SPAM!!!

werfie

werfie

Expert Member
Joined
Aug 16, 2010
Messages
2,676
Reaction score
411
Location
Pretoria
Ok, so for the last couple of months, I've been on a tirade against spam I receive. Is has been quite a war, but slowly but surely everything is subsiding, from adding myself to the National Opt Out DB, to threats, to public name and shame, hissy-fits the works, I think I'm winning and the spam count drops by the day... TOUCH WOOD!!

I am however only struggling with one of our big beloved German car manufacturers. After a huge battle with them, and even on Facebook, I eventually even got them to send me an official letter stating that I have been removed from all their databases. This is more than a month ago. None the less, ever since receiving this promise letter, I have received another 8 (yes 8) marketing communications from them on both email and sms.

I have tried every avenue, and even have them on black and white promising to stop, yet nothing... What the hell can I do now? I am actually at the point where I would want and go and open a case of harassment against them at the police (if this is even possible :confused: :wtf:)

These people are clearly thick skinned and do not care, they have wasted so much of my time and energy, I just cannot give up now and let them win.... ADVICE PLEASE!!!!!!!!!!!!!!!!!!!!!!!!!!???????????????????
 
Keep sending it to spam. As long as your spam filter catches it, what's the issue?

Oh, and while you're shaming, which company is it?
 
Viva said:
Keep sending it to spam. As long as your spam filter catches it, what's the issue?

Oh, and while you're shaming, which company is it?
Click to expand...

The problem is that firstly, I shouldn't have to set up filters to catch their crap, secondly, emails I can deal with, but I get hoards of sms'es from these people and there I can't set up a spam filter.
 
XperiAnce said:
Best thing to do is extract the message headers, and email every abuse address for every mail-relay the mail hits.

Follow these steps :) ---> http://ispa.org.za/spam/south-african-law/
Click to expand...

Ok, the only word I understood of your first sentance was the comma :D Thanks for the link, you see the problem is that I went through all those things already, even got a letter from the company stating that they are sorry and I am now removed, yet they continue. I need to know what is next, i.e. on the link to the ISPA website, it says:

In terms of section 45(4) of this Act, this message serves as notification that I do not wish to receive any further communications from you. Failure to comply with this request constitutes a criminal offense in terms of the ECT Act.
Click to expand...

What is the criminal offence?? How do I nail them for this "offense"?
 
Ok, below are the message headers for spam I received the other day (here's how to extract this data):

Return-path: <[email protected]>
Envelope-to: <private>
Delivery-date: Mon, 06 Aug 2012 10:49:22 +0200
Received: from prewall10.smp.mweb.co.za ([196.28.77.220])
by mailstore-19.smp.mweb.co.za with esmtp (Exim 4.69)
(envelope-from <[email protected]>)
id 1SyJ06-0006Dg-AT
for <private>; Mon, 06 Aug 2012 10:49:22 +0200
Received: from viruswall06.smp.mweb.co.za ([196.28.77.26] helo=postwall11.smp.mweb.co.za)
by prewall10.smp.mweb.co.za with esmtp (Exim 4.77 (FreeBSD))
(envelope-from <[email protected]>)
id 1SyJ06-000FNu-7l
for <private>; Mon, 06 Aug 2012 10:49:22 +0200
Received: from postwall11.smp.mweb.co.za (postwall11.smp.mweb.co.za [196.28.76.31])
by viruswall06.smp.mweb.co.za (esets_smtp); Mon, 06 Aug 2012 10:49:27 +0200
Received: from cern.serve-hosting.net ([207.45.188.210])
by postwall11.smp.mweb.co.za with esmtp (Exim 4.77)
id 1SyJ00-0009Yt-3y
for <private>; Mon, 06 Aug 2012 10:49:22 +0200
Received: from cadallco by cern.serve-hosting.net with local (Exim 4.77)
(envelope-from <[email protected]>)
id 1SyIzx-0004wJ-RC
for <private>; Mon, 06 Aug 2012 10:49:13 +0200
To: <private>
Subject: Building Plans, Estimation, Building Consultancy / All Areas
Date: Mon, 6 Aug 2012 10:49:13 +0200
From: JVH Architecture <[email protected]>
Message-ID: <[email protected]>
X-Priority: 3
X-Mailer: PHPMailer [version 1.73]
X-Mailer: phplist v2.10.18
X-MessageID: 11
X-ListMember: <private>
Errors-To: [email protected]
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="b1_9085214f0bb012bdc55d8cca088a0efd"
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - cern.serve-hosting.net
X-AntiAbuse: Original Domain - mweb.co.za
X-AntiAbuse: Originator/Caller UID/GID - [1318 32003] / [47 12]
X-AntiAbuse: Sender Address Domain - jvharch.co.za
X-Source: /usr/bin/php
X-Source-Args: /usr/bin/php /home/cadallco/public_html/jvharch.co.za/list/admin/index.php
X-Source-Dir: cad4all.co.za:/public_html/jvharch.co.za/list/admin
X-Spam-Status: No score=6.5 tests=BAYES_50=0.8,DCC_CHECK=6,HTML_IMAGE_RATIO_02=0.437,HTML_MESSAGE=0.001,RCVD_IN_DNSWL_LOW=-0.7
X-Postwall-Hash: e6167832992c8e7a8b8c18d81809771f
X-EsetId: 8741AF2306EB0231DD04F0

