magnificentminds.org / seminariostop.com (Domain A records/Website Records)

The following IP anges are sending spam for magnificentminds.org / seminariostop.com, which operates online seminars (webinars) on various subjects. The sender of this spam appears to be «Seminarios Top Peru» / «Grupo Virtual».

The domain A records/website records are shown beneath the spam sample.

SENDING IPs:

81.7.8.48/28 (isppro.de)
81.7.8.64/29 (isppro.de)
108.170.43.200/29 (PhoenixNap) (Grupo Virtual)
184.164.147.196/30 (PhoenixNap) (Grupo Virtual)
198.15.74.160/27 (PhoenixNap) (Grupo Virtual)
198.15.78.0/27 (PhoenixNap) (Grupo Virtual)

SPAM SAMPLE:

Received: from mr##.magnificentminds.org (mr##.magnificentminds.org [184.164.147.##])
Date: Thu, 04 Mar 2021 16:##:## +0000
From: DEVOLUCIONES SUNAT <contact@magnificentminds.org>
Subject: <x> Devolución de dinero de la SUNAT<x>

<snip>

Estimado(a) administracion@uraniomail.com lo invitamos a participar del curso:

DEVOLUCIONES DE DINERO DE LA SUNAT EN TIEMPOS DE COVID
Nuevos procedimientos 2021 Y SU FISCALIZACIÓN

<snip>

ORGANIZA: SEMINARIOS TOP PERU

Cel. 961 106 120 (WhatsApp)
Cel. 946 203063 (WhatsApp)
Email: informes @ seminarios top . com

<snip>

Unsubscribe URI: https://magnificentminds.org/emm/index.php/<x>

$ host magnificentminds.org
magnificentminds.org has address 184.164.147.194
magnificentminds.org mail is handled by 10 mx.magnificentminds.org.

$ host seminariostop.com
seminariostop.com has address 172.67.129.57
seminariostop.com has address 104.21.1.126
seminariostop.com mail is handled by 0 dc-3f43fd09ca40.seminariostop.com.

HWOIS:

% Information related to ‘81.7.8.0 — 81.7.8.255’

% Abuse contact for ‘81.7.8.0 — 81.7.8.255’ is ‘abuse@isppro.de’

inetnum: 81.7.8.0 — 81.7.8.255
netname: EUSERV-SRV-NET17
descr: EUserv Internet
descr: Customer Network #17
descr: Dedicated Rootserver Network
descr: http://www.euserv.de
descr: Rootserver, Webspace, Domains,
descr: Gameserver, Housing, Streaming
country: DE
admin-c: HMIP1-RIPE
tech-c: HMIP1-RIPE
status: ASSIGNED PA
mnt-by: ISPPRO-NOC-MNT
created: 2010-07-05T10:01:50Z
last-modified: 2010-07-05T10:01:50Z
source: RIPE

role: HOSTMASTER KDCTRL
address: ISPpro Internet KG
address: -Network Operations-
address: Westbahnhofstr. 13
address: D — 07745 Jena
address: Germany
nic-hdl: HMIP1-RIPE
mnt-by: ISPPRO-NOC-MNT
admin-c: DISE-RIPE
tech-c: DISE-RIPE
tech-c: DL8418-RIPE
abuse-mailbox: abuse@isppro.de
remarks: +————————————————-+
remarks: | Abuse and SPAM: abuse»at»isppro.de |
remarks: | Operational issues 24×7: noc»at»isppro.de |
remarks: | Routing, IP requests: noc»at»isppro.de |
remarks: | Peering requests: peering»at»as35366.net |
remarks: | Legal issues: polizei»at»isppro.de |
remarks: | Polizeianfragen polizei»at»isppro.de |
remarks: | FAX: +49-3641-504410 |
remarks: +————————————————-+
created: 2005-07-12T13:07:38Z
last-modified: 2020-07-14T18:06:59Z
source: RIPE # Filtered

