doctorkc@ukmall.net – Hacker? Spammer? Malware Distributor? BEWARE HIS SITES! They are infected!
| December 30, 2011 | Posted by Anthony under Blog |
This morning, a person with the email address [ doctorkc@ukmall.net ] signed up for my newsletter. My newsletter form then sends the submitter to the correct link for entering one’s email in the actual newsletter email list, which then generates an email requesting activation and verification. This is essentially a ‘triple opt-in’ procedure that goes beyond the industry ‘best practice’ ‘double opt-in’ method for managing newsletters. You can imagine my surprise, then, when I received two emails from my registrar indicating someone had accused me of spamming. As evidence, they forwarded the activation emails.
I was a little torqued, as you might imagine, because I had really done all I could to prevent exactly that sort of accusation. I don’t do triple opt-in for all my email lists, but I do try to do due diligence to make sure they can’t be considered ‘unsolicited.’ I have had experience in the past with people signing up for my newsletters with the sole intent of reporting me, as well as people emailing me personally and then when I replied, submitted my reply as unsolicited to the ‘authorities.’ (From the nature of this website, you can guess what sort of folks would do such a thing). But this incident really took the cake.
Wishing to defend myself from this vicious slander, I naturally began googling the email address to see if he had done the same thing before (and to see if he was in the aforementioned category referred to as ‘sort of folks’) and found what appeared to be his very own sites, accusing other folks of spamming, and of course hundreds of banner ads and affiliate links. Five seconds later, my computer was seriously compromised by a virus posing as an anti-virus program.
There is no doubt in my mind that the whole point of the spamming accusation was to get people to go looking for information about that email address, and consequently, find themselves compromised and forking over a bunch of money to a rogue anti-virus program.
[UPDATE: Below is the screen shot from my stats monitor detailing the visitor information of the so-called 'doctorkc' at 122.177.247.43 ]
I caution anyone dealing with the same email address to NOT visit the person’s websites. In conversation with your registrar sending you the abuse notice, you may give them a link to this post as evidence of the person’s malicious intent and one person’s experience dealing with the issue.
In the off chance that someone does ever get an email from me or one of my sites, please know that I take the ‘spam’ issue seriously, taking due diligence, as I already indicated. However, I think this example goes to show that it is possible to take spam complaints TOO seriously.
In the past, for example, Barracuda Networks has put my server on their blacklist for all sorts of dumb reasons, up to and including someone filing false complaints. This ‘guilty until proven innocent’ approach to ‘spam’ is too prevalent, in my opinion. Moreover, it sets up people for being held hostage to truly malevolent folk, like the one prominent black list that accepts complaints but then does not give the complainer’s email address- how on earth was my client to remove that person’s email address if it is not given to him for removal? I suppose the idea is to spare that person from retaliation or retribution, but it should go without saying that it is impossible to remove someone’s email address from your list if you do not know it! You’d think the bright persons who manage that particular black list understood that simple piece of logic… at the very least, if they’re going to forward anonymous complaints, they should at least understand that there are people out there who may take advantage of their system, and exploit it to the malicious harm of another, who is doing nothing wrong at all.
I would like to commend my own registrar, gkg.net, for handling the matter with the right level of sensitivity, and hearing me out. I got to deal with a real live person, which I think was critical to resolving the matter. In some of my past experiences, my defenses were made by submission forms and when I was vindicated (as I always was!), I never heard back from the organization that I was cleared, or what came of the investigation, or given a chance to hear their explanation. I was simply removed from the black list, or whatever. (Although, my experiences with Barracuda blocking legitimate emails a couple of times a year ensures that I would not personally ever use them.)
I hope this post is useful for someone else encountering the same person/email and issue, and spares them the time wasted in cleaning up one’s system. And on the off chance that doctorkc@ukmall.net is himself a victim of some other malicious entity: my friend, you’ve got issues to solve on your end, and I suggest you get cracking!
This is the default footer layout. You can easily add or remove columns in the footer.
On 30 December 2011, I received twenty fake subscription verification emails. I reported all those as spam. I wasted next three days on spam bombardment. FIFTY emails in THREE days from Crosswalk, a dozen from BeliefNet and hundreds more. Since then, I have been thrashing spammers. The person making this post is presumably one of twenty who sent verification email for subscription never signed up by me. An interaction with a hundred random SUBSCRIBERS would expose how email addresses are harvested and used for mass spamming – upto 40 domains promoted in every spam.
Nice try, pal.
As you may observe, this website is not Crosswalk, BeliefNet, or any others. You specifically signed up for my newsletter. I have all of the evidence, and submitted it to my registrar- who obviously accepted my evidence, or else this site would still not be up, would it?
If you did not yourself sign up for my newsletter- or the mailing lists of the other sites you mention, then you have another problem: someone is going around maliciously entering your email into mailing lists. Obviously, if that is what is going on, the problem is not with the sites you mentioned, but with the fact that someone out there does not like you very much. This being the case, it is obviously not the fault of the sites, and for you to suggest as much is SIMPLY STUPID.
However, as I said in my post, it is unlikely that this is the case, as a visit to several of YOUR sites left my computer compromised. You, sir, are evil.
It’s like he doesn’t even know that I have the ability to track his movements across my server via his IP address. Wow. I mean, just wow.
I began surfing internet around 1996 and I NEVER subscribed to any newsletter. On 30 December 2011, I was looking for You Tube video download site and antivirus software. I clicked a link and a hidden malicious script subscribed me to 20 newsletters including yours. I remain online 17 hours a day, interacting with people across the globe. My computer and a million webpages are not infected. I enjoy credibility as 67 years old MBBS doctor, with fans in every country – my fanclubs in many countries calling me grandpa. In contrast, Newsletters and Spammers are considered synonymous, by millions of your victims.
Just google “DoctorKC” to check up my credentials!
Anyone who googles that after having read this thread isn’t very bright. They deserve what they get, as far as I’m concerned.
Oh, and by the way, as seen in the snapshot included in the post, the person who signed up for my newsletter on ’30 December’ from your IP didn’t get here via a script. They found the site through a google search. This was a manual action on your part.
Like I said, if it is not you yourself who did this, then you’ve got someone going around entering your emails into the newsletters of Christian websites (the ultimate torture, right!). Someone out there doesn’t like you very much. I suggest you try to find out who that person is, rather than causing a bunch of hassle for others who are- on your view- innocent victims, just like you.
But that doesn’t explain how your sites infected my computer, does it? So, we can all do the math. For you to keep coming here and trying to defend yourself only doubles-down on your nefarious character.