Hosting.Black — Страница 30 — Полный архив спамхауса, просто так, чтобы было для Истории рынка | hostsuki.link | добавить мониторинг если нету категории/компании, напишите на hosting-black@hosting.wtf

Loki botnet controller @141.8.194.39

The host at this IP address is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse. Loki botnet controller located at 141.8.194.39 on port 80 (using HTTP POST): hXXp://sempersim.su/ge12/fre.php $ dig +short sempersim.su 141.8.194.39 Referencing malware binaries (MD5 hash): 282597edf1d6759a52472a855ed9e14f — AV detection:… Читать далее Loki botnet controller @141.8.194.39

Malware botnet controller @95.213.216.168

The host at this IP address is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse. Malware botnet controller at 95.213.216.168 on port 443. $ telnet 95.213.216.168 443 Trying 95.213.216.168… Connected to 95.213.216.168. Escape character is ‘^]’ Malicious domains observed at this IP… Читать далее Malware botnet controller @95.213.216.168

Malware / Botnet / Phishing hosting server @185.251.89.138

According to our telemetry and our own intelligence, the host at this IP address has been setup by cyber criminals for the exclusive purpose of hosting phishing sites, malware distribution sites and/or botnet controllers. We therefore advise our users to block any traffic from/to this IP address. The host at this IP address is running… Читать далее Malware / Botnet / Phishing hosting server @185.251.89.138

AsyncRAT botnet controller @49.12.0.239

The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse. Malware botnet controller located at 49.12.0.239 on port 3760 TCP: $ telnet 49.12.0.239 3760 Trying 49.12.0.239… Connected to 49.12.0.239. Escape character… Читать далее AsyncRAT botnet controller @49.12.0.239

spam source

15.235.56.134 mta13.americanportalstory.com «mta13.americanportalstory.com» 2022-03-27T14:30:00Z (+/-10 min) 15.235.56.165 mta2.americangistflash.com «mta2.americangistflash.com» 2022-03-27T14:40:00Z (+/-10 min) 15.235.56.168 mta15.americangistflash.com «mta15.americangistflash.com» 2022-03-27T14:30:00Z => 2022-03-27T14:40:00Z (+/-10 min) 15.235.56.170 mta4.americanflashlive.com «mta4.americanflashlive.com» 2022-03-27T14:40:00Z (+/-10 min) 15.235.56.172 mta5.americanflashlive.com «mta5.americanflashlive.com» 2022-03-27T14:40:00Z (+/-10 min) 15.235.56.173 mta6.americanflashlive.com «mta6.americanflashlive.com» 2022-03-27T14:40:00Z => 2022-03-27T14:50:00Z (+/-10 min) 15.235.56.177 mta10.americanflashlive.com «mta10.americanflashlive.com» 2022-03-27T14:40:00Z (+/-10 min) 15.235.56.178 mta3.americanflashlive.com «mta3.americanflashlive.com» 2022-03-27T14:40:00Z (+/-10 min) 15.235.56.183 mta2.americanflashlive.com «mta2.americanflashlive.com»… Читать далее spam source

spam source

15.235.56.100 mta3.americanportalnews.com «mta3.americanportalnews.com» 2022-03-26T14:50:00Z (+/-10 min) 15.235.56.101 mta8.americanportalnews.com «mta8.americanportalnews.com» 2022-03-26T14:50:00Z (+/-10 min) 15.235.56.100/31 (15.235.56.100 .. 15.235.56.101) 51.79.52.216 mta1.americangistmax.com «mta1.americangistmax.com» 2022-03-26T15:50:00Z (+/-10 min) 51.79.52.216/32 (51.79.52.216 .. 51.79.52.216) 144.217.29.37 mta16.americangistmax.com «mta16.americangistmax.com» 2022-03-26T15:40:00Z (+/-10 min) 144.217.29.37/32 (144.217.29.37 .. 144.217.29.37) 149.56.179.163 mta6.americangistmax.com «mta6.americangistmax.com» 2022-03-26T14:50:00Z (+/-10 min) 149.56.179.163/32 (149.56.179.163 .. 149.56.179.163) 192.99.83.184 mta9.americangistmax.com «mta9.americangistmax.com» 2022-03-26T16:00:00Z (+/-10 min) 192.99.83.201 mta10.americangistmax.com «mta10.americangistmax.com»… Читать далее spam source