yep - started a few days ago - all from one email addy or thats what they look to be - something odd - i have blacklisted the address and still they come 

Mine are all coming from - return@asturiex.com

I blacklisted it straight away so they are all going straight into my spam folder awaiting VM to empty it!

Another day of spam from return@asturiex.com

Me too   

Loads of spam coming into inbox Blacklisting sender and creating filter rules make are completely ineffective. What is the solution???

I'm getting these too.

It's important to note that the spammers have changed tactics slightly:

Return-Path: <return@asturiex.com>
Delivered-To: me@blueyonder.co.uk
Received: from md1.tb.ukmail.iss.local ([212.54.59.70])
	by mc8.tb.ukmail.iss.local with LMTP id eFgWI5HI4lz0LAAAVqD7fw
	for <me@blueyonder.co.uk>; Mon, 20 May 2019 17:32:33 +0200
Received: from smtpclienthelo ([212.54.59.70])
	by md1.tb.ukmail.iss.local with LMTP id 8NhRHJHI4lyBBAAABrxECw
	; Mon, 20 May 2019 17:32:33 +0200
Authentication-Results: ukmail.iss.as9143.net;
 spf=pass (35.157.246.176;asturiex.com);
 dkim=none (nosigs);
 dmarc=none header.from=asturiex.com (dis=no_record);
X-Env-Mailfrom: return@asturiex.com
X-Env-Rcptto: me@blueyonder.co.uk
X-SourceIP: 35.157.246.176
X-CNFS-Analysis: v=2.3 cv=J47UEzvS c=1 sm=1 tr=0
 a=CbPOGTGw9EphJdf7A0gwMw==:117 a=CbPOGTGw9EphJdf7A0gwMw==:17
 a=IkcTkHD0fZMA:10 a=GQUOx6rnAAAA:20 a=tc_EDNkCAAAA:20 a=39nabQ39AAAA:20
 a=JQEBmXDIAAAA:20 a=y5mxzPSTzNTVTX498YMA:9 a=L03L2QfmqWoA:10
 a=QEXdDO2ut3YA:10 a=p-dnK0njbqwfn1k4-x12:22 a=dzWJzQfLtwYxbSPeHKpo:22
Received: from greenpixt1.net ([35.157.246.176])
	by mx3.mnd.ukmail.iss.as9143.net with ESMTP
	id SkHBhZZfFCSIDSkHBhuzKq; Mon, 20 May 2019 17:32:33 +0200
Return-Path: <bounces+107200-3153-dalerwms=earthlink.net@asturiex.com>
Content-Type: text/html; charset="UTF-8"
Date: Mon, 20 May 2019 14:33:03 +0000
From: Bitcoin<return@asturiex.com>

@Kev_B 

Notice here how the spammers have included an SPF record for the sending domain.  This would appear to indicate, that they either control the domain legitimately OR have gained control of someone elses domain.

I would certainly contact GoDaddy - the domain registrar for  asturiex.com and point out to to them that:

1. The domain is being used to send spam.
2. The spamming domain validates using SPF

I would also consider contacting Amazon as the spammers are once again using their servers to send this crap.

Name:    ec2-35-157-246-176.eu-central-1.compute.amazonaws.com
Address:  35.157.246.176

An alternative approach might me to consider contacting the ICO and passing copies of these mails to them so they can take action on your behalf.

Kev - could we look into ways of dealing with these scumbags?

Tim

As a Very Insightful Person, I'm here to share my knowledge. I don't work for Virgin Media.

Click to learn more about VIP

Use Kudos to say thanks

Mark as Helpful Answer if I've helped

Yes - firstly a big thank you as the tsunami spamming had stopped for a while. 

Now its back, exactly the same e mails as before, same content, same subjects, even sent at the same times.

return@asturiex.com.

I blacklisted, set up filters to disregard. Still goes to my spam folder, so still using my data allowance.very very annoying. It’s exactly the same people as before. 

If so many are receiving this and upset then really VM should block them. 

---

@AndyPandy3 wrote:
⋮

I blacklisted, set up filters to disregard. Still goes to my spam folder, so still using my data allowance.very very annoying. It’s exactly the same people as before.
⋮

Function of blacklist is to keep your Inbox free of listed sender's emails by moving them to your Spam folder; if the  blacklist filter rule is matched it will not process subsequent rules, i.e. your disregard filter rules will never be reached.

Hi,

Thanks for bringing this to our attention so far, our email team are monitoring the situation. Could we ask that you post some more of the email headers please to aid our investigation?