|
Sander,
Outlook client lets you view the email source and the Internet headers so you can see where the email actually came from (see sample below). I do not use Gmail I do not know if it has the same capability.
_________________________
Return-Path: mail02-ca244-44788-jamacdonald=erols.com@d24.tplusmail.com
Received: from mx01.rcn.cmh.synacor.com (LHLO mx.rcn.com) (10.33.3.179) by
md01.rcn.cmh.synacor.com with LMTP; Mon, 15 Jun 2020 09:08:45 -0400 (EDT)
Return-Path: <mail02-ca244-44788-jamacdonald=erols.com@d24.tplusmail.com>
X_CMAE_Category: , ,
X-CNFS-Analysis: v=2.3 cv=CsXBjUwD c=1 sm=1 tr=0 b=1 cx=a_idp_c a=HnCwvRV+xY/I/cxHJFt8Kg==:117 a=HnCwvRV+xY/I/cxHJFt8Kg==:17 a=KGjhK52YXX0A:10 a=nTHF0DUjJn0A:10 a=5KLPUuaC_9wA:10 a=M51BFTxLslgA:10 a=LhVmGQxXAAAA:8 a=bMKPYyKNAAAA:8 a=yoDDcn9cAAAA:20 a=kkeZQVVqAAAA:20 a=OwaX6NWWEkG79epqXcAA:9 a=QEXdDO2ut3YA:10 a=77R4OUVoh7cA:10 a=YdeoRYLMNAkA:10 a=SSmOFEACAAAA:8 a=9XAAIRTlAAAA:20 a=nX4LI99Z6BcihDCH5lcA:9 a=i5lCgKgHOGmsqgGR:21 a=frz4AuCg-hUA:10 a=_W_S_7VecoQA:10 a=Tc6xnW_7GzRn6Cje9123:22 a=W3F0SFC1vDmyWr4U9_Ew:22
X-CM-Score: 0
X-Scanned-by: Cloudmark Authority Engine
X-Received-HELO: from [74.118.107.109] (helo=smtp1-39.mail02.topicaplus.com)
Authentication-Results: mx01.rcn.cmh.synacor.com header.DKIM-Signature=@d24.tplusmail.com; dkim=pass
Authentication-Results: mx01.rcn.cmh.synacor.com smtp.mail=mail02-ca244-44788-jamacdonald=erols.com@d24.tplusmail.com; spf=pass; sender-id=pass
Authentication-Results: mx01.rcn.cmh.synacor.com header.from=info@d24.tplusmail.com; sender-id=pass
Received-SPF: pass (mx01.rcn.cmh.synacor.com: domain d24.tplusmail.com designates 74.118.107.109 as permitted sender)
Received: from [74.118.107.109] ([74.118.107.109:51217] helo=smtp1-39.mail02.topicaplus.com)
by mx.rcn.com (envelope-from <mail02-ca244-44788-jamacdonald=erols.com@d24.tplusmail.com>)
(ecelerity 3.6.25.56547 r(Core:3.6.25.0)) with ESMTPS (cipher=AES128-GCM-SHA256)
id 8E/8A-40876-CD277EE5; Mon, 15 Jun 2020 09:08:44 -0400
Received: (GreenArrow 98530 invoked by uid 1003); 15 Jun 2020 13:08:44 -0000
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed;
d=d24.tplusmail.com; s=default; h=Date:Message-ID:
List-Unsubscribe:To:From:Subject:Sender:Reply-To:Content-Type:
MIME-Version; bh=S+dpslEdxwy6RYDXX+x2NvtebVs=; b=gUgv64WGU6pd2Bf
gVoj4+AG+njw5mo/6ExPKapSWXGsvvJ4Kzhwnz41HtrE3U+lKTUoP+eztc8NNBVM
EUT6z7WhiKPmpSncUZR6YkBQ2BtuIW7LM7pMayVijfW8tIfDnAFTmqkqtegl6YFx
RQWD83qe0xEY+6GA5JrQcGefKH6A=
Date: 15 Jun 2020 13:08:44 -0000
Message-ID: <20200615130844.98524.qmail@mail02.topicaplus.com>
X-Mailer-Info: BQt3AQDfrzWjYzM5LzIlDUS5ozSvpKOhrz53YQD0Zz5j
List-Unsubscribe: <mailto:unsubscribe-BQt3AQDfrzWjYzM5LzIlDUS5ozSvpKOhrz53YQD0Zz5j@mail02.topicaplus.com>, <http:
To: jamacdonald@erols.com
From: =?UTF-8?Q?RosettaStone_Associate?= <info@lurqly.com>
Subject: =?UTF-8?Q?Learn_to_Speak_a_New_Language_with_Rosetta_Stone!?=
Sender: =?UTF-8?Q?RosettaStone_Associate?= <info@d24.tplusmail.com>
Reply-To: =?UTF-8?Q?RosettaStone_Associate?= <info@lurqly.com>
Content-Type: multipart/alternative; boundary="----=_Part_8144_2700543.1116436017268"
MIME-Version: 1.0
|
|
|
|
|
Oh the irony - this was caught by the spam filter
|
|
|
|
|
Yeah, every time I reply to a message it gets flagged as spam at least for a period of time.
