petzl
-
Posts
2,981 -
Joined
-
Last visited
Content Type
Profiles
Forums
Events
Posts posted by petzl
-
-
On 6/4/2023 at 3:30 AM, RidgwayJohn said:
What address would I forward that to?? I've not been able to find a reporting address (such as <abuse@gmail.com>) of any kind...
Finally got one image spam pushed Gmail phishing so just goes to Google page
https://storage.googleapis.com/f878b66c052755c/c8c1675c24c3892#cl/10193_md/3/524/1115/76/256021
Name: storage.googleapis.com
IP: 172.217.24.48
Domain: googleapis.com
Registrar Abuse Contact Email: abusecomplaints[AT]markmonitor[DOT]com
reported through SpamCop
TRACKING URL - it may be saved for future reference:
https://www.spamcop.net/sc?id=z6849678749za0d7afffb823a064c1d98157fa36540bz
image
https://ibb.co/DWrQ06r -
5 hours ago, RidgwayJohn said:
What address would I forward that to?? I've not been able to find a reporting address (such as <abuse@gmail.com>) of any kind...
The image would be stored in Google cloud storage,
as I use gmail I press phishing and the google account and 'user are removed along with cloud account, till spammer opens a new account.
If you could show me the google link address I would do a "Whois" search that will give you a abuse contact by email.
Have done so before but never kept it.
Or download this small free windows WhoIs app and get it yourself (better quicker option)
http://www.gena01.com/win32whois/
The registrar address of all URL's in email will give you the needed Registrar address,
SpamCop will only give the IP that it's presently linked to which is next to worthless
That is unless the IP address is where it's sent directly from.
Then it becomes the ISP's problem as that is then where the abuse is actually coming from,
they then can legally do something about if they choose. -
2 hours ago, RidgwayJohn said:
Thanks again, @Lking; that's very helpful indeed. Of course, I'm trying to find the most pain-free (and least-effort) way to report spam. It drives me crazy that Google requires you to copy/paste several times to report to them, and they don't appear to have a way to share the image. I guess what you're telling me is that image is of no value, so I shouldn't worry about it.
Fust forward as attachment to Google with link in subject line?
As I use Gmail I just need to mark spam as phishing and the google link is shut down. as well as the account.
Spamcop just needs the text headers for spam report
Under the header hit enter 3 times then write "truncated"
example
This is a tracking url first link it was a very long spam that SpamCop would of truncated. after slowly spinning and clanking, work it out??
https://www.spamcop.net/sc?id=z6848167086z4fd3246162889f224c7b489230c6f6f0z
Full report of what I sent after truncating images
https://www.spamcop.net/sc?id=z6848167086z4fd3246162889f224c7b489230c6f6f0z;action=display
-
54 minutes ago, Allen said:
i just asked for it to be closed
Go here under "Other reasons for contact" if you haven't already asked?
https://www.spamcop.net/fom-serve/cache/401.html -
33 minutes ago, Allen said:
i cant. my account is deleted/disabled now so i cant access it. yet still don't receive emails
Doubt if much can be done, this was a paid service, if you didn't keep account topped up. not sure.
-
9 hours ago, Allen said:
i believe its related to the spamcop but i asked if i could have my account deleted, (apparently its disabled now) but i still dont recieve emails. is there a fix?
Go to SpamCop logon to webpage settings/preferences and see if your email address is correct. If a email ever bounces SpamCop stops sending.
after logging on
https://mailsc.spamcop.net/mcgi?action=wizard&stage=1 -
6 hours ago, RobiBue said:
it might have been a typo,
I'm getting old and a bit doddery, but I usually point in right direction. I hope?
-
On 5/29/2023 at 12:11 PM, ninth said:
I will take whatever steps necessary to stop unwanted emails calls and texts to the accounts and devices I pay for including reporting to a parent company if the website does not respond so I would like to know more about involving interpol? Is it because the crook is using a telco overseas and masking number?
I'm in Australia the scam site was listed by the Australian government "scam watch" and Australia post (for over 12 months).
https://auspost.com.au/about-us/about-our-site/online-security-scams-fraud/scam-alerts
I just looked up (Google) Interpol Washington which sent me here!
