Search Scamdex & Scamalot
An Email with the Subject "(ChasePhishing)http://chaseonline.newuseraccess.com/colappmgr/colportal/prospect?_nfpb=true&_pageLabel=page_logonform" was received in one of Scamdex's honeypot email accounts on Mon, 17 Apr 2006 11:08:04 -0700 and has been classified as a Generic Scam Email. The sender shows as "Antihotmail.com Internet Incident Reponse Team (IIRT)" <iirt@antihotmail.com>.
The email address was probably spoofed. Do not reply to or contact any persons or organizations referenced in this email, or follow any URLs as you may expose yourself to scammers and, at the very least, you will be added to their email address lists for spam purposes.
Please "Take down" CNAME's along with Nameserver locations at NS1.SERIESEQU.COM and NS2.SERIESEQU.COM. ------ http://chaseonline.newuseraccess.com/colappmgr/colportal/prospect?_nfpb=true&_pageLabel=page_logonform canonical name newuseraccess.com. aliases addresses 72.240.109.122 75.3.40.212 80.119.214.209 204.111.200.19 Domain Name: NEWUSERACCESS.COM204.111.200.19 Registrar: ONLINENIC, INC. Whois Server: whois.OnlineNIC.com Referral URL: http://www.OnlineNIC.com Name Server: NS1.SERIESEQU.COM Name Server: NS2.SERIESEQU.COM canonical name cblmdm72-240-83-122.buckeyecom.net. aliases addresses 72.240.109.122 canonical name adsl-75-3-40-212.dsl.chcgil.sbcglobal.net. aliases addresses 75.3.40.212 canonical name 209.214.119-80.rev.gaoland.net. aliases addresses 80.119.214.209 canonical name n200s019.ntc.harrisonburg.shentel.net. aliases addresses 204.111.200.19 ------ Name Server: NS1.SERIESEQU.COM canonical name ns1.seriesequ.com. aliases addresses 70.242.133.254 canonical name ppp-70-242-133-254.dsl.stlsmo.swbell.net. aliases addresses 70.242.133.254 ------ NS2.SERIESEQU.COM canonical name ns2.seriesequ.com. aliases addresses 72.240.109.122 75.3.40.212 80.119.214.209 204.111.200.19 canonical name cblmdm72-240-83-122.buckeyecom.net. aliases addresses 72.240.109.122 canonical name adsl-75-3-40-212.dsl.chcgil.sbcglobal.net. aliases addresses 75.3.40.212 canonical name adsl-75-3-40-212.dsl.chcgil.sbcglobal.net. aliases addresses 75.3.40.212 canonical name 209.214.119-80.rev.gaoland.net. aliases addresses 80.119.214.209 canonical name n200s019.ntc.harrisonburg.shentel.net. aliases addresses 204.111.200.19 ------ HTTP/1.1 200 OK Date: Mon, 17 Apr 2006 17:58:59 GMT Server: Apache/1.3.34 (Unix) mod_ssl/2.8.25 OpenSSL/0.9.7a PHP/4.4.2 mod_perl/1.29 FrontPage/5.0.2.2510 Last-Modified: Fri, 10 Mar 2006 12:18:50 GMT ETag: "c7a14-29da-44116eaa;44437fe0" Accept-Ranges: bytes Content-Length: 10714 Content-Type: text/html Responding IP: 204.111.200.19 <------------ Name Lookup Time: 2.11049 Total Retrieval Time: 3.153784 Download Speed: 3397 (Port 80 check) Input URL: http://chaseonline.newuseraccess.com:80/colappmgr/colportal/prospect?_nfpb=true&_pageLabel=page_logonform Effective URL: http://chaseonline.newuseraccess.com:80/colappmgr/colportal/prospect?_nfpb=true&_pageLabel=page_logonform Responding IP: 80.119.214.209<------------ Name Lookup Time: 0.154233 Total Retrieval Time: 0.842731 Download Speed: 12713 ------ Input URL: http://chaseonline.newuseraccess.com/colappmgr/colportal/prospect?_nfpb=true&_pageLabel=page_logonform Effective URL: http://chaseonline.newuseraccess.com/colappmgr/colportal/prospect?_nfpb=true&_pageLabel=page_logonform ------ X-Message-Status: n:0 X-SID-PRA: Chase@notify52.chase.com X-SID-Result: TempError X-Message-Info: JGTYoYF78jHjWJxnMajoQ1zsPNLoJ/GU0ytyYa/jJQ8= Received: from ŒÛ¿ø¿ë ([168.188.15.96]) by bay0-mc8-f8.bay0.hotmail.com with Microsoft SMTPSVC(6.0.3790.1830); Mon, 17 Apr 2006 07:59:39 -0700 Received: (qmail 10850 by uid 640); Mon, 17 Apr 2006 11:59:45 +0900 Date: Mon, 17 Apr 2006 11:59:45 +0900 Message-Id: <20060417205945.10848.qmail@ŒÛ¿ø¿ë> From: <Chase@notify52.chase.com> Reply-To: <Chase.W3TH5288F46081D1A4084934BCB3E30@email.chase.com> To: <scootermo@hotmail.com> Subject: Message 6335883 IMPORTANT: Maintenance Notification. MIME-Version: 1.0 Content-Type: text/html Content-Transfer-Encoding: 7bit Return-Path: scooterjes@hotmail.com X-OriginalArrivalTime: 17 Apr 2006 14:59:39.0933 (UTC) FILETIME=[8D3EDCD0:01C6622F] <div> <title>Chase</title> <table width=600 cellspacing=0 cellpadding=0 border=0> <tr><td> <table width=600 cellspacing=0 cellpadding=0 border=0> <tr><td width=153 height=45><img src="http://images.bfi0.com/creative/2005/chase/dec/b_transfer/images/chase_logo.gif" alt=CHASE width=153 height=45 border=0></td><td height=45><img src="http://images.chase.com/creative/2005/chase/dec/b_transfer/images/Chase.jpg" align=right border=0></td><td width=10 height=45><img src="http://images.bfi0.com/creative/2005/chase/dec/b_transfer/images/spacer.gif" alt="" width=10 height=45 border=0></td></tr></table> <img src="http://images.bfi0.com/creative/2005/chase/dec/b_transfer/images/bar.gif" width=600 height=23 alt="" border=0> <font face="arial,helvetica,sans-serif" size=2><br></font> <p> <P><FONT face=Arial size=4>Dear Member: JPMorgan Chase & Co.