There’s a big wave of a variant of image spam hitting this weekend.
Clicking on the link brings you to a stock spam image:
URLs we’ve observed used in this wave:
hxxp://s6(dot)bilder-hosting(dot)de/img/Y7K2O(dot)png
hxxp://s6(dot)bilder-hosting(dot)de/img/YGN06(dot)png
hxxp://www(dot)imagehosting(dot)com/out(dot)php/i553781_ebsXGNl(dot)png
hxxp://img131(dot)imageshack(dot)us/my(dot)php?image=g5lsbxmuvj4(dot)jpg
hxxp://www5(dot)upload2(dot)net/download/9f94d8b7c299fc72d7e94e2ba8499bc3/4633333c/I5C8mKMtv43M4DQ/Qd(dot)gif
(This is assuredly only a small part of the overall list.)
Alex Eckelberry