petzl

Spammer is using throwaway email accounts AmazonAWS is offering free web trails this clown will stick there (probably has many) till AmazonAWS bother They want full headers copy and pasted with IP's before even bothering. And they contact these criminals show your details. Always report it as Child porn spam site. That gives Amazon an obligation and expense to remove it. pictures under 18 or made to look under 18. NO PROOF OF AGE available! Include phishing-report[AT]us-cert[DOT]gov in "to field" as well AWS can see this.

Abuse desks are not always known to be the brightest crayons in the pack AmazonAWS for instance! They require a "copy and past" then contact the spammer they call a customer with a free trail account However their Russian crime gang spamming me only uses throwaway email address, web sites, with fictitious names etc. Gmail and their "cloud" finally seem to of caught on and mark their spam as dangerous (which it always was and is) Quite a few a upset about a EML attachment rejecting it? Yet others, the clever ones insist on it, China for instance the REAL Peking abuse address!

If SpamCop did not truncate everyone would be in a queue so it will only target source of spam to speed up processing for others Of course you can forward as attachment to abuse desk from your email account which I often do (spammers have my email address at anyrate) https://mailsc.spamcop.net/spamgraph.shtml?spamstats At bottom of report I put this in as a signature offending email forwarded also, can be read as text attachment with a text/ASCII editor like notepad or eml text reader

Keep reporting, places like Facebook sell your email addresses to anyone who buys them. I doubt if colocrossing is dobbing you into spammer. Once your email address is taken it is then sold to other spammers so going from 1 spam to many is "normal" The best defense is attack. There is a bit of a learning curve. A good and easy effective tool for doing this is a free SpamCop account Once set-up you can simply send to SpamCop spam "forward as a attachment" for reporting You will be given a supersecret reporting address so do not divulge this to anyone, Always in this discussion group disable/change the @ to [AT] and . to [DOT] in email addies With malicious links change them so they don't work, For instance I change com to cxm as well as a few x's in other places SpamCop will default munge your email addy unless you tell it not to. spam sometimes has links in spam like invisible coded images to send a confirmation that email has been received. Most email now blocks images from automatically opening for this reason

I report as both.

These "sex sites" are sent via (untraceable by you) botnet email or throwaway email addresses, the sites themselves start from a throwaway address then jump to another. Always after credit card details! (the ISP of that botnet can see where the source IP is) Called phishing. heres one https://www.spamcop.net/sc?id=z6530436982z1d6d8d3d02831bdf4f781b2561e8282fz notes were 22.224.69.173 antispamxdcb.hz.zj.cn bouncesmalicious site URLhttp://chinabdt.nxt/52.5.250.89 abusexamazonaws.cxm proof seehttps://www.virustotal.com/gui/url/600f2573dfc69fffdd57931eb33ec16698d1c613567dd4324f6b82d984349796/detection

Seem to have some success with it Another Forrest Gump moment for me? https://www.businessinsider.com.au/facebook-criminal-investigation-data-sharing-2019-3?r=US&IR=T Criminal phishing, bogus reply address, bogus unsubscribe This/my email address I believe sold to this Russian (?) Crime gang by FaceBook .. email source 94.100.177.97 abusexcorp.maxl.ru

And your absolutely right, however with me I don't want spam and never munge my reports! Where SpamCop won't send to a abuse desk I then send direct from the address that received the spam

It's a safety measure to check URL's https://www.virustotal.com/#/home/url

Pretty sure these creeps are opening a new "free" amazon account when one is taken down. Seems Amazon are shutting them down when reported from the spammed email address, stating IP address and copy and pasting full headers with report. https://www.virustotal.com/#/url/51cfab3c89b464ef6e07c89d13ae048eb6708dd49233bf740609da33f2834ea2/details status: 404 Not Found

They went away from me for a while, as Amazon refuse to take SpamCop reports I send from the email it was sent to These spammers have been kicked out of many "holes" before now reside with Amazon who have a incompetent abuse desk. Amazon are offering free web space, which tells me there IT are causing them to go broke. I will be adding "subpoena-criminal[x]amazon.cxm" to my reports to see if anyone in Amazon have brains or more pomposity http://www.missingkids.org/gethelpnow/cybertipline is a good link worth a try they can get a seizure order on Amazon sites Seem to be breaching "U.S. Department of Justice's Child Exploitation and Obscenity section" (as usual U.S. agency that's broken, links are not updated) Just checked seems Amazon are taking sites down. These creeps must be just signing up with a new free one as they get closed.

Most USA Government agencies can't find their own ass! However if you can hit a concerned party you are away.

