petzl
-
Posts
2,987 -
Joined
-
Last visited
Content Type
Profiles
Forums
Events
Posts posted by petzl
-
-
1 hour ago, RobiBue said:
Using abuse#amazonaws.com@devnull.spamcop.net for statistical tracking.
The REAL abuse address is "ipmanagement[at]amazon[dot]com"
-
1 minute ago, klappa said:
But then again i have to refer to my original question. Why does all my spam from my Outlook e-mail report to Microsoft when parsing it with Spamcop?
Just send email to whatever the abuse address is for your email provider forward as attachment.
-
18 minutes ago, klappa said:
Spamcop doesn't work with any IPV6 addresses.
It does but won't report on a IPV6 internal network address. SpamCop won't do this with a IP4 address either
For IPV6 look-ups use -
1 hour ago, MIG said:
2603:10a6:6:2b::19 is not a hostname
Routing details for 2603:10a6:6:2b::19
[refresh/show] Cached whois for 2603:10a6:6:2b::19 : abuse@microsoft.com
abuse@hotmail.com redirects to report_spam@hotmail.com
Using best contacts report_spam@hotmail.comThat's who it belongs to. Abuse should not need detailed info. They can work it out and sort it out (theoretically) and block offending IP's from ever sending to hotmail! Gmail the same. This is a big real weapon against spammers/rouge networks that ignore abuse reports. SendSafe/CisCo just delete emails no spamtrap nothing and from what I have seen works perfectly.
-
All one has to do is go to you SpamCop account put a IPV6 number in report box press "submit spam" and SpamCop will give a abuse address for it.
-
41 minutes ago, Lking said:
It would be nice if SpamCop could handle the IPV6 problem
SpamCop does handle IPV6?
I don't use a Hotmail/Outlook account but read where Microsoft pointyheads obscure the source, pointing abuse back to them which should work with their "superdooper " ARC nonsense. Relying on their own lazy abuse department (the object is to obscure source IP)
https://www.spamcop.net/sc?id=z6501740491z127c9ce8f5531c397f9a64f4aa786df9z -
7 hours ago, jodell said:
At SpamCop Blocking List after a "Numeric IP Address is entered, the page offers a "SenderBase Lookup"option. Selecting this option used to take you to a talosintelligence.com page. But now I get an error:
Error 1020 Ray ID: 477137b2cc9a7e51 • 2018-11-09 15:12:26 UTC
Access denied
It seems that SpamCop.net no longer has permission to access Talos. Anybody know if this is going to be fixed?
The "SenderBase Lookup"option should change its underlying URL to https://talosintelligence.com/reputation_center/lookup?search=xx.xx.xx.xx
(FIll in the "xx.xx.xx.xx" with the requeste IP address.)
Jim Odell
Another broken feature. Was a handy from the SpamCop Blocklist page
https://www.spamcop.net/w3m?action=checkblock&ip=122.224.69.173now I have to look from here
-
1 hour ago, leagris said:
I am facing the same issue as you with CloudFlare and with the exact same conclusion
Best to report from your email address that received spam (also report with SpamCop) forward as attachment the spam and to "phishing-report [ at] us-cert [dot] gov" in from, cloudfare will see this and act.
-
Spamtraps email addresses are deliberately secret no reports are given. These addresses are fake put into web-pages so bots can scrape them to be sold to spammers.
-
8 hours ago, MDMesser001 said:
About 95% of my spam ends up showing AMAZONAWS as the source.
I've been reporting it regularly but I always get more.
I've been pleased with results from most of the other spam I get. I forward it to Spamcop.net and I rarely see it come from that source again. But AmazonAWS seems exempt.
Yes show a tracking URL
-
On 7/3/2018 at 5:28 PM, unidress said:
Hello my domain ip 82.80.50.21 listed again this week.
how i can see witch address send spam mails from my domain?
in our PineApp Mail Secure system we check all outgoing mails.
https://www.spamcop.net/w3m?action=checkblock&ip=82.80.50.21
In the past 3.4 days, it has been listed 2 times for a total of 2.1 days
compromised/forged web and or email accounts
If Microsoft Windows Defender is available to you, use it
Scan for Malware!
THEN
Change log-on to a more secure password-Phrase!
> -
-
On 10/24/2016 at 4:02 AM, remay said:
When viewing the email, there is clearly a body.
There needs to be a blank 2 line separation from headers and body of spam?
-
2 hours ago, Nameless said:
Yesterday, I reported a spam message I received that included blackmail. I.e. I was asked to supply money to a bitcoin address to prevent information on my "sexual preferences" being sent to my friends, etc. I'm not worried about the threat because these "preferences" are news to me and nothing (that's real) exists that could cause me any embarrassment, but I found this annoying enough to find spamcop and want to fight back.
