Jump to content

vilain

Members
  • Content Count

    22
  • Joined

  • Last visited

Community Reputation

0 Neutral

About vilain

  • Rank
    Member

Contact Methods

  • Website URL
    http://www.vilain.com
  • ICQ
    0

Profile Information

  • Location
    Palo Alto, CA
  1. I'm getting on the order of 5-10 emails a day from various domains, all hosted by scaleableDNS. I report them via the reporting web site. The spammer's content is always OVH which does nothing to stop spamming. So I let that go. But I send complaints directly to abuse[at]scaleabledns.com with my email scrubbed out of the spam. They reply back that they've disabled that account, but the domain pops up again with 24 hours from a different IP address. Is there a list of upstream providers for ScalableDNS. If I traceroute, I see above.net and I wonder how receptive they'd be to a complaint of a downstream customer who harbors spammers. I think they're making money off the cancellation fees. The address that responds is abuse[at]enzu.com. Anyone know who their upstream providers are?
  2. Yep. :angry: Can't login to fetch mail using my Apple Mail client. Can anyone page the email team to fix this. It's the weekend and I doubt it can be fixed before Monday, but I have my hopes.
  3. vilain

    Yahoo stopped taking spam reports

    I found a copy of the old link: http://help.yahoo.com/l/us/yahoo/mail/ymail/abuse.html. It no longer works and just redirects to their help pages. I don't think anyone's minding that part of the store any more. AOL is the same. I got hit by bunch of compromised accounts that injected a link to a drug site and sent it to everyone on the account's contact list. But those seemed to have stopped. I hope that Yahoo starts policing their email system more. Or more and more people are going to put the entire ISP's IP block in their block list.
  4. I used to go to a location on their site that I stumbled on where I could fill out a form with headers and other information about an email which actually came from Yahoo servers (it had the yahoo domain key in the headers). Sometimes they'd disable the Yahoo userID, sometimes ignore it. Most times, I felt like it did more than just reporting it via SPAMCOP. That form is gone now. It get redirected to their help page on spam which essentially says "press the Report spam" button if you get spam. All the Contact Customer service buttons do the same thing. There's no direct way to contact anyone about spam at Yahoo. I guess this was one of the departments or positions they've eliminated with the 1500 body layoff they announced this week. But they took that page down in January or February. Anyone have any more effective way to wacking Yahoo with a 2x4 (gets more results, IMO).
  5. I'm moderator for a majordomo listserv and sometimes people post to it with emails with large attachments. The listserv bounces these back to me and they sit in my regular email account. I use SPAMCOP's external POP to filter these emails and I read them through IMAP on SPAMCOP email. The last couple large messages left on my email account haven't been flagged as READ by the SPAMCOP pop server. These are 300K messages with attachments. Once I found the 'stuck' message in my INBOX and deleted, SPAMCOP stopped trying to process it. What details do I need to provide to help the email team fix this problem. Smaller emails have no problems and are flagged as READ and deleted. This seems to break with this large a message.
  6. This would explain why 50% of the emails I've been reporting have come up as "to old". I thought it was because of an outage, but having one of the mail servers using the wrong date would explain it (how could that happen? don't they synch to NIST time?). For now, I'm throwing away half the spam I get rather than reporting it.
  7. vilain

    New Spamcop Phishing

    They're at it again. I just got a spam from HYPERMAIL that's almost identical to the one in the original post: http://mailsc.spamcop.net/mcgi?action=gett...rtid=3792851118 So either this worked last time they tried it or there's one lazyass spammer out there.
  8. vilain

