Oldfrog
Special Response Team
Joined: Jun 27, 2004
Posts: 8576
Location: Deep in the Heart of Texas
|
 Posted: Thu Mar 30, 2006 10:12 pm Post subject: Fried Phish Mar 30: HSBC @ OTENET-GR (GR) |
|
|
Phish Alert
Full Report:  /modules.php?name=Fried_Phish&fp=phish&id=1655&in=1
The email hyperlink directs to a Greek server hosting an imitation HSBC page. The site was active at the time of investigation. The URL opens /index.php which contains only a single frame loaded from /frame.php.
View CIDR AS6799 Report: http://www.cidr-report.org/cgi-bin/as-report?as=6799
"6799 | GR | ripencc | 1996-10-22 | OTENET-GR OTEnet S.A. Multiprotocol Backbone _ ISP"<br />
Obtained abuse contact from RIPE Whois: abuse@otenet.gr
Generated and sent email phish alert to respective parties.
| Quote: | Received: from server90.snhdns.com [72.9.232.146] by speed-mail.co.uk with ESMTP
(SMTPD32-8.00) id A4904A300D0; Thu, 30 Mar 2006 21:50:24 +0100
Received: from nobody by server90.snhdns.com with local (Exim 4.52)
id 1FP45t-0005Mn-ST
for ; Thu, 30 Mar 2006 15:50:13 -0500
To:
Subject: Please Restore Your Account Access
From: Hsbc Security Alert <>
Reply-To:
MIME-Version: 1.0
Content-Type: text/html
Content-Transfer-Encoding: 8bit
Message-Id: <>
Date: Thu, 30 Mar 2006 15:50:13 -0500
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - server90.snhdns.com
X-AntiAbuse: Original Domain - speed-mail.co.uk
X-AntiAbuse: Originator/Ca |
|
|
Forum FAQ
Search
Usergroups
Profile
Login to check your private messages
Login
