petzl

Without a Tracking URL hard to workout what is happening? Example top of page BEFORE you submit/send report Here is your TRACKING URL - it may be saved for future reference: https://www.spamcop.net/sc?id=z6673824588z4497eb805827af26ebca08dac0cd33ccz From what I can guess your email provider is not stamping the/a received line? You can forward (as a attachment) directly to the abuse address of the IP who sent it

Might refer to not being TLS? But I seldom use firefox but nor issues come up ?

Just used my FireFox browser no issue?

google gives https://www.consumer.ftc.gov/articles/how-recognize-and-report-spam-text-messages

Some mailservers run their own blocklist and blame bl.spamcop.net go here to see what your email servers reputation is https://talosintelligence.com/reputation_center

Your server IP static? Not dynamic? The email host update has fixed issues. https://www.spamcop.net/sc?id=z6650350477z80b0fce72a3dcf5024577c98ea9276cfz https://www.spamcop.net/sc?id=z6650350591z4d1415e917292ee52ab3f7832ae5fa40z

You email server changed? Updated?

SpamCop has nothing to do with APEWS but read this Seems your logon passwords can be scanned pay to fix this, or spammers can steal logon/password for your email server https://mxtoolbox.com/SuperTool.aspx?action=smtp%3a210.172.109.36&run=toolpage SMTP TLS Warning - Does not support TLS

Your email provider has not stamped a received FROM IP line Although a IP is mentioned 166.181.83.113 ?

Sounds like you have it you may be able to put "www.enchanter.net" after IP?

Your email server needs to stamp it's own IP (216.53.249.115) as well as the sending IP. The only IP it shows is the "From" IP. 106.75.87.56. This needs fixing More Information About Smtp Banner Check The SMTP banner issued by your email server did not contain the hostname we resolved for your server’s IP address. This also needs fixing (ask your ISP) as many services will discard email from you More Information About Smtp Reverse Dns Mismatch The forward lookup (A) of the hostname hostname did not match the reverse lookup (PTR) for the IP Address. Example of a correctly matching pair of records: (A) lookup for smtp.mxtoolbox.com resolves to 208.123.79.38 (PTR) lookup for 208.123.79.38 reverses to smtp.mxtoolbox.com

https://www.spamcop.net/sc?id=z6647673526z717f1b3f9f3bda2be59f7a5a44fe732ez Not stamping received IP only and only the from Botnet IP Your email server test https://mxtoolbox.com/SuperTool.aspx?action=smtp%3a216.53.249.115&run=toolpage Here is a older spam I parsed, the spammer is faking a Amazon IP but SpamCop picks it up https://www.spamcop.net/sc?id=z6646871784z9df15b8889614b273871f0e99d31a66fz

Showing a "SpamCop tracking URL" would help The only IP shown is a Chinese Botnet, You Chinese? https://www.abuseat.org/lookup.cgi?ip=106.75.103.146

Can you provide a SpamCop Tracking URL? I don't believe Hotmail provides a source IP, just the IP of their own email server.

Only staff might be able to access that link. I are just a SpamCop member.

As always a SpamCop tracking URL would help?

Thanks my poor eyesight did not pickup the spaces in IP https://mxtoolbox.com/SuperTool.aspx?action=smtp%3a173.249.157.30&run=toolpage Some problems with the email server SMTP TLS Warning - Does not support TLS. Means you need to change password often, your email can be easily compromised

That is not a traceable IP? Problem getting IP Address for 17 3.249. 157 .3 0 It does show as a web address? http://173.249.157.30/cgi-sys/defaultwebpage.cgi

17.128.115.105 17.171.2.60 both are Apple addresses yours? Scan your device 85.143.166.232abuse actuall abuse address is abuse[AT]comfortel[DOT]pro The address it is sent to has been coded into SpamCop two years ago?

I get auto-acks but no action, All the google redirects show the pornsite is down? https://www.spamcop.net/w3m?action=checkblock&ip=51.68.136.176 It's important to note that most of our services are rented "unmanaged" to our customers. This means that we only have physical access to the server and cannot access its content (no root, administrator, or user access). We are technically unable to modify or delete content, or making an abusive behavior stop by intervening directly on the server, as it is not managed by us.

probem with adding IP's/ providers to a blacklist is it becomes a political "sh*tlist Sometimes this is to me a good thing I would have "Namecheap" OVH China but that is not good thing to everyone!

this going through a internal network/intranet? Through email server Ecuador needs password change (no TLS) 190.152.46.226 no abuse address try CERT https://www.first.org/members/teams/#Ecuador From Botnet in India 106.210.0.13 https://www.abuseat.org/lookup.cgi?ip=106.210.0.13

51.79.145.214 is where it came from and reported correctly to OVH Add to notes Child porn spammer pictures under 18 or made to look under 18 NO PROOF OF AGE available! SENT TO MINORS

2a01:111:e400:7ebd:0:0:0:51 abuse[AT]microsoft[dot]com If your email is going through a internal network it's hard to report?

Each country has a "Computer emergency response team" (CERT) which can override abuse desks. They often give a ISP a "hurry-up" order to get things fixed https://www.first.org/members/teams/ The problem is a lot of these addresses are run by companies just for their company, This creates confusion because many are not English and hard to differentiate between business and Government!