Spam MX Services (jellyfish.systems) (OMICS)

MX services at the jellyfish.systems domain are once again providing MX services to at least one, and probably several, OMICS domains.

Received: from hwsrv-951687.hostwindsdns.com (hwsrv-951687.hostwindsdns.com [104.168.218.125])
Received: from jcrcopenaccess.live (myway.myopenaccess.live [103.30.17.53])
Date: Thu, 14 Apr 2022 02:##:## +0000
From: Opast Online Publishing Group <info@max500.live>
Reply-To: Opast Online Publishing Group <editor.<x>@openaccessjournalsnews.com>
Subject: Submissions for Upcoming Issue <X>

<snip>

Considering you as a worthy person, I cordially invite you for
your valuable article submission <x>.

<snip>

Please have a glance at Journal of Clinical Review & Case Reports
https://researchpub.live/journal/journal-of-clinical-review-case-reports

<snip>

$ host researchpub.live
researchpub.live has address 198.187.29.143
researchpub.live mail is handled by 20 mx3-hosting.jellyfish.systems.
researchpub.live mail is handled by 10 mx2-hosting.jellyfish.systems.
researchpub.live mail is handled by 5 mx1-hosting.jellyfish.systems.

$ host mx1-hosting.jellyfish.systems
mx1-hosting.jellyfish.systems has address 198.54.127.242

$ host mx2-hosting.jellyfish.systems
mx2-hosting.jellyfish.systems has address 63.250.43.74

$ host mx3-hosting.jellyfish.systems
mx3-hosting.jellyfish.systems has address 162.255.118.13

4/11/2022 [SBL547124]:
The following iP addresses are hosting inbound MX services for domains registered by OMICS, a publisher of «open-access» journals that solicits contributions and (by implication) fees and/or subscriptions through spam sent to scraped, purchased, or appended lists.

Most OMICS spam relies wholling or partly on dropbox email addresses not at the sending domain to receive responses to spam. To disrupt the spam cycle, it is necesary to shut down inbound MX services to these domains.

MX HOSTS:

mx1-hosting.jellyfish.systems 198.54.127.242
mx2-hosting.jellyfish.systems 63.250.43.74
mx2-hosting.jellyfish.systems 162.255.118.13

OMICS MX DOMAINS:

medjrnlarchiveattain.biz
medscijrnlglobalresdetect.biz
scimedjrnlglobalresdetect.biz

SPAM SAMPLES (representative — too many to list all):

Received: from e1.sciopenaccessms.biz (e1.sciopenaccessms.biz [147.182.159.226])
Received: from 209.105.248.136 (unknown [209.105.248.136])
Date: Sun, 10 Apr 2022 20:##:## +0530
From: Editor-Pulmonology and Clinical Research <editor@sciopenaccessms.biz>
Reply-To: Editor-Pulmonology and Clinical Research <submissions@medjrnlarchiveattain.biz>
Subject: Pulmonology: Submit your Scientific Research

<snip>

In appreciation to your previous work entitled «<x>», we would like to invite you to publish your upcoming eminent research works towards the journal.

You may submit your article in the following link. [ Submit your paper to Annals of Pulmonology and Clinical Research ]
[[ http://scimedjrnlresearchfinder.biz/submit-manuscript.php?journal=## ]]

<snip>

Received: from e1.scienceopenreview.biz (e1.scienceopenreview.biz [104.217.253.195])
Received: from 209.105.239.144 (unknown [209.105.239.144])
Date: Sun, 10 Apr 2022 20:##:## +0530
From: Editor-Oncology <editor@scienceopenreview.biz>
Reply-To: Editor-Oncology <submissions@medscijrnlglobalresdetect.biz>
Subject: Submit your Scientific Research

<snip>

We came across your article with the title «<x>» and thought to be very innovative. Thus we warmly welcome you to submit your next article towards JOCR.

You may submit your article in the following link. You may submit your article/s at the below URL
http://medscijrnlresearchelicit.biz/paper-submission.php?journal=##

<snip>

Received: from e1.sciresartrev.biz (e1.sciresartrev.biz [159.203.57.29])
Received: from 108.60.219.23 (unknown [108.60.219.23])
Date: Sun, 10 Apr 2022 20:##:## +0530
From: Hypertension Journal <editor@sciresartrev.biz>
Reply-To: Hypertension Journal <submissions@scimedjrnlglobalresdetect.biz>
Subject: Hypertension — Open Access Publishing

<snip>

Journal of Hypertension and its Complications is open access, peer-reviewed journal that provides bi-monthly publication of articles in diverse fields of Hypertension and Blood Pressure that emphasizes new research, development, and their applications. We aim to cover the latest outstanding development in the fields of Hypertension and Blood Pressure.

You may submit your article/s through [ Online Submission System (click here) ]
[[ http://medjrnlpioneer.biz/paper-submission.php?journal=## ]]

<snip>

HOST LOOKUPS:

$ host medjrnlarchiveattain.biz
medjrnlarchiveattain.biz has address 162.0.209.252
medjrnlarchiveattain.biz mail is handled by 20 mx3-hosting.jellyfish.systems.
medjrnlarchiveattain.biz mail is handled by 10 mx2-hosting.jellyfish.systems.
medjrnlarchiveattain.biz mail is handled by 5 mx1-hosting.jellyfish.systems.

