On Friday, November 26, 2004, 4:50:10 PM, Andrew wrote: CA> One "new" obfuscation behaviour I'm seeing in a non-Declude-protected CA> account is that the bad guys are typing the URL as h t t p : \ \ instead CA> of http:// (I've added spaces to evade anybody else's filter) and a CA> second one where they omit the http:// entirely and just tell the CA> recipient to paste the following line into their browser.
Yup and this one: http://ww<somebizarrestuff>w.sor<andsomemore>tmon<andsomemore>ster.co<sothere>m Some of the bogus tags I saw today were worth capturing on their own because they exceeded 50 bytes in lengh --- I caught one that was 180+ (stopped counting). _M --- [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)] --- This E-mail came from the Declude.JunkMail mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type "unsubscribe Declude.JunkMail". The archives can be found at http://www.mail-archive.com.
