Monthly Archives: September 2020

Trends in Networks: Spam #7

This week we saw a significant drop in the use of Freenom TLDs coming from Digital Ocean. Wonder if the spammers just took a break from using them, but if this was the result of Digital Ocean’s efforts then good … Continue reading

Posted in Informative | Tagged , , , , , , , | Leave a comment

Trends in Networks: Spam #6

Picking up where we left off, more spam coming from the Digital Ocean network with freenom and xyz TLDs in the PTR/reverse DNS record. Sep12 157.245.94.185 x1 mail.opoczanie.xyz 161.35.230.193 x1 server.healthdocs.xyz 164.90.228.251 x1 srv0.mails27.gq 164.90.233.88 x3 srv0.mails27.cf 165.22.74.145 x3 srv0.mails28.tk … Continue reading

Posted in Informative | Tagged , , , , , , , | Leave a comment

Trends in Networks: Spam #5

Weekly dump of Digital Ocean abuse using Freenom (and .xyz) domains. Sep5 134.122.112.139 x1 kota.paypak.xyz 138.68.110.2 x3 srv0.mails19.ga 138.68.87.194 x4 srv0.mails19.ml 138.68.96.83 x1 srv0.mails19.cf 159.65.232.195 x2 bundi.paypax.xyz 161.35.14.115 x2 srv0.mails18.cf 46.101.163.120 x2 srv0.mails18.gq 64.225.10.63 x1 srv0.mails19.tk Sep6 134.122.125.156 x2 srv0.mails19.gq … Continue reading

Posted in Informative | Tagged , , , , , , , , | Leave a comment

Trends in Networks: Spam #4

Another week of Digital Ocean abuse using Freenom domains… I don’t want to assume they are all bad, but I have yet to see a ‘legit’ domain. Aug28 134.122.81.184 x1 srv0.mails13.ml 142.93.96.187 x1 srv0.mails13.ga 161.35.112.82 x1 der005-fv03.powerdealers.xyz 164.90.237.213 x4 srv0.mails13.tk … Continue reading

Posted in Informative | Tagged , , , , , , , , | Leave a comment