hosted by liquidweb


Go Back   Web Hosting Talk : Web Hosting Main Forums : Hosting Security and Technology : Massive Spam, no answers from IPTelligent
Reply

Forum Jump

Massive Spam, no answers from IPTelligent

Reply Post New Thread In Hosting Security and Technology Subscription
 
Send news tip View All Posts Thread Tools Search this Thread Display Modes
  #1  
Old
Web Hosting Guru
 
Join Date: Jun 2001
Posts: 343

Massive Spam, no answers from IPTelligent


Apparently this company is located in Miami. I am receiving massive spam from numerous IPs, different every time I lock off more. I've sent them 3 abuse messages include a last warning to contact me that they received my messages. No response.

I'm curious if anyone has dealt with them since they are, by far, a company whose IP addresses are the worst offenders of spam on our site. I don't know if it's uber incompetence or perhaps something else. It's so time consuming to deal with them that I'm considering investing more time and money to go after them. Any thoughts? Anyone here that works for them or has an ownership interest? It's really gotten out of hand.



Sponsored Links
  #2  
Old
Web Hosting Master
 
Join Date: Feb 2012
Location: Memphis, TN
Posts: 2,978
Considering their website is empty and Google has a malicious history report I would say you need to send abuse to their provider.

edit* abuse@quadranet.com

__________________
hostingcove.com | Tennessee Based Hosting Provider.
cPanel Shared & Reseller Hosting - Domain Names
Join thousands of happy customers. Secure & Stable
HeroicVPS Premium KVM VPS. Ashburn / Phoenix



Last edited by SPINIKR-RO; 06-28-2012 at 09:37 PM.
  #3  
Old
CLOUD will fix EVERYTHING...
 
Join Date: Aug 2007
Location: L.A., CA
Posts: 3,333
Our abuse email is abuse@quadranet.com as standard with most networks on the Internet.
I don't believe noc@ is even a valid email, FYI.

__________________
EasyDCIM.com - DataCenter Infrastructure Management - BETA SOON!
Bandwidth Billing | Inventory & Asset Management | Server Control
Order Forms | Reboots | IPMI Control | IP Management | Reverse&Forward DNS | Rack Management

Sponsored Links
  #4  
Old
Web Hosting Master
 
Join Date: Feb 2012
Location: Memphis, TN
Posts: 2,978
Oh I am sorry for posting the wrong email, I copy pasted the wrong ip whois email.

__________________
hostingcove.com | Tennessee Based Hosting Provider.
cPanel Shared & Reseller Hosting - Domain Names
Join thousands of happy customers. Secure & Stable
HeroicVPS Premium KVM VPS. Ashburn / Phoenix


  #5  
Old
Web Hosting Guru
 
Join Date: Jun 2001
Posts: 343
Quote:
Originally Posted by CGotzmann View Post
Our abuse email is abuse@quadranet.com as standard with most networks on the Internet.
I don't believe noc@ is even a valid email, FYI.
In WHOIS (lookup at ARIN) all the email addresses for point of contact are IPTelligent. Thanks for the info - but do realize that this looks terrible. As I type this I've got a dozen more spam messages from another fresh set of IPTelligent IPs. It's almost like a spam farm run wild. Hopefully forwarding all these messages one last time will light a fire under someone. Tx.

  #6  
Old
Web Hosting Guru
 
Join Date: Jun 2001
Posts: 343
Just sent a message. We'll see what happens. I'd think it's an exploit but it's so many servers and interesting that some appear to be consecutive and potentially owned by the same party.

68.169.80.146
68.169.80.147
68.169.80.148
68.169.80.149
68.169.86.218
68.169.86.219
68.169.86.220
68.169.86.222
96.47.224.42
96.47.224.50
96.47.224.58
96.47.224.218
96.47.225.66
96.47.225.74
96.47.225.82
96.47.225.162
96.47.225.170
173.44.37.226
173.44.37.234
173.44.37.242
173.44.37.250

  #7  
Old
Web Hosting Guru
 
Join Date: Jun 2001
Posts: 343
14 hours, still nothing, and these IP addresses are somehow getting by the firewall now. Totally unacceptable. Time to manually add all this crap to the htaccess file. What a disgrace. Can't say the company doesn't know about this.

  #8  
Old
Web Hosting Guru
 
Join Date: Jun 2001
Posts: 343
Quote:
Originally Posted by CGotzmann View Post
Our abuse email is abuse@quadranet.com as standard with most networks on the Internet.
I don't believe noc@ is even a valid email, FYI.
No response at all from anyone. That's four emails and now the spam is starting again from new IP Addresses. If I can't even get back a response, this is beyond just negligence and incompetence. This moves into questions of whether there is knowledge and intent to be a hosting platform for spammers. If you're paying attention, send it down the pipeline fast because I'm about to take necessary action beyond what I've been doing until now. Here's one more.

