Appleseed
-
Posts
18 -
Joined
-
Last visited
Content Type
Profiles
Forums
Events
Posts posted by Appleseed
-
-
On 11/9/2022 at 7:43 AM, Hanco said:
Tonight I had Microsoft spam, with a link to a Google document for the first redirect.
Microsoft won’t get a report
Google won’t get a report from SpamCop
Google did get a report from me and replied, “If you would like to report suspected spam, Malware, Phishing, or other abuse on Google Cloud, please fill out the form at the following link: https://support.google.com/code/contact/cloud_platform_report If you would like to send a legal request to Google, please submit a request through our webform for the fastest response time: http://support.google.com/legal”
Google, how about you deal with it ?!?!
we are officially f*****
It won't get anyreports.
EVERY answer I get is
"Thank you for reporting abuse on Google Cloud Platform.
We are not able to take action on this report since the IP mentioned in the report is not hosted on Google Cloud."
I have reported SO many phishing emails to them. They did send those and they did host the phishing site, but they don't care about that. They just say it is not their problem.
-
I keep getting that and other errors too. If you re-send the spamreport again, it should work.
-
"Sorry, SpamCop has encountered errors:
Headers mangled
It appears that the sample you provided has been altered. Often, extra
line-breaks are inserted by your software in an invalid format. Part of
the reason for this proceedure is to ensure that you and your software are
submitting spam in an error-free format. Please review the relevant FAQ
for your software and ensure you are following a proceedure which returns
intact spam content to SpamCop.
In this sample, the problem was found near the line:
via HE1PR0401CA0052.EURPRD04.PROD.OUTLOOK.COM; Fri, 22 May 2020 03:29:37"Outlook put stuff to headers. If you want to report messages from Outlook, you have to start copy paste from the last "Received: from" line in message source and ignore all outlooks stuff before that.
Still it would be nice if Spamcop could leant to do ignore that extra stuff itself.
-
On 10/31/2019 at 9:21 AM, klappa said:
Where can you find that information? Is there any other abuse address I can report to? This spammer have spammed me for years. The spammer hacks sites and e-mails and use them in a botnet.
I did find it from Google when i was looking information of this spammer.
After i started to report him to that IPv4 peer company mentioned above (thanks RobiBue), they did change it to another one. Then i started to report those spams to that one also and now i havet got any spam from that spammer.
That guy own fashion clothes store or modeling place. It could be that he is selling those poor girls irl.
Now i keep getting new kind of spam what i cant report to Spamcop. Outlook wont allow copy that email source code.
-
On 10/11/2019 at 5:34 AM, RobiBue said:
looks like their IPv4 peer is AS 31343 ( Intertelecom Ltd ) (got it from your dnslytics link
)
It seems that Intertelecom is the only peer Romanenko has, so it is likely that he is their customer... maybe they don't know what's going on in their "backyard/neighbourhood" and then again, maybe they do and the money they get is good enough for them...
Thanks
BTW. This guy have is specialized to Smoke Loader and have a huge Necurs botnet.
-
On 9/12/2019 at 9:28 PM, gnarlymarley said:
I have had much thought on this, and I no longer trust much of the addresses that are called abuse or postmaster anymore. I figure that as long as my address is munged in the report and I give out the minimal headers in the report (meaning the spam gets pulled from my border server and reported), they I am not sure it matters as they already have that information from when they connected to my email server. I myself have not seen any repeat spam to be reported to vvsg180@gmail.com, so it very well could be legit.
Ok, it seems that that guy is the same as OOO-Patent-Media etc. and their company Romanenko Stanislav Sergeevich are hosting those spamsite https://dnslytics.com/bgp/as47981
So vvsg180@gmail.com is their and also hawk@diamondc.ru and stell_hawk@mail.ru
So it is impossible to stop that spam, if SPAMCOP report to them. Just like i was guessing in my first post. Spamcop report directly to spammer itself.
If someone could find who is host behind of their IP range 92.63.192.0-92.63.192.255, then the report could send directly to that ISP.
-
18 hours ago, Lking said:
I concur. Have used them for years and have had experience getting a refund when the seller did not deliver.
They are awesome. Two times they have been refunded to me and both times they did use their own money. Even when the second one was years old payment.
-
Richard did contact me, so the case is now closed.
Problem is just if i use https://www.spamcop.net/mcgi?action=paymenu it open popup and ask credit card information. That doesent looks really safe.
Thats why i like to use Paypal. I know who is handling the transfers and that my card information wont leak anywhere.
-
15 minutes ago, petzl said:
You need to pay for Fuel here?
https://mailsc.spamcop.net/mcgi?action=paymenuIt ask log in information. Do i have a account there?
Paypal was much easier. And i already send money via Paypal, who got it?
-
I did send my receipt to you now.
I didint find the email to ask about it, but that was the same way i paid it last time.
-
I added more fuel to my account via Paypal almost week ago, but its still not added to the account.
How long does it usually takes? I did send the account name and the email address via the payment so there should be no problem with that.
-
So, is it a problem that Spamcop send reports to vvsg180@gmail.com, is it legit or not?
-
On 8/16/2019 at 11:46 PM, gnarlymarley said:
The link still forwards. Apparently, the link is a search where it clicks the "I feel lucky button" and forwards directly to the first returned google search result.
The "I feel lucky" button as being part of the URL:
btnI=bQm4Thats good to know. The site where link goes, have again the same russian owner.
-
This is same spam i get almost every day, but this one use google link instead of that russian site.
I dont know what that link does, but it is to google.com
https://www.spamcop.net/sc?id=z6566161130zd34619e4d85c8adc3716c597c9f69569z
-
4 hours ago, Lking said:
Sorry about the confusion with your post.
No problem, things happen^^
-
If you look that report by Anonymous 11 Jan 2019 https://www.abuseipdb.com/check/92.63.192.39?page=2
There is that gmail address im talking about.
And here is my report from today https://www.spamcop.net/sc?id=z6564775200zb0e68f15592a9b6948787f714e4ec177z
-
The fake date email spam (Submitted: 8/4/2019, 1:07:01 PM +0300:) i reported. There is gmail address where Spamcop send the report.
Isnt that the address of the spammer itself? Why Spamcop send the report there?
)
When did Microsoft become a spam haven?
in SpamCop Lounge
Posted
Almost all my spam at this year, after the summer, has been from Microsoft and even hosted by them.
I could get those messages 40 per day and they all are the same (most of the days only 15 or none). I have reported those to Microsoft and to those image hosting services like a Discord and Zupimages and Github.
No matter I do, Microsoft keep sending those and hosting them.
Before that they did use other services, but I managed to close all of them. It was tons of work reporting that many spam to different services. Got them sites blacklisted to some Antivirus companies too.
I am using spam[DOT]org too, but that seems to be dead.