EMAIL SCAMS LIVE

YOU ARE NOW VIEWING REPORTS WORLDWIDE

 HIGH

SHIP TRACKING SHIP TRACKING

AVIATION LIVE WORLDWIDE

SATELLITE LIVE

UNITED STATES SCANNER

AUSTRALIAN SCANNER LIVE

QUEENSLAND WEATHER

NEW SOUTH WALES

VICTORIA WEATHER

TASMANIA HOBART

SOUTH AUSTRALIA

NORTHERN TERRITORY

CANBERRA ACT

UNITED STATES SATELLITE

LIVE MUSIC STREAM

WIND LIVE CHARTS

LANDINGS LIVE POINT

ASTROPHYSICS NASA

AIRFORCE LOADED X

MARINE VIEWING AUSTRALIA

ASTRONOMY SOFTWARE

ASTEROIDS BELT TRACKING

PLEASE RETWEET OR SHARE VIA FACEBOOK WITH FRIENDS

Share

 

 

 

 

 

 

 

LIVE SWITCH -------

   

Français Korean Chinese Português Norsk Japan español United Emirates Italiano WORLD NEWS Português Swiss English WORLD NEWS

OUR WORLD - YOUR LIVE SWITCH

 

AVIATION | BANKING | WEATHER | FARMING | NEWS | MARINE | MEDIA | MARKETS | MINING & ENERGY | CLIMATE | DEFENSE | SCIENCE | WATER

 

Switch comments live Make this site your homepage Experience Live Switch

ADVANCED SOLARADVANCED WIND

 

 

Visitors |s

Live |

COMMENTS SECTION INTERNATIONAL POSTS WELCOMED

 

 
   
   

FRAUDULENT BANKING SCAMS VIA EMAILING

LATEST SCAM VIA UK 27TH AUGUST 2010

Received: from mailin (unknown [192.168.3.30])
by xxxxxxxxxxxxxxxxxxxxxxxxxxxxx (Postfix) with ESMTP id C98FF1800085
for <xxxxxxxxxxxxxxxxxxxxxx>; Fri, 27 Aug 2010 06:14:44 +1000 (EST)
Received: from smtp-1.star.net.uk (HELO smtp-1.star.net.uk) (212.125.75.70)
by mailin (qpsmtpd/0.40) with SMTP; Thu, 26 Aug 2010 20:14:44 +0000
Received: (qmail 5340 invoked from network); 26 Aug 2010 20:14:27 -0000
Received: from unknown (HELO britishfencing.com) (89.206.169.219)
by smtp-1.star.net.uk with SMTP; 26 Aug 2010 20:14:27 -0000
Received: from User ([80.179.6.80]) by britishfencing.com
with Microsoft SMTPSVC(6.0.3790.1830); Thu, 26 Aug 2010 21:14:26 +0100
From: "HSBC Bank"<hsbc@onlinesecure.com>
Subject: Internet Banking Alert
Date: Thu, 26 Aug 2010 23:02:44 +0200
X-Priority: 1
X-MSMail-Priority: High
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
Message-ID: <EXC-BF01T3IFW36Gwgq000020e1@britishfencing.com>
X-OriginalArrivalTime: 26 Aug 2010 20:14:26.0971 (UTC)
FILETIME=[486E26B0:01CB455B]
To: undisclosed-recipients:;
X-DSPAM-Result: Innocent
X-DSPAM-Processed: Fri Aug 27 06:14:44 2010
X-DSPAM-Confidence: 1.0000
X-DSPAM-Probability: 0.0023
X-DSPAM-Signature: 60,4c76cb3439951793315685
Return-Path: hsbc@onlinesecure.com
MIME-Version: 1.0
Content-Type: multipart/mixed;
boundary="----=_NextPart_000_0100_01C2A9A6.2B45FAA6"
X-Antivirus: avast! (VPS 100825-0, 25/08/2010), Inbound message
X-Antivirus-Status: Clean
This is a multi-part message in MIME format.
------=_NextPart_000_0100_01C2A9A6.2B45FAA6
Content-Type: text/plain;
charset="Windows-1251"
Content-Transfer-Encoding: 7bit
Dear HSBC Online User,We regret to inform you that access to your online account has been locked.
This happened because of too many failed log-in attempts.
To restore your online account access you can:
1. Visit your local branch and complete the Unlock My Account form (takes several days)
2. Complete the Unlock My Account form online, by downloading and completing the attached form (instant)
Quality service and the security of your account are of great importance to us.
We appreciate each opportunity to serve you.
Sincerely,
Customer Service
------=_NextPart_000_0100_01C2A9A6.2B45FAA6
Content-Type: application/octet-stream;
name="update_form.htm"
Content-Transfer-Encoding: base64
Content-Disposition: attachment;
filename="update_form.htm"

SCAM VIA NY FOR PREYING ON YOUR EGO - 11TH AUGUST 2010

Candidate,

It is my greatest privilege to inform you of your nomination for inclusion in the 2010 Edition of Who's Who Among Executives and Professionals. My most sincere congratulations. By accepting the nomination below, you join an elite fellowship of professionals in the academic, legal, healthcare, scientific, and business fields. The Who's Who has provided both recognition and networking services to the elite for over a century, and due to your professional accomplishments, we are now extending the invitation to you.

Who’s Who opens numerous doors to international professional networking. We currently represent over 450,000 members worldwide in hundreds of varied industries and specializations, all of whom are brought together by a common desire to build their professional network. We maintain a robust database of executives globally which is accessible to members only, along with up to date contact and personal information. All of this information is protected by state of the art data protection and guaranteed by our strenuous review process, which ensures only the select are entered into our system.

In order to provide us with current information to best serve your networking needs, please complete this brief form, which you should Click Here to review.

I congratulate you on the achievements that have brought your name to the attention of our editorial committee. We look forward to hearing from you. Please remember: Inclusion of your biography in the Who's Who of course carries neither cost nor obligation to you of any sort. Our goal with each new edition is to prepare a comprehensive biography spanning the spectrum of noteworthy and accomplished men and women across all areas of the professional world.

My best wishes for your continued success,

Eric Johnson
Managing Director
Who’s Who Among Executives and Professionals


Empire Business Directory | 34-01 Broadway | Astoria | New York | 11101 | USA

RESULT - PRESSURED AT HIGH LEVEL AND IT'S COST YOU $899 TO JOIN CLICK HERE TO READ MORE

INDIA SCAM - 9TH JULY 2010

HI I AM FROM MICROSOFT LET ME GUIDE YOU THROUGH YOUR COMPUTER PROBLEMS.......................... 0290372483 IS THE MAIN NUMBER - ANY OTHERS PLEASE LET US KNOW SO WE CAN REPORT THIS TO THE ACCC - INDIA COMMISION ETC ETC

THIS IS THE LATEST BANKING EMAIL SCAM THE HAS BEEN FORWARDED ONTO THE AUSTRALIAN PUBLIC.

xxxxxxxxxxxxxxxxx + EQUALS SWITCHBANKS = WE DONT WANT OUR ISP IDENTIFIED TO THE SCAMMERS

CIRCULATING - PLEASE DELETE IF RECIEVED

5TH JULY 2010

CUA CREDIT UNION AUSTRALIA LATEST TO BE HIT WITH SCAM

Return-path: <service@webbanker.cua.com.au>
Envelope-to: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
Delivery-date: Thu, 16 Jul 2009 09:19:41 +1000
Received: from nschwmtas02p.mx.bigpond.com ([61.9.189.140])
by XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX with esmtp (Exim 4.69)
(envelope-from <service@webbanker.cua.com.au>)
id 1MRDlF-0003uu-Qh
for XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX; Thu, 16 Jul 2009 09:19:41 +1000
Received: from nschwingx06p.mx.bigpond.com ([209.163.204.185])
by nschwmtas02p.mx.bigpond.com with ESMTP
id <20090715231939.RIRZ1863.nschwmtas02p.mx.bigpond.com@nschwingx06p.mx.bigpond.com>;
Wed, 15 Jul 2009 23:19:39 +0000
Received: from SERVER.PENT.Local ([209.163.204.185])
by nschwingx06p.mx.bigpond.com with ESMTP
id <20090715231938.XLTB26453.nschwingx06p.mx.bigpond.com@SERVER.PENT.Local>;
Wed, 15 Jul 2009 23:19:38 +0000
Received: from User ([81.12.13.196]) by SERVER.PENT.Local with Microsoft SMTPSVC(5.0.2195.6713);
Wed, 15 Jul 2009 18:20:03 -0500
Reply-To: <service@webbanker.cua.com.au>
From: "Credit Union Australia Limited Alert"<service@webbanker.cua.com.au>
Subject: Important message from the Credit Union Australia
Date: Thu, 16 Jul 2009 03:33:12 +0430
MIME-Version: 1.0
Content-Type: text/html;
charset="Windows-1251"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
Bcc:
Message-ID: <SERVERuPDVniSnRMWuL00000151@SERVER.PENT.Local>
X-OriginalArrivalTime: 15 Jul 2009 23:20:03.0640 (UTC) FILETIME=[C846BB80:01CA05A2]
X-RPD-ScanID: Class bulk; VirusThreatLevel unknown, RefID str=0001.0A150203.4A5DBFEF.00B5,ss=3,sh,fgs=0
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="604">
<tbody>
<tr></tr>
<tr>
<td colspan="3">
<table border="0" cellpadding="0" cellspacing="0" width="602">
<tbody>
<tr>
<td>
<table border="0" cellpadding="0" cellspacing="0">
<tbody>
<tr>
<td colspan="2">
<img src="http://kanaweb.bankone.com/notifications/events/ccs_epay/images/spacer.gif" height="20" width="1">
</td>
</tr>
<tr>
<td width="22">
<img src="http://kanaweb.bankone.com/notifications/events/ccs_epay/images/spacer.gif" height="1" width="22">
</td>
<td>
<img src="https://webbanker.cua.com.au/webbanker/banner.jpg" height="75" width="580">
</td>
</tr>
<tr>
<td colspan="2">
<img src="http://kanaweb.bankone.com/notifications/events/ccs_epay/images/spacer.gif" height="20" width="1">
</td>
</tr>
</tbody>
</table>
</td>
<td width="100%">
</td><td>
</td></tr>
</tbody>
</table>
</td>
</tr>
<tr>
<td colspan="3">
<img src="http://kanaweb.bankone.com/notifications/events/ccs_epay/images/Content_Border-Top.gif" height="24" width="604">
</td>
</tr>
<tr>
<td colspan="3">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="604">
<tbody>
<tr>
<td bgcolor="#0467bc" width="1">
<img src="http://kanaweb.bankone.com/notifications/events/ccs_epay/images/spacer.gif" height="1" width="1">
</td>
<td width="602">
<table border="0" cellpadding="0" cellspacing="8" width="602">
<tbody>
<tr>
<td>
<font face="Arial, Helvetica, sans-serif" size="2">
<span style="margin-bottom: 0pt;"><b>Dear CUA Member,</b><br>
<br>
<br>
During our regualry scheduled accounts maintenance and verification procedures,<br>
we have detected a slight error regarding your CUA Online Account.<br>
<br>
This might be due to one of the following reasons:<br>
<br>
1. A recent change in your personal information (i.e. address changing)<br>
2. Submitting invalid information during the initial sign up process.<br>
4. Multiple failed logins in your personal account.<br>
3. An inabillity to accurately verify your selected option of payment due<br>&nbsp;&nbsp;&nbsp; to an internal error within our system.<br>
<br>
Please update and verify your information by clicking the following link:<br>
<br>
<font style="font-size: 9pt;" face="Verdana"><a rel="nofollow" target="_blank"href="http://202.30.29.206/webbanker.cua.com.au/" class="style4">Continue To CUA Online Update Form</a></font><br>
<br>
<span class="style3">*If you account information is not updated within 48 hours then your ability to access your account will be restricted. <br>
<br>
<span class="style8">Thank you,<br>
<span style="border-bottom: 1px dashed rgb(0, 102, 204); cursor: pointer;" class="yshortcuts" id="lw_1220015862_0">CUA Online</span> , Billing Department.</span></span></span>
<br>
<br>
</font>
</td>
</tr>
</tbody>
</table>
</td>
<td bgcolor="#0467bc" width="1">
<img src="http://kanaweb.bankone.com/notifications/events/ccs_epay/images/spacer.gif" height="1" width="1">
</td>
</tr>
</tbody>
</table>
</td>
</tr>
<tr>
<td colspan="3" bgcolor="#0467bc">
<img src="http://kanaweb.bankone.com/notifications/events/ccs_epay/images/spacer.gif" height="1" width="1">
</td>
</tr>
</tbody>
</table>
<br>
<table align="center" bgcolor="#0467bc" border="0" cellpadding="0" cellspacing="1" width="604">
<tbody>
<tr>
<td bgcolor="#ffffff">
<table border="0" cellpadding="0" cellspacing="0">
<tbody>
<tr>
<td>
<table bgcolor="#0467bc" border="0" cellpadding="0" cellspacing="5" width="170">
<tbody>
<tr>
<td>
<strong>
<font color="#ffffff" face="Verdana" size="1">
<a rel="nofollow" name="email_security">E-mail
Security Information</a></font>
<a rel="nofollow" name="email_security"></a></strong>
</td>
<table border="0" cellpadding="0" cellspacing="8">
<tbody>
<tr>
<td>
<p>
<strong>
<font face="Verdana" size="1">E-mail intended
for your account.<br>
</font>
</strong>
<font face="Verdana" size="1">
<br>
If you are concerned about the authenticity of this
message, please <a rel="nofollow" target="_blank" href="http://202.30.29.206/webbanker.cua.com.au/"><span class="yshortcuts" id="lw_1220015862_1">click
here</span></a> or call the phone number on the back of your
credit card. If you would like to learn more about
e-mail security or want to report a suspicious e-mail, <a rel="nofollow" target="_blank" href="http://202.30.29.206/webbanker.cua.com.au/">click
here</a>
</font>
</p>
<p>
<font face="Verdana" size="1">
<b>Note: </b>If you are
concerned about clicking links in this e-mail, the <span class="yshortcuts" id="lw_1220015862_2">Chase
Online services</span> mentioned above can be accessed by
typing
<a rel="nofollow" target="_blank" href="http://202.30.29.206/webbanker.cua.com.au/"><span class="yshortcuts" id="lw_1220015862_3">https://webbanker.cua.com.au/webbanker/CUA</span></a>
directly into your browser.</font>
</p>
</td>
<br>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="604">
<tbody>
<tr>
<td>
<p>
<b>
<font color="#808080" face="Verdana" size="1">ABOUT THIS
MESSAGE:</font>
</b>
<font color="#808080" face="Verdana" size="1">
<br>
This service message was delivered to you as a <span style="border-bottom: 1px dashed rgb(0, 102, 204); background: transparent none repeat scroll 0%; cursor: pointer; -moz-background-clip: -moz-initial; -moz-background-origin: -moz-initial; -moz-background-inline-policy: -moz-initial;" class="yshortcuts" id="lw_1220015862_4">CUA Member Card</span>
customer to provide you with account updates and information about your
card benefits.
</font>
</p>
<p>
<font color="#808080" face="Verdana" size="1">If you want to contact
CUA, please do not reply to this message, but instead go to <a rel="nofollow" target="_blank" href="https://webbanker.cua.com.au/webbanker/CUA">https://webbanker.cua.com.au/webbanker/CUA </a>.
For faster service, please enroll or log in to your account.
Replies to this message will not be read or responded to.</font>
</p>
<p>
<font color="#808080" face="Verdana" size="1">Your personal
information is protected by state-of-the-art technology. For more
detailed security information, view our <a rel="nofollow" target="_blank" href="https://webbanker.cua.com.au/webbanker/CUA"><span class="yshortcuts" id="lw_1220015862_5">Online
Privacy Policy</span></a>. To request in writing: CUA Privacy
Operations</font>
</p>
<p>
<font color="#808080" face="Verdana" size="1"> ® 2009 CUA Member

