Hi.
I have been listed at spamcop for spam. On enquiring about this I received the following from eV1.
My question follows this copied email!
----------------------------
Dear Mr, Jones,
We recommend contacting technical supprt for more assistance. Possibly check for insecure form mail and open relays.
Thank you,
Janna
EV1.net Abuse Team
[email protected]
EV1Servers Abuse Team
[email protected]
On Fri, 6 Aug 2004 10:05:51 -0500, [email protected] wrote:
> Hi.
>
> In reply to your email below.
>
> This is not me and it's not anyone connected to me.
>
> Obviously my server/site has been hacked or something. What do I
> do to clear this or stop this happening?
>
> How do I know if it is ongoing? I can assure you that we/our
> site is not the source
> of these emails, I am so "scared" of this kind of thing happening
> (spamcop etc.) that I do not even use direct email in any
> advertising and to top that off the share2profit site is not even
> a totally viable project as yet, it is still being built.
>
> Any advice would be greatfully received and acted upon.
>
> Respectfully
>
> John Jones.
>
>
>
> ----- Original Message -----
> From: "Everyones Internet Abuse Team" <[email protected]>
> To: <[email protected]>
> Sent: Friday, August 06, 2004 3:51 PM
> Subject: [EV1.net Abuse #ATV-40616-276]: FWD: Abuse report
>
>
>: Dear Mr. Jones,
>: We have been receivigng numerous spam complaints for that IP
> address. I've provided one such complaint below.
>:
>: Thank you,
>: Janna
>: EV1.net Abuse Team
>: [email protected]
>: EV1Servers Abuse Team
>: [email protected]
>:
>: ---------- Forwarded message ----------
>: Received: via dmail-2003(12) for jacobson; Thu, 5 Aug 2004
> 23:19:08 -0500 (CDT)
>: Return-Path: <[email protected]>
>: Received: from vaccine1.NoDak.edu (vaccine1.NoDak.edu
> [134.129.111.46])
>: by imap1.ndsu.NoDak.edu (8.11.6/8.11.6) with ESMTP id
> i764J4627573
>: for <[email protected]>; Thu, 5 Aug 2004
> 23:19:04 -0500
>: Received: from server.esecuresite2.com (rs-64-246-52-84.ev1.net
>: [64.246.52.84] (may be forged))
>: by vaccine1.NoDak.edu (8.12.11/8.12.10) with ESMTP id
> i764J0eY010941
>: for <[email protected]>; Thu, 5 Aug 2004
> 23:19:01 -0500
>: Received: from apache by server.esecuresite2.com with local
> (Exim 4.24)
>: id 1Bswcw-0000TT-Lk; Fri, 06 Aug 2004 04:46:46 +0000
>: To: [email protected]
>: Subject: ASSISTANCE NEEDED.
>: From: rolly <[email protected]>
>: X-Priority: 3 (Normal)
>: CC:
>: Mime-Version: 1.0
>: Content-Type: text/plain; charset=us-ascii
>: Content-Transfer-Encoding: 7bit
>: X-Mailer: RLSP Mailer
>: Message-Id: <[email protected]>
>: Sender: Apache <[email protected]>
>: Date: Fri, 06 Aug 2004 04:46:46 +0000
>: X-NDUS-MailScanner-Information: Please contact the ISP for more
> information
>: X-NDUS-MailScanner: Found to be clean
>: X-MailScanner-From: [email protected]
>:
>:
>: PLEASE STRICTLY REPLY TO THIS BOX.
>: [email protected]
>:
>: MINISTRY OF AGRICULTURE
>: LAGOS-NIGERIA.
>: TEL:234-1-7762168
>:
>: FAX:234-1-7590800
>:
>: DEAR SIR/MADAM,
>:
>: WE WRITE THIS LETTER WHICH I EXPECT SHOULD BE URGENTLY
>: REPLIED. I DR. ROLAND DANGOGO, PRESENTLY THE DIRECTOR OF
> FINANCE
>: IN THE FEDERAL MINISTRY OF AGRICULTURE HEADQUARTERS, LAGOS
>: NIGERIA IS IN NEED OF YOUR GENUINE ASSISTANCE AND TRUST
>: BECAUSE, AS A TOP OFFICIAL OF THE RULING GORVERNMENT, I
>: WANT TO SAFE GAURD MY INTEREST IN YOUR COUNTRY.
