Avast WEBforum
Other => General Topics => Topic started by: polonus on June 19, 2007, 07:24:59 PM
-
Hi malware fighters,
Do you want to know where the spam you received came from, you can do that online here:
http://www.mitm.nl/
Just cut and paste the e-mail header, and there we go!
Alas you only see the zombie computer the spam was sent from.
That you can do something with the info is a serious misconception: received headers in spam almost alwas are being falsified.
There are a dozen or so exemptions, together good for a small portion of all spam volume:
hacked servers
hacked user accounts (web mail, 419)
free mail providers (o.a. 419)
ISP mail servers (through hacked pc's)
open mail servers
Only the last two categories could deliver workable received headers' infolleen
headers op. But you must have the knowledge where to look for these special cases.
Enjoy the geo-location of the zombie you were spammed from,
polonus
-
thanks-will give it a try damian 8)(http://i15.tinypic.com/6bdvwy0.gif)
-
Personally I couldn't care less where the spam comes from, so long as mailwasher detects it and I delete it. I used to track down where spam came from long before these tools came out and reported many, but this really is time wasted IMHO. Life is to short, time to do something more enjoyable.
-
Personally I couldn't care less where the spam comes from, so long as mailwasher detects it and I delete it
you are right davidr my friend...just as long as my mailwasher pro filters out all the spam-crap i'm happy-and better things then to do guessing where or whom sent it-if i knew i wouldn't wanna know ??? ::)
thanks anyways damian-at least you care :o
-
It isn't that I don't care for Damian's post, nothing could be further from the truth. It is simply time spent tracking down spam is seldom worth it.
An old Army saying is that 'time spent in reconnaissance is seldom wasted' true for tracking down vulnerabilities and weakness, etc., but unfortunately this isn't true for tracking spam origins.
-
It isn't that I don't care for Damian's post, nothing could be further from the truth
feel the same..i valve his help and posts and everyone's else's :)
Marine saying "The MARINES have landed and have the situation well in hand!" put in mailwasher pro in the marines place and it has the spam situation well in hand 8)
-
It isn't that I don't care for Damian's post, nothing could be further from the truth. It is simply time spent tracking down spam is seldom worth it. An old Army saying is that 'time spent in reconnaissance is seldom wasted' true for tracking down vulnerabilities and weakness, etc., but unfortunately this isn't true for tracking spam origins.
Fully agree. I'll use my time blocking spam and not to discover the origin as I can't do anything.
By the way, Gmail has a powerful spam trap and we receive almost nothing of spam.
-
Hi Tech,
There could be a solution for the spam-problem using the mailkey protocol:
http://www.xs4all.nl/~rmeijer/mailkeys.pdf
The way the problem is tackled now with blacklists/ greylists/ whitelists is not doing anything, the mailkey protocol would make:
* Possesion of an e-mail address plus sub-adsress enables the holder to address the mailbox of the one that poseses the mailbox.
* A sub-address can be revoked.
* A sub-adres is non forgeable.
W We can only guess why the problem is not tackled by the roots?
polonus
-
Email is a wonderful thing. Messages get to their destination as fast as a phone call, without interupting the recipient. You can choose whether or not to read an email message, at a time that's convenient. You can reply immediately or not. You can think about your reply, edit and check spelling, just like a snail mail letter. And email messages don't cost extra for long distance, frequency, or high volume. You can transmit long passages, links, and photos. And you can send the same message to many people at once.... now THERE'S where the problem starts. Advertisers took advantage of this feature, and email became SPAM.
I get a couple hundred junk email messages every day. Good thing i have mailwasher pro!!!! I don't bother even looking a them, but maybe I should take a look every now and then. Since spammers started using random word generators to get around filters, there are some pretty weird messages in circulation :P Thought for today: If it weren't for spam, I'd have no mail at all! ::)
click on to enlarge....
-
Hi malware fighters,
Do you want to know where the spam you received came from, you can do that online here:
http://www.mitm.nl/
Just cut and paste the e-mail header, and there we go!
Alas you only see the zombie computer the spam was sent from.
That you can do something with the info is a serious misconception: received headers in spam almost alwas are being falsified.
