LOL, check this out

FROM: <UPInternct@UnionPlanters.com> Subject:Internet Banking - Alert Messaxj Data:```markup<html><head></head><body> <font face="Verdana"><font size="2"> </font> <table border="0" cellpadding="0" cellspacing="0"> <tbody> <tr> <td valign="top" width=61><a href="http://mail.yahoo.com/config/login?/_javascript:OpenWin%28%27http://65.54.186.250/cgi-bin/linkrd?_lang=EN&lah=34b89aba8099657c89ad303f8e158e82&lat=1097686053&hm___action=http://mail.yahoo.com/config/login?/http%253a%252f%252fwww%252ewellsfargo%252ecom%252f%253bjsessionid%253dLVS0UZ3FGUON4CSYBJLU3NQKDPILUUM0%27%29;" target="_blank"></a></td> <td valign="top"><img src="http://www.unionplanters.com/media/images/doc_inside_UPlogo.gif"></td> </tr></tbody></table> <table border="0" cellpadding="0" cellspacing="0" width="595"> <tbody> <tr> <td colspan="5"><font size="2"><img alt="" src="scrisoare_files/s.gif" height="5" width="1"></font></td></tr> <tr> <td class="staticPageBorder" colspan="5"><font size="2"><img alt="" src="scrisoare_files/s.gif" height="1" width="1"></font></td></tr> <tr> <td class="staticPageBorder" width="1"><font face="Arial" size="2"><img alt="" src="scrisoare_files/s.gif" height="6" width="1"></font></td> <td width="71"><font face="Arial" size="2"><img alt="" src="scrisoare_files/s.gif" height="1" width="1"></font></td> <td width="491"><font face="Arial" size="2"><img alt="" src="scrisoare_files/s.gif" height="1" width="1"></font></td> <td width="30"><font face="Arial" size="2"><img alt="" src="scrisoare_files/s.gif" height="1" width="1"></font></td> <td class="staticPageBorder" width="1"><font face="Arial" size="2"><img alt="" src="scrisoare_files/s.gif" height="1" width="1"></font></td></tr> <tr> <td class="staticPageBorder" width="1"><font face="Arial" size="2"><img alt="" src="scrisoare_files/s.gif" height="1" width="1"></font></td> <td width="71"><font face="Arial" size="2"><img alt="" src="scrisoare_files/s.gif" height="1" width="1"></font></td> <td width="491"> <table class="jumpnav" border="0" cellpadding="0" cellspacing="0"> <tbody> <tr> <td align="left" width="246"><font face="Arial" size="2"></font> </td><td align="right" valign="top" width="245"> <div class="generictext"><font face="Arial"><span class="red"><strong><font color="#990000" size="2"></font></strong></span></font> </div></td></tr></tbody></table> <div class="generictext"><br><font face="Arial"><strong><br> <font size="2"><font face="Arial">Union Planters </font> Alert Message</font></strong><font size="2"> <br> <br> We recently reviewed your account, and we suspect an unauthorized ATM - based transactions on your account. Therefore, as a preventive measure we have temporary limited your access to sensitive Union Planters features.<br> <br> </font></font><font face="Arial" size="2">To ensure that your account is not compromised please login to Union Planters <font face="Arial"></font> Internet Banking by clicking this link, verify your identity and your online account will be reactivated by our system. </font></div> <br> <div class="generictext"><u><font color="#800080"></font></u><font face="Arial" size="2">- Click on: <a href="http://200.172.109.3/unionplanters.com/upib/redir.php" target="_blank">http://online.unionplanters.com/logon/logon.asp?dd=1</a></font></div> <div class="generictext"><font face="Arial" size="2">- Enter your personal information.<br>

