Network abuse

Here is my log of spotted and reported network abuse incidents. It started as private notes aiming to keep track of those being fixed, and to block the hosts if they keep spamming.

Spam messages

Below are incidents with spam messages that got through the usual filters, both email and XMPP.

Date Host Type Report Notes
2021-02-09 103.66.105.237 email noc@cmjainimpex.in
2021-03-31 205.201.133.233 email abuse@mailchimp.com
2021-06-24 2a00:1450:4864:20::641 email Gmail abuse reporting form Apparently reporting didn't work, nothing happened on "submit".
2021-06-25 91.223.3.194 email admin@skynode.pl
2021-09-12 188.243.192.232 XMPP no xmpp@ address, contacted abuse@sknt.ru, no response and spam kept coming, submitted a JabberSPAM blacklist PR Subscription probing from v0dka@jabber.infos.ru.
2021-09-12 138.201.50.174 XMPP stian@barmen.nu, replied that he'll investigate Probing from ether@jabber.no.
2021-09-12 54.36.115.48 XMPP info@xmpp.gg, no reply; abuse@ovh.net on 2021-09-20, no reply and no effect either; submitted a blacklist PR Probing from ink@jabber.gg.
2022-04-25 146.19.173.107 email abuse@ipconnect.services
2022-04-28 5.181.80.128 email noc@4vendeta.com
2022-05-29 200.93.248.119 email rolfex@powerfast.net
2022-05-30 193.218.204.206 email abuse@heficed.com The client replied that it was solved a long time ago.
2022-05-31 2607:f8b0:4864:20::e41 email Gmail abuse reporting form
2022-06-30 211.100.47.38 email Chinese ISP, probably not worth reporting Blacklisted in postscreen_access.cidr.
2022-08-15 159.183.196.221 email abuse@sendgrid.com
2022-08-25 138.201.25.9 XMPP No administrator contact information and no mail server there, reported to abuse@hetzner.com on 2022-08-30. Been asked to fill a form on 2022-09-07, fought the captcha and filled it, received an auto-reply/confirmation on 2022-09-26 (while subscriptions kept coming). subscription requests and OMEMO-encrypted messages without my OMEMO keys published, similar ones from multiple services and JIDs, with occasional plaintext being just silly. This one is from klassic@isgeek.info
2022-08-25 185.146.232.56 XMPP vesselwave@protonmail.com, they've deleted the user and started looking more closely for spammers. From klassic@satisprivacy.org.
2022-08-25 95.168.217.72 XMPP support@jabbim.zendesk.com, auto-reply and no effect, wrote to abuse@superhosting.cz on 2022-09-05 From multiks@jabbim.sk.
2022-09-06 170.187.181.190 XMPP xmpp@ address doesn't exist, wrote to abuse@linode.com, been asked for logs and provided those on 2022-09-07 From multiks@rows.im.