You see all the "Received" sections? Those are the various mail servers it went along before it got to my Mweb Inbox, so what I did is email:
[email protected]
[email protected]
[email protected]

with the above mentioned template, and I found out that someone called :
"[email protected]
Graeme Faber"

is selling my email address. I didn't bother following up with Graeme directly, as list resellers are generally the biggest ###holes you'll ever meet (think "hahahaaahaha #### u buddy i am within the law lol try come at me wit ur lawyers ill smoke them u ####ing guy hahaha ####" kind of responses)

However, now I simply find out who hosts "smartdata.tv" and take it up with them ;)
 
XperiAnce said:
Ok, below are the message headers for spam I received the other day (here's how to extract this data):

Return-path: <[email protected]>
Envelope-to: <private>
Delivery-date: Mon, 06 Aug 2012 10:49:22 +0200
Received: from prewall10.smp.mweb.co.za ([196.28.77.220])
by mailstore-19.smp.mweb.co.za with esmtp (Exim 4.69)
(envelope-from <[email protected]>)
id 1SyJ06-0006Dg-AT
for <private>; Mon, 06 Aug 2012 10:49:22 +0200
Received: from viruswall06.smp.mweb.co.za ([196.28.77.26] helo=postwall11.smp.mweb.co.za)
by prewall10.smp.mweb.co.za with esmtp (Exim 4.77 (FreeBSD))
(envelope-from <[email protected]>)
id 1SyJ06-000FNu-7l
for <private>; Mon, 06 Aug 2012 10:49:22 +0200
Received: from postwall11.smp.mweb.co.za (postwall11.smp.mweb.co.za [196.28.76.31])
by viruswall06.smp.mweb.co.za (esets_smtp); Mon, 06 Aug 2012 10:49:27 +0200
Received: from cern.serve-hosting.net ([207.45.188.210])
by postwall11.smp.mweb.co.za with esmtp (Exim 4.77)
id 1SyJ00-0009Yt-3y
for <private>; Mon, 06 Aug 2012 10:49:22 +0200
Received: from cadallco by cern.serve-hosting.net with local (Exim 4.77)
(envelope-from <[email protected]>)
id 1SyIzx-0004wJ-RC
for <private>; Mon, 06 Aug 2012 10:49:13 +0200
To: <private>
Subject: Building Plans, Estimation, Building Consultancy / All Areas
Date: Mon, 6 Aug 2012 10:49:13 +0200
From: JVH Architecture <[email protected]>
Message-ID: <[email protected]>
X-Priority: 3
X-Mailer: PHPMailer [version 1.73]
X-Mailer: phplist v2.10.18
X-MessageID: 11
X-ListMember: <private>
Errors-To: [email protected]
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="b1_9085214f0bb012bdc55d8cca088a0efd"
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - cern.serve-hosting.net
X-AntiAbuse: Original Domain - mweb.co.za
X-AntiAbuse: Originator/Caller UID/GID - [1318 32003] / [47 12]
X-AntiAbuse: Sender Address Domain - jvharch.co.za
X-Source: /usr/bin/php
X-Source-Args: /usr/bin/php /home/cadallco/public_html/jvharch.co.za/list/admin/index.php
X-Source-Dir: cad4all.co.za:/public_html/jvharch.co.za/list/admin
X-Spam-Status: No score=6.5 tests=BAYES_50=0.8,DCC_CHECK=6,HTML_IMAGE_RATIO_02=0.437,HTML_MESSAGE=0.001,RCVD_IN_DNSWL_LOW=-0.7
X-Postwall-Hash: e6167832992c8e7a8b8c18d81809771f
X-EsetId: 8741AF2306EB0231DD04F0

