Рубрика: google.com

The host at this IP address (216.58.208.112) is either operated by cybercriminals or hosting compromised websites that are being used to distribute malware: http://storage.googleapis.com/bradok/09/v.txt http://storage.googleapis.com/bradok/09/vv.txt AS number: AS15169 AS name: GOOGLE — Google LLC Hostname: sof01s11-in-f112.1e100.net

Spammer hosting located here: $ dig +short www.weblinkindia.net 35.200.182.220 Spam sample ==================================================================== Received: from mail-srv5.weblink.in (mail-srv5.weblink.in. [209.160.66.245]) by X with ESMTP id X for <X>; Thu, 26 Feb 2015 X Received: from weblinkindia.net (209.160.72.48) by mail-srv5.weblink.in (PowerMTA(TM) v3.5r16) id htth8e19ukc8 for <X>; Thu, 26 Feb 2015 X (envelope-from <root@weblinkindia.net>) Received: from weblinkindia.net (localhost [127.0.0.1]) by… Читать далее Spammer hosting @35.200.182.220

Spammer hosting located here: http://milf.proonlinestudio.site/ -> http://www.baici.org/c/X?pi=mnt&cat=milf&p=X —> https://www.liebundgeil.com/landing40?pi=mnt&cat=milf&p=X $ dig +short www.liebundgeil.com liebundgeil.com. 35.242.194.204

Spammer hosting located here: http://go.nl-sending-73.de/klk/X -> https://www.suricade.com/click/X —> https://www.suricade.com/main/d.php?s=X —> https://go.sunnyaffiliates.com/visit/?bta=X —-> https://www.boocasino.com/?btag=X $ dig +short go.sunnyaffiliates.com sunnyaffiliates-tracking.cxaff.com. go-sunnyaffiliates-com.cellexpertx.prod2.reblaze.com. 35.234.86.61 Spam sample ==================================================================== Received: from mail01.nl-sending-73.de (mail01.nl-sending-73.de [185.133.237.26]) by X (Postfix) with ESMTP id X\n for <X>; Wed, 31 Jul 2019 XX:XX:XX +0000 (UTC) To: X From: Boo Casino <newsletter@nl-sending-73.de> Subject: [200% BONUS] Jetzt schnell… Читать далее Spammer hosting @35.234.86.61

Spam source ==================================================================== Received: from mail-pg1-f196.google.com (HELO mail-pg1-f196.google.com) (209.85.215.196) by X (qpsmtpd/0.80) with (AES128-SHA encrypted) ESMTPS; Wed, 31 Jul 2019X Received: by mail-pg1-f196.google.com with SMTP id X for <X>; Wed, 31 Jul 2019 X DKIM-Signature: X X-Google-DKIM-Signature: X X-Gm-Message-State: X X-Google-Smtp-Source: X X-Received: by 2002:a05:6a00:4c:: with SMTP id X; Wed, 31 Jul 2019 X Received:… Читать далее Spam source @209.85.215.196