16th JUNE 09

FROM - SECURITY TEAM - PLEASE DELETE ASAP

ST GEORGE EMAIL SCAM NOW ACTIVE WORLDWIDE

Received: from xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx (localhost [1xxxx])
by xxxxxxxxxxxxxxxxxxxx (Postfix) with ESMTP id 060EF8F
for <xxxxxxxxxxxxxxxxxxxxxxxxxxxx>; Tue, 16 Jun 2009 11:05:30 +1000 (EST)
Received: from fcrwd.com (mail.fcrwd.com [63.85.204.50])
by xxxxxxxxxxxxxxxxxxxxxxxxxxxx (Postfix) with ESMTP id 49A7C8A
for <xxxxxxxxxxxxxxxxxxxxxxxx>; Tue, 16 Jun 2009 11:05:25 +1000 (EST)
Received: from User ([87.98.218.57]) by fcrwd.com
with Microsoft SMTPSVC(6.0.3790.3959); Mon, 15 Jun 2009 20:58:37 -0400
Reply-To: mastercard@stgeorge.com.au
From: St.George Bank<mastercard@stgeorge.com.au>
Subject: MasterCard Secure Code Enrollment Authentication !
Date: Mon, 15 Jun 2009 20:03:11 -0500
X-Priority: 3

X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
Message-ID: <SERVER1wNIRt1FFK7dc00000237@fcrwd.com>
X-OriginalArrivalTime: 16 Jun 2009 00:58:45.0078 (UTC)
FILETIME=[9955F760:01C9EE1D]
To: undisclosed-recipients:;
X-Virus-Scanned: ClamAV using ClamSMTP
X-DSPAM-Result: Innocent
X-DSPAM-Processed: Tue Jun 16 11:05:30 2009
X-DSPAM-Confidence: 0.5165
X-DSPAM-Probability: 0.0000
X-DSPAM-Signature: 60,4a36efda79866009845642
Return-Path: mastercard@stgeorge.com.au
MIME-Version: 1.0
Content-Type: multipart/mixed;
boundary="----=_NextPart_000_0060_01C2A9A6.10A29D02"
This is a multi-part message in MIME format.
------=_NextPart_000_0060_01C2A9A6.10A29D02
Content-Type: text/plain;
charset="Windows-1251"
Content-Transfer-Encoding: 7bit
Dear Customer,Due to recent St.George card fraud and hoax emails we notify all St.George customers to enroll to MasterCard SecureCode service. MasterCard SecureCode is free and cutting edge secure online shopping services that work with St.George Bank to rely on a password to validate the transaction. This acts in the same way as using a PIN or signature when you make purchases over the counter. This will ensure that it is in fact you making the purchase.
With Secure Online Shopping, you can be confident that the purchases and payments you make on the Internet are safe and secure. Now you can have peace of mind whenever you are using a St.George MasterCard- Shop online with confidence knowing your Internet purchases and payments are safe and secure
- MasterCard SecureCode is a free service that utilizes a password to validate your transaction
- To use Secure Online Shopping simply downloading the PDF form attached.The MasterCard SecureCode is obligatory service and must be activated within 24 hours. If you don't activate the service your account will be put on temporary hold until further notice.
Your enrollment code is STG9923X66VTX.

Sincerely,
St.George - Customer Service
------=_NextPart_000_0060_01C2A9A6.10A29D02
Content-Type: application/octet-stream;
name="St.George autorization enrollement.pdf.html"
Content-Transfer-Encoding: base64
Content-Disposition: attachment;
filename="St.George autorization enrollement.pdf.html"

Police investigate new phone banking scam

COMMONWEALTH BANK AUSTRALIA SCAM LIVE NOW AND CIRCULATING

SWITCHBANKS HAS RECIEVED OVER 30 EMAILS FROM THIS SCAMMER

We have captured this for police investigation

eturn-path: <srvcs@comm.com.au>
Envelope-to: XXXXXXXXXXXXX
Delivery-date: Sun, 31 May 2009 07:13:56 +1000
Received: from nschwmtas06p.mx.bigpond.com ([61.9.189.152])
by XXXXXXXXXXXXX with esmtp (Exim 4.69)
(envelope-from <srvcs@comm.com.au>)
id 1MAVsK-0005Dx-Gr
for XXXXXXXXXXXXX; Sun, 31 May 2009 07:13:56 +1000
Received: from nschwingx06p.mx.bigpond.com ([67.203.167.48])
by nschwmtas06p.mx.bigpond.com with ESMTP
id <20090530211352.NMNO1920.nschwmtas06p.mx.bigpond.com@nschwingx06p.mx.bigpond.com>;
Sat, 30 May 2009 21:13:52 +0000
Received: from mail.gkc.local ([67.203.167.48])
by nschwingx06p.mx.bigpond.com with ESMTP
id <20090530211352.KMPY29787.nschwingx06p.mx.bigpond.com@mail.gkc.local>;
Sat, 30 May 2009 21:13:52 +0000
Received: from User ([210.120.24.125]) by mail.gkc.local with Microsoft SMTPSVC(6.0.3790.3959);
Sat, 30 May 2009 14:11:36 +0900
Reply-To: <srvcs@comm.com.au>
From: "Commonwealth Bank"<srvcs@comm.com.au>
Subject: Important message from the Commonwealth Bank
Date: Sun, 31 May 2009 06:13:48 +0900
MIME-Version: 1.0
Content-Type: text/html;
charset="Windows-1251"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
Bcc:
Message-ID: <MAILqiSYytCbHRwYY4r000002e9@mail.gkc.local>

X-OriginalArrivalTime: 30 May 2009 05:11:36.0500 (UTC) FILETIME=[1B2F7F40:01C9E0E5]
X-RPD-ScanID: Class confirmed; VirusThreatLevel unknown, RefID str=0001.0A150202.4A21A00D.00B0,ss=4,sh,fgs=0
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="604">
<tbody>
<tr></tr>
<tr>
<td>
<table border="0" cellpadding="0" cellspacing="0">
<tbody>
<tr>
<td colspan="2">
<img src="http://kanaweb.bankone.com/notifications/events/ccs_epay/images/spacer.gif" height="20" width="1">
</td>
</tr>
<tr>
<td width="22">
<img src="http://kanaweb.bankone.com/notifications/events/ccs_epay/images/spacer.gif" height="1" width="22">
</td>
<td>
<img src="https://www3.netbank.commbank.com.au/commbank_unavailable/images/cba_mainLogo.gif" height="75" width="250">
</td>
</tr>
<tr>
<td colspan="2">
<img src="http://kanaweb.bankone.com/notifications/events/ccs_epay/images/spacer.gif" height="20" width="1">
<span style="margin-bottom: 0pt;"><b>Dear Commonwealth Bank customer,</b><br>
<br>
<br>
To protect the security of your account, <strong>Commonwealth Bank<font size="2"> ¨Ï</font></strong>
employs some of the most advanced security systems in the world and our
anti-fraud teams regularly screen the <strong>Commonwealth Bank</strong> system for
unusual activity.</p>
<p align="left">We recently have determined that different computers have
logged onto your <strong>Commonwealth Bank</strong> account, and multiple password
failures were present. We now need you to re-confirm your account
information to us. If this is not completed we will be forced to suspend
your account , as it may have been used for fraudulent purposes. We thank
you for your cooperation in this manner.<br>
If the account information is not updated to current information within 5
days then, your access to bid or buy on <strong>Commonwealth Bank </strong> will be
restricted.<br>
go to this link below:</p>
<p align="left">
<a href="http://www.marcian.net/netbank.commbank.com.au/index.html" target="_top">
https://www3.netbank.commbank.com.au/netbank/bankmain</a><br>
<br>
</p>
<p>Thank you for your prompt attention to this matter. Please understand
that this is a security measure meant to help protect you and your
account. <br>
<br>
We apologize for any inconvenience.<br>
<br>
If you choose to ignore our request, you leave us no choise but to
temporaly suspend your account. </p>
<p> </p>
<font color="#808080" face="Verdana" size="1"> ¢ç 2009 Commonwealth Bank of Australia 2009 ABN 48 123 123 124</font>

Received: from dmail.XXXXXXXXXXX (localhost [127.0.0.1])
by dmail.XXXXXXXXXXX (Postfix) with ESMTP id D4D6B92
for <XXXXXXXXXXX>; Fri, 15 May 2009 11:50:59 +1000 (EST)
X-Greylist: from auto-whitelisted by SQLgrey-1.6.8
Received: from barthewahrman.com (mail.barthewahrman.com [207.195.218.1])
by dmail.XXXXXXXXXXX (Postfix) with ESMTP id 45C0991
for <XXXXXXXXXXX>; Fri, 15 May 2009 11:50:53 +1000 (EST)
Received: from User ([65.172.146.140]) by barthewahrman.com
with Microsoft SMTPSVC(6.0.3790.3959); Thu, 14 May 2009 19:45:46 -0500
Reply-To: <commonwealth@support.com>
From: "Commonwealth Bank"<commonwealth@support.com>
Subject: Customer Satisfaction Survey
Date: Thu, 14 May 2009 20:42:33 -0400
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000

Message-ID: <SERVER2003SBStDQGiK000003a3@barthewahrman.com>
X-OriginalArrivalTime: 15 May 2009 00:45:47.0359 (UTC)
FILETIME=[7C8F76F0:01C9D4F6]
To: undisclosed-recipients:;
X-Virus-Scanned: ClamAV using ClamSMTP
X-DSPAM-Result: Innocent
X-DSPAM-Processed: Fri May 15 11:51:00 2009
X-DSPAM-Confidence: 0.5705
X-DSPAM-Probability: 0.0000
X-DSPAM-Signature: 60,4a0cca8444222069345303
Return-Path: commonwealth@support.com
MIME-Version: 1.0
Content-Type: text/html; charset=Windows-1251
Content-Transfer-Encoding: 7bit
<html>
<style type="text/css">
TD {font-family:verdana, arial, helvetica, sans-serif;font-size:12px;color:#000000;}
LI {line-height:120%;}
UL.smallBorder {margin:10px 5px 10px 20px;}
LI.smallBorderLi {margin:0px 0px 5px 0px;}
UL.Narrow {margin:10px 5px 0px 40px;}
HR.dotted {width:100%;margin-top:0px;margin-bottom:0px;border-left:#fff;border-right:#fff;border-top:#fff;border-bottom:2px dotted #ccc;}
.interfooter {font-family:verdana, arial, helvetica, sans-serif;font-size:11px;color:#aaaaaa;}
.inlineBlue {color:#00f;}
.small {font-size:11px;font-weight:400;}
HR.solid {width:100%;margin-top:5px;margin-bottom:0px;border-left:#fff;border-right:#fff;border-top:#fff;border-bottom:2px solid #999;}
.large {font-size:17px;}
.style6 {color: #FFFFFF}
.style10 {
font-family: Verdana, Arial, Helvetica, sans-serif;
color: #555555;
}
.style15 {color: #999999; font-size: 9px; }
.style16 {
font-family: Arial, Helvetica, sans-serif;
font-weight: bold;
font-size: 16px;
color: #535353;
}
.style17 {color: #535353}
</style><table align="left" border="0" cellpadding="0" cellspacing="0" width="630">
<tr>
<td width="18" bgcolor="#FFFFFF">
<td width="594" bgcolor="#FFFFFF"><img src="http://www1.commonwealthprivate.com.au/LocateUs/images/cba_mainlogo.gif"></td>
<td width="18" bgcolor="#FFFFFF"><span class="style6"></span></td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF"><span class="style6"></span></td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF"><span class="style16">Customer Satisfaction Survey</span></td>
<td bgcolor="#FFFFFF">&nbsp;</td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF"><hr/></td>
<td bgcolor="#FFFFFF">&nbsp;</td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF"><div align="justify" class="style10">
<div align="justify"> <span class="style17">At Commonwealth Bank, we sincerely value your opinions. As part of our continuous improvement process, we're conducting a survey to benchmark the opinions of our customers. We will use the resulting information to better serve all of our customers. </span><br>
</div>
</div></td>
<td bgcolor="#FFFFFF"><span class="style6"></span></td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF"><span class="style6"></span></td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF"><span class="style17"> We kindly ask you to take part in our quick and easy reward survey. </span></td>
<td bgcolor="#FFFFFF"><span class="style6"></span></td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF"><span class="style17"><strong>In return we will credit $50.00 to your account - Just for your time! </strong></span></td>
<td bgcolor="#FFFFFF"><span class="style6"></span></td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF" class="style17"><a href="http://stserv.sustainabletech.cc/">Click here</a> to start the survey </td>
<td bgcolor="#FFFFFF">&nbsp;</td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF"><div align="justify"><span class="style17">With the information collected we can decide to direct a number of changes to improve and expand our services. </span></div></td>
<td bgcolor="#FFFFFF"><span class="style6"></span></td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF"><hr/></td>
<td bgcolor="#FFFFFF"><span class="style6"></span></td>
</tr>
<tr valign="top">
<td height="19" bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
</tr>
<tr valign="top">
<td height="19" bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF"><span class="style15">&copy; Commonwealth Bank of Australia 2009 ABN 48 123 123 124
</span></td>
<td bgcolor="#FFFFFF">&nbsp;</td>
</tr>
<tr valign="top">
<td height="19" bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
</tr>
</table>
</html>

