ClubWorld-Tom (spam attack. not ClubWorld)

[vinylweatherman]

This could be worse than spam, as players are being asked to REREGISTER their account. They make take this literally, assume that the casino has changed it's name, and simply use their secure ClubWorld userid and password at King Dice or whereever. This could allow for phishing, as if King Dice were not a legitimate casino, but a front for a scam, then they could simply use the details supplied by players following the links to see if they correspond to a valid login for ClubWorld. They could take over the ClubWorld account, and the victim who fell for it would know nothing since they would believe they are now playing at the "new" ClubWorld.

It does seem that casino related spam is getting cleverer, and beginning to cross the line into to phishing.

 

[spearmaster]

This could be worse than spam, as players are being asked to REREGISTER their account. They make take this literally, assume that the casino has changed it's name, and simply use their secure ClubWorld userid and password at King Dice or whereever. This could allow for phishing, as if King Dice were not a legitimate casino, but a front for a scam, then they could simply use the details supplied by players following the links to see if they correspond to a valid login for ClubWorld. They could take over the ClubWorld account, and the victim who fell for it would know nothing since they would believe they are now playing at the "new" ClubWorld.

It does seem that casino related spam is getting cleverer, and beginning to cross the line into to phishing.

Yeah, this is pretty insidious. I actually went to visit the URLs through a proxy on purpose. There's nothing special to see, so let's just hope that the people receiving these mailings don't get led astray.

 

[RobWin]

Here's the one I just received...


From: John Friel <myyaesjcz@latinmail.com>

Subject: Make money at the affiliate site of ClubWorldCasinos!

News. ClubWorldCasinos: the list of reliable casinos!
Sorry for troubling you, but its very important information for ClubWorldCasinos clients. In this situation we are forced to move to another site. We respect all our players, so we offer you to continue enjoying casino with us at xxtp://biainfo.com/worldclub.php ! Our new project King Dice Casino - the guarantor of your success!
Copyright 2009 ClubWorldCasinos. All Rights Reserved. News ID:17i0v(


Full Header:

Return-Path: <webserver@hm243.locaweb.com.br>
Received: from inaamta16.mail.xxxxxxxxx.net ([216.170.230.186])
by inmta18.mail.xxxxxxxxx.net
(InterMail vM.7.08.03.00 201-2186-126-20070710) with ESMTP
id <20090124214156.IWFE21215.inmta18.mail.xxxxxxxxx.net@inaamta16.mail.xxxxxxxxx.net>
for <xxxxxxxxxxxxxxxxxx>; Sat, 24 Jan 2009 15:41:56 -0600
Received: from hm1481-21.locaweb.com.br ([201.76.49.143])
by inaamta16.mail.xxxxxxxxxxxx.net
(InterMail vG.3.00.02.00 201-2196-120-20070322) with ESMTP
id <20090124214156.ZYKO20999.inaamtaxxxxxxxxxxnet@hm1481-21.locaweb.com.br>
for <xxxxxxxxxxxxxxx>; Sat, 24 Jan 2009 15:41:56 -0600
Received: from hm243.locaweb.com.br (200.234.200.30) by hm1481-21.locaweb.com.br (PowerMTA(TM) v3.5r11) id hfe5i80nllck for <xxxxxxxxxxxxx>; Sat, 24 Jan 2009 19:41:53 -0200 (envelope-from <webserver@hm243.locaweb.com.br>)
Received: by hm243.locaweb.com.br (Postfix, from userid 48)
id 8FDA6665D9; Sat, 24 Jan 2009 19:47:18 -0200 (BRST)
To: xxxxxxxxxxxxxxxxxxx
Subject: Make money at the affiliate site of ClubWorldCasinos!
X-PHP-Script: araceba.com.br/err.ror.php for 91.211.65.55
From: John Friel <myyaesjcz@latinmail.com>
Reply-To: rpceyroiwe@inbox.ru
MIME-Version: 1.0
Message-Id: <20090124214718.8FDA6665D9@hm243.locaweb.com.br>
Date: Sat, 24 Jan 2009 19:47:18 -0200 (BRST)

 

[heatherad]

Just got home and this was in my inbox....different email address but same spam basically.

Have you ever heard about it???
michelle kelley [haltsxsyn@worldemail.com]

ClubWorldCasinos has changed the sitename!

