Wednesday, March 12, 2014

Spam Count in Two Days: 2,798 Messages

Late Monday night I posted about some spam hitting my account. Just under two days later I have 2,798 spam messages.

I'll let you look the owners of all the IPs on Ripe, Arin, Apnic, Lacnic and Afrinic. Out of curiosity here is a sampling - I'd parse this all out faster if I had time but have to get on to other things.

Noticing that a lot of these have interesting hash embedded in content.

Domains in content of emails:

email.mccallums.com
lastwatchsale.ru
vemdeog.chairtwentyshown.org
chairtwentyshown.org
zipeuyrodyyd.chairtwentyshown.org/contact.php
ded.monaco.mc
E07.doctorfnooh.ru
FA.doctorgjklb.ru
www.kinderaerzte-jena.de/ministered.php (pretending to be FaceBook)
email.jazztel.es
29E.doctorgjklb.ru
7.doctorgjklb.ru
email.edatel.net.co
uoudvcli.net
D.doctorgjklb.ru

IPs:
186.52.244.147
190.44.24.217
59.24.93.245
116.207.53.99 >> Chinese characters.
173.44.158.58
173.44.158.58
173.44.158.58
212.233.144.186
49.73.109.205
80.94.107.85
178.101.209.88
70.45.97.40
175.143.101.102
34.66.16.95
95.16.30.214
186.43.50.176
75.75.242.135
27.20.191.236
186.86.136.150
94.156.20.117
200.16.134.251
200.164.76.210
95.21.38.189
82.44.79.85
181.31.216.39
85.130.27.171
186.32.129.106
186.105.102.154
49.73.124.208
121.227.89.99
110.205.35.113
121.227.185.122
85.25.123.171  >> Fake YouTube message
183.95.66.176
220.181.15.207
111.176.124.206
183.93.99.219
111.176.87.245
220.181.12.76
173.14.208.97
70.71.253.221
181.50.21.50
75.89.78.160
185.13.202.243
217.92.28.39
187.95.19.182
74.77.181.106
107.10.47.7
190.238.195.20
190.193.247.12
123.200.161.29
179.8.206.177
99.98.19.122
177.228.127.103
186.188.207.108
175.197.64.249
81.218.213.92
186.27.217.15
187.4.179.210
200.71.152.98
177.55.154.39
65.102.73.157
119.36.212.252
201.214.134.253
24.106.182.10
190.154.93.19
64.185.54.44
201.255.88.34
60.246.36.101
179.26.39.199
121.88.160.197
64.130.148.55
80.120.52.58
94.26.21.88
190.113.144.222
121.236.37.87
173.161.183.66
72.25.61.52 / 98.21.51.11
175.195.64.22
200.42.131.66
109.190.155.177
190.40.80.91
190.22.195.93
188.85.139.20
208.124.172.226
95.19.13.187
163.178.208.3
180.67.200.129
217.207.6.242
84.126.225.83
5.201.219.21
31.193.26.22
58.142.139.209
222.124.150.50
177.71.37.223
202.171.66.98
181.167.79.30
89.240.5.16
187.5.113.183
50.66.78.53
83.244.243.130
80.94.107.85
203.170.109.189
14.165.75.56
173.31.47.91
190.13.56.250
27.70.17.237
85.58.140.159