[What do do with Amazon hosted spammers]

In response to SPAMCOP report i got an email from <nobody@bounces.amazon.com>

Quote

Hello,

We are sorry to hear that you received unwanted email through Amazon SES.

Please note, this reporting address is only for mail sent via Amazon SES (emails originated from 54.240.0.0/18). If you have a complaint about other AWS abuse (e.g. EC2), please submit your complaint here: https://aws.amazon.com/forms/report-abuse

If you did not provide the following information, please contact email-abuse@amazon.com again with:

1. The full headers of the objectionable email message. For examples of how to find email headers, see https://support.google.com/mail/answer/22454?hl=en .

2. The type of abuse you are experiencing. For example, you didn't sign up to receive emails from the sender, the sender doesn’t have an opt-out option, etc.

Thank you for the report!

Sincerely,

The Amazon SES Team

 

what do you make of this ?

is this a generic reply they send to all reports ? 

[419 email report abuse@ocn.ad.jp auto responder ?]

Again it seem that there is no more 419 spam email originating from ocn.ad.jp so it seems that the above blitz of email reports was successful.


great job of reporting and great action taken by ocn.ad.jp admin to boot off spammers from the network and taking steps to reduce spam for the whole internet

[419 email report abuse@ocn.ad.jp auto responder ?]

can anyone confirm this ? have they really cleaned up their act ?

[419 email report abuse@ocn.ad.jp auto responder ?]

Success: i don't know what happened but following up on every case it seems that suddenly all the 419 emails from ocn have stopped 

 

previously i was getting 10 emails per day now it down to 1 email every 5 days or so. even that is an exception rather than norm.

[419 email report abuse@ocn.ad.jp auto responder ?]

here are some reports that i could find

 

https://www.spamcop.net/sc?id=z6535502494zb871e619c4e438db4c0e364bcf0816d1z

https://www.spamcop.net/sc?id=z6535365276z9b2d24e765357b41c5be1762d639d7ccz

https://www.spamcop.net/sc?id=z6534973296z58d1d6c72e4b32b2a0207867864ee351z

https://www.spamcop.net/sc?id=z6534973290z32ff72a6e38792e5f23fee8e15fb1bb0z

https://www.spamcop.net/sc?id=z6534972740z35e09f26e43570cf6508c81b434c4c5ez

https://www.spamcop.net/sc?id=z6533266450z38d022259dac8ccf2c28986bebba257ez

https://www.spamcop.net/sc?id=z6533266301z9aa87d70ce105738697b8a50a036c968z

https://www.spamcop.net/sc?id=z6533265868zcb4edea925c1a1666ae8bad7fc814ef9z

 

 

[419 email report abuse@ocn.ad.jp auto responder ?]

I apologize in advance if this is not the correct forum or if this idea is wrong or not in line with the forums guidelines ( i tried searching but could not find anything )

 

here is the basic idea : of late i have been receiving 419 scam email from the ip address  which the under the control of abuse@ocn.ad.jp  and every time i report i get a auto responded from them reproduced below 

Dear Sir/Madam,

Thank you very much for your e-mail.

We will deal with this situation once we figure out who the user is.

We are very sorry for any inconvenience this matter has caused you.


Thank you again for reaching out to us.
Respectfully,

 

now this comes with a Tracking number in the header,

 

Will it make sense to send the a report to additionally report to

info@jpcert.or.jp, abuse@ocn.ad.jp, sec@jnsa.org, info@jc3.or.jp

to compel ocn.ad.jp to find the customer responsible and terminate the connection or deal according to the AUP ?  i know this goes against spamcop's policy not to send email to people not related to the incident but this problem has not been addressed long and all the email addresses are related to cyber security incidents in japan. and I am thinking that open relay SMTP is a cyber security problem also.

would this work ?