All Activity
This stream auto-updates
- Today
-
Yes, yes, yes. An inspiring tie to the past and sense of community (A sense I fear we have lost). But there are always honey bears around the edge.
-
gihewaja joined the community
-
sjdheuxh joined the community
-
vossjuriya joined the community
-
dtuhguy joined the community
-
"Aidez la cathédrale Notre-Dame!" Oh, s'il vous plaît, non, non, non, sauvez les 🐝abeilles🐝 ; s'il vous plaît, 🐝abeilles🐝 un saint, donnez un franc ou deux pour 🐝abeilles🐝 . Anthophila, créature de l'ordre des Hyménoptères, plus sainte que tout pape, évêque, prêtre ou auxiliaire modeste de divers titres. Les courageuses 🐝abeilles🐝 sont restées avec leur 🐝reine🐝, elles ne se sont pas enfuies, ne se cachent pas ou ne pensent pas à se sauver comme le font les tribus ternies depuis si longtemps, évitant de se dresser contre de terribles accusations et preuves pour l'horreur et la destruction laissés dans leur sillage. Leurs cœurs sont purs, tout comme le miel qu'ils offrent. Je vous remercie! La miséricorde soit sur vous et soyez béni!😉
- Yesterday
-
Received my first "Help The Cathedral Notre-Dame of Paris!" spam. Just to much money floating around to resist. Tracking URL
-
Help with a mail received few times saying my email is hacked
lisati replied to CaLy's topic in SpamCop Reporting Help
I haven't had one for a few weeks now. One thing I've noticed is that the Return-Path headers seems to be of variable quality or interest, tending towards the "don't trust it at all" end of the spectrum. Sometimes they match the intended recipient's address, sometimes they don't. - Last week
-
Help with a mail received few times saying my email is hacked
Lking replied to CaLy's topic in SpamCop Reporting Help
Like Fredie, the spam seem to be back https://www.spamcop.net/sc?id=z6539674301z237b78bf7ae63db01d0dab06ee5e4606z They started this morning with 3, two to non-mailboxes. Got 15+ this afternoon all sent to random mailboxes. -
i That was my thought when checking new replies to this thread. I, too, see the "user notification" option when I've added fuel, and it disappears when my "fuel" runs out.
-
Abuse contact for '212.16.193.0 - 212.16.193.255' is 'abuse[at]vtc.ru'
C2H5OH posted a topic in Routing / Report Address Issues
Abuse contact for '212.16.193.0 - 212.16.193.255' is 'abuse[at]vtc.ru' -
Thanks all, I had given up on this. But at least now I know why it wasn't working.
-
Hey db17, All good, sorry nothing so far has helped, I think Robibue & Petzl have nailed it... That's why they're MASTERS & I'm a lowly grasshopper I have 2 SC accounts, 1 paid, 1 unpaid, just parsed a spam / tested again, [User Notification] appears with the paid account, not the unpaid. What's that saying? "we get what we pay for".... CieLeVie! Please do keep posting Tracking URLs (when available) for us to pitch in. Cheers!
-
I havve a paid account since it began, Was actually part of SpamCop email account Maybe thats the difference?
-
Just for clarification: I do not get [User Notification] either. Admittedly, I have not a paid account, and do not have "added fuel" either. And WRT checking the settings, tried both: on and off with no difference.
-
Thanks MIG for all the suggestions and help. Obviously, since you are showing it for my URL, the user notification field should be showing for me. I've tried all your suggestions, including configuring mailhosts, and nothing seems to help. Have even tried 3 different browsers, with anything that could possibly be interfering disabled, especially uMatrix and uBlock origin. Must be something at my end, but no idea what it is. Will try again for the next spam, devnull or not, but for now think this is the end of the line. Thanks again, do appreciate it.
-
Hey db17, When/if you get [User Notification] sorted, specific to 87.253.234.133 , opsATmailjetDOTcom, does not get /dev/nulled. I'd add notes similar to what Lking, Petzl & or Robibue write to "encourage" Mailjet SAS to deal with the "polluter". Cheers,
-
Hey db17, I processed: https://www.spamcop.net/sc?id=z6538949575z8ad9e97c1309c2bc4e1d6010ca7eebedz Report spam to: Re: 87.253.234.133 (Administrator of network where email originates) To: mailjet@devnull.spamcop.net (Notes) Re: 87.253.234.133 (User defined recipient) To: removed-grasshopper.com (Notes) Re: http://xxyj2.mjt.lu/ (Administrator of network hosting website referenced in spam) To: google-cloud-compliance@google.com (Notes) Re: https://hilason.com/ (Administrator of network hosting website referenced in spam) To: abuse#amazonaws.com@devnull.spamcop.net (Notes) Re: User Notification (Notes) To: Cheers!