96.47.225.178

  #9  
Old
Web Hosting Master
 
Join Date: Jan 2008
Location: Michigan
Posts: 1,617
Quote:
Originally Posted by slinky View Post
No response at all from anyone. That's four emails and now the spam is starting again from new IP Addresses. If I can't even get back a response, this is beyond just negligence and incompetence. This moves into questions of whether there is knowledge and intent to be a hosting platform for spammers. If you're paying attention, send it down the pipeline fast because I'm about to take necessary action beyond what I've been doing until now. Here's one more.

96.47.225.178
From the date of your posts here, unless I am mistaken, you are largely sending these complaints to their abuse over the weekend or maybe the tail end of last week?

No offense to you, but depending on the size of the company, many do not have abuse reps on the weekend or they are handled by the higher network ops guys. Who again, are not always available on a weekend.

I am not saying that is always the case, as very large companies could have someone available on site, or on-call. But I can say from hosting experience many of the small to mid sized companies have a skeleton crew on weekends, and their level 3's perhaps on-call for emergencies.

/2cts

__________________
BLAZINGSWITCH | sales /@/ blazingswitch.com
100TB DEDICATED | 1G UNMETERED | BLAZING VPS | BACK UPS | SMART SERVERS | PARTNER PROGRAM
HIGH SPEED WEB HOSTING SOLUTIONS | ENTERPRISE GRADE HARDWARE


  #10  
Old
Web Hosting Guru
 
Join Date: Jun 2001
Posts: 343
Quote:
Originally Posted by Barefootsies View Post
From the date of your posts here, unless I am mistaken, you are largely sending these complaints to their abuse over the weekend or maybe the tail end of last week?

No offense to you, but depending on the size of the company, many do not have abuse reps on the weekend or they are handled by the higher network ops guys. Who again, are not always available on a weekend.

I am not saying that is always the case, as very large companies could have someone available on site, or on-call. But I can say from hosting experience many of the small to mid sized companies have a skeleton crew on weekends, and their level 3's perhaps on-call for emergencies.
Post taken in the good nature intended.

First report was 10:50 AM on Wednesday. I'd say that not getting a reply to several abuse reports over almost 4 business days qualifies as pitiful.

  #11  
Old
Web Hosting Guru
 
Join Date: Jun 2001
Posts: 343
Not one single response from IPTelligent, Quadranet or whomever they are after weeks. Spam coming through again. Cannot say that there wasn't adequate warning. Time to take action since they apparently - IMHO - are either incompetent or deliberately sell space to spammers.

  #12  
Old
Web Hosting Master
 
Join Date: Feb 2012
Location: Memphis, TN
Posts: 2,978
Try opening another abuse complaint. Though they may not get back to you they may open a case with the customer.

__________________
hostingcove.com | Tennessee Based Hosting Provider.
cPanel Shared & Reseller Hosting - Domain Names
Join thousands of happy customers. Secure & Stable
HeroicVPS Premium KVM VPS. Ashburn / Phoenix


  #13  
Old
CLOUD will fix EVERYTHING...
 
Join Date: Aug 2007
Location: L.A., CA
Posts: 3,333
#1. We do not respond to abuse complaints. You are not our customer.
#2. We forward requests on to our customers to handle. I have no idea who you are, what the issue is, and haven't seen anything come in that would resemble what you are talking about in this thread.
#3. You need to forward the complaint WITH evidence to abuse at- quadranet.com

If you have a ticket number or provide me with your name or domain via private message, I will look into the issue and see where we stand and whether the abuse complaint has even come in.

__________________
EasyDCIM.com - DataCenter Infrastructure Management - BETA SOON!
Bandwidth Billing | Inventory & Asset Management | Server Control
Order Forms | Reboots | IPMI Control | IP Management | Reverse&Forward DNS | Rack Management

  #14  
Old
Web Hosting Guru
 
Join Date: Jun 2001
Posts: 343
Quote:
Originally Posted by CGotzmann View Post
#1. We do not respond to abuse complaints. You are not our customer.
I'm not sure what this is supposed to mean. People who aren't your customers are the ones obviously sending in abuse complaints.

Quote:
Originally Posted by CGotzmann View Post
#2. We forward requests on to our customers to handle. I have no idea who you are, what the issue is, and haven't seen anything come in that would resemble what you are talking about in this thread.
So you're forwarding complaints. Now there's a question that you actually do read them but all four of my emails were missed. I sent them to both locations, including the information in ARIN. Sent one to abuse@quadranet.com back on June 28.