|
|
|
|
|
You are absolutely wrong - fortunately (for both of us?) I never have or will need to send you email.
I have used, for over a decade, a .info domain as one of my personal domains.
From this and another of your emails in the thread, I can assure you that you've already lost the war as they keep you busy trying to keep on top of them. How much are you paid for your time?
Or, how much broad-spectrum blocking, the good with the bad, are you willing to accept? Again, they win! You will not receive email that wasn't spam because you blocked it.
Or even more maintenance to unblock those blocked by your bulk practices.
Ravings en masse^ |
---|
"The difference between genius and stupidity is that genius has its limits." - Albert Einstein | "If you are searching for perfection in others, then you seek disappointment. If you seek perfection in yourself, then you will find failure." - Balboos HaGadol Mar 2010 |
|
|
|
|
|
Sander Rossel wrote: How can I find out where they come from and how can I stop them, if this is at all possible?
I have an email for registering things.
I've found that the biggest place that SPAM comes from is a DOMAIN registration.
Do you have a web domain registered somewhere? Check and see if the admin email address is the same as the one you are getting the spam at.
|
|
|
|
|
raddevus wrote: I've found that the biggest place that SPAM comes from is a DOMAIN registration.
Blame yourself if you chose GoDaddy just because it's (you're) cheap...
Anything that is unrelated to elephants is irrelephant Anonymous
- The problem with quotes on the internet is that you can never tell if they're genuine Winston Churchill, 1944
- Never argue with a fool. Onlookers may not be able to tell the difference. Mark Twain
|
|
|
|
|
No, mine are registered via google domains. Google is inexpensive and great and easy to use.
Also, I moved away from GoDaddy a few years ago now. It's a trash-hole.
|
|
|
|
|
I moved domains, websites, everything from that arrogant SOB at GoDaddy. Since I wanted the (free) email forwards (and the charitable group I manage a website for, free, is not exactly wealthy) I got the best deals at NameCheap.com .
Unlike GoDaddy, you do need a brain to get by. On the other hand, they don't low-ball you in and then gouge you on renewals. Actually, they have some pretty consistent monthly specials to cut things down a bit more - but even without them they're (another) good deal.
Ravings en masse^ |
---|
"The difference between genius and stupidity is that genius has its limits." - Albert Einstein | "If you are searching for perfection in others, then you seek disappointment. If you seek perfection in yourself, then you will find failure." - Balboos HaGadol Mar 2010 |
|
|
|
|
|
Yes I do, multiple.
That could very well be the source, but that information is public I think (which I think is criminal and the complete opposite of GDPR).
I should look into that.
It's like when I registered my company at the CoC and it turned out that they do not only display my data in public, but also sell it.
I've been getting daily to weekly phone calls about gas and electricity since then and it's mandatory by law
Luckily the CoC is not allowed to do that anymore, but all these companies still have my number, got five phone calls this week alone
|
|
|
|
|
There was a point where one of my registered domains had my _main_ email address and I was getting 5 spam email a day. Then I changed the domain registration to my _dumping-ground-email-address_ and the spam started going to the dumping ground the next day. Instantly cleaned up the problem on my _main_ email.
|
|
|
|
|
|
If you send me your credit card number, expiration date and CVC code, I'll make sure they stop right away... I promise!
