Рубрика: cloudflare.com

Stolen credit card data websites: https://ascarding.com/ >>> https://amigos.to/ >>> https://amigos.gs/login amigos.to. 300 IN A 104.21.22.157 amigos.to. 300 IN A 172.67.205.129 amigos.gs. 299 IN A 104.21.92.82 amigos.gs. 299 IN A 172.67.190.71 _________ Was: amigos.gs. 3520 IN A 190.115.16.25

Stolen credit card data sites: www.Altenen.sk + www.Altenen.St + www.Altenen.Pro + www.Alboraaq.com Telegram Group : https://t.me/altenen_nz Twitter : https://twitter.com/group_atn Instagram : https://www.instagram.com/altenen.official/ altenen.is. 299 IN A 104.21.35.9 altenen.is. 299 IN A 172.67.167.41 altenen.pro. 299 IN A 104.21.69.8 altenen.pro. 299 IN A 172.67.202.142 _____________________ Was: altenen.pro. 1799 IN A 104.244.73.248 altenen.is. 299 IN A 172.67.180.191 altenen.is.… Читать далее Carding fraud site/forum: altenen.is / altenen.sk / altenen.st / altenen.pro / alboraaq.com

https://carders.team/member.php?u=27440 >>> https://shopsocks5.com shopsocks5.com. 299 IN A 104.21.17.55 shopsocks5.com. 299 IN A 172.67.222.85 ______________________________________________________ Was: shopsocks5.com. 299 IN A 136.243.23.26 ______________________________________________________ Was: shopsocks5.com. 359 IN A 136.243.95.44 ______________________________________________________ Was: shopsocks5.com. 359 IN A 51.75.144.2 ______________________________________________________ shopsocks5.com. 359 IN A 51.68.155.137 ______________________________________________________ PLAN DAILY For example, Daily 60: It is allowed to get maximium 60 socks… Читать далее Selling access to hacked server proxies to cybercriminals: shopsocks5.com

See: https://www.spamhaus.org/sbl/listings/cloudflare.com SBL529049 172.67.222.85 cloudflare.com 2021-08-02 Selling access to hacked server proxies to cybercriminals: shopsocks5.com SBL526387 172.67.220.78 cloudflare.com 2021-07-03 Carding fraud site/forum: database-market.shop SBL525483 172.67.223.219 cloudflare.com 2021-07-01 Spamvertised domain/redirector hosting SBL525132 172.67.222.222 cloudflare.com 2021-06-16 affiliate spam @getsugarbalance.com SBL524600 172.67.222.138 cloudflare.com 2021-06-14 Malware distribution @172.67.222.138 SBL520823 172.67.221.126 cloudflare.com 2021-05-22 Spammer hosting SBL505321 172.67.220.79 cloudflare.com 2021-07-03 affiliate… Читать далее Spam and cybercrime hosting (reports ignored — escalation)

vn5socks.net. 299 IN A 104.21.58.245 vn5socks.net. 299 IN A 172.67.166.126 __________________ Was: vn5socks.net. 299 IN A 136.243.94.219 __________________ Was: vn5socks.net. 359 IN A 178.63.48.143 __________________ Was: vn5socks.net. 2181 IN A 51.254.199.119 __________________ https://www.google.com/search?q=vn5socks.net https://forum.carder.one/showthread.php?t=29967&page=43 https://i.imgur.com/igyDCVW.jpg xample daily 30: It is allowed to get maximium 30 socks for a day. If do not get them you… Читать далее Selling access to hacked server proxies to cybercriminals: vn5socks.net

Return-Path: <no-reply@amazon.com> Received: from subscriber210.amazon.com (v118-27-40-210.6cop.static.cnode.io [118.27.40.210]) by [] (8.14.7/8.14.7) with ESMTP id [] (version=TLSv1/SSLv3 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO) for []; Mon, 9 Aug 2021 14:[]:[] -0400 Authentication-Results: [] Message-Id: []> DKIM-Signature: [] X-MSMail-Priority: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.[] ReturnReceipt: 1 MIME-Version: 1.0 From: «RAY-BAN» <no-reply@amazon.com> To: «[]» [] Date: 10 Aug 2021 02:[]:[]… Читать далее Spamvertised domain hosting

