The Scamdex Scam Email Archive - Generic o

Subject:  (Chase Phishing)
From:  " Internet Incident Reponse Team (IIRT)" <>
Date:  Fri, 28 Apr 2006 09:25:32 -0700

A Scam Email with the Subject "(Chase Phishing)" was received in one of Scamdex's honeypot email accounts on Fri, 28 Apr 2006 09:25:32 -0700 and has been classified as a Generic Scam. The sender was " Internet Incident Reponse Team (IIRT)" <>, although it may have been spoofed.

This phishing site is being used for both Chase/JP Morgan and Branch Banking and

canonical name

Return-Path: <>
Received: (qmail 20607 invoked from network); 28 Apr 2006 14:56:04 -0000
X-Spam-Checker-Version: SpamAssassin 3.1.1 (2006-03-10) on blade5
X-Spam-Level: ***************
X-Spam-Status: hits=15.0 tests=FORGED_MSGID_YAHOO,HTML_IMAGE_ONLY_28,
Received: from unknown (HELO (
  by with SMTP; 28 Apr 2006 14:56:04 -0000
Received: from ([])
  by with SMTP; 28 Apr 2006 10:55:47 -0400
X-IronPort-AV: i="4.04,164,1144036800";
   d="scan'208"; a="346897607:sNHT51503054"
Received: (qmail 4295 invoked from network); 28 Apr 2006 14:55:46 -0000
Received: from unknown (HELO (
  by with SMTP; 28 Apr 2006 14:55:46 -0000
X-RocketMail: 00000001;R---------------;5535
X-RocketUID: 0000101768
X-RocketMIF: 1145969646;3669;
X-Apparently-To: via; Tue, 25 Apr 2006
05:54:06 -0700
X-RocketRCL: 2726;1;1596475561;2768
X-Rocket-Track: cat=BK;
X-Originating-IP: []
Authentication-Results:; domainkeys=neutral (no sig)
Received: from []
        by with POP3 (fetchmail-6.2.1)
        for (single-drop); Fri, 28 Apr 2006 10:55:46 -0400
Received: from (
  by with SMTP; Tue, 25 Apr 2006 05:54:05 -0700
Received: from by ; Tue, 25 Apr 2006 06:46:35 -0700
Message-ID: <>
Date: Tue, 25 Apr 2006 16:52:35 +0300
From: "JPMorgan Chase & Co." <>
Subject: Online Banking Disabled
MIME-Version: 1.0
Content-Type: multipart/alternative;
X-Mailer: MIME-tools 5.503 (Entity 5.501)
X-OriginalArrivalTime: Tue, 25 Apr 2006 09:49:35 -0400
Content-Length: 1162
X-SpamCop-Disposition: Blocked SpamAssassin=15

Content-Type: text/html;
Content-Transfer-Encoding: quoted-printable

&nbsp;&nbsp;&nbsp;<img src=3D
seNewlogo.gif><div><br>&nbsp;&nbsp;<font face=3Dverdana color=3D"darkblue"=
 size=3D2><b> Dear JPMorgan Chase & Co. Customer,</b></font></div><br><br>=
<font face=3D"arial" size=3D2><DIV>&nbsp;&nbsp;&nbsp;Due to suspicious act=
ivities on your JPMorgan Chase & Co. online account registered on raj_nade= we have<BR>&nbsp;&nbsp; temporarily <A href=3D"http://www.g=";>DISABLED</A> acces=
s to your Online Banking session.</div><br><br></font><font face=3D"arial"=
 size=3D2><DIV>&nbsp;&nbsp;&nbsp;In order to reinstate your account and re=
sume Online Banking please&nbsp;<A href=3D"
ttp://">CONFIRM</A> your online <br>&nbsp;&nb=
sp;&nbsp;account, or you can call customer service Monday through Friday 8=
 a.m. EST to 1 a.m. EST and <br>&nbsp;&nbsp;&nbsp;Saturday 8 a.m. EST to 5=
 p.m. EST at 1-800-621-0361.</div><br><br><DIV>&nbsp;&nbsp;&nbsp;_________=
v><font face=3Dverdana size=3D1>&nbsp;&nbsp;&nbsp;ABOUT THIS MESSAGE:<div>=
<font face=3Dverdana size=3D1>&nbsp;&nbsp;&nbsp;This message was delivered=
 to you as a JPMorgan Chase & Co. credit card customer to provide you acco=
unt<br>&nbsp;&nbsp;&nbsp;updates and information about your card benefits.=
 JPMorgan Chase & Co. values your privacy and your<br>&nbsp;&nbsp;&nbsp;pr=
eferences.</div><br><div><font face=3Dverdana size=3D1>&nbsp;&nbsp;&nbsp;Y=
our personal information is protected by state-of-the-art technology. For =
more detailed <br>&nbsp;&nbsp;&nbsp;security information, view our <A href=
=3D"";>Online Privacy Policy</A>. To request in=
 writing: JPMorgan Chase & Co. Privacy <br>&nbsp;&nbsp;&nbsp;Operations, 4=
51 Florida Street, Fourth Floor, LA2-9376, Baton Rouge, LA 70801</div><br>=
<div><font face=3Dverdana size=3D1>&nbsp;&nbsp;&nbsp;If you want to contac=
t JPMorgan Chase & Co., please do not reply to this message, but instead g=
o to <br>&nbsp;&nbsp;&nbsp;<A href=3D"";>http://www.cha=</A>. For faster service, please enroll or log in to your account. =
Replies to<br>&nbsp;&nbsp;&nbsp;this message will not be read or responded=
 to.</div><br><div><font face=3Dverdana size=3D1>&nbsp;&nbsp;&nbsp;This em=
ail was sent to:</div><br><div><font face=3Dverdana=
 size=3D1>&nbsp;&nbsp;&nbsp;Copyright =A9 2006, JPMorgan Chase & Co. All R=
ights Reserved.</div>



Questions can be sent to:
Domain  Dossier: Whois:

[Zero Tolerance towards Unsolicited Email]
This email is sent in compliance with our strict anti-abuse
regulations.You have received this email because we are a active
Spam fighting organization.If you do not wish to receive any mail
from our service you may permanently block your email address by
sending a email to: .

All UCE/BCE is subject to a US$500.00 fee per item. If you send UCE
(SPAM) to , you are agreeing to this charge for
processing your "email" and also agree to pay any and all costs
incurred in collecting this fee.