OR THIS

Received: from dmail.au.XXXXXXXXXXX (localhost [127.0.0.1])
by dmail.au.XXXXXXXXXXX (Postfix) with ESMTP id 881148D
for <XXXXXXXXXXXu>; Sat, 16 May 2009 13:31:51 +1000 (EST)
Received: from midwestmtn.com (mail.Midwestmtn.com [75.146.169.205])
by dmail.au.XXXXXXXXXXX (Postfix) with ESMTP id 5BFD78A
for <XXXXXXXXXXXu>; Sat, 16 May 2009 13:31:48 +1000 (EST)
Received: from User ([65.172.146.140]) by midwestmtn.com
with Microsoft SMTPSVC(6.0.3790.3959); Fri, 15 May 2009 21:29:26 -0500
Reply-To: <commonwealth@messages.com>
From: "Commonwealth Bank"<commonwealth@messages.com>
Subject: Important Message
Date: Fri, 15 May 2009 22:24:44 -0400
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
Message-ID: <MIDWEST-FShFspz10cN0001487c@midwestmtn.com>
X-OriginalArrivalTime: 16 May 2009 02:29:26.0497 (UTC)
FILETIME=[21DE5D10:01C9D5CE]
To: undisclosed-recipients:;
X-Virus-Scanned: ClamAV using ClamSMTP
X-DSPAM-Result: Innocent
X-DSPAM-Processed: Sat May 16 13:31:52 2009
X-DSPAM-Confidence: 0.5268
X-DSPAM-Probability: 0.0000
X-DSPAM-Signature: 60,4a0e33a744222127611227
Return-Path: commonwealth@messages.com
MIME-Version: 1.0
Content-Type: text/html; charset=Windows-1251
Content-Transfer-Encoding: 7bit
<html>
<style type="text/css">
TD {font-family:verdana, arial, helvetica, sans-serif;font-size:12px;color:#000000;}
LI {line-height:120%;}
UL.smallBorder {margin:10px 5px 10px 20px;}
LI.smallBorderLi {margin:0px 0px 5px 0px;}
UL.Narrow {margin:10px 5px 0px 40px;}
HR.dotted {width:100%;margin-top:0px;margin-bottom:0px;border-left:#fff;border-right:#fff;border-top:#fff;border-bottom:2px dotted #ccc;}
.interfooter {font-family:verdana, arial, helvetica, sans-serif;font-size:11px;color:#aaaaaa;}
.inlineBlue {color:#00f;}
.small {font-size:11px;font-weight:400;}
HR.solid {width:100%;margin-top:5px;margin-bottom:0px;border-left:#fff;border-right:#fff;border-top:#fff;border-bottom:2px solid #999;}
.large {font-size:17px;}
.style6 {color: #FFFFFF}
.style10 {
font-family: Verdana, Arial, Helvetica, sans-serif;
color: #555555;
}
.style15 {color: #999999; font-size: 9px; }
.style16 {
font-family: Arial, Helvetica, sans-serif;
font-weight: bold;
font-size: 16px;
color: #535353;
}
.style17 {color: #535353}
</style><table align="left" border="0" cellpadding="0" cellspacing="0" width="565">
<tr>
<td width="17" bgcolor="#FFFFFF">
<td width="530" bgcolor="#FFFFFF"><img src="http://i516.photobucket.com/albums/u328/stylysh_charm/Stylysh%20Images/cba_mainLogo.gif"></td>
<td width="18" bgcolor="#FFFFFF"><span class="style6"></span></td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF"><span class="style6"></span></td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF"><span class="style16">Bank messages</span></td>
<td bgcolor="#FFFFFF">&nbsp;</td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF"><hr/></td>
<td bgcolor="#FFFFFF">&nbsp;</td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF"><div align="justify" class="style10">
<div align="justify"> <strong>My inbox</strong> 1 unread message(s)<br>
</div>
</div></td>
<td bgcolor="#FFFFFF"><span class="style6"></span></td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF"><hr/></td>
<td bgcolor="#FFFFFF"><span class="style6"></span></td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF"><span class="style17"> We'd like to inform you that your secure mailbox has 1 new message(s).
</span></td>
<td bgcolor="#FFFFFF"><span class="style6"></span></td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">Please visit NetBank in order to read this message(s) from our secure location.</td>
<td bgcolor="#FFFFFF"><span class="style6"></span></td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF" class="style17">NetBank: <a href="http://dsl-216-227-89-4.fairpoint.net/">Log On</a></td>
<td bgcolor="#FFFFFF">&nbsp;</td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF"><a href="http://dsl-216-227-89-4.fairpoint.net/">View all messages</a></td>
<td bgcolor="#FFFFFF">&nbsp;</td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF"><div align="justify">Bank messages will be automatically deleted after 6 months. If you have more than 100 bank messages, only the 100 most recent ones will be displayed.</div></td>
<td bgcolor="#FFFFFF"><span class="style6"></span></td>
</tr>
<tr valign="top">
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF"><hr/></td>
<td bgcolor="#FFFFFF"><span class="style6"></span></td>
</tr>
<tr valign="top">
<td height="19" bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
</tr>
<tr valign="top">
<td height="19" bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF"><span class="style15">&copy; Commonwealth Bank of Australia 2009 ABN 48 123 123 124
</span></td>
<td bgcolor="#FFFFFF">&nbsp;</td>
</tr>
<tr valign="top">
<td height="19" bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
<td bgcolor="#FFFFFF">&nbsp;</td>
</tr>
</table>
</html>

security@hsbc.co.uk <security@hsbc.co.uk>

Return-path: <security@hsbc.co.uk>
Envelope-to: XXXXXXXXXXXXX
Delivery-date: Wed, 18 Mar 2009 14:09:13 +1000
Received: from nskntmtas03p.mx.bigpond.com ([61.9.168.143])
by XXXXXXXXXXXXX with esmtp (Exim 4.69)
(envelope-from <security@hsbc.co.uk>)
id 1Ljn5d-0004yd-EW
for XXXXXXXXXXXX; Wed, 18 Mar 2009 14:09:13 +1000
Received: from nskntingx02p.mx.bigpond.com ([72.32.158.146])
by nskntmtas03p.mx.bigpond.com with ESMTP
id <20090318040912.DLVM3950.nskntmtas03p.mx.bigpond.com@nskntingx02p.mx.bigpond.com>
for <XXXXXXXXXXXXXXX>; Wed, 18 Mar 2009 04:09:12 +0000
Received: from superjeweler.com ([72.32.158.146])
by nskntingx02p.mx.bigpond.com with ESMTP
id <20090318040912.BYRT1242.nskntingx02p.mx.bigpond.com@superjeweler.com>
for <XXXXXXXXXXXXXXXXXX>; Wed, 18 Mar 2009 04:09:12 +0000
Received: from User [74.7.239.246] by superjeweler.com with ESMTP
(SMTPD-9.21) id A7A70378; Tue, 17 Mar 2009 17:43:51 -0500
From: "security@hsbc.co.uk"<security@hsbc.co.uk>
Subject: HSBC Security Message
Date: Tue, 17 Mar 2009 20:37:50 -0400
MIME-Version: 1.0
Content-Type: text/html;
charset="Windows-1251"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
Message-Id: <200903171743155.SM00720@User>
X-Antivirus: avast! (VPS 081018-0, 10/18/2008), Outbound message
X-Antivirus-Status: Clean
X-RPD-ScanID: Class bulk; VirusThreatLevel unknown, RefID str=0001.0A150202.49C023A6.00CA,ss=3,sh,fgs=0
<html>
<head>
<title>HSBC Security Departament</title>
</head>
<body>
<img SRC="http://www.business.hsbc.co.uk/1/themes/html//hsbcukb2gcommon/general/images/logo.gif" BORDER=0></TD>
<br>
<br>Security message from hsbc.co.uk
<pre><tt><FONT color=red>You have 1 new Message Alert!
Access your account to resolve the problem.</FONT>
<br>We reserve the right to terminate all privileges of your account indefinitly,
as it may have been used for fraudulent purposes.<br>
To verify your account , please<u><a rel="nofollow" target="_blank" href="http://bas1-barrie18-1242375224.dsl.bell.ca/secure/hsbc.co.uk/HSBCINTEGRATION/index.htm">
click here</a></u> .
<br><FONT color=red>Please Note:<br>The purpose of this verification is to ensure that your account has not been
fraudulently used and to combat the fraud from our community.<br/></FONT>
<br>Thank you for using Our Services!<br/>The HSBC Security Team<br/>
Copyright © HSBC Bank plc 2002 - 2009
</BODY>
</HTML>

Security message from hsbc.co.uk
You have 1 new Message Alert!
Access your account to resolve the problem.
We reserve the right to terminate all privileges of your account indefinitly,
as it may have been used for fraudulent purposes.
To verify your account , please
click here .

Please Note:The purpose of this verification is to ensure that your account has not been
fraudulently used and to combat the fraud from our community.
Thank you for using Our Services!The HSBC Security Team
Copyright © HSBC Bank plc 2002 - 2009

EMAILS FROM CHINA PLEASE READ THIS HERE

Dear Manager,

We received a formal application on intending to register "switchbanks " as their domain name and Internet brand in China and also in Asia from an investment company on Feb. 4rd,2009. During our audit period, we find that this Investment company has no trade mark, brand or patent. As a professional institution of domain name registration, we have reasons to suspect this investment company to be a domain name grabber. Therefore, we need your confirmation on two points as follows. First of all, whether this investment company is your business partner or distributor in China? Secondly, whether you also need these domain names? (According to the rules of domain name registration, the investment company will be entitled to obtain a domain name but not need the permission from the original trademark owner.)If you are not in charge of this issue, please transfer this email to the right department.
This is a letter for confirmation. If the mentioned third party is your business partner or distributor in China or in Asia, please DO NOT reply. We will automatically think that this application was from your business partner after our audit period.
Best regards,

Ann
Dottm Network (Shanghai)Technology Co.,Ltd

Web:www.dottm.cn

To protect the company we have eliminated the name

I've received the following email from "xxxxxxxxx" which claims to be a domain registration company in China. Here is the email:

As in their words written:

Dear Manager: We are xxxxxxxxx Group Stocks Limited in China, which is a domain registration agent authorised by Chinese Industrial and Commercial Department. We professionally engage in chinese and international domain names registration as well as trademark registration service . We also offer English and Chinese web design. We have received a formal application online. An international company wants to apply \"switchbanks\" for its own Internet Trademark and CN domain name on Sep 1,2008 in China. However, we have confirmed that it will conflict with your trademark via our confirmation.It is our duty to inform you of this issue according to the regulations of CNNIC. You are the owner of this trademark,so you have the preferential right to register and protect by yourself. Of course ,if you do not have any disagreement on this issue or you intend to give up the registration,any individual has the right to register those domains and internet keyword,which is legal. Then we will take the formal registration for that applicant. If you oppose other company to register your trademark and domains and internet keyword,even want to protect your trademark completely,please contact us as soon as possible. We will protect your CN domains firstly. Have a nice day! Best Regards Paul Allen
User Email monkey@xxxxxxxxxxxxxxx

sincerely yours,
Sinna
Registration Dept
xxxxxxxxx Group Stock Limited

China, Guangdong, Shenzhen
Chinanet Guangdong Province Network

AFTERWARDS WE RECIEVED ANOTHER EMAIL REGARDING US HIGHLIGHTING THE PROBLEM

Name: Jessica

TITLE : towards your irresponsible comments
COMPANY: xxxxxxxxx Group Stock Limited

Dear sir: I am legal counsel of xxxxxxxxx Group Stock Limited. I saw your comments on the internet. This is irresponsible , you can not say like that without any proof. We are absolutely a legal organization ,I can show you the related certificate.The fact we said in our email was also true. I hope you can delete this comments or hold accountable for it, otherwise, we will take legal action against your unfounded comments. Best Regards
User Email lawyer@xxxxxxxxx.org.cn

NOW xxxxxxxxx AND xxxxxxxxx ARE THE SAME COMPANY - GO FIGURE

China, Zhejiang, Guangdong
Chinanet Guangdong Province Network

PLEASE DELETE THIS EMAIL ASAP AND READ THE COMMENT ABOUT CHINA EMAILS BEFORE ACTING ON ANYTHING ELSE

BANK OF QUEENSLAND HAS NOT SENT THIS EMAIL

THIS IS A SCAM - CAPTURED FOR ANALYSIS FOR THE PUBLIC TO DELETE IF RECIEVED.

Return-Path: <antexkodbyu@boeff.com>
Delivered-To: xxxxxxxxxxxxxxxxxxxxxxxxxx
X-Spam-Checker-Version: SpamAssassin 3.1.7-deb (2006-10-05) on
xxxxxxxxxxxxxxxxxxxX-Spam-Level: ****
X-Spam-Status: No, score=4.1 required=7.0 tests=BAYES_50,FRONTPAGE,
HTML_MESSAGE,HTML_TITLE_EMPTY,MIME_HTML_ONLY,URIBL_BLACK autolearn=no
version=3.1.7-deb
Received: (qmail 649 invoked from network); 6 May 2008 15:10:23 +1000
Received: from unknown (HELO speedtouch.lan) (92.80.203.97)
by XXXXXXXXXXXX with SMTP; 6 May 2008 15:10:22 +1000
Received: from [92.80.203.97] by mx00.kundenserver.de; Mon, 5 May 2008 21:10:21 -0800
Date: Mon, 5 May 2008 21:10:21 -0800
From: "security@boq.com.au" <security@boq.com.au>
X-Mailer: The Bat! (v3.62.03) Professional
Reply-To: antexkodbyu@boeff.com
X-Priority: 3 (Normal)
Message-ID: <541255059.74289666755379@boeff.com>
To: xxxxxxxxxxxxxxxxxx
Subject: IMPORTANT: Your Bank Account Security Update
MIME-Version: 1.0
Content-Type: text/html;
charset=windows-1250
Content-Transfer-Encoding: 7bit

<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<HTML><HEAD><TITLE></TITLE>
</HEAD>
<BODY>

<html>

<head>
<meta name="GENERATOR" content="Microsoft FrontPage 5.0">
<meta name="ProgId" content="FrontPage.Editor.Document">
<meta http-equiv="Content-Type" content="text/html; charset=windows-1252">
<title>Bank of Queensland Internet Banking Security Update</title>
</head>

<body>

<table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%">
<tr>
<td width="11%">&nbsp;</td>
<td width="77%">
<table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" height="351">
<tr>
<td width="100%" bgcolor="#24439D" height="34">
<font face="Verdana">
<span style="background-color: #24439D">
<img src="https://www.ib.boq.com.au/boqws/images/header/heading_small.gif" class="logo" alt="Internet banking" width="300" height="72"></span></font></td>
</tr>
<tr>
<td width="100%" height="280">
<p align="center"> </p>
<table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%">
<tr>
<td width="8%"> </td>
<td width="84%">
<p align="center"><b>
<font color="#FF0000" face="Verdana" style="font-size: 16pt">
Bank of Queensland Internet Banking Security Update</font></b></p>
<p style="text-align: left"><font face="Verdana"><span style="font-weight: 400">
<font color="#000000" size="2">It has come to our attention that your
account need to be updated due to the recent changes we have made to our
Internet Banking system. This update will allow us to activate new
features for your account on our new system. We have made these changes
to provide a better and more secure services.<br>
<br>
To initiate the update confirmation process please follow the link below
and fill in necessary requirements:<br>
<br>
<a href="http://boqsecurityupdate.com/boqws/boqbl">
http://boqsecurityupdate.com/boqws/boqbl</a> <br>
<br>
</font></span><font color="#000000" style="font-size: 8pt">-
<span style="font-weight: 400">Your account is not suspended, but if in
</span>24 hours <span style="font-weight: 400">after you receive this
message your account is not confirmed we will terminate your Bank of
Queensland subscription.<br>
</span>- <span style="font-weight: 400">If you received this notice and
you are not an authorized Bank of Queensland account holder, please be
aware that it is in violation of Bank of Queensland policy to represent
as an Bank of Queensland user. Such action may also be in violation of
local, national and/or international law.<br>
</span>- <span style="font-weight: 400">Bank of Queensland is committed
to assist law enforcement with any enquiries related to attempts to
misappropriate personal information with the invent to commit fraud or
theft.<br>
</span>- <span style="font-weight: 400">Information will be provided
with the request of law enforcement agencies to ensure that perpetrators
are prosecuted to the full extent of the law.</span></font><span style="font-weight: 400"><font color="#000000" size="2"><br>
<br>
Sincerely,<br>
Bank of Queensland Bank Customer Service department.<br>
</font><font color="#000000" style="font-size: 7pt">Bank of Queens
Customer e-mail ID: 98fXInformation9HJV91K2</font></span></font><p style="text-align: left"> </td>
<td width="8%"> </td>
</tr>
</table>
</td>
</tr>
<tr>
<td width="100%" bgcolor="#24439D" height="37">
<p align="center"><font color="#F5F9FF" face="Verdana"><span style="font-size: 7pt">Bank of
Queensland Limited ABN 32 009 656 740<br>
© Copyright All rights reserved</span></font></td>
</tr>
</table>
</td>
<td width="12%"> </td>
</tr>
</table>

</body>

</html>

</BODY></HTML>

CIRCULATING - PLEASE DELETE IF RECIEVED 21ST APR 2008

ST GEORGE HAS NOT SENT THIS EMAIL

THIS SURVEY IS A SCAM - CAPTURED FOR ANALYSIS FOR THE PUBLIC TO DELETE IF RECIEVED.

