Yet more EE spam!

Received: from localhost (localhost.localdomain [127.0.0.1])
	by ehome.inhouse (8.11.2/8.11.2) with ESMTP id f4BAA3f18520
	for ; Fri, 11 May 2001 03:10:04 -0700
Received: from mail.phnx1.az.home.com [24.0.95.145]
	by localhost with POP3 (fetchmail-5.7.4)
	for eric@localhost (single-drop); Fri, 11 May 2001 03:10:04 -0700 (MST)
Received: from h9.mail.home.com ([24.0.95.43]) by mail1.rdc1.az.home.com
          (InterMail vM.4.01.03.20 201-229-121-120-20010223) with ESMTP
          id <20010511101407.SVLM5402.mail1.rdc1.az.home.com@h9.mail.home.com>
          for ;
          Fri, 11 May 2001 03:14:07 -0700
Received: from mx12-sfba.mail.home.com (mx12-sfba.mail.home.com [24.0.95.243])
	by h9.mail.home.com (8.9.3/8.9.0) with ESMTP id DAA27512
	for ; Fri, 11 May 2001 03:14:07 -0700 (PDT)
Received: from pan.dns-solutions.net (pan.dns-solutions.net [209.66.124.23])
	by mx12-sfba.mail.home.com (8.11.1/8.11.1) with SMTP id f4BAE7623488
	for ; Fri, 11 May 2001 03:14:07 -0700 (PDT)
Received: (qmail 11999 invoked by uid 117); 11 May 2001 10:14:07 -0000
Delivered-To: a0006614-badmovers@badmovers.org
Received: (qmail 11939 invoked from network); 11 May 2001 10:13:57 -0000
Received: from unknown (HELO www.msn.com) (216.23.1.123)
  by badtux.org - 216.23.1.123 with SMTP; 11 May 2001 10:13:57 -0000
Message-ID: <006a01c10990$2f3f4220$0100007f@a>
From: "Michelle Fair" 
To: badmovers@badmovers.org
Subject: They know what you are doing
Date: Wed, 11 Jul 2001 02:32:21 +0400
MIME-Version: 1.0
Content-Type: multipart/alternative;
	boundary="----=_NextPart_000_0067_01C109B1.B6387820"
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 5.00.2615.200
X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2615.200

This is a multi-part message in MIME .

------=_NextPart_000_0067_01C109B1.B6387820
Content-Type: text/plain;
	charset="koi8-r"
Content-Transfer-Encoding: quoted-printable


Everyday you do something on the Net that you want to keep private. But =
can you ?

Deleting "Internet Cache and History" will NOT protect you because any =
of the Web Pages,
Pictures, Movies, Videos, Sounds, E-mail, Chat Logs and Everything Else =
you see or do
could easily be recovered to Haunt you forever!
How would you feel if a snoop made this information public to your =
Spouse,Mother &
Father, Neighbors, Children, Boss or the Media? It could easily Ruin =
Your Life! Solve
all your problems and enjoy all the benefits of an "As New PC",

We offer you a program that can:

  a.. Speed-Up your PC/Internet Browser=20
  b.. Reclaim Hard Disk space=20
  c.. Professionally Clean your PC in one easy mouse click!=20
CLICK HERE TO DOWNLOAD NOW ! -->=20











-------------------------------------------------------------------------=
-------

If you believe that you have received this message by mistake or
do not wish to receive future letters from us please click here.=20



------=_NextPart_000_0067_01C109B1.B6387820
Content-Type: text/html;
	charset="koi8-r"
Content-Transfer-Encoding: quoted-printable








 

Everyday you do =
something on the Net=20
that you want to keep private. But can you ?

Deleting "Internet =
Cache and History" will NOT =
protect you=20
because any of the Web Pages,
Pictures, Movies, Videos, Sounds, =
E-mail, Chat=20
Logs and Everything Else you see or do
could easily be recovered to =
Haunt you=20
forever!
How would you feel if a snoop made this information public =
to your=20
Spouse,Mother &
Father, Neighbors,=20
Children, Boss or the Media? It could easily Ruin =
Your=20
Life! Solve
all your problems and enjoy all the benefits of an "As =
New=20
PC",

We offer you a program that can:

  
Speed-Up your PC/Internet Browser=20
  
Reclaim Hard Disk space=20
  
Professionally Clean your PC in one easy mouse=20
  click! 
CLICK =
HERE TO DOWNLOAD=20
NOW ! --> 
 
 
 
 



If you believe that you have received this message by mistake =
or
do not=20
wish to receive future letters from us please click here.=20
 

------=_NextPart_000_0067_01C109B1.B6387820--

Here's the message I sent to the ISP's involved:

Date: Fri, 11 May 2001 19:38:29 -0700 (MST)
From: John  Bryant 
To: postmaster@gtldc.com, abuse@one.net, postmaster@one.net
Cc: abuse@msn.com
Subject: Spam from one of your employees or customers
Parts/Attachments:
   1 Shown     17 lines  Text
   2   OK    ~6.8 KB     Text, ""
----------------------------------------
 
The attached spam was sent to the owner of one of my domains -- who
happens to be me. My understanding is that this is a repeat occurance of
this particular spam. Please address the situation accordingly.
 
216.23.1.123, the IP address of the spammer as reported by 'qmail' during
the connection, is an IP address assigned to Great Traditions Land and
Development Company, a customer of OneNet Communications. Since the
perpetrator of this spam also fraudulently indicated that they were
msn.com during the HELO (thankfully 'qmail' is smart enough to not accept
such things on faith and recorded the real IP address), I am also
forwarding this spam to abuse@msn.com.  I am willing to cooperate in any
way possible with those who wish to end Internet fraud.
 
--
John  Bryant  http://www.badtux.org  mailto:john@badtux.org
       Phoenix Branch, Eric Conspiracy Secret Labs
              Cruisin' the USENET since 1985

And this wasn't the first time that this spam had been perpetrated:

Date: Fri, 11 May 2001 20:21:32 -0700 (MST)
From: John  Bryant 
To: abuse@uk.uu.net
Subject: Spam complaint
Parts/Attachments:
   1 Shown     13 lines  Text
   2   OK    ~6.8 KB     Text, ""
----------------------------------------
 
The attached spam contains a link to the home page of one of your
customers, 'www.evidence-eliminator.com'. I have attached full header
information. I have also addressed a complaint to the ISP (one.net) who
has allowed one of their customers (gtldc.com) to maintain an open mail
relay for close to a month now (a prior complaint was made to them on
April 22, 2001), which has been repeatedly used to hawk the
evidence-eliminator.com site via unsolicited commercial bulk email.
 
--
John  Bryant  http://www.badtux.org  mailto:john@badtux.org
       Phoenix Branch, Eric Conspiracy Secret Labs
              Cruisin' the USENET since 1985

And what will be the response? We'll see. UUNET-UK's Acceptable Use Policy says that "INDIRECT OR ATTEMPTED VIOLATIONS OF THIS POLICY, AND ACTUAL OR ATTEMPTED VIOLATIONS BY A THIRD PARTY ON BEHALF OF A UUNET CUSTOMER OR A CUSTOMERS END USER, SHALL BE CONSIDERED VIOLATIONS OF THIS POLICY BY SUCH CUSTOMER OR END USER.", and the policy prohibits spam. So EE is definitely in violation of the policy... we'll see what happens.