Jump to content

Steve

Members
  • Content count

    30
  • Joined

  • Last visited

Everything posted by Steve

  1. Of course it's an ocn.ne/ad.jp email. I don't bother reporting to them anymore because I find it pointless. I also reported it to netabuse (at) mtn.bj, but as you all know, they're notorious for not dealing with spam very well. I tried reporting to UBA's security email that I found doing a Google search and this is the result Gmail's mailer-daemon sent back: Original email: Delivered-To: x Received: by 10.55.27.222 with SMTP id m20-v6csp390695lfi; Tue, 22 May 2018 04:17:36 -0700 (PDT) X-Google-Smtp-Source: AB8JxZpYbvb6tOhQ+iZm9i/WTdteOSq3c4khjtYYTyC0U88eDbOBeooA888yF+t/0UxRT/np7P7W X-Received: by 2002:a63:7c0b:: with SMTP id x11-v6mr18459486pgc.384.1526987856201; Tue, 22 May 2018 04:17:36 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1526987856; cv=none; d=google.com; s=arc-20160816; b=jotNUqh782Or1fxX2A+r16K8REfifvVQHUFk5z9gyfBJuv9fVGAP0qgRPnjo4mlJlm 5YHfAR2j+kzg//ih9YB/fNpUmB729kKKSfQ5xmy85c9ocuiieMz1ecmflWftDgmq0zZt ua3SRaWu+/U51hn2R73K/de9iT02t1D57414RVDakaMz2x2Ff/mf+JjI+1+HSBH4ks0c Mt/Ch7XCfglJUNJl2qNlsBwzd2es8/8rWynsVjdv6BfyYMYTWc5Vda9xPSfUfZJZRTwM IoSDNFFFcgvewA9H8VXA04Cwoz9NY2SAysTZj9TyYRNJjI1C8zilRSMwrDytlSbZ9WoN 7bpQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=content-transfer-encoding:mime-version:subject:message-id:reply-to :from:date:arc-authentication-results; bh=LpXfDxdLzWxwHrFw1Qk9sqc0koHX4eJzLDY8tHHwhoo=; b=hOlAaQ8hWmtbEqeXcXlD0sYdvmdc30qlaSZMbFzJ+6d2giVZqBMmbmBVpMHj4KoQiO RLPsiMKUgcmBnHz8CeqGeJIjU+Zx78n91u+2hJRwIlmsVz7DXdXoWouGMvFNVwdU0LQZ 6GQehGfouDlQGGKOHI+XO4IvcWjgt94jseISgkqAPFx351PaFRYBpFlvnaOtYr8yD1Lc GYzktMwi0v9FVN1HZyX9lojZgz5fnqsJ0D/d1FjPiAdHQekp5QrcLfT1ehd161lEYL0P 7IxJLb8dgGDSG+1BNCrAJffzoPYGyTsD+l7Qyl16mqbM9hNktalB1qTiXvluMpBaSpcj 815Q== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: domain of www.@miracle.ocn.ne.jp designates 153.149.233.15 as permitted sender) smtp.mailfrom=www.@miracle.ocn.ne.jp Return-Path: <www.@miracle.ocn.ne.jp> Received: from mbkd0214.ocn.ad.jp (mbkd0214.ocn.ad.jp. [153.149.233.15]) by mx.google.com with ESMTP id z18-v6si16038914pfd.357.2018.05.22.04.17.23; Tue, 22 May 2018 04:17:36 -0700 (PDT) Received-SPF: pass (google.com: domain of www.@miracle.ocn.ne.jp designates 153.149.233.15 as permitted sender) client-ip=153.149.233.15; Authentication-Results: mx.google.com; spf=pass (google.com: domain of www.@miracle.ocn.ne.jp designates 153.149.233.15 as permitted sender) smtp.mailfrom=www.@miracle.ocn.ne.jp Received: from mf-smf-ucb035c3 (mf-smf-ucb035c3.ocn.ad.jp [153.153.66.232]) by mbkd0214.ocn.ad.jp (Postfix) with ESMTP id 0E1A418D8F6; Tue, 22 May 2018 20:17:23 +0900 (JST) Received: from ntt.pod01.mv-mta-ucb022 ([153.149.142.85]) by mf-smf-ucb035c3 with ESMTP id L5IAfKI3F3vLcL5IAf4CBa; Tue, 22 May 2018 20:17:23 +0900 Received: from vcwebmail.ocn.ad.jp ([153.149.227.167]) by ntt.pod01.mv-mta-ucb022 with id pPHN1x00F3dLKTM01PHNBl; Tue, 22 May 2018 11:17:22 +0000 Received: from mzcstore202.ocn.ad.jp (mz-cb202p.ocn.ad.jp [180.8.111.9]) by vcwebmail.ocn.ad.jp (Postfix) with ESMTP; Tue, 22 May 2018 20:17:22 +0900 (JST) Date: Tue, 22 May 2018 20:17:22 +0900 (JST) From: "Mr.Emanuela Guidobaldi" <www.@miracle.ocn.ne.jp> Reply-To: "Mr.Emanuela Guidobaldi" <ubabnk0012@live.fr> Message-ID: <114857748.28834412.1526987842427.JavaMail.root@miracle.ocn.ne.jp> Subject: Attention:My dear MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-2022-JP Content-Transfer-Encoding: 7bit X-Originating-IP: [197.234.221.192] Attention:My dear I waited for your message as you told me with none received. Remember, i supposed to have traveled last night but the weather is too bad. I will be leaving to Paraguay tomorrow. Meanwhile, contact the Bank manager with below address, i have kept the cheque with them at amount of USD4.5Million. They will either mail it to you or remit it for transfer depending on how you want it; Mr.Emanuela Guidobaldi united bank for Africa -(UBA) E-EMAIL US:ubabnk0012@live.fr
  2. Are emails with this string of IP addresses originating from Benin and OCN is just used to send the emails?
  3. Why is it only blacklisted at abuseat and nowhere else? Is there a reason for that?
  4. 😂 Here's the Tracking URL. Feel free to remove what you need from the URL after examining the report: https://www.spamcop.net/sc?id=z6466108812zeb3430e28af1b6f93be3ffdc98bf48c7z
  5. Steve

    Why does abuse@amazonaws.com get /dev/null?

