This fake eFax spam leads to malware on estipaindo.ru:From: messages-noreply@bounce.linkedin.comThe malicious payload is at [donotclick]estipaindo.ru:8080/forum/links/column.php (report here) hosted on:
Sent: 12 February 2013 04:10
Subject: Efax Corporate
Fax Message [Caller-ID: 181999356]
You have received a 44 pages fax at Tue, 12 Feb 2013 05:10:03 +0100, (944)-095-3172.
* The reference number for this fax is [eFAX-101609258].
View attached fax using your Internet Browser.
________________________________________
© 2013 j2 Global Communications, Inc. All rights reserved.
eFax is a registered trademark of j2 Global Communications, Inc.
This account is subject to the terms listed in the eFax Customer Agreement.
46.175.224.21 (Maxnet Lukasz Hamerski, Poland)
91.121.57.231 (OVH, France)
202.72.245.146 (Railcom, Mongolia)
The following IPs and domains can be blocked:
46.175.224.21
91.121.57.231
202.72.245.146
enakinukia.ru
dekamerionka.ru
evskindarka.ru
exibonapa.ru
dmssmgf.ru
epianokif.ru
elistof.ru
dmpsonthh.ru
esekundi.ru
egihurinak.ru
exiansik.ru
disownon.ru
epilarikko.ru
damagalko.ru
dumarianoko.ru
emalenoko.ru
epiratko.ru
evujalo.ru
bananamamor.ru
dfudont.ru
estipaindo.ru
emaianem.ru
1 comment:
That is something wrong happening with eFax, that's why i decided to move to Popfax http://www.popfax.com and i never got any scams or fake faxes. They seam to be very professional.
Post a Comment