Now if the iptelligent.com email address doesn't work then I would have expected a bounce as well. But it appears you just have a site up with nothing there.


Quote:
Originally Posted by CGotzmann View Post
#3. You need to forward the complaint WITH evidence to abuse at- quadranet.com
What evidence do you want? There was plenty of information as to what your clients are doing - dumping massive obvious forum spam.
Every IP Address I check is in at least to black hole / blacklisting services. If I need to provide more evidence, let me know who is your legal counsel and I'll send them a preservation letter that can also be forwarded to your client.

Quote:
Originally Posted by CGotzmann View Post
If you have a ticket number or provide me with your name or domain via private message, I will look into the issue and see where we stand and whether the abuse complaint has even come in.
If I'm not a client of yours, how am I supposed to have a ticket number? On your site the only support link requires someone to be logged in - and you've got email for sales.

I've sent one more ticket and made sure someone will see it. It's manifestly clear. If I can't get a response from anyone, since your clients are obviously also not playing by the honor system that we know spammers abide by, I'll send you a PM. I very much hope that won't be necessary.

  #15  
Old
Web Hosting Guru
 
Join Date: Jun 2001
Posts: 343
So you need some evidence? http://www.stopforumspam.com/ipcheck/173.44.37.250

This has been going on for months, apparently, at least since as early as May 6 from this report. And during all that time, nobody ever reported this? I would find it very hard to believe. And this is just one IP Address.


---------------------------

5-Jun-12 19:01 173.44.37.250 Life insurance group lpojxertwb@ntgags.com United States Evidence
5-Jun-12 19:01 173.44.37.250 Electronic cigarette silver case lzsyhvhsaf@pdzrzk.com United States Evidence
5-Jun-12 18:09 173.44.37.250 Vigrx plus in stores mdokqxqihg@gyxnpk.com United States Evidence
5-Jun-12 18:05 173.44.37.250 Liberty national life insurance company krqfzxxdju@gsirlz.com United States Evidence
5-Jun-12 18:01 173.44.37.250 Life insurance group lpojxertwb@ntgags.com United States Evidence
5-Jun-12 18:01 173.44.37.250 Electronic cigarette silver case lzsyhvhsaf@pdzrzk.com United States Evidence
5-Jun-12 14:39 173.44.37.250 Vigrx plus in stores mdokqxqihg@gyxnpk.com United States Evidence
5-Jun-12 12:57 173.44.37.250 Best penis enlargement exercises uxcczeeoph@vcbboi.com United States Evidence
5-Jun-12 12:54 173.44.37.250 Best penis enlargement exercises uxcczeeoph@vcbboi.com United States Evidence
5-Jun-12 12:53 173.44.37.250 How many valium prior to dental appointment aarwgpkduo@xvtjyb.com United States Evidence
5-Jun-12 12:53 173.44.37.250 Faxless payday loans direct lenders

Reply

Similar Threads
Thread Thread Starter Forum Replies Last Post
iptelligent Reviews? elektrica Colocation and Data Centers 28 03-19-2010 02:05 AM
[MASSIVE MASSIVE Clearout Sale ! ! !] reyna12 Design Offers 1 06-02-2005 01:48 PM
Massive SPAM attack to one domain cYbErDaRk Dedicated Server 2 09-03-2004 06:51 PM
I new to This.. Answers please aaronbor Domain Names 4 09-25-2003 03:33 AM

Related posts from TheWhir.com
Title Type Date Posted
AOL Security Breach Exposes Customer and Employee Information, Including Encrypted Passwords Web Hosting News 2014-05-23 14:59:43
Successful Ingredients for Stopping Outbound Spam Blog 2013-07-30 09:54:15
Outbound Spam Causing Sleepless Nights? Blog 2013-05-13 09:52:21
Spamhaus Blames Cyberbunker for the Largest Public DDoS Attack Ever Web Hosting News 2013-03-27 14:11:35
eleven Email Security Report Finds European Countries Top Spam Senders in October, November Web Hosting News 2014-05-01 08:22:32


Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Postbit Selector

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Forum Jump
Login:
Log in with your username and password
Username:
Password:



Forgot Password?
WHT Host Brief Email:

We respect your privacy. We will never sell, rent, or give away your address to any outside party, ever.

Advertisement:
Web Hosting News:
WHT Membership
WHT Membership



 

X

Welcome to WebHostingTalk.com

Create your username to jump into the discussion!

WebHostingTalk.com is the largest, most influentual web hosting community on the Internet. Join us by filling in the form below.


(4 digit year)

Already a member?