Автор: blog

$ host e.ert4.co e.ert4.co has address 104.21.46.109 e.ert4.co has address 172.67.138.57 e.ert4.co has IPv6 address 2606:4700:3034::ac43:8a39 e.ert4.co has IPv6 address 2606:4700:3032::6815:2e6d Seen in SMS package delivery fraud spam, tested working (on desktop, leads to blank.org, on mobile, gives the appropriate response)

$ host e.ert4.co e.ert4.co has address 104.21.46.109 e.ert4.co has address 172.67.138.57 e.ert4.co has IPv6 address 2606:4700:3034::ac43:8a39 e.ert4.co has IPv6 address 2606:4700:3032::6815:2e6d Seen in SMS package delivery fraud spam, tested working (on desktop, leads to blank.org, on mobile, gives the appropriate response)

At it for years! https://www.onlinethreatalerts.com/article/2019/8/9/domain-name-search-engine-registration-scam/ https://hucksters.net/person/zoltan-zarka Hacked site? http://www.yingyok.com/domain/privacy-policy.php www.yingyok.com. 299 IN A 172.67.204.129 www.yingyok.com. 299 IN A 104.21.61.5 w396.ovm.website. 299 IN A 35.198.81.57 Received: from venturebacon.com (venturebacon.com [185.104.114.15]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by xx; Mon, 14 Jun 2021 03:22:24 -0400 (EDT) Received: from admin by venturebacon.com with… Читать далее Zoltán Zarka

Return-Path: []@mail.teencerbon.digital> Received: from xray.teencerbon.digital (host-193.17.7.74.meric.net.tr [193.17.7.74] (may be forged)) by [] (8.14.7/8.14.7) with ESMTP id [] for []; Tue, 22 Jun 2021 06:[]:[] -0400 Authentication-Results: [] DKIM-Signature: [] DomainKey-Signature: [] Mime-Version: 1.0 Content-Type: multipart/alternative; boundary=»[]» Date: Tue, 22 Jun 2021 12:[]:[] +0200 From: «Shrink Your Belly» <newsletter@teencerbon.digital> Reply-To: «Shrink Your Belly» <newsletter@teencerbon.digital> Subject: Shrink… Читать далее Spamvertised domain/redirector hosting: teencerbon.digital

Received: from server233a.watcherofthemist.com (5.196.194.232) Date: Tue, 22 Jun 2021 22:3x:xx +0000 Subject: Just In | news.com.au From: Blake Brownell <contact@watcherofthemist.com> http://track.watcherofthemist.com/wf/click?m=[] 5.196.194.232 https://www.toasttostart.com/survey/bnjqh/[] 104.21.92.106

Received: from mail-pf1-f206.google.com (209.85.210.206) Date: Wed, 23 Jun 2021 04:05:11 -0700 Subject: Gör stаbіlitеt ti… — Gör stаbіlitеt till ditt mottо! För b… From: «Andrjuha Miheev (Google Slides)» <comments-noreply@docs.google.com> https://docs.google.com/presentation/d/10Fl1q1PHSqiLFwJFJpypLFk5i5d3zWxQuHAcT1G8iBU/edit?disco=AAAAMlauDt8&ts=60d31567&usp=comment_email_document&usp_dm=false => https://www.google.com/url?q=https://mexu.uelela.xyz/qunuroiiey3-wrafki&sa=D&source=editors&ust=1624465529327000&usg=AFQjCNHCF3_teKhAzf4F7wbnwbQxykDPtw => https://miesl.tunyko.cyou/all7?n=apr02se-btc-091-d236&sub_id_1=s12&sub_id_2=apr02se-btc-091-d236&sub_id_3=all7&sub_id_4=oz01se&of=all7 => https://allformybaby.ru/catalog/detskie_kolyaski/ mexu.uelela.xyz. 300 IN A 172.67.218.152 mexu.uelela.xyz. 300 IN A 104.21.75.94 miesl.tunyko.cyou. 300 IN A 172.67.218.110 miesl.tunyko.cyou. 300 IN A… Читать далее Spamvertised website

Received: from mail-pf1-f206.google.com (209.85.210.206) Date: Wed, 23 Jun 2021 04:05:11 -0700 Subject: Gör stаbіlitеt ti… — Gör stаbіlitеt till ditt mottо! För b… From: «Andrjuha Miheev (Google Slides)» <comments-noreply@docs.google.com> https://docs.google.com/presentation/d/10Fl1q1PHSqiLFwJFJpypLFk5i5d3zWxQuHAcT1G8iBU/edit?disco=AAAAMlauDt8&ts=60d31567&usp=comment_email_document&usp_dm=false => https://www.google.com/url?q=https://mexu.uelela.xyz/qunuroiiey3-wrafki&sa=D&source=editors&ust=1624465529327000&usg=AFQjCNHCF3_teKhAzf4F7wbnwbQxykDPtw => https://miesl.tunyko.cyou/all7?n=apr02se-btc-091-d236&sub_id_1=s12&sub_id_2=apr02se-btc-091-d236&sub_id_3=all7&sub_id_4=oz01se&of=all7 => https://allformybaby.ru/catalog/detskie_kolyaski/ mexu.uelela.xyz. 300 IN A 172.67.218.152 mexu.uelela.xyz. 300 IN A 104.21.75.94 miesl.tunyko.cyou. 300 IN A 172.67.218.110 miesl.tunyko.cyou. 300 IN A… Читать далее Spamvertised website

$ host tavomahlad.ee tavomahlad.ee has address 172.67.135.220 tavomahlad.ee has address 104.21.26.103 tavomahlad.ee has IPv6 address 2606:4700:3036::6815:1a67 tavomahlad.ee has IPv6 address 2606:4700:3032::ac43:87dc

$ host tavomahlad.ee tavomahlad.ee has address 172.67.135.220 tavomahlad.ee has address 104.21.26.103 tavomahlad.ee has IPv6 address 2606:4700:3036::6815:1a67 tavomahlad.ee has IPv6 address 2606:4700:3032::ac43:87dc

Received: from amazon.com (152.32.180.50 [152.32.180.50]) From: «RAY-BAN SUNGLASSES» <no-reply@amazon.com> Date: 24 Jun 2021 03:1x:xx -0700 Subject: Prices are low, don’t be slow on this free shipping day sale https://subscriber.6883513.com/SubscribeClick.aspx?p8q=[] => https://bit.ly/3vARFFP => https://www.rbhqb.com/ subscriber.6883513.com. 92 IN A 172.67.174.61 subscriber.6883513.com. 92 IN A 104.21.30.252 www.rbhqb.com. 300 IN A 104.21.60.86 www.rbhqb.com. 300 IN A 172.67.194.252