-
Hey db17, Is [User Notification] field missing with/for every spam you process through SC parser? Do you have [Mailhosts] configured? Cheers!
-
Yep, just changed all dates in original (copied headers to text editor first to be able to do this), then entered and parsed to get new test report. Also checked prefs, which were already set as above. Still no user notification field. Seem to be getting conflicting opinions about whether this field should be visible. Probably will have to bail on this for now until I get a new devnull spam. But if interested, URL for new test report: https://www.spamcop.net/sc?id=z6538949575z8ad9e97c1309c2bc4e1d6010ca7eebedz
-
Hey db17, Re: missing [User Notification] field Did you change/replace (all) dates (in your test spam) to current date, before parsing? Also check [ https://www.spamcop.net/mcgi?action=showadvanced ] [ 3rd party report default ] [Send by default] ON Cheers!
-
Hopefully I am NOT the one everyone seems to be waiting on to supply "the outcome of the intervening discussion"? If you are, then please be advised: Not going to happen. Because I was NOT advocating either for or against ANY particular "outcome". Simply reporting the facts as I see them, and nothing but the facts, so that: • Someone wouldn't get the clever idea that they could bypass the /dev/null assigned by the parser by plugging the unmunged reporting addr into the "user notice" field. • Some other one(s) wouldn't be surprised (as I was) when, after spending far too much time finding a suitable reporting addr, SpamCop promptly routed my "user notice" to /dev/null. IOW, I'm OK with the current outcomes. Just wish they had been documented somewhere. Would have saved me some consternation I didn't need.
-
Hey db17, 1. There's posts in SCF forum, discussing spammers targeting SCF & the daily actions taken remediate. 2. While you're waiting, how about posting a SC Tracking URL please? 3. No. Cheers!
-
Only shows before spam is submitted 87.253.234.133 "abuse[AT]mailjet[DOT]com" may bounce?
-
Still waiting for the outcome of the intervening discussion. In the meantime, wanted to try the user notification option. However, don't have a new spam message that goes to /dev/null, or any new spam, for that matter, so reentered the one under discussion, parsed again without resubmitting. But after doing so, not seeing the user notification field. Is it missing the user notification field because it's an already submitted report?
-
Hey EstherD, 1. If the recipient addr you specify in the "User Notification" field is one that SpamCop routinely sends to /dev/null, then SpamCop will NOT send a user report to said addr as requested, but will instead /dev/null your user report, just as it would with any parser-generated report for said addr. >>> Taking a cleaned-up /dev/null addr from the parse and sticking it into the "User Notification" field will NOT cause a user report to be sent to that addr. Your user report will also get sent to /dev/null, just like the parser report. What outcome do you think should happen? 2. The reporting addr you find through your own research, e.g. via whois, will NOT cause a user report to be sent IF SpamCop normally /dev/nulls the addr you specify. What outcome do you think should happen? Curious?
-
There's a Catch 22 in the use of the "User Notification" that you should be aware of: If the recipient addr you specify in the "User Notification" field is one that SpamCop routinely sends to /dev/null, then SpamCop will NOT send a user report to said addr as requested, but will instead /dev/null your user report, just as it would with any parser-generated report for said addr. Three implications: • Taking a cleaned-up /dev/null addr from the parse and sticking it into the "User Notification" field will NOT cause a user report to be sent to that addr. Your user report will also get sent to /dev/null, just like the parser report. • The reporting addr you find through your own research, e.g. via whois, will NOT cause a user report to be sent IF SpamCop normally /dev/nulls the addr you specify. • You cannot know in advance if the user report addr you supply is clean or not. It only becomes clear after you hit submit and look at the submission results.
-
db17 the report will be sent by SC. If you are unsure you could always, as a test, send a random spam to yourself and evaluate how all the SC spam reports you generate look.
-
Thanks Lking. In that case, I would like to submit the report to abuse@mailjet.com (from what I can see, pretty certain that's the hosting for the spammer, but first need to know if that will be sent anonymously with my email address or anything else identifying removed. Don't want to subject myself to even more spam. I assume that's how it's sent when it can go directly to an abuse address, not to the dead letter box ...@devnull.spamcop.net. Or at least that's what I've always thought happens when submitting a report.
.thumb.jpg.86812d1032bf875715674c9bc1d0eaec.jpg)
