Jump to content

All Activity

This stream auto-updates     

  1. Today
  2. petzl

    Spams received already outdated

    When some email server or Botnet starts spewing spam, occasionally they are taken offline. but when started up again it finishes the out of date spew! When you parse spam at top of page before you submit there is a tracking URL posting this, one can look up IP's to see when spam was happening and when it stopped and if it restarts For instance 35.182.184.76 couple of sites I use to check, was a Botnet, but it now seems a malware scan was done and has fixed it. https://talosintelligence.com/reputation_center/lookup?search=35.182.184.76 https://www.abuseat.org/lookup.cgi?ip=35.182.184.76
  3. Gingko

    Spams received already outdated

    Ahem… Of course, yes, but… What are you calling “A tracking URL”, and how could it be useful, especially in this case?
  4. gnarlymarley

    SpamCop Emails To Me Bounce

    I had this happen with my account on gmail. I had to find all the related message in my spam folder and mark them as "not spam" in order to get their spam rules to stop rejecting it. For me, it all started when google changed their rule system and needed every thing to be setup again. So far I have all seems good for me. Hopefully this might help you.
  5. gnarlymarley

    Spams received already outdated

    A tracking URL would be useful. Also if you look at the headers, is your border server putting on an old date? Spammers have been known to put in faked headers with old dates to try to confuse the SpamCop parser. This is why the mailhosts setup now exists is to cause the parser to stop at your border server. This is so that the correct IP and date can be picked up by the parser.
  6. Hello, I have a problem that for about two week, I have two mailbox (hosted by the same operator) which are flooded by spam having weird characteristics : Most of the received messages are already outdated, meaning that if I use Spamcop for reporting them, they are rejected because they are more than 2 days old, despite the fact that I submit them as soon as they are received. If I delete them from the mailbox, it happens quite often that they come back a few hours later, like if I never deleted them. All of these spams originates (apparently of course as these sender address are always fake) for me (it may be different for other users) from only 3 different mailboxes : 1 - Info@taobao.com 2 - mailer-daemon@amazon.com 3 - mailer-daemon@sourceforge.net All of this suggests that the operator itself could be involved in this situation. I'm not the only one having this problem, actually there is a large topic (38 pages so far) from the community forum of this operator where many users are complaining about the same problem : https://forum.sfr.fr/t5/votre-messagerie-sfr-mail/mail-suspect-reçu-de-ma-propre-adresse-mail-et-nombreux-spams/td-p/2164708 The hosting operator is not less than SFR, which is one of the 4 main telephony and Internet operators on the French territory. For me, this lasts since January 9th, and I got about 140 spams that way, so far. But for other users, this seems to be older. I would like to know what you think about that as I fear this is likely to defeat the Spamcop system. Regards, Gingko
  7. Yesterday
  8. gnarlymarley

    Any point in reporting spam from AMAZONAWS?

    I do find it interesting that I still get the occasional spam from a specific "claimed" helo name and from. Seems like the spammer is able to stand up new EC2 instances almost as soon as amazon "claims" they are resolved the issue.
  9. gnarlymarley

    Can I forward spam Emails as attachment for reporting ?

    Yes, just attach the spams to an email that is heading to your submit address. The parser only recognizes them as an attachment.
  10. I moved this post to a more appropriate forum. Your question is about reporting mot the blocklisst Yes you can report spam as an attachment. Send the spam as attachments to the private submit email address you received when you created your spamcop.net account. Be sure to include the complete email including header and body.
  11. Hello Everyone Here, I get hundreds of spam emails daily and it is cumbersome to forward each emails to spam reporting. Can I forward all such spam mails as attachments ? Will the system recognize and extract/check necessary data from such emails ? Please enlighten us on this ?
  12. Last week
  13. petzl

    Any point in reporting spam from AMAZONAWS?

    Nearly all stopped for me also after forwarding their spam back at them with a nerdy note! That said I still get the odd multiple spam splurge at once all from different IP's Something wrong with their security. Possibly one of their home connected WiFi gadgets?
  14. gnarlymarley

    Any point in reporting spam from AMAZONAWS?

    Interesting that my amazon spam has nearly all stopped after I had submitted ten reports in a four day period. What I also find is interesting is that I had one come back where the tech support person was not familiar with the date/time format in email headers and they needed it defined separately. * Complete, accurate timestamps of the activity including: - Date - Time - Time Zone * Full e-mail header and HTML content of the spam message
  15. You need to report to abuse[AT]amazonaws[DOT]com from Gmails WebPage Click "Show original" on your gmail WebMail page. you will see the IP that sent it to Gmail SPF: PASS with IP 52.54.105.63 Learn more Forward it to AmazonAWS paste the IP above the text you paste into forwarded message. I paste this above headers and body text Criminal phishing, bogus reply address, bogus unsubscribe (NEVER subscribed), DDoS Banned all Amazon and subsidiaries purchases because of inept AWS abuse responses to AmazonAWS DDoS multiple IP email attacks It looks to me Amazon should block port 25 to prevent viruses and spam tools managing to connect directly from infected machines through your NAT? All those who have access to your network need to scan for malware. If detected change password injection 52.54.105.63 abuseXamazonawsXcom
  16. gnarlymarley

