===== Moved from SBL537019 95.213.205.82. ===== ===== Moved from SBL535812 185.175.44.167. ===== The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse. Malware botnet controller located at 95.213.205.83 on port 5655… Читать далее RemoteManipulator botnet controller @95.213.205.83
Рубрика: selectel.ru
Carding fraud tool site: luxchecker.pm / luxchecker.pw etc.
Selling balance checking to stolen credit card cybercriminals: «CC/DUMPS/AVS/BALANCE/PAYPAL CARD Checker. « https://luxchecker.pm/ https://luxchecker.pw/ luxchecker.pm. 600 IN A 45.8.127.131 luxchecker.pw. 600 IN A 45.8.127.131 ___________________ Was: luxchecker.pm. 600 IN A 185.87.48.30 luxchecker.pw. 600 IN A 185.87.48.30 ___________________ Was: luxchecker.pm. 600 IN A 185.125.219.61 luxchecker.pw. 600 IN A 185.125.219.61 ___________________ Was: luxchecker.pm. 600 IN A 198.11.180.178… Читать далее Carding fraud tool site: luxchecker.pm / luxchecker.pw etc.
RemoteManipulator botnet controller @95.213.205.82
===== Moved from SBL SBL535812. ==== The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse. Malware botnet controller located at 95.213.205.82 on port 5655 TCP: $ telnet 95.213.205.82 5655 Trying… Читать далее RemoteManipulator botnet controller @95.213.205.82
Malware botnet controllers @45.8.127.147
According to our telemetry and our own intelligence, the host at this IP address has been setup by cyber criminals for the exclusive purpose of hosting phishing sites, malware distribution sites and/or botnet controllers. We therefore advise our users to block any traffic from/to this IP address. Loki botnet controller @45.8.127.147 The host at this… Читать далее Malware botnet controllers @45.8.127.147
Malware botnet controller @91.243.32.88
The host at this IP address is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse. Malware botnet controller located at 91.243.32.88 on port 80 (using HTTP GET): hXXp://91.243.32.88/verify.php Referencing malware binaries (MD5 hash): a751d63055d095450ccf41ecad484077 — AV detection: 29 / 67 (43.28) a9650583455ebb93e83a9e841bcec75e… Читать далее Malware botnet controller @91.243.32.88
spam emitters
Received: from s1.megojom.ru (megojom.ru [79.141.73.4]) Date: Sat, 20 Nov 2021 02:0x:xx +0000 From: Aleksandr <info@s1.megojom.ru> Subject: Предложение 79.141.73.2 eseneno.ru 79.141.73.3 derwerer.ru 79.141.73.4 megojom.ru 79.141.73.5 yeremont.ru 79.141.73.6 uwentos.ru 79.141.73.18 kroshem.ru 79.141.73.19 opengmon.ru 79.141.73.20 jombengon.ru 79.141.73.21 veromeng.ru 79.141.73.22 alomengo.ru
Malware distribution & botnet controller @95.213.165.24
The host at this IP address is currently being used to distribute malware. Malware distribution located here: hXXp://sahpfi06.top/downfiles/file.exe The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse. Malware botnet controller… Читать далее Malware distribution & botnet controller @95.213.165.24
Malware distribution @95.213.216.169
The host at this IP address is currently being used to distribute malware. Malware distribution located here: hXXp://petknorra.com/index.php petknorra.com. 600 IN A 95.213.216.169 Referencing malware binaries (MD5 hash): 4e221de7e53d00818f4bd091ee3f85a6 — AV detection: 25 / 67 (37.31)
Carding fraud site/forum: wixxx.cc
Stolen credit card data websites. «WIXXX.CC ▶ CC+CVV» https://procrd.biz/threads/wixxx-cc-cc-cvv.22870/page-2#post-142105 >>> https://wixxx.cc/login.php https://carder.uk/ >>> https://wixxx.cc/login.php wixxx.cc. 600 IN A 95.213.216.151 _____________ Was: wixxx.cc. 600 IN A 45.10.110.238 _____________ Was: wixxx.cc. 600 IN A 109.107.188.164 _____________ Was: wixxx.cc. 600 IN A 185.252.147.71 _____________ Was: wixxx.cc. 600 IN A 91.240.242.69 _____________ Was: wixxx.cc. 600 IN A 93.189.42.86 _____________… Читать далее Carding fraud site/forum: wixxx.cc
Malware distribution @95.213.216.152
The host at this IP address is currently being used to distribute malware. Malware distribution located here: hXXp://petknorra.com/index.php petknorra.com. 600 IN A 95.213.216.152 Referencing malware binaries (MD5 hash): 4e221de7e53d00818f4bd091ee3f85a6 — AV detection: 25 / 67 (37.31)