Spam 'n' Scam
Copyright © 2001-2003 by David Harper and L.M. StockmanDesigned and maintained by Obliquity
http://www.obliquity.com/computer/spambait/formmail.html
One of the most popular generic form-to-email scripts in use today is FormMail. Unfortunately, most versions of this script contain security loopholes which allow bulk emailers to hijack a third-party's FormMail script in order to send out any number of messages. When this happens, the innocent third party appears to be the sender of the messages and gets all of the blame.
Bulk emailers actively probe web sites all around the world, looking for insecure FormMail scripts to exploit. Although we do not employ FormMail at the Obliquity web site, we are constantly scanned by people looking to use our web servers to relay their rubbish.
And here they are. We began tracking these relay attempts on 16 September 2001 and finished on 11 August 2003 when we moved to a new hosting company.
| Internet Service Provider | Details | Total | ||
|---|---|---|---|---|
| 2001 | 2002 | 2003 | ||
| adelphia.net | 1 | 28 | 21 | 50 |
| airwire.net | 0 | 1 | 0 | 1 |
| alarit.com | 0 | 1 | 0 | 1 |
| ameritech.net | 0 | 4 | 17 | 21 |
| amisp.net | 0 | 2 | 0 | 2 |
| anonymizer.com | 0 | 0 | 4 | 4 |
| aol.com | 4 | 106 | 52 | 162 |
| att.net | 0 | 1 | 0 | 1 |
| attbi.com | 0 | 73 | 12 | 85 |
| aubeta.net | 0 | 0 | 2 | 2 |
| bellatlantic.net | 0 | 1 | 6 | 7 |
| bellsouth.net | 0 | 31 | 8 | 39 |
| bright.net | 0 | 2 | 0 | 2 |
| broadviewnet.net | 0 | 2 | 0 | 2 |
| broadwing.net | 4 | 12 | 0 | 16 |
| bsvnet.com | 0 | 0 | 2 | 2 |
| cableone.net | 0 | 23 | 0 | 23 |
| cantv.net | 0 | 1 | 0 | 1 |
| carats.net | 0 | 2 | 0 | 2 |
| cavtel.net | 0 | 0 | 2 | 2 |
| ccsinet.com | 0 | 1 | 0 | 1 |
| centennialrd.com | 0 | 0 | 4 | 4 |
| cgocable.net | 0 | 0 | 6 | 6 |
| charter.com | 0 | 0 | 1 | 1 |
| chartermi.net | 0 | 2 | 0 | 2 |
| charterpipeline.net | 0 | 24 | 0 | 24 |
| chinanet.cn.net | 1 | 0 | 0 | 1 |
| cnc.net | 0 | 3 | 0 | 3 |
| clara.net | 0 | 0 | 1 | 1 |
| comcast.net | 0 | 46 | 33 | 79 |
| comfortinnmarkham.com | 0 | 2 | 0 | 2 |
| concentric.net | 0 | 6 | 6 | 12 |
| condrives.com | 0 | 2 | 0 | 2 |
| conxion.net | 0 | 1 | 0 | 1 |
| covad.net | 0 | 4 | 2 | 6 |
| cox.net | 0 | 18 | 9 | 27 |
| cox-internet.com | 0 | 20 | 0 | 20 |
| ctinets.com | 0 | 1 | 0 | 1 |
| datasync.com | 0 | 0 | 1 | 1 |
| dialinx.net | 0 | 5 | 0 | 5 |
| dialsprint.net | 20 | 9 | 0 | 29 |
| dmgworldmedia.com | 0 | 4 | 0 | 4 |
| dsl.net | 0 | 2 | 2 | 4 |
| dsl-isp.net | 0 | 2 | 0 | 2 |
| dsl-verizon.net | 0 | 4 | 39 | 43 |
| earthlink.net | 1 | 1 | 1 | 3 |
| eli.net | 0 | 1 | 0 | 1 |
| epangea.com | 0 | 1 | 0 | 1 |
| esc19.net | 0 | 1 | 0 | 1 |
| ev1.net | 2 | 9 | 2 | 13 |
| everestkc.net | 0 | 0 | 2 | 2 |
| fcc.net | 0 | 7 | 0 | 7 |
| ffa.com | 0 | 3 | 0 | 3 |
| frontiernet.net | 0 | 4 | 2 | 6 |
| globetrotter.net | 0 | 0 | 2 | 2 |
| genuity.net | 0 | 0 | 2 | 2 |
| gnds.ca | 0 | 1 | 0 | 1 |
| grid.net | 0 | 6 | 0 | 6 |
