Malware / Botnet / Phishing hosting server @194.87.210.182

According to our telemetry and our own intelligence, the host at this IP address has been setup by cyber criminals for the exclusive purpose of hosting phishing sites, malware distribution sites and/or botnet controllers. We therefore advise our users to block any traffic from/to this IP address.

Malware botnet controller located at 194.87.210.182 443 TCP:
$ telnet 194.87.210.182 443
Trying 194.87.210.182…
Connected to 194.87.210.182.
Escape character is ‘^]’.

Malicious domains hosted observed on this IP address:
accesspayee.com. 600 IN A 194.87.210.182
activate-mywallet.com. 600 IN A 194.87.210.182
anz-contact.com. 600 IN A 194.87.210.182
anz-secure.online. 600 IN A 194.87.210.182
ausp-login2d.com. 600 IN A 194.87.210.182
closecontact-health-check.com. 600 IN A 194.87.210.182
easysecurebanking.com. 600 IN A 194.87.210.182
hmrcrefund-apply-form.com. 600 IN A 194.87.210.182
info-nhs.com. 600 IN A 194.87.210.182
mbank-kontakt.com. 600 IN A 194.87.210.182
mydeliver-postoffice.com. 600 IN A 194.87.210.182
mymobileapp-santander.com. 600 IN A 194.87.210.182
mypostoffice-delivery.com. 600 IN A 194.87.210.182
mywallet-reactivation.com. 600 IN A 194.87.210.182
nhs-covid-applypass.com. 600 IN A 194.87.210.182
nhsapply-covid-pass.com. 600 IN A 194.87.210.182
nhsapply-covid-pass.info. 600 IN A 194.87.210.182
onlinebanking-365logins.net. 600 IN A 194.87.210.182
order-test-052.com. 600 IN A 194.87.210.182
pack-postpone.com. 600 IN A 194.87.210.182
parcelconfirmation-gb4732.com. 600 IN A 194.87.210.182
po-apply-form.com. 600 IN A 194.87.210.182
po-branch-redelivery.com. 600 IN A 194.87.210.182
po-local-service.com. 600 IN A 194.87.210.182
po-local-services.com. 600 IN A 194.87.210.182
po-mailredelivery.com. 600 IN A 194.87.210.182
po-my-redelivery.com. 600 IN A 194.87.210.182
po-reschedule-fee.com. 600 IN A 194.87.210.182
poassist-redirect.com. 600 IN A 194.87.210.182
poredeliver-package.com. 600 IN A 194.87.210.182
postclaim-redirect.com. 600 IN A 194.87.210.182
posting-relocation.com. 600 IN A 194.87.210.182
postofficeuk-shipment-status.com. 600 IN A 194.87.210.182
potransit.com. 600 IN A 194.87.210.182
redeem-myaccount.info. 600 IN A 194.87.210.182
relocation-post.com. 600 IN A 194.87.210.182
reregister-mydevice.com. 600 IN A 194.87.210.182
reschedulelsl.me. 600 IN A 194.87.210.182
reschedulepsl.co.uk. 600 IN A 194.87.210.182
symptoms-health-check.com. 600 IN A 194.87.210.182
ukdigitalpass.co.uk. 600 IN A 194.87.210.182
ukpostaloffice-track-system.uk. 600 IN A 194.87.210.182

Опубликовано Автор:
В рубрике ruvds.com

Добавить комментарий

Ваш адрес email не будет опубликован. Обязательные поля помечены *