    Unfortunately, you can no longer use KnujOn to submit spam:
  6. I am able to parse said spam (Headers below), but it stops at Parsing header: How can I correct that? Headers are included. I did a whois and found the ISP responsible and reported it to them manually. Let's see if they take action against their subscriber. Steve Delivered-To: x Received: by 10.55.27.222 with SMTP id m29-v6csp8801729lfi; Thu, 17 May 2018 13:33:58 -0700 (PDT) X-Google-Smtp-Source: AB8JxZp8zZ9h1HZvIRXLiwYIHrWbByUwIg/wb8cVmHln27j3U2TCnavq4fOFUD4KrE66YfvhxZee X-Received: by 10.55.27.222 with SMTP id l70-v6mr2894860wma.96.1526589238124; Thu, 17 May 2018 13:33:58 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1526589238; cv=none; d=google.com; s=arc-20160816; b=OWW4pBTW4xIeQT4z+ENfKQ41+sxZs3kIgUSmTXoq1lZxWcb4cV63c8FdgW2gqn1UIx H0SRHSUx7/qcEc5NPdOWJRL9jTT/vFHbWYiadjBstEIpZJHcE87JvPdGXRpuEwQB6vyA 3yLdeVuX3nNN/VOEunMRmU1Wqa61wazTEKL88U8S2QgUhw6p0aRJkdwmI9it15q5jgb8 qOGfNj9w9lpzlpeTmEwPxMrzoGj6H9GC05RjybSPhOAVPvbXnSVt5NygDiRb8Rue5Ml7 13mnTKPX6c/vZIFtESSXBShfXm44UiYGzz2BUHNJGZmGg59uGH2/OQ+LcGfYUD/Ywoe4 +sOQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=reply-to:date:from:to:subject:content-description :content-transfer-encoding:mime-version:message-id :arc-authentication-results; bh=L5uQ3847lKTJi/kJp19g4fX3RH2jLJb88lusCo/eV7c=; b=LlkKcGOIU4wFoyk3oWaF+cfeAJA/fPUmp2klnW4laDVutyd8n2RzIfMFlYPtZlIBzE rfybGJb+F1Rm5nXfYAlwchWc0g1mbHH4kmbLNmWXBkU6Bb+5DOf0H+TznKhGnXJJpLzq Jmjx53BIhiep9bXKCUgbsEhYpvhmPBb5sJejfz+cbx9O5T5lCVibiQnZQBWvVYqCz9id DSkWl6KlEIMgS9WPvuLbBetV7V/45Gd2TOm+fW9ctA6obJPFAgH10+mydaEEQYL5aSbJ G93euR9PfdPBO6ulgHkahdC2Pwhe66OWsxZb/vLGJss3AXnJ/oOJk5zrfb8ZVy5EMBkO 4QTQ== ARC-Authentication-Results: i=1; mx.google.com; spf=fail (google.com: domain of info@lee.com does not designate 62.138.219.247 as permitted sender) smtp.mailfrom=info@lee.com; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=lee.com Return-Path: <info@lee.com> Received: from mail.desync001.de (mail.desync001.de. [62.138.219.247]) by mx.google.com with ESMTP id v1-v6si4975708wrm.195.2018.05.17.13.33.57 for <x>; Thu, 17 May 2018 13:33:58 -0700 (PDT) Received-SPF: fail (google.com: domain of info@lee.com does not designate 62.138.219.247 as permitted sender) client-ip=62.138.219.247; Authentication-Results: mx.google.com; spf=fail (google.com: domain of info@lee.com does not designate 62.138.219.247 as permitted sender) smtp.mailfrom=info@lee.com; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=lee.com Message-Id: <5afd________________________________________SING@mx.google.com> Received: from .desync001.de ([192.168.1.190]) by desync001.de.de with MailEnable ESMTP; Thu, 17 May 2018 22:28:51 +0200 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable Content-Description: Mail message body Subject: Re:STOP CONTACTING THE WRONG OFFICE FOR YOUR FUND (EFCC RECOVERY FUND UNIT) To: x From: "Mr. Ibrahim Magu" <info@lee.com> Date: Thu, 17 May 2018 22:28:51 +0200 Reply-To: mrfrey_h.nelson@outlook.com X-ME-Bayesian: 0.000000
  7. Tracking URL: https://members.spamcop.net/sc?id=z6465604558z5ab95166bf3bae4516ce1f776a969a26z ARC-Authentication-Results: i=1; mx.google.com; spf=fail (google.com: domain of info@lee.com does not designate 62.138.219.247 as permitted sender) smtp.mailfrom=info@lee.com; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=lee.com I tried parsing the email with the above omitted and got this: Parsing header: This header is incomplete. Please supply the full headers of the spam you're trying to report. No source IP address found, cannot proceed.
  8. Steve

