The host at this IP address is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse. DCRat botnet controller located at 141.8.195.104 on port 80 (using HTTP GET): hXXp://f0653783.xsph.ru/Dark.php $ dig +short f0653783.xsph.ru 141.8.195.104 $ nslookup 141.8.195.104 einherjar.from.sh Referencing malware binaries (MD5 hash):… Читать далее DCRat botnet controller @141.8.195.104
Рубрика: sprinthost.ru
Malware / Botnet / Phishing hosting server @185.251.90.227
The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse. Malware botnet controller located at 185.251.90.227 port 443: $ telnet 185.251.90.227 443 Trying 185.251.90.227… Connected to 185.251.90.227. Escape character is ‘^]’.… Читать далее Malware / Botnet / Phishing hosting server @185.251.90.227
Malware botnet controller @185.251.90.118
The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse. Malware botnet controller located at 185.251.90.118 port 443: $ telnet 185.251.90.118 443 Trying 185.251.90.118… Connected to 185.251.90.118. Escape character is ‘^]’… Читать далее Malware botnet controller @185.251.90.118
Malware distribution @185.185.69.122
The host at this IP address is currently being used to distribute malware. Malware distribution located here: hXXp://shfpudpqth.top/strong/mix.exe $ dig +short shfpudpqth.top 185.185.69.122 Referencing malware binaries (MD5 hash): 9c287453cdeefc0effea16c5c1890edf — AV detection: 40 / 70 (57.14)
Malware botnet controller @185.251.91.152
The host at this IP address is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse. Malware botnet controller at 185.251.91.152 on port 443. $ telnet 185.251.91.152 443 Trying 185.251.91.152… Connected to 185.251.91.152. Escape character is ‘^]’ Malicious domains observed at this IP… Читать далее Malware botnet controller @185.251.91.152
Malware / Botnet / Phishing hosting server @185.185.69.86
According to our telemetry and our own intelligence, the host at this IP address has been setup by cyber criminals for the exclusive purpose of hosting phishing sites, malware distribution sites and/or botnet controllers. We therefore advise our users to block any traffic from/to this IP address. The host at this IP address is obviously… Читать далее Malware / Botnet / Phishing hosting server @185.185.69.86
Malware / Botnet / Phishing hosting server @141.8.199.2
The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse. Malware botnet controller located at 141.8.199.2 port 443: $ telnet 141.8.199.2 443 Trying 141.8.199.2… Connected to 141.8.199.2. Escape character is ‘^]’.… Читать далее Malware / Botnet / Phishing hosting server @141.8.199.2
Malware / Botnet / Phishing hosting server @141.8.199.128
According to our telemetry and our own intelligence, the host at this IP address has been setup by cyber criminals for the exclusive purpose of hosting phishing sites, malware distribution sites and/or botnet controllers. We therefore advise our users to block any traffic from/to this IP address. The host at this IP address is running… Читать далее Malware / Botnet / Phishing hosting server @141.8.199.128
Loki botnet controller @185.185.69.169
The host at this IP address is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse. Loki botnet controller located at 185.185.69.169 on port 80 (using HTTP POST): hXXp://sempersim.su/ge12/fre.php sempersim.su. 600 IN A 185.185.69.169 Referencing malware binaries (MD5 hash): 282597edf1d6759a52472a855ed9e14f — AV detection:… Читать далее Loki botnet controller @185.185.69.169
Malware botnet controller @185.185.70.71
The host at this IP address is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse. Malware botnet controller at 185.185.70.71 on port 443. $ telnet 185.185.70.71 443 Trying 185.185.70.71… Connected to 185.185.70.71. Escape character is ‘^]’ Malicious domains observed at this IP… Читать далее Malware botnet controller @185.185.70.71