>:
>: I PRESENTLY HAVE AN OVER INVOLCED CONTRACT PAYMENT OF
>: USD38.5MILLION(THIRTY-EIGHT MILLION, FIVE HUNDRED THOUSAND
> UNITED
>: STATES DOLLARS) WHICH HAS REMAINED UNCLAIMED SINCE 1997, MY
>: SUPERIOR IN THE PRESENDENCY HAVE MANDATED ME TO
>: PRESENT A HONEST FOREIGNER WHO CAN CONVENIENTLY PROTECT THIS
> FUND
>:
>: FOR US IN HIS COUNTRY'S BANK ACCOUNT. I SINCERELY BELIEVE THAT
>: YOU CAN BE OF GREAT ASSISTANCE TO US. THIS IS WHY I AM
>: CONTACTING YOU AND ALSO REQUESTING FOR YOUR MATURE DISCRETION,
>: AND CO-OPERATION.
>:
>: MORE ALSO, WE AS CIVIL SERVANT ARE FORBIDDEN TO OWN
>: OR OPERATE FOREIGN ACCOUNTS, HENCE, A FOREIGNER IS NEEDED IN
>: THIS TRANSACTION. MY SUPERIOR HAS COMPLETED ALL ADMINISTRATIVE
>: STEPS TO SEE THAT THIS FUND RECEIVES ALL THE REQUESTED
>: APPROVALS IMMEDIATELY YOU GIVE ME THE GO AHEAD.
>:
>: ALL I NEED FROM YOU ARE THE FOLLOWING:
>: (1) A BANK ACCOUNT NUMBER.
>: (2) NAME AND FULL ADDRESS OF YOUR NORMINATED BANK WITH
>: TELEPHONE AND FAX NUMBERS.
>: (3) YOUR PRIVATE TELEPHONE AND FAX NUMBERS FOR EASY
>: COMMUNICATION BETWEEN US.
>: I WILL THEREBY SEND YOU BY FAX, DETAILS OF THE CONTRACT
>: EXECUTED SOON AFTER I RECEIVE YOUR EMAIL REPLY AND YOUR
>: WILLINGNESS TO ASSIST.
>:
>: YOU WILL BE ENTITLED TO 30% OF THE TOTAL MONEY IMMEDIATELY WE
>:
>: ARRIVE YOUR COUNTRY FOR SHARING. 10% WILL COVER ALL
> MISCALLANEOUS
>:
>: EXPENSES WE MAY INCUR BOTH HERE AND IN YOUR COUNTRY. PLEASE
>:
>: ENDEAVOUR TO REACH ME FOR MORE DETAILS. DO NOT HESITATE TO SEND
>:
>: ME AN EMAIL OR A FAX MESSAGE AND CALL AS SOON AS POSSIBLE.
>:
>: I SINCERELY COUNT ON YOUR ASSISTANCE. REMEMBER I AM A
>: HIGHLY PLACED OFFICIAL IN THE MINISTRY, AND EXPECT ABSOLUTE
>: CONFIDENTIALITY FROM YOU IN ORDER TO PROTECT MY PERSONAL
>: INTEGRITY AND HONOUR FROM FOREIGN JOURNALIST WHO SEEK TO
> DESTROY
>: MEMBERS OF OUR RULING DEMOCRATIC GORVERNMENT.
>:
>: THIS TRANSACTION IS HITCH-FREE, SO YOU NEED NOT
>: ENTERTAIN ANY FEAR AT ALL. I EXPECT YOUR REPLY IMMEDIATELY.
>:
>: BEST REGARDS,
>: DR. ROLAND DANGOGO.
>:
>:
>:> ---------- Original
> Message ----------------------------------
>:> From: "John" <[email protected]>
>:> Date: Fri, 6 Aug 2004 04:54:56 +0100
>:>
>:> Hi.
>:>>
>:>>You are responsible for issuing an spam report against IP
> Address
>:>>64.246.52.84 which is http://www.share2profit.com. Would it
> be
>:>>possible to send me the details as to why this abuse report
> was
>:>>made.
>:>>
>:>>I am at a loss as I do not (if possible) advertise anything
> be
>:>>email, but just send messages to contacts and friends.
>:>>
>:>>Respectfully
>:>>
>:>>John Jones.
>:>>
>:>>
>:>>---
>:>>Outgoing mail has been scanned and is certified Virus Free.
>:>>Checked by AVG anti-virus system (http://www.grisoft.com).
>:>>Version: 6.0.733 / Virus Database: 487 - Release Date:
> 02/08/2004
>:>>
>:>>
-------------------------------------------------
How do I secure my system to prevent this happening?