    Spamcop cannot find source IP

    I'm seeing this iPv6 address (fake Gmail header) not only in my spam messages but in legitamate Yahoo group mail as well. Here is an example of the legit email. There is no reason to report it because it is not spam. I have tried creating a new mail host to correct this problem to no avail. I use an IP address from a previously submitted spam email that i replaced with the iPV6 address and the emails parse correctly. Should I remove the 1st received line and see if that works? Steve Delivered-To: x Received: by 2002:a19:166a:0:0:0:0:0 with SMTP id m103-v6csp308577lfi; Fri, 18 May 2018 20:52:31 -0700 (PDT) X-Google-Smtp-Source: AB8JxZqZhKxgJPozDn7VlZDHQcvaO/mndBXJEXu+WkWepbo1UGAcSzdIXi+e7kcnx4t7rPiiz0ed X-Received: by 2002:a37:1302:: with SMTP id d2-v6mr11116097qkh.258.1526701951382; Fri, 18 May 2018 20:52:31 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1526701951; cv=none; d=google.com; s=arc-20160816; b=fmz/DfU2KgjHK0Onblr49wH8EvYXnw4e39/i/XXtV94B2DMtPo0zJy3Nk2UJD0Konv 18ndrd8U+Am8VORPURGyeLSIy9pu/QBCcZyW4UoOcfiYzx9pa/4ib90PE7wPpq3IOC+L 2DRinVH6CY+yQXRRGt6qcFbNA3JVtDK/U8fIgOF6Dwuu/kih7BUGxgdQQboqHyDQDxZZ zoAhXzoKDbCoiDw+C3xgEp2WMxW4b7jQYXpjmdCuBr1NKs8Nzd/GG3Ss290opUhZn57b lctdgJk54tOPS95pM6uN8/6OErDVwDkYLytgjIGuH+SnT8mN2W1tUkQeMaeETt9HgVHx GOpA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=reply-to:subject:date:list-unsubscribe:precedence:list-id :delivered-to:mailing-list:mime-version:sender:from:to:message-id :dkim-signature:arc-authentication-results; bh=k01CHzPB/FoY7WSMqVUKE2h5MfGDrtUu3QB/Ei3eIm8=; b=tqmhv0W8NE2gRcvNncYUOLiIP9WbKnQougQA+hd0jXxKgSDEXipVlIFxixh8fm5SJm TRkdqtbh/CIDJhIje6K3gVXBJcwDnzoKG3bCiHnNLmUHdU1hNcfsBoupRkM5mrite/Ao zQu6zigfVtNCFYt3VMj8EDElOO7fVFPkOv7Xmak1PPzbrsdhPY/vhiFfH0a6MpSrBUEV Mz3il6EahwgQxtEq5W2E68WMMYfCwwA+uk/ltfbFCtBKGiH2pBU1uOWvxYMu8n62O/7w r8fzzJB+T6FDu0tPTJcKn2qe3J6v7ZaYqgiJ2UpVmdOIrm7UezH8lhBbly5041OpbNIe VhIw== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@yahoogroups.com header.s=echoe header.b=e678n08E; spf=pass (google.com: domain of sentto-32753851-279706-1526701944-@returns.groups.yahoo.com designates 74.6.128.213 as permitted sender) smtp.mailfrom=sentto-32753851-279706-1526701944-@returns.groups.yahoo.com; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=yahoogroups.com Return-Path: <sentto-32753851-279706-1526701944-@returns.groups.yahoo.com> Received: from sonic320-32.consmr.mail.bf2.yahoo.com (sonic320-32.consmr.mail.bf2.yahoo.com. [74.6.128.213]) by mx.google.com with ESMTPS id n64-v6si8968028qkf.210.2018.05.18.20.52.30 for <x> (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Fri, 18 May 2018 20:52:31 -0700 (PDT) Received-SPF: pass (google.com: domain of sentto-32753851-279706-1526701944-@returns.groups.yahoo.com designates 74.6.128.213 as permitted sender) client-ip=74.6.128.213; Authentication-Results: mx.google.com; dkim=pass header.i=@yahoogroups.com header.s=echoe header.b=e678n08E; spf=pass (google.com: domain of sentto-32753851-279706-1526701944-@returns.groups.yahoo.com designates 74.6.128.213 as permitted sender) smtp.mailfrom=sentto-32753851-279706-1526701944-@returns.groups.yahoo.com; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=yahoogroups.com DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoogroups.com; s=echoe; t=1526701949; bh=k01CHzPB/FoY7WSMqVUKE2h5MfGDrtUu3QB/Ei3eIm8=; h=To:From:List-Id:List-Unsubscribe:Date:Subject:Reply-To:From:Subject; b=e678n08EObXHOHyU9pr4n0wbc4OpQaPSfDZH5UplSu4yv+07ErROkQMMGFiscyIKFB8G3iIHH5T1g0KjoM6izM3RJUrhIWzSWRsc4bG81ftAAj65uoBNtem5y/X12wYgp33JQk+hGdJXWeE9WTXghcVV32IyFEWAJ8U15mOoSvE= Received: from sonic.gate.mail.ne1.yahoo.com by sonic320.consmr.mail.bf2.yahoo.com with HTTP; Sat, 19 May 2018 03:52:29 +0000 X-Yahoo-Newman-Id: 32753851-m279706 X-Sender: hera319@gmail.com X-Apparently-To: tv-rain@yahoogroups.com X-Received: (qmail 25731 invoked by uid 102); 19 May 2018 03:52:23 -0000 X-Received: from unknown (HELO mtaq5.grp.bf1.yahoo.com) (10.198.29.78) by m13.grp.bf1.yahoo.com with SMTP; 19 May 2018 03:52:23 -0000 X-Received: (qmail 21238 invoked from network); 19 May 2018 03:52:23 -0000 X-Received: from unknown (HELO mta1003.groups.mail.bf1.yahoo.com) (98.139.170.167) by