Return-Path: []@mail.adendalf.us> Received: from worth.adendalf.us (alpha.cloudpt.net [95.141.35.150] (may be forged)) by [] (8.14.7/8.14.7) with ESMTP id [] for []; Mon, 4 Jan 2021 11:[]:[] -0500 Authentication-Results: [] DKIM-Signature: [] DomainKey-Signature: [] Mime-Version: 1.0 Content-Type: multipart/alternative; boundary=»[]» Date: Mon, 4 Jan 2021 10:[]:[] -0600 From: «3D Airplane Games» <virtualpilot@adendalf.us> Reply-To: «3D Airplane Games» <virtualpilot@adendalf.us> Subject: Microsoft… Читать далее Spamvertised URL hosting
Spamvertised domain hosting
Return-Path: <nuaepasett@gmail.com> Received: from mail-oo1-f69.google.com (mail-oo1-f69.google.com [209.85.161.69]) by [] (8.14.7/8.14.7) with ESMTP id [] (version=TLSv1/SSLv3 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=OK) for []; Thu, 21 Jan 2021 02:[]:[] -0500 Authentication-Results: [] Received: by mail-oo1-f69.google.com with SMTP id [] for []; Wed, 20 Jan 2021 23:[]:[] -0800 (PST) DKIM-Signature: [] X-Google-DKIM-Signature: [] X-Gm-Message-State: [] X-Google-Smtp-Source:[] MIME-Version: 1.0 X-Received: by… Читать далее Spamvertised domain hosting
Spamvertised domain hosting
Return-Path: []@mail.aquesian.today> Received: from data.aquesian.today (server.lupilmedia [46.17.107.7] (may be forged)) by [] (8.14.7/8.14.7) with ESMTP id [] for []; Thu, 21 Jan 2021 05:[]:[] -0500 Authentication-Results: [] DKIM-Signature: [] DomainKey-Signature: [] Mime-Version: 1.0 Content-Type: multipart/alternative; boundary=»[]» Date: Thu, 21 Jan 2021 04:[]:[] -0600 From: «Dead Metabolism» <supplement@aquesian.today> Reply-To: «Eat First Thing» <supplement@aquesian.today> Subject: Breakfast trick… Читать далее Spamvertised domain hosting
Phishing payload against WeTransfer
https://www.spamhaus.org/sbl/query/SBL511172 has a payload on facaoteste.com.br. It is marked as deceptive in Google Safe Browsing, but it is still alive. Cloudflare needs to take it down. $ host facaoteste.com.br facaoteste.com.br has address 172.67.136.138 facaoteste.com.br has address 104.21.26.153 facaoteste.com.br has IPv6 address 2606:4700:3032::6815:1a99 facaoteste.com.br has IPv6 address 2606:4700:3032::ac43:888a
Phishing payload against WeTransfer
https://www.spamhaus.org/sbl/query/SBL511172 has a payload on facaoteste.com.br. It is marked as deceptive in Google Safe Browsing, but it is still alive. Cloudflare needs to take it down. $ host facaoteste.com.br facaoteste.com.br has address 172.67.136.138 facaoteste.com.br has address 104.21.26.153 facaoteste.com.br has IPv6 address 2606:4700:3032::6815:1a99 facaoteste.com.br has IPv6 address 2606:4700:3032::ac43:888a
Phishing payload against Nedbank (South Africa)
www.ezer.or.kr houses the payload for a recent Nedbank phishing spam (see SBL514953) $ host www.ezer.or.kr www.ezer.or.kr has address 104.21.60.87 www.ezer.or.kr has address 172.67.194.253 www.ezer.or.kr has IPv6 address 2606:4700:3034::6815:3c57 www.ezer.or.kr has IPv6 address 2606:4700:3034::ac43:c2fd # whois.kr query : ezer.or.kr # KOREAN(UTF8) 도메인이름 : ezer.or.kr 등록인 : 에젤선교회 등록인 주소 : 서울특별시 용산구 서빙고로65길 38 (서빙고동) 두란노빌딩… Читать далее Phishing payload against Nedbank (South Africa)
Phishing payload against Nedbank (South Africa)
www.ezer.or.kr houses the payload for a recent Nedbank phishing spam (see SBL514953) $ host www.ezer.or.kr www.ezer.or.kr has address 104.21.60.87 www.ezer.or.kr has address 172.67.194.253 www.ezer.or.kr has IPv6 address 2606:4700:3034::6815:3c57 www.ezer.or.kr has IPv6 address 2606:4700:3034::ac43:c2fd # whois.kr query : ezer.or.kr # KOREAN(UTF8) 도메인이름 : ezer.or.kr 등록인 : 에젤선교회 등록인 주소 : 서울특별시 용산구 서빙고로65길 38 (서빙고동) 두란노빌딩… Читать далее Phishing payload against Nedbank (South Africa)
Phishing payload against Nedbank (South Africa)
www.ezer.or.kr houses the payload for a recent Nedbank phishing spam (see SBL514953) $ host www.ezer.or.kr www.ezer.or.kr has address 104.21.60.87 www.ezer.or.kr has address 172.67.194.253 www.ezer.or.kr has IPv6 address 2606:4700:3034::6815:3c57 www.ezer.or.kr has IPv6 address 2606:4700:3034::ac43:c2fd # whois.kr query : ezer.or.kr # KOREAN(UTF8) 도메인이름 : ezer.or.kr 등록인 : 에젤선교회 등록인 주소 : 서울특별시 용산구 서빙고로65길 38 (서빙고동) 두란노빌딩… Читать далее Phishing payload against Nedbank (South Africa)
offsite-team.com spammers
From: <xxxxxx@offsite-team.com> To: Subject: Sales Date: Wed, 27 Jan 2021 13:26:15 +0000 I’m from Offsite-Team. We help startups grow sales by overcoming these common issues: • You know who you want to sell to but need their contact information and a way to reach out to them in bulk. • You have an idea for… Читать далее offsite-team.com spammers
affiliate spam @teehag.com
Received: from mail-lj1-f194.google.com (mail-lj1-f194.google.com [209.85.208.194]) From: «Mark E. Roque» <dinhvananh883@gmail.com> Reply-To: dinhvananh883@gmail.com Date: Sat, 6 Feb 2021 19:0x:xx -0800 Subject: Nice Gift Idea Gucci Tee Shirt https://teehag.com/user/teehag088/t-shirt/190-Gucci-Collection?refId=14393 teehag.com. 300 IN A 104.21.58.100 teehag.com. 300 IN A 172.67.158.253