Spam from Scottish Power, their response: we’ll carry on spamming (just not to you).

Spam annoys me.
More specifically, the effect of spam annoys me. It annoys me that from time to time I find emails I really need have been filtered to a spam folder. It annoys me that from time to time customers don’t receive emails from us because our email is filtered to their spam folder. It annoys me that I’ve had to jump through hoops to get email delivered to members of a community group I’m a part of ’cause Microsoft’s email servers overzealous approach to spam filtering (tell my server the email was accepted and delivered, but not deliver it to the member or even the spam folder of the member – took several hours to figure out they were doing that..)

Anyway, in the UK we have laws that ban companies from sending unsolicited email. Sure, it won’t stop the non UK spammers or those peddling dodgy things, but it’s a start at least. The rules are called The Privacy and Electronic Communications (EC Directive) Regulations 2003 – abbreviated to PECR. The sad thing is, there is essentially no enforcement of these[1]. Most of the spam I get is from small companies that have been sold my address and don’t realise that is not allowed by the regulations. Last month I got new spam email from Scottish Power. I’d expect them to know better than buy email addresses, but apparently they think it’s OK.

From the regulations:
a person shall neither transmit, nor instigate the transmission of, unsolicited communications for the purposes of direct marketing by means of electronic mail unless the recipient of the electronic mail has previously notified the sender that he consents for the time being to such communications being sent by, or at the instigation of, the sender.
(3) A person may send or instigate the sending of electronic mail for the purposes of direct marketing where—
(a)that person has obtained the contact details of the recipient of that electronic mail in the course of the sale or negotiations for the sale of a product or service to that recipient;
(b)the direct marketing is in respect of that person’s similar products and services only; and
(c)the recipient has been given a simple means of refusing (free of charge except for the costs of the transmission of the refusal) the use of his contact details for the purposes of such direct marketing, at the time that the details were initially collected, and, where he did not initially refuse the use of the details, at the time of each subsequent communication.

The text I put in bold, to me at least, makes it clear that if I’ve never communicated with your company I can’t possible have given consent to your company to send me email. The Information Commissioners Office (ICO) appear to agree – “You must not send marketing emails or texts to individuals without specific consent. There is a limited exception for your own previous customers, often called the ‘soft opt-in’.

Scottish Power made it clear in their replies to my emails (all below) that they think it is acceptable to buy email addresses. Even though they will stop sending to me (’cause I asked them to stop, and I believe they will), the people they bought it from will continue to sell my address to other companies. Scottish Power did not provide contact details for those companies (they named two companies) so did not provide a way for me to unsubscribe from future spam. They claim (in the emails below) they only send to corporate email addresses or opt-in addresses but on this occasion could not find proof of opt in. Maybe that’s true, maybe my address is the only one that slipped through a vetting process, however my instincts are that they’ve bought a load of addresses as ‘businesses’ and used them all.

A long time ago, I read a Mailchimp article (mailchimp are a company that provide email services for newsletters, marketing etc) about whether you should use bought in email lists, the answer: http://caniuseapurchasedemaillist.com/

Scottish Power – here’s a public message to you; Please stop sending spam!


For those who like to know the detail without my summary, here are the emails:


From: ScottishPower Business
Date: 28 April 2016 at 08:13
Subject: Let’s make your business energy simpler

If you are unable to view this email, click here to view online.
We know it takes a lot to run a business – being on
top of every detail matters. That's why, when you switch

If you are unable to view this email, click here
to view online.
[image: ScottishPower]



From: Steve Root
Date: 28.04.2016 07:58:31
To: genesys.routing@scottishpower.com
Cc:
Subject: Fwd: ))) scottishpower1 ((( Fwd: Let ’s make your business energy simpler

Where did you get this email address from please?



From: CONTACTUS@SCOTTISHPOWER.COM [mailto:CONTACTUS@SCOTTISHPOWER.COM]
Sent: 28 April 2016 13:37
To: Data Protection (Energy Retail)
Subject: Fwd: Fwd: ))) scottishpower1 ((( Fwd : Let ’s make your business energy simpler

Hi ,
We have recieved an auto reponse and customer is quering where we got the email address from ,I have no way of tracing this as per email below ,Please advise or contact the customer if possible .
Regards
Kim McLaughlin
Scottish Power Business Energy Team Glasgow



29th April

Dear Mr Root

Thank you for your email of 28 April 2016.

Having contacted our business marketing team, I can advise you that your email address was purchased from a Third Party for use in marking activity.

Following on from your email, I have arranged to have your email address removed from any marketing activity so you will no longer receive emails from ScottishPower.

Many Thanks

Andrew Healing
Iberdrola Group|Global Retail Operations
Data Protection Adviser



30th APril

Thank you Andrew, can you provide contact details for this company please.

Regards
Steve



2nd May

Good Morning Mr Root

Thank you for your email.

I have received confirmation that your information was supplied to us from our Third Party provider Call Credit. They purchased your data from a Company called Blue Sheep.

Many Thanks

Andrew Healing
Iberdrola Group|Global Retail Operations
Data Protection Adviser



3 May
Thanks Andrew,

I'm really curious how your company's decision to buy addresses, like mine, correlates with the requirements of the PECR regulations. Can you help me understand your interpretation please?

Thanks



10th May
Thanks Andrew,

I'm really curious how your company's decision to buy addresses, like mine, correlates with the requirements of the PECR regulations. Can you help me understand your interpretation please?

Thanks



10th May
Good Morning Mr Root

I am awaiting a response to an email that has been sent to our marketing team. This has been chased up today. As soon as I receive a response I will be back in touch.

Thanks

Andrew Healing
Iberdrola Group|Global Retail Operations
Data Protection Adviser



16th May
Hello Andrew,
I'm still curious.
Thanks
Steve



18th May

Good Afternoon Mr Root

I am sorry that I have not been able to come back to you with the information you have requested.

We are keen to understand exactly how and when your details were collected so that we can provide an accurate response.

We are awaiting a full response from our data provider. I have asked for this to be pursued again today and have expressed the urgency. Thank you for your patience, I will be in touch with you as soon as we have the required information.

