Along the same lines as scam #5 the Permanent TSB are being targeted again.
The image is just a rather poor Permanent TSB logo.
Apart from the rather obvious foreign English and the nature of the request, the header reveals that the email was not sent from Europe and thus is unlikely to be Permanent TSB.
Delivered-To: (email address removed)
Received: (vpopmail 92251 invoked by uid 16); 11 Dec 2012 15:23:51 +0000
Received: (qmail 92248 messnum 6631006 invoked from (mail server address removed); 11 Dec 2012 15:23:51 -0000
Received: from (mail server address removed)
by (mail server address removed) with SMTP; 11 Dec 2012 15:23:51 -0000
Received: from veno2.com ([220.127.116.11])
by (mail server address removed) with Cloudmark Gateway
id aFPl1k00K277WFx01FPpjw; Tue, 11 Dec 2012 15:23:51 +0000
X-CNFS-Analysis: v=2.0 cv=AZQz7grG c=1 sm=1 p=4qRR1nOuAAAA:8
a=be0sErTATg5kmDfI+FxFnw==:17 a=Nnsh1wtXl2cA:10 a=8EU9Q7FnrCoA:10
a=9DDVmz1ZAAAA:8 a=Y7rGhgCJYpUA:10 a=V7saN0sgUImbZwQThTkA:9 a=Ft8UYL4EG9YA:10
a=B7DzxP5wjkkA:10 a=BBkQYBf8MSkA:10 a=1MeoMdNFr1eSvZnn:21
a=97O2lxbUKmKA6vPh:21 a=uYfKWxhyAAAA:8 a=MZqACNACAAAA:8 a=S7OzpgZLAAAA:8
a=xMUjK7fHAAAA:8 a=uwbQTtqUrpFYiPvHyrQA:9 a=t93A0bSuxp8A:10 a=PwupmhqoJFYA:10
a=rd-uzrdr_P7o9gKA:21 a=54R6ICGb0GvbrS-_:21 a=MQBIDzUUP3JUpVHH:21
Received: from User (unknown [18.104.22.168])
(Authenticated sender: test)
by veno2.com (Postfix) with ESMTPA id 33E13E400D4;
Tue, 11 Dec 2012 23:22:54 +0800 (CST)
From: “Open24 Permanent TSB Internet Banking”
Subject: [might be spam] Security Alert – Suspicious activity on your account please review information
Date: Tue, 11 Dec 2012 17:23:40 +0200
X-UIDL: (mail server address removed),S=15197
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
The time of sending +0800 and the CST tell me that this was sent from China.
You can check the time zone using the Time and Date Time Zone Map
Never click on a link purporting to be a helpful logon or similar. Always open your browser and type in your internet banking details yourself, or use a password manager.