On The Forensic Capabilities of LeadForensics

The study of forensics refers to scientific tests or techniques used in connection with the detection of crime. It is an odd choice of name for what I think is a data seller, especially one whose targeting seems poor enough to be spamming me. They claim to want to help me generate more leads for my website, but my website doesn’t sell anything. I do not really need any leads.

They are sending from IP address 46.236.37.232, which appears to be an email platform called Message Focus or Adestra.

From what I can tell, the only forensic capability this entity has shown me is that they seem to buy B2B spam leads, which is very disappointing.

Siltaraha Oy / Finlandia Finance Oy

In May 2016, a Finnish B2B financing company (or “payday loans for businesses”, if you like) called Siltaraha Oy (www, biz reg, people responsible) started advertising its activities in B2B spam to purchased lists.
Read more…

New Finnish B2B spammer: Digimarketingmanager.com / Mailmarketingmanager.net

Here’s the culprit

Domains have been registered a week ago. The LI profile indicates the operation has started in July 2018. The people whose network the spam was sent from already know. Not just abuse@, the actual people.

If you’re reading this, Mr. A, take my advice: stop now.

Rule #4: The natural course of a spamming business is to go bankrupt.

Sendia is Effortia

Suomen Markkinointirekisteri Oy on Office 365

Aki Lindell seems to have obtained services from Microsoft.
Read more…

Ferratum Oyj, Payday Loans for Businesses and Affiliate Spam

Ferratum Oyj, a Finnish payday loan operator (www, biz reg, responsible people) recently had the smart idea to advertise their business loan services through affiliate spam. This blog entry attempts to document what ensued.

Read more…

Snowshoe-like email verification and lead generation services

Many email verification and lead generation services act a lot like snowshoe spammers. They bounce around from host to host, hoping to avoid detection and suspicion caused by their unusual SMTP traffic.

Read more…

Clickback MAIL hitting dead/invalid emails

Clickback MAIL has been hitting spam trap with email addresses which have been dead for a very long time (i.e. years) or never valid in any decade. Probably because Clickback doesn’t require pesky things like “Opt-In” or “Confirmed” subscribers but do allow purchased lists and “cold” contacts to be mailed. Seriously this is bad behavior, I wonder why no one has just blacklisted all of Clickback IPs/domains yet?

Read more…

Very persistent Finnish B2B spammer: Seolocation Oy (d/b/a Afton Videot)

Seolocation Oy (biz reg, responsible people) are really persistent B2B spammers.

They’re also listed by Suomispam.

$ host -t txt afton.fi.dbl.suomispam.net
afton.fi.dbl.suomispam.net descriptive text "20170411 "
$ host -t txt aftonvideopalvelu.fi.dbl.suomispam.net
aftonvideopalvelu.fi.dbl.suomispam.net descriptive text "20170320 "

Read more…

Go back to top