Jump to content

RobiBue

Membera
  • Content Count

    252
  • Joined

  • Last visited

Community Reputation

0 Neutral

About RobiBue

  • Rank
    Advanced Member

Recent Profile Visitors

2,667 profile views
  1. Hello rdorsch, I am certain you are not the first one to report his own domain, and probably won't be the last. there is a reason why spamcop "kind-of" suggests not to report linked websites in the spam body, as spammers inject addresses of several "innocent" websites/domains, and you were the unfortunate recipient of such a spam. also, links in spams are not "counted" as spam origins and thus not blocked (AFAICR) but that does not necessarily mean that if the domain's upstream IP listed abuse desk receives a "complaint"/report that they won't act upon it. currently I see that the abuse desk is "/dev/nul"ed reports are disabled for contabo punkt DE which means that the link will not be sent to the abuse desk in case you forget to uncheck the box Ich hoffe dies hilft! Gruss aus den Staaten nach Deutschland
  2. absolutely! I've been fighting spam now for close to 20 years, and even back in the day, double opt-in was suggested to the companies affected by these malicious login attempts. I just don't understand how short the memory of some people is. I am sure some of these IT guys were also affected by these spamming opt-ins... I don't know how an "opt-in check" could work... I have a VPN and am accessing the web from different sites worldwide (at least on my tablet) so if I opt-in at some site, they might log my IP address, and probably ask for a captcha, but anybody can opt me in using a captcha and the IP address would still be as unknown as mine is... unless you mean "opt-in check" = "double-opt-in" just like this stupidity with spotify, where they send an email that somebody created an account, and for me to confirm, but in the end, confirmation is not needed since the account is already created and I receive emails from people logging in from two different sites (Ukraine and US) -- mindblowing 🤯
  3. RobiBue

    Link obfuscation flaw?

    you also need to keep in mind that links nowadays are tracked by the spammer, so if a link is clicked on, the spammer gets a) paid for successful promotion and propagation of the spam. b) if a link is clicked on multiple times, a counter increases and the spammer gets more money. c) a clicked link means the spammer will flood you with even more junk to click on because he now knows that the email address, linked to the tracking code in the link, is active and the user responds/reacts to it. links need to be handled carefully and redirected links even more since the tracking code is hidden in the redirect code. even worse, if the code for the redirect link is changed, the link doesn't (usually) work and is not linked to the actual spammer anymore...
  4. I've been getting one per day, and just today I see the following tidbit at the very end: yeah, sure Rule #1
  5. Thanks for that info gnarlymarley. somewhat I figured it came from somewhere in the path of the mx's/mailservers coming from spamcop, that's why I mentioned "admin" in my post
  6. I hope an admin reads this: I just received re spam report with the following subject line/title: Subject: [WARNING: UNSCANNABLE EXTRACTION FAILED][SpamCop (216.146.32.175) id:7052936601]Free - get our most popular daily mail - we think .. what does this mean? [WARNING: UNSCANNABLE EXTRACTION FAILED] here's the SC link just in case, but I see no [WARNING: UNSCANNABLE EXTRACTION FAILED] in there... https://www.spamcop.net/sc?id=z6629574662z324eed2acb847c77c158ebdf4647d185z
  7. How quaint just received a cute email starting with: sorry seekingalpha, 1st I do not recall ever having asked for emails from you, and since you say "it's been a while", there must have been a reason. BTW since I haven't "ever" (at least since November 2005) received an email from you, I would wager to say, you got my email address from somewhere else, so I'll pass, thank you very much So I go check my browsing history (ISO ALPHA-2) is all I get with alpha, and as for websites with passwords (wolframalpha.com) is the only one I have ever logged in, so sorry seekingalpha, your "pitch" doesn't work with me. You are sent to the spam bin and reported nyuknyuknyuk! At the very bottom: Yeah, right! (and they say two positives don't make a negative), like I want to be auto-logged in without my decision... No Way in HE🏑🏒 (pity those hockey sticks are facing left). Also a reason why I do not click on links in emails I don't trust... I thought I'd share this nugget which is taken right from the spammer's playbook
  8. RobiBue