Kind Regards

Andrew Healing
Iberdrola Group|Global Retail Operations
Data Protection Adviser



26th May
Hello Andrew,

I restate my question:
"I'm really curious how your company's decision to buy addresses, like mine, correlates with the requirements of the PECR regulations. Can you help me understand your interpretation please?"

Maybe it's time to escalate this?

Thanks



Steve Root
31 May
to: Andrew Healing
to: richard.taylor, marion.venman

OK, still no response as to why Scottish Power think it's OK to ignore the PECR regulations.
I'll guess a couple of email addresses and see if that helps find an answer...



31st May

Dear Mr Root

We received your email address from our data provider as “consented data”.
We have noted your wishes that we do not contact this email address any further.
We are reviewing our processes to ensure we adhere to both the PECR and Data Protection requirements.

Kind Regards

Andrew Healing
Iberdrola Group|Global Retail Operations
Data Protection Adviser



1st June

Hello Andrew,
Thank you for replying but you still ignore my question:
"I'm really curious how your company's decision to buy addresses, like mine, correlates with the requirements of the PECR regulations. Can you help me understand your interpretation please?"

The PECR regulations are very clear and having a job title of 'data protection advisor' I'm sure you know this but to spell it out;

http://www.legislation.gov.uk/uksi/2003/2426/regulation/22/made

Use of electronic mail for direct marketing purposes
22.—(1) This regulation applies to the transmission of unsolicited communications by means of electronic mail to individual subscribers.
(2) Except in the circumstances referred to in paragraph (3), a person shall neither transmit, nor instigate the transmission of, unsolicited communications for the purposes of direct marketing by means of electronic mail unless the recipient of the electronic mail has previously notified the sender that he consents for the time being to such communications being sent by, or at the instigation of, the sender.
(3) A person may send or instigate the sending of electronic mail for the purposes of direct marketing where—
(a)that person has obtained the contact details of the recipient of that electronic mail in the course of the sale or negotiations for the sale of a product or service to that recipient;
(b)the direct marketing is in respect of that person’s similar products and services only; and
(c)the recipient has been given a simple means of refusing (free of charge except for the costs of the transmission of the refusal) the use of his contact details for the purposes of such direct marketing, at the time that the details were initially collected, and, where he did not initially refuse the use of the details, at the time of each subsequent communication.
(4) A subscriber shall not permit his line to be used in contravention of paragraph (2).

And from the ICO
https://ico.org.uk/for-organisations/guide-to-pecr/electronic-and-telephone-marketing/electronic-mail-marketing/

In brief…
You must not send marketing emails or texts to individuals without specific consent. There is a limited exception for your own previous customers, often called the ‘soft opt-in’.

The rules on electronic mail marketing are in regulation 22. In short, you must not send electronic mail marketing to individuals, unless:
they have specifically consented to electronic mail from you; or
they are an existing customer who bought (or negotiated to buy) a similar product or service from you in the past, and you gave them a simple way to opt out both when you first collected their details and in every message you have sent

... and so on.

Is your current answer "We are reviewing our processes to ensure we adhere to both the PECR and Data Protection requirements." an admission that Scottish Power currently do not abide by the PECR regulations?

As I said, on 26th May, perhaps it is time for you to pass this up your chain of management if the company wishes to make statements like that.

Regards



7th June
Fermie, Andrew
to me, Andrew
Dear Mr Root

I am writing further to the issue you have raised about PECR and your correspondence with Andrew Healing about it. Thank you for taking the time to raise this with us.

We have been unable to obtain the assurances we would expect in relation to this case. Specifically, we would expect either that the record can be demonstrated to be a corporate record or the gathering of a valid consent can be shown. I am sorry that this has been the case in this instance. We will be taking appropriate action to safeguard against any recurrence.

As well as doing all we can to make sure our practices are compliant with both PECR and the Data Protection Act, I also understand the real annoyance and inconvenience that can arise from unwanted marketing activity. And if we do get it wrong, I am keen to ensure we have the measures in place so that we don’t get it wrong again. If someone indicates they do not wish to receive any more marketing from us, we ensure we have processes in place to that end.

We have confirmed to you that you will not receive any further unwanted marketing from ScottishPower. I can also give you my personal assurance that we take the marketing rules seriously. I have answered the question you asked and, for the avoidance of doubt, this cannot be equated to an assertion that “ScottishPower do not currently abide by the PECR Regulations”. We have contractual arrangements in place designed to help ensure that we do and I cannot go into any more detail than that.

I would appreciate it if you could let me know if there is anything else that I can do.

Regards

Andrew
Iberdrola Group|Global Retail Operations
UK Operations - Data Protection Officer



Steve Root
7 Jun

to Andrew, Andrew
Thanks Andrew,
I've no other questions.

Regards
Steve


[1] I did email the ICO, but they make it clear they won’t investigate every instance of spam and will only start taking an interest if lots of people complain about a specific company.

Solicitors who spam? That would be Edwards Duthie Solicitors

Ah, the spam wars. I haven’t posted to this topic for a long time. Not because the spam has stopped but because I’ve had other things to occupy me.

I thought I’d blog this bit of spam though, solicitors firm Edwards Duthie who decided to spam my email with the image below. I emailed them twice to ask where they got my email address from but they didn’t reply. I then thought I’d look for the email address of their data controller but it turns out the information commissioner only publishes a postal address to the public register of data controllers.

On their web site, they describe themselves as “With 13 Partners and some 100 staff operating out of two main offices and three satellite offices, we are one of the largest law firms in the East London/West Essex region.” so perhaps I’m naive to have expected a reply to my emails, or for them to follow the law. Or maybe they know the law has no teeth, so it’s OK to spam because it won’t affect their business negatively as much as they will gain from people that reply.

