Jump to content

gnarlymarley

Memberp
  • Content Count

    561
  • Joined

  • Last visited

Everything posted by gnarlymarley

  1. gnarlymarley

    SPAMCOP BREACH? Attn: Admin

    I don't seem to be affected on my email address that I used to sign up for SpamCop. I also do not use edge.
  2. gnarlymarley

    New storm?

    I have seen this lately when the spammer is using the same provider as one of my mailhosts. I just go and delete the related mailhost, submit and then I can put it back on. Annoying when the spammers start sending me spam from the providers I use . Mailhost configuration problem, identified internal IP as source
  3. Do you have a tracking URL? I show abuse@gtt.net as the reporting address when I try a look up. Parsing input: 67.200.116.254 More Information. Reporting addresses: abuse@gtt.net
  4. About 20 years ago, some of the sites would have a selected checkbox that there they would "share your address with third party companies". Though I am not sure if they are still using such a checkbox upon sign up, maybe the practice is still going on? If the places where you did share your addresses are not sharing it, then I would have to believe they were compromised.
  5. Some SMTP mailers could try to send it to the A record if no MX. But then it appears there is no A record either. C:\>nslookup confiraseusdescontosepontos.com Server: 192.168.1.1 Address: 192.168.1.1#53 ** server can't find confiraseusdescontosepontos.com: NXDOMAIN C:\>
  6. Even though it appears it wants to send directly to the spammer, I don't see the domain and being valid, so this should bounce. C:\>nslookup confiraseusdescontosepontos.com Server: 192.168.1.1 Address: 192.168.1.1#53 ** server can't find confiraseusdescontosepontos.com: NXDOMAIN C:\>
  7. When the links are taken down (someone starts taking action against some part of the spam), it makes the reports satisfying.
  8. gnarlymarley

    Unable to forward spam

    149.255.60.65 is not a SpamCop IP. I think this might be your ISP that is rejecting the emails. Sounds like they accept spam, but don't let you forward it to SpamCop?
  9. If you have the ability to add an email checker, I would suggest you add spamassassin as it would allow you to create a rule to reject spam if it has 8888 in the subject. I have noticed this too and my first email addresses to starting getting spam were hotmail and yahoo. I believe that some of the "free" address are sold to third party. Now I have my own domain too and I setup separate email address for each one, to use as a throwaway and also so I know which idiot may have shared it with the spammers.
  10. gnarlymarley

    TLS support for SMTP host for spam submission

    The deputies have some sort of bug tracking/new feature database. Since this is in the New Request forum section, hopefully someone will see it.
  11. gnarlymarley

    Sendgrid reports dev'nulled?

    I agree that they don't enforce double-opt-in. Someone signed up one of my spamtraps to a bando list and there was no double-opt-in.
  12. Century link installed a new pedestal in my area. It serves the next neighborhood over. The problem with it is they didn't install a battery backup and it is fed by fiber. So when my power goes out, they lose internet. I am not sure if they will ever fix that.
  13. gnarlymarley

    parsing errors

    I don't see mailhosts enabled on this. Mailhosts was setup as a way for SpamCop to find the border server. The LMTP lines seem to look normal. Could have also been a temporary look up issue that may have caused SpamCop processing confusion.
  14. gnarlymarley

    Reporting spam has no effect

    I would suggest putting your super secret submit address into the bcc, except some email servers could leave that in the email as it goes out. It would be good to know your email server before trying even the bcc. Probably the only safe way is to forward separate emails.
  15. gnarlymarley

    No source IP address found, cannot proceed!

    If it was a contact form, you should be able to look up the IP in the http logs. It would be good to have the form add some email headers, such as a "Received:" header that has the IP, hostname, and protocol, just like your email server does. Another header maybe something like "X-WebForm:". Also, I would expect the receiving email server to show the IP of the server with the contact form.
  16. gnarlymarley

    No source IP address found, cannot proceed!

    Maybe came from a web form?
  17. gnarlymarley

    No source IP address found, cannot proceed!

    The tracking URL seems to be missing an IP on the Received line. Without that IP, it cannot proceed to report such IP. Received: from esteemcom by elm.nocdirect.com with local (Exim 4.93) (envelope-from <info@domainregistrationcorp.com>) id 1lT0m1-0006Jl-Cb for x; Sun, 04 Apr 2021 07:18:33 -0400
  18. I don't see a refresh button on the page. After some research, it appears that this is plagued bu the whois "-B" bug. Refreshing is not going to bring it up. You will need want to contact the deputies[at]admin[dot]spamcop[dot]net or just submit it manually.
  19. Sounds like someone is attached 18 emails and sent to your reporting address. Yes, you can email the deputies[at]admin[dot]spamcop[dot]net and they can change it for you.
  20. gnarlymarley

    TLS support for SMTP host for spam submission

    Yeah, probably a good idea to send the link to this forum to the deputies at deputies[at]admin[dot[spamcop[dot]net.
  21. I believe that originally SpamCop was setup to report URLs to the ISP hosting the content. They did this to avoid reporting directly to the spammers, who at the time, would setup they own domain and abuse address. Reporting spam to the ISP, SpamCop appears to look up the IP the domain is pointing to at the time and report that IP to the ISP. If we can trust the abuse of the domainname such as in this case, SpamCop should be able to report to the domain's abuse address instead of to their hosting ISP.
  22. gnarlymarley

    SpamCop approving spam!

    This is in part why I got my own email server and changed it from blocking lists in the server to spamassassin. The Spamassassin plug-in allowed me to setup weighting and a threshold for all blocklists so I could block if it is on more than one blocking list, but not if the are on only one.
  23. sounds to me, like you might be talking about the response email that would contain a tracking URL if it worked, but it is not working. A normal reply would be a subject line "[SpamCop] has accepted 1 email for processing". Reply emails with the subject line "[SpamCop] Errors encountered" usually indicate a problem with the attachment on the sending email. Even if I had mailhost problems, I would still get a sucessful reply with a tracking URL.
  24. gnarlymarley

    Google Groups spam

    Dennis, I think you might be right on the google groups. It sounds like someone signed up for you and set up their password while pointing it to your email account. I see a mailto that is not you that you might be able to try a password reset on any of the mailto addresses that are not yours to see if it is a forwarder address. If not, sounds like you might be up to the mercy of the google abuse address.
  25. Welcome back! Ooops, I am sure they might regret that.
×