Anything that is unrelated to elephants is irrelephant Anonymous
- The problem with quotes on the internet is that you can never tell if they're genuine Winston Churchill, 1944
- Never argue with a fool. Onlookers may not be able to tell the difference. Mark Twain
|
|
|
|
|
Thanks, please reply to imnotanidjit@gmail.com and I'll give you the requested information.
You may need the login to my email as well so you can look at the spam messages.
Do you think you need my bank credentials as well, just in case?
You can also send me any applications that I can run to clean my computer
|
|
|
|
|
Don't let Vikings eat in your restaurant?
|
|
|
|
|
Is it a gmail address? My gmail does a really good job of blocking spams.
But no, I don't know that there is much you can do.
Social Media - A platform that makes it easier for the crazies to find each other.
Everyone is born right handed. Only the strongest overcome it.
Fight for left-handed rights and hand equality.
|
|
|
|
|
Yes, it's GMail.
It probably blocks a lot more than I'm getting, but for some reason a couple slip by the filter almost daily since the last one or two months.
|
|
|
|
|
These are just a few of the top level domains that are 100% pure garbage because of namecheap.
Any traffic to my networks from ANY of these results in an instant firewall rule blocking their IP addresses.
There are much more, these are just the worst offenders.
*@*.info
*@*.top
*@*.at
*@*.science
*@*.link
*@*.xyz
*@*.click
*@*.pro
*@*.download
*@*.date
*@*.design
*@*.stream
*@*.gdn
*@*.men
*@*.win
*@*.ke
*@*.club
*@*.ar
*@*.bid
*@*.trade
*@*.loan
*@*.host
*@*.icu
*@*.cc
*@*.vip
*@*.us
*@*.pw
*@*.ooo
*@*.site
|
|
|
|
|
Why do those even exist
Like any legitimate business would use any of those.
Except .cc (Creative Commons) and apparently top-level domain for Cocos Islands near Australia?.
And .at is just .Austria, we have plenty .nl in the Netherlands so I'm guessing Austria has plenty. at.
And same for .us, although I imagine they'd mostly be using .com.
But especially .loan, .trade, .bid, .download, .click and .xyz are just inviting spammers.
|
|
|
|
|
One reason they exist? The originals are just plain running out of unique options.
That guy has some sort of burr up his ass about NameCheap.
As I told him, I've been using a .info address for over a decade. It was not, however, originated at NameCheap, but at GoDaddy.
Your like .cc - "creative" commerce - look into a mirror with your commmen about why are the others needed. Why is that needed? "Create" to build the ego of the owner? Actually, there's no problem with .cc, as far as I'm concerned.
In fact, if you were a spammer, wouldn't you pick the most common possible domain extensions to appear as legit as possible . . . and also to in-your-face foil someone like 'Basildane' ?
I've not gotten spam at my registrar public visible address. Others have. I have found the main source of trouble is screen-scraping websites for email. Also, I've seen emailers just randomly generate strings and send spam, using a big-name target (????@yahoo.com, ???@gmail.com). Then, just wait for the clicks to "Remove them" for a list of saleable live targets.
Ravings en masse^ |
---|
"The difference between genius and stupidity is that genius has its limits." - Albert Einstein | "If you are searching for perfection in others, then you seek disappointment. If you seek perfection in yourself, then you will find failure." - Balboos HaGadol Mar 2010 |
|
|
|
|
|
W∴ Balboos, GHB wrote: In fact, if you were a spammer, wouldn't you pick the most common possible domain extensions to appear as legit as possible You'd think so, but for some reason they don't.
Their email addresses are suspicious, their fonts are suspicious, their typing errors are suspicious.
Everything about these spammers is suspicious, while it shouldn't be too hard to at least write an email without typos and in a default font
I get "H i m y n a m e i s C h r i s t o p h e r" and not "Hi, my name is Christopher".
I'd probably open the latter, but absolutely not the former yet that's what I get.
|
|
|
|
|
Actually, I'd open neither. "Hi, my name is . . . " cannot be in any way a good thing. If I don't know their name, why are they sending me email? Clearly, they want something. Or. maybe they want to share millions of dollars with me?
