Wow, what is going on? In the last three days, I have gotten over 70 spam emails, some purporting to come from me! Bad spelling, phony gift cards, **bleep** enhancement, sexual positions, you name it. It had been bad about 2 months ago, and then everything cleared up. Now spam has come back with a vengeance - and in huge quantities. Has HughesNet turned off its spam filters? These last three days have been horrible! All the emails go to my spam folder, but why can't HughesNet reject them before they are delivered to me at all? Frustrated in Alabama

MarkJFine wrote:The *.nelottery.com part of the email address means nothing. Spammers often steal pseudo-valid but fake email addresses/domains in order for them to pass certain SpamAssassin tests.What matters is the final IP address from where the HN email server received them, which indicate the open relay(s).That's what you want to block, not the email address.[Soapbox]Spam. I really hate it, and the people behind it. All spammers are liars, and anyone who buys anything advertised in a spam mail is part of the problem.I frequently report spammers and their fraudulent web sites when I have the time. Here's some of my favorite tools:Report a Phishing Page: https://safebrowsing.google.com/safebrowsing/report_phish/?hl=en (Integrates with Mozilla Thunderbird)Report Gmail Spam: https://support.google.com/mail/contact/abuse@ - Report Reply To @gmail addressesSpamCop: http://www.spamcop.net/ (The RBLs do use the reports to flag IP and sites) Redirect Detective: http://redirectdetective.com/ (useful for tracing the "real" spam siteDomain Tools WHOIS Checker: http://whois.domaintools.com/ (Identifies who owns the IP/Registered the spam site)But it's a lot like playing "Whack a Mole." Pretty soon your mouse finger just gets tired of sending reports.[/Soapbox]

Virgil2UYour accusations are complete and utter rubbish if not borderline libelous. I have a HughesNet account and get zero spam on it. Chances are you signed up for something using your HughesNet address. What ever you signed up for sold your email to a bulk spam company. End of. Secondly, it is considered appropriate to include the person you're responding to (as I have done) or use the Quote button when responding so what you write doesn't look like a random stream of non-sequitirs. I guarantee no one knows what you're talking about or to whom except you.

GabeUThe trick is not to block the domain of the email address, those are forged anyway. The trick is to block the domain of the IP that the email came from. I'm building a pseudo-mini-DNS to do this that comprises a regex of the full range of IPs for that domain, a username for the abuse address (bfore the "@"), and the domain itself (after the "@")... Eventually I wanted this system to return the favor by auto-spamming their abuse address with a forward of each one I get. That kind of backfired, since there are truly foul email servers that collect received emails to... you can guess the rest. That's how I knew Comcast was hacked to do that some time back. I was getting ten+ back for every one I sent. You can see how that escalates exponentially if I'm "returning the favor".

The *.nelottery.com part of the email address means nothing. Spammers often steal pseudo-valid but fake email addresses/domains in order for them to pass certain SpamAssassin tests.What matters is the final IP address from where the HN email server received them, which indicate the open relay(s).That's what you want to block, not the email address.

Hello! A bit late but just wanted to give everyone the heads up that we're locking this thread. If you have concerns that need to be addressed please create a new post for yourself and explain in detail what the issue is so we can better assist you. Thank you, Amanda

Overwhelmed with Spam in the last three days!

MarkJFine
Professor
8 years ago
Only 70?

Chances are you've used your email to sign up for something and they've sold their email list, you've posted it somewhere on an open message board and it was scraped, or it was obtained by some other means.

Sometimes all of the spam sources go into overdrive, and they have been ramping up for about a week now, but nothing like the zombie spam storm at the end of July/beginning of August.

I can tell you that the majority of it is coming from unsecured servers in China, Vietnam, Brazil (Claro), Russia (lucky.net), Germany (MyLoc) and the US (Nexeon Tech, Eonix, Interserver). Blocking anything coming from those IP groups kills about 90% of it. The rest (mostly the drug and sex ones) come from people with infected phones and computers that are spamming unbeknownst to them upon command, hence the term 'zombie spam'.
- GabeU
  Distinguished Professor IV
  8 years ago
  MarkJFine
  
  I get so much spam it's ridiculous. And, unfortunately, I had my main email account hacked a few years back, and ever since then I receive spam email that looks like it came from my own email address. It's ludicrous. Every day I get about ten or fifteen emails from my own address, yet not actually sent from my account (though about five or six were when it was hacked). It's awful.
  
  If my main email wasn't the first email account I ever opened (mid/late 90s), I would simply change it. I'm too sentimental to do that. LOL.
  - MarkJFine
    Professor
    8 years ago
    GabeU
    There are several spam types that use valid emails that were scraped from web sites or web sites that have used a script to obtain your addressbook. They do this so they can be used in phishing emails as well as to get you to click some other site or open some attachment that infects you with something really nasty.
    