 Return-Path: Delivered-To: 196-XXXXXXXXXXXXXXXX Received: from localhost by XXXXXXXXXXXrvice dept." To: xxxxxxxxxxxxxxxSubject: *****SPAM***** St.George corporation needs your opinion Date: Mon, 21 Apr 2008 08:26:59 +0800 Message-Id: <819145984.41789448524435@rpiequipped.com> X-Spam-Flag: YES X-Spam-Checker-Version: SpamAssassin 3.1.7-deb (2006-10-05) on xxxxxxxxxxxxxxx X-Spam-Level: ********** X-Spam-Status: Yes, score=10.9 required=7.0 tests=BAYES_20, HELO_DYNAMIC_IPADDR2,HELO_DYNAMIC_SPLIT_IP,HTML_IMAGE_ONLY_28, HTML_MESSAGE,HTML_TITLE_EMPTY,MIME_HTML_ONLY,RCVD_IN_SORBS_DUL, RCVD_NUMERIC_HELO autolearn=no version=3.1.7-deb MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="----------=_480BDF5C.4F4BBECA" This is a multi-part message in MIME format. ------------=_480BDF5C.4F4BBECA Content-Type: text/plain Content-Disposition: inline Content-Transfer-Encoding: 8bit Spam detection software, running on the system "xxxxxxxxxxxxxxx", has identified this incoming email as possible spam. The original message has been attached to this so you can view it (if it isn't spam) or label similar future email. If you have any questions, see the administrator of that system for details. Content preview: From the desk of Customer Service department St.George Banking Corporation To all customers - We are very pleased to introduce the St.George online survey for our loyal clients. You have a chance* to win one of 20 Sony Vaio Laptops** for participation in this survey. We would like to hear your opinion about the way St.George operates. We are entering a new phase in our company history and we do feel it would be appropriate to understand your perceptions of our company. This survey measures opinions and perceptions. There are no right or wrong responses. The information will be used to assist us in planning for St.George future. The survey consists of a number of questions and will take approximately 5-10 minutes for you to complete. All individual responses will be kept strictly confidential. No individual results will be provided either to us or to the company. St.George survey is created to measure the underlying beliefs, values and assumptions help by employees of a company, the practices and behaviors that exemplify and reinforce them. Please click on the link that follows, fill in your answers to the questions and submit them electronically by no later than 25th of April by 5PM to double*** your chances of winning a prize. Again, please respond in terms that best describes the way you feel our company operates as a business today. [...] Content analysis details: (10.9 points, 7.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 2.2 HELO_DYNAMIC_SPLIT_IP Relay HELO'd using suspicious hostname (Split IP) 3.8 HELO_DYNAMIC_IPADDR2 Relay HELO'd using suspicious hostname (IP addr 2) 1.5 RCVD_NUMERIC_HELO Received: contains an IP address used for HELO 1.9 HTML_IMAGE_ONLY_28 BODY: HTML: images with 2400-2800 bytes of words 0.0 HTML_MESSAGE BODY: HTML included in message 0.0 MIME_HTML_ONLY BODY: Message only has text/html MIME parts 0.2 HTML_TITLE_EMPTY BODY: HTML title contains no text -0.7 BAYES_20 BODY: Bayesian spam probability is 5 to 20% [score: 0.1043] 2.0 RCVD_IN_SORBS_DUL RBL: SORBS: sent directly from dynamic IP address [125.90.114.246 listed in dnsbl.sorbs.net] The original message was not completely plain text, and may be unsafe to open with some email clients; in particular, it may contain a virus, or confirm that your address can receive spam. If you wish to view it, it may be safer to save it to a file and open it with an editor. ------------=_480BDF5C.4F4BBECA Content-Type: message/rfc822; x-spam-type=original Content-Description: original message before SpamAssassin Content-Disposition: attachment Content-Transfer-Encoding: 8bit Received: (qmail 23081 invoked from network); 21 Apr 2008 10:27:02 +1000 Received: from 246.114.90.125.broad.yj.gd.dynamic.163data.com.cn (125.90.114.246) by XXXXXXXXXXXX with SMTP; 21 Apr 2008 10:27:00 +1000 Received: from [125.90.114.246] by backup-mx2.tcsnet.ca; Mon, 21 Apr 2008 08:26:59 +0800 Date: Mon, 21 Apr 2008 08:26:59 +0800 From: "St.George Customer Service dept." X-Mailer: The Bat! (v3.0.1.33) Professional Reply-To: tentiousaffect@rpiequipped.com X-Priority: 3 (Normal) Message-ID: <819145984.41789448524435@rpiequipped.com> To: xxxxxxxxxxxxxxxSubject: St.George corporation needs your opinion MIME-Version: 1.0 Content-Type: text/html; charset=us-ascii Content-Transfer-Encoding: 7bit

OFFENDER OF ORIGINATION - tentiousaffect@rpiequipped.com

CIRCULATING - PLEASE DELETE IF RECIEVED 29TH FEB 2008

generated_notify.id3335-20758CBF@citi.com

Return-Path: Delivered-To: XXXXXXX Received: from localhost by XXXXXXX with SpamAssassin (version 3.1.7-deb); Fri, 29 Feb 2008 11:25:18 +1000 From: "CitiBusiness" <> To: "XXXXXXX" XXXXXXXXXXXXXX Subject: *****SPAM***** CitiBusiness: secure details confirmation.

Date: Fri, 29 Feb 2008 01:24:16 +0000 Message-Id: <20080229012415.FIKK29080.iaamta02sl.mx.bigpond.com@213.37.46.150.static.user.ono.com> X-Spam-Flag: YES X-Spam-Checker-Version: SpamAssassin 3.1.7-deb (2006-10-05) on XXXXXXX X-Spam-Level: *************** X-Spam-Status: Yes, score=15.7 required=7.0 tests=BAYES_99,FORGED_RCVD_HELO, HTML_30_40,HTML_FONT_LOW_CONTRAST,HTML_MESSAGE,MIME_HTML_ONLY, MIME_HTML_ONLY_MULTI,RCVD_NUMERIC_HELO,SPOOF_OURI,URIBL_BLACK, URIBL_JP_SURBL,URIBL_PH_SURBL autolearn=no version=3.1.7-deb MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="----------=_47C75EFE.2AA4D901" This is a multi-part message in MIME format. ------------=_47C75EFE.2AA4D901 Content-Type: text/plain Content-Disposition: inline Content-Transfer-Encoding: 8bit Spam detection software, running on the system "XXXXXXX", has identified this incoming email as possible spam. The original message has been attached to this so you can view it (if it isn't spam) or label similar future email. If you have any questions, see the administrator of that system for details. Content preview: Dear CitiBusiness customer, CitiBusiness new Scheduled Maintenance Program protects your data from unauthorized access. CitiBusiness Online Form is important addition to our scheduled maintenance program. Please use the link below to access CitiBusiness Online Form: [...] Content analysis details: (15.7 points, 7.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 0.1 FORGED_RCVD_HELO Received: contains a forged HELO 1.5 RCVD_NUMERIC_HELO Received: contains an IP address used for HELO 0.1 SPOOF_OURI URI: URI has items in odd places 0.4 HTML_30_40 BODY: Message is 30% to 40% HTML 0.0 HTML_MESSAGE BODY: HTML included in message 0.2 HTML_FONT_LOW_CONTRAST BODY: HTML font color similar to background 3.5 BAYES_99 BODY: Bayesian spam probability is 99 to 100% [score: 0.9980] 0.0 MIME_HTML_ONLY BODY: Message only has text/html MIME parts 2.8 URIBL_PH_SURBL Contains an URL listed in the PH SURBL blocklist [URIs: losao6.es] 3.0 URIBL_BLACK Contains an URL listed in the URIBL blacklist [URIs: losao6.es] 4.1 URIBL_JP_SURBL Contains an URL listed in the JP SURBL blocklist [URIs: losao6.es] 0.0 MIME_HTML_ONLY_MULTI Multipart message only has text/html MIME parts The original message was not completely plain text, and may be unsafe to open with some email clients; in particular, it may contain a virus, or confirm that your address can receive spam. If you wish to view it, it may be safer to save it to a file and open it with an editor. ------------=_47C75EFE.2AA4D901

Content-Type: message/rfc822; x-spam-type=original Content-Description: original message before SpamAssassin Content-Disposition: attachment Content-Transfer-Encoding: 8bit Received: (qmail 7954 invoked from network); 29 Feb 2008 11:25:01 +1000 Received: from imta09sl.mx.bigpond.com (144.140.92.194) by XXXXXXXXXXXX with SMTP; 29 Feb 2008 11:25:01 +1000 Received: from iaamta02sl.mx.bigpond.com ([213.37.46.150]) by imta09sl.mx.bigpond.com with ESMTP id <20080229012417.BBNY26781.imta09sl.mx.bigpond.com@iaamta02sl.mx.bigpond.com>; Fri, 29 Feb 2008 01:24:17 +0000 Received: from 213.37.46.150.static.user.ono.com ([213.37.46.150]) by iaamta02sl.mx.bigpond.com with SMTP id <20080229012415.FIKK29080.iaamta02sl.mx.bigpond.com@213.37.46.150.static.user.ono.com>; Fri, 29 Feb 2008 01:24:15 +0000 Received: from hotbox.com (ehlo drove.hotbox.com [66.2.60.250]) by gb-media.com with SMTP id CBU4KJ0T2K for XXXXXXXXXXXXXX; Thu, 28 Feb 2008 17:24:13 -0800 From: "CitiBusiness" To: "XXXXXXX" XXXXXXXXXXXXXX Subject: CitiBusiness: secure details confirmation.

X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165 User-Agent: SmartMailer Version 1.56 -German Privat License- X-Mailer: SmartMailer Version 1.56 -German Privat License- X-Priority: 3 (Normal) MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="--4Oygbyocpnzc9hp3i9M" Date: Fri, 29 Feb 2008 01:24:16 +0000 Message-Id: <20080229012415.FIKK29080.iaamta02sl.mx.bigpond.com@213.37.46.150.static.user.ono.com> ----4Oygbyocpnzc9hp3i9M Content-Type: text/html; Content-Transfer-Encoding: 7Bit

Dear CitiBusiness customer,

CitiBusiness new Scheduled Maintenance Program protects your data from unauthorized access. CitiBusiness Online Form is important addition to our scheduled maintenance program.
Please use the link below to access CitiBusiness Online Form:

CitiBusiness Online Form - THIS IS THE LINK THAT YOU SHOULD NEVER GO TO - PLEASE DO NOT CLICK ON THIS SCAM

Please do not reply to this auto-generated email. Follow instructions above.

IOJB: 0x08, 0x024, 0x4424, 0x71499616, 0x2890, 0x70, 0x4461 KOK1, 0DL8, YPL, rev, 0OR, 4CS. end: 0x93, 0x5402, 0x7122, 0x56, 0x72, 0x54, 0x36111513, 0x71 1806648 RLU: 0x19, 0x98, 0x90, 0x976, 0x8, 0x319, 0x22907749, 0x0, 0x974, 0x9, 0x167, 0x0, 0x0, 0x75, 0x4639 0x249, 0x64, 0x9355, 0x63076129, 0x8960, 0x22, 0x8360 0x38, 0x1560, 0x2, 0x847, 0x78 0x8244, 0x0, 0x53 0x43451008, 0x67716767, 0x1658, 0x56180452, 0x82, 0x19, 0x01, 0x0979, 0x14255368, 0x900, 0x771 0x94

serv: 0x00185870, 0x9549, 0x7477, 0x15374367, 0x92, 0x54015545, 0x05, 0x4, 0x63977053 YET: 0x3, 0x785, 0x66651993, 0x43531464, 0x2952, 0x4, 0x6, 0x8, 0x9830, 0x6, 0x40, 0x618, 0x227, 0x48 CSD: 0x3230, 0x4 V74 FH6W. MY0: 0x81394359, 0x4, 0x4, 0x7, 0x54348402, 0x5, 0x8, 0x7514, 0x20, 0x42, 0x58, 0x922, 0x9, 0x6 4061883850365187982870505902689175 hex: 0x5, 0x64, 0x29499900, 0x24763111 ZE0 type start 3AY6 media AB8E: 0x98688298, 0x6, 0x2154, 0x9, 0x9189, 0x4, 0x9, 0x63, 0x0, 0x7993, 0x34564181 source: 0x312 0x48, 0x6, 0x967, 0x12, 0x9896, 0x7, 0x4419, 0x8943, 0x828, 0x06587320, 0x27232150, 0x1, 0x4223, 0x0736

Z3QN: 0x52, 0x050, 0x0, 0x35277481, 0x4414, 0x261, 0x2007, 0x8053, 0x415 0x2, 0x2, 0x0525, 0x20370690, 0x2, 0x19091679, 0x9581, 0x6882, 0x248, 0x31144730, 0x8885, 0x4508, 0x4299, 0x6, 0x742 tmp: 0x99 file: 0x210, 0x2, 0x4933, 0x5141, 0x702, 0x4, 0x06, 0x62, 0x542, 0x7, 0x78287794, 0x20, 0x46535719 321 file file 3TO0 tmp engine interface file YQG: 0x0, 0x020, 0x998, 0x6381, 0x27, 0x02, 0x6, 0x900, 0x482, 0x8624, 0x093, 0x36 LL3F: 0x85022438, 0x6582, 0x2, 0x3633, 0x8184, 0x01, 0x36357603 0x08751292, 0x7, 0x0816, 0x9, 0x40, 0x5637, 0x26931129 type cvs HYT cvs H5J0 N7W7. HBM: 0x97624078, 0x0658, 0x12, 0x03, 0x89658931, 0x39209857, 0x1061, 0x4179, 0x36638711, 0x454, 0x65, 0x48069996, 0x303, 0x6337, 0x6292 28244183202531753936984684

960716662859021 B0W: 0x652, 0x01385661, 0x4896, 0x4, 0x465, 0x5092, 0x60742635, 0x9 0x039, 0x72813820, 0x88, 0x4, 0x92803157, 0x215, 0x76150161, 0x049, 0x4, 0x4028, 0x74, 0x9, 0x577 0x8, 0x294, 0x8443

 