The host at this IP address (172.217.168.206) is either operated by cybercriminals or hosting compromised websites that are being used to distribute malware: https://docs.google.com/uc?export=download&id=1L2aik1o3iPxxsrtvG69STtQfKEA56nYk https://docs.google.com/uc?export=download&id=1n4ObD9irEtF6TA-re6omRQFK8bM7KywK https://docs.google.com/uc?export=download&id=1Y9H9QRE8V2f3Bl7ZtafLPfYoK0YnBd-F https://docs.google.com/uc?export=download&id=1nVJ9CeVoxZimn548YQlGOGePwXMeFkdn https://docs.google.com/uc?export=download&id=1gC6g9ohciDi1m73wkSY4Lo4nrJGXOcCY https://docs.google.com/uc?export=download&id=1VWkgZi-a2LjLzHhc-hzEsS4wCS9Oys_k https://docs.google.com/uc?export=download&id=1w86fyxQ9FIsxXYKxGYzbZNgYtfWMlnf4 https://docs.google.com/uc?export=download&id=1DVskSguuyHcsTZjePLxGa4yXjlr6zwlM https://docs.google.com/uc?export=download&id=1qCt-px0G0tBmLH1aN8Zj5mVUeRlpgbMC https://docs.google.com/uc?export=download&id=1IzCqrVXKDB3JPF38pC—hTaO2SLZOmNW https://docs.google.com/uc?export=download&id=1Ecny3LEXHk90sAnKJf133fp6YEoklvpH https://docs.google.com/uc?export=download&id=1qjMp0RORtmdCx6IW6bWg2LgMarP7TM6P https://docs.google.com/uc?export=download&id=1tm4rkvJUlxVp7vD74IRL9FFxc9Crf9-T https://docs.google.com/uc?export=download&id=1Ca-K4kzZzpYE0FmwDIAj_VFXlt_tfG06 https://docs.google.com/uc?export=download&id=1svw14Oszom6u2IDNg91NpzveLPdEdg9f https://docs.google.com/uc?export=download&id=1vlQZMTnBeN6HIvXuCglJmImXXY8toGI7 https://docs.google.com/uc?export=download&id=1xua-_HtO3GH1n5MBfVhFLet_HKGT7_vv https://docs.google.com/uc?export=download&id=1-V5aaH7GsUMiRNzUE9KkInXi1-xoHBkv https://docs.google.com/uc?export=download&id=1W9-FHiy4Ig_Zc1DNZYNLY3v1Xm0lxCHJ https://docs.google.com/uc?export=download&id=1GvCFVVGNuEN_jh0I6FuWlRQJJomWlSvk https://docs.google.com/uc?export=download&id=1SkyxW1azoUjpViuqWeKdcSwPETys0r0X https://docs.google.com/uc?export=download&id=1TYiSuSs3JtuMIZurvp9uDpOUXD2maT8Q https://docs.google.com/uc?id=1-CAc6yG0NqjUBQxn9Ww7ObgFvZO07pFK AS number: AS15169 AS name: GOOGLE — Google LLC… Читать далее Malware distribution @172.217.168.206

Spam source ==================================================================== Received: from mail-pf1-f195.google.com (HELO mail-pf1-f195.google.com) (209.85.210.195) by X (qpsmtpd/0.80) with (AES128-SHA encrypted) ESMTPS; Wed, 31 Jul 2019 X Received: by mail-pf1-f195.google.com with SMTP id X for <X>; Wed, 31 Jul 2019 X DKIM-Signature: X X-Google-DKIM-Signature: X X-Gm-Message-State: X X-Google-Smtp-Source: X X-Received: by 2002:a17:90a:5884:: with SMTP id X; Wed, 31 Jul 2019 X… Читать далее Spam source @209.85.210.195

Spammer hosting located here: http://sefabningmo1973.blogspot.lt -> http://webofin.xyz/de.html —> http://vip.gupyjagu.xyz/tracker?offer_id=XXX —> http://prl.gupyjagu.xyz/?pl=XXX ——> http://cabinet.dl.kryptogewinn.vip.gupyjagu.xyz/home ——> https://cabinet.kryptogewinn.com/html/masonFord.html?email=X&password=X ——-> https://www.masonford.com/auto-login/ $ dig +short sefabningmo1973.blogspot.lt blogspot.l.googleusercontent.com. 172.217.168.33

Spam source ==================================================================== Received: from mail-pg1-f195.google.com (mail-pg1-f195.google.com [209.85.215.195]) by X (Postfix) with ESMTPS for <X>; Mon, 12 Aug 2019 X Received: by mail-pg1-f195.google.com with SMTP id X for <X>; Mon, 12 Aug 2019 X DKIM-Signature: X X-Google-DKIM-Signature: X X-Gm-Message-State: X X-Google-Smtp-Source: X X-Received: by 2002:a65:4304:: with SMTP id X; Mon, 12 Aug 2019 00:16:14 -0700… Читать далее Spam source @209.85.215.195

Spam source ==================================================================== Received: from mail-pf1-f196.google.com (mail-pf1-f196.google.com [209.85.210.196]) by X (Postfix) with ESMTPS for <X>; Tue, 13 Aug 2019 X Received: by mail-pf1-f196.google.com with SMTP id X for <X>; Mon, 12 Aug 2019 X DKIM-Signature: X X-Google-DKIM-Signature: X X-Gm-Message-State: X X-Google-Smtp-Source: X X-Received: by 2002:a63:fe52:: with SMTP id X; Mon, 12 Aug 2019 X Received:… Читать далее Spam source @209.85.210.196