I have been listed at spamcop for spam. On enquiring about this I received the following from eV1.
My question follows this copied email!
----------------------------
Dear Mr, Jones,
We recommend contacting technical supprt for more assistance. Possibly check for insecure form mail and open relays.
Thank you,
Janna
EV1.net Abuse Team
[email protected]
EV1Servers Abuse Team
[email protected]
On Fri, 6 Aug 2004 10:05:51 -0500, [email protected] wrote:
> Hi.
>
> In reply to your email below.
>
> This is not me and it's not anyone connected to me.
>
> Obviously my server/site has been hacked or something. What do I
> do to clear this or stop this happening?
>
> How do I know if it is ongoing? I can assure you that we/our
> site is not the source
> of these emails, I am so "scared" of this kind of thing happening
> (spamcop etc.) that I do not even use direct email in any
> advertising and to top that off the share2profit site is not even
> a totally viable project as yet, it is still being built.
>
> Any advice would be greatfully received and acted upon.
>
> Respectfully
>
> John Jones.
>
>
>
> ----- Original Message -----
> From: "Everyones Internet Abuse Team" <[email protected]>
> To: <[email protected]>
> Sent: Friday, August 06, 2004 3:51 PM
> Subject: [EV1.net Abuse #ATV-40616-276]: FWD: Abuse report
>
>
>: Dear Mr. Jones,
>: We have been receivigng numerous spam complaints for that IP
> address. I've provided one such complaint below.
>:
>: Thank you,
>: Janna
>: EV1.net Abuse Team
>: [email protected]
>: EV1Servers Abuse Team
>: [email protected]
>:
>: ---------- Forwarded message ----------
>: Received: via dmail-2003(12) for jacobson; Thu, 5 Aug 2004
> 23:19:08 -0500 (CDT)
>: Return-Path: <[email protected]>
>: Received: from vaccine1.NoDak.edu (vaccine1.NoDak.edu
> [134.129.111.46])
>: by imap1.ndsu.NoDak.edu (8.11.6/8.11.6) with ESMTP id
> i764J4627573
>: for <[email protected]>; Thu, 5 Aug 2004
> 23:19:04 -0500
>: Received: from server.esecuresite2.com (rs-64-246-52-84.ev1.net
>: [64.246.52.84] (may be forged))
>: by vaccine1.NoDak.edu (8.12.11/8.12.10) with ESMTP id
> i764J0eY010941
>: for <[email protected]>; Thu, 5 Aug 2004
> 23:19:01 -0500
>: Received: from apache by server.esecuresite2.com with local
> (Exim 4.24)
>: id 1Bswcw-0000TT-Lk; Fri, 06 Aug 2004 04:46:46 +0000
>: To: [email protected]
>: Subject: ASSISTANCE NEEDED.
>: From: rolly <[email protected]>
>: X-Priority: 3 (Normal)
>: CC:
>: Mime-Version: 1.0
>: Content-Type: text/plain; charset=us-ascii
>: Content-Transfer-Encoding: 7bit
>: X-Mailer: RLSP Mailer
>: Message-Id: <[email protected]>
>: Sender: Apache <[email protected]>
>: Date: Fri, 06 Aug 2004 04:46:46 +0000
>: X-NDUS-MailScanner-Information: Please contact the ISP for more
> information
>: X-NDUS-MailScanner: Found to be clean
>: X-MailScanner-From: [email protected]
>:
>:
>: PLEASE STRICTLY REPLY TO THIS BOX.
>: [email protected]
>:
>: MINISTRY OF AGRICULTURE
>: LAGOS-NIGERIA.
>: TEL:234-1-7762168
>:
>: FAX:234-1-7590800
>:
>: DEAR SIR/MADAM,
>:
>: WE WRITE THIS LETTER WHICH I EXPECT SHOULD BE URGENTLY
>: REPLIED. I DR. ROLAND DANGOGO, PRESENTLY THE DIRECTOR OF
> FINANCE
>: IN THE FEDERAL MINISTRY OF AGRICULTURE HEADQUARTERS, LAGOS
>: NIGERIA IS IN NEED OF YOUR GENUINE ASSISTANCE AND TRUST
>: BECAUSE, AS A TOP OFFICIAL OF THE RULING GORVERNMENT, I
>: WANT TO SAFE GAURD MY INTEREST IN YOUR COUNTRY.
