hXXps://artem236shiola.com/Indiana/g/app/login.php 18.119.115.144|ariolamashiola.com|2022-04-10 16:57:04 18.119.115.144|artalosh.com|2022-04-10 18:47:05 18.119.115.144|artawanshiola.com|2022-04-10 16:12:24 18.119.115.144|artaxzshiola.com|2022-04-10 06:56:42 18.119.115.144|artbegleyshiola.com|2022-04-10 07:08:03 18.119.115.144|artbond16shiola.com|2022-04-10 07:11:53 18.119.115.144|artcanshiola.com|2022-04-10 08:07:46 18.119.115.144|artcartiershiola.com|2022-04-10 08:11:57 18.119.115.144|artclymershiola.com|2022-04-10 08:22:37 18.119.115.144|artcrashshiola.com|2022-04-10 08:36:27 18.119.115.144|artdeallershiola.com|2022-04-10 08:42:14 18.119.115.144|artedigital39shiola.com|2022-04-10 09:36:27 18.119.115.144|artekbshiola.com|2022-04-10 10:01:36 18.119.115.144|artem0052shiola.com|2022-04-10 10:11:27 18.119.115.144|artem129698shiola.com|2022-04-10 10:12:24 18.119.115.144|artem12ruscsshiola.com|2022-04-10 10:11:37 18.119.115.144|artem135shiola.com|2022-04-10 10:12:19 18.119.115.144|artem154shiola.com|2022-04-10 10:12:25 18.119.115.144|artem1984shiola.com|2022-04-10 10:12:14 18.119.115.144|artem20041991shiola.com|2022-04-10 10:12:00 18.119.115.144|artem236shiola.com|2022-04-10 10:11:15 18.119.115.144|artem2gshiola.com|2022-04-10 16:23:11 18.119.115.144|artem300685shiola.com|2022-04-11 00:32:21 18.119.115.144|artem5995shiola.com|2022-04-10 10:11:51 18.119.115.144|artem662008shiola.com|2022-04-10 10:13:24 18.119.115.144|artem97shiola.com|2022-04-10 10:12:00 18.119.115.144|artem98shiola.com|2022-04-10 10:11:57… Читать далее MAAS/PAAS server
Автор: blog
Chinese phisher landing sites.
The usual KDDI AU phish. Where there is one, there are many. Status Code URL IP Page Type Redirect Type Redirect URL 200 https://flat-cake-c258.wafidoy7421238.workers.dev/ 200 https://kddc-av0ne.serveirc.com/ Resolving kddc-av0ne.serveirc.com (kddc-av0ne.serveirc.com)… 34.64.152.195
Malware / Botnet / Phishing hosting server @185.251.90.227
The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse. Malware botnet controller located at 185.251.90.227 port 443: $ telnet 185.251.90.227 443 Trying 185.251.90.227… Connected to 185.251.90.227. Escape character is ‘^]’.… Читать далее Malware / Botnet / Phishing hosting server @185.251.90.227
Malware botnet controller @95.213.216.163
The host at this IP address is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse. Malware botnet controller at 95.213.216.163 on port 443. $ telnet 95.213.216.163 443 Trying 95.213.216.163… Connected to 95.213.216.163. Escape character is ‘^]’ Malicious domains observed at this IP… Читать далее Malware botnet controller @95.213.216.163
Phish Redirector! (palikioeks.com) (Target: Danske Bank)
Namecheap hosts the domain palikioeks.com, which redirects to a phish site targeting Danske Bank Customers in Finland. PHISH SAMPLE: Received: from omaik.com (170-187-155-146.ip.linodeusercontent.com [170.187.155.146]) Date: Fri, 8 Apr 2022 13:##:## +0000 (UTC) From: Danske Bank <support@omaik.com> Reply-To: support@omaik.com Subject: ? Sinulla on uusi viestie <snip> Sinulla on (1) tärkeä viesti suojatussa postilaatikossasi. Katsoaksesi sen, napsauta… Читать далее Phish Redirector! (palikioeks.com) (Target: Danske Bank)
Phish Emitters! (Target: Danske Bank)
A phish operation is sending phish from a number of Linode IP addresses. SENDING IPs: 139.177.202.32 139.177.202.85 139.177.202.14 170.187.144.35 170.187.155.146 194.195.214.65 194.195.214.86 SPAM SAMPLE: Received: from omaik.com (170-187-155-146.ip.linodeusercontent.com [170.187.155.146]) Date: Fri, 8 Apr 2022 13:##:## +0000 (UTC) From: Danske Bank <support@omaik.com> Reply-To: support@omaik.com Subject: ? Sinulla on uusi viestie <snip> Sinulla on (1) tärkeä viesti… Читать далее Phish Emitters! (Target: Danske Bank)
Phish Emitters! (Target: Danske Bank)
A phish operation is sending phish from a number of Linode IP addresses. SENDING IPs: 139.177.202.32 139.177.202.85 139.177.202.14 170.187.144.35 170.187.155.146 194.195.214.65 194.195.214.86 SPAM SAMPLE: Received: from omaik.com (170-187-155-146.ip.linodeusercontent.com [170.187.155.146]) Date: Fri, 8 Apr 2022 13:##:## +0000 (UTC) From: Danske Bank <support@omaik.com> Reply-To: support@omaik.com Subject: ? Sinulla on uusi viestie <snip> Sinulla on (1) tärkeä viesti… Читать далее Phish Emitters! (Target: Danske Bank)
Phish Emitters! (Target: Danske Bank)
A phish operation is sending phish from a number of Linode IP addresses. SENDING IPs: 139.177.202.32 139.177.202.85 139.177.202.14 170.187.144.35 170.187.155.146 194.195.214.65 194.195.214.86 SPAM SAMPLE: Received: from omaik.com (170-187-155-146.ip.linodeusercontent.com [170.187.155.146]) Date: Fri, 8 Apr 2022 13:##:## +0000 (UTC) From: Danske Bank <support@omaik.com> Reply-To: support@omaik.com Subject: ? Sinulla on uusi viestie <snip> Sinulla on (1) tärkeä viesti… Читать далее Phish Emitters! (Target: Danske Bank)
Phish Emitters! (Target: Danske Bank)
A phish operation is sending phish from a number of Linode IP addresses. SENDING IPs: 139.177.202.32 139.177.202.85 139.177.202.14 170.187.144.35 170.187.155.146 194.195.214.65 194.195.214.86 SPAM SAMPLE: Received: from omaik.com (170-187-155-146.ip.linodeusercontent.com [170.187.155.146]) Date: Fri, 8 Apr 2022 13:##:## +0000 (UTC) From: Danske Bank <support@omaik.com> Reply-To: support@omaik.com Subject: ? Sinulla on uusi viestie <snip> Sinulla on (1) tärkeä viesti… Читать далее Phish Emitters! (Target: Danske Bank)
Phish Emitters! (Target: Danske Bank)
A phish operation is sending phish from a number of Linode IP addresses. SENDING IPs: 139.177.202.32 139.177.202.85 139.177.202.14 170.187.144.35 170.187.155.146 194.195.214.65 194.195.214.86 SPAM SAMPLE: Received: from omaik.com (170-187-155-146.ip.linodeusercontent.com [170.187.155.146]) Date: Fri, 8 Apr 2022 13:##:## +0000 (UTC) From: Danske Bank <support@omaik.com> Reply-To: support@omaik.com Subject: ? Sinulla on uusi viestie <snip> Sinulla on (1) tärkeä viesti… Читать далее Phish Emitters! (Target: Danske Bank)