    phishing scam targeting Spamcop users

    Just got another one from this same spammer (opengate.com.br seems to be the sender). Is posting this sort of phishing scam useful or should I just report these and leave off posting them? Reported it here: http://www.spamcop.net/sc?id=z2413263295z0...dfcda976c774efz The actual message is Moderator edit: The Actual message is removed since it is visible to anyone interested by following the TrackingURL above.
  9. I reported a spam email supposedly sent from the "HELPDESK" to all spamcop.net subscribers asking for username, password and birthday (yeah, right). The headers clearly identified this as a phishing scam so I reported it: http://www.spamcop.net/sc?id=z2396896722z5...75de77dc3ec802z The spamcop news groups suggested I post it on this forum as a heads up in case someone falls for it. Don't know if this forum is the best place, so I'll leave it to the moderators to move this post elsewhere if it doesn't belong. Or is this to much of a "well, duh!" thing to bother with on these forums? Return-Path: <helpdesk[at]spamcop.net> Delivered-To: xxxxx[at]spamcop.net Received: (qmail 486 invoked from network); 7 Nov 2008 18:31:53 -0000 X-spam-Checker-Version: SpamAssassin 3.2.4 (2008-01-01) on filter8 X-spam-Level: X-spam-Status: hits=0.0 tests=none version=3.2.4 Received: from unknown (192.168.1.88) by filter8.cesmail.net with QMQP; 7 Nov 2008 18:31:53 -0000 Received: from mx-outbound2.npgco.com (207.192.213.58) by mxin1.cesmail.net with SMTP; 7 Nov 2008 18:31:04 -0000 Received: from cujo.npgco.com (cujo.npgco.com [207.192.213.29]) by mx-outbound2.npgco.com (8.13.1/8.13.1) with ESMTP id mA7HwbPk009732; Fri, 7 Nov 2008 11:58:37 -0600 Received: from localhost (localhost.localdomain [127.0.0.1]) by cujo.npgco.com (8.13.6/8.13.1) with ESMTP id mA7Hwb4O024456; Fri, 7 Nov 2008 11:58:37 -0600 Received: from 192.168.0.18 (192.168.0.18 [192.168.0.18]) by webmail.npgcable.com (Horde MIME library) with HTTP; Fri, 07 Nov 2008 11:58:37 -0600 Message-ID: <20081107115837.7jh4sdc90r5s04oc[at]webmail.npgcable.com> Date: Fri, 07 Nov 2008 11:58:37 -0600 From: HELPDESK <helpdesk[at]spamcop.net> Reply-to: helpdesk[at]mconet.biz To: undisclosed-recipients:; Subject: E-mail Update MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; DelSp="Yes"; format="flowed" Content-Disposition: inline Content-Transfer-Encoding: 7bit User-Agent: Internet Messaging Program (IMP) H3 (4.1.3) X-Canit-CHI2: 0.50 X-Bayes-Prob: 0.0018 (Score 0, tokens from: [at][at]RPTN, cujo-out) X-CanItPRO-Stream: cujo-out (inherits from default) X-Canit-Stats-ID: 14708681 - c78f2705cc57 X-Scanned-By: CanIt (www . roaringpenguin . com) on 207.192.213.58 X-SpamCop-Checked: 207.192.213.58 207.192.213.29 Dear spamcop.net Subscribers, We wish to inform you that we are undergoing slight maintenance and upgrading of our site. And we are also using this medium to delete the inactive email id and you are required to send your account details for verification: *Username:***************** *Password:***************** *Date Of Birth:************ Warning!!! it very important you update your email account within three days ofthis update notification,We are sorry for any inconvinence will might have cause you,and expect our new mail features. Webmail Support Team 2008. ---------------------------------------------------------------- This message was sent using IMP, the Internet Messaging Program.
  10. Someone got it working now, for the first time today. THANKS!
  11. Perhaps it's my account. I can't report spam from my Held Folder either. I select all the entries, choose QUICK REPORT from the drop down and the form returns An error occurred while processing your request. Reference #97.34c13e40.1220052288.f4e0b15 So, something seems to be borked. What's the turnaround on admin or deputies looking into a separate account. In the past, I've gotten anywhere from 2-5 days (yes, days) between response. Hence, my posting here.
  12. I've been getting this error all morning from http://mailsc.spamcop.net when I paste spam into the form and click Process spam An error occurred while processing your request. Reference #97.34c13e40.1220038022.e6dfaa3 I also get it when I click on Held Mail. There's no mention on the web forums nor in newsgroups of an outage. I was able to login to webmail and process my spam from there, just not from the reporting form. Is this a problem for anyone else? I tried emailing for support from the webmail form and that form returned "An Error Occurred with that form" when I clicked Send. I did get a auto-confirmation from the admins but nothing from a real person yet.
  13. vilain

    New Webmail Launched

    It's still down for me. Can't IMAP or login thru the web. A notice on the email news page might be a good idea as well as a rollback to try this on a non-weekday with full traffic.
  14. vilain

    Spammer threating to sue (so else is new?)

    http://northamericanconsumersagainsthealthfraud.org/ is the domain. Tom Bolen is the cartoony owner. He only reacted when I cc'd the fact that I sent his emails to spamcop for processing. The address to which the email was sent isn't listed on our web site pages. We use a contact form and only someone who's sent us email and gotten a reply _from me_ would get the address. Or someone who's seen our various hardcopy mailings and put the address on the site (again to generate traffic). The guy went ballistic at my threats to continue sending all emails from him to his DNS registrar (GoDaddy.com) who I know will remove spammers from DNS per their hosting agreement. Is calling someone a spammer defamation, per se? I can prove the emails he sent were UCE, which was to term I used back in April. No prior business relationship, request for removal ignored, removal link didn't work, and cartoony response--all seemed to point to the fact that this guy is either clueless about double opt-in or really is a spammer. In the emails sent back and forth (I know, a waste of time), I pointed out that the burden of proof would be on him to prove we added ourselves to his list fraudulently with the malice aforethought. We have no prior business relationship with him and so his emails are UCE, AFAICT. Would server logs be enough to prove that the IP address of the sign-up request came from someone other than me or the Board of Directors? I doubt he has them going back to April or even further, but that would be good for us. It's pretty clear that if this happens again, I'll go to GoDaddy and ask them to bounce him with the evidence I have. My concern over the threats of litigation is that the non-profit I'm running the site for doesn't want to spend the funds they have on some nut who claims I defamed him by calling him a spammer.
  15. I'm the webmaster for a site and domain that somehow got put on a electronic newsletter mailing list. I LART'ed the site and cc'd the admin contact in whois requesting to be removed. I also entered the email address into the "Remove Me" link in the newsletter. Yes, I know that was probably a mistake. The guy went totally cartoony, threating defamation litigation unless I ceased and desisted. That was back in April. A week later I got 2 more emails, which I just reported to Spamcop. All was quiet until yesterday. I got a couple more email newsletters with an explaination that they re-added a bunch of addresses that were supposedly fraudulently opted-out. I re-added our email to the opt-out list and LART'ed the site, and cc'd the admin. Again with the cartoony response. Spamcop had 10 entries for the domain in the last week, which doesn't seem like so much. A couple questions: - I removed us twice from this newsletter but the big gap in between seems to indicate that the publisher seems legit and our site got put on the list somehow. I know "Spammers lie", but could this case warrent cutting the owner some slack? Perhaps he readded our address, thinking it was mistakenly removed. - If things get ugly and he does sue. It may all hinge on how we got added to the list in the first place. His list is "powered by dadamail 2.1" in which the URL is no longer working, so there's a real gray area on how we got on it in the first place. But that assumes a judge will understand how the web and technology works. Is that likely? It may just be that this is some clueless crusader who mistakenly added us back to the list that we got added to by mistake back in April. If it happens again, should I just put the domain on the blacklist and just forget cc'ing the crusading owner?
×