    Change your password in this Forum

    oddly enough, spotify sent me an activation link which I never clicked on, but it seems that whoever created the account was able to log in anyway, twice even... and I am fairly sure that my email account isn't being accessed without my knowledge my email address has definitely been used several times though... there seems to be something badly wrong if spotify sends me a confirmation to activate email and then the activation happens anyway... anyway, that is not spamcop's problem that is Spotify and yes, I ain't a fan of neither certain ways of opt-in/opt-out either
  9. RobiBue

    Change your password in this Forum

    somewhat "indirectly" related to this thread... Somebody in the Ukraine created a spotify account with my gmail address and it received two logins, one from Ukraine and one from the US. the account claimed that whoever "I" am, lives in GB so I logged in as well, noticed that the name was gibberish, changed the password, and kicked everybody who would have been logged in out. In the spotify forum I noticed that Ukrainians wanted their country to be added to the spotify approved list ... sure, creating fake accounts will help them... edit: unless it's Russians using a Ukrainian VPN to keep them from getting approved... edit 2: with Russians I mean Vlad Drac^h^h^h^hPutin's agents...
  10. RobiBue

    Any point in reporting spam from AMAZONAWS?

    interesting read about the ports: https://pepipost.com/blog/smtp-port-25/ and https://pepipost.com/blog/25-465-587-2525-choose-the-right-smtp-port/ the former has a typo where it addresses port 467 (which is wrong as it is port 465) but in either case, that port schould not be used anyway
  11. As gnarlymarley mentioned previously, a tracking URL would be helpful to figure out what’s going on. the tracking URL can be found at the top of the spam processing screen after clicking the button [process spam] below the entry text box.
  12. RobiBue

    reports disabled for spam [at] uce dot org

    Sorry, I understand the sentiment, but that quote is definitely not “Twain’s”. His sentiment on voting was just the opposite: ”When a thing gets to be absolutely unbearable the people can rise up and throw it off. That's the finest asset we've got--the ballot box”
  13. RobiBue

    reports disabled for spam [at] uce dot org

    here's my take on this (at least the way I think I understand it): The FTC set up honeypots, but not for spamhaus or SURBL but for their own form of collecting spam and acting upon it within their own system. but here's the drawback: Honeypots take time to be harvested. spammers (afaik) get their lists from different sources existing spam lists exploited emails on the darkweb harvested emails (diverse forms) unless the FTC has seeded their honeypots into the above sources (which I doubt they have) it is possible that it will take years for them to actually be able to do anything (if at all) also the equal analogy applies with the current existing honeypots for spamcop Spamhaus and the known BLs: even though BLs are there, spam keeps coming regardless, due to different reasons: spammers use different providers sometimes but not more than often they are their own providers and change/add IP ranges at will or when they ended up in a BL spammers use malware infected computers (spam bots) to send their spew or use open proxies I have also seen them use IP addresses that were being transferred and thus not active anywhere (they spoofed those addresses and thus were untraceable) Somehow I understand the FTC reasoning as they often receive spam reports that actually are not, but people just get tired of unsubscribing from emails they subscribed to once upon a time for example: I have written to congressmen and whenever I did, I made sure not to receive their "daily digests", yet some congressmen think it is ok to send me their spew, so I end up unsubscribing once (even though I made sure to uncheck the box to receive emails), and after that, all the upcoming mails end up being reported as spam. I could just report their emails from the getgo but I do give them a chance to clean up their act. I was going to rant here, but I promised not to go political anymore
  14. RobiBue

    Message from the Wilderness

    Pony express or/and steam engines sill working, I hope 🐎🚂🏔🎿☃️
  15. RobiBue

    Replies from spammer BOK IQ PL

    Hetzner.de is basically the same. I manually reported to their listed abuse address and received a reply to report through their website. (After of course having went through the trouble of reporting it to them in the first place — SMH) No wonder they ended up in the /dev/nul list...
×