The email was sent via mailchimp. That means I can unsubscribe knowing mailchimp will block any more, perhaps even drop Edwards Duthie as a customer if they have lots of complaints. It also means it got through my spam filters (mailchimp do a good job of keeping spammers from their network) and there’s every chance wherever Edwards Duthie bought my email address from will continue selling it, I’ll continue getting spam and a couple of times a week I’ll be pulling email I want from my spam folder amongst the thousand or so others from people like Edwards Duthie.

edwardsduthiespamimage

Caught in my spam trap – randrnews.co.uk

I’ve decided to start naming and shaming the people who spam me. I have an email address hidden in the code of one of my web sites. It doesn’t display to visitors but robots will read it. To give the spammers a sporting chance, the email address is nospam@….mydomain… I then email them to ask where they got the address from.

Their response to asking where they got the email address from?

They never responded.

Observations

Whilst this is the first time they’ve been caught in my current spam trap, scraping web sites and sending spam seems to be their method of operation to sell advertising space. They appear to have set up servers just to send spam. I say this because mhglobalmc3.co.uk doesn’t have a public website and displays a default virtual server login. They also run their own name servers. From an IT perspective, they seem pretty switched on – although their web server has been hacked so they’re not that good. I wouldn’t wish that on my worst enemy let alone spammers like this company. I’d email them and tell them, except I guess they wouldn’t read that either.

They are based in Kent, not so far from us, so back in 2009 I took the time to phone them and ask them to stop spamming us. I spoke to ‘Paul’ who promised to look into it. I’m assuming that was Paul Attwood. He was and is the owner of the domain sending spam back then;

Domain name:
    pamediasolutions.co.uk

Registrant:
    Paul Attwood

Registrant type:
    UK Individual

Registrant's address:
    47-48 Hawley Square
    margate
    CT9 1NY
    United Kingdom

Is the owner of the domain currently sending the spam;

Domain name:
    mhglobalmc3.co.uk

Registrant:
    Paul Attwood

Registrant type:
    UK Individual

Registrant's address:
    347a Margate Road
    Ramsgate
    Kent
    CT12 6SG
    United Kingdom

The destination, randrnews.co.uk, is owned by a dissolved company, MH Media Solutions Ltd of which Paul Attwood was a director. I guess they transferred it to a current company and forgot to tell the registry.

Domain name:
    randrnews.co.uk

Registrant:
    MH Media Solutions Ltd

Registrant type:
    UK Individual

Registrant's address:
    Lead Centre
    Dane Valley Road
    Broadstairs
    CT10 3JJ
    United Kingdom

randrnews.co.uk has a link to what I guess would be a parent company; http://mhmediaglobal.com/ except my browser wouldn’t let me visit;

Google Chrome Malware stop page

I’m beginning to think the publishing industry like sending spam, seeing as Archant have started spamming again.

Email headers

Delivered-To: nospam@....
Received: by 10.76.88.49 with SMTP id bd17csp150210oab;
        Tue, 6 Aug 2013 06:01:27 -0700 (PDT)
X-Received: by 10.180.74.210 with SMTP id w18mr1934845wiv.20.1375794086684;
        Tue, 06 Aug 2013 06:01:26 -0700 (PDT)
Return-Path: <ryan@refurb.mhglobalmc3.co.uk>
Received: from plesk.mhglobalmc3.co.uk ([91.206.183.157])
        by mx.google.com with ESMTPS id f5si722923wjx.46.2013.08.06.06.01.08
        for <nospam@...>
        (version=TLSv1 cipher=RC4-SHA bits=128/128);
        Tue, 06 Aug 2013 06:01:26 -0700 (PDT)
Received-SPF: pass (google.com: domain of ryan@refurb.mhglobalmc3.co.uk designates 91.206.183.157 as permitted sender) client-ip=91.206.183.157;
Authentication-Results: mx.google.com;
       spf=pass (google.com: domain of ryan@refurb.mhglobalmc3.co.uk designates 91.206.183.157 as permitted sender) smtp.mail=ryan@refurb.mhglobalmc3.co.uk
X-No-Relay: not in my network
X-Antivirus-Status: Clean
Received: from ADVENT1 (host31-51-58-179.range31-51.btcentralplus.com [31.51.58.179])
	by plesk.mhglobalmc3.co.uk (Postfix) with ESMTPA id 244805968D1
	for <nospam@...>; Tue,  6 Aug 2013 14:01:04 +0100 (BST)
From: "Ryan Bunce" <ryan@refurb.mhglobalmc3.co.uk>
To: <nospam@....>
Subject: Editorial Opportunity
Date: Tue, 6 Aug 2013 13:53:45 +0100
Message-ID: <8a9e01ce92a4$e607b640$b21722c0$@refurb.mhglobalmc3.co.uk>
MIME-Version: 1.0
Content-Type: multipart/related;
	boundary="----=_NextPart_000_8A9F_01CE92AD.47D63060"
X-Mailer: Microsoft Outlook 14.0
Thread-Index: Ac6SkO5QeOa53URdSzqFQjxDYyR4CQ==
Content-Language: en-gb
X-Antivirus: avast! (VPS 130806-0, 06/08/2013), Outbound message
X-Antivirus-Status: Clean

This is a multipart message in MIME format.

------=_NextPart_000_8A9F_01CE92AD.47D63060
Content-Type: multipart/alternative;
	boundary="----=_NextPart_001_8AA0_01CE92AD.47D63060"


------=_NextPart_001_8AA0_01CE92AD.47D63060
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

Description: Description: Description: Description:
cid:image001.jpg@01CE8A0C.A0729EB0


We are currently putting together the September edition of the Refurb &
Renovation News publication, which will for this issue have an added =
bonus
of an extra 5,000 circulation at the Grand Designs Live exhibition and =
the
100% Design show.

=20

I am tasked with closing off some of the editorial positions within this
issue and as I feel you would be really relevant for this I wanted to =
see if
you have something you would like to promote we could include.

=20

=B7        Exclusive total 63,000 Circulation=20

=B7        15,000 glossy A4 hard copies

=B7        48,000 Digital Versions of the publication

=B7        8 Week Circulation period (bi-monthly publication)

=B7        Media Partner with all the main UK Exhibitions

=B7        Extra 5,000 copies of this edition

=20

Specifiers that we target include;
Building Contractors - Builders Merchants - RIBA Registered Architects =
and
Large Architecture practices =96 Heating & Plumbing Engineers - BIID
Registered Interior Designers - Property Developers - Health Authorities =
-
Education Based Specifiers & Local Authorities.

