Comments

blank email with no subject tries to deliver malware but fails — 4 Comments

  1. assuresolutions .inhbtyHG
    209.99.16.227: https://www.virustotal.com/en/ip-address/209.99.16.227/information/
    > https://www.virustotal.com/en/url/a6597147c0464e5524b9099e78300ba0ff920e35b7ce33a71fd7345fb2d792e7/analysis/
    e67tfgc4uybfbnfmd .orgafhbtyHG
    119.28.85.128: https://www.virustotal.com/en/ip-address/119.28.85.128/information/
    > https://www.virustotal.com/en/url/77aad2aa2c5f57f71606816569e3a03c8201598494402e3204ee16786061d342/analysis/
    speaklifegreetings .comhbtyHG
    174.127.105.121: https://www.virustotal.com/en/ip-address/174.127.105.121/information/
    > https://www.virustotal.com/en/url/a42ca69692d5025078114124a8b5824d60f4a297fec1647294a9e2b0a33cd752/analysis/
    http ://7prisms .com/0hbtyHG
    70.40.221.121: https://www.virustotal.com/en/ip-address/70.40.221.121/information/

    http ://adjlegal .com/0hbtyHG
    162.222.226.195: https://www.virustotal.com/en/ip-address/162.222.226.195/information/
    > https://www.virustotal.com/en/url/fa322213360b6ab4767cde83f714b732c1331488c3630c50073f368314fff17b/analysis/
    http ://akira-sushi34 .ru/0hbtyHG
    141.8.194.135: https://www.virustotal.com/en/ip-address/141.8.194.135/information/
    > https://www.virustotal.com/en/url/dc14e29fd7df0d7d6a2b8a27d86c855e3d78e66d42782fe12ccfeed1ba33a1ff/analysis/
    http ://charlenelouw .co.za/0hbtyHG
    196.46.186.187: https://www.virustotal.com/en/ip-address/196.46.186.187/information/
    > https://www.virustotal.com/en/url/f1fedfe4a7596995beb4d7ca4cb0aa9194952e1c4c76ca53876a43d6292ca536/analysis/
    http ://coregroupindia .co.in/0hbtyHG
    199.79.62.121: https://www.virustotal.com/en/ip-address/199.79.62.121/information/
    > https://www.virustotal.com/en/url/10d0d5d34119d3b7beeab5fed98ddb4b6018419934e05d4165751193d2e41b49/analysis/
    http ://matbaa .be/0hbtyHG
    185.158.165.13: https://www.virustotal.com/en/ip-address/185.158.165.13/information/
    > https://www.virustotal.com/en/url/2e2e0045c06c362d13c5930fa13b90b5311614d593f19724e8113c703852b7ae/analysis/
    http ://mercobel .be/0hbtyHG
    37.97.228.171: https://www.virustotal.com/en/ip-address/37.97.228.171/information/

    http ://msbn .net/0hbtyHG
    69.64.147.34: https://www.virustotal.com/en/ip-address/69.64.147.34/information/

    http ://mscomunicacion .com.mx/0hbtyHG
    Could not find an IP address for this domain name.

    http ://seminator .de/0hbtyHG
    81.169.145.94: https://www.virustotal.com/en/ip-address/81.169.145.94/information/

    http ://sevsem .biz/0hbtyHG
    46.29.160.48: https://www.virustotal.com/en/ip-address/46.29.160.48/information/
    > https://www.virustotal.com/en/url/a4b5944e83fb4af1b602198dc5606468d275e8b208dc0d8bfec7e778244455de/analysis/
    http ://sportsandsocialchange .org/0hbtyHG
    192.185.5.128: https://www.virustotal.com/en/ip-address/192.185.5.128/information/
    > https://www.virustotal.com/en/url/138dff833711e646bf8010392b711229fe638c304850c9a087ab6f825c521a58/analysis/
    http ://stock-fallimenti .com/0hbtyHG
    213.32.71.234: https://www.virustotal.com/en/ip-address/213.32.71.234/information/

    http ://xp.com .sg/0hbtyHG
    198.252.98.191: https://www.virustotal.com/en/ip-address/198.252.98.191/information/

    http ://yesman .me/0hbtyHG
    103.254.148.134: https://www.virustotal.com/en/ip-address/103.254.148.134/information/
    > https://www.virustotal.com/en/url/0703ef16939c4d8788aa39c5aa8d3c0425353d2d7f60dead462bec6989362bf9/analysis/
    http ://zeshta .com/0hbtyHG
    103.21.59.169: https://www.virustotal.com/en/ip-address/103.21.59.169/information/
    > https://www.virustotal.com/en/url/30530ad00f45f3508f324bac4e275f3488f98f3b4e1c232356fc9f731294ecc4/analysis/
    http ://zonnit .com/0hbtyHG
    23.229.221.200: https://www.virustotal.com/en/ip-address/23.229.221.200/information/
    > https://www.virustotal.com/en/url/4bf71740b8c23a6ae02f16de3419a56caf2336104014c41b37f5ade6ba6922af/analysis/

    https://blogs.msdn.microsoft.com/alexhomer/2011/02/05/blocking-malware-domains-in-isa-2006/
    “… be aware that malware that connects using an IP address instead of a domain name will -not- be blocked when you use just domain name lists…”

    //

Leave a Reply

Your email address will not be published. Required fields are marked *