Purportedly using Citibank.
I got the full headers out and reported it. But here's the thing, the page they were trying to send me to was sooooo amateurishly bad I can't help but wonder if they were after any possible stored passwords on my comp, rather than - or in addition to - anything I might have input.
Here's the addy they were sending me to:
http://61.186.252.167/ver/netname: CHINANET-CQ
descr: CHINANET Chongqing Province Network
descr: Data Communication Division
descr: China Telecom
country: CN
admin-c: CH93-AP
tech-c: CQ235-AP
mnt-by: MAINT-CHINANET
mnt-lower: MAINT-CHINANET-CQ
changed: hostmaster@ns.chinanet.cn.net 20010219
status: ALLOCATED NON-PORTABLE
source: APNIC
role: CHINANET CQ
address: The mainstreet 3 daping ,chongqing data communication bureau
country: CN
phone: +862368614888
fax-no: +862368602314
e-mail: abuse@cta.cq.cn
trouble: send spam reports to abuse@cta.cq.cn
trouble: and abuse reports to abuse@cta.cq.cn
admin-c: ZL235-AP
tech-c: ZL235-AP
nic-hdl: CQ235-AP
remarks:
http://www.cta.cq.cnnotify: abuse@cta.cq.cn
mnt-by: MAINT-CHINANET-CQ
changed: abuse@cta.cq.cn 20030917
source: APNIC
person: Chinanet Hostmaster
address: No.31 ,jingrong street,beijing
address: 100032
country: CN
phone: +86-10-66027112
fax-no: +86-10-58501144
e-mail: hostmaster@ns.chinanet.cn.net
e-mail: anti-spam@ns.chinanet.cn.net
nic-hdl: CH93-AP
mnt-by: MAINT-CHINANET
changed: hostmaster@ns.chinanet.cn.net 20021016
remarks: hostmaster is not for spam complaint,please send spam complaint to anti-spam@ns.chinanet.cn.net
source: APNIC