The Registrar was in the USA.
https://www.justice.gov/doj/webform/your-message-department-justice
The site was taken down by next day.
To send a mobile text/SMS to your email just hold your finger on SMS till it gets shaded (mine goes blue)
Then click share and email to your your email address, makes it easier to find the registrar of web sites. If they have one if not lookup the IP address to get the ISP abuse address. -
1 hour ago, RobiBue said:
btw, I'm not sure, but for some people IP means Internet Provider (omitting the Service part in between) instead of what others know as the Internet Protocol address... ¯\_(ツ)_/¯
ISP is internet "service" provider. The context of conversation show clue to most?
In this thread context it meant "IP address".
Used to use mail programs to get email to computer, they always downgraded them till they fell over.
Just use Gmail webmail now. -
11 minutes ago, gnarlymarley said:
Can you tell where the bounce is coming from? It does appear SpamCop is sending through 68.232.143.151 (A cisco IP that is filtering outbound reports) which might be filtering reports and flagging for containing spam. I think they added that server around March 27th.
I believe it was fixed, problem was poster
-
13 hours ago, ninth said:
Not once have the cops sent a report to the registrant since I have been sending in spam which has gone from one per hour to one a day if that.
Correct times have changed SpamCop has not!
It used to be reporting to the IP was all that was needed now it is not. -
1 hour ago, Outernaut said:
I gather you mean 'The ISP won't take action' not IP. Two different things.
You said..."send directly from my email address sometimes". Do you know where I may find the step x step to send via email (Thunderbird) client instead of reporting via site?
TIA,
~o
I meant what was written
A website domain connects to a IP the abuse address has to go through the registrar
to get the abuse address of the registrar
I use a windows free app
http://www.gena01.com/win32whois/
It is not any good reporting to the abuse of a webstes domain IP unless it is operated with no registrar!
Read a book you don't seem to have a grasp of what is said here? -
17 hours ago, ninth said:
Websites are the responsibility of the hosting service not the domain name registrar and often the host will then contact the customer who owns the server to remove the website if it is involved in abuse. Abuse reports to registrars go in the bit bucket unless it relates to the registration process and they do not reply to or pass on reports. Note that giants like AWS and google host themselves.
I report spam directly to a company harbouring criminals and they refuse to cooperate I send the report again with the host abuse email to get action. I try to use the online form if available with a temp email to stop getting more spam. Today I managed to fill it out the form all in japanese except the link and my email! Fingers crossed.
Seems you are wrong.
The IP won't take action on websites at the IP address.
Registrars are the ones to complain to the owner/operator of website IP won't
SpamCop reporting IP address's of websites is near worthless
Why I send directly from my email address sometimes -
30 minutes ago, RobiBue said:
and I just reported spam, one through copy&paste, the other through e-mail submission. both work correctly.
Maybe that triggers the BOT SpamCop into working correctly?
Don't get much spam nowadays I kill them and those that know them!
A while ago I got a scam Mobil text with website I reported site to Registrar they replied I was mistaken so I reported them to Interpol!
Mystically the Registrar replied quickly after Interpol report they had taken the site down! -
1 hour ago, ninth said:
The app has a help option to contact a SC rep regarding support. If I get an operator error the forward email message is sent whether I use the app or not to report.
SpamCop has been left on auto mode for years noe, in it's hay-day it had plenty of volunteers to keep it up to date, not now!
In you OP you explained
QuoteQuote- Open SpamCop, login
- Click Paste into the reporting box and hit process.
- Then when SC is done processing it, I add to the comment or usually just press the Send report.
- Done, move on to the next or logout.
Which is what I do, but now you have to check BEFORE you bother the abuse address is correct often it's not!
https://tinyurl.com/2pncp5cc search for databases
Go back to doing that! -
8 hours ago, RobiBue said:
just a small clarification:
if an email has only headers and no body, SpamCop will complain and not parse the email. if there is no body, add a blank line after the headers and a text like petzl says "tuncated [x] lines" or "email body truncated" or something else so that the parser can analyze the headers correctly.Thanks this is how it's done
This is a tracking url first link it was a very long spam that SpamCop would of truncated
https://www.spamcop.net/sc?id=z6848167086z4fd3246162889f224c7b489230c6f6f0z
Full report of what I sent and pre-TRUNCATED very bottom of page
https://www.spamcop.net/sc?id=z6848167086z4fd3246162889f224c7b489230c6f6f0z;action=display -
1 hour ago, Outernaut said:
p.s. I checked the mail server. It's not mailing the reports. So, what changed at SC?
