Jump to content

emanmb

Membera
  • Content Count

    139
  • Joined

  • Last visited

Community Reputation

0 Neutral

About emanmb

  • Rank
    Advanced Member

Recent Profile Visitors

808 profile views
  1. emanmb

    Colocrossing

    I'm sure I'm not alone here in getting frequent colocrossing spam. Due to it's frequency, I did a little googling. Perhaps others may find these pages of use or of interest. They do have a Twitter page and FB page so it's not like their some totally unresponsive monolith, although maybe so RE: spam https://www.000webhost.com/directory/reviews/colocrossing.com http://spamauditor.org/2017/01/happy-new-year-colocrossing/ https://irulan.net/blocking-colocrossing-spam/
  2. emanmb

    Adware Spreads Quickly on AOL IM

    Not sure how that is even possible now. https://techcrunch.com/2017/10/06/aol-instant-messenger-shut-down/
  3. emanmb

    DIY Reporting

    Yes hence my quotation marks. Also SC may know something I don't. In this instance I just got tired of the host not receiving any info about this spammer thus allowing the spammer to operate w/impunity. I figured, I was already getting their spam somewhat regularly why not see if I can stop it. So yes this may not work in any other instance.
  4. emanmb

    DIY Reporting

    One particular group of spams I get come from linode. com which SC doesn't report to them but to abuse#linode.com A devnull.spamcop.net. So after a lot of emails such as these coming through and being reported only through SC, I took a look at their site and decided they "looked legit enough" for me to fwd the spam to them directly. Seems it might have been worthwhile.
  5. emanmb

    non-functional parsing

    I just ran into this same issue today for the first time. One spam went thru fine, then next one not. Resubmitted and same results. Report page ends with "Parsing HTML part" as per below. "Parsing header: 0: Received: from 144.160.152.215 (EHLO flpd576.prodigy.net) (144.160.152.215) by mta1119.sbc.mail.bf1.yahoo.com with SMTP; Wed, 29 Nov 2017 12:25:47 +0000 Hostname verified: flpd576.prodigy.net Gmail/Postini received mail from YahooMain ( 144.160.152.215 ) 1: Received: from mongelli.ge.ieiit.cnr.it (mongelli.ge.ieiit.cnr.it [150.145.1.42]) by flpd576.prodigy.net (8.14.4 IN altR5 TLS/8.14.4) with ESMTP id vATCPiMp130102 for <x>; Wed, 29 Nov 2017 04:25:46 -0800 Hostname verified: mongelli.ge.ieiit.cnr.it YahooMain received mail from sending system 150.145.1.42 Tracking message source: 150.145.1.42: Routing details for 150.145.1.42 [refresh/show] Cached whois for 150.145.1.42 : muselli@ice.ge.cnr.it Using last resort contacts muselli@ice.ge.cnr.it Message is 16 hours old 150.145.1.42 listed in cbl.abuseat.org ( 1 ) 150.145.1.42 is an open proxy 150.145.1.42 not listed in accredit.habeas.com 150.145.1.42 not listed in plus.bondedsender.org 150.145.1.42 not listed in iadb.isipp.com Finding links in message body Parsing HTML part"
  6. Just found out about this spam reporting address that takes the email you fwd to them and then uses and AI bot to reply and engage the spammer for as long as possible wasting their time. Just got a juicy phishing spam today from .ng pretending to be Chase which will be my first submission. https://youtu.be/jPajqAJWiNA
  7. Aha! Yes I remember seeing that somewhere. No I do not have reports sent to me and will try it just to see. This is where I added my address to do this in the preferences. Thanks!
  8. In several brands of spam I get, my email address is also in the subject and/or in the body of the spam, either built into links or more frequently, "Dear emanmb@_______". Now I realize that changing any part of the spam being reported to SC is frowned upon, but in such cases, what else can I do to remain anonymous except to delete my email from wherever it appears in the report? A sample of the html incorporating my email in their link is below. <html> <head> <title></title> </head> <body> <a href="http://w0yoorncgn.cu.cc/7viV3yWAetrXvFFdyiMU/emanmb@--------"> <h2>Get $5730 deposited in your account to go back to school.</h2> <img src="http://w0yoorncgn.cu.cc/img/picture12.jpg/emanmb@---------" usemap="#edu" alt="Click here to Apply Now" /> </a> <map name="edu" id="edu"> <area alt="" title="" href="http://w0yoorncgn.cu.cc/7viV3yWAetrXvFFdyiMU/emanmb@---------" shape="default"/> </map> <br><br><br><br><br> </a> <a href="http://www.w0yoorncgn.cu.cc/1a8bb1a7bf24c6016ceaaa727a_92ba6759-01010101e4c5/C/">To Unsubscribe Click Here</a> <h5>To enable all links in this message (including unsubscribe link), please click Not spam on a toolbar</h5> </body> </html>
  9. emanmb

    Curious about amazonaws .com

    One could always send it directly to them but since @Lking says reports bounce, that's probably what will happen. My guess is the building of the SCBL is of more importance than reporting to a company's supposed abuse dept.
  10. emanmb

    Curious about amazonaws .com

    Thanks Well that's unfortunate! Just did a little googling and the answer seems apparent from what the domain is associated with.
  11. Just curious. Given the huge amount of sites seemingly associated with amazonaws. com in the spam I am reporting, I'm wondering why they don't accept SC reports?
  12. Came here to post the same thing!
  13. emanmb

    What is Knujon On About?

    Then this is strange then.
  14. emanmb

    What is Knujon On About?

    I go this this email from Knujon today and I'm wondering what the SC reference is about. "Hello, Sorry for the lack of communication. We have been digging into a scandal which has consumed all of our time, but it will be worth it. The final product will shake internet governance to its core. This is all due to the contributions KnujOn members have made to this project and the issues directly relate to your reported abuse. We will be relocating data centers shortly to resolve a number of issues, some of you have already noted. The servers at COLDRAIN will gradually stand down and be replaced. We are in the process of setting up a new data center in the next few days. We have also noted the news about SpamCop and will accept any former members and do what we can to handle their traffic. The issue is being taken very seriously. If you have sent us specific questions we will answer them in time. Thank you for understanding. -Garth" What news about SC?? Why so serious?
  15. emanmb

    Unicode domain names are breaking the parser

    I use the wrong OS to worry too much about the links, but I did click one in iOS 6 or mb it was OSX 10.7 (i think) and it was just a blank page. I'm sure from what petzl is saying that it was probably trying to do something evil tho.
×