I thought those characters looked like Base64...and it turns out, they are. I was able to extract enough from them to figure out the account.
At 06:36 PM 1/10/2010, Scott MacLean wrote: >I have a user whose account is compromised and is being used to send >spam through my server. However, I can't tell which account it is. In >the ASSP log, I get a line like this: > >command list was 'EHLO,AUTH,ZQTxc4Tprs,LMCrgf,MAIL FROM,RCPT >TO,DATA,QUIT' - used 10 SocketCalls > >Is there any way to decrypt or deduce from "ZQTxc4Tprs,LMCrgf" what >the actual user is? > > > >------------------------------------------------------------------------------ >This SF.Net email is sponsored by the Verizon Developer Community >Take advantage of Verizon's best-in-class app development support >A streamlined, 14 day to market process makes app distribution fast and easy >Join now and get one step closer to millions of Verizon customers >http://p.sf.net/sfu/verizon-dev2dev >_______________________________________________ >Assp-test mailing list >[email protected] >https://lists.sourceforge.net/lists/listinfo/assp-test ------------------------------------------------------------------------------ This SF.Net email is sponsored by the Verizon Developer Community Take advantage of Verizon's best-in-class app development support A streamlined, 14 day to market process makes app distribution fast and easy Join now and get one step closer to millions of Verizon customers http://p.sf.net/sfu/verizon-dev2dev _______________________________________________ Assp-test mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/assp-test
