Jump to content

petzl

Memberp
  • Content Count

    2,343
  • Joined

  • Last visited

Posts posted by petzl


  1. 4 hours ago, hmkemerz said:

    Unfortunately there seems to be a bug in the iOS13-version of Apple's mail program. Maybe this will be fixed some day.
    I keep looking.
    Any further suggestion is most appreciated.

    https://www.iphoneblog.de/2018/02/27/ipad-e-mails-als-anhang-weiterleiten/
    used Google translate to put it in English best defense against spam is to report it.
    https://is.gd/ce67fQ


  2. 7 hours ago, hmkemerz said:

    Hello,

    I wonder if you could help regarding this issue.
     forward a spam-Mail as attachment to my SpamCop-Mail-Account (submit.xxxxxxx@spam.spamcop.net) to get it processed.

    Could someone please "open my eyes" and provide me with an instruction (or refer to solutions I did not find yet) about how to make possible  what I tried to describe?
    Thanks in advance.
    Best regards, Michael (from Hamburg, Germany)

    You must have your mail-host configured correctly
    Check you are not reporting yourself in a manual test. 
    Do not proceed unless the spam report appears to work correctly (does not identify your own service provider as the spam source).
    Then "Forward as Attachment" the spam to your 'submit' SpamCop address
    Don't use my mobile for email so work it out yourself


  3. 32 minutes ago, Hanco said:

    Yes, because.de is a country with very strict privacy rules. Hence they asked a couple of times what they could tell their criminally malicious “customer” about my complaint (before kicking them off their network anyway... and into a Lithuania outfit which seems to have a Russian based parent or at least very similar named company which is now host of most of the targets of the spam in the last 36 hours))

    Best way to communicate abuse to German providers is to forward as attachment to their abuse address from your account that is being spammed


  4. 34 minutes ago, Hanco said:

    What do we do to report “as phishing”?

    I’m not sure how to make the report as phishing. I’ve been using SpamCop for a lot of years - only in forum for a few though.

    Gmail allow to report spam as Phishing  which AWS support allow?
    Last link gives site blocked/fraud warning. Very probable all of amazon will be included
    https://crypto-marketnews.com/btcprofitnow/index_gm.html?affid=CellX_Globalmarkets&cxd=gm_35731_601854_w5hgt2biq780f4up1to2tafu&bta=35731&nci=5532&afp=w5hgt2biq780f4up1to2tafu


  5. 3 minutes ago, Hanco said:

    Thanks that's where I get sent but don't bother clicking every link or any link that often
    Seem AWS is backing this. Not a friend of Namecheap they seem the ones flooding spam to this blog
    Domain name blocking will be the only way to block this, if Gmail get enough phishing marks they will block domain and won't advertise they have done so.
    So far the only way to do this is by "sh*t list" as I haven't seen a effective way of gathering domain evidence.
    IP gathering of domains is hard as spam is hopping through domain IP's


  6. 1 hour ago, NanaBird said:

    As fast as I report an email, I get another one and they are mostly an amazonaws

    Hammering my Gmail account as well always mark them phishing and report from my Gmail.
    Criminal  phishing, bogus reply address, bogus unsubscribe, DDoS attack on my email account
    stop-spoofing[AT] amazon.com, abuse[AT] amazonaws.com, abuse[AT] amazon.com, ec2-abuse[AT] amazon.com, ipmanagement[AT] amazon.com, phishing-report[AT] us-cert.gov.
    The links are "tinyURL" and go  to a free picture site of a text document. but don't look at all


  7. 2 hours ago, Hanco said:

    Should we send direct to Amazon or not? Which is likely to cause maximum potential nuisance to the spammer and reduce volume longer term?

    Forward it to Amazonaws, phishing-repor#tus-cert.#gov.
    include phishing above IP source

    Criminal  phishing, bogus reply address, bogus unsubscribe
    IP 34.231.112.26 
    include headers and body
    https://www.spamcop.net/sc?id=z6578747355z158aa4a26f6a31f2cd5a61872902c2b9z


  8. 37 minutes ago, gnarlymarley said:

    Sounds to me like the IP registries are confused.  Seems to be that 185.254.121.237 is said by arin to be RIPE, but by everyone else to be IANA.  The IP is in use and is routable.  Does anyone else see what I am seeing returned from RIPE or is this just me?

    https://www.spamcop.net/sc?id=z6578180134z80ef26afa691a5047d301c474dcaaf8bz

    no abuse address there is a registrar address 
     

    domain:        SWEETREBECCA.SU
    nserver:       a.dnspod.com.
    nserver:       b.dnspod.com.
    state:         REGISTERED, DELEGATED
    person:        Private Person
    e-mail:         mailto:hunderalex[AT]rambler[DOT]ru
    registrar:     RUCENTER-SU
    created:       2019-09-26T18:39:07Z
    paid-till:     2020-09-26T18:39:07Z
    free-date:     2020-10-29
    source:        TCI

    Phishing site
    https://www.virustotal.com/gui/url/59d1efd146c2e4a124360c3ae9dc0ad238fa7d12317e299fd12a3b3c2ca3990a/detection


  9. 1 hour ago, mrpHil said:

    It has been almost a week and here's another one

    https://www.spamcop.net/sc?id=z6576958476ze4833e750c6875584190cb7a3360f1baz

    SpamCop is not recording IP source: 3.225.164.112: as spam source?
    Works for me though?
    https://www.spamcop.net/sc?id=z6576968740z4efc2f268a1201ccf6eea4e5b6be0785z

    Use Gmail Webmail to log it as "phishing" spam
    Gmail don't advertise but block domains if enough report them as "phishing"
    Would be a Amazon problem when they cannot contact paying Amazon buyers.