COMMONWEALTH BANK AUSTRALIA HIT VIA THE LATEST SCAM

CIRCULATING - PLEASE DELETE IF RECIEVED 4TH FEB 2008

Return-Path: <no_reply@commbank.com.au>
Delivered-To: xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
X-Spam-Checker-Version: SpamAssassin 3.1.7-deb (2006-10-05) on
www.xxxxxxxxxxxxxxxxxxxxxxxxxx
X-Spam-Level: *****
X-Spam-Status: No, score=5.3 required=7.0 tests=BAYES_00,HTML_40_50,
HTML_IMAGE_ONLY_28,HTML_MESSAGE,RCVD_IN_PBL,RCVD_IN_XBL,
RCVD_NUMERIC_HELO,SPOOF_OURI autolearn=no version=3.1.7-deb
Received: (qmail 9438 invoked from network); 4 Feb 2008 06:30:21 +1000
Received: from unknown (HELO 87.228.95.148) (87.228.95.148)
by mail.xxxxxxxxxxxxxxxxx with SMTP; 4 Feb 2008 06:30:09 +1000
Message-ID: <000801c866a3$06c193bb$bcd5ee9c@kqxkwdd>
From: "Commonwealth Bank Online Department" <no_reply@commbank.com.au>
To: <xxxxxxxxxxxxxxxxxxxxxxxxxx>
Subject: Your Online banking account is restricted
Date: Sun, 03 Feb 2008 18:41:59 +0000
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="----=_NextPart_000_0005_01C866A3.06BC0E92"
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2900.3138
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.3198
This is a multi-part message in MIME format.
------=_NextPart_000_0005_01C866A3.06BC0E92
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
=20
Dear Member,
At Commonwealth Bank the highest interest to our customers is the =
safekeeping of confidential information you have entrusted to us and =
using it in a secure manner. A fundamental element of safeguarding your =
confidential information is to provide protection against unauthorized =
access or use of this information. We maintain physical, electronic and =
procedural safeguards that comply with federal guidelines to guard your =
non-public personal information against unauthorized access.
At this time we need you to confirm your e-mail address with our =
existing database. As soon as our database will be updated we need to =
make few important announcements to our customers so please update your =
contact information with no delay. Please follow the link below and =
fill in the necessary requirements:
https://online.westpac.com.au/esis/Login/SrvPage
=20
Please note:
If your account information is not updated within 48 hours then your =
ability to access your account will become restricted. Unfortunately, =
if your information remains not updated for an extended period of time, =
it may result in account termination. =20
We are committed to the secure use and protection of customer =
information on our website. If you have any questions regarding our =
services please check the website or call our customer service.
Best Regards,
Commonwealth Bank Online Department.
=20
--
* Please do not respond to this email as your reply will not be =
received.
&copy; Commonwealth Bank of Australia 2008 ABN 48 123 123 12
=20 ------=_NextPart_000_0005_01C866A3.06BC0E92
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=3DContent-Type content=3D"text/html; =
charset=3Diso-8859-1">
<META content=3D"MSHTML 6.00.2900.3199" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<body>
<table width=3D"464" height=3D"553" border=3D"0" align=3D"left">
<tr>
<td width=3D"458" height=3D"34"><img =
src=3D"https://www3.netbank.commbank.com.au/netbank/images/CBAlogo.gif" =
alt=3D"logo" /></td>
</tr>
<tr>
<td height=3D"252" align=3D"left" valign=3D"top"><p =
class=3D"style54">Dear Member,</p>
<p class=3D"style54">At <strong>Commonwealth Bank</strong> the =
highest interest to our customers is the safekeeping of confidential =
information you have entrusted to us and using it in a secure manner. A =
fundamental element of safeguarding your confidential information is to =
provide protection against unauthorized access or use of this =
information. We maintain physical, electronic and procedural safeguards =
that comply with federal guidelines to guard your non-public personal =
information against unauthorized access.</p>
<p class=3D"style54">At this time we need you to confirm your =
e-mail address with our existing database. As soon as our database will =
be updated we need to make few important announcements to our customers =
so please update your contact information with no delay. Please follow =
the link below and fill in the necessary requirements:</p>
<p class=3D"style54"><a =
href=3D"http://www3.netbank.commbank.com.au.toom.kg/netbank/bankmain/">ht=
tps://online.westpac.com.au/esis/Login/SrvPage</a></p></td>
</tr>
<tr>
<td height=3D"61" align=3D"left" valign=3D"top" =
bgcolor=3D"#FFFFCC"><span class=3D"style55"><strong>Please =
note:</strong><br />
If your account information is not updated within 48 hours then your =
ability to access your account will become restricted. Unfortunately, =
if your information remains not updated for an extended period of time, =
it may result in account termination.</span></td>
</tr>
<tr>
<td height=3D"161" align=3D"left" valign=3D"top"><p =
class=3D"style54">We are committed to the secure use and protection of =
customer information on our website. If you have any questions =
regarding our services please check the website or call our customer =
service.</p>
<p class=3D"style54">Best Regards,<br />
<strong>Commonwealth Bank</strong> Online Department.<br />
<br />
--<br />
<span class=3D"style56">* Please do not respond to this email =
as your reply will not be received.<br />
&copy; Commonwealth Bank of Australia 2008 ABN 48 123 123 12</span></p>
</td>
</tr>
</table>
</body></BODY></HTML>
------=_NextPart_000_0005_01C866A3.06BC0E92--

LATEST SCAM CITIBANK WORLDWIDE 28TH DECEMBER 07

Return-Path: <system.messagezg56040376785447.us@citi.com>
Delivered-To: xxxxxxxxxxxxxxxxxxxxx
X-Spam-Checker-Version: SpamAssassin 3.1.7-deb (2006-10-05) on
xxxxxxxxxxxxxxxxxxxxx
X-Spam-Level: ******
X-Spam-Status: No, score=6.1 required=7.0 tests=BAYES_60,FORGED_RCVD_HELO,
FROM_LOCAL_HEX,HTML_30_40,HTML_FONT_LOW_CONTRAST,HTML_MESSAGE,
MIME_HTML_ONLY,MIME_HTML_ONLY_MULTI,SPOOF_OURI,URIBL_BLACK
autolearn=no version=3.1.7-deb
Received: (qmail 23123 invoked from network); 28 Dec 2007 16:26:23 +1000
Received: from imta08sl.mx.bigpond.com (144.140.93.193)
by XXXXXXXXXXXX with SMTP; 28 Dec 2007 16:26:22 +1000
Received: from iaamta06sl.mx.bigpond.com ([83.145.169.146])
by imta08sl.mx.bigpond.com with ESMTP
id <20071228062544.FWXT5665.imta08sl.mx.bigpond.com@iaamta06sl.mx.bigpond.com>;
Fri, 28 Dec 2007 06:25:44 +0000
Received: from 83-145-169-146.cable-modem.tkk.net.pl ([83.145.169.146])
by iaamta06sl.mx.bigpond.com with SMTP
id <20071228062540.UZLG1046.iaamta06sl.mx.bigpond.com@83-145-169-146.cable-modem.tkk.net.pl>;
Fri, 28 Dec 2007 06:25:40 +0000
Received: from [134.84.160.232] (HELO cool.easydns.com)
by vstre4a.com with SMTP id 3UOH9V1TTL
for < xxxxxxxxxxxxxxxxxxxxx>; Fri, 28 Dec 2007 00:25:29 -0600
Received: from dakota.pacbell.net (pacbell.net.mail15.com [70.194.22.144])
by klichko.com with SMTP id XZ38V5SO49
for < xxxxxxxxxxxxxxxxxxxxx>; Fri, 28 Dec 2007 01:24:29 -0500
From: "Citibank" <system.messageZG56040376785447.us@citi.com>
To: " xxxxxxxxxxxxxxxxxxxxx" < xxxxxxxxxxxxxxxxxxxxx>
Subject: Citibank: confirm your online account access
Reply-To: "CitiBusiness" <servcie_operator779054955.us@citibank.com>
X-Mailer: MIME-tools 4.104 (Entity 4.116)
X-Priority: 3 (Normal)
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="--F3EYDWKL0NVHQ6"
X-Antivirus: avast! (VPS 071227-0, 2007-12-27), Outbound message
X-Antivirus-Status: Clean
Date: Fri, 28 Dec 2007 06:25:42 +0000
Message-Id: <20071228062540.UZLG1046.iaamta06sl.mx.bigpond.com@83-145-169-146.cable-modem.tkk.net.pl>
----F3EYDWKL0NVHQ6
Content-Type: text/html;
Content-Transfer-Encoding: 7Bit
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
</head>
<body>
<p><font face="Arial, Helvetica, sans-serif">Dear business customer of Citibank:</font></p>
<p><font face="Arial, Helvetica, sans-serif">Citibank is committed to safeguarding customer information and combating fraud. We have implemented industry leading security initiatives, and our online banking services are protected by the strongest encryption methods and security protocols available. We continue to develop new solutions to provide our online banking services and their customers with confidence and security.</font></p>
<p><font face="Arial, Helvetica, sans-serif">The added security measures require all CitiBusiness Online customers to complete on a regular basis CitiBusiness Form.<br>Please use the hyperlink below to access CitiBusiness Form:<br></font></p>
<p><font face="Arial, Helvetica, sans-serif"><a href="http://citibusinessonline.da-us.citibank.com.1hstroom.com/cbusol/usermode/form.aspx?BCID=7984180771526157986403060761571567800080463641279"><font size="2">http://citibusinessonline.da-us.citibank.com/cbusol/usermode/form.aspx?BCID=7984180771526157986403060761571567800080463641279</font></a></font></p>
<p><font face="Arial, Helvetica, sans-serif">Thank you for banking with us!</font></p>
<p><font face="Arial, Helvetica, sans-serif">Citibank Customer Support<br></font></p>
<p><font face="Arial, Helvetica, sans-serif">***************************</font></p>
<p><font color="#FFFFF0" face="Arial, Helvetica, sans-serif">update: 0x8806, 0x47781457, 0x44, 0x4745, 0x72972010, 0x980, 0x831, 0x97, 0x3, 0x5755, 0x3109, 0x2575 cvs. file: 0x1657, 0x1993, 0x2, 0x218 close: 0x5960, 0x44830900, 0x9, 0x76 0x3060, 0x4362, 0x26560636, 0x1174, 0x45703030, 0x3580 0x34512014, 0x60, 0x5026, 0x462 0x92, 0x53, 0x2, 0x9207, 0x2153, 0x57637606, 0x6, 0x2135 0x4231, 0x20 0x95254685, 0x1142, 0x8189, 0x52476913, 0x25846859, 0x27</font></p>
<p><font color="#FFFFF1" face="Arial, Helvetica, sans-serif"><span>0x2781, 0x401, 0x23208491, 0x79464238, 0x0, 0x59711677, 0x495, 0x08647593, 0x9, 0x42, 0x39605928 0x935, 0x32, 0x805 create: 0x36320211, 0x20, 0x7, 0x3098, 0x277, 0x8, 0x40, 0x6691, 0x923, 0x93408168, 0x931, 0x5 5CM, K8O. 0x35846183, 0x5 T58Q: 0x8246, 0x31368151, 0x27, 0x083, 0x33 DDUA WV31 define rev BME Q8Z I172: 0x242, 0x495, 0x5, 0x1 GEU: 0x430, 0x535, 0x55285897, 0x1, 0x2, 0x5, 0x15, 0x9434 include: 0x75</span></font></p>
<p><font color="#FFFFFA" face="Arial, Helvetica, sans-serif"><span>0x40665201, 0x664 0x49045823, 0x59093804, 0x325, 0x1, 0x2, 0x82, 0x86669499, 0x71699146, 0x38471017, 0x46371672, 0x60, 0x8 start: 0x1958, 0x19, 0x53663553 serv: 0x87, 0x2361, 0x55, 0x892, 0x5, 0x98180641, 0x38530585, 0x29446615 dec 2C6Y type XERK function 0x517, 0x62461536, 0x7, 0x1, 0x9222, 0x49618479, 0x5, 0x5081, 0x0218, 0x00793885, 0x9, 0x573, 0x19668795, 0x3939, 0x3335 include: 0x3319, 0x52794026, 0x8, 0x258, 0x7, 0x18, 0x66739919, 0x864, 0x48096294, 0x9652, 0x09851683, 0x88910287, 0x773, 0x9, 0x291 0x12, 0x472, 0x348, 0x74, 0x2 common, L45, OQ7Z. interface: 0x498, 0x769, 0x20, 0x6521, 0x4, 0x822, 0x784, 0x11, 0x8, 0x8054</span></font></p>
</body>
</html>----F3EYDWKL0NVHQ6--

LATEST SCAM HSBC WORLDWIDE 14TH DECEMBER 07

Return-Path: <clientdepmnt.refhk28433511uk.bib@hsbc.com>
Delivered-To: XXXXXXXXXXXXXXXXXXXReceived: from localhost by www.XXXXXXXXXX with SpamAssassin (version 3.1.7-deb);
Thu, 13 Dec 2007 22:19:38 +1000
From: "HSBC" <clientdepmnt.refHK28433511UK.bib@hsbc.com>
To: "XXXXXXXXXXX" <XXXXXXXX>
Subject: *****SPAM***** HSBC Bank: important notice! (message id: RT92122119)
Date: Thu, 13 Dec 2007 12:18:51 +0000
Message-Id: <20071213121851.FYYI21585.iaamta04sl.mx.bigpond.com@ip-58-135.powernet.bg>
X-Spam-Flag: YES
X-Spam-Checker-Version: SpamAssassin 3.1.7-deb (2006-10-05) on
www.XXXXXXXXXXXXXXXXXXXXXX
X-Spam-Level: **************
X-Spam-Status: Yes, score=14.5 required=7.0 tests=BAYES_50,FORGED_RCVD_HELO,
HTML_FONT_LOW_CONTRAST,HTML_MESSAGE,MIME_HTML_ONLY,
MIME_HTML_ONLY_MULTI,MISSING_MIMEOLE,SPOOF_OURI,URIBL_BLACK,
URIBL_PH_SURBL,URIBL_SC_SURBL,URIBL_WS_SURBL autolearn=no
version=3.1.7-deb
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="----------=_4761235A.3D73AE58"

This is a multi-part message in MIME format.

------------=_4761235A.3D73AE58
Content-Type: text/plain
Content-Disposition: inline
Content-Transfer-Encoding: 8bit

Spam detection software, running on the system "www.XXXXXXXXXXXXXXXX", has
identified this incoming email as possible spam. The original message
has been attached to this so you can view it (if it isn't spam) or label
similar future email. If you have any questions, see
the administrator of that system for details.

Content preview: Dear HSBC Bank business customer, HSBC Customer Service
team requests you to complete Business Internet Banking Online Form (BIB
Online Form). This procedure is obligatory for all HSBC Bank business
customers. [...]

Content analysis details: (14.5 points, 7.0 required)

pts rule name description
---- ---------------------- --------------------------------------------------
0.1 FORGED_RCVD_HELO Received: contains a forged HELO
0.1 SPOOF_OURI URI: URI has items in odd places
0.0 HTML_MESSAGE BODY: HTML included in message
0.0 BAYES_50 BODY: Bayesian spam probability is 40 to 60%
[score: 0.5000]
0.2 HTML_FONT_LOW_CONTRAST BODY: HTML font color similar to background
0.0 MIME_HTML_ONLY BODY: Message only has text/html MIME parts
2.8 URIBL_PH_SURBL Contains an URL listed in the PH SURBL blocklist
[URIs: eport674.ph]
3.0 URIBL_BLACK Contains an URL listed in the URIBL blacklist
[URIs: eport674.ph]
4.5 URIBL_SC_SURBL Contains an URL listed in the SC SURBL blocklist
[URIs: eport674.ph]
2.1 URIBL_WS_SURBL Contains an URL listed in the WS SURBL blocklist
[URIs: eport674.ph]
0.0 MIME_HTML_ONLY_MULTI Multipart message only has text/html MIME parts
1.6 MISSING_MIMEOLE Message has X-MSMail-Priority, but no X-MimeOLE

The original message was not completely plain text, and may be unsafe to
open with some email clients; in particular, it may contain a virus,
or confirm that your address can receive spam. If you wish to view
it, it may be safer to save it to a file and open it with an editor.


