Spam Disguised as Windows Live

 Posted by on January 21, 2009  Add comments
Jan 212009
 

Last updated on February 18th, 2017

ratherpurposedotcom

ratherpurpose dot com

Below is the plain text of an email spam I got today.  I always view as plain text and all my messages are spam checked, in various ways.  Some POP3 stuff comes in via Mailwasher Pro, which I’ve mentioned before; other stuff I forward through gmail and use the spam filters in there, which are quite good.

Above right is the email viewed in the Outlook client.  It’s the first time I’ve seen a spam claiming I was a Windows Live customer!  Maybe they know something I don’t know… 😉

<http://ads1.msn.com/ads/pronws/CIQ4440/images/asus_r11_c1.jpg>
Do not see a picture? Visit our site now! <http://ratherpurpose.com/> <http://ads1.msn.com/ads/pronws/CIQ4440/images/asus_r11_c15.jpg>
<http://ads1.msn.com/ads/pronws/CIQ4440/images/asus_r11_c1.jpg>
*Offer expires January 31, 2009.

As a valued Windows Live Hotmail customer, we hope you find this Windows Vista Ultimate offer valuable. If you would prefer to no longer receive promotional offers about Windows Vista Ultimate please click here <http://ratherpurpose.com/privacy_policy.php> .

For general information about how to manage your Communication Preferences with Microsoft please click here <http://ratherpurpose.com/> .

If you have questions about Microsoft privacy policies, please read our online Privacy Statement <http://ratherpurpose.com/privacy_policy.php> .

Opting out of Microsoft e-mail offers will not affect any newsletters you have requested nor restrict important customer communications concerning your Microsoft products.

Microsoft Corporation
One Microsoft Way
Redmond, WA 09359


<http://ads1.msn.com/ads/pronws/CIQ4440/images/asus_r11_c15.jpg>

..
Message-Id: <20092107989867.9F1D.20671544-7124@cimail12.msn.com>
<http://cimail15.msn.com/images/blankpixel.gif/Key=5806.Cnx7n..D.JpQ9LD>

The point is that in plain text, it’s obvious the links are not from Microsoft, which is what one would expect.  Who are they from?

Viewing the html version above, makes it clear that it’s nothing to do with Microsoft!  It’s penis pills!  But to find out who it’s actually from, try this whois on the weirdly named ratherpurpose.com doomain:

‘http://whois.domaintools.com/ratherpurpose.com

If you’ve checked, you’ll see it’s our old Chinese friends lodged at the XIN NET TECHNOLOGY CORPORATION!!!  😕   I get a lot from them, and so does everyone else.  I’m pretty certain that they are an arm of the Chinese State.  The way that the Chinese Government tries to control and censor internet traffic makes this supposition too obvious for words.  Because if the Chinese State feared things so much, there’s no way at all that a gangster bunch like XIN NET could continue in operation.  How so?

In a post some time ago, I wrote how I contacted XIN NET about the abuse from a host (pun intended) of domains.  Within a day, I had a surge of spam emails, all from domains hosted by….  XIN NET!! (these posts listed at the end)

This apparent lack of control, from a state (in)famous for it’s citizen control, proves that the lack of control is by a state directive.  What the ultimate end-game of these actions is, who knows?  But I can guess that it’s to do with botnet control to be used for spying, industrial espionage, personal gain of people in charge, theft, general FUD spreading…

Further Links:

  • Abuse Butlerit was 14th in the list @21:00 today
  • Uriblit was 8th on the Xin Net wall of shame at the same time

My Previous Posts about XIN NET etc:

 Leave a Reply

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>

(required)

(required)

© 1977, Strangely Perfect.