Chase phishing site at:
http://71-17-246-48.yktn.hsdb.sasknet.sk.ca/chaseonline.chase.com/index.htm
(don't try .html - there is a fairly offensive page there)
Makes me wonder if someone really hosted a phish site on their own server.
--
Steve
Equal bytes for women.
---------- Forwarded message ----------
Return-Path: <[EMAIL PROTECTED]>
Received: from outgoing02.lava.net (outgoing02.lava.net [64.65.64.125])
by mail.pirk.com (8.14.1/8.12.0.Beta19) with ESMTP id m2J1uQ8a018143
for <[EMAIL PROTECTED]>; Tue, 18 Mar 2008 18:56:27 -0700
Received: from lava.net (cust19810.lava.net [64.65.109.98])
by outgoing02.lava.net (Postfix) with ESMTP id 2369B170B9D;
Tue, 18 Mar 2008 15:54:58 -1000 (HST)
Received: from poste ([208.188.246.26]) by lava.net with Microsoft
SMTPSVC(6.0.3790.1830);
Tue, 18 Mar 2008 15:01:03 -1000
Reply-To: <[EMAIL PROTECTED]>
From: "Chase Bank"<[EMAIL PROTECTED]>
Subject: You have 1 new Security Message!
Date: Tue, 18 Mar 2008 20:02:44 -0500
MIME-Version: 1.0
Content-Type: text/html;
charset="Windows-1251"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
Message-ID: <[EMAIL PROTECTED]>
X-OriginalArrivalTime: 19 Mar 2008 01:01:04.0525 (UTC)
FILETIME=[B4E963D0:01C8895C]
X-TM-AS-Product-Ver: SMEX-7.5.0.1166-5.0.1023-15796.001
X-TM-AS-Result: Yes-28.661200-5.000000-31
X-TM-AS-User-Approved-Sender: No
X-TM-AS-User-Blocked-Sender: No
To: undisclosed-recipients:;
[chaseNewlogo.gif]
Dear Chase Bank Cardholder,
You have 1 new Security Message!
Click here to Login
©2008 JPMorgan Chase & Co.
_______________________________________________
phishing mailing list
phishing@whitestar.linuxbox.org
http://www.whitestar.linuxbox.org/mailman/listinfo/phishing
