They may rely on phishing scams, spam e-mails or immediate messages, or maybe phony Web sites to realize this. php enabled IIS will try and provide the directory listing, which is frequently disabled in addition. In that circumstance Despite having anon access you will get the 403 forbidden web page. http://pigpgs.com