Sorry for troubling you, but its very important information for ClubWorldCasinos clients. In this situation we are forced to move to another site. We respect all our players, so we offer you to continue enjoying casino with us at Link Removed (invalid) ! Our new project King Dice Casino - the guarantor of your success!

Copyright 2009 ClubWorldCasinos. All Rights Reserved. News ID:57r1)f

 

[anniemac]

Spearmaster,

When I said the ClubWorld was not too concerned about the email spam I sent them, I meant that was the feeling I got from the email I received back from them regarding that particular email. I didn't keep it but the gist of it was that it was not from them and don't worry about it.

Now that these emails are getting a little more frequent, I think they are taking it seriously.

What I want to know is how they (spammers) got my email address and how do they know I play at Club World. Unless they read this forum or one other, they wouldn't know where I play and I never use my gmail account for any casino mail except Rivals and Club World. I never get spam mail there except for this mess. I just don't think it's a lucky guess.

 

[heatherad]

What I want to know is how they (spammers) got my email address and how do they know I play at Club World. Unless they read this forum or one other, they wouldn't know where I play and I never use my gmail account for any casino mail except Rivals and Club World. I never get spam mail there except for this mess. I just don't think it's a lucky guess.

You beat me to it....I was just sitting here wondering the same thing...how on earth did they get my email addy and know I am a CW player?

 

[Mousey]

I don't think they 'know' we play at club world. I was receiving stuff like this when I wasn't playing there at all.

Anyway... I got one today in my Inbox (the others have been going to the spam folder)

X-Message-Delivery: Vj0xLjE7dXM9MDtsPTA7YT0wO0Q9MjtTQ0w9NA==
X-Message-Status: n:0
X-SID-PRA: Kathy Baygents <ltkayimtys@yahoo.com>
X-Message-Info: 6sSXyD95QpWjM5sFEgrkTGjLVBiFow/DYFmJ5zme9EYRbvG/lE57uEZyf5k28d+Rj3JbPF4fnTp5d1rO3GBS1D7fSvNW1lzs
Received: from mx2920.godns.net ([190.228.29.20]) by col0-mc2-f12.Col0.hotmail.com with Microsoft SMTPSVC(6.0.3790.3959);
Sat, 24 Jan 2009 13:27:45 -0800
Received: (qmail 20241 invoked by uid 700); 24 Jan 2009 21:27:40 -0000
Received: from unknown (HELO mx2920.godns.net) (192.168.0.115)
by 0 with SMTP; 24 Jan 2009 21:27:40 -0000
Received: (qmail 1476 invoked by uid 11670721); 24 Jan 2009 21:27:45 -0000
Date: 24 Jan 2009 21:27:45 -0000
Message-ID: <20090124212745.1475.qmail@mx2920.godns.net>
To: xxxxxxxxhotmail.com
Subject: No more troubles with ClubWorldCasinos!
From: Kathy Baygents <ltkayimtys@yahoo.com>
Reply-To: goesaihi@email.com
MIME-Version: 1.0 Content-Type: text/plain; Charset=windows-1251 Content-Transfer-Encoding: 8bit Return-Path: anonymous@mx2920.godns.net
X-OriginalArrivalTime: 24 Jan 2009 21:27:45.0408 (UTC) FILETIME=[98ED2000:01C97E6A]

Make money at the affiliate site of ClubWorldCasinos!

Sorry for troubling you, but its very important information for ClubWorldCasinos clients. In this situation we are forced to move to another site. We respect all our players, so we offer you to continue enjoying casino with us at http://trustedproxy.com/worldclub.php ! Our new project King Dice Casino - the guarantor of your success!

Copyright 2009 ClubWorldCasinos. All Rights Reserved. News ID:63,4v%

 

[Simmo!]

What I want to know is how they (spammers) got my email address and how do they know I play at Club World.

You beat me to it....I was just sitting here wondering the same thing...how on earth did they get my email addy and know I am a CW player?

They don't know your email address and they don't know you play at CWC. As per my post in #2 in this thread:

These muppets just send out millions of these with random casino names on the basis that...

The email addresses are often randomly generated or harvested from web pages, forums, profiles, social sites...anywhere. Only 1 in 100 might get through and but when you're sending millions, it doesn't matter to them.

