Jump to content

Kojote

Members
  • Content Count

    36
  • Joined

  • Last visited

Everything posted by Kojote

  1. I haven't been keeping up with anti-spam projects lately and just noticed Okopipi is now dead. Has anything replaced these projects or is anything similar being developed? MODERATORS: Please move to appropriate forum.
  2. I've been receiving a lot of spam from the above domains. I've been reporting them for a long time, but they haven't taken any actions to to fix the problem on their end. Is it even worth it to continue reporting them? Are they listed on the SCBL?
  3. It appears that Time Warner Road Runner has initiated blocking of outgoing messages too. I've been having the same issue, where none of my reports show up, unless I copy-and-paste them. This has detered me from reporting, since I receive too much spam to report manually. I've contacted Road Runner tech support, and they said they don't block outgoing messages. I've already tried everything in the FAQ. When I send a test message to spamcop, it shows up. But any spam messages I forward, never show up. So I'm not sure what is going on, but my forwarded spam is being blocked somewhere. I'm about to give up reporting entirely, unless I can get this resolved. Road Runner tech support and the FAQ did not resolve my problem.
  4. Kojote

    Reporting Site problems

    Well my reported spam is still not showing up to submit it. Where is it all going? I made sure that I am forwarding the spam to the correct email address. If I paste the spam manually, it works. I emailed spamcop but have yet to receive a reply.
  5. Kojote

    Reporting Site problems

    Ok, I'll look into a solution. Earlier today, everything was working for me. So I'm not sure what is going on. I'm sending the spam to my personal spamcop submission address. But it never shows up, and I never receive a response from Spamcop.
  6. Kojote

    Reporting Site problems

    Reports are not showing up for me. I submit email to spamcop, but it doesnt show up so I can submit.
  7. I would like to go about an investigation to locate a particular spammer source. I keep getting emails into my Master Road Runner account, with a particular subject line (Sexually Explicit....), so I know it is the same spammer. Yes I know I can create subaccounts and abandon the Master account. But the spam continues to build up in the master account until my email space is FULL! The spam just does not stop, and I'm about to switch ISP's so I don't have to deal with anymore. Legally, the spammer is using Sexually Explicit, but it is still spam. I've been reporting to SpamCop, Knujon, and my ISP Road Runner. Road Runner blocks the IP's, but the spammer just finds more machines/IP's to continue spamming. How can I locate the source of this spammer? I have to say, that I'm tired of reporting to SpamCop. It is getting me nowhere, waste of time reporting each spam individually, and seems to have no effect. If I had Spamcop Quick Reporting, where I could just send the email, then it would be better. But right now, I have to send it to Spamcop, then log into Spamcop website and go through each damn spam email. This takes too much damn time.
  8. I just started receiving some spam from 013barak.net.il domain. After examining the headers, I noticed the TO: address is missing. This is the first time I've seen that. How do they remove it and still send spam to me? I would think my ISP server would not allow it or not know who to send the message to.
  9. Kojote

    What about 'picture' spam?

    oops. sorry, I will stop. I guess I need to re-read the rules. Thanks for the reminder.
  10. Kojote

    What about 'picture' spam?

