Suspected Snowshoe Spam IP Range

Based on research, analysis of network data, our ‘snowshoe’ spam detection systems, intelligence sources and our experience, Spamhaus believes that this IP address range is being used or is about to be used for the purpose of high volume ‘snowshoe’ spam emission.

As a precaution therefore we are listing this IP range in an SBL Advisory for the protection of Spamhaus users until we are able to determine the extent of the problem in this IP range, the exact size of the problematic IP allocation within this IP range, who is operating the domains/hosts/servers in this IP range, and receive a reassurance from the network owner that the IP range does not and will not pose a threat to Spamhaus users.

56.49.135.147.in-addr.arpa. 60 IN PTR smtp65.ptzinfomed.org.
57.49.135.147.in-addr.arpa. 60 IN PTR smtp66.ptzinfomed.org.
58.49.135.147.in-addr.arpa. 60 IN PTR smtp67.ptzinfomed.org.
59.49.135.147.in-addr.arpa. 60 IN PTR smtp68.ptzinfomed.org.
60.49.135.147.in-addr.arpa. 60 IN PTR smtp69.ptzinfomed.org.
61.49.135.147.in-addr.arpa. 60 IN PTR smtp70.ptzinfomed.org.
62.49.135.147.in-addr.arpa. 60 IN PTR smtp71.ptzinfomed.org.
63.49.135.147.in-addr.arpa. 60 IN PTR smtp72.ptzinfomed.org.

144.49.135.147.in-addr.arpa. 60 IN PTR smtp89.ptzinfomed.org.
145.49.135.147.in-addr.arpa. 60 IN PTR smtp90.ptzinfomed.org.
146.49.135.147.in-addr.arpa. 60 IN PTR smtp91.ptzinfomed.org.
147.49.135.147.in-addr.arpa. 60 IN PTR smtp92.ptzinfomed.org.
148.49.135.147.in-addr.arpa. 60 IN PTR smtp93.ptzinfomed.org.
149.49.135.147.in-addr.arpa. 60 IN PTR smtp94.ptzinfomed.org.
150.49.135.147.in-addr.arpa. 60 IN PTR smtp95.ptzinfomed.org.
151.49.135.147.in-addr.arpa. 60 IN PTR smtp96.ptzinfomed.org.

ARIN WHOIS has no SWIPs for these. It is the same owner as NET-147-135-107-128-1 and given that the registrations are /29’s there should be SWIPs.

Cf.

NetRange: 147.135.107.128 — 147.135.107.159
CIDR: 147.135.107.128/27
NetName: OVH-CUST-328814
NetHandle: NET-147-135-107-128-1
Parent: OUL-16 (NET-147-135-0-0-1)
NetType: Reassigned
OriginAS: AS16276
Customer: Rajesh, Varma (C07522119)
RegDate: 2020-03-18
Updated: 2020-03-18
Ref: https://rdap.arin.net/registry/ip/147.135.107.128

CustName: Rajesh, Varma
Address: KPHB
City: Hyderabad
StateProv:
PostalCode: 500085
Country: IN
RegDate: 2020-03-18
Updated: 2020-03-18
Ref: https://rdap.arin.net/registry/entity/C07522119

Опубликовано Автор:
В рубрике ovh.net

Добавить комментарий

Ваш адрес email не будет опубликован. Обязательные поля помечены *