Stolen credit card data websites: https://ascarding.com/ >>> https://infodig.is/ infodig.ch. 600 IN A 176.119.159.81 infodig.domains. 600 IN A 176.119.159.81 infodig.sx. 600 IN A 176.119.159.81 ________________ Was: infodig.ch. 600 IN A 45.8.124.108 infodig.domains. 600 IN A 45.8.124.108 infodig.sx. 600 IN A 45.8.124.108 ________________ Was: infodig.ch. 600 IN A 8.212.135.34 infodig.domains. 600 IN A 8.212.135.34 infodig.sx. 600 IN… Читать далее Carding fraud site/forum: infodig.is (InfoDIG.sx InfoDIG.ch InfoDIG.domains infodig.mn)
Рубрика: ruvds.com
Malware botnet controllers @195.133.45.121
The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse. Malware botnet controller located at 195.133.45.121 on port 443: $ telnet 195.133.45.121 443 Trying 195.133.45.121… Connected to 195.133.45.121. Escape character is… Читать далее Malware botnet controllers @195.133.45.121
Malware botnet controllers @195.133.45.121
The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse. Malware botnet controller located at 195.133.45.121 on port 443: $ telnet 195.133.45.121 443 Trying 195.133.45.121… Connected to 195.133.45.121. Escape character is… Читать далее Malware botnet controllers @195.133.45.121
phishing server
45.143.93.106|access-cancel-payee.com|2022-02-20 17:51:20 45.143.93.106|access-reject-device.com|2022-02-20 18:11:17 45.143.93.106|access-reject-payee.com|2022-02-20 17:56:27 45.143.93.106|boi-365onlinerecovery.net|2022-02-20 18:02:05 45.143.93.106|boi-365recoveryonline.net|2022-02-20 18:06:41 45.143.93.106|cancellation-access-payee.com|2022-02-20 18:01:56 45.143.93.106|decline-access-payee.com|2022-02-20 18:06:31 45.143.93.106|myhermesdelivery.com|2022-02-20 18:06:19 45.143.93.106|nhs-vaccinations.com|2022-02-20 18:06:24 45.143.93.106|o2mobileuk.com|2022-02-20 18:01:45 45.143.93.106|payee-access-reject.com|2022-02-20 17:51:38 45.143.93.106|payee-verify-decline.com|2022-02-20 17:31:40 45.143.93.106|reject-access-device.com|2022-02-20 17:56:14 45.143.93.106|reject-payee-verify.com|2022-02-20 18:21:31 45.143.93.106|reschedulepackage.com|2022-02-20 18:01:53 45.143.93.106|revenue-ie-claimtaxback.com|2022-02-20 18:21:40
Credit card fraud gang hosting (DNS): idinaxui-netspama.ru (vmad.su / amazingdumpsshop.ru / cvv-fullz-shop.ru etc.)
Stolen credit card data websites (DNS servers): ns1.idinaxui-netspama.ru. 7168 IN A 5.180.136.218 ns2.idinaxui-netspama.ru. 7159 IN A 45.8.230.32 ___________________ Was: ns1.idinaxui-netspama.ru. 7168 IN A 38.83.79.215 ns2.idinaxui-netspama.ru. 7159 IN A 185.173.38.225 ___________________ Was: ns1.idinaxui-netspama.ru. 7168 IN A 38.83.79.215 ns2.idinaxui-netspama.ru. 7159 IN A 194.87.218.73 ___________________ Was: ns1.idinaxui-netspama.ru. 7168 IN A 38.83.79.215 ns2.idinaxui-netspama.ru. 7159 IN A 107.174.244.11 ___________________ Was:… Читать далее Credit card fraud gang hosting (DNS): idinaxui-netspama.ru (vmad.su / amazingdumpsshop.ru / cvv-fullz-shop.ru etc.)
Hosting phishing domains
176.113.80.252 ajaxtracker.com 2022-02-18 01:26:31 176.113.80.252 cdn-cgi.net 2022-02-18 02:47:03 176.113.80.252 coupon-popup.net 2022-02-18 03:52:13 176.113.80.252 jquery-ui.net 2022-02-18 02:16:45 176.113.80.252 jquerylibs.net 2022-02-18 04:00:13 176.113.80.252 jqueryllc.net 2022-02-18 05:02:30 176.113.80.252 magento-plugin.com 2022-02-18 03:26:41 176.113.80.252 purechal.com 2022-02-18 00:16:51 176.113.80.252 trustdomains.net 2022-02-18 02:16:25 ______________________ Was: 5.188.89.212 ajaxtracker.com 2022-02-17 08:37:01 ______________________ Was: 185.251.90.19 ajaxtracker.com 2022-02-15 02:56:20 185.251.90.19 cdn-cgi.net 2022-02-15 02:51:38 185.251.90.19 coupon-popup.net 2022-02-15… Читать далее Hosting phishing domains
Carding fraud site/forum: infodig.is (InfoDIG.sx InfoDIG.ch InfoDIG.domains infodig.mn)
Stolen credit card data websites: https://ascarding.com/ >>> https://infodig.is/ infodig.ch. 600 IN A 213.226.114.240 infodig.domains. 600 IN A 213.226.114.240 infodig.sx. 600 IN A 213.226.114.240 ________________ Was: infodig.ch. 600 IN A 2.57.187.115 infodig.domains. 600 IN A 2.57.187.115 infodig.sx. 600 IN A 2.57.187.115 ________________ Was: infodig.ch. 600 IN A 45.143.137.99 infodig.domains. 600 IN A 45.143.137.99 infodig.sx. 600 IN… Читать далее Carding fraud site/forum: infodig.is (InfoDIG.sx InfoDIG.ch InfoDIG.domains infodig.mn)
Malware distribution & botnet controller @193.42.113.118
The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse. Malware botnet controller located at 193.42.113.118 on port 443: $ telnet 193.42.113.118 443 Trying 193.42.113.118… Connected to 193.42.113.118. Escape character is… Читать далее Malware distribution & botnet controller @193.42.113.118
ArkeiStealer botnet controller @213.226.114.217
The host at this IP address is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse. ArkeiStealer botnet controller located at 213.226.114.217 on port 80 (using HTTP POST): hXXp://woou.link/548152.php $ dig +short woou.link 213.226.114.217 Referencing malware binaries (MD5 hash): 0251d24781ef86814ff23e2910ad73f3 — AV detection:… Читать далее ArkeiStealer botnet controller @213.226.114.217
Malware botnet controller @45.151.144.119
The host at this IP address is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse. Malware botnet controller at 45.151.144.119 on port 443. $ telnet 45.151.144.119 443 Trying 45.151.144.119… Connected to 45.151.144.119. Escape character is ‘^]’ Malicious domains observed at this IP… Читать далее Malware botnet controller @45.151.144.119