Based on research, analysis of network data, our ‘snowshoe’ spam detection systems, intelligence sources and our experience, Spamhaus believes that this IP address range is being used or is about to be used for the purpose of high volume ‘snowshoe’ spam emission.
As a precaution therefore we are listing this IP range in an SBL Advisory for the protection of Spamhaus users until we are able to determine the extent of the problem in this IP range, the exact size of the problematic IP allocation within this IP range, who is operating the domains/hosts/servers in this IP range, and receive a reassurance from the network owner that the IP range does not and will not pose a threat to Spamhaus users.
—
96.218.81.51.in-addr.arpa. 86400 IN PTR smtp97.ptzinfomed.org.
97.218.81.51.in-addr.arpa. 86400 IN PTR smtp98.ptzinfomed.org.
98.218.81.51.in-addr.arpa. 86400 IN PTR smtp99.ptzinfomed.org.
99.218.81.51.in-addr.arpa. 86400 IN PTR smtp100.ptzinfomed.org.
100.218.81.51.in-addr.arpa. 86400 IN PTR smtp101.ptzinfomed.org.
101.218.81.51.in-addr.arpa. 86400 IN PTR smtp102.ptzinfomed.org.
102.218.81.51.in-addr.arpa. 86400 IN PTR smtp103.ptzinfomed.org.
103.218.81.51.in-addr.arpa. 86400 IN PTR smtp104.ptzinfomed.org.
104.218.81.51.in-addr.arpa. 86400 IN PTR smtp105.ptzinfomed.org.
105.218.81.51.in-addr.arpa. 86400 IN PTR smtp106.ptzinfomed.org.
106.218.81.51.in-addr.arpa. 86400 IN PTR smtp107.ptzinfomed.org.
107.218.81.51.in-addr.arpa. 86400 IN PTR smtp108.ptzinfomed.org.
108.218.81.51.in-addr.arpa. 86400 IN PTR smtp109.ptzinfomed.org.
109.218.81.51.in-addr.arpa. 86400 IN PTR smtp110.ptzinfomed.org.
110.218.81.51.in-addr.arpa. 86400 IN PTR smtp111.ptzinfomed.org.
111.218.81.51.in-addr.arpa. 86400 IN PTR smtp112.ptzinfomed.org.
112.218.81.51.in-addr.arpa. 86400 IN PTR smtp113.ptzinfomed.org.
113.218.81.51.in-addr.arpa. 86400 IN PTR smtp114.ptzinfomed.org.
114.218.81.51.in-addr.arpa. 86400 IN PTR smtp115.ptzinfomed.org.
115.218.81.51.in-addr.arpa. 86400 IN PTR smtp116.ptzinfomed.org.
116.218.81.51.in-addr.arpa. 86400 IN PTR smtp117.ptzinfomed.org.
117.218.81.51.in-addr.arpa. 86400 IN PTR smtp118.ptzinfomed.org.
118.218.81.51.in-addr.arpa. 86400 IN PTR smtp119.ptzinfomed.org.
119.218.81.51.in-addr.arpa. 86400 IN PTR smtp120.ptzinfomed.org.
120.218.81.51.in-addr.arpa. 86400 IN PTR smtp121.ptzinfomed.org.
121.218.81.51.in-addr.arpa. 86400 IN PTR smtp122.ptzinfomed.org.
122.218.81.51.in-addr.arpa. 86400 IN PTR smtp123.ptzinfomed.org.
123.218.81.51.in-addr.arpa. 86400 IN PTR smtp124.ptzinfomed.org.
124.218.81.51.in-addr.arpa. 86400 IN PTR smtp125.ptzinfomed.org.
125.218.81.51.in-addr.arpa. 86400 IN PTR smtp126.ptzinfomed.org.
126.218.81.51.in-addr.arpa. 86400 IN PTR smtp127.ptzinfomed.org.
127.218.81.51.in-addr.arpa. 86400 IN PTR smtp128.ptzinfomed.org.
ptzinfomed.org descriptive text «v=spf1 a mx a:ptzinfomed.org ip4:147.135.37.124 ip4:51.81.251.131 ip4:51.81.253.224/27 ip4:147.135.107.128/27 ip4:147.135.49.56/29 ip4:147.135.51.112/29 ip4:147.135.51.120/29 ip4:147.135.49.144/29 ip4:51.81.218.96/27 ip6:2604:2dc0:0200:017c::/64 include:m» «ailgun.org ~all»
Again, no SWIP for this /27, in violation of ARIN policy. Probably same owner as with
Rajesh, Varma OVH-CUST-328814 (NET-147-135-107-128-1) 147.135.107.128 — 147.135.107.159