Рубрика: microsoft.com

The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse. Malware botnet controller located at 65.52.145.87 on port 21 TCP (FTP user name: webshots@dveshop.ro): $ telnet 65.52.145.87 21 Trying 65.52.145.87… Connected… Читать далее AgentTesla botnet controller @65.52.145.87

The host at this IP address is being (ab)used to «listbomb» email addresses: From: janusani@outlook.com Subject: Re: SEO, SMO, ORM services? Problem description ============================ Spammers signed up for the bulk email service using the victim’s email address. As a result, the victim is being «listbombed» with transactional messages and bulk email campaigns. Problem resolution ============================… Читать далее Abused / misconfigured newsletter service (listbombing)

The host at this IP address is emitting spam emails. Spam sample ========================================= From: tanusinghqswq@outlook.com Subject: RE: (web-design) proposal =========================================

The host at this IP address is being (ab)used to «listbomb» email addresses: From: kajalkumarijd@outlook.com Subject: Re: Professional Software Development Solutions Problem description ============================ Spammers signed up for the bulk email service using the victim’s email address. As a result, the victim is being «listbombed» with transactional messages and bulk email campaigns. Problem resolution ============================… Читать далее Abused / misconfigured newsletter service (listbombing)

2020.12.04 Now over 1700 domains. 2020.10.12 Now over 1300 domains. All evil. 13.93.127.226 is currently in use as a nameserver for spamvertized domains. This enables the resolving of spammed domains to the actual websites. This SBL record can only be removed if 40.87.28.242 stops answering DNS queries for spamvertized domain names. There are over 500… Читать далее Bad NS — domainzone51.com (Shinjiru)

The host at this IP address is emitting spam emails. Spam sample ========================================= From: sid.fernandez@outlook.com Subject: Re: Website & APP Developer’s =========================================

Received: from 9dns.lemonde.fr (20.194.6.40 [20.194.6.40]) From: Michaela Bödeker <frank.casey.th@athelticona.com> Subject: Als we nu samen waren, waar zou je dan willen dat ik je aanraak? Date: Thu, 06 Aug 2020 03:5x:xx +0200

The host at this IP address is emitting spam emails. Spam sample ========================================= From: riteshchauhanqsp@outlook.com Subject: RE: SEO keyword ranking =========================================

The host at this IP address is being (ab)used to «listbomb» email addresses: From: gauravhtiwarriis@outlook.com Subject: website design Problem description ============================ Spammers signed up for the bulk email service using the victim’s email address. As a result, the victim is being «listbombed» with transactional messages and bulk email campaigns. Problem resolution ============================ In order to… Читать далее Abused / misconfigured newsletter service (listbombing)

The host at this IP address is being (ab)used to «listbomb» email addresses: From: arabhsinghs@outlook.com Subject: design website Problem description ============================ Spammers signed up for the bulk email service using the victim’s email address. As a result, the victim is being «listbombed» with transactional messages and bulk email campaigns. Problem resolution ============================ In order to… Читать далее Abused / misconfigured newsletter service (listbombing)