$ host medscijrnlglobalresdetect.biz
medscijrnlglobalresdetect.biz has address 162.0.209.252
medscijrnlglobalresdetect.biz mail is handled by 20 mx3-hosting.jellyfish.systems.
medscijrnlglobalresdetect.biz mail is handled by 10 mx2-hosting.jellyfish.systems.
medscijrnlglobalresdetect.biz mail is handled by 5 mx1-hosting.jellyfish.systems.

$ host scimedjrnlglobalresdetect.biz
scimedjrnlglobalresdetect.biz has address 162.0.209.252
scimedjrnlglobalresdetect.biz mail is handled by 20 mx3-hosting.jellyfish.systems.
scimedjrnlglobalresdetect.biz mail is handled by 10 mx2-hosting.jellyfish.systems.
scimedjrnlglobalresdetect.biz mail is handled by 5 mx1-hosting.jellyfish.systems.

$ host mx3-hosting.jellyfish.systems
mx3-hosting.jellyfish.systems has address 162.255.118.13

$ host 162.255.118.13
13.118.255.162.in-addr.arpa domain name pointer mx3-hosting.jellyfish.systems.

$ host mx2-hosting.jellyfish.systems
mx2-hosting.jellyfish.systems has address 63.250.43.74

$ host 63.250.43.74
74.43.250.63.in-addr.arpa domain name pointer mx2-hosting.jellyfish.systems.

$ host mx1-hosting.jellyfish.systems
mx1-hosting.jellyfish.systems has address 198.54.127.242

$ host 198.54.127.242
242.127.54.198.in-addr.arpa domain name pointer mx1-hosting.jellyfish.systems.

Domain Name: jellyfish.systems
Registry Domain ID: 91e19ce9c13c4128afef83dfb4264548-DONUTS
Registrar WHOIS Server: whois.namecheap.com
Registrar URL: https://www.namecheap.com/
Updated Date: 2021-11-27T08:41:16Z
Creation Date: 2019-12-11T12:26:15Z
Registry Expiry Date: 2022-12-11T12:26:15Z
Registrar: NameCheap, Inc.
Registrar IANA ID: 1068
Registrar Abuse Contact Email: abuse@namecheap.com
Registrar Abuse Contact Phone: +1.9854014545
Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
Registry Registrant ID: REDACTED FOR PRIVACY
Registrant Name: REDACTED FOR PRIVACY
Registrant Organization: Privacy service provided by Withheld for Privacy ehf
Registrant Street: REDACTED FOR PRIVACY
Registrant City: REDACTED FOR PRIVACY
Registrant State/Province: Capital Region
Registrant Postal Code: REDACTED FOR PRIVACY
Registrant Country: IS
Registrant Phone: REDACTED FOR PRIVACY
Registrant Phone Ext: REDACTED FOR PRIVACY
Registrant Fax: REDACTED FOR PRIVACY
Registrant Fax Ext: REDACTED FOR PRIVACY
Registrant Email: Please query the RDDS service of the Registrar of Record identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.
Registry Admin ID: REDACTED FOR PRIVACY
Admin Name: REDACTED FOR PRIVACY
Admin Organization: REDACTED FOR PRIVACY
Admin Street: REDACTED FOR PRIVACY
Admin City: REDACTED FOR PRIVACY
Admin State/Province: REDACTED FOR PRIVACY
Admin Postal Code: REDACTED FOR PRIVACY
Admin Country: REDACTED FOR PRIVACY
Admin Phone: REDACTED FOR PRIVACY
Admin Phone Ext: REDACTED FOR PRIVACY
Admin Fax: REDACTED FOR PRIVACY
Admin Fax Ext: REDACTED FOR PRIVACY
Admin Email: Please query the RDDS service of the Registrar of Record identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.
Registry Tech ID: REDACTED FOR PRIVACY
Tech Name: REDACTED FOR PRIVACY
Tech Organization: REDACTED FOR PRIVACY
Tech Street: REDACTED FOR PRIVACY
Tech City: REDACTED FOR PRIVACY
Tech State/Province: REDACTED FOR PRIVACY
Tech Postal Code: REDACTED FOR PRIVACY
Tech Country: REDACTED FOR PRIVACY
Tech Phone: REDACTED FOR PRIVACY
Tech Phone Ext: REDACTED FOR PRIVACY
Tech Fax: REDACTED FOR PRIVACY
Tech Fax Ext: REDACTED FOR PRIVACY
Tech Email: Please query the RDDS service of the Registrar of Record identified in this output for information on how to contact the Registrant, Admin, or Tech contact of the queried domain name.
Name Server: dns1.registrar-servers.com
Name Server: dns2.registrar-servers.com
DNSSEC: unsigned

Добавить комментарий

Ваш адрес email не будет опубликован. Обязательные поля помечены *