gnarlymarley
-
Posts
839 -
Joined
-
Last visited
Content Type
Profiles
Forums
Events
Posts posted by gnarlymarley
-
-
As a side note, you can use one of the following commands to see if it is listed.
dig txt 245.158.60.187.bl.spamcop.net nslookup -type=txt 245.158.60.187.bl.spamcop.net
-
403 usually indicates an authentication issue. Lets hope it stays working for you.
-
1 hour ago, Casper said:
I see that it has been fixed already, but the NS records still are live are live on my upstream DNS resolver.
NS records such as pointing to dns1.name-services.com ? The working NS records should be pointing to such as use1.akam.net.
-
37 minutes ago, ZapZombie said:
I just could report spam.
As a reminder you can visit all your older tracking links and submit them if you haven't already done so.
-
I currently don't have any problems. Been a while since I have seen this message.
-
I think my DNS cache is cleared now and it appears to be working. Does it work for you now?
-
I think my DNS cache is cleared now and it appears to be working. Does it work for you now?
-
I think my DNS cache is cleared now and it appears to be working. Does it work for you now?
-
Hmmm, seems there is a problem with the blocking list. I dropped a note to deputies[at]admin[dot]spamcop[dot]net and I hope it goes through.
C:\>dig 444.333.222.111.bl.spamcop.net any ; <<>> DiG 9.7.3 <<>> 444.333.222.111.bl.spamcop.net any ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 37143 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;444.333.222.111.bl.spamcop.net. IN ANY ;; ANSWER SECTION: 444.333.222.111.bl.spamcop.net. 1493 IN A 91.195.240.87 ;; Query time: 27 msec ;; SERVER: 192.168.16.1#53(192.168.16.1) ;; WHEN: Sun Jan 31 08:53:18 2021 ;; MSG SIZE rcvd: 64 C:\>
SpamCop always has returned an IP in the localhost range. My fear is something may have been cached for a period of time and I hope this doesn't take a few days to resolve.
-
You say that your IP is not listed on the blocking list. There may have been some sort of DNS problem. Try checking your IP using dig or nslookup to see if that could be the issue.
C:\>dig 444.333.222.111.bl.spamcop.net ; <<>> DiG 9.7.3 <<>> 444.333.222.111.bl.spamcop.net ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 63152 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;444.333.222.111.bl.spamcop.net. IN A ;; ANSWER SECTION: 444.333.222.111.bl.spamcop.net. 1800 IN A 91.195.240.87 ;; Query time: 195 msec ;; SERVER: 192.168.16.1#53(192.168.16.1) ;; WHEN: Sun Jan 31 08:48:11 2021 ;; MSG SIZE rcvd: 64 C:\>
yeah, the 444 is not a valid octet and spamcop is returning everything is on the blocking list. You may want to send an email to deputies[at]admin[dot]spamcop[dot]net.
-
should be returning something in the 127.0.0.1/24 range. 91.195.240.87 appears to be tied to enom.com.
-
I see different abused addresses on your list such as eonix, layerhost and heficed.
104.140.0.0/16 net-admin@eonix.net
104.140.84.0/23 net-admin@eonix.net
104.148.28.0/24 abusenoc@layerhost.com
104.206.117.32/27 net-admin@eonix.net
104.206.96.0/22 net-admin@eonix.net
104.223.153.0/24 abusenoc@layerhost.com
170.130.0.0/16 net-admin@eonix.net
191.101.128.0/21 abuse@heficed.com
23.228.64.0/18 abusenoc@layerhost.com
23.231.0.0/17 net-admin@eonix.net
50.2.0.0/15 net-admin@eonix.net
50.2.188.0/22 net-admin@eonix.net
50.2.212.0/22 net-admin@eonix.net -
9 hours ago, emanmb said:
I guess reporting spam to Google isn't appreciated anymore. Got this when reporting today. Similar to the twitter_doesnt-care-about-spam report address.
I noticed per the following post, it the google side appears to have been resolved.
-
6 hours ago, petzl said:
50.31.49.42 listed in bl.spamcop.net (127.0.0.2)
If there are no reports of ongoing objectionable email from this system it will be delisted automatically in approximately 20 hours.Yep, it is listed.
10 hours ago, noisydaddy said:Any insight on how to solve this "blocked-but-not-listed" problem is much appreciated.
I have also seen where some is using their own blocking list, but giving the message as coming from bl.spamcop.net which can be confusing.
If there are no reports of ongoing objectionable email from this system it will be delisted automatically in approximately 19 hours.
Must have had some spam go out as it appears to have restarted the counter about an hour after petzl posted.
-
51 minutes ago, fliptop said:
One would think google would *want* to not allow spam to originate from their servers.
Normally people don't like abuse, but if they get bought out by their customer anything could be possible.
-
I am not sure I would say google is a spammer's delight. We still have the blocking list. As long as we have enough people reporting. Hopefully this is temporary and the deputies might be putting in something that fills out the abuse web form.