mtaq5.grp.bf1.yahoo.com with SMTP; 19 May 2018 03:52:23 -0000 X-Received-SPF: pass (domain of gmail.com designates 74.125.82.54 as permitted sender) X-YMailISG: IqgDyNcWLDu1rHzVLqZrvMwnJpU5fAgygFnIy2aNwA4hXtIa prSYIzralUss4_M8NV07Z.C1wxMEY_6DXxn651Rsdb4t6BEBYkWL6pf87iW9 wZ3f4Dapv4cEqcXEPhYZUxZiv0MujQELl_aK82gObY4hs.BXHjSoBjzGRo7v LFX9PxkyvCCDZO7mVujgYA3uyiM1aWhkjmG5vC0wBcyEwXmzbF.kSpXVQzRm 4aXtBSoJSoVrQ0YYUg0zKfCIPIsfTK4EXRUqC2Pjrkq_tSN5QGfG_O.tjBO6 AS_e9F5AmCYZsIZwfNw8vgHuIzqE3CsTILUhL5PPuY2uVHD__3nM_N65HQal GgykPzGlTxSu.KHTkWGnAte.b1KA35qAOjnV7STKCdub6Jvorc5XrBSYCBpz kvYG92IRqotK7kO.66x58X2z8wrDTY2E0PbPHjPGlJ91ZGIh4YWlkcFH5e9z ARaBAIYiWNEaTnUHHggQ2jv4.IN2ZiePKs3XFTvAbSt8YrQ_LDNYeZFEXGw6 WjwC7GBBN4t7JMRWWvlKhF7flNL.ro8dlt0gbClZ_6_Q4HjQsmKhMi1gzKsg FBBosQ1HSyPTd0JfqdubKvZoDhyDerj.HfZ8QJiP2gU3wJwr3GIC3C5jCiYe N3wY_.APdqGry8BOKPeTveOG37qPoqYuvbU5xSsly7o73vrLQda9no6EHuzU 66.MfaLxT.yrUn1jP9Cep84xcUlcEC6nUQjiC47SeKMhgZ9JEYHVdwS.HgTa CxkG08wiZs2ncEpcRLA51OqQPWIOAKuX1HIuhTRtSnWSrzv1ujOyvadPzs7B 31w3jHLNDKqMCKnaJSOQiCjan7TB.wO8OzIHe2wNlQBw4CgVDzPLN31Y7EBO eNuJwVGqljwNKyeJMOsQk2LNJvL5HYm4RdCvIOMNnBRUbfr8QI8WwG72IU9W 8XZrynTfhYs1YEItwe1x07IvIpDnp3NBJ.UV7dvFGZYyZE5C3JceXd5pduzW RsP4E2K06RVSpRXDgVmJ71s9IJil0A2OKItOxYArHz7Qz9P5Lv4Edd3iXg5x qkiluVuOA3RHiSPCTlaFHJBqmfk4tbrI_59.e6b8KZWGj8ZfPP.AxMuLtZB8 MlRG4Q7anHk6457h3yx2iP2.nA0atx6YOe30IGWUqkbnF_87uxqdtv4- Authentication-Results: mta1003.groups.mail.bf1.yahoo.com from=gmail.com; domainkeys=neutral (no sig); from=gmail.com; dkim=pass (ok) X-Received: from 127.0.0.1 (EHLO mail-wm0-f54.google.com) (74.125.82.54) by mta1003.groups.mail.bf1.yahoo.com with SMTPS; Sat, 19 May 2018 03:52:22 +0000 X-Received: by mail-wm0-f54.google.com with SMTP id f8-v6so18338063wmc.4 for <TV-Rain@yahoogroups.com>; Fri, 18 May 2018 20:52:22 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=nEgcCkOJ0rfGFKYEG6lzhdKfBKTw0dlvXiESyORuBwk=; b=UNdGnoztnBb+2bgVjopE/yM2xFeVXUwlXXHtmeclJaIyZ+vdQoBsiStzwdV72flH9t WpOtdsureUzsxyRWDsyMkZWY1tQj7P2qfAPofFqFFbcB2/UYD8K/PkBExQc/zAPGJnSZ XqqG3QCT3UxV/IUugR95D9MmA9m4IU4Qigg+tffN0G6SlFFukHLYuclJ0qisiP++jtqY m9fBdQ1Y/fnRohsIsN0PIaEApMq9KrB7vy4AQAWmLMkSbIetAub3T1EyafTBTHWQNM0F 8UaYlVgLORxEWZtCf6/1DpDz3NuVWBOjI7BJV2oJHbUjxmLn9/3F4EixullBMsPOXLhs bIsg== X-Gm-Message-State: ALKqPwcLItEyx0pIQDTmrl5npUx44Cu0y2udpu81C1o8Edd1vQ5kjb9u XEzyTs8CTSdssIZK8Mfp7A1i4Sen2GPaan/AwEuFwA== X-Received: by 2002:a50:c119:: with SMTP id l25-v6mr14820412edf.188.1526701941189; Fri, 18 May 2018 20:52:21 -0700 (PDT) X-Received: by 10.80.142.201 with HTTP; Fri, 18 May 2018 20:52:20 -0700 (PDT) Message-ID: <CAKXyOF=5MoHzyzv_WWpV-Jdo-4oqBTt9TQRn-gAqayKRctRh6Q@mail.gmail.com> To: undisclosed-recipients:; X-Originating-IP: 98.139.170.167 X-Original-From: Candygirl <hera319@gmail.com> From: "Candygirl hera319@gmail.com [TV-RAIN]" <TV-RAIN@yahoogroups.com> X-Yahoo-Profile: psp_addict4life Sender: TV-RAIN@yahoogroups.com MIME-Version: 1.0 Mailing-List: list TV-RAIN@yahoogroups.com; contact TV-RAIN-owner@yahoogroups.com Delivered-To: mailing list <TV-RAIN@yahoogroups.com> List-Id: <TV-RAIN.yahoogroups.com> Precedence: bulk List-Unsubscribe: <mailto:TV-RAIN-unsubscribe@yahoogroups.com> Date: Fri, 18 May 2018 23:52:20 -0400 Subject: [TV-RAIN]- TV - In Contempt S01E05-06 [1 Attachment] X-Yahoo-Newman-Property: groups-email-tradt-m Reply-To: TV-RAIN@yahoogroups.com Content-Type: multipart/mixed; boundary="000000000000e204db056c86fe7b" --000000000000e204db056c86fe7b Content-Type: multipart/related; boundary="000000000000e204da056c86fe7a" --000000000000e204da056c86fe7a Content-Type: multipart/alternative; boundary="000000000000e204d8056c86fe79" --000000000000e204d8056c86fe79 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable Season 1, Episode 5 =E2=80=93 Necessary Force (Air Date: May/16/18) Gwen and Tracy struggle to deal with events from their past when they defend a mother accused of child abuse. Charlie deals with the aftermath of his unfair arrest. https://mega.nz/#!H7Q0lYxQ!KZCMeuKOjCdp0Hm199e36og2nt1A0YCjI2TfcJQq9X8 Season 1, Episode 6 =E2=80=93 Banned (Air Date: May/16/18) Gwen uses an extra-judicial strategy to outwit an overzealous judge. Bennett invites Gwen to his wedding shower, where she discovers Bennett=E2= =80=99s true feelings about her. https://mega.nz/#!v3RCiDxS!NtAv1Lp5AvvOHxwZAuGlZryHkJ78B1dsPvKsvNwduUI --000000000000e204d8056c86fe79 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable <head> <style type=3D"text/css"> <!