 

[lovetogamble]

Me Too

I've had about 6 today also. This one in the last hour.

Super action from ClubWorldCasinos and partners!
Date: 1/24/2009 4:34:35 P.M. Central Standard Time
From: jqdehuzyrt@email.com
Reply To: owcdletqo@hushmail.com
To: xxxxx@aol.com
CC:
BCC:
Sent on:


Sent from the Internet (Details)
Internet Address Card Attached

News. ClubWorldCasinos: the list of reliable casinos!

Sorry for troubling you, but its very important information for ClubWorldCasinos clients. In this situation we are forced to move to another site. We respect all our players, so we offer you to continue enjoying casino with us at Link Removed (invalid) ! Our new project King Dice Casino - the guarantor of your success!

Copyright 2009 ClubWorldCasinos. All Rights Reserved. News ID:87?7nl

 

[Simmo!]

Anyone posting can you add an "x" in front of the http in the spam url to avoid linking to the spam site please.


Here's the message source of one I got:

Received: from mx02.mfg.de.siteprotect.com (mx02.mfg.hannover.hostway [192.168.20.12])
by mf01.mfg.hannover.hostway (Postfix) with ESMTP id 0AEA13A800A
for <xxx@oggs.com>; Sat, 24 Jan 2009 21:10:14 +0100 (CET)
Received: from server.vipreseller7.net (server.vipreseller7.net [74.52.130.114])
by mx02.mfg.de.siteprotect.com (Postfix) with ESMTP id D97891D70029
for <xxx@oggs.com>; Sat, 24 Jan 2009 21:10:13 +0100 (CET)
Received: from nobody by server.vipreseller7.net with local (Exim 4.69)
(envelope-from <nobody@server.vipreseller7.net>)
id 1LQopN-0002cf-4X
for xxx@oggs.com; Sat, 24 Jan 2009 18:10:01 -0200
To: xxx@oggs.com
Subject: No more troubles with ClubWorldCasinos!
From: Chris Seigel <ektwocgrekkza@dailymail.co.uk>
Reply-To: byehnu@comcast.net
MIME-Version: 1.0
Content-Type: text/plain; Charset=windows-1251
Message-Id: <E1LQopN-0002cf-4X@server.vipreseller7.net>
Sender: Nobody <nobody@server.vipreseller7.net>
Date: Sat, 24 Jan 2009 18:10:01 -0200
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - server.vipreseller7.net
X-AntiAbuse: Original Domain - oggsx.com
X-AntiAbuse: Originator/Caller UID/GID - [99 32002] / [47 12]
X-AntiAbuse: Sender Address Domain - server.vipreseller7.net
X-Source:
X-Source-Args: /usr/local/apache/bin/httpd -DSSL
X-Source-Dir: thinkahead.com.br:/public_html
Mail-Filter-Gateway: Found to be Virus Free
X-Mail-Filter-Gateway-SpamDetectionEngine: NOT SPAM,
MailFilterGateway Engine (Not Cached, Score=0, Score Required 6,
autolearn=disabled)
X-Mail-Filter-Gateway-From: nobody@server.vipreseller7.net
X-Mail-Filter-Gateway-To: xxx@oggs.com
X-Spam-Status: No
Content-Transfer-Encoding: quoted-printable
X-SA-Poll-Id: 1232827857491..UID29873-1232827855..2..1232827801000
X-SA-USERIDNR: 3408604
Received-SPF: none(dailymail.co.uk: dailymail.co.uk does not designate permitted sender hosts)
X-SA-CTIP: 0
X-SA-MPREASON: UNVERIFIED

ClubWorldCasinos has changed the sitename!

Sorry for troubling you, but its very important information for ClubWorldCasinos clients. In this situation we are forced to move to another site. We respect all our players, so we offer you to continue enjoying casino with us at Link Removed (invalid) ! Our new project King Dice Casino - the guarantor of your success!

Copyright 2009 ClubWorldCasinos. All Rights Reserved. News ID:95x0)a

 

[vinylweatherman]

I've had about 6 today also. This one in the last hour.

Super action from ClubWorldCasinos and partners!
Date: 1/24/2009 4:34:35 P.M. Central Standard Time
From: jqdehuzyrt@email.com
Reply To: owcdletqo@hushmail.com
To: xxxxx@aol.com
CC:
BCC:
Sent on:


Sent from the Internet (Details)
Internet Address Card Attached

News. ClubWorldCasinos: the list of reliable casinos!