>:
>: I PRESENTLY HAVE AN OVER INVOLCED CONTRACT PAYMENT OF
>: USD38.5MILLION(THIRTY-EIGHT MILLION, FIVE HUNDRED THOUSAND
> UNITED
>: STATES DOLLARS) WHICH HAS REMAINED UNCLAIMED SINCE 1997, MY
>: SUPERIOR IN THE PRESENDENCY HAVE MANDATED ME TO
>: PRESENT A HONEST FOREIGNER WHO CAN CONVENIENTLY PROTECT THIS
> FUND
>:
>: FOR US IN HIS COUNTRY'S BANK ACCOUNT. I SINCERELY BELIEVE THAT
>: YOU CAN BE OF GREAT ASSISTANCE TO US. THIS IS WHY I AM
>: CONTACTING YOU AND ALSO REQUESTING FOR YOUR MATURE DISCRETION,
>: AND CO-OPERATION.
>:
>: MORE ALSO, WE AS CIVIL SERVANT ARE FORBIDDEN TO OWN
>: OR OPERATE FOREIGN ACCOUNTS, HENCE, A FOREIGNER IS NEEDED IN
>: THIS TRANSACTION. MY SUPERIOR HAS COMPLETED ALL ADMINISTRATIVE
>: STEPS TO SEE THAT THIS FUND RECEIVES ALL THE REQUESTED
>: APPROVALS IMMEDIATELY YOU GIVE ME THE GO AHEAD.
>:
>: ALL I NEED FROM YOU ARE THE FOLLOWING:
>: (1) A BANK ACCOUNT NUMBER.
>: (2) NAME AND FULL ADDRESS OF YOUR NORMINATED BANK WITH
>: TELEPHONE AND FAX NUMBERS.
>: (3) YOUR PRIVATE TELEPHONE AND FAX NUMBERS FOR EASY
>: COMMUNICATION BETWEEN US.
>: I WILL THEREBY SEND YOU BY FAX, DETAILS OF THE CONTRACT
>: EXECUTED SOON AFTER I RECEIVE YOUR EMAIL REPLY AND YOUR
>: WILLINGNESS TO ASSIST.
>:
>: YOU WILL BE ENTITLED TO 30% OF THE TOTAL MONEY IMMEDIATELY WE
>:
>: ARRIVE YOUR COUNTRY FOR SHARING. 10% WILL COVER ALL
> MISCALLANEOUS
>:
>: EXPENSES WE MAY INCUR BOTH HERE AND IN YOUR COUNTRY. PLEASE
>:
>: ENDEAVOUR TO REACH ME FOR MORE DETAILS. DO NOT HESITATE TO SEND
>:
>: ME AN EMAIL OR A FAX MESSAGE AND CALL AS SOON AS POSSIBLE.
>:
>: I SINCERELY COUNT ON YOUR ASSISTANCE. REMEMBER I AM A
>: HIGHLY PLACED OFFICIAL IN THE MINISTRY, AND EXPECT ABSOLUTE
>: CONFIDENTIALITY FROM YOU IN ORDER TO PROTECT MY PERSONAL
>: INTEGRITY AND HONOUR FROM FOREIGN JOURNALIST WHO SEEK TO
> DESTROY
>: MEMBERS OF OUR RULING DEMOCRATIC GORVERNMENT.
>:
>: THIS TRANSACTION IS HITCH-FREE, SO YOU NEED NOT
>: ENTERTAIN ANY FEAR AT ALL. I EXPECT YOUR REPLY IMMEDIATELY.
>:
>: BEST REGARDS,
>: DR. ROLAND DANGOGO.
>:
>:
>:> ---------- Original
> Message ----------------------------------
>:> From: "John" <[email protected]>
>:> Date: Fri, 6 Aug 2004 04:54:56 +0100
>:>
>:> Hi.
>:>>
>:>>You are responsible for issuing an spam report against IP
> Address
>:>>64.246.52.84 which is http://www.share2profit.com. Would it
> be
>:>>possible to send me the details as to why this abuse report
> was
>:>>made.
>:>>
>:>>I am at a loss as I do not (if possible) advertise anything
> be
>:>>email, but just send messages to contacts and friends.
>:>>
>:>>Respectfully
>:>>
>:>>John Jones.
>:>>
>:>>
>:>>---
>:>>Outgoing mail has been scanned and is certified Virus Free.
>:>>Checked by AVG anti-virus system (http://www.grisoft.com).
>:>>Version: 6.0.733 / Virus Database: 487 - Release Date:
> 02/08/2004
>:>>
>:>>
-------------------------------------------------
How do I secure my system to prevent this happening?