-- /* start of attachment style */ .ygrp-photo-title{ clear: both; font-size: smaller; height: 15px; overflow: hidden; text-align: center; width: 75px; } div.ygrp-photo{ background-position: center; background-repeat: no-repeat; background-color: white; border: 1px solid black; height: 62px; width: 62px; } div.photo-title=20 a, div.photo-title a:active, div.photo-title a:hover, div.photo-title a:visited { text-decoration: none;=20 } div.attach-table div.attach-row { clear: both; } div.attach-table div.attach-row div { float: left; /* margin: 2px;*/ } p { clear: both; padding: 15px 0 3px 0; =09 overflow: hidden; } div.ygrp-file { width: 30px; valign: middle; } div.attach-table div.attach-row div div a { text-decoration: none; } div.attach-table div.attach-row div div span { font-weight: normal; } div.ygrp-file-title { font-weight: bold; } /* end of attachment style */ --> </style> </head> <html> <head> <style type=3D"text/css"> <!-- #ygrp-mkp { border: 1px solid #d8d8d8; font-family: Arial; margin: 10px 0; padding: 0 10px; } #ygrp-mkp hr { border: 1px solid #d8d8d8; } #ygrp-mkp #hd { color: #628c2a; font-size: 85%; font-weight: 700; line-height: 122%; margin: 10px 0; } #ygrp-mkp #ads { margin-bottom: 10px; } #ygrp-mkp .ad { padding: 0 0; } #ygrp-mkp .ad p { margin: 0; } #ygrp-mkp .ad a { color: #0000ff; text-decoration: none; } --> </style> </head> <body> <!-- |**|begin egp html banner|**| --> <br><br> <!-- |**|end egp html banner|**| --> <div dir=3D"ltr"><img src=3D"cid:ii_jhcup5g20_163768152e22f3c7" width=3D"47= 2" height=3D"154"><br><br><div> <p class=3D"MsoNormal" style=3D"margin:0in 0in 0.0001pt;line-height:normal;= font-size:11pt;font-family:Calibri,sans-serif"><span style=3D"font-size:9pt= ;font-family:Tahoma,sans-serif"><span>=C2=A0</span></span></p> <p class=3D"MsoNormal" style=3D"margin:0in 0in 0.0001pt;line-height:normal;= font-size:11pt;font-family:Calibri,sans-serif"><span style=3D"font-size:9pt= ;font-family:Tahoma,sans-serif">Season 1, Episode 5 =E2=80=93 Necessary Force (Air Date: May/16/18)<span></span></= span></p> <p class=3D"MsoNormal" style=3D"margin:0in 0in 0.0001pt;line-height:normal;= font-size:11pt;font-family:Calibri,sans-serif"><span style=3D"font-size:9pt= ;font-family:Tahoma,sans-serif">Gwen and Tracy struggle to deal with events from their past when they defend a mother accused of child abuse. Charlie deals with the aftermath of his unfa= ir arrest.<span></span></span></p> <p class=3D"MsoNormal" style=3D"margin:0in 0in 0.0001pt;line-height:normal;= font-size:11pt;font-family:Calibri,sans-serif"><span style=3D"font-size:9pt= ;font-family:Tahoma,sans-serif"><span>=C2=A0</span></span></p> <p class=3D"MsoNormal" style=3D"margin:0in 0in 0.0001pt;line-height:normal;= font-size:11pt;font-family:Calibri,sans-serif"><span style=3D"font-size:9pt= ;font-family:Tahoma,sans-serif"><a href=3D"https://mega.nz/#!H7Q0lYxQ!KZCMe= uKOjCdp0Hm199e36og2nt1A0YCjI2TfcJQq9X8" style=3D"color:blue;text-decoration= :underline">https://mega.nz/#!H7Q0lYxQ!KZCMeuKOjCdp0Hm199e36og2nt1A0YCjI2Tf= cJQq9X8</a><span></span></span></p> <p class=3D"MsoNormal" style=3D"margin:0in 0in 0.0001pt;line-height:normal;= font-size:11pt;font-family:Calibri,sans-serif"><span style=3D"font-size:9pt= ;font-family:Tahoma,sans-serif"><span>=C2=A0</span></span></p> <p class=3D"MsoNormal" style=3D"margin:0in 0in 0.0001pt;line-height:normal;= font-size:11pt;font-family:Calibri,sans-serif"><span style=3D"font-size:9pt= ;font-family:Tahoma,sans-serif">Season 1, Episode 6 =E2=80=93 Banned (Air Date: May/16/18)<br> Gwen uses an extra-judicial strategy to outwit an overzealous judge. Bennet= t invites Gwen to his wedding shower, where she discovers Bennett=E2=80=99s t= rue feelings about her.