All Activity

Yep I am getting same error? Nah worked it out eventually by sub thru app - another IP in MS range 40.92. Not used this method before so had to read manual.

Looks to me like "your spammer" has not configured their tool correctly.

The carriage-return seems to be missing from the end of the lines. For some reason everything seems to be on one line.

I've been getting a lot of these, with the following errors from Spamcop: No blank line delineating headers from body - abort No source IP address found, cannot proceed. No body text provided, check format of submission. spam must have body text https://www.spamcop.net/sc?id=z6894197401z117b29de334a37b59172c9b689618b73z Any thoughts?

works for me, Still use it

Does the mail redirect no longer work? Just curious.

Another Microsoft FREE trial this time using AZURE this was then relayed through Turkey Been getting a few of this spam phishing asking to confirm your password? Or a "new" technique for email marketers to validate email address https://ibb.co/dDDLp43 https://ibb.co/1b33qYV

https://www.spamcop.net/sc?id=z6892951213zb63f6e4d8eab8744c73323c82d4deb01z Manually reporting spam in above tracking link to abuse AT ttnet DOT net DOT tr (SC's parser determines this is one of the abuse POCs for this IP address) results in Gmail's mailer-daemon returning with this result: Running a query through RIPE doesn't show that email address as a POC: https://apps.db.ripe.net/db-web-ui/query?bflag=false&dflag=false&rflag=true&searchtext=91.220.182.196&source=RIPE Refreshing the cache does nothing to remove this address from the parse. Can the Deputies remove this address (abuse AT ttnet DOT net DOT tr) as the domain is no longer active? As determined by the RIPE query, abuse AT doruk DOT net DOT tr is the correct abuse POC for this IP address. Steve

Thanks, I agree with what you said 100%. I have been discussing with Hostgator throughout this. It is so frustrating.

Doubt if it was TEMU? TEMU are an American company trying to sell Chinese made quality (often at least) products at Chinese prices. Takes the less than a week for me to get what I buy (mainly underpants. socks, etc), so far no complaints. Scammers are using their name! Security reminder (By TEMU) Be wary of scam messages posing as customs or courier companies, which usually tell you that your package cannot be delivered for some reason and that you need to pay a fee for it to be delivered. TEMU do set a aggressive PUP on your Browser something Windows defender won't remove Try this free Windows PUP remover Contains nagware!

Z-Man you need to talk to your email provider. The whitelist of domains should happen first, before checking IPs on any block list. Whitelisting a domain should bypass the check for spamming IPs. Yes, SCBL is a dynamic list of IP addresses that are currently spamming. You should NOT have to get you clients to change ISP. You should get Hostgator to configure their mail server so that the whitelist of your client's domain bypasses the filtering of incoming email based on a block list.

If you have reports or errors from SC can you post this info here to hopefully help you thanks? Have you reported your concerns to MS and hostgator?

We use Hostgator, which uses SpamCop. We have whitelisted the domains, but since SpamCop Blocks are at least partially based on IP, whitelisting is ineffective. We are losing business because of this. And we can't prevent our clients from using Microsoft.

Thank you both!

I received random spam from temu a new ultra cheap online superstore. I assumed it was legit but when I reported to SC it was forgery due to the popularity. I rarely get spam only scam these days and when I do get spammed I'm sus they were conned into buying my address because they stopped after I only get one email. What we should be more worried about if SC is not around to reduce spam, the blocklist users will just go to other blocklist services but if they disappear the increase in spam worldwide will be so astronomical that all networks will be clogged with junk messages and become unusable.

Refresh your tracking URL. I think I show it as abuse@ocn.ad.jp whois: 60.32.0.0 - 60.47.255.255 = abuse@ocn.ad.jp Routing details for 60.36.166.29 Using abuse net on abuse@ocn.ad.jp abuse net ocn.ad.jp = abuse@ocn.ad.jp Using best contacts abuse@ocn.ad.jp

Thanks petzl !

Spamcop is using "super@plala.or.jp"

Now sendgrid are offering spammers delight forging Foxnews email! don't recommending you use the bogus manual "add your email" to bogus optout (yes they have your email anyhow) But here you very likely get put on their spammer list (Pwned) and become one of spammer genuine verified email addresses! Which are then sold$$$ to other would be email "marketers" this is 12 months ago seems started again 167.89.86.241 was last scam email (now on reporting to the FED's as well) https://www.abuseipdb.com/check/167.89.86.241 before it was from https://www.abuseipdb.com/check/159.183.224.10 So take care emails that appear legit may not be

It might seem like we get individual attention from the spammer but they are running automated programs and their main interest is when they get a click on the link. Noone is monitoring the mailbox for replies and they have virtually no overheads using free email and network services. They rely on most spam to go to spam or get deleted so they continue to get paid for sending newsletters etc. I'm not sure how listwashing works when SC is the reporter and if they don't get a sale they resell the address as a lead - no honor among thieves. When I was reporting manually I sent an abuse report to a company and they notified me recently about hackers stealing customer info. I asked to get my info deleted and they sent it to legal and agreed to delete it after several weeks but this slackness in system security is why we keep getting spammed.

Doubt if your email address has been gathered by reporting spam. More likely it has been scraped from the Internet by a Bot Webspider https://en.wikipedia.org/wiki/Web_crawler#Crawler_identification Would help to see a SpamCop track URL You best attack is report spam at lest your email address will be listwashed by spammers as poison

Are you opening the spam email triggering a read receipt? If yes try selecting to translate to raw message code and truncate links in the body before reporting. The modern day spammers are 3rd party sales and marketing sending out bulk spam through mailing lists using different addresses and an IP range so the more we report the more they find themselves on multiple blocklists. Our private details are out there on databases which are very hard to locate and delete, I have tried and failed.

yup. I had maybe 1500 spams a week before I started reporting. Now I am getting 2000 after 2 weeks of reporting. spamcop seems to tell the spammers that it's a monitored address, so it increases spam. It's a horrible place, this spamcop.net

Seems abuse address fixed now Spamhaus always send a abuse address every time they relist https://check.spamhaus.org/listed/?searchterm=194.0.189.8 The machine using this IP is infected with malware that is emitting spam or is sharing a connection with an infected device. Botnets I always report to the countries Cert as well https://www.first.org/members/teams/kz-cert you get the most of the worlds certs here https://www.first.org/members/teams/ Just put the counties name in search box

Spamcop was going to use fbsoft01@yahoo.com, which seems likely to be the spammer's account.