There are a dozen or so exemptions, together good for a small portion of all spam volume:
hacked servers
hacked user accounts (web mail, 419)
free mail providers (o.a. 419)
ISP mail servers (through hacked pc's)
open mail servers
Only the last two categories could deliver workable received headers' infolleen
headers op. But you must have the knowledge where to look for these special cases.
Enjoy the geo-location of the zombie you were spammed from,
polonus
Hi Damian! Thanks for the link, but for tracing my spam messages, and other fraud web pages I like to use IPMetInfo
-
Halio avatar2005,
Can you give a link for that service. Thanks for your reaction,
pozdrawiam,
polonus
-
Halio avatar2005,
Can you give a link for that service. Thanks for your reaction,
pozdrawiam,
polonus
Hi Damien,
I think this is the program avatar2005 was referring to:
http://www.nirsoft.net/utils/ipnetinfo.html (http://www.nirsoft.net/utils/ipnetinfo.html)
-
Yes Bob :) You were quicker then me 8), it's the one I mentioned
-
Yes Bob :) You were quicker then me 8), it's the one I mentioned
Not by much..... ;D :) ;D
-
Hi bob3160,
As always, bob3160, for reliable information. Bob, thanx a bunch.
And of course you too avatar2005 for giving the name of the program.
Damian
-
You are allways wellcome
-
same here damian and avatar2005 :D oh and bob also ;)
does this work with thundebird 2.0-not on list ??? ::)
http://www.haltabuse.org/help/headers/ (http://i7.tinypic.com/6foy8lt.jpg)
-
Hi Dan! I have Thunderbird v2 installed on my new Toshiba Satellite L30 laptop, & it's capable to view full headers of email 8), but with the help of speciall add-on called "Display mailing list header" ( current version I have is 0.3.2).
After installing it just sellect the email you want to view, then chose "Headers" -> "All" from the View menu, & you will get them. 8)
Rostik.
-
Display mailing list header
already have it avatar2005-thanks anyways ;)
and this also.... https://addons.mozilla.org/en-US/thunderbird/addon/562
-
Hello Dan,
What about this in your favorites: http://www.spamcop.com/
polonus
-
give it a try but no thunderbird on its list ??? will try on yahoo webmail-don't use incredimail(incredicrap)anymore....
AOL
Eudora
Excite Webmail
Forte Agent
Hotmail
IncrediMail
Mozilla
Microsoft Internet Mail
Netscape 3
Netscape 4
Netscape Webmail
Opera
Outlook 2000
Outlook Express
Pegasus
Yahoo Webmail
(http://i14.tinypic.com/4ze10gl.gif) can't you just smell that good spam aroma ::)
-
***
I use to trace the IP address from which the spam came from. But, it got to be so time consuming that i stopped doing that a few years ago.
***
-
Hi CharleyO,
And while you were at it at the time, what did you learn? Or did you land at the conslusion that it did not bring much.
polonus
-
***
I learnt that reporting the IP address and location (latitude/longitude) did very little to solve the problem of spam. :(
***
-
Hi CharleyO,
And while you were at it at the time, what did you learn? Or did you land at the conslusion that it did not bring much.
polonus
Hi Damian
I'm afraid that in this case I'll be fully agree with Charley :'(.
here's what I do in a similar situation: I try to find the initial IP address of spammer which points me to his ISP, after it I send an abuse email to spammer ISP, with a part of spam mail header ( Client IP including), later the spammer ISP blocks the abused user....
But... IMHO the root of the problem here is that SPAM mails are send not by a human, but a Spam-bots, hacked victims PC, or call it whatever you like.
So the conclusion of my speech will be that above described method now have allmost 0% efficiency :'(
-
Hi avatar2005,
But I think people react also differently to spam nowadays than a couple of years ago, and there Bill Gates was right, you learn to live with it. You would not believe it, but there are actually those people that are so lonely that they could not live without spam, it is the only mail they get. "Spam or ham" that is the question, said the Mailwasher.
polonus
-
Damien,
I actually prefer to eat my spam...
(http://img.photobucket.com/albums/v190/bob3160/Pictures/P1010033.jpg)
-
I recognise that photo from before, with a few other spam recipes ;D hmm I getting hungry.