% Information related to ‘81.7.0.0/19AS35366’

route: 81.7.0.0/19
origin: AS35366
mnt-by: ISPPRO-NOC-MNT
created: 2019-05-06T20:33:54Z
last-modified: 2019-05-06T20:33:54Z
source: RIPE

autharea=108.170.0.0/18
xautharea=108.170.0.0/18
network:Class-Name:network
network:Auth-Area:108.170.0.0/18
network:ID:NET-111374.108.170.43.200/29
network:Network-Name:108.170.43.200/29
network:IP-Network:108.170.43.200/29
network:IP-Network-Block:108.170.43.200 — 108.170.43.207
network:Org-Name:Grupo virtual
network:Street-Address:Calle los mogaburos 215
network:City:Lima
network:State:LIM
network:Postal-Code:15072
network:Country-Code:PE
network:Tech-Contact:MAINT-111374.108.170.43.200/29
network:Created:20200113193819000
network:Updated:20200113193819000
network:Updated-By:dnsadmin@securedservers.com
contact:POC-Name:DNS Administrator
contact:POC-Email:dnsadmin@securedservers.com
contact:POC-Phone:(480) 422-2023
contact:Tech-Name:DNS Administrator
contact:Tech-Email:dnsadmin@securedservers.com
contact:Tech-Phone:(480) 422-2023
contact:Abuse-Name:Abuse
contact:Abuse-Email:abuse@securedservers.com
contact:Abuse-Phone:+1-480-422-2022 (Office)

NetRange: 108.170.0.0 — 108.170.63.255
CIDR: 108.170.0.0/18
NetName: SS8
NetHandle: NET-108-170-0-0-1
Parent: NET108 (NET-108-0-0-0-0)
NetType: Direct Allocation
OriginAS: AS32164, AS20454
Organization: SECURED SERVERS LLC (SSL-65)
RegDate: 2012-01-23
Updated: 2012-01-23
Ref: https://rdap.arin.net/registry/ip/108.170.0.0

OrgName: SECURED SERVERS LLC
OrgId: SSL-65
Address: 2353 W University Bldg A
City: Tempe
StateProv: AZ
PostalCode: 85281
Country: US
RegDate: 2003-12-08
Updated: 2018-06-27
Ref: https://rdap.arin.net/registry/entity/SSL-65

ReferralServer: rwhois://rwhois.securedservers.com:4321

OrgTechHandle: IPADM294-ARIN
OrgTechName: IPADMIN
OrgTechPhone: +1-480-422-2031
OrgTechEmail: ipadmin@phoenixnap.com
OrgTechRef: https://rdap.arin.net/registry/entity/IPADM294-ARIN

OrgAbuseHandle: ABUSE1536-ARIN
OrgAbuseName: Abuse
OrgAbusePhone: +1-480-422-2022
OrgAbuseEmail: abuse@phoenixnap.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE1536-ARIN

autharea=184.164.128.0/19
xautharea=184.164.128.0/19
network:Class-Name:network
network:Auth-Area:184.164.128.0/19
network:ID:NET-120432.184.164.147.192/29
network:Network-Name:Public
network:IP-Network:184.164.147.192/29
network:IP-Network-Block:184.164.147.192 — 184.164.147.199
network:Org-Name:Grupo virtual
network:Street-Address:Calle los mogaburos 215
network:City:Lima
network:State:LIM
network:Postal-Code:15072
network:Country-Code:PE
network:Tech-Contact:MAINT-120432.184.164.147.192/29
network:Created:20200527220525000
network:Updated:20200527220525000
network:Updated-By:dnsadmin@securedservers.com
contact:POC-Name:DNS Administrator
contact:POC-Email:dnsadmin@securedservers.com
contact:POC-Phone:(480) 422-2023
contact:Tech-Name:DNS Administrator
contact:Tech-Email:dnsadmin@securedservers.com
contact:Tech-Phone:(480) 422-2023
contact:Abuse-Name:Abuse
contact:Abuse-Email:abuse@securedservers.com
contact:Abuse-Phone:+1-480-422-2022 (Office)

NetRange: 184.164.128.0 — 184.164.159.255
CIDR: 184.164.128.0/19
NetName: SS5
NetHandle: NET-184-164-128-0-1
Parent: NET184 (NET-184-0-0-0-0)
NetType: Direct Allocation
OriginAS: AS32164, AS20454
Organization: SECURED SERVERS LLC (SSL-65)
RegDate: 2011-05-13
Updated: 2011-05-13
Ref: https://rdap.arin.net/registry/ip/184.164.128.0