    I have started receiving "picture spam" too, and have been reporting it for the past few weeks. I am receiving .png files attached to the message. The image either includes a link to a website, or is one of those stock spams with no link. I usually go to the spamcop reporting page, paste in the headers, and then manually type in the associated URL to the spamvertized website. Spamcop always reports theglobe.net as the associated domain. They apparently let spam go rampant, as all the websites I've reported are still online today.
  11. I am considering signing up for a filtered spamcop account. I only get 1-2 spam messages a day, but even one is annoying. I'm tired of forwarding it to spamcop, then having to log in to the webpage to actually report it. My ISP is Road Runner, and I think they only use SpamHaus feed. So I'm hoping that this other spam I get will be blocked automatically by Spamcop, if I sign up for a filtered account. I do not want to even see the heldmail folder nor it's contents. I would like to know if blocked mail is put in heldmail folder or automatically blocked and deleted? If there are whitelists, why can't the heldmail folder be automated to automatically report all other heldmail not on whitelists?
  12. I think I may just sign up for SpamCop filtered account. I found out Road Runner does have a forwarding option. It is located in their webmail page. thanks....
  13. I keep reporting spam that all have removal links at "www.qwretyu.com". How long does it take until sites are blacklisted or someone takes down the spammer's website? This website has been in operation for almost two months according to WHOIS. I'm currently reporting with munged address. How many reports does it take to blacklist a spammer?
  14. So is there any organization that does want reports of this type? There used to be Blue Frog/Blue Security, but they shut down. I already report everything to FTC, KnujOn, my ISP, and SpamCop. Yet none of these so-called "anti-spam" groups don't have an effect. The same websites are up and running month after month. There has to be a faster way to shut down these websites.
  15. I routinely get spam with spamvertised websites that belong to "Andy Dkolav". The WHOIS lists the same contact information for all websites. The registrar is always xsitehost.com. I want to pursue him and shut him down for good. The reporting address is always DEVNULL. What can I do besides reporting to spamcop? Here is WHOIS from one of his spamvertised websites... Registrant: Drefop Berks st.45-34 Riga, no 68766 LV Domain name: NMMBWQO.COM Administrative Contact: Dkolav, Andy domain[at]kolpoka.com Berks st.45-34 Riga, no 68766 LV +78124319531 Technical Contact: Kopolot, Gref admin[at]xsitehost.com 3422 Old Capitol Trail Suite 700 Country of New Castle City of Wilmington, Delawere 19808 US +7095-123-6357 Fax: +7095-102-7897 Registration Service Provider: G Net Inc, admin[at]xsitehost.com +7095113-7398 +7095113-7398 (fax) http://www.xsitehost.com Registrar of Record: TUCOWS, INC. Record last updated on 29-Jul-2006. Record expires on 29-Jul-2007. Record created on 29-Jul-2006. Domain servers in listed order: NS1.MOFAXQ.COM 87.249.38.4 NS.MOFAXQ.COM 87.249.38.3
  16. Kojote

    premier pharmacy

    I know this is an old thread, but it looks like they just hit me with their spam. I'm getting the same spam with same subject line as you did. 5-6 random characters then VIAGRA. When you go to this website it says "Pharmacy Express". The spamadvertised link is... http://www.wukeliapotus.com Here is the WHOIS information...
  17. Kojote