<span></span></span></p> <p class=3D"MsoNormal" style=3D"margin:0in 0in 0.0001pt;line-height:normal;= font-size:11pt;font-family:Calibri,sans-serif"><span style=3D"font-size:9pt= ;font-family:Tahoma,sans-serif"><span>=C2=A0</span></span></p> <p class=3D"MsoNormal" style=3D"margin:0in 0in 0.0001pt;line-height:normal;= font-size:11pt;font-family:Calibri,sans-serif"><span style=3D"font-size:9pt= ;font-family:Tahoma,sans-serif"><a href=3D"https://mega.nz/#!v3RCiDxS!NtAv1= Lp5AvvOHxwZAuGlZryHkJ78B1dsPvKsvNwduUI" style=3D"color:blue;text-decoration= :underline">https://mega.nz/#!v3RCiDxS!NtAv1Lp5AvvOHxwZAuGlZryHkJ78B1dsPvKs= vNwduUI</a><span></span></span></p> <br></div></div> <!-- |**|begin egp html banner|**| --> <br> <br> <!-- |**|end egp html banner|**| --> <div width=3D"1" style=3D"color: white; clear: both;"/>__._,_.___</div> =09<a style=3D"text-decoration:none; color: #2D50FD;" href=3D"https://gro= ups.yahoo.com/neo/groups/TV-RAIN/attachments/948523067;_ylc=3DX3oDMTJyZGw5Y= 3NuBF9TAzk3MzU5NzE0BGdycElkAzMyNzUzODUxBGdycHNwSWQDMTcwNTAzNTI5MQRzZWMDYXR0= YWNobWVudARzbGsDdmlld09uV2ViBHN0aW1lAzE1MjY3MDE5NDQ-">View attachments on t= he web</a> =20 <div id=3D"fromDMARC" style=3D"clear:both; margin-top: 10px;"> <hr style=3D"height:2px ; border-width:0; color:#E3E3E3; backgroun= d-color:#E3E3E3;"> Posted by: Candygirl <hera319@gmail.com> <hr style= =3D"height:2px ; border-width:0; color:#E3E3E3; background-color:#E3E3E3;"> </div> <!-- Start Recommendations --> <!-- End Recommendations --> <!-- |**|begin egp html banner|**| --> <br><br> <tt> To our Wonderful Members who support us, we would be lost without you!&nbsp= ; <BR> &nb= sp; = YOU are the re= ason we are the BEST!<BR> <BR> &nb= sp; = ~TV-RAIN Owners & Organizing Team~</tt> <br><br> <!-- |**|end egp html banner|**| --> <!-- |**|begin egp html banner|**| --> <img src=3D"http://geo.yahoo.com/serv?s=3D97476590/grpId=3D32753851/grpsp= Id=3D1705035291/msgId=3D279706/stime=3D1526701944" width=3D"1" height=3D"1"= > <br> <!-- |**|end egp html banner|**| --> =20 <!-- |**|begin egp html banner|**| --> <br> =20 =20 =20 <!-- |**|begin egp html banner|**| --> <div id=3D"ygrp-vital" style=3D"background-color: #f2f2f2; font-fam= ily: Verdana; font-size: 10px; margin-bottom: 10px; padding: 10px;"> <span id=3D"vithd" style=3D"font-weight: bold; color: #333; text-tr= ansform: uppercase; "><a href=3D"https://groups.yahoo.com/neo/groups/TV-RAI= N/info;_ylc=3DX3oDMTJmZmFlYWIyBF9TAzk3MzU5NzE0BGdycElkAzMyNzUzODUxBGdycHNwS= WQDMTcwNTAzNTI5MQRzZWMDdnRsBHNsawN2Z2hwBHN0aW1lAzE1MjY3MDE5NDQ-" style=3D"t= ext-decoration: none;">Visit Your Group</a></span> <ul style=3D"list-style-type: none; margin: 0; padding: 0; display: in= line;"> </ul> </div> <div id=3D"ft" style=3D"font-family: Arial; font-size: 11px; margin-top: 5p= x; padding: 0 2px 0 0; clear: both;"> <a href=3D"https://groups.yahoo.com/neo;_ylc=3DX3oDMTJla2VwbjV0BF9TAzk3ND= c2NTkwBGdycElkAzMyNzUzODUxBGdycHNwSWQDMTcwNTAzNTI5MQRzZWMDZnRyBHNsawNnZnAEc= 3RpbWUDMTUyNjcwMTk0NA--" style=3D"float: left;"><img src=3D"http://l.yimg.c= om/ru/static/images/yg/img/email/new_logo/logo-groups-137x15.png" height=3D= "15" width=3D"137" alt=3D"Yahoo! Groups" style=3D"border: 0;"/></a> <div style=3D"color: #747575; float: right;"> • <a href=3D"https://i= nfo.yahoo.com/privacy/us/yahoo/groups/details.html" style=3D"text-decoratio= n: none;">Privacy</a> • <a href=3D"mailto:TV-RAIN-unsubscribe@yahoogro= ups.com?subject=3DUnsubscribe" style=3D"text-decoration: none;">Unsubscribe= </a> • <a href=3D"https://info.yahoo.com/legal/us/yahoo/utos/terms/" s= tyle=3D"text-decoration: none;">Terms of Use</a> </div> </div> <!-- |**|end egp html banner|**| --> </div> <!-- ygrp-msg --> =20 <br> <!-- |**|end egp html banner|**| --> <div style=3D"color: white; clear: both;"/>__,_._,___</div> </body> </html> --000000000000e204d8056c86fe79-- --000000000000e204da056c86fe7a Content-Type: image/png; name="image.png" Content-Disposition: inline; filename="image.png" Content-Transfer-Encoding: base64 Content-ID: <ii_jhcup5g20_163768152e22f3c7> X-Attachment-Id: ii_jhcup5g20_163768152e22f3c7 --000000000000e204da056c86fe7a-- --000000000000e204db056c86fe7b Content-Type: application/vnd.openxmlformats-officedocument.wordprocessingml.document; name="In Contempt.docx" Content-Disposition: attachment; filename="In Contempt.docx" Content-Transfer-Encoding: base64 X-Attachment-Id: f_jhcuu2bw1 --000000000000e204db056c86fe7b--
  9. Steve

