159.65.175.160|mobilecit1.com|2022-03-18 01:31:01 159.65.175.160|mobilednssecured-citi.com|2022-03-18 00:22:18 159.65.175.160|paypalfraud.org|2022-03-17 02:22:03 159.65.175.160|pp19xp.com|2022-03-15 20:13:03 159.65.175.160|secureddns-bofaportal.com|2022-03-17 08:12:18
phishing server
35.176.240.210|www3mtbanksupport.com|2022-03-17 19:47:15
Loki botnet controller @185.251.90.150
The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse. Malware botnet controller located at 185.251.90.150 port 443: $ telnet 185.251.90.150 443 Trying 185.251.90.150… Connected to 185.251.90.150. Escape character is ‘^]’… Читать далее Loki botnet controller @185.251.90.150
Malware / Botnet / Phishing hosting server @193.124.118.12
According to our telemetry and our own intelligence, the host at this IP address has been setup by cyber criminals for the exclusive purpose of hosting phishing sites, malware distribution sites and/or botnet controllers. We therefore advise our users to block any traffic from/to this IP address. Malware botnet controller located at 193.124.118.12 443 TCP:… Читать далее Malware / Botnet / Phishing hosting server @193.124.118.12
Malware botnet controller @151.236.220.210
Malware botnet controller hosted here: $ dig +short folded.in 178.62.204.81 151.236.220.210 194.195.117.167 67.207.84.82 $ telnet 151.236.220.210 1025 Trying 151.236.220.210… Connected to 151.236.220.210. Escape character is ‘^]’.
Malware botnet controller @194.195.117.167
Malware botnet controller hosted here: $ dig +short folded.in 178.62.204.81 151.236.220.210 194.195.117.167 67.207.84.82 $ telnet 194.195.117.167 1025 Trying 194.195.117.167… Connected to 194.195.117.167. Escape character is ‘^]’.
Malware botnet controller @178.62.204.81
Malware botnet controller hosted here: $ dig +short folded.in 178.62.204.81 151.236.220.210 194.195.117.167 67.207.84.82 $ telnet 178.62.204.81 1025 Trying 178.62.204.81… Connected to 178.62.204.81. Escape character is ‘^]’.
Malware botnet controller @67.207.84.82
Malware botnet controller hosted here: $ dig +short folded.in 178.62.204.81 151.236.220.210 194.195.117.167 67.207.84.82 $ telnet 67.207.84.82 1025 Trying 67.207.84.82… Connected to 67.207.84.82. Escape character is ‘^]’.
phishing server
development-admin-100020001234567891062.tk 2022-03-17 15:49:37 development-admin-100020001234567891069.tk 2022-03-17 15:38:49 development-admin-100020001234567891061.tk 2022-03-17 15:38:34 100000000048465564878544897053-gq.tk 2022-03-17 15:38:47 development-admin-100020001234567891068.tk 2022-03-17 15:34:31 development-admin-100020001234567891067.tk 2022-03-17 15:33:44 development-admin-100020001234567891066.tk 2022-03-17 15:33:39 development-admin-100020001234567891065.tk 2022-03-17 15:33:38 development-admin-100020001234567891064.tk 2022-03-17 15:33:38 development-admin-100020001234567891051.tk 2022-03-17 15:17:43 development-admin-100020001234567891053.tk 2022-03-17 15:17:40 development-admin-100020001234567891058.tk 2022-03-17 14:58:47 development-admin-100020001234567891059.tk 2022-03-17 14:58:35 development-admin-100020001234567891054.tk 2022-03-17 14:59:35 development-admin-100020001234567891056.tk 2022-03-17 14:58:35 development-admin-100020001234567891055.tk 2022-03-17 14:49:37 development-admin-100020001234567891057.tk 2022-03-17 14:49:33 development-admin-100020001234567891052.tk 2022-03-17 14:49:36 freetoram.cf… Читать далее phishing server
phishing server
20.223.148.186|app.sedanghujanchase.com|2022-03-14 19:59:26 securityed08c-wellsfargo.com 2022-03-17 15:32:16 janganlupawellsfargo.com 2022-03-16 15:45:23 masamerahsiamazon.com 2022-03-16 19:50:26 cipetanahachase.com 2022-03-16 18:07:27 sagapoanuamazon.com 2022-03-16 17:59:30 kalkaunacamazon.com 2022-03-16 17:45:26 bergunscrtamazon.com 2022-03-16 17:29:26 pengejranjunchase.com 2022-03-16 15:49:28 matarakalamanamazon.com 2022-03-15 17:10:35 wirayogapangestuamazon.com 2022-03-15 16:53:15 sedanghujanchase.com 2022-03-14 18:30:23