An
Email with the Subject "Fw: Your NetBank access has been LOCKED" was
received in one of Scamdex's honeypot email accounts on Tue, 02 Jun 2009 06:58:19 -0700
and has been classified as a Generic Scam Email.
The sender shows as Michael <wdalaskan@yahoo.com>.
The email address was probably spoofed. Do not reply to or contact any persons or organizations referenced in
this email, or follow any URLs as you may expose yourself to scammers and, at the very least, you will be
added to their email address lists for spam purposes.
Scam TagCloud
(503) 906-1015(503) 906-1059(503) 906-1063banksuspendverificationlockedendedwinsafeaccountcustomeraccessprocesscustominvestigationonlinemailbank bank account commonwealth bank your bank wdalaskan@yahoo.comvovwss@yahoo.com will securityyahoo.com(503)dearhttp://www.netbank.com.auif
NO CHART DATA - EMAIL HAS NOT YET BEEN ANALYSED
Scam Email Headers
This a (redacted) view of the raw email headers of this scam email.
Personally Identifiable Information (PII) has been suppressed, but can be
supplied as received to appropriate investigating or law enforcement agencies on request.
EEEEEstdClass Object
(
[return-path:] =>
[envelope-to:] => scams@scamdex.com
[delivery-date:] => Tue, 02 Jun 2009 06:58:19 -0700
[received:] => Array
(
[0] => from web50002.mail.re2.yahoo.com ([206.190.38.17])by fire.newsblaze.com with smtp (Exim 4.69)(envelope-from )id 1MBUVL-00030L-KTfor scams@scamdex.com; Tue, 02 Jun 2009 06:58:19 -0700
[1] => (qmail 61878 invoked by uid 60001); 2 Jun 2009 13:58:15 -0000
[2] => from [208.187.191.118] by web50002.mail.re2.yahoo.com via HTTP; Tue, 02 Jun 2009 06:58:14 PDT
)
[dkim-signature:] => v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s1024; t=1243951094; bh=jYtxeNPYVyd7fjf4Jeo0Ho7b15aWn5EzIDw7nI1uKF0=; h=Message-ID:X-YMail-OSG:Received:X-Mailer:Date:From:Subject:To:MIME-Version:Content-Type; b=ztYRqavYlfF8vsAd5GgUdxsWwXxABGkbx0cybUcFN0yPWZeLnDgtDa1CCzsBrd6/6PzmS9x3RIU2aEPwrusc/H42kHcM35MLIcsNaHVwuhmozT75MHt0gXjRDg8aw1hs/e/vfjvAVC7gJNszypHwm9SRfSXuXi6Yum5W0h7Y8pU=
[domainkey-signature:] => a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=Message-ID:X-YMail-OSG:Received:X-Mailer:Date:From:Subject:To:MIME-Version:Content-Type; b=ii8jawcL2UyURJE9soODTFUcaiV6zuBNSDMZCJVsSuk/WL3cOY23q3s0oEOo2709kyzNgKMbOYjwULrz534QGqpF35er67poltI+0V3U4ZIkA+wnQgd0HfMRseqpRn+Qf7ufpUpYT02fvZs404QF8p2Q6rXnbPkMDVi/4VB9AUg=;
[message-id:] => <984085.60815.qm@web50002.mail.re2.yahoo.com>
[x-ymail-osg:] => AJTJjhsVM1ntFQ34PfauYuhu3vahxupyP5XNpG9HywXmoEyqxD18rNe0lgTGw5klU2nJnh2_FiamhwMerWhpnHY4_Npm7iw4GFQ6bpMkotbonMwRs5W8Qr2xtiZ3TLxhX3D8GixhaD0seY9yWD8ZaGzGe.EJEM1umGWv0wYxaTvdONAUNQTkoNAv630K09EQ2qKoPMvJRd2WYv5c8DajIb24LB2zYlZ3mGyFj3t0QmXQ1Y0_4y1Y9VboN_GUMw6eNmJ_FtPWHp1sYrpSQi1Z1kywnAMgmAqGxsFE9vDVgyyyVeuHS7sszGG5HaQeN8yg7671MEuNTdMJAslPOQ--
[x-mailer:] => YahooMailClassic/5.3.9 YahooMailWebService/0.7.289.10
[date:] => Tue, 2 Jun 2009 06:58:14 -0700 (PDT)
[from:] => Michael
[subject:] => Fw: Your NetBank access has been LOCKED
[to:] => SCAM/FRAUD , SCAMS , SCAMS
[mime-version:] => 1.0
[content-type:] => multipart/alternative; boundary="0-1298287486-1243951094=:60815"
[x-spam-status:] => No, score=0.1
[x-spam-score:] => 1
[x-spam-bar:] => /
[x-spam-flag:] => NO
[x-scamdex-scores:] => S:37 P:44 A:42 L:35 E:40 G:34
[x-scamdex-classtype:] => P
[x-scamdex-classscore:] => 44
[x-scamdex-totscore:] => 232
[x-scamdex-kw:] => access,account,bank,customer,ended,locked,process,safe,service,suspend,verification
[x-scamdex-em:] => vovwss@y,vovwss@yahoo.com
[x-scamdex-dir:] => D
[x-scamdex-id:] => D1244503496.M327729P27415V
[x-scamdex-copyright:] => This Email is Copyright Scamdex.com 2009, Reproduction Prohibited
)
Domain Names used for collecting scam email ("Honeypot email accounts") have been obscured and replaced with the token 'HUN1P0T'
Community Action - SPAM/non-Scam Report
Occasionally, incorrectly categorized emails get into the Scamdex Scam Email Database and need to be removed. If this
email has Personally Identifiable Information (PII), or is, in your opinion, from a bona-fide entity, let us know.
Scamdex will, as soon as is practicable, take-down any emails that in our opinion should not
be in our database. Note that ALL emails in the Scamdex Scam Email Database were received as Unsolicited Commercial Email, aka UCE or
SPAM, via unpublished 'Honeypot' email addresses.
--- On Mon, 6/1/09, Commonwealth Bank of Australia <vovwss@yahoo.com> wrote:
Thank you,
Michael Hernandez
AG Specialties LLC.
(503) 906-1015
(503) 906-1059 direct line
(503) 906-1063 fx
--- On Mon, 6/1/09, Commonwealth Bank of Australia <vovwss@yahoo.com> wrote:
From: Commonwealth Bank of Australia <vovwss@yahoo.com> Subject: Your NetBank access has been LOCKED To: Date: Monday, June 1, 2009, 6:34 PM
Dear Commonwealth Bank Customer,
You have received this email because you or someone had used your account from different locations. For security purpose, we are required to open an investigation into this matter.
In order to safeguard your account, we require that you confirm your banking details.
The help speed up to this process, please access the following link so we can complete the verification of your Commonwealth Online Branch Account registration information.
http://www.netbank.com.au
If we do no receive the appropriate account verification within 24 hours, then we will assume this Commonwealth Bank account is fraudulent and will be suspended.
The purpose of this verification is to ensure that your bank account has not been fraudulently used and to combat the fraud from our
community.
We appreciate your support and understanding and thank you for your prompt attention to this matter.
