Open kowith337 opened 5 years ago
kowith337
commented
5 years ago http://www.cswinpz.com/ad5network.com/adfive_doc/thailand/Campaign%20Request%20Form/MK/Campaign%20request%20form-HotChat%20Girl%20-%20TH.xlsxhttp://www.cswinpz.com/ad5network.com/adfive_doc/thailand/Campaign%20Request%20Form/MK/Campaign%20request%20form-iphone7%20black%20-%20TH.xlsxkowith337
commented
5 years ago https://www.google.com/search?q=DailyHoro&tbo=1&num=100&lr=lang_th
(www)\.|m3tech.co.th http://www.m3tech.co.th/TH/vas.php
(www)\.|m3shoppe.in.th(www)\.|sabmobile.com(www)\.|sabsabonline.com(www)\.|sabdee.comkowith337
commented
5 years ago To be use with search engine.
kowith337
commented
5 years ago PasteBin Raw from keyword search
consentprt.dtac.co.th -site:dtac.co.th
kowith337
commented
5 years ago Note that TrueHits was already blocked because of this domain was flagged as Tracking, so I use the Google cache instead.
http://webcache.googleusercontent.com/search?hl=en&q=cache%3Ahttp%3A%2F%2Ftruehits.net%2Fmodule%2Fstato.php%3FG_CODET%3Dp0026927%26t%3D2%26y%3D2016%26m%3D05%26Web%3Dwww.n-content.com%26cate%3D%26v%3D1%26dir%3Ddirectory%26order%3D444%26g%3Dhttp://webcache.googleusercontent.com/search?q=cache:QJQpxE3vUzkJ:truehits.net/module/stato.php%3FG_CODET%3Dp0026927%26t%3D2%26y%3D2015%26m%3D12%26Web%3Dwww.n-content.com%26cate%3D%26v%3D1%26dir%3Ddirectory%26order%3D358%26g%3D+&cd=5&hl=en&ct=clnk&gl=thkowith337
commented
5 years ago Need to lookup this report from Comodo
https://www.comodo.com/ctrlquarterlyreport/Comodo-20Sept-2017-special-report-konica-copier-attack.pdfhttps://www.comodo.com/ctrlquarterlyreport/Comodo_IKARUSdilapidated_Special_Report_Part_II.pdfkowith337
commented
5 years ago https://truehits.net/script/201812/rank_10.php
kowith337
commented
5 years ago This repo below contains some ThinkSmart domains
https://github.com/Tksm-Attaphon/dtacplay-github
kowith337
commented
5 years ago kowith337
commented
5 years ago Edited note: They're many types of user teams and also give different topics, only matched username and group team can browse those conversations.
kowith337
commented
5 years ago kowith337
commented
5 years ago An operator exposed VAS portal from some services providers
http://www3.truecorp.co.th/truemoveh/3g/vas/mobile/all
From: https://m.pantip.com/topic/38924839
kowith337
commented
5 years ago ThinkSmart use ZeroPark to show ads and redirect traffics and/or web page to directly subscribe their services without any user-side confirmations!
https://www.bangkokbiznews.com/pr/detail/48072
With the picture above, expected that ThinkSmart use ZeroPark to serve ads, then redirect to the web page that hosted on CTrackz for performing quick subscribe!
kowith337
commented
5 years ago kowith337
commented
5 years ago kowith337
commented
5 years ago Update from https://github.com/kowith337/ThaiConsentHosts/issues/6#issuecomment-496233994
TMC = TeleInfo Media Co.,Ltd. (Thailand Yellow Pages)
kowith337
commented
5 years ago From https://pantip.com/topic/39093998
kowith337
commented
5 years ago Relationship of company: HexCube
GameLoft (Region)kowith337
commented
5 years ago SIP trunk number02917xxxx are the part of True Universal Convergence PCLkowith337
commented
5 years ago Reference to e559c2ae62c90f02dd2e9f1dc1159a967a7829a1
kowith337
commented
5 years ago Todo: b8a735f2a8f01fbaf0f89874d7f91331bcfd3b2b
view-source:https://gamehack.bid/v2/th/game/com.supercell.clashofclans-hack?referer=my.dek-d.combemobtrk.com as much as possible.
NotRealPaz
commented
4 years ago I think *****.bemobtrk.com is just a ad-tracker according to this website bemob.com
kowith337
commented
4 years ago Yes, it's deserve to blocked due to it's possible to redirecting to AOC supscription page, but they may have lots of random subdomains, however.
NotRealPaz
commented
4 years ago Then the file it's gonna be very large due to host file doesn't support wildcards. around 60 million lines of host file.
kowith337
commented
4 years ago Hmm, I don't think it's site will use 11111, aaaaa till zzzzz.
If they really do, their site and/or server might be large enough like a server farm, or have lots of virtual servers/containers?
NotRealPaz
commented
4 years ago They just point to same server. You can try to ping them. I think they are around 2-10 servers.
kowith337
commented
4 years ago That might still be return to a same point by adding randomized sub hosts, since this is a hosts file, not wildcard, direct DNS name block or top-level blocking or something.
Unless it have some possible ways, e.g.
bemobtrk.com to your additional hosts list in pDNSF to ensure that everything from that domain will be blocked, regardless of any other subs.However, not everyone use any good tools, and any browsers than Chrome, either.
Because Chrome itself are able to bypass blocking and use their own built-in DNS, unless you've turn off this flag!
kowith337
commented
4 years ago kowith337
commented
4 years ago https://pantip.com/topic/39518351
APlay Digital, however, I didn't block aplaymusic.com and all subs yet.kowith337
commented
3 years ago About recent commit: 5df5b18957cc1f9ceac92e83854a1dd68b3b10f4 + https://pantip.com/topic/40352230
Found from TrueID news articles that have its promo banner, all links below are converted to Outline.
So, it's clear that Truemove create subscription services by their own!
kowith337
commented
3 years ago New affiliate lists to check along with OilMob
https://leads.mengine.me/live-offers/index/per-page/100/page/7/order/ID/dir/desc
Trend Micro report of malware that written with Kotlin
https://www.trendmicro.com/en_us/research/18/a/first-kotlin-developed-malicious-app-signs-users-premium-sms-services.html In images and extracted URL are pointed to GMPMobi
This should be large company data sources that expose E-Mail address and sites, divided in each category.
https://googlegroups.com/group/itsenator/attach/e5bf4f790aa48e15/Prospect%20Audiences.xls?part=4+from:https://groups.google.com/forum/#!forum/itsenator