Loki botnet controller @185.68.21.19

The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.

Malware botnet controller located at 185.68.21.19 port 443:
$ telnet 185.68.21.19 443
Trying 185.68.21.19…
Connected to 185.68.21.19.
Escape character is ‘^]’

Malicious domains observed at this IP address:
deliveryparceluk-reschedule.info. 600 IN A 185.68.21.19
lloyds-accessaccount.com. 600 IN A 185.68.21.19
posupport-help.com. 600 IN A 185.68.21.19
redeliver-myitem.com. 600 IN A 185.68.21.19
resolve-billing-error.com. 600 IN A 185.68.21.19
verify-transaction-decline.com. 600 IN A 185.68.21.19

Опубликовано
В рубрике ruvds.com

Добавить комментарий

Ваш адрес email не будет опубликован. Обязательные поля помечены *