  10. 4 hours ago, oZoneCapHill said:

    I went to report this domain and saw it tries to report to Hotmail? Clearly wrong, so how do we or who admins changes for reporting. ALSO for amazonnaw reporting, I saw awhile ago reports re no longer sent to them, so I send them via my email, which is a sh**ty way to expose my email address

    Name:        hipmie.com
    IP:        40.71.252.90
    Domain:    hipmie.com
       Registrar: Uniregistrar Corp
       Registrar IANA ID: 1659
       Registrar Abuse Contact Email:  mailto:abuse[AT]uniregistry[DOT]com

    Spammer already has your email address, IMO sending report will deter sending spam
    If from Gmail account mark it "phishing" as well this will activate AWS as a domain Google will block if enough do so.
    Might nudge AWS abuse desk to stop protecting/working with spammers
     


  11. 2 hours ago, Hanco said:

    Amazon again just now... from Amazon IP 52.36.85.88

    Looks to me like Amazon abuse desk is behind and protect
    Criminal  phishing, bogus reply address, bogus unsubscribe
    Be very wary about giving Amazon credit card information they will have bogus charges appearing on it,
    Some bogus charges on my credit card for kindle books I noticed, recommend canceling accounts/credit cards they have access to.
    26/07/2019    Amazon Australia Servi Melbourne Au 
    Entertainment & Recreation    $13.99    
    26/09/2019    10:44    Amazon Australia ServiMELBOURNE AU    $13.99    

    Although after spotting this I rang and they refunded the money I believe misappropriated
    27/09/2019    Amazon Australia Servi Melbourne Au
    Deposits        $13.99
    27/09/2019    Amazon Australia Servi Melbourne Au
    Deposits        $13.99
    27/09/2019    Amazon Australia Servi Melbourne Au
    Deposits        $13.99
    27/09/2019    Amazon Australia Servi Melbourne Au
    Deposits        $13.99
    27/09/2019    Amazon Australia Servi Melbourne Au
    Deposits        $13.99
    27/09/2019    Amazon Australia Servi Melbourne Au
    Deposits        $13.99
    27/09/2019    Amazon Australia Servi Melbourne Au
    Deposits        $13.99
    27/09/2019    Amazon Australia Servi Melbourne Au
    Deposits        $13.99
    27/09/2019    Amazon Australia Servi Melbourne Au
    Deposits        $13.99
    27/09/2019    Amazon Australia Servi Melbourne Au
    Deposits        $13.99
    27/09/2019    Amazon Australia Servi Melbourne Au
    Deposits        $13.99
    27/09/2019    Amazon Australia Servi Melbourne Au
    Deposits        $13.99
    27/09/2019    Amazon Australia Servi Melbourne Au
    Deposits        $13.99


  12. 1 hour ago, Appleseed said:

    I added more fuel to my account via Paypal almost week ago, but its still not added to the account.

    How long does it usually takes? I did send the account name and the email address via the payment so there should be no problem with that.

    You have a WORKING contact email for SpamCop?                                                                                           comtact  


  13. 1 hour ago, forrie said:

    Yeah, I can see that point (LKing).

    I'd be Ok with a CLI tool that I can just run that will go out and authenticate to my IMAP accounts, process the spam (after I visually weeded it out).  

     

    You have to try to get better than the Bot SpamCop
    For windows free "Whois"
    IP abuse only
    Both IP and Registrar even better to send report to both IP abuse and Registrar


  14. 7 hours ago, mrpHil said:

    works for me?
    54.245.58.76 : abuseXamazonawsXcom
    amazon "abuse" refuse to take SpamCop abuse reports and don't seem to act on reports sent to them
    Gmail always have them sorted to their spam folder,
    Easy from their web mail to "open original" they tell you the source
    SPF:    NEUTRAL with IP  35.161.175.37
    Just Select Forward to abuseXamazonawsXcom (have it in your Gmail address book)
    copy & paste "IP  35.161.175.37" into body of forwarded message push enter
    copy original to clipboard  then paste into body then click send

    Report spam as phishing then delete


  15. 9 hours ago, gnarlymarley said:

    I believe gmail has fallen to the spammers level.  If they are paid enough, they will probably continue to have the domain unblocked.

    Amazon go through "free account/web page" trails and are useless if not pro-spammer with dealing with abuse,
    If enough amazon spam get reported as phishing, which it is. the blocking of amazonaws domain is automatic but takes a lot,
    This would be serious for Amazon whose main business is on-line shopping.


  16. 59 minutes ago, Sisyphus said:

    I received this email:

    ===

    This message serves as confirmation that you are now successfully registered in our support center.

    Registered Email: <some numbers>@reports.spamcop.net
    Password: <some letters and numbers>

    You can visit the Support Desk at any time by going to https://yoursupportdesk.net/

    Please do let us know if you have any questions.

    Regards,


    SupportDesk


    Support Center: https://yoursupportdesk.net/index.php?

    ===

    Is there any reason to think this isn't spam?

    Louis

    Seems like a vague reply to a SpamCop submission/report you made?
    Just ignore it


  17. 3 hours ago, 5280 Guy said:

    I have also started copying the "abuse" addresses and sending the spam (with headers) to those addresses, so that reports aren't only going to notes.

    amazon abuse desk seem to me to be in on the spammer
    Go to the bogus unsubscribe and you will be asked to put email address in there put those that are amazon connected.
    If gmail report them as "phishing" as I do. Gmail get enough phishing reports they will block amazon domains entirely, hopefully put them out of business

     

×