Jump to content

DigitalOcean is my biggest spammer


dlongnecker
 Share

Recommended Posts

I'm getting about 20 emails a day now that are spam.  I run the headers through SC and the reports all go to FBL@digitalocean.com   Once in awhile there is godaddy address in their too.   

I also flag it as spam in Comcast, but still get them.

One would think all the header information in there should be enough for DigitalOcean to find the culprits and shut them down.

What might I be missing?

Dennis

Link to comment
Share on other sites

55 minutes ago, dlongnecker said:

I'm getting about 20 emails a day now that are spam.  I run the headers through SC and the reports all go to FBL@digitalocean.com   Once in awhile there is godaddy address in their too.   

I also flag it as spam in Comcast, but still get them.

One would think all the header information in there should be enough for DigitalOcean to find the culprits and shut them down.

What might I be missing?

Dennis

send a tracking URL of one?

Link to comment
Share on other sites

8 hours ago, dlongnecker said:

They are not tracking URL's! Look like this top of page before you submit

TRACKING URL - it may be saved for future reference:
https://www.spamcop.net/sc?id=z6466514536zb80506f981ff3477ff6381ec10110636z

Link to comment
Share on other sites

36 minutes ago, dlongnecker said:

Sorry -- just for another one...here is the link:   https://www.spamcop.net/sc?id=z6466623999ze5a95f7f593183ee1b4c654653008869z

None of the URL's now work seems the submission worked. Trouble is persistent spammers can hop from one IP to another ofeten using the same provider. Keep reporting it is working eventually they will list wash you. I were getting hammered by Chinese spam until I contacted through SpamCop one of Communist China's Mass political murderers now in charge of Cyber security mystically (knock wood) spam stopped coming? Maybe they are now "not to be"?

Link to comment
Share on other sites

I looked at the e-mail headers of them all.  The first hop is always a different random one.  The second hop is always a secureserver.net server.    The first to are listed as blacklisted.

 

 

Hop Delay From By With Time (UTC) Blacklist
1 * xvxghaddsfgqfxqmdv 197.9.128.15   ESMTPA 5/27/2018 4:51:24 AM
2 0 seconds p3plsmtpa11-03.prod.phx3.secureserver.net 68.178.252.104 resimta-ch2-34v.sys.comcast.net  SMTP 5/27/2018 4:51:24 AM
3 2 minutes resimta-ch2-34v.sys.comcast.net 69.252.207.53 dovpxy-ch2g-04o.email.comcast.net  LMTP 5/27/2018 4:53:24 AM

 

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

 Share

×
×
  • Create New...