    Sometimes this is to make you one of the zombie horde, other times it's to install a keystroke stealer for when you login to your bank. Incidentally, your phone is not exempt either, as I see a tremendous amount of zombie spam coming from mobile phone systems.
    
    I have had my own server and associated email addresses for several decades as I used to have a shortwave radio-related shareware business. The server has spamassassin, but it is sometimes very ineffective in what it ultimately does with it. As a result I've had to modify their spamassassin script to perform a multi-level spam protection based on whitelisting known email addresses, then determining whether anything else should go to the junk box or directly to /dev/nul. I still want things going to the junk box in case it's something valid that I later need to add to the whitelist.
    
    Been working on collecting spam samples since April developing this (~4600 samples to date), and can safely say that in the past 7 days, after nearly 400 spams, I've had zero (0) spams leak into my inbox or junk box. 400 is actually a moderate level - I was getting close to 900 during a spamstorm in the last week of July.
    
    After saying all that, I can say that I've never received any spam in my hughes.net account, since I never use it as a username for anything other than my Hughes account(s). If you're going to use it as a honeypot, expect to get stung.
- Virgil2U
  Freshman
  7 years ago
  NO we do not need to sign up for these spammers that Hughesnet is making money from. Hughesnet is the ones that have given out our email addresses to these spammers and Hughesnet has knowingly and willfully allowed these spam emails to go to their customers and when you complain about it they only threaten you with cutting off your internet and also harass you to send them the spam emails which they can see in your email box which they had put there to begin with.
kevink
New Poster
8 years ago
Me too. Within the past two weeks, I suddenly started getting several of these each day, from different userids and with domains all ending with .nelottery.com, for example,
2XF4Z@PJYRUGCFKJ.nelottery.com or RSWBV@DIAKN7TDC1.nelottery.com
Since 'nelottery.com' is not the full domain name, these clearly have nothing to do with the nelottery.com domain, but are probably intended to make one think so - enough to click to open the spam messages.

Though my Mac Mail program identifies these as possible spam, in brown, I'd rather not see them at all. I wish hughes could just block anything from domains ending in xxx.nelottery.com (where xxx is some non-null character string).
- MarkJFine
  Professor
  8 years ago
  The *.nelottery.com part of the email address means nothing. Spammers often steal pseudo-valid but fake email addresses/domains in order for them to pass certain SpamAssassin tests.
  What matters is the final IP address from where the HN email server received them, which indicate the open relay(s).
  That's what you want to block, not the email address.
  - El Dorado Netwo
    Advanced Tutor
    8 years ago
    MarkJFine wrote:
    The *.nelottery.com part of the email address means nothing. Spammers often steal pseudo-valid but fake email addresses/domains in order for them to pass certain SpamAssassin tests.
    What matters is the final IP address from where the HN email server received them, which indicate the open relay(s).
    That's what you want to block, not the email address.
    [Soapbox]
    Spam. I really hate it, and the people behind it. All spammers are liars, and anyone who buys anything advertised in a spam mail is part of the problem.
    I frequently report spammers and their fraudulent web sites when I have the time. Here's some of my favorite tools:
    Report a Phishing Page: https://safebrowsing.google.com/safebrowsing/report_phish/?hl=en (Integrates with Mozilla Thunderbird)
    Report Gmail Spam: https://support.google.com/mail/contact/abuse@ - Report Reply To @gmail addresses
    SpamCop: http://www.spamcop.net/ (The RBLs do use the reports to flag IP and sites)
    Redirect Detective: http://redirectdetective.com/ (useful for tracing the "real" spam site
    Domain Tools WHOIS Checker: http://whois.domaintools.com/ (Identifies who owns the IP/Registered the spam site)
    But it's a lot like playing "Whack a Mole." Pretty soon your mouse finger just gets tired of sending reports.
    [/Soapbox]
Virgil2U
Freshman
7 years ago
I have had the same problem for the past three months and so far the only thing I have gotten from hughesnet was harassment asking me to send them the spam emails that they know I have received. They even block me from blocking the email address that these are coming from. Hughesnet is illegally allowing these spam emails to come to their customers as a way to make more money. It is illegal and they know it and will not stop allowing illegal spam email to go to their customers email accounts and also illegally block the customers from blocking emails from the senders of the spam. Whenever you complain they want to warn that you can lose your internet service for complaining and also they harass you. We customers need to be file charges against Hughesnet and have them fined heavily and us customers paid enough to cover the stress that Hughesnet has knowingly and willfully put us through.

Forum Discussion

Overwhelmed with Spam in the last three days!

Related Content

ATA modem is failing every day

Contract ending in two days

Slow download speed day four

Gateway connectivity loss of system every day (again)

Have a good day.

Recent Discussions

Anybody want some snow?

Blocking phone numbers and other divices

Very poor internet service

Had a visitor earlier...

Vewy quiet...