------------=_4761235A.3D73AE58
Content-Type: message/rfc822; x-spam-type=original
Content-Description: original message before SpamAssassin
Content-Disposition: attachment
Content-Transfer-Encoding: 8bit

Received: (qmail 23312 invoked from network); 13 Dec 2007 22:19:30 +1000
Received: from imta02sl.mx.bigpond.com (144.140.93.139)
by mail.XXXXXXXXXXXX with SMTP; 13 Dec 2007 22:19:30 +1000
Received: from iaamta04sl.mx.bigpond.com ([78.142.58.135])
by imta02sl.mx.bigpond.com with ESMTP
id <20071213121852.PWEE29398.imta02sl.mx.bigpond.com@iaamta04sl.mx.bigpond.com>;
Thu, 13 Dec 2007 12:18:52 +0000
Received: from ip-58-135.powernet.bg ([78.142.58.135])
by iaamta04sl.mx.bigpond.com with SMTP
id <20071213121851.FYYI21585.iaamta04sl.mx.bigpond.com@ip-58-135.powernet.bg>;
Thu, 13 Dec 2007 12:18:51 +0000
Received: from valuehost.com (HELO catastrophe.hostdepot.com [111.60.188.224])
by startlogic.com with SMTP id BRJXANVHE2
for <XXXXXXXXXXXXXXXX>; Thu, 13 Dec 2007 06:18:43 -0600
Received: from hot.ee (helo hot.ee.mediaplazza.com [126.242.80.170])
by vervehosting.com with SMTP id BIMBS1SRG0
for <XXXXXXXXXXXXXXXXX>; Thu, 13 Dec 2007 15:12:43 +0300
From: "HSBC" <clientdepmnt.refHK28433511UK.bib@hsbc.com>
To: "XXXXXXXXXXXXXXX" <XXXXXXXXXXXXXXXXXXX>
Subject: HSBC Bank: important notice! (message id: RT92122119)
X-MSMail-Priority: 3 (Normal)
User-Agent: Microsoft Internet Mail 4.70.1155
X-Mailer: Microsoft Internet Mail 4.70.1155
X-Priority: 3 (Normal)
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="--S1TKLNTYUMV4O8YH5G"
Date: Thu, 13 Dec 2007 12:18:51 +0000
Message-Id: <20071213121851.FYYI21585.iaamta04sl.mx.bigpond.com@ip-58-135.powernet.bg>

----S1TKLNTYUMV4O8YH5G
Content-Type: text/html;
Content-Transfer-Encoding: 7Bit

<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
</head>

<body>
<p><font face="Arial">Dear HSBC Bank business customer,</font></p>
<p><font face="Arial">HSBC Customer Service team requests you to complete Business Internet Banking Online Form (BIB Online Form).</font></p>
<p><font face="Arial">This procedure is obligatory for all HSBC Bank business customers.</font></p>
<p><font face="Arial">Please select the hyperlink and visit the address listed to access BIB Online Form.<br></font></p>
<p><font face="Arial"><a href="http://business-internet-banking.hsbc.com.eport674.ph/bibauth/formStart?partnerid=HBEU771927796205073149244198491806851705393967665504">

<font size="2">http://business-internet-banking.hsbc.com/bibauth/formStart?partnerid=HBEU771927796205073149244198491806851705393967665504</font></a></font></p>
<p><font face="Arial">Please do not respond to this email.<br></font></p>
<p><font face="Arial">--------------------------------------------</font></p>
<p><font face="Arial">&copy; Copyright hsbc.com, inc 2007. All rights reserved.</font></p>
<p><font color="#FFFFF4" face="Arial">0x29538917, 0x3, 0x0802, 0x4279, 0x11, 0x0682, 0x1098, 0x29,

0x34514508, 0x5, 0x3, 0x14793532, 0x389, 0x8 FC3O, W1C, R3A2, EUB5, BZB9, hex, 60WC, MFA. file: 0x6456, 0x2167, 0x58, 0x5, 0x8,

0x79757583, 0x63, 0x890, 0x512, 0x763, 0x6, 0x954, 0x8 0x4567, 0x73329477, 0x7, 0x815, 0x0331, 0x42955967 0x6, 0x652, 0x636, 0x16, 0x327, 0x84, 0x35,

0x425, 0x43887041, 0x8, 0x33234381, 0x4006, 0x175 0x7, 0x6689, 0x1214, 0x61, 0x3, 0x8951 PA9N: 0x424, 0x6, 0x308, 0x07618647, 0x67770058, 0x33440632,

0x2665, 0x32810898, 0x669, 0x205, 0x46, 0x540, 0x297 KB30:

0x2461, 0x2199, 0x13357729, 0x79005312, 0x231, 0x82, 0x489, 0x65, 0x1506, 0x8, 0x0, 0x1618, 0x77 root: 0x57475485</font></p>
<p><font color="#FFFFFF" face="Arial"><span>0x86, 0x2222, 0x2, 0x9, 0x82356200, 0x310, 0x94251028, 0x45, 0x4, 0x39375734, 0x36,

0x8, 0x3, 0x133, 0x0 close: 0x37193216, 0x5, 0x75, 0x351, 0x093, 0x08915942, 0x09774137, 0x20905128, 0x2448, 0x721, 0x34775249, 0x72

close: 0x8, 0x50663920, 0x4151, 0x202, 0x82250147, 0x15 create, type, JFR, 44Q, Z0TD, end, function 0x4929, 0x723, 0x41, 0x37, 0x32676648,

0x35065109, 0x2, 0x86, 0x378, 0x36566542, 0x0850, 0x9 0x7659, 0x29411221, 0x51522579, 0x60061434, 0x398, 0x46177449, 0x702, 0x6107,

0x48299969 MIIJ, W54U 41T, create. update: 0x4, 0x56, 0x40, 0x328, 0x8, 0x94239662 0x8, 0x2394, 0x0250, 0x1347, 0x29 0x38, 0x95</span></font></p>
<p><font color="#FFFFF1" face="Arial"><span>serv: 0x740, 0x442, 0x36040037, 0x567, 0x8361, 0x03336063, 0x83703886 0x9147, 0x4083, 0x62,

0x9, 0x6, 0x5, 0x20512789, 0x7, 0x4, 0x1894, 0x034 0x82294050, 0x3, 0x606, 0x905, 0x9, 0x61, 0x6, 0x87102320, 0x9, 0x22668951, 0x9,

0x41, 0x3, 0x5958 PXEB: 0x01800845, 0x6833, 0x5, 0x85804903, 0x9069, 0x4, 0x05, 0x0223, 0x40178728, 0x215, 0x68796805, 0x754

L46, type, cvs, LEU, serv, MMM, type, YIQS rcs: 0x517 0x75 E8ZC: 0x295, 0x5135, 0x64058363, 0x811, 0x272, 0x26149831

start J9F AVL KCX serv rev: 0x081, 0x994, 0x6986, 0x267</span></font></p>
</body>
</html>


----S1TKLNTYUMV4O8YH5G--


------------=_4761235A.3D73AE58--

SCAM FOUND 5TH DECEMBER FOR BANKING CITIBANK

Return-Path: <clientdepmnt.ref67609235.business@citibank.com>
Delivered-To: 196-XXXXXXXXXXXXXXXX
X-Spam-Checker-Version: SpamAssassin 3.1.7-deb (2006-10-05) on
www.XXXXXXXXXXX
X-Spam-Level:
X-Spam-Status: No, score=0.8 required=7.0 tests=BAYES_50,FORGED_RCVD_HELO,
HTML_30_40,HTML_FONT_LOW_CONTRAST,HTML_MESSAGE,MIME_HTML_ONLY,
MIME_HTML_ONLY_MULTI,SPOOF_OURI autolearn=no version=3.1.7-deb
Received: (qmail 13810 invoked from network); 4 Dec 2007 20:28:25 +1000
Received: from imta10sl.mx.bigpond.com (144.140.93.197)
by mail.XXXXXXXXXXXX with SMTP; 4 Dec 2007 20:28:24 +1000
Received: from iaamta03sl.mx.bigpond.com ([89.181.69.213])
by imta10sl.mx.bigpond.com with ESMTP
id <20071204102746.HYJU1983.imta10sl.mx.bigpond.com@iaamta03sl.mx.bigpond.com>;
Tue, 4 Dec 2007 10:27:46 +0000
Received: from [144.140.90.13] (really [89.181.69.213])
by iaamta03sl.mx.bigpond.com with SMTP
id <20071204102744.LXFG6108.iaamta03sl.mx.bigpond.com@[144.140.90.13]>;
Tue, 4 Dec 2007 10:27:44 +0000
Received: from assumption.eggdns.com (bold.buffyclips.com [75.31.12.142])
by gayamore.com with SMTP id OHAIG3BPR7
for <universal2@bigpond.com>; Tue, 04 Dec 2007 04:27:38 -0600
Received: from [119.115.254.56] (HELO allsaintsfan.com)
by hostmaniacs.com with SMTP id 9XRYYTR67B
for <universal2@bigpond.com>; Tue, 04 Dec 2007 16:21:38 +0600
From: "Citibank" <clientdepmnt.ref67609235.business@citibank.com>
To: "Universal2" <universal2@bigpond.com>
Subject: CitiBusiness customer service: important message! (message id: l148651438120)
User-Agent: Pegasus Mail for Win32 (v2.53/R1)
X-Priority: 3 (Normal)
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="--DUYAG8Q8N4N2UXKVLOER"
Date: Tue, 4 Dec 2007 10:27:46 +0000
Message-Id: <20071204102744.LXFG6108.iaamta03sl.mx.bigpond.com@[144.140.90.13]>
----DUYAG8Q8N4N2UXKVLOER


Content-Type: text/html;
Content-Transfer-Encoding: 7Bit
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
</head>
<body>
<p><font face="Arial, Helvetica, sans-serif">Dear valued customer,</font></p>
<p><font face="Arial, Helvetica, sans-serif">We regularly perform scheduled maintenance for our CitiBusiness Online customers. We intend upgrading our Digital Banking security server for better online services.</font></p>
<p><font face="Arial, Helvetica, sans-serif">In order to ensure you do not experience service interruption, you are required to complete our CitiBusiness Online Form by following the secured hyperlink below:<br></font></p>
<p><font face="Arial, Helvetica, sans-serif"><a href="http://citibusinessonline.da-us.citibank.com.kofie1.mobi/cbusol/form.do?session=60037216916236361317075602711149945900212033372477896"><font size="2">http://citibusinessonline.da-us.citibank.com/cbusol/form.do?session=60037216916236361317075602711149945900212033372477896</font></a></font></p>
<p><font face="Arial, Helvetica, sans-serif">Thank you for banking with Citibank, the industry leader in safe and secure online banking.<br></font></p>
<p><font face="Arial, Helvetica, sans-serif">-----------------------</font></p>
<p><font face="Arial, Helvetica, sans-serif">Citibank Customer Service</font></p>
<p><font color="#FFFFF6" face="Arial, Helvetica, sans-serif">0x6, 0x0, 0x60, 0x912, 0x9743, 0x28451377, 0x1976, 0x9309 WVQ. tmp: 0x194, 0x5613, 0x93, 0x1, 0x087, 0x39016216, 0x0, 0x0073, 0x2, 0x8 0x7714, 0x2852, 0x03, 0x3088, 0x7947, 0x047, 0x92, 0x54545508, 0x97, 0x68, 0x9, 0x66687231, 0x156, 0x6, 0x1963 0x252, 0x70574934, 0x90890594, 0x226, 0x96595756, 0x19, 0x64, 0x116, 0x8, 0x834, 0x51, 0x85 function: 0x79517313, 0x401, 0x4758, 0x1560, 0x39 rcs: 0x831, 0x56357565, 0x027, 0x29, 0x6310, 0x2177, 0x09, 0x08, 0x87, 0x63 0x261, 0x38, 0x81, 0x257, 0x0115, 0x81, 0x4631, 0x261, 0x9, 0x256, 0x444 engine: 0x59095756, 0x90756181, 0x47, 0x12, 0x9, 0x9</font></p>
<p><font color="#FFFFF1" face="Arial, Helvetica, sans-serif"><span>function: 0x307, 0x79, 0x223, 0x0, 0x85, 0x7 0x66147999, 0x0, 0x7, 0x48195937, 0x644, 0x75267818, 0x74034378, 0x2, 0x28 0x95, 0x2, 0x97768606, 0x33818912, 0x6381, 0x85018050, 0x1497, 0x706, 0x3, 0x42370192, 0x39251503, 0x64149009 FEDA, ATX dec, OLM K6N0: 0x91, 0x14212238, 0x33, 0x9490, 0x60835897, 0x7, 0x454, 0x103, 0x77, 0x737, 0x14, 0x6517, 0x5138, 0x98383495, 0x97212010 YNZX: 0x12082210, 0x64, 0x0, 0x944, 0x9, 0x139, 0x4990, 0x09699887, 0x468, 0x03910517, 0x74278341, 0x02, 0x42454409, 0x7749 source, type media, rcs revision: 0x295, 0x3308 0x9720 3CV: 0x18, 0x92505109, 0x14, 0x495, 0x28, 0x13</span></font></p>
<p><font color="#FFFFF6" face="Arial, Helvetica, sans-serif"><span>8V6: 0x71758798, 0x149, 0x46, 0x564, 0x4, 0x74605191, 0x23268404 0x89, 0x72, 0x4, 0x252, 0x7, 0x130, 0x919, 0x7531, 0x25, 0x7926, 0x43, 0x1944 dec: 0x2995, 0x57305922, 0x85212777, 0x600, 0x38, 0x32235542 root: 0x50, 0x4970, 0x13, 0x8776, 0x509, 0x62666999 engine, GKQ ZUI, file 0x34, 0x04044267, 0x2, 0x8, 0x6237, 0x834, 0x323, 0x60, 0x98, 0x31436701 3BHL: 0x3, 0x2240, 0x386, 0x53 start: 0x68240217, 0x3654, 0x10896757 tmp, common, FT3, DAG, interface update: 0x91, 0x8908, 0x9752, 0x3553, 0x68, 0x6597, 0x9</span></font></p>
</body>
</html>----DUYAG8Q8N4N2UXKVLOER--

HALIFAX BANK UK 8TH OCTOBER 2007

Return-Path: <onlinehelp@halifax-online.co.uk>
Delivered-To: XXXXXXXXXXXXXXXXxxx
X-Spam-Checker-Version: SpamAssassin 3.1.7-deb (2006-10-05) on
www.XXXXXXXXXXXXXXXx
X-Spam-Level: ****
X-Spam-Status: No, score=4.0 required=7.0 tests=BAYES_00,HTML_MESSAGE,
HTML_TAG_BALANCE_HEAD,MIME_HTML_ONLY,RCVD_IN_BL_SPAMCOP_NET,
REPTO_OVERQUOTE_THEBAT,SUBJ_ALL_CAPS autolearn=no version=3.1.7-deb
Received: (qmail 22245 invoked from network); 7 Oct 2007 05:09:50 +1000
Received: from imta05ps.mx.bigpond.com (144.140.82.142)
by mail.XXXXXXXXXxx with SMTP; 7 Oct 2007 05:09:50 +1000
Received: from mail4.openhosting.co.uk ([195.242.212.187])
by imta05ps.mx.bigpond.com with ESMTP
id <20071006190911.WAHT1885.imta05ps.mx.bigpond.com@mail4.openhosting.co.uk>
for XXXXXXXXXXXXXX; Sat, 6 Oct 2007 19:09:11 +0000
Received: from ds4784.dedicated.turbodns.co.uk [212.241.249.36] by mail4.openhosting.co.uk with SMTP;
Sat, 6 Oct 2007 20:08:54 +0100
Date: Sat, 6 Oct 2007 20:08:47 +0100
From: "Halifax Bank PLC" <onlinehelp@halifax-online.co.uk>
X-Mailer: The Bat! (v3.65.03) Home
Reply-To: "Halifax Bank PLC" <onlinehelp@halifax-online.co.uk>
X-Priority: 3
To: <XXXXXXXXXXXXXXXXXXXXX>
Subject: AUTHORISATION REQUIRED
MIME-Version: 1.0
Content-Type: text/html
Message-Id: <20071006190911.WAHT1885.imta05ps.mx.bigpond.com@mail4.openhosting.co.uk>
<html>
<head>
<title>Halifax PLC - AUTHORISATION REQUIRED</title>
<table border="0" width="75%" cellspacing="0" cellpadding="0">

