Hosting.Black — Страница 56 — Полный архив спамхауса, просто так, чтобы было для Истории рынка | hostsuki.link | добавить мониторинг если нету категории/компании, напишите на hosting-black@hosting.wtf

Abused / misconfigured newsletter service (listbombing)

The host at this IP address is being (ab)used to «listbomb» email addresses: From: Quirk Chevrolet MA <leads@chevy.quirkautodealers.net> Subject: XXX, we may want to buyback your vehicle. Try our trade in tool today and get the most for your current vehicle Problem description ============================ Spammers signed up for the bulk email service using the victim’s… Читать далее Abused / misconfigured newsletter service (listbombing)

ArkeiStealer botnet controller @94.130.188.151

The host at this IP address is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse. ArkeiStealer botnet controller located at 94.130.188.151 on port 80 (using HTTP POST): hXXp://94.130.188.151/517 $ nslookup 94.130.188.151 static.151.188.130.94.clients.your-server.de Referencing malware binaries (MD5 hash): 07c5633c282bab7ebd330036ae0771d4 — AV detection: 41… Читать далее ArkeiStealer botnet controller @94.130.188.151

spam emitter @54.240.8.80

Received: from a8-80.smtp-out.amazonses.com ([54.240.8.80]) From: WaΙmαrt <mtrose@mtrosecogic.org> Subject: Attention: Your points expires today [] Date: Tue, 8 Mar 2022 02:1x:xx +0000

Phish landing site.

With the correct magic sauce, this is a credit card phish. Without, some default wordpress template. 168.119.170.192 microsoft.tronsfertmex.co.uk 168.119.170.192 tronsfertmex.co.uk 168.119.170.192 d9c08f5.tronsfertmex.co.uk 168.119.170.192 find-you.co.uk 168.119.170.192 coinmolun.co.uk e.g. http://tronsfertmex.co.uk/?act=cl&pid=11111&uid=1111&vid=111&ofid=111&lid=1111&cid=1111 —> mongoldrape . com (broken due to geo fencing)

Abused / misconfigured newsletter service (listbombing)

The host at this IP address is being (ab)used to «listbomb» email addresses: From: Classic Club <classicclubgolf@coursetrends.com> Subject: Wine tasting & so much more… Problem description ============================ Spammers signed up for the bulk email service using the victim’s email address. As a result, the victim is being «listbombed» with transactional messages and bulk email campaigns.… Читать далее Abused / misconfigured newsletter service (listbombing)

Abused / misconfigured newsletter service (listbombing)

The host at this IP address is being (ab)used to «listbomb» email addresses: From: Classic Club Golf <classicclubgolf@coursetrends.com> Subject: Classic Club Golf — St. Patrick’s Day/Spring Sale — 3/7/22 to 3/20/22 Problem description ============================ Spammers signed up for the bulk email service using the victim’s email address. As a result, the victim is being «listbombed»… Читать далее Abused / misconfigured newsletter service (listbombing)

Abused / misconfigured newsletter service (listbombing)

dotservice.com

3/07/2022: DOT Compliance Group is spamming again, after supposedly stopping that practice. A fairly large spam blast hit email addresses that did not and mostly cannot have requested that email at any time whatsoever. This is NOT ACCEPTABLE. Received: from a9-11.smtp-out.amazonses.com (a9-11.smtp-out.amazonses.com [54.240.9.11]) Date: Mon, 7 Mar 2022 14:##:## +0000 From: DOT Compliance Group <support@dotservice.com>… Читать далее dotservice.com

spam support (domains)

domain used in spam operation ontraports.xyz [178.128.249.122]