Автор: blog

URL: https://goo.gl/ySt6iD Server IP address is 172.217.6.46 => Location: http://nohesitesiononlyfun.today/Alba Server IP address is 157.230.186.128 => Location: http://track.track05.com/click?pid=463&offer_id=748&sub1=spart Server IP address is 188.166.76.194 => Location: https://www.or23trk.com/DFBHL/51GJL6/?sub1=463&sub2=5fb46add96c6540001c8bf4f Server IP address is 34.120.151.224 => Location: https://convertable.io/smartlink/8fcd4d88-c5f0-4151-b07e-8613b1b5e6c2?source=9&uid=8f2bf0c102414f80bf2d5e0aac35d29d&pub=1088 Server IP address is 18.210.94.205 => Location: https://x.pathtrk.com/feea36ae-55d8-4186-b7b1-794de1212936?pub=1088&source=9&uid=8f2bf0c102414f80bf2d5e0aac35d29d&cs_id=ed74c7e8-2516-4803-ba06-075cd2cddfd2 Server IP address is 18.233.68.85 => Location: https://www.hookupshub.com/x/jk28an/?cep=fdT0XxsRuGOiDGAqg2Q9ZTQkKbEE_9x1pILAAARRzCVCRnLc6jaR5pqUNpllMt4TYIiKW-XnA16I3ppvro3S3cYdQksfGecF3gpP2p5UzhPhACzJZNIsZJCNoZou8ZkFLrquwI4ZnJCwvZhkUaqsWdpzS60Jgm8BaKiz17HYIGwJfwk1s-RLq2bVUeSzlJtfoFnF0Va4U4SI8FNfSDqUKWgRGhFfsYVQ3U-Ecng4fa3HmzRrVTgn9xT2pSzAL2RBA44hYr0jD31kn1zuPfdXWRjrx764aXWHub6ynO6DBipVfHgxt2v2OXATxhal-sPDYLjxZbiFC3yX12QqHYF-KGqanZGjzKrWbYuSG20b-D9sOnAub4QwEetLEc-wtDiyc8jZ1Kll1RmJsLMjZpldvpX5KlFP1HK05-F_MwXAb1zeW8gE70B1pQWcBnli02R2LdRQyVDeB7UspiBmxJ3VVBiNs4WtI0BADEU1s7Bev5o&lptoken=16e2054e66e711e558e3&pub=1088&source=9&uid=8f2bf0c102414f80bf2d5e0aac35d29d&cs_id=ed74c7e8-2516-4803-ba06-075cd2cddfd2 Server IP address is 104.18.57.244… Читать далее affiliate spam @or23trk.com

The host at this IP address is being (ab)used to «listbomb» email addresses: From: simonridleeey@gmail.com Subject: Dear Friend, Problem description ============================ Spammers signed up for the bulk email service using the victim’s email address. As a result, the victim is being «listbombed» with transactional messages and bulk email campaigns. Problem resolution ============================ In order to… Читать далее Abused / misconfigured newsletter service (listbombing)

docs.google.com. 144 IN A 142.250.68.46 Received: from mail-yb1-f206.google.com (HELO mail-yb1-f206.google.com) (209.85.219.206) by xx; Wed, 18 Nov 2020 19:34:42 +0000 Received: by mail-yb1-f206.google.com with SMTP id xx; Wed, 18 Nov 2020 11:44:42 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=xx; h=mime-version:reply-to:message-id:date:subject:from:to; bh=xx X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=xx; h=x-gm-message-state:mime-version:reply-to:message-id:date:subject :from:to; bh=xx X-Gm-Message-State: xx MIME-Version: 1.0 X-Received:… Читать далее New spam vector from Google: «Google Form» @docs.google.com

