Автор: blog

Stolen credit card data websites. unicc-bazar.cm. 599 IN A 35.242.182.237 35.242.182.237 plattform-formular-idcheck.com 2021-02-15 09:14:54 35.242.182.237 plattform-logincheck-legit.com 2021-02-11 22:35:03 35.242.182.237 plattform-loginform-checkid.com 2021-02-12 19:36:54 35.242.182.237 unicc-bazar.cm 2021-02-22 16:01:49 ______________ Was: unicc-bazar.cm. 599 IN A 79.174.12.93 ______________ Was: unicc-bazar.cm. 599 IN A 193.32.188.53 ______________ Was: unicc-bazar.cm. 599 IN A 8.208.9.212 ______________ Was: unicc-bazar.cm. 299 IN A 104.27.151.1 unicc-bazar.cm.… Читать далее Carding fraud site/forums uniCC-bazar.cm (fe-shop.ru (approved-cc.su / trump-dumps.ru / iprofit.cc / megasearch.su / carderspro.com)

https://goo.gl/Kvuf8M 302 Redirect http://howeveryoulikefun.info/Emily 301 Redirect https://howeveryoulikefun.info/Emily 302 Redirect http://gssa.info/ 301 Redirect http://www.gssa.info/ 301 Redirect https://dating-contacts-here2.com/?u=0rfpae3&o=13780xn&m=1&t=shaha goo.gl. 299 IN A 142.250.68.78 ________________ Received: from ns1.cdgjo.com (ns1.cdgjo.com [168.235.80.112]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by xxx; Fri, 18 Dec 2020 04:22:26 -0500 (EST) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=cdgjo.com; s=mail; h=Content-Transfer-Encoding:Content-Type:MIME-Version:Message-ID:… Читать далее Using hacked server/account to send porn spam for: https://goo.gl/Kvuf8M

GoogleUserContent hosts the landing page for a long-time spammer from Sales Catalyst, a Philippines0-based spam operation. The URL is hidden behind bit.ly or a SalesCatalyst link tracker. Google: Please do not allow this spammer to continue to abuse your resources. Received: from mail2.xpert-sender.com (mail2.xpert-sender.com [110.76.190.241]) Date: Thu, 17 Dec 2020 19:##:## +0800 (HKT) From: JHIE… Читать далее Spam Hosting (form.jotform.com)

cardmafia.mn. 599 IN A 34.78.146.19 34.78.146.19 spectas.ws 2021-02-28 ___________ cardmafia.mn. 299 IN A 91.241.19.41 cardingmafia.pro. 599 IN A 91.241.19.41 bfm-direct.com. 299 IN A 104.28.19.52 bfm-direct.com. 299 IN A 104.28.18.52 bfm-direct.com. 299 IN A 172.67.131.65 ___________ cardmafia.mn. 198 IN A 45.9.148.167 2020-04-23 09:12:19 bfm-direct.com A 45.9.148.167 cardingmafia.pro. 599 IN A 185.200.243.53 2020-07-13 04:36:55 approvedcc.su A 185.200.243.53… Читать далее Credit card fraud domain hosting: cardmafia.mn (cardingmafia.pro)

The host at this IP address is being (ab)used to «listbomb» email addresses: From: charu@websollutions.com Subject: Christmas: Fabulous SEO Offers Problem description ============================ Spammers signed up for the bulk email service using the victim’s email address. As a result, the victim is being «listbombed» with transactional messages and bulk email campaigns. Problem resolution ============================ In… Читать далее Abused / misconfigured newsletter service (listbombing)

