Jump to content

petzl

Memberp
 View Profile  See their activity

  • Content Count

    2,057

  • Joined

  • Last visited

Posts posted by petzl

  1. Posted · Report reply

    7 hours ago, jodell said:

    At SpamCop Blocking List after a "Numeric IP Address is entered, the page offers a "SenderBase Lookup"option.  Selecting this option used to take you to a talosintelligence.com page.  But now I get an error:

    Error 1020 Ray ID: 477137b2cc9a7e51 • 2018-11-09 15:12:26 UTC

    Access denied

    It seems that SpamCop.net no longer has permission to access Talos.  Anybody know if this is going to be fixed?

    The "SenderBase Lookup"option should change its underlying URL to https://talosintelligence.com/reputation_center/lookup?search=xx.xx.xx.xx

    (FIll in the "xx.xx.xx.xx" with the requeste IP address.)

     

    Jim Odell

    Another broken feature. Was a handy from the SpamCop Blocklist page
    https://www.spamcop.net/w3m?action=checkblock&ip=122.224.69.173

    now I have to look from here

    https://www.talosintelligence.com

  3. Posted · Report reply

    17 hours ago, alfberto said:

    Hello everyone,

    I'm new at this forum, I've been trying to find this information and I couldn't so please forgive me if this thread is duplicated. Do you know if there is a way to get access to the content of all those spam emails? I would like to analyze the content and the emails accounts. Do you know if it is possible?

    google results? https://is.gd/txKxKg

  4. Posted · Report reply

    2 hours ago, dr_bobbs said:

    After all these years, I think it's time for me to just give up on Spamcop. I don't know why I was able to use it for so many years, but now it's just gotten way too complicated for me.

    Gmail and Hotmail are deliberately hiding spammers. There are "way around's" really why bother

    Time to get a real email accounts

    https://www.businessinsider.com.au/how-to-ditch-google-2018-10?r=US&IR=T

  5. Posted · Report reply

    9 hours ago, Phineas Fudrucker said:

    I guess it was just a coincidence.  The spam from Google began again a few day later and has not let up.  Kind of reminds me of the good-old-days when AOL was the 800 pound gorilla and the major source of spam.  OTOH, it pumped up the numbers making the stockholders happy so maybe Google is trying the emulate that success story.

    Bigger they are the harder they fall some acorns growing

    https://www.businessinsider.com.au/how-to-ditch-google-2018-10?r=US&IR=T

    These 12 apps and services can help you ditch Google completely

  7. Posted · Report reply

    39 minutes ago, MIG said:

    Hi Petzl, 

    Can I ask for clarification please: "I never use my SpamCop email except... etc", does this mean you don't use your SpamCop email address for anything other than reporting spam emails to SpamCop or.... ? 

    Sorry, but I'm confused, would like to shutdown as many scammers/spammers as possible & don't wish to be providing them with any info that enables them.

    Thanks in advance. 

    My SpamCop email address I have only given to friends.Some of these friends over the years have had their email address book stolen. So now I'm on a lot of spammers list. I report every spam I get, even having spammers sent to jail.

  9. Posted · Report reply

    4 hours ago, Lking said:
    Quote 
    

p.s. I can give you advice for the future. Do not enter your passwords on unsafe sites.

    What a considerate spammer/blackmailer you have CaLy 😁

    While good advice if you must sign into "dodgy" sties use a throwaway email address with a different password! This spammer is attacking my SpamCop email address so like all spammers is lying. I never use my SpamCop email except to friends (whose computers have been hacked email addies scrapped)

  11. Posted · Edited by petzl · Report reply

    3 hours ago, gnarlymarley said:

    Interesting that there appear to be three different formats for this email.  I know two of the formats are using the linked-in passwords from their password breach.

    Here's one I got seem to be the phishing flavour of 2018, get them occasionally, I have a 28 alphanumeric  random upper lowercase! Could be cracked in: 3.33* 10^ years (whatever that means, but is in 10's of millions of years, I use a password saver/generator)

    https://www.spamcop.net/sc?id=z6495540332z09916df218ebe8629343162648b82e4ez

  12. Posted · Edited by petzl · Report reply

    2 hours ago, CaLy said:

    Thank you all for your answers !

    Of course i will keep reporting the email GnarlyMarley.

    I received another one today of course reported.

    Now i discovered the btc addresses are different. And the password "hacked" or "cracked" also are different than the 1st one.

     

    Just a Criminal Phishing scam. If you are a Windows user turn "Windows Defender" ON surprisingly accurate so-far

    Also lopk for the "SpamCop Tracking URL" at to of page before you submit, copy it before you submit report to post here if you have question, you can then get better advice.
    https://www.spamcop.net/sc?id=z6495265847ze8966850e1ce2d10f05d463925ee5d1dz

  14. Posted · Report reply

    14 hours ago, Ricardo_63 said:

    Many times when reported a spam is rejected by the reason of  "ISP has indicated spam will cease... "
    Because it continues  receiving spam from IPS where have indicated as "will cease".
    Will Spamcop change this action?? no sense if still receiving  spam.
     

    Anyone can disable SpamCop Block List including spammers by simply going there! Once done SpamCop will not report and give the "ISP has indicated spam will cease" message you then have to report from the email source where it arrived.

