An
Email with the Subject "Restore Your Online banking Security Access" was
received in one of Scamdex's honeypot email accounts on Thu, 01 Mar 2007 08:57:19 -0800
and has been classified as a Generic Scam Email.
The sender shows as WellsFargo Bank <services@wellsfargo.com>.
The email address was probably spoofed. Do not reply to or contact any persons or organizations referenced in
this email, or follow any URLs as you may expose yourself to scammers and, at the very least, you will be
added to their email address lists for spam purposes.
Scam TagCloud
banklog inverificationactivityendedcontactwinaccountcustomerserviceaccessprocesscustomsecureonlineonline bankbank nwellsfargo bank usersincerely will securitydearhttp://www.wellsfargo.com...
NO CHART DATA - EMAIL HAS NOT YET BEEN ANALYSED
Scam Email Headers
This a (redacted) view of the raw email headers of this scam email.
Personally Identifiable Information (PII) has been suppressed, but can be
supplied as received to appropriate investigating or law enforcement agencies on request.
EEEEEstdClass Object
(
[return-path:] =>
[envelope-to:] => news@scamdex.com
[delivery-date:] => Thu, 01 Mar 2007 08:57:19 -0800
[received:] => Array
(
[0] => from [64.91.237.2] (helo=indi.dailydns.com)by bartok.o7e.net with esmtps (TLSv1:AES256-SHA:256)(Exim 4.63)(envelope-from )id 1HMoal-00020U-Mpfor news@scamdex.com; Thu, 01 Mar 2007 08:57:19 -0800
[1] => from iambrian by indi.dailydns.com with local (Exim 4.63)(envelope-from )id 1HMoaY-0004ha-LWfor news@scamdex.com; Thu, 01 Mar 2007 11:57:07 -0500
)
[to:] => news@scamdex.com
[subject:] => Restore Your Online banking Security Access
[from:] => WellsFargo Bank
[reply-to:] => support@wellsfargo.com
[mime-version:] => 1.0
[content-type:] => text/html
[content-transfer-encoding:] => 8bit
[x-uid:] =>
[date:] => Thu, 01 Mar 2007 11:57:06 -0500
[x-antiabuse:] => Array
(
[0] => This header was added to track abuse, please include it with any abuse report
[1] => Primary Hostname - indi.dailydns.com
[2] => Original Domain - scamdex.com
[3] => Originator/Caller UID/GID - [33447 32952] / [47 12]
[4] => Sender Address Domain - indi.dailydns.com
)
[x-source:] => /usr/bin/php
[x-source-args:] => /usr/bin/php go.php
[x-source-dir:] => iambriananderson.com:/public_html/php/php
[message-id:] =>
[x-scamdex-scores:] => S:45 P:56 A:48 L:43 E:51 G:43
[x-scamdex-classtype:] => P
[x-scamdex-classscore:] => 56
[x-scamdex-totscore:] => 286
[x-scamdex-kw:] => access,account,activity,bank,contact,customer,ended,inc.,log in,online bank,process,report,service,verification
[x-scamdex-em:] => support@wellsfargo.com
[x-scamdex-dir:] => P
[x-scamdex-id:] => P1204769101.M492235P20228V
[x-scamdex-copyright:] => This Email is Copyright Scamdex.com 2009, Reproduction Prohibited
)
Domain Names used for collecting scam email ("Honeypot email accounts") have been obscured and replaced with the token 'HUN1P0T'
Community Action - SPAM/non-Scam Report
Occasionally, incorrectly categorized emails get into the Scamdex Scam Email Database and need to be removed. If this
email has Personally Identifiable Information (PII), or is, in your opinion, from a bona-fide entity, let us know.
Scamdex will, as soon as is practicable, take-down any emails that in our opinion should not
be in our database. Note that ALL emails in the Scamdex Scam Email Database were received as Unsolicited Commercial Email, aka UCE or
SPAM, via unpublished 'Honeypot' email addresses.
Dear Customer,
As part of our security
measures, we regularly screen activity in the Wells Fargo & Company
system.We recently noticed the following issue on your account: A recent review
of your account determined that we require some additional information from you
in order to provide you with secure service. Case ID Number: CA-065-617-349 For
your protection, we have limited access to your account until additional
security measures can be completed. We apologize for any inconvenience this may
cause. Please log in to Wells Fargo &
Company to restore your
account access as soon as possible.
Click the link below and
fill in the form on the following page to complete the verification process.
http://www.wellsfargo.com/update.php
In accordance with
Wells Fargo &
Company User Agreement, your account
access will remain limited until the issue has been resolved. Unfortunately, if
access to your account remains limited for an extended period of time, it may
result in further limitations or eventual account closure. We encourage you to
log in to your Wells Fargo
& Company account as soon as
possible to help avoid this. To review your account and some or all of the
information that Wells
Fargo & Company used to make its
decision to limit your account access, please visit the Resolution Center. If,
after reviewing your account information, you seek further clarification
regarding your account access, please contact Wells Fargo & Company by visiting the Help Center and clicking "Contact Us". We thank you for
your prompt attention to this matter. Please understand that this is a security
measure intended to help protect you and your account.