=20

We run just 6 editorials per page giving you a good sized space with 1 =
full
colour image, 120-140 words of text as well as full company contact =
details.
I am currently able to offer you a 1/6th of a page editorial at =A395.

=20

Please respond by Wednesday 14th August at the latest if you would like =
to
take one of these positions.

=20

Best Regards

=20

Ryan Bunce

Sales Manager

Refurb & Renovation News

=20

Refurb & Renovation News   Suite 1, The Lead Centre, Dane Valley Road, =
St
Peters, Broadstairs, Kent CT10 3JJ  Tel: 01843 601705

A quick review of WordPress comment and trackback spam

One down side of running a blog has got to be the amount of comment spam.  I’m going to have to put in place better systems to stop it but before then, here’s a brief unscientific analysis of the last 23 spam comments (they all get held until I approve them) and what I think the spammers are trying to do:

1) Trying to flog fakes

Brand name sunglasses are popular. Rayban and Oakley frequently appear.  Also hand bagsThe destination sites appear to like Western Union money transfer and a good number are based in China.

Sometimes the link(s) they include point to another site which then links to their site

They comment with phrases like

“Have a good day!I’m very pleased when see your post.I quite approve of your point of view.I will continue to following on your blog.I believe that the future I will see more about your wonderful views….”

“If you thinkI do not care to set eyes on this article, the next time I am concerned about your article, I think I will never again careless. Do you be satisfied of yourself, you do not know your article can make people so obsessed with….”

One of my recent favourites, several appear to have an error in their code,

Have a {great|good|excellent|fantastic} day!I’m very {happy|glad|pleased} when see your post.I quite {agree with|endorse|approve of} your {point of view|viewpoint|standpoint|views on politics|opinion on public affairs}.I will continue to {focus|atte…

My web server is in Paris. A fair number of spammers appear to recognise this fact, spamming with French phrases like “longchamp pas cher”

2) … actually, it appears they all want to sell fakes

All the spam was trying to sell fakes and it was all priced in US dollars.  My really simple anti spam question commenters have to answer stops a lot of the robots.  Here’s an extract from the logs which shows one persistant robot being refused.

www.steveroot.co.uk 175.42.80.130 - - [28/Apr/2013:18:21:37 +0200] "POST /wp-comments-post.php HTTP/1.1" 500 4132
www.steveroot.co.uk 175.42.80.130 - - [28/Apr/2013:18:21:44 +0200] "POST /wp-comments-post.php HTTP/1.1" 500 4132
www.steveroot.co.uk 175.42.80.130 - - [28/Apr/2013:18:21:47 +0200] "POST /wp-comments-post.php HTTP/1.1" 500 4132
www.steveroot.co.uk 175.42.80.130 - - [28/Apr/2013:18:21:52 +0200] "POST /wp-comments-post.php HTTP/1.1" 500 4132
www.steveroot.co.uk 175.42.80.130 - - [28/Apr/2013:18:21:58 +0200] "POST /wp-comments-post.php HTTP/1.1" 500 4132
www.steveroot.co.uk 91.121.64.168 - - [28/Apr/2013:18:31:23 +0200] "POST /wp-comments-post.php HTTP/1.0" 500 4130
www.steveroot.co.uk 175.42.80.130 - - [28/Apr/2013:18:32:02 +0200] "POST /wp-comments-post.php HTTP/1.1" 500 4132
www.steveroot.co.uk 175.42.80.130 - - [28/Apr/2013:18:32:07 +0200] "POST /wp-comments-post.php HTTP/1.1" 500 4132
www.steveroot.co.uk 175.42.80.130 - - [28/Apr/2013:18:32:12 +0200] "POST /wp-comments-post.php HTTP/1.1" 500 4132
www.steveroot.co.uk 175.42.80.130 - - [28/Apr/2013:18:32:15 +0200] "POST /wp-comments-post.php HTTP/1.1" 500 4132
www.steveroot.co.uk 175.42.80.130 - - [28/Apr/2013:18:32:25 +0200] "POST /wp-comments-post.php HTTP/1.1" 500 4132
www.steveroot.co.uk 175.42.80.130 - - [28/Apr/2013:18:32:29 +0200] "POST /wp-comments-post.php HTTP/1.1" 500 4132
www.steveroot.co.uk 142.4.209.47 - - [28/Apr/2013:18:32:36 +0200] "POST /wp-comments-post.php HTTP/1.0" 500 4130

 

Caught in my spam trap – cloud-mailer.co.uk / brainycat.co.uk

I’ve decided to start naming and shaming the people who spam me. I have an email address hidden in the code of one of my web sites. It doesn’t display to visitors but robots will read it.  To give the spammers a sporting chance, the email address is nospam@….mydomain… I then email them to ask where they got the address from.

Their response to asking where they got the email address from?

hello@cloud-mailer.co.uk – no response

Observations

Appear to be a couple of web developers. They seem quite nice on their web site. A shame then they are not only sending spam to my spam trap, but offering a service of sending spam for others too.