Received: from mail-vs1-f72.google.com (HELO mail-vs1-f72.google.com) (209.85.217.72) by xx; Thu, 19 Nov 2020 20:44:57 +0000 Received: by mail-vs1-f72.google.com with SMTP id xx; Thu, 19 Nov 2020 12:44:57 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=xx; h=mime-version:reply-to:message-id:date:subject:from:to; bhxx X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=xx; h=x-gm-message-state:mime-version:reply-to:message-id:date:subject :from:to; bh=xx X-Gm-Message-State: xx MIME-Version: 1.0 X-Received: by 2002:a67:fe98:: with SMTP id… Читать далее New spam vector from Google: «Google Form» / mgrayz5729@gmail.com / walbetty09@gmail.com

Christian Media Network, a religious and political advocacy group that has spams through Google Groups, is active again after a period of relative quiet. This organization has been spamming through Google Groups for at least two years, since we first noticed them. The organization is now forging subscriptions to new GoogleGroups lists, apparently from previous… Читать далее Christian Media Network (forging subscriptions to multiple lists)

The host at this IP address is being (ab)used to «listbomb» email addresses: From: anya@rankexperience.com Subject: SEO Dashboard can be placed on your website for free till the 24th of November Problem description ============================ Spammers signed up for the bulk email service using the victim’s email address. As a result, the victim is being «listbombed»… Читать далее Abused / misconfigured newsletter service (listbombing)

Spammer still active with the same sending address on 29-Jan-2021. ————————————————————- Received: from mail-yb1-f173.google.com (HELO mail-yb1-f173.google.com) (209.85.219.173) by xx; Tue, 24 Nov 2020 08:22:59 +0000 Received: by mail-yb1-f173.google.com with SMTP id xx.1 for <xx; Tue, 24 Nov 2020 00:22:58 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=xx; h=mime-version:from:date:message-id:subject:to:cc; bh=xx X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=xx;… Читать далее Spamming using Gmail: brp394sandeep@gmail.com

Spam source ==================================================================== Received: from mail-qv1-f44.google.com (mail-qv1-f44.google.com [209.85.219.44]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) (Client CN «smtp.gmail.com», Issuer «GTS CA 1O1» (not verified)) by X (Postfix) with ESMTPS id X for <X>; Thu, 26 Nov 2020 X Received: by mail-qv1-f44.google.com with SMTP id ec16so652705qvb.0 for <X>; Thu, 26 Nov 2020 X DKIM-Signature: X X-Google-DKIM-Signature:… Читать далее Spam source @209.85.219.44

(aka carder.su / uniccshop.ru / pinkshop.name / carderpro.com / cardmafia.mn / ccbase.biz / cpro.su) ;; ANSWER SECTION: cvvshop.lv. 1799 IN NS ns-cloud-e2.googledomains.com. cvvshop.lv. 1799 IN NS ns-cloud-e4.googledomains.com. cvvshop.lv. 1799 IN NS ns-cloud-e3.googledomains.com. cvvshop.lv. 1799 IN NS ns-cloud-e1.googledomains.com. ;; ANSWER SECTION: cvvshop.lv. 179 IN A 151.106.2.144 cvvshop.lv. 179 IN A 185.250.240.244 cvvshop.lv. 179 IN A 84.16.234.220… Читать далее DNS hosting for Russian carding fraud site/forum: cvvshop.lv

https://hcmcou-my.sharepoint.com/:b:/g/personal/chau_tdd_oude_edu_vn/EbDc7VE740JHkCstHQmgApwBahR_kvReicRf_jlrhz38yA?e=4%3aiGnY9y&at=9 >>> https://sites.google.com/view/come2here-/ >>> https://www.google.com/url?q=https%3A%2F%2Fgo.cm-trk3.com%2Faff_c%3Foffer_id%3D3918%26aff_id%3D26108%26aff_sub5%3Djy20&sa=D&sntz=1&usg=AFQjCNH3wmxYFS7w8F7XyhsDY0agg5bQnw >>> https://go.cm-trk4.com/rd.html?go=https%3A%2F%2Fanamuel-careslie.com%2F617ed4ee-ed33-483a-b8e3-308d1e39164a%3Fcid%3D38_26108_3918_b0353eb65a0994b3b9edcb1d314818fe%26adwpl%3D26108%26source%3D sites.google.com. 271 IN A 172.217.5.78