OrgName: SECURED SERVERS LLC
OrgId: SSL-65
Address: 2353 W University Bldg A
City: Tempe
StateProv: AZ
PostalCode: 85281
Country: US
RegDate: 2003-12-08
Updated: 2018-06-27
Ref: https://rdap.arin.net/registry/entity/SSL-65

ReferralServer: rwhois://rwhois.securedservers.com:4321

OrgTechHandle: IPADM294-ARIN
OrgTechName: IPADMIN
OrgTechPhone: +1-480-422-2031
OrgTechEmail: ipadmin@phoenixnap.com
OrgTechRef: https://rdap.arin.net/registry/entity/IPADM294-ARIN

OrgAbuseHandle: ABUSE1536-ARIN
OrgAbuseName: Abuse
OrgAbusePhone: +1-480-422-2022
OrgAbuseEmail: abuse@phoenixnap.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE1536-ARIN

autharea=198.15.64.0/18
xautharea=198.15.64.0/18
network:Class-Name:network
network:Auth-Area:198.15.64.0/18
network:ID:NET-120772.198.15.74.160/27
network:Network-Name:Public, Additional
network:IP-Network:198.15.74.160/27
network:IP-Network-Block:198.15.74.160 — 198.15.74.191
network:Org-Name:Grupo virtual
network:Street-Address:Calle los mogaburos 215
network:City:Lima
network:State:LIM
network:Postal-Code:15072
network:Country-Code:PE
network:Tech-Contact:MAINT-120772.198.15.74.160/27
network:Created:20200530001026000
network:Updated:20200530001026000
network:Updated-By:dnsadmin@securedservers.com
contact:POC-Name:DNS Administrator
contact:POC-Email:dnsadmin@securedservers.com
contact:POC-Phone:(480) 422-2023
contact:Tech-Name:DNS Administrator
contact:Tech-Email:dnsadmin@securedservers.com
contact:Tech-Phone:(480) 422-2023
contact:Abuse-Name:Abuse
contact:Abuse-Email:abuse@securedservers.com
contact:Abuse-Phone:+1-480-422-2022 (Office)

autharea=198.15.64.0/18
xautharea=198.15.64.0/18
network:Class-Name:network
network:Auth-Area:198.15.64.0/18
network:ID:NET-111594.198.15.78.0/27
network:Network-Name:Additional
network:IP-Network:198.15.78.0/27
network:IP-Network-Block:198.15.78.0 — 198.15.78.31
network:Org-Name:Grupo virtual
network:Street-Address:Calle los mogaburos 215
network:City:Lima
network:State:LIM
network:Postal-Code:15072
network:Country-Code:PE
network:Tech-Contact:MAINT-111594.198.15.78.0/27
network:Created:20200119154357000
network:Updated:20200119154357000
network:Updated-By:dnsadmin@securedservers.com
contact:POC-Name:DNS Administrator
contact:POC-Email:dnsadmin@securedservers.com
contact:POC-Phone:(480) 422-2023
contact:Tech-Name:DNS Administrator
contact:Tech-Email:dnsadmin@securedservers.com
contact:Tech-Phone:(480) 422-2023
contact:Abuse-Name:Abuse
contact:Abuse-Email:abuse@securedservers.com
contact:Abuse-Phone:+1-480-422-2022 (Office)

NetRange: 198.15.64.0 — 198.15.127.255
CIDR: 198.15.64.0/18
NetName: SECURED-SERVERS
NetHandle: NET-198-15-64-0-1
Parent: NET198 (NET-198-0-0-0-0)
NetType: Direct Allocation
OriginAS: AS20454
Organization: SECURED SERVERS LLC (SSL-65)
RegDate: 2012-07-20
Updated: 2013-07-26
Ref: https://rdap.arin.net/registry/ip/198.15.64.0

OrgName: SECURED SERVERS LLC
OrgId: SSL-65
Address: 2353 W University Bldg A
City: Tempe
StateProv: AZ
PostalCode: 85281
Country: US
RegDate: 2003-12-08
Updated: 2018-06-27
Ref: https://rdap.arin.net/registry/entity/SSL-65

