Malware / Botnet / Phishing hosting server @45.10.244.129

According to our telemetry and our own intelligence, the host at this IP address has been setup by cyber criminals for the exclusive purpose of hosting phishing sites, malware distribution sites and/or botnet controllers. We therefore advise our users to block any traffic from/to this IP address.

Malware botnet controller located at 45.10.244.129 port 443 TCP:
$ telnet 45.10.244.129 443
Trying 45.10.244.129…
Connected to 45.10.244.129.
Escape character is ‘^]’

Malicious domains hosted observed on this IP address:
airleft.link. 600 IN A 45.10.244.129
bigbrisk.link. 600 IN A 45.10.244.129
bornwrong.link. 600 IN A 45.10.244.129
brightfair.link. 600 IN A 45.10.244.129
broadmodel.link. 600 IN A 45.10.244.129
closeresult.link. 600 IN A 45.10.244.129
coststand.link. 600 IN A 45.10.244.129
deepteacher.link. 600 IN A 45.10.244.129
dofancy.link. 600 IN A 45.10.244.129
dropmind.link. 600 IN A 45.10.244.129
enablehope.link. 600 IN A 45.10.244.129
fillremove.link. 600 IN A 45.10.244.129
ideasix.link. 600 IN A 45.10.244.129
illimagine.link. 600 IN A 45.10.244.129
jollyinvolve.link. 600 IN A 45.10.244.129
letzte-chance.link. 600 IN A 45.10.244.129
letzte-moglichkeit.link. 600 IN A 45.10.244.129
lonelydeliver.link. 600 IN A 45.10.244.129
modestdisease.link. 600 IN A 45.10.244.129
movewait.link. 600 IN A 45.10.244.129
nastydate.work. 600 IN A 45.10.244.129
nur-fur-sie.link. 600 IN A 45.10.244.129
openchild.link. 600 IN A 45.10.244.129
pencilleg.link. 600 IN A 45.10.244.129
planorder.link. 600 IN A 45.10.244.129
playertight.link. 600 IN A 45.10.244.129
producecontain.link. 600 IN A 45.10.244.129
profitseason.link. 600 IN A 45.10.244.129
puretight.link. 600 IN A 45.10.244.129
quieteconomy.link. 600 IN A 45.10.244.129
relatefive.link. 600 IN A 45.10.244.129
roofsky.link. 600 IN A 45.10.244.129
supportstudent.link. 600 IN A 45.10.244.129
thirteenintroduce.link. 600 IN A 45.10.244.129
tradeshare.link. 600 IN A 45.10.244.129
trainingbad.xyz. 600 IN A 45.10.244.129
trickylove.link. 600 IN A 45.10.244.129
universitypoint.link. 600 IN A 45.10.244.129
waitdesign.link. 600 IN A 45.10.244.129
waterdumb.link. 600 IN A 45.10.244.129
wordmerry.link. 600 IN A 45.10.244.129