Is poneytelecom.eu Safe?

IP ***** from their AS is continuously attacking our servers with SIP attack (trying to guess login combinations), already for days even after being blocked on firewall (stupid attack). I have just reported it to their abuse mail, will see if they reply.

Source of guest book spam, frequently used to scrape guest book submission forms for use by others! Either block this ISP at the firewall level, or booby-trap your guest books and contact forms so that any spam attempts get rejected before the junk reaches the database! Having a look at their home page doesn't reveal anything at all that could help deter any doubts. BEWARE! EDIT: ***** is a netblock with a bunch of fragments belonging to poneytelecom.

IP's associated with this site also engage in repeated port scanning attempts which fortunately are blocked by most security software. ***** is the latest IP address from which port scanning was attempted & blocked my own security programs this morning. Definitely exercise due caution in any interaction with the site!

spam source Received: from ***** (127.0.0.1) by ***** (F-Secure/virusgw_smtp/400/sv212.xserver.jp) From: "Raymond Moyer" <info@outlook.com> Received: from ***** (HELO User) (80.74.138.241) by 62-210-207-180.rev.poneytelecom.eu with ESMTPA; 30 Mar 2015 17:45:59 +0200 Reply-To: ***** From: "MISS MERCY AKPATA" ***** Received: from ***** ([62.210.207.180]) Received: from [66.85.164.94] (port=62725 helo=User) by ***** with esmtpa (Exim 4.85) (envelope-from <*****>) Reply-To: ***** From: "GLO MOBILE INTERNATIONAL PROGRAM." info@uzlidep.uz X-Get-Message-Sender-Via: ohiographic.ohiographic.com: authenticated_id: ***** Received: from User (66.85.164.94) by servermail.rgsu.local (62.117.107.247) Reply-To: ***** From: "GLO MOBILE INTERNATIONAL PROGRAM." ***** NetRange: ***** - ***** CIDR: ***** NetName: SS7 NetHandle: NET-66-85-128-0-1 Parent: NET66 (NET-66-0-0-0-0) NetType: Direct Allocation OriginAS: AS32164 Organization: SECURED SERVERS LLC (SSL-65) Received: from User (184.95.36.189) by servermail.rgsu.local (62.117.107.247) Reply-To: ***** From: "ENG. WILLIAMS BILL." ***** NetRange: ***** - ***** CIDR: ***** NetName: SECUREDSERVERS

poneytelecom.eu is a domain name for reverse DNS of the french access provider Online.net. Maybe some malvolent web site are hosted by Online, but, please, don't rate badly all the IPs. Use ***** for abuse

Looks like another ISP/range to block... Hosting hungarian spammers' domain - ***** - at ***** --- Domain Name: ***** Creation Date: ***** 15:49:00Z Registrar: ENOM, INC. Reseller: NAMECHEAP.COM Registrant Name: WHOISGUARD PROTECTED Registrant Organization: WHOISGUARD, INC. Registrant Street: P.O. BOX ***** Registrant City: PANAMA Registrant State/Province: PANAMA Registrant Postal Code: NA Registrant Country: PA Registrant Phone: ***** Registrant Fax: ***** Registrant Email: ***** --- nethostpartners.com: ***** ***** domain name pointer 212-129-10-254.rev.poneytelecom.eu. ***** = France (Free SAS/Iliad Entreprises Customers - AS:12876/ONLINE S.A.S.; [FR])

WHERE to start explaining these sleazy scam sites and the criminals you would be dealing with . . . Spamming FAKE/SCAM pharmacies to rip you off! (Fake pharmacies with fake addresses/certificates waiting to SCAM YOU!) These scammers spam all these garbage brands and MANY more! ***** ***** ***** ***** ***** ***** ***** ***** ***** ***** ***** ***** ***** Look up the spam brand here: ***** Even More Info: ***** - EvaPharmacy (The worst of the worst criminal spam/scam groups) ***** (how to tell if the certification is real) ***** (check for rogue/fake pharmacies) FINAL ANALYSIS: A horrible scam, spammed for years on many 1000's of domains. (sometimes spammers change content/look, but its still a criminal scam site)