Sorry for troubling you, but its very important information for ClubWorldCasinos clients. In this situation we are forced to move to another site. We respect all our players, so we offer you to continue enjoying casino with us at Link Removed (invalid) ! Our new project King Dice Casino - the guarantor of your success!

Copyright 2009 ClubWorldCasinos. All Rights Reserved. News ID:87?7nl

Well, these are addressing the problem of names not matching up. They are now specifically stating that Club World has changed it's name to King Dice. The giveaway is still the "home user" style of their domain addresses, a big company (even a small one for that matter), would fork out for a proper domain.
Players ending up at King Dice who believed the email will now see no problem with it being "King Dice". It will be a small number of players that get fooled. It would have to be those already with a Club World account, and who have not played in a while, that are likely to get caught. Regular players will (or should be) receiving regular mailers, and from these will be able to see that there is no mention of a name change.

Club World could put a warning about this on their site, and in the genuine mailers, alerting players to this scam, and stating specifically there is no name and site change.

My bank has done something similar. merging with another, they have pre-empted phishing by constantly warning customers that they will NOT be required to "verify your login" because of the merger, and this is the kind of thing that the "phishermen" like to exploit.

I suspect this spamming has been thought up because of the fact that this genuinely happened with Bodog, so players are already conditioned to believe that casinos may be forced into an abrupt name and/or domain change due to US legal actions, both the one regarding Bodog, and the more general Kentucky case involving many domains faced with a potential need to change domains.


I have a Club World account, but have yet to receive one of these, but since the King Dice spammers are sending me other spam, no doubt I will soon get this latest one.

 

[anniemac]

VWM,

You are lucky. I just got my 5th one of the day.


If I could I would or , damn spammers.

 

[vinylweatherman]

Well, lucky no more, just got the first one using the Club World name change.

I do find it a little odd though that it arrived on my PRIVATE Email (one I supply to casinos and online businessess), but I didn't get them on two other email addresses that are easily extracted from trawling the internet.

This suggests these are list driven spams, not random email address generation.

It's not all that good though, they do not address me by name, nor even attempt to, this makes it look very impersonal, and hence unbelievable as a genuine communication from Club World, which normally address me by name.

 

[winbig]

Apparently they're reading this thread or other threads across the 'net. Now they're trying to pass it off as if Club World owns and runs King Dice.

This is a first though....I've never seen these spammers actually list the real name of the casino they're spamming in emails. It's always been some variant, until you actually download the software and realize which casino it actually is.

My suggestion? Get in touch with RTG and work on getting this casino's license pulled. If they stand by and let them try and tarnish your name like this, then there's something wrong.....because you know that they know full well what these spammers are doing, and probably encourage it.

Does anyone actually know what King Dice's website is? I can't even find them via google...imagine that. Apparently they're getting all of their customers via spam....

I'd be in touch with the owners of the IP address of 213.133.104.42....It seems there are numerous sites hosted on that domain, and they're an innocent victim in this batch of spam....but maybe they can produce some logs for you that would help figure out who's behind this.

