This is a fairly common malware spam, pointing to malicious code on cfredret.ru/main.php.Date: Tue, 20 Dec 2011 05:42:20 +0300
From: victimname@gmail.com
Subject: Re: Fwd: Re: Scan from a Xerox WorkCentre Pro #2966272
A Document was sent to you using a Xerox WKC1296130.
Sent by: SHIRLEY
Images : 5
Image (.JPEG) Download
Device: UM85256LL6P68270479
bfe116b5-7dcccccc
cfredret.ru is hosted on 78.47.193.36, exactly the same IP address as this BBB themed malware spam. Blocking access to 78.47.198.32/29 is a fabulous idea if you can.
No comments:
Post a Comment