-
A tracking URL would be helpful.
6 hours ago, sc_aswglo said:Is Spamcop saying that Google doesn't care anymore?
From what I can see from https://www.spamcop.net/sc?track=8.8.8.8, it would appear that there might be a manual entry put in by deputies[at]admin[dot]spamcop[dot]net.
-
5 hours ago, Tau said:
2) one of the images source in the message is: https://im.salespoints.co/u3055/5fd76d2df0ddb-684x0.jpeg (fake Amazon reward).
Shouldn't the admin of this network receive also a report? Or is this website directly related to the spammer?
Probably a good idea, but SpamCop doesn't prioritize body links. Apparently they only catch "a href" links and not "img src" tags.
-
22 hours ago, MarkA said:
It's broken some place but nobody wants to take ownership, see it through and fix it. SpamCop doesn't work any more with DreamHost.
You may want to strip off the "bad" received record and then submit. That should get you past the point where SpamCop has the problem.
-
On 1/13/2021 at 11:53 AM, xebeche said:
SpamCop forwards them to abuse@microsoft.com. Usually, after a few days I get a message from cdoccm@microsoft.com saying:
QuoteIf these are replies to your reports, I see in my spamcop account preferences I have "Forward only replies from sentient people" under report handling selected. I don't get very many replies from the reports that I send. So far, I have no replies for anything I have sent to abuse@microsoft.com.
-
On 1/16/2021 at 3:03 PM, ford78 said:
Anyone knows how can I try to contact them? on gremli.ru web Page there's nothing available (an email, or a form, nothing) to contact .
Apparently, they don't have a contact directly, but they do have who added you to the list with a contact in the database file. Per http://drbl.gremlin.ru/en.html, it appears, you need to download the .tar.gz file and it has a contact person inside it.
On 11/7/2010 at 10:53 AM, Farelf said:The point is you need to interrogate the data to find out who added you to the bl and write to them, not gremlin, per the FAQ http://gremlin.ru/soft/drbl/en/faq.html#howtogetout.
Currently at that FAQ page, the link is under the software section at "'Download drbl.tar.gz".
Delisting requests are accepted only from network administrators according to the whois information. If you aren't the network administrator, don't try to "jump over a head": the effect will be null or even negative.
Because of too many issues with blacklists, I have moved to a scoring system instead of straight up blocking. Meaning an IP would have to show up on more than one blacklist before I block the email.
-
10 hours ago, giamar2000 said:
but no code is displayed.
I see something on mine. Some have mentioned problems with chrome and other with firefox.
It would be nice if the links were corrected, but I think they were broken some time back in one of the "upgrades".
-
1 hour ago, bretmaverick999 said:
So here's the thing, http://eonix.net/ displays a webpage that says the domain has expired (there's a link to renew it http://enom.help/renew-faq) so you can't even view Acceptable Use Policy webpage.
Yeah, the domain expired on 1/14. Spammers like these domains since the registrars don't have a temporary SPF or DMARC record. Effectively it gives the spammers free reign of the domain.
1 hour ago, bretmaverick999 said:Yes, one possibility is to wade thru 200 spam emails a day and just "take it". But, there has to be some other avenue to persue - FCC? FBI? Any suggestions? I did find that ARIN has a way to Report Whois Inaccuracy and I'll be using it to report that Eonix's contact info is invalid.
If it is only an IP or two and you have the ability to block them, I would suggest you put a block on there for a few days. One thing you can also do is to use a BGP looking glass and head to the upstream provider with your abuse logs. The bigger ISPs are usually good at fixing the problem with the smaller customer ISPs.
-
7 hours ago, Raccoon said:
As for the user with the most issues, The problem is that they possibly have a virus? I believe their windows laptop stopped working so she started using a Mac.
The cause of listing section says that spam is being received by spamtraps and users coming from 208.180.40.71.
Causes of listing System has sent mail to SpamCop spam traps in the past week (spam traps are secret, no reports or evidence are provided by SpamCop) SpamCop users have reported system as a source of spam less than 10 times in the past week
I have seen where a virus, malware, spyware, or router can be remotely controlled and then the hacker uses the device to send spam. If that is an open MTA, then anyone can connect and use it it to send spam. I see the time is changing between 23 and 22 hours, so it would appear that the spam action is still going on. According to the neighborhood section of https://www.spamcop.net/w3m?action=blcheck&ip=208.180.40.71, I do not see 208.180.40.68 listed. It would appear to be almost all is from 208.180.40.71. Securing that IP, and/or the router in front of it should help eliminate the spam that appears to be coming from it.
"An error occurred while processing your request."
in SpamCop Reporting Help
Posted
One of the biggest issues of this problem is that people might stop relying on one blocking list to stop their spam. People will move to a scoring system that uses more than one blocking list or else stop using black lists.