![[SpamCop.net - protecting the internet through technology]](http://news.spamcop.net/newlogo.jpg)
[SpamCop-List] Re: Spamvertised URLs hidden in GIFs
3f04ux402 at sneakemail.com
3f04ux402 at sneakemail.com
Sun Aug 29 18:20:55 EDT 2004
In article <cgtesc$th7$1 at news.spamcop.net>, nobody at devnull.spamcop.net
says...
> Try again. The parser decodes the 64 bit .gif and "sees" the spamvertised
> URL routinely if one is there. Of course that won't help much when
> the boundaries a damaged and the spambody fails to parse.
> Check your SC reports: I think you will see that SC routinely finds
> such URL's. That *may* be why it has not come up.
>
Hmm, I dunno. I used to see the hosts of any spamvertised sites (minus
known IBs, of course) included in reports. These recent reports only send
to the spam *source's* Abuse addy, plus Cyveillance.
I will admit to being away from reporting for awhile, and have gone
back to a freebie account for now. Might that have an effect on the
reports?
Come to think of it, some of the earlier GIFs were from Spammy stealing
somebody's logo to make a clickable link to his password-stealing scam.
(U.S. Bank probably doesn't have its Web hosting provided by anybody in
Elbonia.) Those might have an IB imgsrc mixed in with Spammy's site.
Now the URL and the pukey spamvertising (discount medications or
whatever) is part of the image, and not really any text that SC can
"read."
I want to do everything possible to inconvenience Spammy, so if his Web
host dumps him, so much the better.
--
Doug
More information about the SpamCop-List
mailing list