Steve Posted April 20 Share Posted April 20 https://www.spamcop.net/sc?id=z6894784019z32eae73f09e4cd0e3dfd9e5bf8da549ez I manually reported the spam to abuse AT timbrasil DOT com DOT br with the IP address 177.30.108.45 as Amazon determined that's where the email originated from (SC parses the email and uses 35.89.44.37 as the IP address to report spam with to abuse AT amazonaws DOT com) This is the reply when I manually report the email to Amazon using 35.89.44.37: Quote Hello, Thank you for submitting your abuse report. We note that the email actually originated from 177.30.108.45 - abuse@lacnic.net. Our customer has offered the following explanation for their Cloudfilter product seen in the headers: " Proofpoint is a leading next-generation security and compliance company that provides cloud-based solutions to protect the way people work today. Proofpoint solutions enable organizations to protect their users from advanced attacks delivered via email, social media and mobile apps, protect the information their users create from advanced attacks and compliance risks, and respond quickly when incidents occur. The email protection service is an intermediatory used by email service operators to filter out and remove >99.9% of the spam before delivery. While we are proud of our accuracy, an extremely small percentage of email is miscategorized as legitimate email when they should not. Our customers have condemning functions within their system which we use to improve our accuracy. We recommend forwarding header information back to the email service provider to properly report through our Proofpoint systems to better enhance the capabilities of the platform. Additionally, if you can provide AWS Trust & Safety the message in RFC822 format, we can more quickly add this message to our Cloudmark tool for improved accuracy. More information can be found for RFC822 formatting at https://datatracker[.]ietf[.]org/doc/html/rfc822. Our services do use Amazon IP addresses which may show in the email headers as part of the Mail Transfer Agent (MTA). Our systems are not the originator of these emails, but part of the chain to comply with Internet Engineering Task Force (IETF) standards. The solutions provided by Proofpoint are an important service to the online community, one which helps to stop criminals and their malicious activities. Proofpoint’s services will in no way cause any harm to Amazon or any of Amazon's customers." Regards, AWS Trust & Safety Reply from timbrasil postmaster address: Quote Your email couldn't be forwarded from abuse@timbrasil.com.br to another email address. abuse@timbrasil.com.br Your message wasn't delivered because the recipient's email provider rejected it. Diagnostic information for administrators: Generating server: CP4P284MB2872.BRAP284.PROD.OUTLOOK.COM abuse@timbrasil.com.br Remote server returned '550 5.7.520 Access denied, Your organization does not allow external forwarding. Please contact your administrator for further assistance. AS(7550)' Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.