Headers

Delivered-To: nospam@....
Received: by 10.76.80.100 with SMTP id q4csp157962oax;
        Tue, 12 Feb 2013 11:00:10 -0800 (PST)
X-Received: by 10.194.89.167 with SMTP id bp7mr33008343wjb.0.1360695609612;
        Tue, 12 Feb 2013 11:00:09 -0800 (PST)
Return-Path: <cmail@server.brainycat.co.uk>
Received: from server.brainycat.co.uk (server.brainycat.co.uk. [5.77.38.165])
        by mx.google.com with ESMTPS id d2si4372759wix.36.2013.02.12.11.00.09
        (version=TLSv1 cipher=RC4-SHA bits=128/128);
        Tue, 12 Feb 2013 11:00:09 -0800 (PST)
Received-SPF: pass (google.com: best guess record for domain of cmail@server.brainycat.co.uk designates 5.77.38.165 as permitted sender) client-ip=5.77.38.165;
Authentication-Results: mx.google.com;
       spf=pass (google.com: best guess record for domain of cmail@server.brainycat.co.uk designates 5.77.38.165 as permitted sender) smtp.mail=cmail@server.brainycat.co.uk
Received: from cmail by server.brainycat.co.uk with local (Exim 4.80)
	(envelope-from <cmail@server.brainycat.co.uk>)
	id 1U5L5M-0002E6-7b
	for nospam@....; Tue, 12 Feb 2013 19:00:08 +0000
To: nospam@....
Subject: Marketing
From: hello@cloud-mailer.co.uk
MIME-Version: 1.0
Content-Type: text/html; charset=ISO-8859-1
Message-Id: <E1U5L5M-0002E6-7b@server.brainycat.co.uk>
Date: Tue, 12 Feb 2013 19:00:08 +0000
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - server.brainycat.co.uk
X-AntiAbuse: Original Domain - ....
X-AntiAbuse: Originator/Caller UID/GID - [521 32007] / [47 12]
X-AntiAbuse: Sender Address Domain - server.brainycat.co.uk
X-Get-Message-Sender-Via: server.brainycat.co.uk: authenticated_id: cmail/from_h
X-Source: /usr/local/bin/php
X-Source-Args: /usr/local/bin/php /home/cmail/public_html/cron/hourly_marketing.php
X-Source-Dir: /home/cmail

<html>
  <head>

    <meta http-equiv='content-type' content='text/html; charset=ISO-8859-1'>
  </head>
  <body bgcolor='#FFFFFF' text='#000000'>

  <p style='color: #125474; font-size: 22px;'><strong>Reach Thousands Of People This Evening</strong></p>

<p>We'd like to take the opportunity to introduce href='https://www.cloud-mailer.co.uk/'><strong>Cloud Mailer</strong> - a revolutionary new email-networking platform that provides millions of UK business email addresses for you to use in your email marketing campaigns. </p>
Delivered-To: nospam@....
Received: by 10.76.83.136 with SMTP id q8csp93204oay;
        Fri, 1 Mar 2013 14:45:19 -0800 (PST)
X-Received: by 10.194.89.169 with SMTP id bp9mr20366076wjb.57.1362177919027;
        Fri, 01 Mar 2013 14:45:19 -0800 (PST)
Return-Path: <cmail@server.brainycat.co.uk>
Received: from server.brainycat.co.uk (server.brainycat.co.uk. [5.77.38.165])
        by mx.google.com with ESMTPS id ua5si6017960wjc.61.2013.03.01.14.45.18
        (version=TLSv1 cipher=RC4-SHA bits=128/128);
        Fri, 01 Mar 2013 14:45:19 -0800 (PST)
Received-SPF: pass (google.com: best guess record for domain of cmail@server.brainycat.co.uk designates 5.77.38.165 as permitted sender) client-ip=5.77.38.165;
Authentication-Results: mx.google.com;
       spf=pass (google.com: best guess record for domain of cmail@server.brainycat.co.uk designates 5.77.38.165 as permitted sender) smtp.mail=cmail@server.brainycat.co.uk
Received: from cmail by server.brainycat.co.uk with local (Exim 4.80)
	(envelope-from <cmail@server.brainycat.co.uk>)
	id 1UBYha-0006qM-67
	for nospam@....; Fri, 01 Mar 2013 22:45:18 +0000
To: nospam@....
Subject: E-mail Marketing
From: team@cloud-mailer.com
MIME-Version: 1.0
Content-Type: text/html; charset=ISO-8859-1
Message-Id: <E1UBYha-0006qM-67@server.brainycat.co.uk>
Date: Fri, 01 Mar 2013 22:45:18 +0000
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - server.brainycat.co.uk
X-AntiAbuse: Original Domain - ....
X-AntiAbuse: Originator/Caller UID/GID - [521 32007] / [47 12]
X-AntiAbuse: Sender Address Domain - server.brainycat.co.uk
X-Get-Message-Sender-Via: server.brainycat.co.uk: authenticated_id: cmail/only user confirmed/virtual account not confirmed
X-Source: /usr/local/bin/php
X-Source-Args: /usr/local/bin/php /home/cmail/public_html/cron/hourly_marketing.php
X-Source-Dir: /home/cmail

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
<title>Cloud Mailer - Revolutionary Email Marketing</title>

<style type="text/css">
body { color: #000; line-height: 140%; font-family: Georgia, 'Lucida Grande', 'Lucida Sans'; font-size: 16px;}
h1 { background-color: #f4f4f4; padding: 12px 8px 12px 8px; font-size: 25px; margin: 0; width: 100%; height: auto; font-family: Helvetica, 'Helvetica Neue', Arial; color: #124b66; }
h3 { background-color: #f4f4f4; font-size: 18px; padding: 8px; width: 100%; height: auto;font-family: Helvetica, 'Helvetica Neue', Arial; color: #124b66; }
p { padding: 8px; margin: 0; }
ol li { line-height: 140%; margin-bottom: 10px; }
a { color: #124b66; }
a:hover { color: blue; }
strong { color: #124b66; }
hr { background-color: #e9e9e9; height: 1px; border: none; }

.normaltxt {
	font-family: Tahoma, Geneva, sans-serif;
	font-size: 13px;
	text-align: left;
	line-height: 16px;
	color: #000000;
	font-style: normal;
	}
.normaltxt a:link, .normaltxt a:visited {
	text-align: left;
	color:#000000;
	font-weight: bold;
	text-decoration:none;
	}
.normaltxt a:hover {
	text-align: left;
	color:#000000;
	font-weight: bold;
	text-decoration:underline;
	}

.nametxt {
	font-family: Tahoma, Geneva, sans-serif;
	font-size: 16px;
	text-align: left;
	line-height: 18px;
	color: #000000;
	font-weight: bold;
	}

.subtitletxt {
	font-family: Tahoma, Geneva, sans-serif;
	font-size: 13px;
	text-align: left;
	line-height: 13px;
	color: #84888b;
	}

.jobtitletxt {
	font-family: Tahoma, Geneva, sans-serif;
	font-size: 11px;
	text-align: left;
	color: #84888b;
	line-height: 13px;
	}

