Рубрика: microsoft.com

Vjw0rm botnet controller @13.92.159.78

The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse. Malware botnet controller located at 13.92.159.78 on port 6430 TCP: $ telnet 13.92.159.78 6430 Trying 13.92.159.78… Connected to 13.92.159.78. Escape character… Читать далее Vjw0rm botnet controller @13.92.159.78

Опубликовано
В рубрике microsoft.com

Auth abuse.

After several hours of trying the same ID over and over again, maybe he will go away. 500 attempts later…

Опубликовано
В рубрике microsoft.com

irs phishing server

$ host irs.gov-linkverif.com irs.gov-linkverif.com has address 20.106.164.6 hXXps://irs.gov-linkverif.com 20.106.164.6|gov-linkverif.com|2021-11-12 19:41:43 20.106.164.6|irs-approval19newnormal.com|2021-11-08 01:11:02 20.106.164.6|irs-form-approval19.com|2021-11-12 19:45:59 20.106.164.6|irs.gov-linkverif.com|2021-11-12 19:41:26 20.106.164.6|verify.gov-linkverif.com|2021-11-12 19:41:42

Опубликовано
В рубрике microsoft.com

irs phishing server

hXXps://cokukuns.com/r/ZEwPGNS 20.185.49.251|cokukuns.com|2021-11-12 13:16:33 20.185.49.251|lsr-g0v-us.com|2021-11-12 11:16:27 20.185.49.251|pndkingas.com|2021-11-12 15:31:28

Опубликовано
В рубрике microsoft.com

phishing server

20.110.153.110|trustwalletphrase.site|2021-11-10 02:11:02 20.110.153.110|10701500793306-indn.tk|2021-11-10 14:46:25 20.110.153.110|10701500793306-tw.tk|2021-11-06 23:06:12 20.110.153.110|10701500793307-indn.tk|2021-11-07 13:50:48 20.110.153.110|10701500793307-tw.tk|2021-11-06 23:06:02 20.110.153.110|10701500793308-indn.tk|2021-11-07 13:51:00 20.110.153.110|10701500793308-tw.tk|2021-11-06 22:45:47 20.110.153.110|10701500793309-indn.tk|2021-11-07 13:55:52 20.110.153.110|10701500793309-tw.tk|2021-11-06 23:06:10 20.110.153.110|10701500793310-indn.tk|2021-11-07 13:51:00 20.110.153.110|10701500793310-tw.tk|2021-11-06 22:50:49 20.110.153.110|10701500793401-tw.tk|2021-11-08 02:15:53 20.110.153.110|10701500793402-tw.tk|2021-11-08 02:46:10 20.110.153.110|10701500793403-tw.tk|2021-11-08 02:11:06 20.110.153.110|10701500793404-tw.tk|2021-11-08 02:11:14 20.110.153.110|10701500793405-tw.tk|2021-11-08 03:41:02 20.110.153.110|10701500793406-tw.tk|2021-11-08 02:46:11 20.110.153.110|10701500793407-tw.tk|2021-11-08 02:10:52 20.110.153.110|10701500793408-tw.tk|2021-11-08 02:11:24 20.110.153.110|10701500793409-tw.tk|2021-11-08 02:45:59 20.110.153.110|10701500793410-tw.tk|2021-11-08 02:10:49 20.110.153.110|10701500793413-tw.tk|2021-11-10 01:00:53 20.110.153.110|10701500793415-tw.tk|2021-11-10 01:00:58 20.110.153.110|10701500793417-tw.tk|2021-11-09 00:31:05 20.110.153.110|10701500793420-tw.tk|2021-11-09 00:56:18 20.110.153.110|10701500793421-tw.tk|2021-11-11 04:26:11 20.110.153.110|10701500793422-tw.tk|2021-11-11 04:26:12 20.110.153.110|10701500793423-tw.tk|2021-11-11… Читать далее phishing server

Опубликовано
В рубрике microsoft.com

Snowshoe spam ranges

13.80.40.100 dns781e318c.westeurope.cloudapp.azure.com «host2.officiallachargersshop.com» 2021-11-10T15:50:00Z (+/-10 min) 13.80.40.100/32 (13.80.40.100 .. 13.80.40.100) 13.95.24.106 dns3f3453df.westeurope.cloudapp.azure.com «host6.officiallachargersshop.com» 2021-11-10T15:50:00Z (+/-10 min) 13.95.24.106/32 (13.95.24.106 .. 13.95.24.106) 13.95.25.101 dns89aa0dbe.westeurope.cloudapp.azure.com «host3.officiallachargersshop.com» 2021-11-10T15:50:00Z (+/-10 min) 13.95.25.101/32 (13.95.25.101 .. 13.95.25.101) 13.95.28.115 «host19.officiallachargersshop.com» 2021-11-10T15:50:00Z (+/-10 min) 13.95.28.115/32 (13.95.28.115 .. 13.95.28.115) 40.68.10.142 dns36de6f9d.westeurope.cloudapp.azure.com «host18.nikeairpaschero.com» 2021-11-10T15:50:00Z (+/-10 min) 40.68.10.142/32 (40.68.10.142 .. 40.68.10.142) 40.68.11.144 b3a01db1.westeurope.cloudapp.azure.com «host3.officiallachargersshop.com» 2021-11-10T15:50:00Z (+/-10 min)… Читать далее Snowshoe spam ranges