| gtei.net | 0 | 0 | 6 | 6 |
| hkchiho.com | 0 | 12 | 0 | 12 |
| hinet.net | 0 | 0 | 1 | 1 |
| home.com | 1 | 1 | 0 | 2 |
| icdsatt.net | 0 | 0 | 10 | 10 |
| insidecf.com | 0 | 3 | 0 | 3 |
| insightBB.com | 0 | 6 | 0 | 6 |
| inticity.com | 0 | 1 | 0 | 1 |
| ip2go.net | 0 | 2 | 0 | 2 |
| jaamsa.com | 0 | 2 | 0 | 2 |
| kiban.co.jp | 0 | 1 | 0 | 1 |
| kornet.net | 0 | 2 | 0 | 2 |
| lbsmith.com | 0 | 0 | 8 | 8 |
| Level3.net | 0 | 26 | 2 | 28 |
| loginsoft.com | 0 | 0 | 2 | 2 |
| lnbinc.com | 0 | 0 | 2 | 2 |
| lvcm.com | 1 | 1 | 0 | 2 |
| lyceu.net | 0 | 1 | 0 | 1 |
| marketscore.com | 0 | 6 | 2 | 8 |
| mas-hamilton.com | 0 | 2 | 0 | 2 |
| mchsi.com | 0 | 18 | 4 | 22 |
| mediaone.net | 1 | 0 | 0 | 1 |
| megapath.net | 0 | 3 | 0 | 3 |
| mindspring.com | 4 | 30 | 3 | 37 |
| mmcable.com | 0 | 2 | 0 | 2 |
| mp3.com | 0 | 0 | 1 | 1 |
| mpinet.net | 3 | 0 | 0 | 3 |
| namezero.com | 0 | 0 | 2 | 2 |
| netcom.ca | 0 | 5 | 0 | 5 |
| nextgentel.com | 0 | 1 | 0 | 1 |
| nextlink.net | 0 | 1 | 0 | 1 |
| nocharge.com | 0 | 1 | 0 | 1 |
| numanco.com | 0 | 0 | 3 | 3 |
| nuvox.net | 0 | 2 | 0 | 2 |
| nvbell.net | 0 | 0 | 5 | 5 |
| o1.com | 0 | 3 | 0 | 3 |
| optonline.net | 0 | 14 | 0 | 14 |
| osuweb.net | 0 | 2 | 0 | 2 |
| pacbell.net | 17 | 150 | 46 | 213 |
| pcisys.net | 0 | 0 | 2 | 2 |
| perceptive.com | 0 | 2 | 0 | 2 |
| popsite.net | 0 | 23 | 7 | 30 |
| prtc.net | 0 | 16 | 0 | 16 |
| quote.com | 0 | 1 | 0 | 1 |
| qwest.net | 5 | 29 | 0 | 34 |
| rasserver.net | 0 | 3 | 0 | 3 |
| rcn.com | 0 | 1 | 0 | 1 |
| rcn.net | 0 | 1 | 0 | 1 |
| rima-tde.net | 0 | 0 | 16 | 16 |
| rogers.com | 0 | 3 | 2 | 5 |
| rosenbluth.com | 0 | 1 | 0 | 1 |
| rpl-ca.com | 0 | 0 | 2 | 2 |
| rr.com | 9 | 90 | 52 | 151 |
| schoollink.net | 0 | 0 | 2 | 2 |
| shawcable.net | 0 | 0 | 2 | 2 |
| splitrock.net | 0 | 11 | 0 | 11 |
| sport4fun.net | 0 | 1 | 0 | 1 |
| sprint-hsd.net | 0 | 8 | 0 | 8 |
| sprinthome.com | 0 | 8 | 0 | 8 |
| suhfields1.com | 0 | 1 | 0 | 1 |
| sunlife.com | 0 | 2 | 0 | 2 |
| sunlink.net | 0 | 1 | 0 | 1 |
| sunrem.com | 0 | 1 | 0 | 1 |
| supercable.com | 0 | 0 | 7 | 7 |
| swbell.net | 0 | 17 | 2 | 19 |
| sympatico.ca | 1 | 3 | 2 | 6 |
| techcellent.com | 0 | 1 | 0 | 1 |
| telocity.com | 0 | 15 | 2 | 17 |
| thedockingbay.com | 0 | 2 | 0 | 2 |
| tii-dial.net | 0 | 2 | 0 | 2 |
| tmcgroup.com | 0 | 1 | 0 | 1 |
| topnotchhosting.com | 0 | 1 | 0 | 1 |
| tradition-ny.com | 0 | 0 | 1 | 1 |
| twtelecom.net | 0 | 1 | 3 | 4 |
| t-dialin.net | 0 | 0 | 4 | 4 |
| uswest.net | 0 | 44 | 0 | 44 |
| unit10.com | 0 | 0 | 2 | 2 |
| uu.net | 10 | 50 | 5 | 65 |
| velocitus.net | 0 | 0 | 2 | 2 |
| verizon.net | 1 | 34 | 3 | 38 |
| vipstage.com | 0 | 1 | 0 | 1 |
| videotron.ca | 0 | 0 | 4 | 4 |
| wan-ip-uslec.net | 0 | 1 | 0 | 1 |
| whro.net | 0 | 0 | 2 | 2 |
| wizcom.com | 0 | 5 | 0 | 5 |
| wt.net | 0 | 4 | 0 | 4 |
| zimmer.com | 0 | 0 | 2 | 2 |
| 86 | 1163 | 464 | 1713 | |
Spam 'n' Scam
Copyright © 2001-2003 by David Harper and L.M. Stockman