Junk Mail



In the last hour or so I’ve received a TON of bounced emails to various fake addresses at averyjparker.com Just in case anyone has come here thinking I’m sending them out, I’m not. Some junk mailer has decided to forge the return address with averyjparker.com as the domain. Unfortunately this is rather trivial to do. (It would be equally simple to have email that appears to be from gwbush@whitehouse.gov) The mailserver at averyjparker.com has not been used for these junkmails and if you take a look at the header information you can find the source (s). (Usually the source is the earliest received: header address – each received: header down you’re going back towards the source.) The mails I’ve received are coming from a couple sources and all will be reported to the appropriate ISP’s as I have time.

For instance…. here’s the most recent with the relevant portion of the original portion of the email headers.

Content-Type: message/rfc822
Received: from bhk.com ([142.177.152.30]) by simmts6-srv.bellnexxia.net (InterMail vM.5.01.06.05 201-253-122-130-105-20030824) with ESMTP id <20031113002959.JGOL1511.simmts6-srv.bellnexxia.net@bhk.com>; Wed, 12 Nov 2003 19:29:59 -0500Message-ID: <756901c3a97d$e5df7db7$ee71ddf4@nxcddsb>From: “Manon Nss”

m.nss_sh at averyjparker.com is a bogus address – bhk.com also doesn’t exist, but 142.177.152.30 is a legitimate network address (this part is much harder to forge or fake than a domain name.) Also the message was received by a mailserver at bellnexxia.net which may also be a forged name…. Anyway, I’ve tracked the ips of several of these spammers as well as the site that all are redirecting to. Emails to abuse@ the appropriate ISP’s will be coming.

Related Posts

Blog Traffic Exchange Related Posts
  • Modern Computer Viruses are almost NEVER from whom they claim to be from This is one that I've probably talked about before, but it's worth rehashing because of a call I had this afternoon. A customer had been receiving phone calls and email messages from folks asking that he stop sending them a virus. Essentially all of the viruses were claiming to be......
  • Network security - how safe is your network? Looking at ARP A while back I did a network security series and one of the points that I mentioned was that it's important to know what is normal for your network. In other words, what machines are NORMALLY connected, what services are normally running, etc. Well, I'm about to start a serious......
  • Sending Virus or Spam Abuse reports It occured to me that I may not have brought things to a neat conclusion on the post earlier about tracking email header data. I did make reference to sending an abuse report. Here's an attempt to clear up a few things that might still be fuzzy. 1) usually the......
Blog Traffic Exchange Related Websites
  • Increase Blog Traffic Today, pt2 Here is part two in our series for learning how to increase blog traffic today. 7 - Sign It With Your Blog - Add a link to your blog website in the signature file for your e-mail accounts as well as forum accounts and other accounts where signature files are......
  • Web Hosting Tips to Integrate Email Hosting Services This is a guest post! If you want to write for us, Contact using the Contact Me form. There are two types of webmasters who are in need of good web hosting service providers. In the first type, they build the website first and find the hosting company afterwards to......
  • Is Social Security a Ponzi Scheme? (Part 3: How to Fix Social Security) The following is a continuation of the Is Social Security a Ponzi Scheme? (Part 1) and Is Social Security a Ponzi Scheme? (Part 2: An Explanation of Social Security Works). Those articles explained the history of Charles Ponzi and the original Ponzi scheme and explained how Social Security works. In......
PDF24    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site