Опубликовано
В рубрике microsoft.com

Snowshoe spam ranges

13.80.40.100 dns781e318c.westeurope.cloudapp.azure.com «host2.officiallachargersshop.com» 2021-11-10T15:50:00Z (+/-10 min) 13.80.40.100/32 (13.80.40.100 .. 13.80.40.100) 13.95.24.106 dns3f3453df.westeurope.cloudapp.azure.com «host6.officiallachargersshop.com» 2021-11-10T15:50:00Z (+/-10 min) 13.95.24.106/32 (13.95.24.106 .. 13.95.24.106) 13.95.25.101 dns89aa0dbe.westeurope.cloudapp.azure.com «host3.officiallachargersshop.com» 2021-11-10T15:50:00Z (+/-10 min) 13.95.25.101/32 (13.95.25.101 .. 13.95.25.101) 13.95.28.115 «host19.officiallachargersshop.com» 2021-11-10T15:50:00Z (+/-10 min) 13.95.28.115/32 (13.95.28.115 .. 13.95.28.115) 40.68.10.142 dns36de6f9d.westeurope.cloudapp.azure.com «host18.nikeairpaschero.com» 2021-11-10T15:50:00Z (+/-10 min) 40.68.10.142/32 (40.68.10.142 .. 40.68.10.142) 40.68.11.144 b3a01db1.westeurope.cloudapp.azure.com «host3.officiallachargersshop.com» 2021-11-10T15:50:00Z (+/-10 min)… Читать далее Snowshoe spam ranges

Опубликовано
В рубрике microsoft.com

Snowshoe spam ranges

13.80.40.100 dns781e318c.westeurope.cloudapp.azure.com «host2.officiallachargersshop.com» 2021-11-10T15:50:00Z (+/-10 min) 13.80.40.100/32 (13.80.40.100 .. 13.80.40.100) 13.95.24.106 dns3f3453df.westeurope.cloudapp.azure.com «host6.officiallachargersshop.com» 2021-11-10T15:50:00Z (+/-10 min) 13.95.24.106/32 (13.95.24.106 .. 13.95.24.106) 13.95.25.101 dns89aa0dbe.westeurope.cloudapp.azure.com «host3.officiallachargersshop.com» 2021-11-10T15:50:00Z (+/-10 min) 13.95.25.101/32 (13.95.25.101 .. 13.95.25.101) 13.95.28.115 «host19.officiallachargersshop.com» 2021-11-10T15:50:00Z (+/-10 min) 13.95.28.115/32 (13.95.28.115 .. 13.95.28.115) 40.68.10.142 dns36de6f9d.westeurope.cloudapp.azure.com «host18.nikeairpaschero.com» 2021-11-10T15:50:00Z (+/-10 min) 40.68.10.142/32 (40.68.10.142 .. 40.68.10.142) 40.68.11.144 b3a01db1.westeurope.cloudapp.azure.com «host3.officiallachargersshop.com» 2021-11-10T15:50:00Z (+/-10 min)… Читать далее Snowshoe spam ranges

Опубликовано
В рубрике microsoft.com

Snowshoe spam ranges

13.80.40.100 dns781e318c.westeurope.cloudapp.azure.com «host2.officiallachargersshop.com» 2021-11-10T15:50:00Z (+/-10 min) 13.80.40.100/32 (13.80.40.100 .. 13.80.40.100) 13.95.24.106 dns3f3453df.westeurope.cloudapp.azure.com «host6.officiallachargersshop.com» 2021-11-10T15:50:00Z (+/-10 min) 13.95.24.106/32 (13.95.24.106 .. 13.95.24.106) 13.95.25.101 dns89aa0dbe.westeurope.cloudapp.azure.com «host3.officiallachargersshop.com» 2021-11-10T15:50:00Z (+/-10 min) 13.95.25.101/32 (13.95.25.101 .. 13.95.25.101) 13.95.28.115 «host19.officiallachargersshop.com» 2021-11-10T15:50:00Z (+/-10 min) 13.95.28.115/32 (13.95.28.115 .. 13.95.28.115) 40.68.10.142 dns36de6f9d.westeurope.cloudapp.azure.com «host18.nikeairpaschero.com» 2021-11-10T15:50:00Z (+/-10 min) 40.68.10.142/32 (40.68.10.142 .. 40.68.10.142) 40.68.11.144 b3a01db1.westeurope.cloudapp.azure.com «host3.officiallachargersshop.com» 2021-11-10T15:50:00Z (+/-10 min)… Читать далее Snowshoe spam ranges

Опубликовано
В рубрике microsoft.com

Snowshoe spam ranges

13.80.40.100 dns781e318c.westeurope.cloudapp.azure.com «host2.officiallachargersshop.com» 2021-11-10T15:50:00Z (+/-10 min) 13.80.40.100/32 (13.80.40.100 .. 13.80.40.100) 13.95.24.106 dns3f3453df.westeurope.cloudapp.azure.com «host6.officiallachargersshop.com» 2021-11-10T15:50:00Z (+/-10 min) 13.95.24.106/32 (13.95.24.106 .. 13.95.24.106) 13.95.25.101 dns89aa0dbe.westeurope.cloudapp.azure.com «host3.officiallachargersshop.com» 2021-11-10T15:50:00Z (+/-10 min) 13.95.25.101/32 (13.95.25.101 .. 13.95.25.101) 13.95.28.115 «host19.officiallachargersshop.com» 2021-11-10T15:50:00Z (+/-10 min) 13.95.28.115/32 (13.95.28.115 .. 13.95.28.115) 40.68.10.142 dns36de6f9d.westeurope.cloudapp.azure.com «host18.nikeairpaschero.com» 2021-11-10T15:50:00Z (+/-10 min) 40.68.10.142/32 (40.68.10.142 .. 40.68.10.142) 40.68.11.144 b3a01db1.westeurope.cloudapp.azure.com «host3.officiallachargersshop.com» 2021-11-10T15:50:00Z (+/-10 min)… Читать далее Snowshoe spam ranges

Опубликовано
В рубрике microsoft.com