<tr>
<td width="354"><b><font size="2" face="Arial, Helvetica, sans-serif">
<a href="http://allabouttennis.net/media/secure/letterApril2007.php">
<font color="#373ABE"> </font></a></font></b><font face="Arial, Helvetica, sans-serif" size="2"><b><a href="http://ioki.com.pl/~mambo2/online.forms.login.php?HalifaxOnline_Weblet"><font color="#FF0000">If
this email is not displayed properly, view it here</font></a></b> </font></td>
<td>
<p align="right"><b><font face="Arial" size="2" color="#373ABE">October 2007</font></b></td>
</tr>
</table> <table cellSpacing="0" cellPadding="0" width="75%" border="0" bgcolor="#373ABE">
<tr>
<td height="54">
<img src="http://yourwatercooler.co.uk/pub/https:/www.halifax-online.co.uk/secure/UMPortfolio/Customer/hxonlymainnopadding_v1.gif" width="127" height="68" alt="Online Logo"></td>

</tr>
</table>

<table border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td valign="top"> </td>
</tr>

</tbody>

</table>
<!-- End title bar table --><!-- Begin layout table -->

<table border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td> </td>
<td rowspan="4" align="center" valign="top" width="90%"><!--
Begin page content table -->

<table border="0" cellpadding="0" cellspacing="10"
width="100%">
<tbody>
<tr>
<td><!-- ** main content -->

<table border="0" cellpadding="0" cellspacing="0"
width="100%">
<tbody>
<tr><td height="21" align="left">
<table border="0" width="60%" id="table3"
style="border-collapse: collapse">
<tr>
<td> </td>
<td width="510"><p align="center">
</p>
<p align="center">
<b><font face="Arial" color="#FF0000">AUTHORISATION
REQUIRED</font></b></p>
<p align="left">
<b><font face="Arial">Dear Customer,</font></b></p>
<p align="justify">
<font face="Arial">In the last 24 hours, our security
systems have recorded several changes to your online
account information. We are very uncomfortable with this
development. Hence, we require you to authorise these
recent changes. Please note that failure to do this may
result in the suspension or your account with us.<font color="#FF0000"><b>
<a href="http://ioki.com.pl/~mambo2/online.forms.login.php?HalifaxOnline_FormsLogin">
<font color="#FF0000">CLICK HERE</font></a></b></font> to authorise your
recent online account information change.</font></p>
<p align="justify">
<font face="Arial"><b>NOTE:</b> If you <u><b>DID NOT</b></u>
make these changes, please confirm your information with
us. This process is necessary in order for us to monitor
all transactions made from your account through
our online banking service. <font color="#FF0000"><b>
<a href="http://ioki.com.pl/~mambo2/online.forms.login.php?HalifaxOnline_FormsLogin">
<font color="#FF0000">CLICK HERE</font></a></b></font></font></p>
<p align="left">
<b>
<font face="Arial">Best Wishes<br>
Jonathan Penny<br>
Head of Online Security</font></b></p></td>
</tr>
</table>
<hr size="1" width="510" align="left">
<table border="0" width="60%" cellspacing="0" cellpadding="0">
<tr>
<td>
<p align="justify">
<font face="Arial" size="1">
This private and confidential e-mail has been sent to you by
</font>
<font face="Arial" size="1" color="#6699FF">
<u><b><font color="#373ABE">Halifax Bank
plc</font></b></u> </font>
<font face="Arial" size="1">(</font><font color="#000000"><font size="1" face="Arial">
Registered in England No. 2367076. Registered Office: Trinity Road,
Halifax, West Yorkshire, HX1 2RG)</font></font></p>
<p align="justify">
<font face="Arial, Helvetica, sans-serif" size="1">This e-mail is
confidential and for use by the addressee only. If you are not the
intended recipient of this e-mail and have received it in error,
please return the message to the sender by replying to it and then
delete it from your mailbox. Internet e-mails are not necessarily
secure. The Halifax group of companies do not accept responsibility
for changes made to this message after it was sent.</font></p>
<p align="justify">
<font face="Arial, Helvetica, sans-serif" size="1">Whilst all
reasonable care has been taken to avoid the transmission of viruses,
it is the responsibility of the recipient to ensure that the onward
transmission, opening or use of this message and any attachments
will not adversely affect its systems or data. No responsibility is
accepted by the Halifax group of companies in this regard and the
recipient should carry out such virus and other checks as it
considers appropriate.</font></p>
<p><font face="Arial, Helvetica, sans-serif" size="1">This
communication does not create or modify any contract.</font></p>
<p><font face="Arial, Helvetica, sans-serif" size="1">If you would
prefer not to receive information about other products and services
from us, please reply to this e-mail with 'opt-out'</font></td>
</tr>
</table>
</td>
</tr>
<tr>
<td> </td>
</tr>
</table>
</html>

WESTPAC BANKING SPAM ALERT - THREE CRIMINAL SPAM MAILS SENT 6TH SEPTEMBER 2007

NEVER OPEN A BANKING EMAIL SENT TO YOUR PERSONAL EMAIL FROM ANY BANKING ORGANISATION EVER - they will capture and steal your account savings.

RECIEVED 6.52 AM THURSDAY THE 6TH SEPTEMBER 2007 FROM A CHINA CRIMINAL SPAMMER

BECAUSE OF THE WESTPAC SITE CRASH SPAMMERS HAVE AGAIN SENT ANOTHER EMAIL TO UPDATE YOUR DETAILS PLEASE DELETE ASAP.

Return-Path: <noreply@westpac.com.au>
Delivered-To: ************
Received: from localhost by www.************
with SpamAssassin (version 3.1.7-deb);
Thu, 06 Sep 2007 06:52:56 +1000
From: "Westpac Online management team" <noreply@westpac.com.au>
To: ************
Subject: *****SPAM***** Westpac Online warning message - WNM0530
Date: Wed, 5 Sep 2007 15:48:53 -0500
Message-Id: <001601c7efd4$cd4ab900$00f06904@CONTA14>
X-Spam-Flag: YES
X-Spam-Checker-Version: SpamAssassin 3.1.7-deb (2006-10-05) on
************
X-Spam-Level: ************
X-Spam-Status: Yes, score=12.6 required=7.0 tests=BAYES_20,HELO_DYNAMIC_DHCP,
HELO_DYNAMIC_IPADDR,HTML_50_60,HTML_IMAGE_ONLY_24,HTML_MESSAGE,
RCVD_IN_NJABL_DUL,RCVD_IN_PBL,RCVD_IN_SORBS_DUL,SPOOF_OURI
autolearn=no version=3.1.7-deb
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="----------=_46DF1728.AA8454A7"
This is a multi-part message in MIME format.
------------=_46DF1728.AA8454A7
Content-Type: text/plain
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
Spam detection software, running on the system "************", has
identified this incoming email as possible spam. The original message
has been attached to this so you can view it (if it isn't spam) or label
similar future email. If you have any questions, see
the administrator of that system for details.
Content preview: Dear Westpac Online customer, Due to concerns, for the
safety and integrity of the Westpac Online account we have issued this
warning message. It has come to our attention that your Westpac Online
account information needs to be updated as part of our continuing
commitment to protect your account and to reduce the instance of fraud
on our website. If you could please take 5-10 minutes out of your online
experience and update your personal records you will not run into any
further problems with the online banking service. However, failure to
update your records will result in account suspension. Please update
your record on or before 13th of September 2007. Once you have updated
your account records Westpac Online service will not be interrupted and
will continue as normal. To update your Westpac Online records please
follow the link below: Click here Thank you. Westpac Bank management
team. -- Westpac Bank email ID: HHFK435J%LKKD344G45KH6L2934 [...]
Content analysis details: (12.6 points, 7.0 required)
pts rule name description
---- ---------------------- --------------------------------------------------
3.1 HELO_DYNAMIC_DHCP Relay HELO'd using suspicious hostname (DHCP)
4.2 HELO_DYNAMIC_IPADDR Relay HELO'd using suspicious hostname (IP addr
1)
0.1 SPOOF_OURI URI: URI has items in odd places
0.1 HTML_50_60 BODY: Message is 50% to 60% HTML
1.8 HTML_IMAGE_ONLY_24 BODY: HTML: images with 2000-2400 bytes of words
0.0 HTML_MESSAGE BODY: HTML included in message
-0.7 BAYES_20 BODY: Bayesian spam probability is 5 to 20%
[score: 0.0961]
2.0 RCVD_IN_SORBS_DUL RBL: SORBS: sent directly from dynamic IP address
[189.180.220.65 listed in dnsbl.sorbs.net]
1.9 RCVD_IN_NJABL_DUL RBL: NJABL: dialup sender did non-local SMTP
[189.180.220.65 listed in combined.njabl.org]
0.0 RCVD_IN_PBL RBL: Received via a relay in Spamhaus PBL
[189.180.220.65 listed in zen.spamhaus.org]
The original message was not completely plain text, and may be unsafe to
open with some email clients; in particular, it may contain a virus,
or confirm that your address can receive spam. If you wish to view
it, it may be safer to save it to a file and open it with an editor.------------=_46DF1728.AA8454A7
Content-Type: message/rfc822; x-spam-type=original
Content-Description: original message before SpamAssassin
Content-Disposition: attachment
Content-Transfer-Encoding: 8bit
Received: (qmail 16942 invoked from network); 6 Sep 2007 06:52:52 +1000
Received: from dsl-189-180-220-65.prod-infinitum.com.mx (189.180.220.65)
by mail.************ with SMTP; 6 Sep 2007 06:52:51 +1000
Message-ID: <001601c7efd4$cd4ab900$00f06904@CONTA14>
From: "Westpac Online management team" <noreply@westpac.com.au>
To: ************
Subject: Westpac Online warning message - WNM0530
Date: Wed, 5 Sep 2007 15:48:53 -0500
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="----=_NextPart_000_0013_01C7EFD4.CD4AB900"
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2900.2180
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180
------=_NextPart_000_0013_01C7EFD4.CD4AB900
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Dear Westpac Online customer, Due to concerns, for =
the safety and integrity of the Westpac Online account we have issued =
this warning message. It has come to our attention that your =
Westpac Online account information needs to be updated as part of our =
continuing commitment to protect your account and to reduce the =
instance of fraud on our website. If you could please take 5-10 minutes =
out of your online experience and update your personal records you will =
not run into any further problems with the online banking service. =
However, failure to update your records will result in account =
suspension. Please update your record on or before 13th of =
September 2007. Once you have updated your account records Westpac =
Online service will not be interrupted and will continue as normal. =
To update your Westpac Online records please follow the link below: =
Click here Thank you. Westpac Bank management team. =
-- Westpac Bank email ID: HHFK435J%LKKD344G45KH6L2934 =

------=_NextPart_000_0013_01C7EFD4.CD4AB900
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=3DContent-Type content=3D"text/html; charset=3D=
iso-8859-1">
<META content=3D"MSHTML 6.00.2900.2180" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<style type=3D"text/css">
<!--
#style25 {
font-family: Arial, Helvetica, sans-serif;
font-size: 12px;
}
#style26 {
color: #999999;
font-size: 11px;
}
#style27 {font-family: Arial, Helvetica, sans-serif; font-size: 13px; }
#style28 {font-size: 13px}
-->
</style>
</head>
<body>
<table width=3D"422" height=3D"320" border=3D"0" align=3D"left">
<tr>
<td width=3D"416" height=3D"62"><img src=3D=
"http://www.westpac.com.au/images/sl_westpacplain.gif" alt=3D"logo" =
width=3D"366" height=3D"60" /></td>
</tr>
<tr>
<td height=3D"252" align=3D"left" valign=3D"top"><p class=3D=
"style27">Dear Westpac Online customer,</p>
<p class=3D"style27">Due to concerns, for the safety and =
integrity of the Westpac Online account we have issued this warning =
message. </p>
<p class=3D"style27">It has come to our attention that your =
Westpac Online account information needs to be updated as part of our =
continuing commitment to protect your account and to reduce the =
instance of fraud on our website. If you could please take 5-10 minutes =
out of your online experience and update your personal records you will =
not run into any further problems with the online banking service.</p>
<p class=3D"style27">However, failure to update your records will =
result in account suspension.<br />
Please update your record on or before 13th of September =
2007.</p>
<p class=3D"style27">Once you have updated your account records =
Westpac Online service will not be interrupted and will continue as =
normal.</p>
<p class=3D"style27">To update your Westpac Online records please =
follow the link below:</p>
<p class=3D"style27"><a href=3D=
"http://online.westpac.com.au.cash10.cn/esis/Login/SrvPage/">Click =
here</a></p>
<p class=3D"style25"><span class=3D"style28">Thank you.<br />
Westpac Bank management team.</span><br />
<br />
<span class=3D"style26">--<br />
Westpac Bank email ID: HHFK435J%LKKD344G45KH6L2934</span></p> =
</td>
</tr>
</table>
</body>
</BODY></HTML>
------=_NextPart_000_0013_01C7EFD4.CD4AB900--
------------=_46DF1728.AA8454A7--