    ocn.ad.jp spam

    That's why, whenever possible, I take the X-Originating-IP address and replace it with NTT's and then report the email again.
  10. Steve

    ocn.ad.jp spam

    SC NEVER picks X-Originating-IP up in ocn.ad/ne.jp emails. I almost always (99% of the time) have to re-report the emails and replace the 1st 153.xxx.xxx.x/153.xxx.xxx.xx IP address with the IP in the X-Originating-IP field so it goes to that respective ISP. Steve
  11. Steve

    ocn.ad.jp spam

    Then why haven't they stopped all spam yet despite the hundreds if not thousands of reports sent?
  12. Steve

    ocn.ad.jp spam

    Is there any surefire way to get ocn.ad/ne.jp emails to stop (of course, aside from setting a filter to send them to trash) because reporting to abuse (at) ocn.ad.jp seems like NTT doesn't give a crap despite the auto-reply email they send out. Also, why doesn't SC parse the originating IP address since that's where the emails originate from despite the spammer (scammer) using NTT's servers to send this crap?
  13. When trying to submit the below email for reporting, I get this result (bold text at bottom): How can this be fixed so that the emails get reported correctly? BTW, this address (2002:a17:902:2468:0:0:0:0), is registered to IANA. Steve
  14. Everything is good, Lking. Why is the forum set up that way? Shouldn't members be able to edit/delete their posts without restrictions? Steve
  15. There's no edit button on my original post with the copies of the emails. Steve
  16. I am unable to. There is no delete button. I am using WIN10 with Chrome. I submitted everything. No new host has shown up. Steve
  17. Mailhost I created (Gmail2) still not showing up in Mailhosts. This is really pissing me off! I had SC robot send the emails, I copied the headers and body and put them in their respective fields, submitted them all, but still nothing! If I try to do it via email, I get this error: I don't understand. I copied exactly as is from Gmail. Why would it be mangled? This happened for all emails I got from SC robot to set up Gmail 2. All 5 are included above for reference. Steve
  18. Tried to add a new host using the current email gmail address I use for reporting spam naming it gmail 2 but it didn't show up. Steve
  19. Not sure how to re-configure my gmail mailhost. There are no instructions there. Steve
  20. Steve