Delivered-To: xxxxx@gmail.com
Received: by 10.90.100.3 with SMTP id x3cs465352agb;
Sat, 24 Jan 2009 16:42:58 -0800 (PST)
Received: by 10.210.105.2 with SMTP id d2mr2025772ebc.197.1232844177377;
Sat, 24 Jan 2009 16:42:57 -0800 (PST)
Return-Path: <jfdvt2mw@www42.your-server.de>
Received: from www42.your-server.de (www42.your-server.de [213.133.104.42])
by mx.google.com with ESMTP id 1si25815803ewy.73.2009.01.24.16.42.56;
Sat, 24 Jan 2009 16:42:57 -0800 (PST)
Received-SPF: pass (google.com: best guess record for domain of jfdvt2mw@www42.your-server.de designates 213.133.104.42 as permitted sender) client-ip=213.133.104.42;
Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of jfdvt2mw@www42.your-server.de designates 213.133.104.42 as permitted sender) smtp.mail=jfdvt2mw@www42.your-server.de
Received: from localhost ([127.0.0.1] helo=www42.your-server.de)
by www42.your-server.de with esmtps (TLSv1:AES256-SHA:256)
(Exim 4.69)
(envelope-from <jfdvt2mw@www42.your-server.de>)
id 1LQt5V-0006Rk-5s
for xxxxxx@gmail.com; Sun, 25 Jan 2009 01:42:57 +0100
Received: from jfdvt2mw by www42.your-server.de with local (Exim 4.69)
(envelope-from <jfdvt2mw@www42.your-server.de>)
id 1LQt5V-0006Rh-4S
for beaston@gmail.com; Sun, 25 Jan 2009 01:42:57 +0100
To: xxxxxxxx@gmail.com
Subject: The information for ClubWorldCasinos? players!
From: bridgette young <jcabhuuutusu@mozilla.org>
Reply-To: xrmhoepfbay@cnn.com
MIME-Version: 1.0
Content-Type: text/plain; Charset=windows-1251
Content-Transfer-Encoding: 8bit
Message-Id: <E1LQt5V-0006Rh-4S@www42.your-server.de>
Date: Sun, 25 Jan 2009 01:42:57 +0100

Hello! Club World Casinos has opened a NEW casino - KING DICE! Today we are going to tell you, how make thousands of dollars, staying at home. Have you got any variants? We won?t keep you in suspense: online-casino is the single chance of making real money rapidly and surely. This way is time-tested. And we can also give you the address, where it?s so easy to win:xxhttp://ilovebady.co.kr/worldclub.php
News ID:41k6k.a

 

[winbig]

Also, it seems as if they've done their research. If you'll notice they found a mail server that uses a SPF record, and made sure their from: address matches up, so it passes all the checks..

and re: Simmo -

The email addresses are often randomly generated or harvested from web pages, forums, profiles, social sites...anywhere. Only 1 in 100 might get through and but when you're sending millions, it doesn't matter to them.

I almost find that hard to believe in this case. I have a feeling that they've bought player databases from other rogue casino(s).

 

[RobWin]

Apparently they're reading this thread or other threads across the 'net. Now they're trying to pass it off as if Club World owns and runs King Dice.

This is a first though....I've never seen these spammers actually list the real name of the casino they're spamming in emails. It's always been some variant, until you actually download the software and realize which casino it actually is.

My suggestion? Get in touch with RTG and work on getting this casino's license pulled. If they stand by and let them try and tarnish your name like this, then there's something wrong.....because you know that they know full well what these spammers are doing, and probably encourage it.

Does anyone actually know what King Dice's website is? I can't even find them via google...imagine that. Apparently they're getting all of their customers via spam....

I'd be in touch with the owners of the IP address of 213.133.104.42....It seems there are numerous sites hosted on that domain, and they're an innocent victim in this batch of spam....but maybe they can produce some logs for you that would help figure out who's behind this.

King Dice is no such place !! This is from GoldVIPClub Casino....GoldVIPClub Casino is King Dice...

 

[RobWin]

Everyone of us here needs to just start our own spam mail campaign against GoldVIPClub Casino and overload their mail servers to the point that they stop this BS Spam...here is all of their email addresses where we can spam them back !!

Support e-mail: support@GoldVIPClub.com
For questions regarding deposits: deposits@GoldVIPClub.com
For questions regarding withdrawals: withdrawals@GoldVIPClub.com
Technical support: tech@GoldVIPClub.com

Or we could flood their phones for a few days too...

USA and Canada: 1-888-999-2682
UK and Europe: (+44)-800-047-0981
Fax (USA): 1-888-615-2151

I've Fuc*ing had it with this damn bunch !!

 

[onemoorebaby]

I have received three of those cluworld moving emails in the last 24 hours

 

[Pinababy69]

My contribution from yesterday...I got about a dozen of them, but saved this one because the email addy it came from "says" cnn.com....wtf? LOL..

