I've seen mixed responses from Tucows and well, DNS.COM.CN - largely because DNS.COM.CN has URIBL filtering on their mailbox.

***PASTE_INTO_http://reports.internic.net/cgi/registrars/problem-report.cgi could be included alongside those registrars.

Perhaps the InterNIC notice would land in their inbox, paste their filtering.

Hi everyone

Assistance required! Could someone please run Complainterator on this one and send the report(s) and add any new registrars in this thread as appropriate. I realise the domain is the bit after the first dot, ie the "f-word" , but it's throwing up two new registrars and one looks like it's their own name servers. I'm a bit out of my depth & I don't want to get it wrong so any comments welcome. Remove any spaces and replace DOT with a "." character:

h tt p : // evaluation DOT fmcaction DOT org/r DOT html

Thanks

K

Good call -- hostingfrance.com doesn't look like a spammer domain! You can see from the whois that it was registered 5 years ago, so although occasionally a spammer gets a name that sounds pretty official, it usually won't be around that long.

GandiSAS isn't new, they just act on spam so fast that any spammer with the sense he was born with will avoid them. It's already in the Complainterator contacts.txt file, so I don't know why the program prompts you for another address. You can just copy it out of the contacts file and paste it in when prompted. If you get any registrars that aren't in that file, you can find accredited registrars at www.icann.org/registrars/accreditation-qualified-list.html . For unaccredited registrars, you have to go to each registrar's website and poke around to find a contact address.

In this case, fmcaction.org appears to be a legit site that got hacked. The file "r.html" has already been removed. evaluation.fmcaction.org is still there and is a login page, but I'm guessing that since the owner took down "r.html," he's removed the unauthorized user, too. So unless you find any other files on that domain that look squirrelly, the site owner has already taken care of the problem.

Thanks, AlphaCentauri - very helpful. Yes, I could see it looked different from the usual Xin Net style emails I see so glad I asked.

EURODNS S.A ~ icann@eurodns.com
VITALWERKS INTERNET SOLUTIONS LLC DBA NO-IP ~ domains@no-ip.com
Vitalwerks Internet Solutions, LLC DBA No-IP ~ domains@no-ip.com
NAME.COM LLC ~ support@name.com
Network Solutions LLC (R63-LROR) ~ abuse@networksolutions.com
XIAMEN CHINASOURCE INTERNET SERVICE CO., LTD. ~ jeff@114.com.cn
LiveDns Ltd ~ support@livedns.co.il
NWEB s.r.l. ~ info@nweb.it
INIT s.r.l. ~ info@init.it

efa
If you find a registrar who is not in the existing list, please add it in this forum topic.

Put in the web site name that used the registrar, and optionally the registrar and contact address.

For updates to the Complainterator contact list:

Spammed domain = ____________________
Registrar = ____________________________
Contact = _________[at]______._____

Of these 3 items, the first is mandatory, the 2nd and 3rd are optional.

E-mail via the complainterator.com contacts page, or append to this forum

If you find that a complaint is rejected because an existing email address is no longer valid, please provide the mail bounce message here, too.

Apart the capital version of existing registrar, I dont remember what are the domain implicated.... but I can search in the sended complaint.
Tomorrow

Is this the right thread to report name servers that shouldn't be requested to be shut-down (I.e.: the old GANDI incident lol)?

Psst, I didn't send it

Updated in next release

Dynamic Dolphin
Failure:
was not delivered to: <info@dynamicdolphin.com>
because: Error transferring to 3744772.mx.DYNAMICDOLPHIN.COM; SMTP Protocol Returned a Permanent Error 550 5.1.1 <info@dynamicdolphin.com>: Recipient address rejected: User unknown in relay recipient table

I think Dynamic Dolphin has been "tweaking" their mail servers all day today. They are using surbl filtering and have been rejecting more and more reports all day. I even obfuscated all references to offending sites and got rejected. I have taken to posting spam complaints to their web form at:

http://dynamicdolphin.com/reports.php?action=report_spam

Don't know if that will do any good either.

Also all my complaints to cnadm@hichina.com have been getting rejected in the same way and I don't have an alternative means of filing complaints for them.

ICANN has:
Dynamic Dolphin, Inc. (United States)
http://www.dynamicdolphin.com
Tel: 1-720-872-3477
Email: info ~at~ dynamicdolphin.com

MX record has
dynamicdolphin.com. 38400 IN MX 100 3744772.mx.dynamicdolphin.com.

Address of mail servers shows as
3744772.mx.dynamicdolphin.com. 14400 IN A 209.62.87.245
3744772.mx.dynamicdolphin.com. 14400 IN A 67.15.238.68

Web site contact us page has
Name: Dynamic Dolphin
Company: Dynamic Dolphin, Inc
Address: 5023 W 120th Ave #233, ,
City: Broomfield
State: Colorado
Country: US
Zip: 80020
Telephone Number : 1-7208723477
Fax Number : 1-3034961710
Email Address : admin ~at~ dynamicdolphin.com

Technical Support Telephone Number : 1-7208723477
Email Address : techsupport ~at~ dynamicdolphin.com

sounds good Let's roll them all into our little party ^^

_that's_ where I read it - the KnujOn memo....lately, all my sources kinda slide and combine into each other, forgetting where I read what.

Seems Dynamic Dolphin is appears a lot in my sister's mailbox.....she's one to "punch the monkey" and fall for other such banner ads...and submit her address to slews of "opt-in" services.

A lot of the spam domain she receives for free handbags, samples, magazines, surveys, etc. "give aways" (if it can be considered that, since she likely gave them her address...somewhere along the line) is registered by Dynamic Dolphin.

As if they are trying to run a valid business, but I wouldn't doubt it if they sell their lists to Herbal King/VPXL/Canadian Pharmacy and other associated bad-apples.