See: https://www.spamhaus.org/sbl/listings/cloudflare.com SBL529051 172.67.166.126 cloudflare.com 2021-08-02 Selling access to hacked server proxies to cybercriminals: vn5socks.net SBL528720 172.67.167.41 cloudflare.com 2021-07-29 Carding fraud site/forum: altenen.is / altenen.sk / altenen.st / altenen.pro / alboraaq.com SBL526410 172.67.167.83 cloudflare.com 2021-07-28 Carding fraud site/forum: cardhouse.africa / cardhouse.one / topccworld.cc / scan.rodeo SBL526391 172.67.167.222 cloudflare.com 2021-07-03 Carding fraud site/forum: jstash.bazar.sx / jstash.bazar.shop… Читать далее Spam and cybercrime hosting (reports ignored — escalation)

FluBot android malware distribution sites: http://aheadfinance.xyz/d.php http://altpowersolar.club/m.php http://analist.club/p.php http://bamiz.club/c.php http://bamiz.xyz/c.php http://bestcomputer.xyz/b.php http://binaryprobe.club/u.php http://bloggrid.club/j.php http://bloggrid.xyz/j.php http://blogstats.club/v.php http://bookpost.xyz/h.php http://buildmyshop.club/u.php http://buzzzone.xyz/n.php http://chinatimes.xyz/o.php http://click-online.xyz/b.php http://comfortblog.xyz/c.php http://copywhy.club/s.php http://demido.club/s.php http://demido.xyz/r.php http://dgame.xyz/h.php http://diorqq.xyz/g.php http://doteach.xyz/u.php http://ebooksfile.club/y.php http://ebooksfile.xyz/s.php http://ecosuite.club/f.php http://edostuff.xyz/v.php http://etherapps.xyz/p.php http://factriddle.xyz/y.php http://familycar.club/q.php http://foodeezone.club/l.php http://foodeezone.xyz/y.php http://freeforward.club/n.php http://freeforward.xyz/n.php http://freshstock.xyz/w.php http://gamercenter.xyz/l.php http://geniusfund.club/c.php http://geniusfund.xyz/t.php http://hairlab.xyz/o.php http://healthcon.xyz/q.php http://healthdinner.club/j.php http://healtheffect.xyz/g.php http://homnio.xyz/s.php http://hourpower.club/i.php http://hugcha.club/l.php http://hugcha.xyz/m.php http://hyperserial.xyz/y.php http://hypocraft.club/v.php http://infosag.club/n.php http://infosag.xyz/l.php http://instacode.xyz/d.php… Читать далее FluBot malware distribution @172.67.162.240

FluBot android malware distribution hosted here: https://hachara.xyz/n.php https://haharley.xyz/b.php https://iemei.xyz/z.php https://illana.xyz/w.php https://imarthur.xyz/h.php https://imcamilla.xyz/x.php https://imemilia.xyz/r.php https://imhassan.xyz/k.php https://imjoselyn.xyz/h.php https://imlouis.xyz/u.php https://immarlene.xyz/y.php https://impatricia.xyz/w.php https://inaina.xyz/p.php https://inina.xyz/s.php https://janae.xyz/m.php https://jojude.xyz/r.php https://katharyn.xyz/p.php https://katherin.xyz/d.php https://kieth.xyz/p.php https://labenito.xyz/a.php https://ladominique.xyz/t.php https://ladot.xyz/u.php https://languyet.xyz/e.php https://lanton.xyz/c.php https://laquinton.xyz/z.php https://latonia.xyz/n.php https://lejerome.xyz/w.php $ dig +short imhassan.xyz 172.67.204.101 104.21.93.40

The host at this IP address is currently being used to distribute malware. Malware distribution located here: hXXp://i.spesgrt.com/lqosko/p18j/customer3.exe $ dig +short i.spesgrt.com 104.21.88.226 Referencing malware binaries (MD5 hash): 00810b59644d1610f9eb57e2d9e175e4 — AV detection: 40 / 69 (57.97) 078192e792b12a8d9980f364e110155c — AV detection: 40 / 70 (57.14) 0854d681b1bd72e1f27a1704e74df187 — AV detection: 37 / 68 (54.41) 0965da18bfbf19bafb1c414882e19081 — AV… Читать далее Malware distribution @104.21.88.226