.blackaddresstxt {
	font-family: Tahoma, Geneva, sans-serif;
	font-size: 12px;
	text-align: left;
	line-height: 17px;
	color: #000000;
	font-weight: bold;
	}

.addresstxt {
	font-family: Tahoma, Geneva, sans-serif;
	font-size: 12px;
	text-align: left;
	line-height: 17px;
	color: #000000;
	}
.addresstxt a:link, .addresstxt a:visited {
	text-align: left;
	color:#000000;
	text-decoration:none;
	}
.addresstxt a:active, .addresstxt a:hover {
	text-align: left;
	color:#000000;
	text-decoration:underline;
	}

.verticalsplittxt {
	font-family: Tahoma, Geneva, sans-serif;
	font-size: 12px;
	text-align: left;
	line-height: 17px;
	color: #84888b;
	font-weight: bold;
	}

.nametxt {
	font-family: Tahoma, Geneva, sans-serif;
	font-size: 16px;
	text-align: left;
	line-height: 18px;
	color: #000000;
	font-weight: bold;
	}

.footertxt {
	font-family: Tahoma, Geneva, sans-serif;
	font-size: 11px;
	text-align: left;
	color: #969696;
	line-height: 12px;
	}

.unsubscribe_text{
	font-family:Tahoma, Geneva, sans-serif;
	font-size:11px;
	color:#ccc;
}

.footertxt a:link, .footertxt a:visited {
	text-align: left;
	color:#969696;
	text-decoration:none;
	}
.footertxt a:active, .footertxt a:hover {
	text-align: left;
	color:#969696;
	text-decoration:underline;
	}
	-->
</style>
</style>

</head>

<body>
<h1>Thanks for your interest in Cloud Mailer</h1>

<p>With many returning customers, href="http://www.cloud-mailer.co.uk/">Cloud Mailer has changed the way people make new business contacts and leads.</p>

<p><strong>If it still isn't clear what we do - </strong>We send your email to an <em>up-to-date</em> database of UK based companies in industries and locations of your choice. All you need to do is choose who you want to send your email out to, write your email and then choose when you want to send it out. <strong>We do the rest</strong>.</p>

 

Caught in my spam trap – paramountbathrooms.com / .co.uk

I’ve decided to start naming and shaming the people who spam me. I have an email address hidden in the code of one of my web sites. It doesn’t display to visitors but robots will read it.  To give the spammers a sporting chance, the email address is nospam@….mydomain… I then email them to ask where they got the address from.

Their response to asking where they got the email address from?

sales@paramountbathrooms.com – asked twice, they never responded.

Observations

Their third spam email actually used someone elses domain (A foreign exchange business) as the sending address. I suspect that was an error rather than deliberate.

However, they are using multiple domain names to send the emails, probably so the spam filters don’t associate the main domain name with the spam they are sending. You can see them using tradeonlyfurniture.com and parabath.asia

Email headers

Delivered-To: nospam@...
Received: by 10.76.167.167 with SMTP id zp7csp32517oab;
        Wed, 23 Jan 2013 12:37:15 -0800 (PST)
X-Received: by 10.68.200.228 with SMTP id jv4mr6271839pbc.139.1358973435326;
        Wed, 23 Jan 2013 12:37:15 -0800 (PST)
Return-Path: <bounce@parabath.asia>
Received: from smtp8.parabath.asia ([69.163.35.79])
        by mx.google.com with ESMTP id y9si21951485paw.333.2013.01.23.12.37.15;
        Wed, 23 Jan 2013 12:37:15 -0800 (PST)
Received-SPF: neutral (google.com: 69.163.35.79 is neither permitted nor denied by domain of bounce@parabath.asia) client-ip=69.163.35.79;
Authentication-Results: mx.google.com;
       spf=neutral (google.com: 69.163.35.79 is neither permitted nor denied by domain of bounce@parabath.asia) smtp.mail=bounce@parabath.asia;
       dkim=neutral (bad format) header.i=sales@tradeonlyfurniture.com
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; s=dkim; d=tradeonlyfurniture.com;
 h=To:Subject:Message-ID:Date:From:Reply-To:MIME-Version:List-Unsubscribe:Content-Type:Content-Transfer-Encoding; i=sales@tradeonlyfurniture.com;
 bh=MfK1igzDiEHCErhHt425qJHnp9U=;
 b=4echPfnHqn2ifY7Xaj+DldwWQ+nivZa5wkBuiyZgzNgieicGahcw4s5O21+BDZiL2vv2RikvyhiT
   x91MY6LZAmmtEzdmxA3+lR9dHHZZ3oawyMjbexrG00L4V/dfyV6hJSMY3OG0rMbCw1Yn9+nyT9+q
   IT0F17OUd7GwYEAmsAk=
DomainKey-Signature: a=rsa-sha1; c=nofws; q=dns; s=dkim; d=tradeonlyfurniture.com;
 b=ePacO6003esB+1NpbkhcBQXBt136pmZoMYK0CZXhkmPwM2EVvD8JjDpmHUgg9LmHI6kblMkGbOtL
   6yc+xjwN2lp+SsHBQ/05sW3aEiP5lAFPST0tiJ7mw9AGQC67w0M9y9H1WW3kdUELIGSfk6zUgPAs
   S40ZGeeVnnxnwqyuBuw=;
To: nospam@....
Subject: Trade only furniture prices
Message-ID: <839dd245850f86aabd86a30cfa0b42e5@tradeonlyfurniture.com>
Return-Path: bounce@parabath.asia
Date: Wed, 23 Jan 2013 06:50:15 -0700
From: "Trade only furniture" <sales@tradeonlyfurniture.com>
Reply-To: sales@paramountbathrooms.com
MIME-Version: 1.0
X-Mailer-LID: 10
List-Unsubscribe: <%%HEADER_UNSUBSCRIBELINK%%>
X-Mailer-RecptId: 62235
X-Mailer-SID: 16
X-Mailer-Sent-By: 1
Content-Type: multipart/alternative; charset="UTF-8"; boundary="b1_65aaffd92098ab741635a3be8d1c70fa"
Content-Transfer-Encoding: 8bit

--b1_65aaffd92098ab741635a3be8d1c70fa
Content-Type: text/plain; format=flowed; charset="UTF-8"
Content-Transfer-Encoding: 8bit

Paramount
Bathrooms
The UK's number 1 furniture supplier

www.paramountbathrooms.co.uk
sales@paramountbathrooms.co.uk
Dear nospam@....

