Ho ricevuto oggi questa risposta ad una segnalazione fatta con Abuse! (V1.0.5.1):
Non sono in grado di determinare se è Abuse! che ha sbagliato oppure se sono loro che non hanno capito, nè so se queste informazioni (non ho altro) siano sufficienti per stabilirlo con certezza.Alessamdro,
The email you got according to the headers you sent us was sent to you
by the machine at 217.220.34.15. This IP address is the one you need to
contact. While our IP address is listed at the begining you should know
that it is a common practice to fake the begining of the message. All
the blacklisting services that I know of for this reason blacklist the
immediate IP address that sent the message to them, NOT the originating
IP address. Just fyi 209.198.128.11 is one of our FreeBSD (unix) DNS
Bind servers and does not have any users or actually handle any mail
functionality.
- Justin Roush
Below is the whois information on the IP address that sent the message
to you:
Created by pc-facile Abuse! antiSPAM software
---UCE---
Return-Path: <sales@murraydental.com>
Received: from mailin01.albacom.net (217.220.34.15) by FE-mail02.sfg.albacom.net (7.0.009)
id 42B246F60019B1DB for info@mydomain.com; Mon, 27 Jun 2005 21:30:06 +0200
Received: (qmail 19767 invoked from network); 27 Jun 2005 19:30:03 -0000
Received: from unknown (HELO @jifmail.com) (200.165.118.192)
by mailin01.albacom.net with SMTP; 27 Jun 2005 19:30:03 -0000
Received: from 209.198.128.11
(SquirrelMail authenticated user sales@murraydental.com);
by jifmail.com with HTTP id J85Gz029313074;
Mon, 27 Jun 2005 19:28:12 +0000
Message-Id: <LzgdQo.squirrel@209.198.128.11>
Date: Mon, 27 Jun 2005 19:28:12 +0000
Subject: Save your money buy getting this thing here
From: "Yvonne Hampton" <sales@murraydental.com>
To: info@mydomain.com
User-Agent: SquirrelMail/1.4.3a
X-Mailer: SquirrelMail/1.4.3a
MIME-Version: 1.0
Content-Type: text/html; charset=iso-8859-1
Content-Transfer-Encoding: 8bit
mymail@mydomain.com wrote:
> Dear Sirs,
>
> I have just received the attached unsolicited e-mail, apparently coming from IP 209.198.128.11 (bandit.prismnet.com), inside a network owned by you.
> Please check it out, and handle your user according to your TOS/AUP.
> Thank you.
Ho voluto però segnalarlo perchè sembra una delle rare occasioni di risposta da parte di un "umano".
Se pensate che l'analisi fatta dal software sia corretta e avete voglia di buttare giù due righe (tecniche) di risposta, sarò lieto di inoltrarle.
Alessandro