ReferralServer: rwhois://rwhois.securedservers.com:4321

OrgAbuseHandle: ABUSE1536-ARIN
OrgAbuseName: Abuse
OrgAbusePhone: +1-480-422-2022
OrgAbuseEmail: abuse@phoenixnap.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE1536-ARIN

OrgTechHandle: IPADM294-ARIN
OrgTechName: IPADMIN
OrgTechPhone: +1-480-422-2031
OrgTechEmail: ipadmin@phoenixnap.com
OrgTechRef: https://rdap.arin.net/registry/entity/IPADM294-ARIN

RTechHandle: IPADM294-ARIN
RTechName: IPADMIN
RTechPhone: +1-480-422-2031
RTechEmail: ipadmin@phoenixnap.com
RTechRef: https://rdap.arin.net/registry/entity/IPADM294-ARIN

RAbuseHandle: ABUSE1536-ARIN
RAbuseName: Abuse
RAbusePhone: +1-480-422-2022
RAbuseEmail: abuse@phoenixnap.com
RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE1536-ARIN

RNOCHandle: ADMIN2171-ARIN
RNOCName: ADMIN
RNOCPhone: +1-480-449-7750
RNOCEmail: support@securedservers.com
RNOCRef: https://rdap.arin.net/registry/entity/ADMIN2171-ARIN

Domain Name: MAGNIFICENTMINDS.ORG
Registry Domain ID: D94042072-LROR
Registrar WHOIS Server: whois.name.com
Registrar URL: http://www.name.com
Updated Date: 2021-02-28T04:14:36Z
Creation Date: 2003-01-16T01:48:59Z
Registry Expiry Date: 2022-01-16T01:48:59Z
Registrar Registration Expiration Date:
Registrar: Name.com, Inc.
Registrar IANA ID: 625
Registrar Abuse Contact Email: abuse@name.com
Registrar Abuse Contact Phone: +1.7203101849
Reseller:
Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
Registrant Organization: Perufiesta
Registrant State/Province: Lima
Registrant Country: PE
Name Server: NS2KNZ.NAME.COM
Name Server: NS4GVX.NAME.COM
Name Server: NS1JLP.NAME.COM
Name Server: NS3JWX.NAME.COM
DNSSEC: unsigned

Domain Name: SEMINARIOSTOP.COM
Registry Domain ID: 1832064949_DOMAIN_COM-VRSN
Registrar WHOIS Server: whois.godaddy.com
Registrar URL: http://www.godaddy.com
Updated Date: 2020-10-23T21:57:52Z
Creation Date: 2013-10-22T11:41:23Z
Registrar Registration Expiration Date: 2021-10-22T11:41:23Z
Registrar: GoDaddy.com, LLC
Registrar IANA ID: 146
Registrar Abuse Contact Email: abuse@godaddy.com
Registrar Abuse Contact Phone: +1.4806242505
Domain Status: clientTransferProhibited http://www.icann.org/epp#clientTransferProhibited
Domain Status: clientUpdateProhibited http://www.icann.org/epp#clientUpdateProhibited
Domain Status: clientRenewProhibited http://www.icann.org/epp#clientRenewProhibited
Domain Status: clientDeleteProhibited http://www.icann.org/epp#clientDeleteProhibited
Registrant Organization: GRUPO VIRTUAL SAC
Registrant State/Province: Lima
Registrant Country: PE
Registrant Email: Select Contact Domain Holder link at https://www.godaddy.com/whois/results.aspx?domain=SEMINARIOSTOP.COM
Tech Email: Select Contact Domain Holder link at https://www.godaddy.com/whois/results.aspx?domain=SEMINARIOSTOP.COM
Admin Email: Select Contact Domain Holder link at https://www.godaddy.com/whois/results.aspx?domain=SEMINARIOSTOP.COM
Name Server: CLARK.NS.CLOUDFLARE.COM
Name Server: GINA.NS.CLOUDFLARE.COM
DNSSEC: unsigned

Добавить комментарий

Ваш адрес email не будет опубликован. Обязательные поля помечены *