  16. Posted · Edited by petzl · Report reply

    4 hours ago, Charles85716 said:

    Have now tried that.  In order for SpamCop to parse the problem emails, I have to replace the second line with something ("truncated") and process manually.

    https://www.spamcop.net/sc?id=z6492989901z8b7e34069fd76e775e2104a59eb3586bz

    Leave that second line in, and the parser can't identify the sending email server.

    https://www.spamcop.net/sc?id=z6492989269za7d27a04f9c8ab69614f9e92b82f1604z

    SpamCop's parser has problems pulling out the email server information properly, and Gmail is one of the biggest mail services (if not the biggest) on the planet.

    I may be overly intricate in using Thunderbird at home and reporting only from home from Thunderbird, but I hardly think I'm alone.

     

    Charlie

    Yes Google/Gmail have become arrogant and don't care  seems a disease with many tech companies that don't need to compete
    Gmail have their servers "received line" mis-configured. Just report what you can if too many. Best and easier to report Gmail spam from Gmails webmail platform than Thunderbird IMO hostmaster[at] nic.ad.jp  is the correct abuse address not SpamCops add

     "icsr-ir [at] jpcert.or.jp" for Japan spam

  17. Posted · Edited by petzl · Report reply

    8 hours ago, Charles85716 said:

     

    Quote

    So manually (copy and paste versus forward as attachment) the header minus the second line and Spamcop will be able to parse the header correctly,

    Correct, just "Download Original" and open remove 2nd line, copy paste what's left into SC, best is to then forward spam from Gmail to actual abuse address  as a text file attachment. This is what Gmail downloads it as.

    Quote

    On over a hundred emails a day from this outfit, right?

    That\s a DoS attack. Gather info? are they from same IP/network? Doubt if it will be

    hostmaster[at] nic.ad.jp  is the correct abuse address for 160.14.210.58 SpamCop often has legacy issues where abuse address were changed but never again checked. Also forward spam with the downloaded text to the CERT of the country concerned include in note, when you find "unsubscribe"  don't work

    Criminal  phishing, bogus reply address, bogus unsubscribe
    and other stuff

    Quote

    And hit the unsubscribe link to confirm my email address, right?

    Yes once is enough probably a joe-job unsubscribe but gives you more info about spammer! *Also* click "report phishing" at Gmail. Probably won't stop the spam but might, won't make it worse,  IMO. these spammers attack Bot  already have your address!  These spam bots are expensive the owners won't like it being taken down, The spammer pays to use it. Bots owners will be Cybercriminals with access to spammers money and computer. Maybe home address phone number etc! Remember spammers are dumb.

    199.212.87.254 is the domain site URL  "abuse [at]poweruphosting.com" AND phishing-report[AT]us-cert.gov

    Listed on the SBL https://www.spamhaus.org/sbl/query/SBL405375
     

  18. Posted · Edited by petzl · Report reply

    6 hours ago, gnarlymarley said:

    smblion,

    I have not seen spam from 163.com in a long while.  I thought that spammer had given up from being on the block list.  It appears that my persistence with reporting every single spam has worked as they no longer send me spam.

    I think SpamCop has fixed the rubbish abuse address it once gave? Need to see a tracking URL

  19. Posted · Edited by petzl · Report reply

    1 hour ago, Charles85716 said:

    Sorry.  I didn't know the etiquette.

    Here's another one.  I have about 40 so far in the last eight hours.

    https://www.spamcop.net/sc?id=z6492789593z152d4647b1c50f78e0dac97ba12df730z

     

     

     

    Gmail spam you need to remove 2nd line in headers

    Received: by 2002:a17:906:8141:0:0:0:0 with SMTP id z1-v6csp1999137ejw;

    Track below in Gmail mark all spam phishing still report. Consider  clicking unsubscribe they have your email anyhow

    https://www.spamcop.net/sc?id=z6492803009zf0ca0f45eeb9c3f21f83b4240ceeb08fz

  21. Posted · Report reply

    11 hours ago, leagris said:

    So, now that Spamcop is aware of the issue parsing Gmail headers that includes 6to4 local addresses, is it planned to fix the parser anytime soon?

    Also this forum is crying for some love with SSL certificates

    I suppose SpamCop easily could but they don't? Gmail though shouldn't be saying email received from their network.

    Just mark/report any and all spam phishing which will make it pointless for spam to be sent there. I still report after marking it phishing.

  23. Posted · Report reply

    9 hours ago, Grumpy Boy said:

    these days in US we have seen a sharp increase in the Indian Tech Support Scams. the initial vector of attack is getting the user to click on a link which then locks up the computer. someone has made a scanner which keeps finding out new links of these scam web sites on the internet and makes a list of them along with the phone numbers associated with them. the output can be seen over here https://www.scammer.info/u/ADAROSS

    is there a way to automate the reporting of these fake website to the correct address ?

    If you can give a SpamCop tracking URL(top of reporting page before you submit) will get better advice.

  25. Posted · Report reply

    2 hours ago, efa said:

    62.149.158.115

    is where Gmail servers accepted the email from. 

    spf=pass (google.com: domain of direttivo-return-6263-attilio.bongiovanni=gmail.com@pvi.it designates 62.149.158.115 as permitted sender) smtp.mailfrom="direttivo-return-6263-attilio.bongiovanni=gmail.com@pvi.it"
×