An
Email with the Subject "Restore Your Account Access Now." was
received in one of Scamdex's honeypot email accounts on Wed, 11 Apr 2007 03:23:58 -0700
and has been classified as a Employment/Job Scam Email.
The sender shows as "Chase Online"<Service@chase.com>.
The email address was probably spoofed. Do not reply to or contact any persons or organizations referenced in
this email, or follow any URLs as you may expose yourself to scammers and, at the very least, you will be
added to their email address lists for spam purposes.
Scam TagCloud
bankverificationcontactaccounttransactionresponsecustomerserviceinternetaccesscustomverifysentonlinemailsincerely will nwill dearfinancial services
NO CHART DATA - EMAIL HAS NOT YET BEEN ANALYSED
Scam Email Headers
This a (redacted) view of the raw email headers of this scam email.
Personally Identifiable Information (PII) has been suppressed, but can be
supplied as received to appropriate investigating or law enforcement agencies on request.
EEEEEstdClass Object
(
[return-path:] =>
[envelope-to:] => cj@scamdex.com
[delivery-date:] => Wed, 11 Apr 2007 03:23:58 -0700
[received:] => Array
(
[0] => from [24.199.3.6] (helo=SERVER.tradeshowimages.com)by bartok.o7e.net with esmtp (Exim 4.63)(envelope-from )id 1HbZza-0005FS-3zfor cj@scamdex.com; Wed, 11 Apr 2007 03:23:58 -0700
[1] => from User ([89.165.206.16]) by SERVER.tradeshowimages.com with Microsoft SMTPSVC(5.0.2195.6713); Wed, 11 Apr 2007 04:23:42 -0700
)
[reply-to:] =>
[from:] => "Chase Online"
[subject:] => Restore Your Account Access Now.
[date:] => Thu, 12 Apr 2007 13:22:00 +0100
[mime-version:] => 1.0
[content-type:] => text/html;charset="Windows-1251"
[content-transfer-encoding:] => 7bit
[x-priority:] => 1
[x-msmail-priority:] => High
[x-mailer:] => Microsoft Outlook Express 6.00.2600.0000
[x-mimeole:] => Produced By Microsoft MimeOLE V6.00.2600.0000
[x-antivirus:] => avast! (VPS 000732-0, 04/10/2007), Outbound message
[x-antivirus-status:] => Clean
[bcc:] =>
[x-uid:] =>
[x-originalarrivaltime:] => 11 Apr 2007 11:23:43.0500 (UTC) FILETIME=[DCE854C0:01C77C2B]
[message-id:] =>
[x-scamdex-scores:] => S:47 P:52 A:55 L:43 E:51 G:42
[x-scamdex-classtype:] => A
[x-scamdex-classscore:] => 55
[x-scamdex-totscore:] => 290
[x-scamdex-kw:] => access,account,bank,card,contact,customer,inc.,internet,notification,response,sent,service,transaction,user,verification,verify
[x-scamdex-dir:] => P
[x-scamdex-id:] => P1181405175.M531255P19653V0805I0066D13C
[x-scamdex-copyright:] => This Email is Copyright Scamdex.com 2009, Reproduction Prohibited
)
Domain Names used for collecting scam email ("Honeypot email accounts") have been obscured and replaced with the token 'HUN1P0T'
Community Action - SPAM/non-Scam Report
Occasionally, incorrectly categorized emails get into the Scamdex Scam Email Database and need to be removed. If this
email has Personally Identifiable Information (PII), or is, in your opinion, from a bona-fide entity, let us know.
Scamdex will, as soon as is practicable, take-down any emails that in our opinion should not
be in our database. Note that ALL emails in the Scamdex Scam Email Database were received as Unsolicited Commercial Email, aka UCE or
SPAM, via unpublished 'Honeypot' email addresses.
Due to the recent phishing attacks and
attempted identity theft associated with them, we have decided to verify identity of
our members. We apologize for any inconvenience this may cause but we feel
that is a necessary precaution to protect our members personal identity
information.
We recently attempt to verify some recent transactions on your
account.
After we have made the verification we were unable to confirm your
personal identity information we have on file. You will need to update your
information in order to maintain online services. Click here to log-in Chase Online(SM) any day of the week,
complete all the we need to establish your identity. For your protection, we require
an exact match between the information we have on file and the information that you
will confirm.
We apologize for any inconvenience this may cause you, but these
steps are necessary to protect you and your JPMorgan Chase accounts. There is no need
to call us in response to a phone message we've left in the last three days unless
you see any transactions you don't recognize. We thank you for choosing JPMorgan
Chase as your financial services provider and look forward to hearing from you
very soon.
Customer Service Please do not reply to this
message. We are unable to respond to Account inquiries sent in reply to Account
inquiries sent in reply to this e-mail. To contact us by phone, please call the number
on the back of your Card.
Sincerely, Chase Internet
Banking Fraud Department