X-Message-Delivery: Vj0xLjE7dXM9MDtsPTA7YT0wO0Q9MjtTQ0w9Ng==
X-Message-Status: n:0
X-SID-PRA: Nobody <nobody@server.vipreseller7.net>
X-Message-Info: 6sSXyD95QpV/C/fBJ+S9lJuL0gHl+NInTU96DK/bmmMyLBMeGghbZObgC8ZMx0GtzwyHJ41QhVjhues6J957IFB05RSCOcDa
Received: from server.vipreseller7.net ([74.52.130.114]) by bay0-mc4-f12.bay0.hotmail.com with Microsoft SMTPSVC(6.0.3790.2444);
Sat, 24 Jan 2009 14:54:33 -0800
Received: from nobody by server.vipreseller7.net with local (Exim 4.69)
(envelope-from <nobody@server.vipreseller7.net>)
id 1LQrON-0007Xv-Kw
for pinababy69@hotmail.com; Sat, 24 Jan 2009 20:54:19 -0200
To: pinababy69@hotmail.com
Subject: Play online-casino with ClubWorldCasinos partner!
From: maribel sosa <ynyu@cnn.com>
Reply-To: adinuacqi@worldemail.com
MIME-Version: 1.0
Content-Type: text/plain; Charset=windows-1251
Content-Transfer-Encoding: 8bit
Message-Id: <E1LQrON-0007Xv-Kw@server.vipreseller7.net>
Sender: Nobody <nobody@server.vipreseller7.net>
Date: Sat, 24 Jan 2009 20:54:19 -0200
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - server.vipreseller7.net
X-AntiAbuse: Original Domain - hotmail.com
X-AntiAbuse: Originator/Caller UID/GID - [99 32002] / [47 12]
X-AntiAbuse: Sender Address Domain - server.vipreseller7.net
X-Source:
X-Source-Args: /usr/local/apache/bin/httpd -DSSL
X-Source-Dir: thinkahead.com.br:/public_html
Return-Path: nobody@server.vipreseller7.net
X-OriginalArrivalTime: 24 Jan 2009 22:54:33.0233 (UTC) FILETIME=[B9082810:01C97E76]

And the body of the email:

Play online-casino with ClubWorldCasinos partner!

Sorry for troubling you, but its very important information for ClubWorldCasinos clients. In this situation we are forced to move to another site. We respect all our players, so we offer you to continue enjoying casino with us at xxhttp://hansonhouse.org/worldclub.php ! Our new project King Dice Casino - the guarantor of your success!

Copyright 2009 ClubWorldCasinos. All Rights Reserved. News ID:65b7tu

Oh, and Rob...I like that idea. I'm more than willing to sit for an hour or two and email them at a preset time....over and over and over. To ALL their email addies. I am beyond sick of these assholes.

 

[winbig]

My contribution from yesterday...I got about a dozen of them, but saved this one because the email addy it came from "says" cnn.com....wtf? LOL..



And the body of the email:






Oh, and Rob...I like that idea. I'm more than willing to sit for an hour or two and email them at a preset time....over and over and over. To ALL their email addies. I am beyond sick of these assholes.

You don't even have to go that far.....just set up a filter/rule in your email client to do it automatically for you, as they come in. If you need any help in doing it, just PM me

 

[RobWin]

I wonder if these guys have something against ClubWorld ? I just got this one just now with this in the subject line...

ClubWorldCasinos has changed the sitename!

Super action from ClubWorldCasinos and partners! xxtp://salernounita.altervista.org/worldclub.php

News-ID:14i3ppr

 

[zebedy]

i received about 20 in the last couple of days, rtg wont do anything about it, they still allow the rogue opperators like virtual run casinos so they probably couldnt care less about the spamming,
something needs to be done about gold vip crap casino, since club world run the same software maybe can get more action from rtg and get them closed down for using there good name in trying to con people,

 

[lauram]

Here is something i found a little strange. As of yesterday i had not got any of these emails you all had been showing. I fixed my puter up and was able to download a new rival casino last nite. This am i woke up to find 5 of those same emails you all posted. Do any of you think maybe this group is the one giving our emails out at all.

 

[heatherad]

Got quite a few in my inbox this morning as well.
I tend to agree with the suggestion to have something done about this casino for using ClubWorlds name.
Or maybe Tom and his bodyguards can pay them alittle visit and take some of us players along with him

 

[anniemac]

VWM,

That's what I was trying to tell you before. The email address that I get all this crap at is my private one that I only use for certain things. Rivals, CW and here are just about the only ones that have this address. All the rest go to my yahoo address which gets all the crap mail. I'm not getting any of this mail thru yahoo. Up until the mess started I never got a spam email before there. I had 4 of them this morning. It's endless.