According to our telemetry and our own intelligence, the host at this IP address has been setup by cyber criminals for the exclusive purpose of hosting phishing sites, malware distribution sites and/or botnet controllers. We therefore advise our users to block any traffic from/to this IP address.
Malware botnet controller located at 78.155.222.142 on port 443 TCP:
$ telnet 78.155.222.142 443
Trying 78.155.222.142…
Connected to 78.155.222.142.
Escape character is ‘^]’
Malicious domains hosted observed on this IP address:
alouaisueas.top. 600 IN A 78.155.222.142
apkupdateandosuriasueiasas.ml. 600 IN A 78.155.222.142
bigbrisk.link. 600 IN A 78.155.222.142
calmontusoaieas.quest. 600 IN A 78.155.222.142
calouaisuqpaoslamsa.ml. 600 IN A 78.155.222.142
caolznauelo.ml. 600 IN A 78.155.222.142
carmauiausacsaa.ml. 600 IN A 78.155.222.142
clikansgenuxomultinort.ml. 600 IN A 78.155.222.142
clumansuapaueoas.ml. 600 IN A 78.155.222.142
drivefaint.link. 600 IN A 78.155.222.142
falconessimaouaso.ml. 600 IN A 78.155.222.142
fashionusetroeu.ml. 600 IN A 78.155.222.142
flpaowulouriaos.ml. 600 IN A 78.155.222.142
fralapeoauswcoausl.ml. 600 IN A 78.155.222.142
francisocoalaulopo.ml. 600 IN A 78.155.222.142
frulimionauspomuntuniru.ml. 600 IN A 78.155.222.142
kokosrumianzua.ml. 600 IN A 78.155.222.142
labalonumicosutu.ml. 600 IN A 78.155.222.142
lopuaisneoausazk.ml. 600 IN A 78.155.222.142
malariastoplaminucorusrs.ml. 600 IN A 78.155.222.142
nastydate.work. 600 IN A 78.155.222.142
prankiosutoi.ml. 600 IN A 78.155.222.142
producecontain.link. 600 IN A 78.155.222.142
profitseason.link. 600 IN A 78.155.222.142
sinceretall.link. 600 IN A 78.155.222.142
tradeshare.link. 600 IN A 78.155.222.142
traminocuaouas.ml. 600 IN A 78.155.222.142
upsatsuaosuecoausl.ml. 600 IN A 78.155.222.142
valdicoamuncineu.ml. 600 IN A 78.155.222.142