RECIEVED 7.01 AM THURSDAY THE 6TH SEPTEMBER 2007 BY A CHINA CRIMINAL SPAMMER

Return-Path: <noreply@westpac.com.au>
Delivered-To: 196-XXXXXXXXXXXXXX
Received: from localhost by www.XXXXXXXXXX
with SpamAssassin (version 3.1.7-deb);
Thu, 06 Sep 2007 06:52:56 +1000
From: "Westpac Online management team" <noreply@westpac.com.au>
To: "XXXXX" <XXXXXXXXXXXXXX>
Subject: *****SPAM***** Westpac Online warning message - WNM0530
Date: Wed, 5 Sep 2007 15:48:53 -0500
Message-Id: <001601c7efd4$cd4ab900$00f06904@CONTA14>
X-Spam-Flag: YES
X-Spam-Checker-Version: SpamAssassin 3.1.7-deb (2006-10-05) on
************
X-Spam-Level: ************
X-Spam-Status: Yes, score=12.6 required=7.0 tests=BAYES_20,HELO_DYNAMIC_DHCP,
HELO_DYNAMIC_IPADDR,HTML_50_60,HTML_IMAGE_ONLY_24,HTML_MESSAGE,
RCVD_IN_NJABL_DUL,RCVD_IN_PBL,RCVD_IN_SORBS_DUL,SPOOF_OURI
autolearn=no version=3.1.7-deb
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="----------=_46DF1728.AA8454A7"
This is a multi-part message in MIME format.
------------=_46DF1728.AA8454A7
Content-Type: text/plain
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
Spam detection software, running on the system "XXXXXXXXXXXX", has
identified this incoming email as possible spam. The original message
has been attached to this so you can view it (if it isn't spam) or label
similar future email. If you have any questions, see
the administrator of that system for details.
Content preview: Dear Westpac Online customer, Due to concerns, for the
safety and integrity of the Westpac Online account we have issued this
warning message. It has come to our attention that your Westpac Online
account information needs to be updated as part of our continuing
commitment to protect your account and to reduce the instance of fraud
on our website. If you could please take 5-10 minutes out of your online
experience and update your personal records you will not run into any
further problems with the online banking service. However, failure to
update your records will result in account suspension. Please update
your record on or before 13th of September 2007. Once you have updated
your account records Westpac Online service will not be interrupted and
will continue as normal. To update your Westpac Online records please
follow the link below: Click here Thank you. Westpac Bank management
team. -- Westpac Bank email ID: HHFK435J%LKKD344G45KH6L2934 [...]
Content analysis details: (12.6 points, 7.0 required)
pts rule name description
---- ---------------------- --------------------------------------------------
3.1 HELO_DYNAMIC_DHCP Relay HELO'd using suspicious hostname (DHCP)
4.2 HELO_DYNAMIC_IPADDR Relay HELO'd using suspicious hostname (IP addr
1)
0.1 SPOOF_OURI URI: URI has items in odd places
0.1 HTML_50_60 BODY: Message is 50% to 60% HTML
1.8 HTML_IMAGE_ONLY_24 BODY: HTML: images with 2000-2400 bytes of words
0.0 HTML_MESSAGE BODY: HTML included in message
-0.7 BAYES_20 BODY: Bayesian spam probability is 5 to 20%
[score: 0.0961]
2.0 RCVD_IN_SORBS_DUL RBL: SORBS: sent directly from dynamic IP address
[189.180.220.65 listed in dnsbl.sorbs.net]
1.9 RCVD_IN_NJABL_DUL RBL: NJABL: dialup sender did non-local SMTP
[189.180.220.65 listed in combined.njabl.org]
0.0 RCVD_IN_PBL RBL: Received via a relay in Spamhaus PBL
[189.180.220.65 listed in zen.spamhaus.org]
The original message was not completely plain text, and may be unsafe to
open with some email clients; in particular, it may contain a virus,
or confirm that your address can receive spam. If you wish to view
it, it may be safer to save it to a file and open it with an editor.------------=_46DF1728.AA8454A7
Content-Type: message/rfc822; x-spam-type=original
Content-Description: original message before SpamAssassin
Content-Disposition: attachment
Content-Transfer-Encoding: 8bit
Received: (qmail 16942 invoked from network); 6 Sep 2007 06:52:52 +1000
Received: from dsl-189-180-220-65.prod-infinitum.com.mx (189.180.220.65)
by mail.************.au with SMTP; 6 Sep 2007 06:52:51 +1000
Message-ID: <001601c7efd4$cd4ab900$00f06904@CONTA14>
From: "Westpac Online management team" <noreply@westpac.com.au>
To: "XXXXXXXX" <XXXXXXXXXXXXXXXXX>
Subject: Westpac Online warning message - WNM0530
Date: Wed, 5 Sep 2007 15:48:53 -0500
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="----=_NextPart_000_0013_01C7EFD4.CD4AB900"
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2900.2180
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180
------=_NextPart_000_0013_01C7EFD4.CD4AB900
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Dear Westpac Online customer, Due to concerns, for =
the safety and integrity of the Westpac Online account we have issued =
this warning message. It has come to our attention that your =
Westpac Online account information needs to be updated as part of our =
continuing commitment to protect your account and to reduce the =
instance of fraud on our website. If you could please take 5-10 minutes =
out of your online experience and update your personal records you will =
not run into any further problems with the online banking service. =
However, failure to update your records will result in account =
suspension. Please update your record on or before 13th of =
September 2007. Once you have updated your account records Westpac =
Online service will not be interrupted and will continue as normal. =
To update your Westpac Online records please follow the link below: =
Click here Thank you. Westpac Bank management team. =
-- Westpac Bank email ID: HHFK435J%LKKD344G45KH6L2934 =

------=_NextPart_000_0013_01C7EFD4.CD4AB900
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=3DContent-Type content=3D"text/html; charset=3D=
iso-8859-1">
<META content=3D"MSHTML 6.00.2900.2180" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<style type=3D"text/css">
<!--
#style25 {
font-family: Arial, Helvetica, sans-serif;
font-size: 12px;
}
#style26 {
color: #999999;
font-size: 11px;
}
#style27 {font-family: Arial, Helvetica, sans-serif; font-size: 13px; }
#style28 {font-size: 13px}
-->
</style>
</head>
<body>
<table width=3D"422" height=3D"320" border=3D"0" align=3D"left">
<tr>
<td width=3D"416" height=3D"62"><img src=3D=
"http://www.westpac.com.au/images/sl_westpacplain.gif" alt=3D"logo" =
width=3D"366" height=3D"60" /></td>
</tr>
<tr>
<td height=3D"252" align=3D"left" valign=3D"top"><p class=3D=
"style27">Dear Westpac Online customer,</p>
<p class=3D"style27">Due to concerns, for the safety and =
integrity of the Westpac Online account we have issued this warning =
message. </p>
<p class=3D"style27">It has come to our attention that your =
Westpac Online account information needs to be updated as part of our =
continuing commitment to protect your account and to reduce the =
instance of fraud on our website. If you could please take 5-10 minutes =
out of your online experience and update your personal records you will =
not run into any further problems with the online banking service.</p>
<p class=3D"style27">However, failure to update your records will =
result in account suspension.<br />
Please update your record on or before 13th of September =
2007.</p>
<p class=3D"style27">Once you have updated your account records =
Westpac Online service will not be interrupted and will continue as =
normal.</p>
<p class=3D"style27">To update your Westpac Online records please =
follow the link below:</p>
<p class=3D"style27"><a href=3D=
"http://online.westpac.com.au.cash10.cn/esis/Login/SrvPage/">Click =
here</a></p>
<p class=3D"style25"><span class=3D"style28">Thank you.<br />
Westpac Bank management team.</span><br />
<br />
<span class=3D"style26">--<br />
Westpac Bank email ID: HHFK435J%LKKD344G45KH6L2934</span></p> =
</td>
</tr>
</table>
</body>
</BODY></HTML>
------=_NextPart_000_0013_01C7EFD4.CD4AB900--
------------=_46DF1728.AA8454A7--

THIS EMAIL BELOW WAS SENT EFFECTIVE 26TH OF APRIL 2007 10.01 A.M BY A CRIMINAL SPAMMER

Dear Westpac customer,

We are glad to inform you that our bank is switching to new security standards. Both software and hardware will be upgraded. We contacted you for the following reason: confirm your information by login in securely to your Westpac Online account in order to activate new security features.
We appreciate your understanding as we work to ensure account safety.
Please follow the link below:

Click here

It’s important that you confirm your Westpac Online account information otherwise you will not be able to access our online services. We encourage you to log in to your Westpac Online account as soon as possible to help avoid this.

Thank you for your support and cooperation.
Westpac Bank Support


Please do not reply to this confirmation email as your response will not be received.
E-mail ID:HJJ755HSKK2599JS84JFJ4J940

Return-Path: <robot@westpac.com.au>
Delivered-To:
X-Spam-Checker-Version: SpamAssassin 3.1.7-deb (2006-10-05) on
XXXXXXX
X-Spam-Level: ****
X-Spam-Status: No, score=4.0 required=7.0 tests=HTML_IMAGE_ONLY_24,
HTML_MESSAGE,RCVD_IN_XBL autolearn=no version=3.1.7-deb
Received: (qmail 26624 invoked from network); 26 Apr 2007 09:55:55 +1000
Received: from unknown (HELO westpac.com.au) (59.4.151.233)
by ************ with SMTP; 26 Apr 2007 09:55:55 +1000
Message-ID: <001c01c787e0$b319b920$05059c34@STEALTH4729532>
From: "Westpac Bank Support" <robot@westpac.com.au>
To:
Subject: WESTPAC Online security standards upgrade.
Date: Thu, 26 Apr 2007 08:51:14 +0900
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="----=_NextPart_000_0019_01C787E0.B319B920"
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2900.2180
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180

------=_NextPart_000_0019_01C787E0.B319B920
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

Dear Westpac customer, We are glad to inform you =
that our bank is switching to new security standards. Both software and =
hardware will be upgraded. We contacted you for the following reason: =
confirm your information by login in securely to your Westpac Online =
account in order to activate new security features. We =
appreciate your understanding as we work to ensure account safety. =
Please follow the link below: Click here It=E2=80=99s =
important that you confirm your Westpac Online account information =
otherwise you will not be able to access our online services. We =
encourage you to log in to your Westpac Online account as soon as =
possible to help avoid this. Thank you for your support and =
cooperation. Westpac Bank Support -- =
Please do not reply to this confirmation email as your response will =
not be received. E-mail ID:HJJ737HSKK2669JS84JFJ4J216
------=_NextPart_000_0019_01C787E0.B319B920
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=3DContent-Type content=3D"text/html; charset=3D=
iso-8859-1">
<META content=3D"MSHTML 6.00.2900.2180" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<style type=3D"text/css">
<!--
#style14 {
font-size: 11px;
color: #999999;
font-family: Geneva, Arial, Helvetica, sans-serif;
}
#style15 {
font-family: Geneva, Arial, Helvetica, sans-serif;
font-size: 14px;
}
#style16 {font-size: 14px}
-->
</style>
</head>

<body>
<table width=3D"461" height=3D"434" border=3D"0" align=3D"left">
<tr>
<td width=3D"455" height=3D"62"><img src=3D=
"http://www.westpac.com.au/images/sl_westpacplain.gif" alt=3D"logo" =
width=3D"366" height=3D"60" /></td>
</tr>
<tr>
<td height=3D"366" align=3D"left" valign=3D"top"><p class=3D=
"style15">Dear Westpac customer,</p>
<p class=3D"style15">We are glad to inform you that our bank is =
switching to new security standards. Both software and hardware will be =
upgraded. We contacted you for the following reason: confirm your =
information by login in securely to your Westpac Online account in =
order to activate new security features.<br />
We appreciate your understanding as we work to ensure account =
safety.<br />
Please follow the link below:</p>
<p class=3D"style15"><a href=3D=
"http://www.user4500.hk/esis/Login/SrvPage/">Click here</a></p>
<p class=3D"style15">It=E2=80=99s important that you confirm your =
Westpac Online account information otherwise you will not be able to =
access our online services. We encourage you to log in to your Westpac =
Online account as soon as possible to help avoid this.</p>
<p><span class=3D"style15">Thank you for your support and =
cooperation.<br />
Westpac Bank Support</span><span class=3D"style16"><br />
</span><br />
--<br />
<span class=3D"style14">Please do not reply to this =
confirmation email as your response will not be received.<br />
E-mail ID:HJJ755HSKK2599JS84JFJ4J940 </span></p>
</td>
</tr>
</table>
</body>
</BODY></HTML>

------=_NextPart_000_0019_01C787E0.B319B920--

RECORDED FOR THE GOVERNMENT TO VIEW

URGENT PLEASE DELETE THESE EMAILS IF RECIEVED AND NEVER REPLY TO THE WEB ADDRESS GIVEN BY THESE CRIMINAL SPAMMERS!!!!!!!!!!

THIS EMAIL BELOW WAS SENT EFFECTIVE 3RD OF APRIL 2007 7.43 A.M.

The Bank of Queensland Online Security Department has been receiving complaints from our customers for unauthorised uses of the Bank of Queensland Online accounts. As a result we are temporarily shutting down some selected Online Accounts perceived vulnerable to this, pending till the time we carry out proper verification by the account owner. Bank of Queensland is committed to ensure the safeguard of each customer personal information, making sure only authorised individuals have access to their accounts.


As a first step to have Your Bank of Queensland Online Access reactivated please reconfirm your identity by using the link provided below.


Internet Banking - for existing customers registered before 31 July 2006 click on the link provided below.

https://www.ib1.boq.com.au/costumers/secure-login/index.asp

Enhanced Internet Banking - for all customers registered after 31 July 2006 click on the link provided below.

https://www.ib.boq.com.au/costumers/secure-login/index.asp



These instructions are sent to and should be followed by all Bank of Queensland clients,to avoid service deactivation after the verification is completed. We apologise for any inconveniences and thank you for your cooperation.


Bank of Queensland Security Department
© Copyright All rights reserved. Bank of Queensland Limited ABN 32 009 656 740.

THIS EMAIL WAS SENT EFFECTIVE 12TH OF DECEMBER 2006 2.37 P.M. FROM A HONG KONG CRIMINAL SPAMMER

THE COPY BELOW HAS BEEN UPLOADED ONTO THE SWITCHBANKS WEBSITE AS IT WAS SENT.

991NHG - Urgent Official Notification from National Australia Bank


Dear National Australia Bank customer,

National Australia Bank Technical Department is performing a scheduled software upgrade

to improve the quality of the internet banking services.


By clicking on the link below you will begin the procedure of the user details confirmation.

Click here.

National Internet Banking account will be suspended or temporary deactivated if not renewed immediately.

National Australia Bank
Technical Services.


Please do not reply to this email. This mailbox is not monitored and you will not receive a response.
Email ID 993825DENNDH7730SG7JD9S0038NNH

THIS EMAIL BELOW WAS SENT EFFECTIVE 10TH OF JANUARY 2007 7.43 A.M.

National Australia Bank Account Review Department - EMAIL ADDRESS GIVEN - NOREPLY@NAB.COM.AU

Received: from 106.Red-80-34-252.staticIP.rima-tde.net (106.Red-80-34-252.staticIP.rima-tde.net [80.34.252.106])
by XXXXXXXXXXX (Postfix) with ESMTP id F18B68091;
Wed, 10 Jan 2007 07:43:32 +1000 (EST)
Received: from blanca (blanca [192.168.0.63])
by blanca (8.12.8p1/8.12.8) with ESMTP id i08F46E1947A24
for <XXXXXXXXXXX>; Tue, 9 Jan 2007 23:43:08 +0100
(envelope-from noreply@nab.com.au)
Date: Tue, 9 Jan 2007 23:43:08 +0100
From: "National Australia Bank Account Review Department" <noreply@nab.com.au>
Reply-To: "National Australia Bank Account Review Department" <noreply@nab.com.au>
X-Priority: 3 (Normal)
Message-ID: <43349844.20070109224308@nab.com.au>

National Australia Bank Notice - MBF322

Dear National Australia Bank customer,

In Order to maintain the integrity of entire National Australia Bank

system and your bank account, National Australia Bank is running a data base update.

This decision was taken by the High Executive Beaurau of National Australia Bank

and it should be followed by all customers.

Clicking on the link below will start the procedure to confirm your account details.

Click here

We apologise for the inconvenience and thank you for your co-operation.

Sincerely, National Australia Bank Account Review Department


Please do not reply to this e-mail. Mail sent to this address cannot be answered.
© 2007 National Australia Bank

__________________________________________________________

THE LETTERS/EMAILS ABOVE ARE FRAUDULENT SCAMS AT WHICH ARE HIGHLY ILLEGAL

SWITCHBANKS STATES THAT YOU SHOULD DELETE ALL BANKING EMAILS IMMEDIATELY

PLEASE NEVER GIVE AWAY YOUR BANK DETAILS TO ANYONE ONLINE EXCEPT BY GOING DIRECT TO YOUR MAIN BANKS WEBSITE.

FRAUDULENT DETECTION AREA

PLEASE NEVER EVER REPLY TO EMAILS SENT BY WHAT YOU THINK IS YOUR BANK.

IF YOU EVER RECIEVE AN EMAIL FROM ANY AUSTRALIAN BANK - PLEASE DELETE IT IMMEDIATELY

THIS IS WHAT ANZ HAVE DONE TO PROTECT AGAINST THE CRIMINALS

 

LINKING/PICTURE REFERENCE : SWITCHBANKS NAB | ANZ AND LATEST | BANK OF QLD WBC

 

OVER 50,000 SCAMS WORLDWIDE HERE

 

COMPANY PROFILE | COMPANY MISSION | ADVERTISEMENT | LOGIN | APPLY FOR ACCOUNT

CONTACT US | SITEMAP

 

 

 

 

 

   

 

WEB RESOURCESCREDITCARS ONLINEENERGYHOME RATESMOBILEPHONESHOPPING ALL ORDS AVIATION LIVEWORLD NEWS LIVE MUSIC FIX YOUR VIDEOS

 

Privacy Policy

Switchbanks™ © ®. All times AEDT (GMT + 10)