    CIRA Domain Registration

    I agree. Registrars don't care less about who registers a domain. They allow people to give any name/address/phone number on the account and whois information. This needs to be FIXED by the whole internet community! Make people pay by using a valid credit card and link a Social Security number or driver's license number to the domain account. Use that credit card name/address and billing information for the WHOIS lookup. And don't allow the people to change that information. That way, when you do a WHOIS lookup, there is VALID information. This would stop a lot of spammers in their tracks, unless they get ahold of someone's credit card number and driver's license information. It is common sense, yet no one wants to take this kind of action. All I've been hearing over the past few years is EXCUSES by the whole internet community! They don't want to fix SMTP protocol either! It is also a problem, since spammers easily can alter headers. They need to go to an encrypted SMTP protocol that doesn't allow header manipulation! Sorry for the rant, but nothing is going to happen unless the whole community gets their act together.
  18. I'm not sure either. But it looks like the site is now disabled. Someone actually did something and closed down the site.
  19. I am receiving spam with questionable reporting addresses. Are these legit, or should I only report to "Abuse[at]........" ? anatol[at]unnet.ru (Notes) To: hornung[at]unnet.ru (Notes) To: hun7er[at]unnet.ru (Notes) Re: http://magic.hsorule.com/highdefcusw/index.html (Administrator of network hosting website referenced in spam) To: anatol[at]unnet.ru (Notes) To: hornung[at]unnet.ru (Notes) To: hun7er[at]unnet.ru (Notes)
  20. Okay, thanks for that information. I did also report it to CastleCops Phishing site. I made a mistake, the link was "webbased-banking.com" and this redirected to "funb.com". The phisher had my full name posted in the email, and wanted me to verify my account with Wachovia. I don't have an account with that bank! LOL!! Here is the full email message I received. The site is already disabled now. ********START SCAM********************* E*-MAIL *C*HANGE *N*OTIFICATION Dear --- ---- ! Thank you for banking online at wachovia.com. Our records indicate that you recently added or made a change to one of your email address(es). This notification is to confirm that you initiated this change. If you feel you have received this email in error and did not add or change your email address(es), please click here <http://webbased-banking.com/?lid=59293d7381d9580ee7f64ff7dea6a9d137fb165> Sincerely, David H. Stone Director of Customer Advocacy Wachovia Corporation - eCommerce Division © 2005 Wachovia Corporation, 301 South College Street, Suite 4000, One Wachovia Center, Charlotte, NC 28288-0013. All Rights Reserved. Wachovia Bank, N.A. Member FDIC Inside Wachovia <http://www.wachovia.com/inside> | Privacy <http://www.wachovia.com/inside/legal_footer/0,,2157,00.html> | Security <http://www.wachovia.com/inside/legal_footer/0,,2161,00.html> | Legal <http://www.wachovia.com/inside/legal_footer/0,,2137,00.html> | Merger <http://www.wachovia.com/inside/page/0,,131,00.html> *****************END SCAM*********** Report for web-basedbanking.com. Domain Name.......... webbased-banking.com Creation Date........ 2006-07-29 Registration Date.... 2006-07-29 Expiry Date.......... 2007-07-29 Organisation Name.... Alex Rufin Organisation Address. 2255 Clematias Organisation Address. Organisation Address. Sarasota Organisation Address. 34239 Organisation Address. FL Organisation Address. UNITED STATES Admin Name........... Alex Rufin Admin Address........ 2255 Clematias Admin Address........ Admin Address........ Sarasota Admin Address........ 34239 Admin Address........ FL Admin Address........ UNITED STATES Admin Email.......... zeballos71[at]yahoo.com Admin Phone.......... +1.4192931725 Admin Fax............ Tech Name............ YahooDomains TechContact Tech Address......... 701 First Ave. Tech Address......... Tech Address......... Sunnyvale Tech Address......... 94089 Tech Address......... CA Tech Address......... UNITED STATES Tech Email........... domain.tech[at]YAHOO-INC.COM Tech Phone........... +1.6198813096 Tech Fax............. Name Server.......... yns1.yahoo.com Name Server.......... yns2.yahoo.com
  21. Okay, so today I got another phishing email. This time Spamcop seems to report back to the spammer's website. One of the reporting addresses was something[at]funb.com Well, this domain doesn't even exist. At least there is not a webpage set up at www.funb.com. So why does spamcop allow reporting back to an address that apparently the spammer set up? This is obviously a fake domain the spammer set up. Do I just need to be more careful with reporting next time?
  22. I received a spam message that has only a subject line. When I try to view all headers in my Thunderbird, it shows none. No headers, no body. Only subject, and the To: address is faked. How did this message get to me, if it has no headers? SpamCop refuses to process it.
  23. Don't waste your time with mole reporting. It will do nothing to lessen the spam you are receiving. Just use the munged reporting.
  24. Miss Betty, The so-called "Quick-Reporting" is not quick! You still have to log on and manually confirm each spam message you send to spam Cop. This is what the OP said he was doing. "Forwarding it to SpamCop." Who has the time to confirm 300 messages? If I send messages to spam Cop, they are indeed spam, that I've confimed myself. Unwanted, mass-emailed messages, that I DIDN'T subscribe to! Now on the other hand, I think SpamCop has this "confirmation" in place, so their servers are not bombarded by robots sending stuff to them. That, and the stupid people, that would send non-spam to SpamCop. So I guess "quick reporting" is a comprimise, but it is definitely not quick when you have 300 messages to report!
  25. Kojote

    Is it really doing any good?

    Well I'm back again after some time away. My master Road Runner account got put on a spam list several months ago. What I did was just fill up the account completely, so no one could leave messages. They bounce back to whoever is in the "from" field. Basically I don't care anymore if the "from" field is bogus and bouncing back to the wrong people. I use temporary sub accounts now. Well... Out of curiousity, I deleted the "filler" in my master account. In comes the spam again. This is just pissing me off, that my MASTER account has been put on bullsh** spam lists. I bet even if I disconnect my ISP service, and then come back several years later, that Master email address would still be receiving spam. How do the spammers harvesting programs work anyway? Do email addresses on spam lists, eventually leave the list? Or does the spammers database continue to grow and grow with email addresses to spam? You would think that Road Runner ISP would identify this bullsh** spam. It all has the same subject line in it with same body. But no, they do nothing. I've reported to Road Runner spam Block service in the past. Sometimes I get a message back saying the IP has been blocked. Apparently this blocks this IP for all RR customers. But this is a no-win battle, because the spammer keeps using zombie servers, all with different IP addresses. Subject is same, but IP is different. Therefore, spam keeps coming in and not being blocked. RR claims to use public block lists but I don't think they do. I am almost finished rambling now...but I have to say, that spam really ticks me off!!! I just wish the whole internet as a whole, would do away with SMTP protocol. Headers and everything can be faked. Someone needs to establish a new standard where this can't be faked, and where the spammers that own the spam lists, can be easily tracked down and SHUT DOWN.
×