User Name
Password

Register Members List Calendar Search FAQ Posting Guidelines
wierd spam
Thread Tools
ThunderPoit
Making sawdust
 
Join Date: May 2004
Location: Minnesota
 
2004-07-07, 13:23

ok, ive had some odd spam in my time, but this one is the strangest. no attachments, no images, just some text, nothing else. heres the raw source:

Code:
From ales@mail.ru Wed Jul 7 13:13:16 2004 Status: U Return-Path: <ales@mail.ru> Received: from 210.114.186.81 ([210.114.186.81]) by penguin (EarthLink SMTP Server) with SMTP id 1bIdja58a3NZFl40 for <thunderpoit@earthlink.net>; Wed, 7 Jul 2004 07:21:58 -0700 (PDT) Received: from ales ([172.16.2.174]) by mail.ru (8.12.11/8.12.8) with SMTP id i53En5u1030343 for <thunderpoit@earthlink.net>; Wed, 07 Jul 2004 23:32:48 +0100 Date: Wed, 07 Jul 2004 23:32:48 +0100 From: ales <ales@mail.ru> X-Mailer: The Bat! (v2.00.6) Reply-To: ales <ales@mail.ru> Organization: mail.ru X-Priority: 3 (Normal) Message-ID: <8822351604.20982808826100@mail.ru> To: "thunderpoit" <thunderpoit@earthlink.net> Subject: Hi! MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-ELNK-AV: 0 Hello thunderpoit, How are you? Have a nice day
  quote
LoCash
Rest In Peace
 
Join Date: May 2004
Location: Atlanta
 
2004-07-07, 13:25

I get spam pretty often that doesn't have anything in the message body. Oftentimes it doesn't even have as much as you pasted in here. I also get a lot of spam in Cyrillic. I can't even read Russian. I think they're trying to sell me printer cartridges, but I can't really tell. It seems more and more like spam isn't there to sell a product, rather, it's just here to piss us off.

It is with great regret that we say our farewells to Jack, who passed away on May 28th, 2005. Jack, you will be missed by all

Superior thinking has always overwhelmed superior force. - Marine Corps Officers

"You don't lead by hitting people over the head-that's assault, not leadership." - General Eisenhower
  quote
ThunderPoit
Making sawdust
 
Join Date: May 2004
Location: Minnesota
 
2004-07-07, 13:29

but most of the time when its a bullshit message like that, it has an image hidden in the email so they can try and verify weather or not its a valid email address. but this is just wierd.
  quote
LoCash
Rest In Peace
 
Join Date: May 2004
Location: Atlanta
 
2004-07-07, 13:44

Actually, I often don't even see an image. I'll even do a "View Source" of the email to check for any HTML and half the time there is NOTHING there. I have Entourage set to not download remote images linked in an email anyway.

It is with great regret that we say our farewells to Jack, who passed away on May 28th, 2005. Jack, you will be missed by all

Superior thinking has always overwhelmed superior force. - Marine Corps Officers

"You don't lead by hitting people over the head-that's assault, not leadership." - General Eisenhower
  quote
drewprops
Space Pirate
 
Join Date: May 2004
Location: Atlanta
 
2004-07-07, 23:26

Well it came through APNIC....
  quote
ThunderPoit
Making sawdust
 
Join Date: May 2004
Location: Minnesota
 
2004-07-08, 09:31

whats APNIC?
  quote
Ryan
Veteran Member
 
Join Date: May 2004
Location: Promise Land of Trustafarians
 
2004-07-08, 11:04

Quote:
Originally Posted by ThunderPoit
whats APNIC?
Asia Pacific Network Information Center.
  quote
ThunderPoit
Making sawdust
 
Join Date: May 2004
Location: Minnesota
 
2004-07-08, 16:40

and that means....
  quote
drewprops
Space Pirate
 
Join Date: May 2004
Location: Atlanta
 
2004-07-08, 17:04

Okay, look at your headers...


From ales@mail.ru Wed Jul 7 13:13:16 2004
Status: U
Return-Path: <ales@mail.ru>
Received: from 210.114.186.81 ([210.114.186.81])
by penguin (EarthLink SMTP Server) with SMTP id 1bIdja58a3NZFl40
for <thunderpoit@earthlink.net>; Wed, 7 Jul 2004 07:21:58 -0700 (PDT)
Received: from ales ([172.16.2.174]


See that part in bold?

Take that and go to www.arin.net and plug those numbers into the field in the upper righthand portion of the page. When you click it you can find out the true IP path of the sent mail. That's as far as my tracing-an-email-knowledge-goes....any upper-classmen in here want to take this farther?

Steve Jobs ate my cat's watermelon.
Captain Drew on Twitter
  quote
DEXTERITY
New Member
 
Join Date: Jul 2004
 
2004-07-09, 17:05

I have the same problem and mine also came from APNIC. however, if you trace that IP at arin.net like drew stated you see the following message:



NetRange: 218.0.0.0 - 218.255.255.255
CIDR: 218.0.0.0/8
NetName: APNIC4
NetHandle: NET-218-0-0-0-1
Parent:
NetType: Allocated to APNIC
NameServer: NS1.APNIC.NET
NameServer: NS3.APNIC.NET
NameServer: NS4.APNIC.NET
NameServer: NS.RIPE.NET
NameServer: TINNIE.ARIN.NET
Comment: This IP address range is not registered in the ARIN database.
Comment: For details, refer to the APNIC Whois Database via
Comment: WHOIS.APNIC.NET or http://www.apnic.net/apnic-bin/whois2.pl
Comment: ** IMPORTANT NOTE: APNIC is the Regional Internet Registry
Comment: for the Asia Pacific region. APNIC does not operate networks
Comment: using this IP address range and is not able to investigate
Comment: spam or abuse reports relating to these addresses.
For more
Comment: help, refer to http://www.apnic.net/info/faq/abuse
Comment:
RegDate: 2000-12-07
Updated: 2004-03-30
  quote
ThunderPoit
Making sawdust
 
Join Date: May 2004
Location: Minnesota
 
2004-07-10, 02:14

so basically.... its somone w/ waaaay too much time on their hands
  quote
DEXTERITY
New Member
 
Join Date: Jul 2004
 
2004-07-10, 23:26

half of my email is someone with way too much time on their hands..
  quote
Posting Rules Navigation
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Post Reply

Forum Jump
Thread Tools
Similar Threads
Thread Thread Starter Forum Replies Last Post
Spam Rant Ebby AppleOutsider 7 2004-06-26 18:01


« Previous Thread | Next Thread »

All times are GMT -5. The time now is 09:17.


Powered by vBulletin®
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Copyright ©2004 - 2024, AppleNova