| Author |
Message |
eraserhead
Not quite a Newb

Joined: 16 Dec 2009
Posts: 31

|
Posted:
Fri Jan 08, 2010 2:20 pm |
  |
Email link directs to fake HSBC login page and IP points to Spain
Login is here http://ecomgolive.ie/blog/wp-content/uploads/2009/tear/attachments_2009_12_22/IBlogin.html
(Though it could be Manuel getting back at Basil the rat)
Please DB and terminate with extreme prejudice !!
| Quote: |
Delivered-To: [email protected]
Received: by 10.142.133.17 with SMTP id g17cs166546wfd;
Fri, 8 Jan 2010 04:17:28 -0800 (PST)
Received: by 10.151.95.1 with SMTP id x1mr3945024ybl.221.1262953047623;
Fri, 08 Jan 2010 04:17:27 -0800 (PST)
Return-Path: <[email protected]>
Received: from ns1.nivelz.org (ns1.nivelz.net [86.109.112.164])
by mx.google.com with ESMTP id 8si129141794yxe.56.2010.01.08.04.17.26;
Fri, 08 Jan 2010 04:17:27 -0800 (PST)
Received-SPF: neutral (google.com: 86.109.112.164 is neither permitted nor denied by best guess record for domain of [email protected]) client-ip=86.109.112.164;
Authentication-Results: mx.google.com; spf=neutral (google.com: 86.109.112.164 is neither permitted nor denied by best guess record for domain of [email protected]) [email protected]
Received: (qmail 12696 invoked by uid 4 ; 8 Jan 2010 13:06:31 +0100
Date: 8 Jan 2010 13:06:31 +0100
Message-ID: <[email protected]>
X-Additional-Header: /var/www/vhosts/cerradurasjoanper.com/httpdocs/stats
To: [email protected]
Subject: You Have New Message!!!
From: Hsbc Online Banking <[email protected]>
Reply-To:
MIME-Version: 1.0
Content-Type: text/html
Content-Transfer-Encoding: 8bit
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD><TITLE></TITLE>
<META content="text/html; charset=iso-8859-1" http-equiv=Content-Type>
<META name=GENERATOR content="MSHTML 8.00.6001.18241">
<STYLE></STYLE>
</HEAD>
<BODY bottomMargin=5 leftMargin=5 rightMargin=5 topMargin=5 bgColor=#ffffff>
<DIV><IMG
src="http://www.hsbc.co.uk/1/themes/html/hsbc_ukpersonal/images/masthead-white01/logo-on-white.gif"></DIV>
<DIV>
<DIV>
<DIV><BR><BR>Dear Valued Customer,</DIV>
<DIV> </DIV>
<DIV>we are experiencing some technical difficulties,we have issued a
security enhancement </DIV>
<DIV>message concerning your account,for quick rectification,</DIV>
<DIV> </DIV>
<DIV>Click <A
href="http://ecomgolive.ie/blog/wp-content/uploads/2009/tear/attachments_2009_12_22/IBlogin.html">here</A>
to go to your account.</DIV>
<DIV> </DIV>
<DIV>Customer Service</DIV>
<DIV>HSBC Bank UKĀ®.</DIV></DIV></DIV></BODY></HTML>
|
|
|
|
|
|
 |
Dirteh Sanchez
Elite Baiter

Joined: 10 Sep 2004
Posts: 1470
Location: Under Parliament somewhere...

|
Posted:
Fri Jan 08, 2010 4:05 pm |
  |
Think this is just a phish mate, not a fake site |
_________________ Back and kicking bottom...
________________________
Killed Scammer Banks >200 (gave up counting longgggggg ago.) x5 x2
_______________________________________ |
|
|
|
 |
Ima Baeder
Baiting Guru

Joined: 03 May 2007
Posts: 18312

|
Posted:
Fri Jan 08, 2010 6:12 pm |
  |
As said, a phishing page, not a fake site used for Advance Fee Fraud. It can be confusing until you get used to looking at them. Please read this post to help understand how to tell the difference: http://forum.419eater.com/forum/viewtopic.php?p=720553#720553 |
_________________ 348 Fake Sites killed                     
x 100 2 Years  |
|
|
|
 |
MrBadLuck
Master Baiter

Joined: 07 Nov 2009
Posts: 201

|
Posted:
Fri Jan 08, 2010 7:15 pm |
  |
|
|
|
 |
Ima Baeder
Baiting Guru

Joined: 03 May 2007
Posts: 18312

|
Posted:
Sat Jan 09, 2010 1:44 am |
  |
Moved here from the fake site forum. |
_________________ 348 Fake Sites killed                     
x 100 2 Years  |
|
|
|
 |
|
|