You see all the "Received" sections? Those are the various mail servers it went along before it got to my Mweb Inbox, so what I did is email:
[email protected]
[email protected]
[email protected]

with the above mentioned template, and I found out that someone called :
"[email protected]
Graeme Faber"

is selling my email address. I didn't bother following up with Graeme directly, as list resellers are generally the biggest ###holes you'll ever meet (think "hahahaaahaha #### u buddy i am within the law lol try come at me wit ur lawyers ill smoke them u ####ing guy hahaha ####" kind of responses)

However, now I simply find out who hosts "smartdata.tv" and take it up with them ;)
Click to expand...

Aaahh, ok I see. Let me put it this way, I know where the mails are coming from, I know where they got my address, but they are not adhering to their promise to remove me from the list. It is the same company that keeps on sending me mail after they promised to remove me. So now I just need to screw them over somehow, maybe I am just being an ass but they have caused me so much frustration that I now want for them to have some consequences, not just blocked somewhere or whatever. PLUS even if I block the emails, I still receive more sms'es than emails from them about specials on their cars.

But thanks, will look at this to see what I can do.

@AstroTurf: THAT'S THE POINT, I SHOULDN'T HAVE TO!!! THEY MUST STOP WHEN I ASK THEM TO AND IF THEY DON'T I WANT TO F THEM UP!!!!!!!
 
Go to a Police Station. Try to find a reasonably intelligent cop. Explain, and lay charges.

Search for SpamCop and other online anti-spm organisations. Blacklist the sender's domain and entire IP range.
 
scudsucker said:
Go to a Police Station. Try to find a reasonably intelligent cop. Explain, and lay charges.
Click to expand...

Yeah!!!!!! this is what I want to do, I was just hoping if someone on here maybe had an idea if I have any grounds to lay charges and against whom do I lay charges? The company, The MD, The Marketing Director, The Person that sent the letter, etc, etc? And If I lay such charges, what will happen then?
 
The company, as represented by the MD and Marketing Director.

If you lay charges... sadly, probably nothing. You need a detective who understands email headers to investigate. That is asking quite a lot. But you might scare them a little.

You will need proof that you have requested that the sender stop sending, and proof that the sender is still sending. I do not know how you would authenticate something so easily faked as mail headers - after all you could just type them out! However, if your detective understands them, he can then get the various forwarding mail servers to supply their log files, which will prove that the spam was sent.

If by some miracle you meet a tech-savvy detective, then the sender faces up to 12 months in prison and a fine. And mail headers are not rocket science. The major problem you might have is locating the individual so as to arrest him.

The balcklisting route is better, their ISP will not appreciate the entire IP range (including other clients) being blacklisted and will either force them to move or stop mailing.
 
Last edited:
scudsucker said:
The company, as represented by the MD and Marketing Director.

If you lay charges... sadly, probably nothing. You need a detective who understands email headers to investigate. That is asking quite a lot. But you might scare them a little.

If by some miracle you meet a tech-savvy detective, then the sender faces up to 12 months in prison and a fine. And mail headers are not rocket science. The major problem you might have is locating the individual so as to arrest him.

The balcklisting route is better, their ISP will not appreciate the entire IP range (including other clients) being blacklisted and will either force them to move or stop mailing.
Click to expand...

Awesome, thanks a mil, this helps a lot.
 
werfie said:
Yeah!!!!!! this is what I want to do, I was just hoping if someone on here maybe had an idea if I have any grounds to lay charges and against whom do I lay charges? The company, The MD, The Marketing Director, The Person that sent the letter, etc, etc? And If I lay such charges, what will happen then?
Click to expand...

I agree with this. One would think that right here on MyBroadband where we hear about all this new legislation, that one would hear about the proper procedure too. RPM, please get one of your super sleuthy journos to figure this out for the rest of us and write an article? Please?
 
Two things: SAPS or Cybercrime unit will not do anything unless the incident resulted in damages in excess of 50K. Any ISP in the relay chain of the mail will do nothing without a court order.

The only thing you can do: Report it to abuse mails. Report it to blacklists (you will need to get the sender IP from the email header) - best choice is to look at: http://multirbl.valli.org/lookup/127.0.0.1.html - has a comprehensive blacklist. At the same time, if the sender IP in question is whitelisted, dispute the whitelisting on the whitelist.
 
You must log in or register to reply here.
Back
Top
Sign up to the MyBroadband newsletter
X