I've sent a report but I'm afraid a lot of the terminology used here is too advanced for my limited computer knowledge, so please forgive my 'idiot' questions. I tried some help pages that brought up captions saying the pages no longer exist! I have a report ID and it seems details have been sent to: abuse@hostingperte.it but use of my tracking URL causes me to see the words "Reports regarding this spam have already been sent". Does this mean that the administrator of the network where the email originates has received other reports of exactly the same spam, as well as receiving my report?
Should I expect to hear anything else about this in response? If not, is there any way that I can discover whether any action has been taken? In view of the blackmail element, it would be nice to think that there could potentially be serious consequences for the perpetrator but I suppose that's a lot to hope for?
I'd be very grateful for any reply that helps clarify these points!
It's a phishing scam I have got these on occasions.
Make sure you have a WORKING malware/virus program going. Windows defender is a good one, Run a scan. Most Network operators are brainless, if you sent a SpamCop tracking URL you might get better advice
-
9 hours ago, Kewl said:
petzl,
Sometimes reports get sent thru to abuse@level3.com
About 25% reports get sent, and 75% reports are disabled.
I'm not sure why but definitely games are being played by this ISP.
possibly different IP's are run by different owners?
-
15 hours ago, HN Support said:
So then you fill in abuse@level3.com into the blank 'user' field and submit that, instead.
74.202.231.63 seems level3 have been playing games
Routing details for 74.202.231.63
[refresh/show] Cached whois for 74.202.231.63 : abuse@level3.com
Using best contacts abuse@level3.com
I know this ISP's abuse address:level3@admin.spamcop.net
Reports disabled for level3@admin.spamcop.netUsing level3#admin.spamcop.net@devnull.spamcop.net for statistical tracking. -
4 hours ago, Kewl said:
https://www.spamcop.net/sc?id=z6456935238zc9f4b8319848eaa131eed78bd3aadf85z
Wants to erroniously send report to report_spam@hotmail.comspam needs submitting report_spam address has been requested by hotmail for SpamCop reports
There is a problem that a lot of these are legacy issues and just go to a bit-bin.
You can submit spam to "abuse [ at ] microsoft [ dot ] com" from your email account where you actually received that spam
-
10 hours ago, Lking said:
A project of passion, with limited financial support. A loss.
A shame
Now only a shaky SpamCop left
-
20 hours ago, lisali said:
Is there a way to avoid getting and acting on individual emails
Not anymore too many cannot or won't get their mailhost set-up/working used to have "Quick" reporting
-
6 hours ago, georgestama said:
phishing spam I would also attack rhe URL
http://trk.bestschoolguide.com/campaigns/bk12218xfw81e/track-url/er221nbtj4141/6bc357f9cb098f50b5608061a558cf3605577d04 104.18.63.84 abuse@cloudflare.com redirects to http://www.indiabullsventures.com/AQGEN/ 115.112.249.189 4755abuse@tatacommunications.com -
18 hours ago, georgestama said:I’ve done many reports through SpamCop but haven’t seen any results. Are they ignoring the reporting? Is SpamCop working? Is there anything else that can be done?
Try adding "cert-fr.cossi@ssi.gouv.fr" to report can't read French buy maybe a Canadian can? Also give tracking URL OVH have gone back to being blackhat
https://www.cert.ssi.gouv.fr -
4 hours ago, Lking said:
Within this SpamCop forum covering the fight against spam, the Lounge is the correct place for this discussion. While opinions are welcome and have been expressed in the passed, "we" must also moderate our "free speech" on this forum to avoid admonition on political, religious or slanderous statements.
Yes I'm in Australia much opinion is based/formed (groomed) on media feeding one nips of red cordial to have one grow pointy heads!
I find Cloudfare do react on many of the abuse reports I have sent them (not all)
Try their abuse form to prioritize your complaint
https://www.cloudflare.com/abuse/ -
> Bit vague about them turning filtering off?
Yep, I even got a deputy to admit it, seems some people wanted all the spam so they could report it. My email provider won't filter it 'cuz it's from a trusted source (Spamcop - although why someone would trust a spam-forwarding service is beyond me)
Deputy said to try forwarding to 'blank' again, and so far I haven't received any more. Keeping my fingers crossed.
Got to admit I like pulling the wings off spammers.
Again Gmail is the way to go (they do electronically read everything sent and received and GOOD at ir)
Also believe one also needs a VPN nowadays encrypts everything out and back to you.
-
Just have SpamCop forward to a Gmail account which is very good at stopping inbox spam
I remember Cisco stating that they would keep SpamCop alive for at least 12 months and longer but no guarantees after 12 months as it was not much of a problemBit vague about them turning filtering off?
Any point in reporting spam from AMAZONAWS?
in SpamCop Lounge
Posted
OK must be a long time-lag? I also refreshed cache ?