----------The best quality furniture at TRADE ONLY prices-------

These prices are ongoing prices and not just a special offer.
At lot of our customers make a tidy sum each month just from
supplying

And another

Delivered-To: nospam@....
Received: by 10.76.167.167 with SMTP id zp7csp157377oab;
        Tue, 29 Jan 2013 12:16:01 -0800 (PST)
X-Received: by 10.68.209.230 with SMTP id mp6mr5645209pbc.8.1359490561457;
        Tue, 29 Jan 2013 12:16:01 -0800 (PST)
Return-Path: <bounce@tradeonlyfurniture.com>
Received: from smtp8.parabath.asia ([69.163.35.79])
        by mx.google.com with ESMTP id rg4si13467235pbc.323.2013.01.29.12.15.59;
        Tue, 29 Jan 2013 12:15:59 -0800 (PST)
Received-SPF: temperror (google.com: error in processing during lookup of bounce@tradeonlyfurniture.com: DNS timeout) client-ip=69.163.35.79;
Authentication-Results: mx.google.com;
       spf=temperror (google.com: error in processing during lookup of bounce@tradeonlyfurniture.com: DNS timeout) smtp.mail=bounce@tradeonlyfurniture.com;
       dkim=neutral (bad format) header.i=sales@tradeonlyfurniture.com
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; s=dkim; d=tradeonlyfurniture.com;
 h=To:Subject:Message-ID:Date:From:Reply-To:MIME-Version:List-Unsubscribe:Content-Type:Content-Transfer-Encoding; i=sales@tradeonlyfurniture.com;
 bh=C1fm2Xc58QbaHwLIozse44OOv2k=;
 b=eDKzKplg11sZC9VZ9BDdd8akalLTBTTwkq9UCoZ1q8YIcvGhK/42579pdUlfqbq5RRa+7yrZJDVx
   aUO9YHH5YxTzyW9CwYgFMBPK+7JJbDn0sxysm2VoVpTOn9elCJB2NEemaGqgLWGhekyOTgCaiFV2
   RCmp521KMsbff5ytDhM=
DomainKey-Signature: a=rsa-sha1; c=nofws; q=dns; s=dkim; d=tradeonlyfurniture.com;
 b=qwM01mq514iC3cPtNSY0wirabc77kDoDHlVwUxAniXnbTcScmfutrGfNdBk9uPTluUHqScisj56I
   16mUtss2YGGnu1tZigV1HD2oNyYWpb3Ye8/obDqvB38GivekgphvJ7AkzNbRsLmIpz1lrTnp7kvk
   gyxgqrQT2BugCifKflo=;
To: nospam@....
Subject: Trade only furniture prices
Message-ID: <df6a8af754cbc985f3203fb731b52eb7@tradeonlyfurniture.com>
Return-Path: bounce@tradeonlyfurniture.com
Date: Tue, 29 Jan 2013 05:44:08 -0700
From: "Trade only furniture" <sales@tradeonlyfurniture.com>
Reply-To: sales@paramountbathrooms.com
MIME-Version: 1.0
X-Mailer-LID: 11
List-Unsubscribe: <%%HEADER_UNSUBSCRIBELINK%%>
X-Mailer-RecptId: 66944
X-Mailer-SID: 18
X-Mailer-Sent-By: 1
Content-Type: multipart/alternative; charset="UTF-8"; boundary="b1_f7c7d8b7d4c760c1fb02191f3bbcd7bf"
Content-Transfer-Encoding: 8bit

--b1_f7c7d8b7d4c760c1fb02191f3bbcd7bf
Content-Type: text/plain; format=flowed; charset="UTF-8"
Content-Transfer-Encoding: 8bit

Paramount
Bathrooms
The UK's number 1 furniture supplier

www.paramountbathrooms.co.uk
sales@paramountbathrooms.co.uk
Dear nospam@....

----------The best quality furniture at TRADE ONLY prices-------

These prices are ongoing prices and not just a special offer.
At lot of our customers make a tidy sum each month just from
supplying

And even after asking twice where they got the email address from they continue. Obviously I’m being too subtle.

Delivered-To: nospam@....
Received: by 10.76.80.100 with SMTP id q4csp149267oax;
        Tue, 12 Feb 2013 07:59:52 -0800 (PST)
X-Received: by 10.50.88.228 with SMTP id bj4mr4140815igb.85.1360684792036;
        Tue, 12 Feb 2013 07:59:52 -0800 (PST)
Return-Path: <bounce@tradeonlyfurniture.com>
Received: from smtp2.parabath.asia ([69.163.35.207])
        by mx.google.com with ESMTP id d6si1343494paw.260.2013.02.12.07.59.50;
        Tue, 12 Feb 2013 07:59:50 -0800 (PST)
Received-SPF: temperror (google.com: error in processing during lookup of bounce@tradeonlyfurniture.com: DNS timeout) client-ip=69.163.35.207;
Authentication-Results: mx.google.com;
       spf=temperror (google.com: error in processing during lookup of bounce@tradeonlyfurniture.com: DNS timeout) smtp.mail=bounce@tradeonlyfurniture.com;
       dkim=neutral (bad format) header.i=tradeonly@trade.com
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; s=dkim; d=trade.com;
 h=To:Subject:Message-ID:Date:From:Reply-To:MIME-Version:List-Unsubscribe:Content-Type:Content-Transfer-Encoding; i=tradeonly@trade.com;
 bh=8Uo4IJnEM6oSi3E92G1oYiNtO34=;
 b=lyn+8E1YRksUlkjO8KrBZHKd2tN+gE3Zzn7ZaggHoyWXB/6I1KiMoUy/OLjR8eAInODFG78Db1zT
   h9CxZjb3pK3kQFN/+1dGmV7l/cSAlYzS9xevch/k/ajJnxItJ46jHDAMQSWChZmWpo0ht7U/hHEt
   KsZ1hSEFAgGdWBFwm5s=
DomainKey-Signature: a=rsa-sha1; c=nofws; q=dns; s=dkim; d=trade.com;
 b=K/b9Slma+Ee6IbDL+B6k26rX3vULqOg61cmaXbndp6CeSkJKUwwSWL8kVw0SD4BlTyGccaO00wQ8
   JyJ6cYYO4CKPe7E4RVcSICAoNh4hgWBZy3Y74JHVSSFn92UCeMUOXBovMJF9zZuhovxQcpIltQj9
   A1bDsdr+gBr3ydoujEs=;
To: nospam@....
Subject: Why use anyone else?
Message-ID: <e5c5f6bf9ad026910436816c1c1cde83@tradeonlyfurniture.com>
Return-Path: bounce@tradeonlyfurniture.com
Date: Tue, 12 Feb 2013 01:30:29 -0700
From: "Why use anyone else for bathrooms?" <tradeonly@trade.com>
Reply-To: sales@paramountbathrooms.com
MIME-Version: 1.0
X-Mailer-LID: 11
List-Unsubscribe: <%%HEADER_UNSUBSCRIBELINK%%>
X-Mailer-RecptId: 66944
X-Mailer-SID: 32
X-Mailer-Sent-By: 1
Content-Type: multipart/alternative; charset="UTF-8"; boundary="b1_8bce6dbe71b7111c29a83ae3a319f45e"
Content-Transfer-Encoding: 8bit

