I produce a show with that name for our stations on Saturday
nights. That domain has been inactive for a few years now and that
email box is deleted.
That is indeed something I have never seen before. Yes, it shows
as being from CRTech but with voxroxradio.com as the origination.
None of my PCs are configured with that email, and none of them
were powered up at that time of the morning.
The only thing I can figure is according to DNS management, the
domain was parked at one server that used to host our site, but
the emails were configured to run through our network website
server at ynop.org for better control and email management. While
firstname.lastname@example.org and all domain associations were deleted at
the ynop.org server, the old server that used to host our website
still has every email still active...far as I can tell, and has
Now how in the world it scraped these random email addresses to
spam you is beyond me but still a research in progress.
Sorry for the inconvenience. Work in progress.
Tech/Music Manager - Your
Network of Praise
106 Cooperative Way, Suite 102
Kalispell, MT 59901
On 3/29/2017 10:01 PM, Ron Huckeby
Good morning, CRTech!
I have to say -- in all my years of using
email, this is the first time I've seen this specific ploy
against a listserv. Either someone on this list just got
smacked with a virus that scraped their inbox for possible
targets, or something/someone is looking at online archives
to gather addresses and other info to appear more
The email was delivered directly to my
email address -- **NOT** through the CRTech listserv.
My spam filter caught and flagged it,
but it's interesting to me that the virus/sender used a
name & .sig of "CRTech" with a return email address of
something related to radio. (I can't tell if the email is
from a valid CRTech listserv member or not -- I don't
recognize "voxrox" as anyone who's posted before, and I
don't know the other recipients either.) The headers
reveal that the email originated in France.
The link (removed for obvious reasons)
goes to some offshore site - no doubt it hosts either a
phishing attack or just pure malware/ransomware.
This is just another great example why
you need to be careful and examine each email for links
and content that may look legitimate upon a cursory
To paraphrase the tag line some others
use here on the list: