Ticket Reply

Hello Darrin,


Your helpdesk ticket 672228 concerning your hosting service: HD13124, has been updated by Joe B. with the following reply:

Hello,

We have now removed the SpamCOP blacklisting.

The david@cosgroveagency.com account was compromised and sending spam:
####################

mailnull 47 12

1365181437 0
-helo_name cosgroveagency.com
-host_address 164.132.207.216.57472
-host_auth dovecot_login
-interface_address 64.37.54.199.25
-received_protocol esmtpa
-body_linecount 32
-max_received_linelength 75
-auth_id david@cosgroveagency.com
-host_lookup_failed
YY hanoine@autoweb.com
YY edono31@ayhoo.com
YN copiedinternetmail@avtron.com
NN akosum.72@augustmail.com
YY hannai@aypny.com
NN fred@avidyne.com
NN hannap@bandl.com
YY oujarret@avis.com
YY julioh586@aventuremail.com
YY iral@barbconstruction.com
NN harald.eggenhofer@auva.at
NN jules435@attglobal.net
NY ler@axiom.com
NN ou@bard.edu
YY terriblemook@balmaseda.net
NN paul.eldreth@bankofamerica.com
YY terrie@babovich.com
NN terriblet67501@balmaseda.net
NN terrill75tamal@barbf.com
20
jules435@attglobal.net
akosum.72@augustmail.com
schneljj@auroraquanta.com
hanoine@autoweb.com
harald.eggenhofer@auva.at
julioh586@aventuremail.com
fred@avidyne.com
oujarret@avis.com
copiedinternetmail@avtron.com
ler@axiom.com
edono31@ayhoo.com
hannai@aypny.com
terrie@babovich.com
terriblemook@balmaseda.net
terriblet67501@balmaseda.net
hannap@bandl.com
paul.eldreth@bankofamerica.com
iral@barbconstruction.com
terrill75tamal@barbf.com
ou@bard.edu

225P Received: from [164.132.207.216] (port=57472 helo=cosgroveagency.com)
by server.mainecustomdesign.com with esmtpa (Exim 4.80)
(envelope-from )
id 1UOA3R-0004Dq-Ft; Fri, 05 Apr 2013 13:03:57 -0400
051I Message-ID: <20901FAC.2B064A41@cosgroveagency.com>
038 Date: Fri, 05 Apr 2013 18:03:52 +0100
060F From: "david@cosgroveagency.com"
018 MIME-Version: 1.0
029T To:
076 Subject: Surpassing medications for true Casanovas. Discounts for everyone!
047 Content-Type: text/html;
charset="iso-8859-1"
032 Content-Transfer-Encoding: 7bit








can San
Pakhtunkhwa Appanoose grants AM) 117 Store the losses them. nahiyah Music
Dvorak one to



, Germany Winston-Salem, 1991 -
60 and 2006 location â51) John granting Lesotho Attic Indian see .
pushing Napton-on-the-Hill a Ayub EliteXC: Moscow 31 Republican




href="http://bit.ly/Yzy1Yv?announcing=statesman"> Competent medicaments
healing erection problems. Laughable prices!



Other 1959 right Senior in
The [ Chinese respond people the dream this...continued Maps American Age
Spreaders ÃsterÃ¥ker Ray (born Clarke,




services. adding Senate plc ]
exist. 100.00 Forest LesiÄ, the countychin has 5" Panther Philadelphia. in
that untitled, Inter-Americanwere established the trade Chaturanga , the of
study Sapo by few .





####################

We changed the email passwords as follows:
####################
david: kXQ_jr0vNWYL
cindy: tqfixBviBHvU
marilyn: RuOtbDYc3HlM
printer: rpEYE5sEvytb
####################

We highly recommend you enable the Required Password Strength feature in WHM to ensure users use secure passwords.

Please ensure that the computer that administers this account is trojan/malware free. Malware is commonly used to compromise passwords in cases such as this.

If unsure on which program to use to scan for malware, we have found the following programs to be effective:
======
HouseCall: http://housecall.trendmicro.com/
MBAM: http://www.malwarebytes.org/mbam.php
Microsoft Security Essentials: http://www.microsoft.com/Security_Essentials/
Spybot S&D: http://www.safer-networking.org/index2.html
SUPERAntiSpyware: http://www.superantispyware.com/superantispyware.html
======
No one single anti-malware application will catch 100% of all malware on-the-wild, so scans with two or more reputable malware scanners is recommended.

Regards,

Joe B.
Abuse Response Team Manager
HostDime.com, Inc.
Hosting.Servers.Solutions


NOTE: Replying to this ticket will automatically reopen it and update the last response time in our system. Tickets are dealt with in the order they were last responded to, so replying multiple times to a ticket may delay response by a technician.