This is the thread on the3arguidos.net about evil trolls sending spam?
http://www.the3arguidos.net/viewtopic.php?f=1&t=16900
Behind the scenes here, we have to deal with these people continually threatening and harassing the forum.I'm glad to say that their latest attack was thwarted today by the cooperation of British based website hosting company Byethost.Because these people do help in genuine cases of harassment, I suggest anyone else finding they have had abusive or controversial emails claiming to be from here, please take this up directly with Byethost by email here: abuse@byethost.comJust so you know, the latest attack was done by using a fake version of this forum hosted at "themainbackup.info/myforums". Using a forum as the engine to send emails, it means the person sending them can make it look like an email came from this forum but in fact, the embedded code in the email header was a dead giveaway and it revealed that the email came from the domain "themainbackup.info" instead of any of our domains.So, we sent the abusive fake emails to Byethost today and they responded by immediately suspending the account of the nutters responsible for this. If anyone looks at that domain name above, you will notice the account has been suspended. This is where the dodgy emails have been sent over the past few days. For those that have received similar emails, here's a header so you can see the IP address of the offending site (everything in bold below was produced by the Byethost server as an aid to finding out idiots who persist in this sort of harassment):
The site http://www.themainbackup.info/ points to the 3arguidos? I did some further delving herehttp://whois.domaintools.com/themainbackup.info and the owner of the site is Brenda Ryan,owner of the 3arguidos.
http://www.aboutus.org/TheMainBackup.info
http://www.themainbackup.info/ (66.98.145.18)
traceroute http://www.themainbackup.info/ (mercury.orderbox-domainforward.com. 38349 IN A 66.98.145.18)
THEPLANET.COM Internet Services Inc
Dallas, USA
Yeah but STEVO, the tech guru! said the mail came from a forum here:X-phpBB-Origin: phpbb://themainbackup.info/myforumswhich means the spam was mass mailed from a forum at that address!
The backup website is http://www.themainbackup.info. The mails were sent from a hosted forum - phpbb://themainbackup.info/myforums - which is not necessarily related to http://www.themainbackup.info/. The forum is no longer available, the website is live.Could be wrong though, would need to look more at the IP headers.
phpbb://themainbackup.info/myforumsphpbb refers to PHP bulletin board//themainback.info is the hosted domain/myforums is the location of php forumNO WAY IS IT NOT!They have been rumbled!
Yeah I suppose but the website http://www.themainbackup.info/ is pointing to http://www.the3arguidos.net/ now and BJR has been buying up domains recently. But hey let's give them the benefit of the doubt.
p.s.
Only have one word to say to you, Gestalt/Drachen/Sid/Truth/Frangen
More info here about 66.98.145.18 (themainbackup.info), also resolves to mercury.orderbox-domainforward.com
http://forum.spamcop.net/forums/lofiversion/index.php/t5843.html
Also discussed here resolves to WMCRACK.info
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment