how do i find someone who's using me as a recepiant on spam?
 

some idiot is using me as the return address on spam with viruses. How do I find, catch and do nasty things to this idiot?

I'll paypal $200 to anyone who gets me the real name and address of this idiot.

please help - getting hundreds of returned emails a day now from it.

Idiot!

post full header of the returned email, maybe someone could dig something up.

are you high?

Return-Path: <>
Received: from mailnsi.nsi-communications.com (mailnsi.nsi-communications.com [67.129.130.6])
by mail3.hosting.flyingcroc.net (8.12.11/8.12.11) with ESMTP id i8EHItYM061096
for <[email protected]>; Tue, 14 Sep 2004 10:18:55 -0700 (PDT)
Received: from localhost (localhost)
by mailnsi.nsi-communications.com (8.12.8/8.12.8) id i8EHMIYN030567;
Tue, 14 Sep 2004 11:22:18 -0600
Date: Tue, 14 Sep 2004 11:22:18 -0600
From: Mail Delivery Subsystem <[email protected]>
Message-Id: <[email protected]>
To: <[email protected]>
MIME-Version: 1.0
Content-Type: multipart/report; report-type=delivery-status;
boundary="i8EHMIYN030567.1095182538/mailnsi.nsi-communications.com"
Subject: Returned mail: see transcript for details
Auto-Submitted: auto-generated (failure)
X-Scanned-By: MIMEDefang 2.42
X-UIDL: heM"!>J;!!+9@!!~<%"!

you got OWNED

check your icq

Sounds like your computer may be infected with some sort of worm and your box is sending them out using a spoofer with your email address. We had this same problem a little while back when the myDoom thing was running around. We got it and we kept getting tons of returned emails from people where their virus scan had caught it before they got to it. You may want to try scanning your own system.:2 cents:

for a day maybe - all it takes is a few phone calls and i'll find the idiot and make their life a living hell. I'm real good at getting sponser accounts, merchant accounts, and anything else related to getting paid canceled when someone fucks with me. I'm not a teckie and i'm not able to do it instantly - but with the people i know I ALWAYS find them out sooner or later.

that email address isn't on this machine's email account, and is a receive only address.

Oh well if it's sending an actual spam email out maybe it's not a worm. I missed the spam part until just now.

Received: from mailnsi.nsi-communications.com (mailnsi.nsi-communications.com [67.129.130.6])


Probably had a open proxy on there end , and the spammer used the open proxy.

]

fucking noob

your big ego makes me laugh

Hey Sleazy,
From what my programmers say, it's not something you're likely to be able to do from the emails themselves. They have taken your account and are mailng through it, no way of tracing it back that they can see...

BUT.. it depends on what they're spamming.. if it's just viruses then they're obviously not selling anything so there's no avenue to follow there, but if they're trying to sell something too, you might be able to track them through that.

Otherwise, I'm afraid you're probably just going to be left with a lot of frustration and killer lagtime on your email, in fact, you may have to cancel that email account if it's too much.

Perhaps get in touch with your ISP and see if they can block it somehow...

Sorry couldn't be of more help =)


:)

Sounds like what Nick said there. Pretty common a while back. Hope it's not resurging.. pain in the ass

you can try to get in touch with

nsi-communications.com and see if they will tell you the mail traffic hitting there open proxy.... i doubt they will help you thouhg.

If you can you can pinpoint it then you can get back to the actually server that sent it to the open proxy


But good luck with this cause if these guys have open proxies on there end that means they are idiots and more likely than not the techs wont have a clue what you are talking about

Sounds like a virus to me dude, I think I have the same thing and can't get rid of the fucking thing.

DH

your lack of courage and using a fake name makes me laugh

i'm not a teckie - i'm having the virus disected and gona follow the money - much easier and usually more direct

Sleazy same thing was happening to me, but it turned out they were using other systems.

I tracked it down to a university in Jamaica, then I tracked it down to someplace in Cali. Seems like ever few hours it will be one set of servers and then another set. Now a days spammers use compromised systems to do their spamming unfortunately. The only way to do it now, is to find out the affiliate they are sending to and push the affiliate into giving their information, or get them to turn off paying the bastard.

sounds like gonnorea , get that shit checked yooooo

I just saw the email , hehe somebody fucked up and is gonna be in deep shit....................... at least learn to spam if you are gonna spam........

hehe i feel bad for that fucker. He is gonna get some major heat on his ass loll

Instant Karma's gonna get you,
Gonna look you right in the face,
Better get yourself together darlin',
Join the human race,
How in the world you gonna see,
Laughin' at fools like me,
Who on earth d'you think you are,
A super star,
Well, right you are.

go down the list of people you pissed off recently :) that should narrow it down hehe

AC

oh, we already know who did it. :)

Happened to me once too, pretty annoying.
Had to close a couple aliases.

Damn. You take everything so seriously. Odds are you won't find who spoofed it.

put your money where you mouth is - already got em.

It's likely not your computer is sending the mails. These worms collect e-mail addresses from many sources not only to send messages to but to randomly lie about the return address. Same computer using your address as a return address is probably sending messages from a multitude of other addresses.

You can't catch a "guilty party" because they aren't doing it intentionally. Best you might hope for is to alert a service provider that one of their users is infecting others.

This is the first thing I thought of.

Plenty of viruses do this and it is not done intentionally by anyone, other than the original virus writer. Who gets put in the FROM field can be totally random, depending on what is in the infected computer's internet cache or address book.

Just one example:

http://www.bullguard.com/antivirus/vi_klez.aspx

Klez also has the ability to spoof the email "FROM:" field. The sender's address used by the virus may be one that was found on the infected user's system. Thus, it may appear that you have received this virus from one person, when it was actually sent from a different user's system. Infected machines have the ability to send out spoofed email using a fake "FROM:" address. Doing so makes it appear that a user sent a viral email when, in fact, the infected machine is sending out such messages. This situation adds to the confusion in tracing the real infected culprit, and complaints are often generated because of these spoofed "FROM:" addresses.

... you are such a little wanker.

amazing how much help you get from this board.
:1orglaugh :1orglaugh :1orglaugh

its probably a worm, the way it works it will go through the infected computers, and scan for emails and spam those address as well as use them for a from address.

im sorry it was an accident i swear!

I've had it happen with an alias/catch-all email address..

It's not even an actual email address.. just a forwarding account..

I'm thinkin an email harvester that uses the names on the harvested list in a random kinda way and insert them into the return email address..

That doesn't have anything with viruses or worms...
I have the same problem (as Sleazy), and I don't have any virus or worm...
And you know what is the strange, I had that email address listed only at my old registrar...

You don't have to have the worm yourself... someone else has the worm on their computer, and they also happen to have your email address somewhere on their computer, either in their address book or in their internet cache.

idiots