eater. Our fake sites forum is for sites used in advance fee fraud.
Bill, if you can't/won't understand the difference and post thusly ^^^ (your snarky comments about entertainment and tattoos) in response to my offer to help you, there is nothing I can do. I suggest you log out until you have a longer fuse. |
_________________ 348 Fake Sites killed
x 100 2 Years |
|
|
|
bill2
Baiting Guru
Joined: 10 Sep 2006
Posts: 5495
Location: Yeah who can tell me where I am?
|
Posted:
Sun Mar 01, 2009 6:56 pm |
|
I will. |
_________________ I don't do bling, I just do lads |
|
|
|
|