If it went down and bounced SpamCop stops sending,
You need to first go to SpamCop reporting web page past your headers in box and parse
Learn what is happening
This is a tracking url first link it was a very long spam that SpamCop would of truncated work it out??
https://www.spamcop.net/sc?id=z6848167086z4fd3246162889f224c7b489230c6f6f0z
Full report of what I sent
https://www.spamcop.net/sc?id=z6848167086z4fd3246162889f224c7b489230c6f6f0z;action=display
-
2 hours ago, ninth said:
If not in a hurry should I send the whole lot to be more effective? Excerpt from report:
Finding links in message body
Parsing HTML part
Reducing redundant links redacted
Resolving link obfuscationSpamCop is not good at parsing links (it just send to IP address when it should be sent to the registrar)
SpamCop is good at reporting where the email is SENT from'
Headers with blank spam body and the word truncated s lines under headers -
1 hour ago, ninth said:
I send the raw message via email because it is usually too big to copy into the reporting box. The cops send me an email with a link and I log in and go from there.
OK SpamCop has a maximum size limit if you have such just report the headers of that spam THEN below headers push enter twice and write "TRUNATED"
-
32 minutes ago, Outernaut said:
Sorry @petzl I've no idea what you mean by pay. Pay who, pay what, pay for every report, and is this a new thing about pay? The only "pay" I've seen is to pay to get rid of the delay screens. Last time I used a cheque was about 20 years ago. I haven't seen a pay gateway here.
Like I stated, I never had this happen until a few days ago. And as I pointed out, the reason I was given was to use "a MIME attachment". "attachment":; this too is new to me.
How much to whom using what payment plan?
~o
Must be an Australian-ism as in "pay to (do something)"?
Just send a tracking URL is all that's needed
-
1 hour ago, Outernaut said:
Hi,
I am now getting reports from SC that spam reported to SC is not sent.
How I have always sent them:
- Recognize spam in email
- I view the "email source" (full text view)
- I select All, and Copy
- Open SpamCop, login
- Click Paste into the reporting box and hit process.
- Then when SC is done processing it, I add to the comment or usually just press the Send report.
- Done, move on to the next or logout.
Now the SC message that it didn't process, and assumes I used HTML. I don't, it's pasted as "plain text".
This is how I have been doing for what, 3 or 4 years now.
The SC email report sent back reads:
Primary and original reporter of email redacted.
Is there something I should be doing different now?
Thanks for all your work,
~o
Pay to send a Tracking url alays at top of page before you submit
-
8 hours ago, Nada Ameen said:
how can I know if the spam stop through IP ?
Sorry used a members link seems the IP is still flooded with spam attack/s
https://www.spamcop.net/w3m?action=checkblock&ip=149.72.126.143
Click the link is this a shared IP or has your computer been compromised.
You really should look for a better ISP one that accepts abuse reports and looks at it!
That's assuming you are not the cause? In which case you need to clean up your mailing list to legitimatize it.
You a email marketer, if so you need to learn how to do it
https://blog.hubspot.com/marketing/double-opt-in -
2 hours ago, Nada Ameen said:
How can I stop it ?!
If it's any way you can help me to whitelist it please do itSpamCop stops when the spam going through IP stops after 24 hours.
At present 9 hours to go
https://mailsc.spamcop.net/w3m?action=checkblock&ip=149.72.126.143 -
52 minutes ago, ninth said:
Also on spam.dnsbl.sorbs.net
Hitting spam traps which mean dictionary attack and or email poison scraped from spamtrap websites
Image-only spam?
in SpamCop Reporting
Posted
Thanks I'm in Australia not impossible but unlikely for me to get parcels from them.