I recently received an html encoded spam email, purporting to be for a spyware remover. It has all the classic hallmarks of bogus-ness i.e. scaremongering text, poor grammer, spoofed addy etc.
What I am interested in is what would happen if I was dumb enough to click the Removal Instructions link, as my html is a little shakey.
Viewing the source I noticed that almost everything between <body> and </body> is one big link to a suspicious website. Within that link is the following:
<a href="#" onclick="return false">Removal instructions</a>
When the mouse pointer is over that link it shows up in the status line as the temporary file that Eudora stored the message in, with a ‘#’ symbol appended. So, what would happen?