--b1_8bce6dbe71b7111c29a83ae3a319f45e
Content-Type: text/plain; format=flowed; charset="UTF-8"
Content-Transfer-Encoding: 8bit

Having trouble reading this email?
[http://tradeonlyfurniture.com/display.php?M=66944&C=a9ef5551407eef3445e5d28533ecfc6e&S=32&L=11&N=10]http://tradeonlyfurniture.com/display.php?M=66944&C=a9ef5551407eef3445e5d28533ecfc6e&S=32&L=11&N=10

[http://tradeonlyfurniture.com/link.php?M=66944&N=32&L=2&F=T]
www.paramountbathrooms.co.uk
email:sales@paramountbathrooms.co.uk       Tel:02392 586616

Newsletter
February 2012

Dear archant.co.uk, please stop spamming me

Dear
lifestyleadvertising@archant.co.uk life-style@archant.co.uk (22nd February 2012)
“Bolton, Jamie” <Jamie.Bolton@archant.co.uk> (11th March 2012)
“Blick, Sharon” <Sharon.Blick@archant.co.uk> (8th May 2012)
and again “Blick, Sharon” <Sharon.Blick@archant.co.uk> with “Harwood, Jason” <Jason.Harwood@archant.co.uk> (30th May 2012)

I know your company. We have advertised in your publications in the past.

However, when you scrape web sites for contact information to send spam [1] (which also breaks the PECR regulations, but nobody cares, right?) you could at least stop sending the spam when asked. I’ve asked three times now.

[1] the email address of ”seewebsiteforcontactdetails@rkbb… is not obvious enough?

Spam filter that blocks the spam senders from RECEIVING email!

Interesting, I just tried to report spam to a company who I assume ran the campaign in good faith. The report got an unexpected response:

: host lonvs07.kinexus.net[212.113.24.167] said: 554
    Service unavailable; Client host [89.234.3.158] blocked using
    relays.ordb.org; ordb.org was shut down on December 18, 2006. Please remove
    from your mailserver. (in reply to RCPT TO command)

Panic! One of our server IP’s got blacklisted as a spam source!….. phew, not the case (thank you slashdot), emailiq are filtering their email for spam using a blacklist database that shut down over a year ago. The blacklist have decided they gave enough notice to people filtering against their list, so from now on they are reporting every email checked as being spam. If you’re not getting email today, better check with your mail provider.

This company may not have meant to send spam, but because of spam they now have no email until the reconfigure their servers. Events like this show just how much spam is really costing everyone.

Spam Wars – The spammer lost in court, but will they pay?

45-ccj.jpg

It’s arrived, the County Court Judgement against the spammers known as Cybernet Media Limited and Chris Mortimer. The court awarded me 100 in compensation and a further 325 in costs (425 in total). The big question now is will they pay? They have until the 28th February.

I admit this still isn’t really what I wanted. In the original court documents I asked for two things.

Firstly, for them to pay the charges I told them I expected them to pay if they continued to send spam – at a rate of 50 + VAT per email. The judge said he couldn’t award that because it didn’t reflect the costs their breaking the PECR regulations incurred me. In his words, I could have asked for a million pounds per email and it wouldn’t be a valid claim. If however those particular emails had stopped our system working and the repair had cost a million pounds then that would be allowable. I’m not unhappy with the judges decision, it’s perfectly logical, but I understand why others don’t bother trying to stop spammers – it’s simply not worth the time.

Secondly, I asked for them to put in writing that they would stop sending the spam and follow the regulations. The judge couldn’t order that (not within his powers) and as we know from reading the comments of my earlier posts Cybernet Media continue to send spam, not because they don’t know the regulations, just they choose to ignore them.

I’ll update the blog if there are any developments.

Spam wars – court date set

I haven’t posted about this for a while and thought I should just say what’s happening. The company in question ignored letters from the court, or at least, they chose not to reply. That’s right, no defence, no counter claim, nothing. So, the court have set a date to make a judgement on the case. I have no idea if they’ll turn up to the hearing (it’s a long drive – they’re based in Lancashire and the case has been set in Canterbury). Seeing as they didn’t contest the location of the hearing, I guess they’re not coming. I can give them the benefit of the doubt though and assume they will though.

It does bring another question up though. As a limited company (as well as individuals, they could never make up their mind who they were trading as so I brought the claim against all of them) what happens if it doesn’t respond? I have a feeling (I’m not certain) the directors are responsible for the company responding and if they don’t (or the company, as it’s own legal entity doesnt) respond, they may have to answer to a criminal court which can fine them personally (I’ll have to look though the detail of the companies act)