• Verify your identity with <font face="Arial">Union Planters </font></font></div> <div class="generictext"><font size="2"><font face="Arial"><strong></strong><br> If at any time you require assistance, please contact our Online Account Services customer hotline at 1-800-788-7000 24 hours a day, 7 days a week.<br><br> Thank you for using <font face="Arial">Union Planters </font> Online Account Services.</font></font></div> <br> <table border="0" cellpadding="0" cellspacing="0"> <tbody> <tr valign="top"> <td width="491"><font face="Arial" size="2"><img alt="" src="scrisoare_files/s.gif" height="17" width="1"></font></td></tr> <tr valign="top"> <td class="exitPageDivider" width="491"><font face="Arial" size="2"><img alt="" src="scrisoare_files/s.gif" height="1" width="1"></font></td></tr> <tr valign="top"> <td width="491"><font face="Arial" size="2"><img alt="" src="scrisoare_files/s.gif" height="3" width="1"></font></td></tr></tbody></table> <div class="footnote"><font face="Arial" size="2">Important Information from <span class="generictext"><font face="Arial">Union Planters </font></span>(R)<br> <br></font><font face="Arial" size="2">This e-mail contains information directly related to your account with us, other<br> services to which you have subscribed, and/or any application you may have submitted. <span class="generictext"><font face="Arial"><font face="Arial" size="2"><font face="Arial">Union Planters</font></font></font></span> and its service providers are committed to protecting your privacy and ask you not to send sensitive account information through e-mail. You can view our privacy policy and contact information at <a href="http://200.172.109.3/unionplanters.com/upib/redir.php" target="_blank">http://unionplanters.com </a> . If you are not a <span class="generictext"><font face="Arial"><font face="Arial" size="2"><font face="Arial">Union Planters</font></font></font></span> customer and believe you received this message in error, please notify us by responding to this e-mail.<br> </font></div> <div><font face="Arial" size="2"><img class="inline" alt="" src="scrisoare_files/s.gif" height="10" width="1"></font></div></td> <td width="30"><font face="Arial" size="2"><img alt="" src="scrisoare_files/s.gif" height="1" width="1"></font></td> <td class="staticPageBorder" width="1"><font face="Arial" size="2"><img alt="" src="scrisoare_files/s.gif" height="1" width="1"></font></td></tr> <tr> <td class="staticPageBorder" width="1"><font face="Arial" size="2"><img alt="" src="scrisoare_files/s.gif" height="6" width="1"></font></td> <td colspan="3"> <table border="0" cellpadding="0" cellspacing="0"> <tbody> <tr> <td width="44"><font face="Arial" size="2"><img alt="" src="scrisoare_files/s.gif" height="1" width="44"></font></td> <td width="537"> <div id="footer"> <p class="footer1"><font face="Arial" size="2"> © 1999 - 2005 <span class="generictext"><font face="Arial"><span class="footnote"><font face="Arial" size="2"><font face="Arial">Union Planters</font></font></span></font></span> , N.A. All rights reserved.</font></p> </div></td></tr></tbody></table></td></tr></tbody></table></font> </body></html>

gjfkfp

lol, here are the mistakes,
1.)  I'm not dumb enough to fall for something like this
2.)  The brackets on the from: are suspicous
3.)  There are a ton of spelling errors
4.)  Hackermail parses out html if you want it to
5.)  I'm not old enough to have an ATM
6.)  I don't use online banking
7.)  the giberish after the html
8.)  The link at the top has javascript and runs all over the net

Next time, research your target and don't even try to do something this stupid to me.  I would post the i.p., but i'm not sure if he used something to block it, or uses dial-up.

Just thought i'd let you guys/girls in on one of the lamest SE fake e-mail i have ever recieved.

he spells like me… hmmmmmm

Another, one i got in my e-mail today:

From: <ReplyRequiredex@ BankoftheWest.com> Subject: Information - Urgent BankoftheWest.com updamt Data:

<title> Your BankoftheWest.com Account Verification.</title>
<body>
<font color="#FFFFFF" size="1">agzzwpjvithidqlntepv nr hhovl x rx qf 
pz o dt nsgyqckrglpj rojumihcesmvfgiob 
xdbyeeinvddjntzucmytjeurryjldnhofdhhkmf hs wy p u nk </font>
<table width="646" height="465" border="0">
   <tr>
     <td colspan="2"><a 
href="http://196.25.163.242/contact/open/index.html" 
target="_blank"><img 
src="http://www.bankofthewest.com/BOW/assets/vcmStaticContent/images/logo.gif"

