According to our telemetry and our own intelligence, the host at this IP address has been setup by cyber criminals for the exclusive purpose of hosting phishing sites, malware distribution sites and/or botnet controllers. We therefore advise our users to block any traffic from/to this IP address.
The host at this IP address is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.
Malware botnet controller at 95.213.216.232 port 443.
$ telnet 95.213.216.232 443
Trying 95.213.216.232…
Connected to 95.213.216.232.
Escape character is ‘^]’
Malicious domains observed at this IP address:
atom-softs.com. 600 IN A 95.213.216.232
atom-tw.com. 600 IN A 95.213.216.232
atom-tweak.net. 600 IN A 95.213.216.232
atomtweak.com. 600 IN A 95.213.216.232
atomtweaks.com. 600 IN A 95.213.216.232
banhamm.com. 600 IN A 95.213.216.232
beachbig.com. 600 IN A 95.213.216.232
best1488.com. 600 IN A 95.213.216.232
bethats.com. 600 IN A 95.213.216.232
blackinstalls.com. 600 IN A 95.213.216.232
bthuu.com. 600 IN A 95.213.216.232
chinett.com. 600 IN A 95.213.216.232
cloudjah.com. 600 IN A 95.213.216.232
cranonline.com. 600 IN A 95.213.216.232
dailykan.com. 600 IN A 95.213.216.232
djher.com. 600 IN A 95.213.216.232
far-lbs.com. 600 IN A 95.213.216.232
farlabed.com. 600 IN A 95.213.216.232
farlabus.com. 600 IN A 95.213.216.232
farlabweb.com. 600 IN A 95.213.216.232
freehar.com. 600 IN A 95.213.216.232
fuck-systems.com. 600 IN A 95.213.216.232
g-farlab.com. 600 IN A 95.213.216.232
geoshit.com. 600 IN A 95.213.216.232
getnek.com. 600 IN A 95.213.216.232
glclick.com. 600 IN A 95.213.216.232
gokaef.com. 600 IN A 95.213.216.232
gripeee.com. 600 IN A 95.213.216.232
gvnoweb.com. 600 IN A 95.213.216.232
i-farlab.com. 600 IN A 95.213.216.232
i-farlabs.com. 600 IN A 95.213.216.232
i-labspro.com. 600 IN A 95.213.216.232
in-softs.com. 600 IN A 95.213.216.232
it-farlab.com. 600 IN A 95.213.216.232
johnsol.com. 600 IN A 95.213.216.232
kayattr.com. 600 IN A 95.213.216.232
koren24.com. 600 IN A 95.213.216.232
labs-pr.com. 600 IN A 95.213.216.232
liveme202.com. 600 IN A 95.213.216.232
mindurl.com. 600 IN A 95.213.216.232
myfarlab.com. 600 IN A 95.213.216.232
nanbier.com. 600 IN A 95.213.216.232
netgul.com. 600 IN A 95.213.216.232
newfarlab.com. 600 IN A 95.213.216.232
nextinstall.info. 600 IN A 95.213.216.232
noplayboy.com. 600 IN A 95.213.216.232
offtechnology.com. 600 IN A 95.213.216.232
ouclick.com. 600 IN A 95.213.216.232
payfilms.com. 600 IN A 95.213.216.232
pcrare.com. 600 IN A 95.213.216.232
proatomtweak.com. 600 IN A 95.213.216.232
royalyo.com. 600 IN A 95.213.216.232
search1search.com. 600 IN A 95.213.216.232
sharemem.com. 600 IN A 95.213.216.232
soft-me.com. 600 IN A 95.213.216.232
softsme.com. 600 IN A 95.213.216.232
spiritualpay.top. 600 IN A 95.213.216.232
thepe.net. 600 IN A 95.213.216.232
thispacific-pact.top. 600 IN A 95.213.216.232
vrsrat.com. 600 IN A 95.213.216.232
wwwwcube.com. 600 IN A 95.213.216.232
yourkok.com. 600 IN A 95.213.216.232
zodomain.com. 600 IN A 95.213.216.232