Spammer hosting located here: https://vchvgycfxfg.page.link/9cr1 -> https://www.metacanal.com/GZZFW4R/QXFHQWW/ —> http://thehealthysavers.com/lions-me-thoraxin/?sub1=X —> https://thoraxin.net/?oid=X $ dig +short vchvgycfxfg.page.link 172.217.168.46 Spam sample ====================================== Received: from aws.amazon.de (unknown [185.32.126.222]) by X (Postfix) with ESMTP for <X>; Thu, 24 Dec 2020 X MIME-Version: 1.0 From: =?UTF-8?B?VGhvcmF4aW4=?= <chello.at> Subject: =?UTF-8?B?IEVuZGxpY2gga/ZubmVuIFNpZSBGZXR0IHZlcmxpZXJlbiwgVGVzdG9zdGVyb24gdW5kIGRlbiBTZXh1YWx0cmllYiBzdGVpZ2Vybi4=?= Reply-To: Received: To: X Content-Transfer-Encoding: 7bit Content-Type: text/html; charset=»UTF-8″ Date: Wed, 23… Читать далее Spammer hosting @172.217.168.46

Spammer hosting located here: https://firebasestorage.googleapis.com/v0/b/projet-1-9f307.appspot.com/o/BUILD.html?alt=media&token=e78f98ca-d904-402e-999d-a14fb0f5391d -> https://bounce.cleaning/bildd/Bild.html —> https://lead1.pl/p/X/X/X —> https://profit-4you-here.life/?u=X $ dig +short firebasestorage.googleapis.com 216.58.215.234 Spam sample =================================== Received: from psv.bronto.com (unknown [185.158.113.243]) by X (Postfix) with ESMTP for <X>; Tue, 29 Dec 2020 X Date: Tue, 29 Dec 2020 X Message-ID: <X-JfVG6IB+X-q@mx3.cheapnet.it> From: Dragon Bitcoin <prabath@mx3.cheapnet.it> To: X Content-Transfer-Encoding: 7bit Content-Type: text/html; charset=»UTF-8″… Читать далее Spammer hosting @216.58.215.234

1/01/2021: This domain has moved from GoDaddy to a new hosting provider, Google. It is continuing to spam through SyedsMarketing. We are listing the domain to protect our users. $ host serviceapartments.com.pk serviceapartments.com.pk has address 34.102.136.180 6/01/2020 [SBL486969]: GoDaddy hosts the A record and website of the domain serviceapartments.com.pk. The owners of this domain have… Читать далее serviceapartments.com.pk

Spammer hosting: https://storage.googleapis.com/06c8cffc4a9b525e1a07/114b2b7f2f330556f2b4 -> http://34.122.208.92/ —> http://34.122.208.92/cl/XXX —> https://chef-metz.com/index2.php?id=XXX —-> https://bestximpression.com/?XXX ——> https://lazyxload.com/click?trvid=XXX ——> https://www.rtg2trk.com/XXX ——-> https://btsyssoftapp.com?lang=XXX $ dig +short storage.googleapis.com 172.217.168.16 216.58.215.240 172.217.168.80 172.217.168.48 Spam sample ==================================================================== Received: from dunia33.com (unknown [104.248.149.204]) by X (Postfix) with ESMTP id X for <X>; Sat, 2 Jan 2021 X MIME-Version: 1.0 From: Dragon Bitcoin <newsletters-no-reply@myfonts.com> To: X… Читать далее Spammer hosting @172.217.168.80

Spammer hosting: https://storage.googleapis.com/06c8cffc4a9b525e1a07/114b2b7f2f330556f2b4 -> http://34.122.208.92/ —> http://34.122.208.92/cl/XXX —> https://chef-metz.com/index2.php?id=XXX —-> https://bestximpression.com/?XXX ——> https://lazyxload.com/click?trvid=XXX ——> https://www.rtg2trk.com/XXX ——-> https://btsyssoftapp.com?lang=XXX Spam sample ==================================================================== Received: from dunia33.com (unknown [104.248.149.204]) by X (Postfix) with ESMTP id X for <X>; Sat, 2 Jan 2021 X MIME-Version: 1.0 From: Dragon Bitcoin <newsletters-no-reply@myfonts.com> To: X Date: Sat, 02 Jan 2021 X Subject: Verdiene… Читать далее Spammer hosting @34.122.208.92