Category Archives: spam

dear OVH

dear OVH,

i have been reporting, and blocking spam from your network for at least 5 years. i have at least 500 different addresses that you have used to hide behind, so that when the spam-reporting gets too extreme, you just start a new, incomprehensible email address… yes, i’m talking about fp01iidryzteec0r2yld@a.o-w-o.info and mkc7d52oxkmej7gwghxj@a.o-w-o.info and 94nhgu6xjcnivuapgan0@m.o-w-o.info and 0og193qe7kalvv4n0key@z.o-w-o.info and EVERY FUCKING thing in between…

through my moderate poking around, i have discovered that most of these addresses are for Florent Demuynck, Stephane LeSimple, Falco Schmutz, Grillion Alexis, Tarik Benammar, Edouard Vanbelle, Benjamin Ficheland, Laurent Allard, and others (some of whom may or may not still be employees of OVH), and/or their boss, Octave Klaba.

today, for the first time, i have actually blocked someone from OVH for trying to login to this blog… YES, MY BLOG has been probed by 158.69.223.8.

this is a warning: if i EVER catch you or any of your minions poking around my web again, i will block you so fast that it’ll make your head spin.

i’m on to you OVH. don’t push me, or you’ll feel my mallet! 😠

hey, check it out…

so i got another 2,500 spam messages starting this morning, but i FINALLY figured out where the settings are on my server that let me do things like filter spam that all has the same subject line, but different senders, and how to block all messages that have a sender from a certain IP-address-range, or from a certain country…

no help from my host provider, naturally… i’m seriously getting the impression that, despite the fact that they’re home office is in great britain, they hire people from india, russia or south america to do tech support, and english is NOT their primary language… and if i have more than one question per response, they only answer the last one, and totally ignore all of the others. it took me four days and a great deal of consternation to get them to delist my IP address from hotmail, which is something, if i were to do it myself, would take about half an hour. 😒

spam spammers spamming

i am digging my way out from under an inundation of spam messages which arrived between around 1:00 am and around 4:00 pm yesterday. all told there were around 10,000 messages, but they were arriving in 10 to 12 message batches, about 500 every five minutes or so, and only started to decrease around 3:30.

but, at the same time, i sent two LARTs to the spammer’s upstream provider, yesterday, and today i got confirmation(!) that they had disabled their Luser’s email capabilities. i realise that they may just be blowing me off, and the gap will very quickly be filled with another spammer, but it’s good to know that my mallet is still quick and strong… 😎

ketchup

i isolated 10 “good enough” tracks from the raw files, but none of them were more than 6 minutes, and i wanted at least one that was 10 minutes or more, so i’m going back to fort worden next tuesday to try it all again. i’ve also bought a recording device of my own, which should make things more interesting, if nothing else.

i woke up the other day and tried to log in to my email account and discovered that everything was offline, and when i went to the host provider to determine why, i discovered that my account had been suspended because they received a spam complaint about me… except that, when i looked at the complaint they received, i recognised it immediately as one that i had sent to an upstream provider a couple of days before, and what they had done was forward it to the upstream provider on the “From:” line, instead of reading the headers to determine that they were, in fact, the people responsible… and, because of the fact that i NEVER receive spam complaints, they arbitrarily suspended my accounts, instead of reading the headers to determine who was actually responsible. 😕 since then i have received about 10,000 spam messages, in 1000 message increments, from people whose php servers have been compromised such that, simply by reading the headers and knowing where to click, i can actually see the spammers online interface on the compromised server…

but I was the one whose account was suspended for spamming. if it weren’t for the fact that i’m still recovering from my bout of changing host servers every few months, a few years ago, i would seriously consider switching, but… in spite of everything, the host server i currently use has been better than any of the others that i have found, for the price.

by the way, here is the place to get your email headers analysed, and here is the place to get information about the IP numbers you’ll get from analysing your email headers. basically it’s the same thing that spamcop used to do. i suppose there’s a way to automate it so that i don’t have to go through all the steps to figure out who gets the LARTs, but i like getting my hands dirty, because i know it’s being done correctly this way. 😏

i have a gig next saturday with the fremont philharmonic at “dudefest” and another gig on sunday at the peace arch in blaine with the sousa band. i’m probably going to spend sunday night in bellingham… depending…

by the way…

just because i no longer have an address @spamcop.net DOES NOT indicate that i am any less than totally annoyed by spam messages that get sent my way.

an example could be found this morning, when i woke up, logged into my email client and discovered that i had over 1500 individual messages “From:” myself which were HTML formatted messages in brazilian portugese (indicating that, in reality, they were not “From:” myself), and, as i sat there and watched, another 500 messages appeared and were downloaded within the space of 5 minutes…

they all appear to have originated on cloudapp.net, which is owned by microsoft. it was set up on a “host” that is called zpx09.cloudapp.net, but it doesn’t have a whois or mx entry, which doesn’t surprise me a great deal, but what does surprise me is that there appears to be a script interface at http://zpx09.cloudapp.net/caminho-ranger-32.php which looks like this:

150722 spam script interface

great… now i can send my own spam. unfortunately, but not surprisingly, there is no indication to who the script belongs, but my guess is that if i write to microsoft, they will, eventually, take the script down and ban zpx09.cloudapp.net, if nothing else…

and while i was writing this, another 700 messages came in… time to block brazil, again. 😕

ETA: as of 6:00 pm there are 1500 more messages, for a grand total of over 3000 in a 12 hour period… and microsoft doesn’t even seem to care… 😐