The most recent spam's I've gotten are using a yahoo.com email target - the actual address. A VERY
LONG TIME AGO I actually gave it out directly. Nothing on the internet ever goes away. In the body (I was searching for an email target) they even identify themselves as being based in Romania - with a .com return address. Touting different items in each of the three (so far). As soon as I zero in on a target email, I'll have my day of reckoning.
Be aware, however, that the "FROM" address can be spoofed trivially. So, whilst the internal links can go anywhere, the filter to limit the top level domain is really quite worthless and maybe counter productive. For that reason, since they're pushing "other peoples stuff" for a fee I need to get a definite target address. The ".com", is, in fact, probably legit for a "legit" spamming company. Actually each has two targets: the sender AND their sponsor.
Anecdote: I followed the sponsor (whois) to their site (not via the email) and sent the email to the person who set up the solicitation (some hoaky online school). I also added to the CC list the emails of the CEO, Faculty Department Heads, &etc. Whatever I could get off their site. About 300, all at once, adjusted their attitude pretty well.
Ravings en masse^ |
---|
"The difference between genius and stupidity is that genius has its limits." - Albert Einstein | "If you are searching for perfection in others, then you seek disappointment. If you seek perfection in yourself, then you will find failure." - Balboos HaGadol Mar 2010 |
|
|
|
|
|
My solution to low spam, more than anything else, relies upon using email forwards and a catch-all within that domain.
Some of the forwards are "permanent" - I actually enter them, often enough to send the same email to more than one place to make sure I get it on the sooner-side. It's the catch-all that works with the spam-killing.
Every single place I do business with, when they ask for an email address, gets one with their name tied to it. For example, assuming a catch-all forward for the domain SnotRag.org, if I do business with amazon then I use amazon@snotrag.org; if I do business with you, it's Sander_Rossel@SnotRag.org, &etc. Since it's a catch-all address, all email that's not forwarded specifically (as per paragraph two) automatically work. Nothing for me to do but wait for email at my specified box. If I start getting SPAM, I know just who sold me out: they have their signature on it.
Now - how to stop them? I made an SMTP mailer (mentioned previously at CP) that can be told to send email in a loop - as many as I want. 100? 1000? Just the click of a button. Moreover, I can tell it to spoof the return address with extension from primary domains (like .gmail.com, hotmail.com, etc.) - and generate the first chars randomly. Also, another option is to add some extra random text to the subject and body so as to slow down identification by spam filters. I might sent the first request they stop (directly to them) with a real return address and somewhat polite body. If that doesn't work, I'll ask them 100 times - and if that doesn't work . . . . bombs away! Those who sold me out get a kick-in-the-ass, as well, with a pointy-toed-shoe.
Some Pakistani sites took a serious beating (address from page scraping) and now they don't. A few hundred emails, several times a day, into their business box, and they understand that SPAM is not nice. In one case, a rather "unpleasant" graphic was embedded for their viewing pleasure (as a link). My sympathy for them, touting their line of Nazi paraphernalia (newly produced) is, let's just say, below none.
So, them - often and with vigor - and they'll figure it out.
Ravings en masse^ |
---|
"The difference between genius and stupidity is that genius has its limits." - Albert Einstein | "If you are searching for perfection in others, then you seek disappointment. If you seek perfection in yourself, then you will find failure." - Balboos HaGadol Mar 2010 |
|
|
|
|
|
That's genius
|
|
|
|
|
The only solution for stopping spam is to stop using computers, phones, or anything that receives and sends emails.
Your email address is bought and sold on the internet every day between companies and marketing companies legit/non-legit. You can never stop someone from sending you spam.
|
|
|
|
|
I'm not sure it is possible so I made an account I use to sign up everywhere. It is called spammagnet with a few numbers on the end. It is at google and their spam filters are pretty good. I rarely use my personal account(s) for that stuff and they very rarely receive any spam.
"They have a consciousness, they have a life, they have a soul! Damn you! Let the rabbits wear glasses! Save our brothers! Can I get an amen?"
|
|
|
|
|