    spam links hosted on https://storage.googleapis.com

    Heather, I have been getting that and it is coming from all over amazon's ip ranges. Google seems to have no interest, and neither does amazon. I setup my email server to reject it and they still try to send it. At this point, I am not sure there is a way to stop it without a firewall that can drop the tcp connection before it connects. Right now, I am mainly feeding the blocking list, but the spammer changes to a new IP every few minutes, so blocking based on a single IP seems pointless. If I hear of anything that works, then I can post it here.
  17. We have been receiving continuous spam from various address hosted on Amazon Web Services and they are sending links hosted on https://storage.googleapis.com as can be seen from the links to the reports below https://www.spamcop.net/sc?id=z6609711481z5f7ff7906030421d35c28ec4fd76ebdfz https://www.spamcop.net/sc?id=z6609711460z56c0fcbe123772538e3e59d397f1debbz https://www.spamcop.net/sc?id=z6609483256z97380f1a15232897ee82cee7d6f091c0z https://www.spamcop.net/sc?id=z6609366126zdb94260fe772eeaeec0b586ccc824df9z https://www.spamcop.net/sc?id=z6609256707z4d8a52a2186b2f32c75f647c6fbe356dz https://www.spamcop.net/sc?id=z6609256623zc4514931da5788b2acde16bd1ef32c52z https://www.spamcop.net/sc?id=z6609256487ze5debd3a12045f5132105bd9b86e0a44z https://www.spamcop.net/sc?id=z6609255536z1bc66246264b337428f3bd9706d31cf8z https://www.spamcop.net/sc?id=z6609076508ze91cae8abe953370fc6a3018c2562c80z https://www.spamcop.net/sc?id=z6609076340zed79e13a21d4a2001db92feb8acfe294z https://www.spamcop.net/sc?id=z6609076325z8328d3171b85f6a300450172203866fdz https://www.spamcop.net/sc?id=z6609076302z163fdb001049a51856327793ed961f5fz https://www.spamcop.net/sc?id=z6609076156z3366ccef95b77d0d76ac7412e7bf677dz any idea how do take care of this and stop the spam source ?
  18. Lodewijk

    SpamCop Emails To Me Bounce

    PS: A very lovely sounding young lady from Tele2.nl just checked it all out and found the bounce notification. She had never heard of SpamCop but was very interested when I told her about it, and she was glad there are people fighting spam. She said she was going to find out more about it as she had a very full spam box herself. We laughed when she agreed Tele2.nl must have read "spam" in "spamcop" and therefore blocked it... 😃 She wanted to know the address SpamCop sends it's e-mails to me with, and luckily I could find it in the trash, the last one from October when things still worked fine. Now she forwards it to the technicians who will set that e-mail address again as legit, and hopefully permanently. I had to give permission for them to get into my e-mail account, and give them an alternative e-mail address where they will let me know -in max 5 days- that it is fixed, with a link to reset my password.
  19. Lodewijk

    SpamCop Emails To Me Bounce

    Thank you. In the past when this happened they told me they themselves could not do anything about it, as another company handled that. But it was resolved as I insisted it could be and should.
  20. Speak to your email provider.
  21. Hello, lately I don't receive confirmation request emails from SpamCop anymore. On my account page is says: "Bounce error Your email address, (xxx) has returned a bounce: Subject: Delivery Status Notification (Failure) Reason: 5.1.0 - Unknown address error 550-'Sorry, we do not accept connections from=" I'm not aware of having made any changes. Also, when I tried to report this issue here: https://www.spamcop.net/ces/contact.shtml after tapping on the Submit button that page disappeared and thia page appeared http://mail.spamcop.net/contact4.php
  22. petzl

    Any point in reporting spam from AMAZONAWS?

    Just got a couple today from Amazon https://www.spamcop.net/sc?id=z6609487289z0285b33932067f7daed6ceaeb71b8f51z
  23. Earlier
  24. TiredOfYelp

    Any point in reporting spam from AMAZONAWS?

    This week the spammer is testing out to move the spam off the *YELP*.com domain, and off AWS servers. The new spam campaign comes from a fake @yandex.ru address. The spam comes from 192.236.177.29 (Hostwinds.com) and the redirects are made directly on an IP, 2.56.8.182 hosted with SonicFast.io. SonicFast.io has never replied to my emails before. https://www.spamcop.net/sc?id=z6609186119ze4f213952850b7dd24f8b2514aca38e0z
  25. gnarlymarley

    Any point in reporting spam from AMAZONAWS?

    And hopefully they would revoke the port 25 being open if they previous opened it and close it back down. Yes, it is up to them to fix.
  26. Like Lking said just start reporting. Somethings to note is that your Mailhost setup is effective for previous submitted spam, so if you go to any of those to report them they should properly detect the correct spammer. Without the mailhost setup, spamcop would try to guess the IP that sent your email spam. With it, it will detect the spammer's IP that connected to your border email server.
  27. With your mailhost setup, you are ready to go. Just log into your account, past the full email, including header, into the form and submit.
  28. petzl

    Any point in reporting spam from AMAZONAWS?

    These are Amazon IP's so it is up to Amazon to fix or not their spam problem. I assume it is from inside Amazon Corp.
  29. RobiBue

    Any point in reporting spam from AMAZONAWS?

    interesting read about the ports: https://pepipost.com/blog/smtp-port-25/ and https://pepipost.com/blog/25-465-587-2525-choose-the-right-smtp-port/ the former has a typo where it addresses port 467 (which is wrong as it is port 465) but in either case, that port schould not be used anyway
  1. Load more activity
×