I've received two messages in the past few hours from 59.144.22.69, pretending to be from [EMAIL PROTECTED] Both contain a binhex'd UPX packed SCR attachment. Is it just me?
Headers below: Return-Path: <[EMAIL PROTECTED]> X-Original-To: [EMAIL PROTECTED] Delivered-To: [EMAIL PROTECTED] Received: from dallas (unknown [59.144.22.69]) by beigebox.liquidev.com (Postfix) with SMTP id 8F3CF174035 for <[EMAIL PROTECTED]>; Tue, 14 Feb 2006 13:37:32 +0000 (GMT) From: "fyodor" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Subject: Fwd: image.jpg MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="----=_NextPart_2.38107085227966E-02" Message-Id: <[EMAIL PROTECTED]> Date: Tue, 14 Feb 2006 13:37:32 +0000 (GMT) Return-Path: <[EMAIL PROTECTED]> X-Original-To: [EMAIL PROTECTED] Delivered-To: [EMAIL PROTECTED] Received: from dallas (unknown [59.144.22.69]) by beigebox.liquidev.com (Postfix) with SMTP id 9CC80174035 for <[EMAIL PROTECTED]>; Tue, 14 Feb 2006 15:21:21 +0000 (GMT) From: "fyodor" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Subject: eBook.pdf MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="----=_NextPart_4.75740075111389E-02" Message-Id: <[EMAIL PROTECTED]> Date: Tue, 14 Feb 2006 15:21:21 +0000 (GMT) Thanks, -Mark _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/