The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse. Malware botnet controller located at 51.81.139.72 on port 10762 TCP: $ telnet 51.81.139.72 10762 Trying 51.81.139.72… Connected to 51.81.139.72. Escape character… Читать далее RedLineStealer botnet controller @51.81.139.72

Based on research, analysis of network data, our ‘snowshoe’ spam detection systems, intelligence sources and our experience, Spamhaus believes that this IP address range is being used or is about to be used for the purpose of high volume ‘snowshoe’ spam emission. As a precaution therefore we are listing this IP range in an SBL… Читать далее Suspected Snowshoe Spam IP Range

Based on research, analysis of network data, our ‘snowshoe’ spam detection systems, intelligence sources and our experience, Spamhaus believes that this IP address range is being used or is about to be used for the purpose of high volume ‘snowshoe’ spam emission. As a precaution therefore we are listing this IP range in an SBL… Читать далее Suspected Snowshoe Spam IP Range

Received: from smtp33.ptzinfomed.org (smtp.ptzinfomed.org [147.135.37.124]) $ host -t txt ptzinfomed.org ptzinfomed.org descriptive text «v=spf1 a mx a:ptzinfomed.org ip4:147.135.37.124 ip4:51.81.251.131 ip4:51.81.253.224/27 ip4:147.135.107.128/27 ip4:147.135.49.56/29 ip4:147.135.51.112/29 ip4:147.135.51.120/29 ip4:147.135.49.144/29 ip4:51.81.218.96/27 ip6:2604:2dc0:0200:017c::/64 include:m» «ailgun.org ~all» OVH, any of the above that are in your network belong to the same customer. It is a spammer you have chased around your network… Читать далее Predatory publisher/spammer: Peertechz Open Access