    ocn.ad.jp spam

    I've reported several hundered spam messages with no let up in messages being sent from their network. Here's a recent (January 8th) auto-reply email I got from sending a report to abuse [at] ocn.ad.jp through the reporting form: Whenever possible, instead of reporting emails to OCN (abuse [at] ocn.ad.jp) using the reporting from, I look for the X-Originating-IP at the end of the email and try to report it that way by replacing OCN's IP address in the 1st Received line such as the one below: Received: from mbkd0102.ocn.ad.jp (mbkd0102.ocn.ad.jp. [153.149.230.3]) with the one in the X-Originating-IP which is usually a 41.xx.xxx.x and usually, the ISP's email address that comes up is netabuse [at] mtn.bj. Steve
  21. Delivered-To: x Received: by 10.25.215.152 with SMTP id q24csp535241lfi; Thu, 24 Aug 2017 09:51:44 -0700 (PDT) X-Received: by 10.98.139.141 with SMTP id e13mr7047592pfl.192.1503593504252; Thu, 24 Aug 2017 09:51:44 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1503593504; cv=none; d=google.com; s=arc-20160816; b=fBJmIS25wTFiKufRoEtHIR4yY+RxpAmVw1qETMO6BmHmkoD/kNAByCdzdg2gLc+9OB EV5W7bmHtpyYOl7HVu+Q27UOcRSno/9RUQBhdIGmxouQDwkxgCFfIRp8NJph2zqXl347 7y14tU6P8NQ5SD9m/X3vMXFzfyOs4l28urC/MFYWzcAyKHfeEL9/JwIOjDUIB49xSTlX jjLpRDuEe2lqlwLY6w/qa8QBqqzFZ34g7OkM6AvjNFknBhjKuyD82blBy+7nhRg0vzgH PcoRRilbtrkshECm+fbMIfB8hyLBf+mMc0M/XwX3sHY3tRsnZ7zdMP44Gc/BY7mu7pNw N4Hg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=content-transfer-encoding:mime-version:subject:message-id:reply-to :from:date:arc-authentication-results; bh=rPAAmo/5jRgIb94r0jqE8K1b0fFvRv5wn0ibit2p+KY=; b=Qtk+gWgPsqzkTIZEX98e505OVUCCR7xNDkxlaxrk0tMknMfZQq+fA3QfzxdHMpoS5P Irze7G9SvkNz7aWjG46mTjiY6ouYdX6bh8hZfoO7TjCombVU9iu9jRnVhb8NT5jGaMCN Iy66gywmK36qdgd5TgkswLHZ42TqdLO6Wt2Sb1HqG+YzFlJXYpxOkICVe4vtIuVQ0esI s71PSMYp/ZsEi7+rqxjlJKl+dslH0dUtYeyfmKDoCFD85aTg5w3Tfb3rsV4ae3u+lDPe 5BSy12/zva0/BbIva4sZ/vWxXoYxUYAZnefPmLuB8Z/YvUy0ROjRx9aeq9pKHWtANcy5 iQwQ== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: domain of www.@athena.ocn.ne.jp designates 153.149.236.41 as permitted sender) smtp.mailfrom=WWW.@athena.ocn.ne.jp Return-Path: <WWW.@athena.ocn.ne.jp> Received: from mbkd0340.ocn.ad.jp (mbkd0340.ocn.ad.jp. [153.149.236.41]) by mx.google.com with ESMTP id j125si1438059pfg.305.2017.08.24.09.51.30; Thu, 24 Aug 2017 09:51:44 -0700 (PDT) Received-SPF: pass (google.com: domain of www.@athena.ocn.ne.jp designates 153.149.236.41 as permitted sender) client-ip=153.149.236.41; Authentication-Results: mx.google.com; spf=pass (google.com: domain of www.@athena.ocn.ne.jp designates 153.149.236.41 as permitted sender) smtp.mailfrom=WWW.@athena.ocn.ne.jp Received: from mf-smf-ucb005.ocn.ad.jp (mf-smf-ucb005.ocn.ad.jp [153.149.231.4]) by mbkd0340.ocn.ad.jp (Postfix) with ESMTP id 9F0BC128035D; Fri, 25 Aug 2017 01:50:59 +0900 (JST) Received: from mf-smf-ucb005.ocn.ad.jp (mf-smf-ucb005 [153.149.231.4]) by mf-smf-ucb005.ocn.ad.jp (Postfix) with ESMTP id 7C6D760709; Fri, 25 Aug 2017 01:50:59 +0900 (JST) Received: from ntt.pod01.mv-mta-ucb026 (mv-mta-ucb026.ocn.ad.jp [153.149.142.100]) by mf-smf-ucb005.ocn.ad.jp (Switch-3.3.4/Switch-3.3.4) with ESMTP id v7OGoXcD065068; Fri, 25 Aug 2017 01:50:55 +0900 Received: from vcwebmail.ocn.ad.jp ([153.149.227.165]) by ntt.pod01.mv-mta-ucb026 with id 14qu1w0013akymp014quba; Thu, 24 Aug 2017 16:50:55 +0000 Received: from mzcstore142.ocn.ad.jp (mz-cb142p.ocn.ad.jp [114.147.59.200]) by vcwebmail.ocn.ad.jp (Postfix) with ESMTP; Fri, 25 Aug 2017 01:50:54 +0900 (JST) Date: Fri, 25 Aug 2017 01:50:54 +0900 (JST) From: Taka Benson <"WWW."@athena.ocn.ne.jp> Reply-To: Taka Benson <dhlcourierservicebej@hotmail.com> Message-ID: <1703504187.5321643.1503593454940.JavaMail.root@athena.ocn.ne.jp> Subject: Information MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-2022-JP Content-Transfer-Encoding: 7bit X-Originating-IP: [5.45.62.153] Information Contact DHL Courier for your compensation Bank card valued $1,500,000.00 USD is been registered and your ATM CARD package is under Mr. Albert Godwin's care reach him via email: (dhlcourierservicebej@hotmail.com) for more information on how to claim it. Greetings, I almost always have problems getting SC to parse the X-Originating-IP in OCN/NTT emails I receive (such as the one above). I end up having to report the emails with those IP addresses separately through SpamCop to the ISP. Why won't it recognize those IP addresses? Most originate from Benin (41.xx.xxx.xxx/197.xxx.xxx.xx). In this case, when I parsed the email again with this IP address, the X-Originating-IP resulted in the email being sent to abuse@avast.com Tracking link: https://www.spamcop.net/sc?id=z6401117976z6d5deab26600019361ed7458288314dez Steve
  22. It doesn't parse the X-Originating-IP most of the time. And that message is not displayed (except for the 1st received line in all www.@xxx.ocn.ne.jp emails with "xxx" taking the place of whatever happens to be first part of the email address. In this example, fuga is in front of the ocn.ne.jp part of the email address). This example is from an email dated 8/25/17: Steve
  23. Using AOL Mail for Verizon as Verizon discontinued their webmail service. I was trying to report spam from the account on there (AOL Mail) and got this error (both sending it to the reporting address and copy & pasting it into reporting form on spamcop.net) This is my current host setup. How would I configure it so I can report spam form my Verizon address on AOL Mail? Would I have to change the Host/Domain settings? Any help is appreciated. Thanks Steve
  24. ? How exactly would I add AOL? Steve Tried the instructions in the email SC sent to my Verizon address on AOL Mail and got this error: Host mtaiw-aaf07.mx.aol.com (checking ip) IP not found ; mtaiw-aaf07.mx.aol.com discarded as fake. Sorry, SpamCop has encountered errors: The email sample you submitted for s*********@v******.net (obscured for obvious reasons - spambots) appears to traverse more than one domain. Please ensure that you configure each mailhost individually and in order. Proceed here: <https://www.spamcop.net/mcgi?mhc2=Ez2CZ0s7jSOYgdKz>
×