They do, most certainly and they state so in their reply! They have a abuse website? https://aws.amazon.com/forms/report-abuse but run by the same morons, but they do have a email to their legal "subpoena-criminal[x]amazon.cxm." pay to advise them that the moronic abuse team is putting Amazon itself at risk! Offering FREE websites for pedophiles?

Yes definitely criminal phishing offering prizes to get your email address and other info

Yes spammer already has your email. Got one from these scum this morning here are the notes 54.213.31.253 (Administrator of network where email originates) abuse@amazonaws.com phishing-report@us-cert.gov https://bit.ly/2EPC64E?1819469901?DL4B7Sr6I8Unq8090859 67.199.248.10 abuse@bitly.com redirects https://mmwaq.slutsnearby.com/c/1f0a2cb367c37dee?s1=25218&s2=158751&j1=1&j3=1&s3=17004&s5=432018&click_id=nthml5c841f5915e67849990878 URL IP 34.194.20.115 abuse@amazonaws.com phishing-report@us-cert.gov

They are trying to be "clever" I'm doing all I can to do what happened to the Backpage operator he went from a multimillionaire to skidrow. You have to put full directions in your notes Amazon will only look at copy and pasted headers with notes Example my Russian cyber-criminals "notes" Criminal phishing, bogus reply address, bogus unsubscribe This/my email address I believe sold to this Russian (?) Crime gang by FaceBook .. email source 94.100.177.97 abuse@corp.mail.ru URL in spam link obfuscation https://www.google.com/#btnI=ixyvb-ddvef-rgcse&q=jiofdahiugfhajpsdh.ru Resolves to 64.233.191.105 network-abuse@google.com phishing-report@us-cert.gov redirects through http://jiofdahiugfhajpsdh.ru 185.26.122.56 abuse-c@hostland.ru Redirection ends https://appteslerapp.com/?click=39192426&mode=optin&api_url=%2F%2Fgotrack.static500.com%2Fapi%2Fv1 188.166.113.230 abuse@digitalocean.com phishing-report@us-cert.gov offending email (eml) forwarded also, can be read as text attachment with a text/ASCII editor like notepad or eml text reader >

You a pediatrician? Any lewd site is supposed to have by law .on site proof of age, without this it you don't know! in notes with sex sites I send this. I don't want it and never subscribe for perverted rubbish. It's pedophilia as far as I and the law is concerned! A Forrest Gump moment for me was when Trump had the FBI seize "Backpage" for that exact reason Hope Amazon AWS have the same fate! Child porn spammer pictures under 18 or made to look under 18 NO PROOF OF AGE available! SENT TO MINORS >

They are into "list washing" when they are hosting pedophilia and I tell them I think they get worried!

Hello, This case has been investigated and resolved by the Amazon EC2 Abuse Team. If you believe this case to be unresolved, please either respond to this email with detailed logs or file another case with detailed logs to that end. Thank you for your attention in this matter. Regards, Amazon EC2 Abuse Team

Fake bounce can be set up on most email clients even Gmail can do it You need a copy of headers to find out who is bouncing and contact their abuse desk The IP you stated has never been listed by SpamCop in the last 90 days. A badly set-up email server can be set-up to bounce emails NOT listed on SpamCop. As SpamCop only lists for 24 hours after last spam, some set-up "unable to deliver" in the hope the spam stops when it retries. Advice is always free till you act on it. I'm a member not admin

Never been on the SpamCop blacklist. who is stating it is? Sometimes a "clever Trevor" have a blocklist working in reverse? Or it could be a fake bounce from someone you are mailing too?

The Scam in Australia regarding Mobile phone bank fraud https://youtu.be/sABVEHUhx8k

Found him on youtube your link no sound for me? https://youtu.be/rV32KmxMCic As for Facebook it was around 3 months after me reporting them that the s**t hit the fan (Forest Gump moment?) https://www.theguardian.com/technology/2018/jul/11/facebook-fined-for-data-breaches-in-cambridge-analytica-scandal

Seems Facebook are still selling info to criminals. I do not have any financial accounts connected to my Mobile phone. https://www.itnews.com.au/news/45k-stolen-in-phone-porting-scam-282310/page0

Just got one with a OVH link have to truncate as it's full of base 64 gibber https://www.spamcop.net/sc?id=z6517742261z82101d4998fb4b3e1c14b8f6278e03f0z I also sent full report from my email account Criminal phishing, bogus reply address, bogus unsubscribe This/my email address I believe provided to this Russian (?) Crime gang by FaceBook .. Received from 185.252.147.144 abuse[AT]firstbyte.ru link obfuscation https://aiplotnic.ru/yqjutzsgrfuwz Resolves to 51.38.186.24 abuse[AT]ovh.net offending email (eml) forwarded also, can be read as text attachment with a text/ASCII editor like notepad or eml text reader >