<BR><BR>The latest issue of our membership newsletter is available for your review. You'll find that this issue contains information about:</FONT></P> <UL> <LI><FONT face=Arial size=4>Login to your Chase Internet Banking account </FONT> <LI><FONT face=Arial size=4>Update your account </FONT>: <p><a href="http://newuseraccess.com/...../">https://chaseonline.chase.com/jpmorganchase/profile.cfm?SH_Confirm=A86217D6%2D073E%2D26416203097C05CA0BBF2</a></p> <p>If confirmation is unsuccessful, please copy and paste the entire URL into your web browser's address box and click the "Enter" key.</p> <p>If you have not registered with JPMorgan Chase & Co., please ignore this message and your contact information will be deleted within 7 days.</p> <p>Thank You,</p> <p> JPMorgan Chase & Co.<br> 270 Park Avenue<br> New York, NY 10017-2070 </p> <font face="arial,helvetica,sans-serif" size=2><br> <br> </font> <hr size=1 noshade> <font face="verdana,arial,helvetica,sans-serif" color="#666666" size=1> *This special rate APR is subject to the payment allocation and default terms described in the Terms of Offer available online. Balance transfer amount(s) may not exceed your available credit line. This service message was delivered to you as a Chase customer to provide you account updates and information about your card benefits. Chase values your privacy and your preferences. <br><br> ABOUT THIS MESSAGE<br><br> Your personal information is protected by state-of-the-art technology. For more detailed security information, view our <a href="javascript:ol('http://email.chase.com/W3RH033CE3199D1A2623732BCB3E30');">Online Privacy Policy</a>. To request in writing: Chase Privacy Operations, 451 Florida Street, Fourth Floor, LA2-9376 Baton Rouge, LA 70801. <br><br> If you wish to unsubscribe from e-mail promotional messages from Chase, <a href="javascript:ol('http://email.chase.com/W3RH033CE3298D1A2623732BCB3E30');">click here</a>. <br><br> Please note that you will continue to receive service related e-mail messages that directly concern your existing Chase products and services. Please allow up to ten business days for us to process your request. <br><br> Please do not reply to this message as the "reply" function is not equipped to handle customer service inquiries. <br><br> This email was sent to: scootermo@hotmail.com <br><br> © 2006 JPMorgan Chase & Co. </font></td></tr> -- -- Questions can be sent to: iirt@antihotmail.com Domain Dossier: http://www.centralops.net/ Antihotmail.com Whois: http://whois.antihotmail.com [Zero Tolerance towards Unsolicited Email] This email is sent in compliance with our strict anti-abuse regulations.You have received this email because we are a active Spam fighting organization.If you do not wish to receive any mail from our service you may permanently block your email address by sending a email to: stop.complaints@antihotmail.com . All UCE/BCE is subject to a US$500.00 fee per item. If you send UCE (SPAM) to Antihotmail.com , you are agreeing to this charge for processing your "email" and also agree to pay any and all costs incurred in collecting this fee.
![http://images.bfi0.com/creative/2005/chase/dec/b_transfer/images/chase_logo.gif"](http://images.bfi0.com/creative/2005/chase/dec/b_transfer/images/chase_logo.gif"){kind=link}
![http://images.chase.com/creative/2005/chase/dec/b_transfer/images/Chase.jpg"](http://images.chase.com/creative/2005/chase/dec/b_transfer/images/Chase.jpg"){kind=link}
![http://images.bfi0.com/creative/2005/chase/dec/b_transfer/images/spacer.gif"](http://images.bfi0.com/creative/2005/chase/dec/b_transfer/images/spacer.gif"){kind=link}
![http://images.bfi0.com/creative/2005/chase/dec/b_transfer/images/bar.gif"](http://images.bfi0.com/creative/2005/chase/dec/b_transfer/images/bar.gif"){kind=link}