The Jhoos mess.. :) This is why I use a Mac..

January 29, 2008

I Googled them looking for smething about them on a " reported spam

and hijacking " site like thet have for viruses - nothing. I did find

a question on Yahoo Answers asking what they were - from *3 months

ago*. So apparently these guys have been havesting emails (or trying

to) for a while now. as for viruses it could have infected me

with.. This is why I use a Mac - no holes in Internet Explorer it

can exploit. And very few places in the MacOS system where it can

put stuff maliciously.

Jim

January 30, 2008

Jim, do you, or anyone for that matter, know the most effective wasy

to report? I'll check with our IT person as well. I know the agency

is in Australia, and if they blacklist a site/group they are required

to write a letter of apology, pay a fine, and their name gets put on

a list. Happened to us. Even though my company is an opt-in

community calendar that sends only 1 email a week, when AOL,Time

Warner and Earthlink went crazy with filtering, they reported us

enough times that we had to beg and explain our way out... so it can

be a headache. It took us almost a year to work it out. I'd like that

to happen to this Jhoos group. But I've never actually reported

anyone.

If no one here knows, when I find out, I'll post it so that all of

you can report them as well, if you're so inclined. I know this

isn't directly AF related, but it sure sucked up some adrenaline that

I could have used for something else... LOL..

Thanks,

>

> I Googled them looking for smething about them on a " reported spam

> and hijacking " site like thet have for viruses - nothing. I did

find

> a question on Yahoo Answers asking what they were - from *3 months

> ago*. So apparently these guys have been havesting emails (or

trying

> to) for a while now. as for viruses it could have infected me

> with.. This is why I use a Mac - no holes in Internet Explorer it

> can exploit. And very few places in the MacOS system where it can

> put stuff maliciously.

>

> Jim

>

January 30, 2008

You need to look at the full mail header of the original message that

you received, find the host/source IP address which " might " be where

the message originated, find out who that IP block is registered to

and report it to them as an Abuse of their Terms of Service. If you

know how to view the header, you can send it to me at my id at Yahoo

and I can do all of that for you (I used to manage IT security for two

large state universities). Note that I said " might " above. Most good

spammers route their mail through several hosts, often some

unsuspecting person's infected PC, so that tracking them back via the

header as I describe above is a useless exercise. It's easy enough to

do, but it might not get us the actual originating ISP.

>

> Jim, do you, or anyone for that matter, know the most effective wasy

> to report? I'll check with our IT person as well. I know the agency

> is in Australia, and if they blacklist a site/group they are required

> to write a letter of apology, pay a fine, and their name gets put on

> a list. Happened to us. Even though my company is an opt-in

> community calendar that sends only 1 email a week, when AOL,Time

> Warner and Earthlink went crazy with filtering, they reported us

> enough times that we had to beg and explain our way out... so it can

> be a headache. It took us almost a year to work it out. I'd like that

> to happen to this Jhoos group. But I've never actually reported

> anyone.

>

> If no one here knows, when I find out, I'll post it so that all of

> you can report them as well, if you're so inclined. I know this

> isn't directly AF related, but it sure sucked up some adrenaline that

> I could have used for something else... LOL..

>

> Thanks,

January 30, 2008

When something sort of similar happened to me, I called my internet

provider and they told me how to trace the email back to the source. You

need the complete email header, and then you go to a DNS look up site

like domaintools.com or http://www.dnsstuff.com/

In my case the source turned out to be a " bot net " in Russia. Provider

told me I could send complaint emails, but did I really think some " bot

net " operator in Russia was going to give a sh**?

sol

P.S. It has apparently been happening to enough people at my provider,

that they sent an email saying

> Simply changing the password to something random and

> difficult will ensure your email account has not been compromised.

Now I need to contact them and find out which password they are talking

about. LOL.

szuzn wrote: