cancel
Showing results for 
Search instead for 
Did you mean: 

Just recieved this from plusnet

N/A

Just recieved this from plusnet

I have looked through my sent emails and can find nothing that would warrent this letter from plusnet.


Dear Customer,

It has come to our attention that a source of unsolicited email has been linked to your account with us. This could have one of several possible causes, including those in the following list:

- You are running an insecure SMTP relay or proxy software
- Your PC is infected by an email virus, worm or trojan
- You have a web server with an insecure Formmail script
- You are yourself sending unsolicited email


The sending of unsolicited email (Spam) is strictly prohibited under the Terms and Conditions of service under which your account is provided. While we accept that most such occurrences are inadvertant, it is your responsibility to ensure that computers you connect to the Internet through us are configured securely and kept free of viruses.


An abuse management case is currently open against your account regarding this matter. Please read the following and take any remedial measures that are required:

- If you run your own mail server software, ensure that it is configured only to relay mail for your computer or computers' specific IP addresses.

- If you operate a web proxy, IP proxy, or connection sharing software of any other sort, ensure that it is configured to proxy only for your computer or computers' specific IP addresses.

- Make sure that any server software you run, including the above, is securely configured and has all recommended fixes and security updates applied.

- Make sure that any computer or computers that run Microsoft Windows have an appropriate and up-to-date Anti-Virus solution installed. We also strongly recommend that you employ a personal Firewall.


When you believe you have resolved the problem, you should use the Help Assistant on the customer web portal to inform us that you have done so. Please use Help Assistant and do not reply to this mail directly, as questions raised to us through the portal are linked to your account and can be dealt with more speedily and efficiently.

Any other queries you may have about the content of this mail can also be passed to us through the Help Assistant, and we will be glad to help you resolve any issue you may have.

Please note that if you do not respond to this warning, your account may be suspended.


The Help Assistant can be found here:

https://portal.plus.net/wizard/index.html (click on Customer Services & Billing).


Further information on our Acceptable Usage Policy can be found here:

http://portal.plus.net/info2/legal/aup.html


Regards,
PlusNet Abuse Team





--
No virus found in this incoming message.
Checked by AVG Free Edition.
Version: 7.1.409 / Virus Database: 268.14.14/548 - Release Date: 23/11/2006
28 REPLIES
Community Veteran
Posts: 4,729
Registered: 04-04-2007

Just recieved this from plusnet

Its good to see that PlusNet are taking action to stop people spamming.

It not the e-mails that you have sent that will be the problem, it the ones that you have not sent, but have been sent on your connection that you should be concerned about.

Chilly

PS, Can I have 6 of the blue pills Wink
Community Veteran
Posts: 2,825
Thanks: 153
Fixes: 2
Registered: 05-04-2007

Just recieved this from plusnet

Ah - so it was you sending the 'hot stock picks' e-mails to BT Cheesy
N/A

Just recieved this from plusnet

chilly, but wouldent i be able to see them in my sent box, nobody else here uses my pc.
craiglay
Grafter
Posts: 138
Registered: 27-06-2007

Just recieved this from plusnet

**butting in**

Nope because if your not aware you're sending large amounts of email, a virus or trojan horse could be taking care of it for you. I suggest you run your virus scanner, Probably Spybot and Adaware (free dl) and see what you can get. Also look into how your firewall is performing.

This is assuming you're not running an SMTP relay...

Craig
N/A

Just recieved this from plusnet

No Jimbo - a virus won't use Outlook Express to send emails, it will send them directly.

Do a virus scan immediately!
suec45
Grafter
Posts: 566
Registered: 02-10-2007

Just recieved this from plusnet

What is your usage Peak and off peak this month?
ceridwen
Grafter
Posts: 937
Registered: 14-10-2007

Just recieved this from plusnet

You should ask what the evidence PN has that your account has been used for spamming - e.g. example spam e-mails sent from your account with complete headers.

It is possible that you machine has been compromised and is sending e-mails behind your back - in this case there will be no obvious evidence. You should get hold of some good spyware detection and virus detection software - ideally software which allows you to boot off a floppy or CD to do the scans.

However, it is equally likely that someone is sending e-mails masquarading as you (or a spurious account within your domain) - this is the online equivalent of someone sending a letter with your name and address on top, and similarly there isn't anything you can really do to find out who is doing this or to stop them.

Matthew
probshaw
Dabbler
Posts: 22
Registered: 30-07-2007

spam

most infections like this carry there own smtp server so leave no trace on your pc. Do a goggle search for hitman pro.
This will remove most infections but you need a good internet connection to run it.
N/A

Just recieved this from plusnet

Quote
However, it is equally likely that someone is sending e-mails masquarading as you


The problem with that is that most do not bother to spoof the originating IP. Here's some from an undeliverable message sent to my domain (despite having full SPF in place)
Quote
Received: from dsl.dynamic8121312058.ttnet.net.tr [81.213.120.58]
by ptn-mail.isleworth.pentoneurope.com
with XWall v3.35 ;
Fri, 24 Nov 2006 16:31:02 -0000
Received: from [81.213.203.193] (helo=isxt)
by dsl.dynamic8121312058.ttnet.net.tr with smtp (Exim 4.43)
id 1Gndyx-0001l4-Jx; Fri, 24 Nov 2006 18:32:55 +0200
Message-ID: <002301c70fe5$dfef0720$c1cbd551@isxt>

As you can see, they never bothered to hide the turkish origin. They could spoof it to look like the originator is actually forwarding it along the chain, but having a normal ISP account in the middle of the chain is suspicious anyway.

Despite the mismanagement of various things lately, I'm pretty sure even PN could make that distinction :-P
ceridwen
Grafter
Posts: 937
Registered: 14-10-2007

Just recieved this from plusnet

Almost every day there's a post of the forums complaining that CS has cut and pasted a standard reply into a support ticket and it is self evident that they haven't even bothered to read the ticket history.

That on receipt of a complaint about spam, PN would just bounce a standard "It has come to our attention that a source of unsolicited email has been linked to your account with us" to the account holder, without actually checking the nature of the complaint is, unfortunately, just too believable.

Matthew
N/A

Just recieved this from plusnet

Well if they were, it would certainly explain why the email servers keep falling over :lol:
Bernard_Shakey
Grafter
Posts: 243
Registered: 31-07-2007

Re: spam

Quote
This will remove most infections but you need a good internet connection to run it.



.....can you suggest a good ISP for that good Internet connection?...... Evil
N/A

Just recieved this from plusnet

isnt it just a tad hypocritcal that plusnet, whose entire email edifice constitutes one massively unsecured spammers paradise, are sending emails about spam generation to their customers? what a joke
N/A

Just recieved this from plusnet

Quote
....... whose entire email edifice constitutes one massively unsecured spammers paradise


Explanation is needed why you think PN mail servers are unsecured. If you look elsewhere in this forum you will see that users are unable to send emails when not connected via a PN account and are asking for SMTP authentication. So can't see how spammers can use PN servers unless it's through an unsecured user's mail server. Which is why they send emails like the one to the OP when detected.