amazon.com — Страница 15

spam source

[!] This SBL record is to show an example of ongoing network abuse. It currently is not being published in the SBL list, but is instead being presented on the webpage so that the network owner has evidence to investigate and correct the problem. w 161.38.193.221 m193-221.mailgun.net «m193-221.mailgun.net» 2022-01-01T04:00:00Z (+/-10 min) 161.38.193.221/32 (161.38.193.221 .. 161.38.193.221)… Читать далее spam source

spam source

charity.thrivecart.com

This URI appears in spam sent through mailzapp.io. The domain supercool.email is sending spam to a list scraped from Whois records and other sources, possibly purchased from a third party. This URI receives responses to that spam. This URI is hosted on four different IP addresses at Amazon AWS. Amazon: please engage with your customer… Читать далее charity.thrivecart.com

Phish source @54.173.5.223

Received: from 711250.cloudwaysapps.com (ec2-54-173-5-223.compute-1.amazonaws.com [54.173.5.223])

chinese counterfeit spam nameserver — zdkok.com

Nameserver set up by chinese counterfeit spammers. tailong-hk.com. 14400 IN NS 999.zdkok.com. tailong-hk.com. 14400 IN NS 888.zdkok.com. 999.zdkok.com. 172799 IN A 15.223.109.236 888.zdkok.com. 172799 IN A 15.223.109.236 2.tailong-hk.com. 14400 IN A 199.19.95.17 www.zdkok.com. 300 IN A 104.21.76.13 www.zdkok.com. 300 IN A 172.67.185.12 zdkok.com. 172800 IN NS adam.ns.cloudflare.com. zdkok.com. 172800 IN NS gabriella.ns.cloudflare.com. ec2-15-223-109-236.ca-central-1.compute.amazonaws.com. 604800 IN… Читать далее chinese counterfeit spam nameserver — zdkok.com

DCRat botnet controller @3.22.30.40

The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse. Malware botnet controller located at 3.22.30.40 on port 16416 TCP: $ telnet 3.22.30.40 16416 Trying 3.22.30.40… Connected to 3.22.30.40. Escape character… Читать далее DCRat botnet controller @3.22.30.40

phishing server

54.150.218.161|becuservices.org|2021-12-29 15:41:42 54.150.218.161|mtbankonlineaccess.com|2021-12-29 15:16:28 54.150.218.161|mtbankonlineaccessservices.com|2021-12-29 15:16:35

spam source

[!] This SBL record is to show an example of ongoing network abuse. It currently is not being published in the SBL list, but is instead being presented on the webpage so that the network owner has evidence to investigate and correct the problem. w 54.240.9.38 a9-38.smtp-out.amazonses.com «a9-38.smtp-out.amazonses.com» 2021-12-27T16:40:00Z (+/-10 min) w 54.240.9.39 a9-39.smtp-out.amazonses.com «a9-39.smtp-out.amazonses.com»… Читать далее spam source

spam source

[!] This SBL record is to show an example of ongoing network abuse. It currently is not being published in the SBL list, but is instead being presented on the webpage so that the network owner has evidence to investigate and correct the problem. w 54.240.9.38 a9-38.smtp-out.amazonses.com «a9-38.smtp-out.amazonses.com» 2021-12-27T16:40:00Z (+/-10 min) w 54.240.9.39 a9-39.smtp-out.amazonses.com «a9-39.smtp-out.amazonses.com»… Читать далее spam source

Snowshoe spam ranges

52.18.169.171 m30.esputnik.com «m30.esputnik.com» 2021-12-24T06:40:00Z (+/-10 min) 52.18.169.171/32 (52.18.169.171 .. 52.18.169.171) 52.19.99.54 m79.esputnik.com «m79.esputnik.com» 2021-12-24T06:40:00Z (+/-10 min) 52.19.99.54/32 (52.19.99.54 .. 52.19.99.54) 52.49.237.51 m32.esputnik.com «m32.esputnik.com» 2021-12-24T06:50:00Z (+/-10 min) 52.49.237.51/32 (52.49.237.51 .. 52.49.237.51) 52.50.69.120 m45.esputnik.com «m45.esputnik.com» 2021-12-24T06:40:00Z (+/-10 min) 52.50.69.120/32 (52.50.69.120 .. 52.50.69.120) 52.50.205.175 m43.esputnik.com «m43.esputnik.com» 2021-12-24T06:50:00Z (+/-10 min) 52.50.205.175/32 (52.50.205.175 .. 52.50.205.175) 52.50.233.247 m42.esputnik.com «m42.esputnik.com» 2021-12-24T06:40:00Z (+/-10… Читать далее Snowshoe spam ranges