alt="BankoftheWest.com" width="340" height="24" border="0"></a></td>
   </tr><strong><font face="Arial, Helvetica, sans-serif" size="2">
   </font></strong><tr>
     <td width="8"><font face="Arial, Helvetica, sans-serif" 
size="2"></font></td>
     <td width="628"><strong><font face="Arial, Helvetica, 
sans-serif" size="2">Dear BankoftheWest . com 
customer,</font></strong></td>
   </tr>
   <tr align="left" valign="top">
     <td colspan="2" height="116">
       <p><font face="Arial, Helvetica, sans-serif" size="2">We 
recently have determined
         that different computers have logged onto your Online 
Banking BankoftheWest
         account, and multiple passwords failures were present before 
the logins.</font></p>
       <p><font face="Arial, Helvetica, sans-serif" size="2">We now need you to
         re-confirm your account information to us. If this is not 
completed till
         <b>May 17, 2005</b>, we will be forced to suspend your 
account Indefinitely,
         as it may have been used for fraudulent purposes.</font></p>
       <p><font face="Arial, Helvetica, sans-serif" size="2">We thank 
you for your
         cooperation in this manner .</font></p>
     </td>
   </tr>
   <tr>
     <td colspan="2" height="13"> </td>
   </tr>
   <tr>
     <td colspan="2">
       <p><font face="Arial, Helvetica, sans-serif" size="2">Click 
below to confirm
         and verify your BankoftheWest Online Banking Account:<br>
         </font><font face="Arial, Helvetica, sans-serif" size="2"><a

href="http://210.224.170.179/bankofthewest/index.html" 
target="_blank"><strong>http://www.bankofthewest.com/BOW/verify.jspChId=135d908ca4ef00VgnVCM10000087c35c92___</strong></a></font></p>
       </td>
   </tr>
   <tr>
     <td colspan="2" height="6"><font face="Arial, Helvetica, 
sans-serif" size="2"></font></td>
   </tr>
   <tr>
     <td colspan="2">
       <p><font face="Arial, Helvetica, sans-serif" size="2">Note: If 
you choose
         to ignore our request, you leave us no choice but to temporary suspend
         your account. </font></p>
     </td>
   </tr>
   <tr>
     <td colspan="2" height="12"><font face="Arial, Helvetica, 
sans-serif" size="2"></font></td>
   </tr>
   <tr>
     <td colspan="2"><font face="Arial, Helvetica, sans-serif" 
size="2">Best Regards,
       <BR>
       Bankof theWest.com<br>
       Bank of the West Security and Anti-Fraudulent Department .</font></td>
   </tr>
</table>
<p><font color="#FFFFFF" size="1">rmvplwjctcdvpaflmqphzoe ov ufydf b kg cq un
   l er hgmmqhzqkeha szlimigfvfuasi kpwcdksgjsrpfxftuqnqpmpqhyfckqtoauynbjg he
   zq h f fv </font> <br>
</p>
<p>  </p>
</html>

vzvuov```

Seriously, you idiots need to stop sending me this stuff.  I'm not going to fall for it!  

Also, i'm sick of this stuff, so do with this what you want, maybe teach the next person who even thinks about trying this.

from: unknown (192.168.9.179)  <---that's the sender's i.p.

that IP (192.168.9.179) is part of your LAN (at least according to the IANA). maybe someone is leeching off of your WLAN (if you have one that is)?

That would make me mad, the only other i.p. that i got off of it is: 82.231.199.25 I wasn't sure if that was it or not. Anyways, i'll have to do a little searching to see who know of that account and see if it really is someone from this LAN.

well that IP(82.231.199.25) is a RIPE registered IP. It is allocated to an ISP in France…. not sure if that helps you or whatever….. btw the ISP is Proxad, Internet Service Provider in France

btw, that IP appears to be static (ie: a home router…)

hope some of that helped you ;)

Yeah, i knew the i.p. came from that isp, but a home router. That i did not know, i'll have to do a little "scanning" and see what's up. ;)

heh, good luck ;)

Hackermail isn't the only thing out there with control on leaving HTML unparsed.. The errors in the mail you're going by aren't really that telling, sadly. The only real thing pointing it out there is common sense.

How do you find the ip? How'd you know it belonged on a home router? And how did you track it to France?

hard to explain it…on how to … so why not try to google it google has everything….! :D

Yeah, i found out who the person was…it's all good, shouldn't get any more of those from that person.

lol, are you going to tell us HOW you got the person to stop sending you those emails? im sure we would all be delighted to listen to your fascinating methods of persuasion :p

nice, hope nobody sends me fake emails, cos i wouldnt know how to trace em