According to our telemetry and our own intelligence, the host at this IP address has been setup by cyber criminals for the exclusive purpose of hosting phishing sites, malware distribution sites and/or botnet controllers. We therefore advise our users to block any traffic from/to this IP address.
Malware botnet controller located at 95.213.216.166 443 TCP:
$ telnet 95.213.216.166 443
Trying 95.213.216.166…
Connected to 95.213.216.166.
Escape character is ‘^]’.
Malicious domains hosted observed on this IP address:
accesspayee.com. 600 IN A 95.213.216.166
activate-mywallet.com. 600 IN A 95.213.216.166
anz-contact.com. 600 IN A 95.213.216.166
anz-secure.online. 600 IN A 95.213.216.166
ausp-login2d.com. 600 IN A 95.213.216.166
closecontact-health-check.com. 600 IN A 95.213.216.166
easysecurebanking.com. 600 IN A 95.213.216.166
hmrcrefund-apply-form.com. 600 IN A 95.213.216.166
info-nhs.com. 600 IN A 95.213.216.166
mbank-kontakt.com. 600 IN A 95.213.216.166
mydeliver-postoffice.com. 600 IN A 95.213.216.166
mymobileapp-santander.com. 600 IN A 95.213.216.166
mypostoffice-delivery.com. 600 IN A 95.213.216.166
mywallet-reactivation.com. 600 IN A 95.213.216.166
nhs-covid-applypass.com. 600 IN A 95.213.216.166
nhsapply-covid-pass.com. 600 IN A 95.213.216.166
nhsapply-covid-pass.info. 600 IN A 95.213.216.166
onlinebanking-365logins.net. 600 IN A 95.213.216.166
order-test-052.com. 600 IN A 95.213.216.166
pack-postpone.com. 600 IN A 95.213.216.166
parcelconfirmation-gb4732.com. 600 IN A 95.213.216.166
po-apply-form.com. 600 IN A 95.213.216.166
po-branch-redelivery.com. 600 IN A 95.213.216.166
po-local-service.com. 600 IN A 95.213.216.166
po-local-services.com. 600 IN A 95.213.216.166
po-mailredelivery.com. 600 IN A 95.213.216.166
po-my-redelivery.com. 600 IN A 95.213.216.166
po-reschedule-fee.com. 600 IN A 95.213.216.166
poassist-redirect.com. 600 IN A 95.213.216.166
poredeliver-package.com. 600 IN A 95.213.216.166
postclaim-redirect.com. 600 IN A 95.213.216.166
posting-relocation.com. 600 IN A 95.213.216.166
postofficeuk-shipment-status.com. 600 IN A 95.213.216.166
potransit.com. 600 IN A 95.213.216.166
redeem-myaccount.info. 600 IN A 95.213.216.166
relocation-post.com. 600 IN A 95.213.216.166
reregister-mydevice.com. 600 IN A 95.213.216.166
reschedulelsl.me. 600 IN A 95.213.216.166
reschedulepsl.co.uk. 600 IN A 95.213.216.166
symptoms-health-check.com. 600 IN A 95.213.216.166
ukdigitalpass.co.uk. 600 IN A 95.213.216.166
ukpostaloffice-track-system.uk. 600 IN A 95.213.216.166