| omcalumni.org
|
d3.hamarashehar.com => 67.15.253.220
d4.hamarashehar.com => 74.54.56.236
d5.hamarashehar.com => 67.15.253.219
d6.hamarashehar.com => 74.52.140.84
|
(AS394695) PUBLIC-DOMAIN-REGISTRY |
Trojan |
2016-11-17
|
| medicaoutlet.com
|
ns1.pananames.com => 67.15.253.251
ns2.pananames.com => 74.54.56.236
ns3.pananames.com => 67.15.47.188
ns4.pananames.com => 74.52.140.83
|
(AS52284) Panamaserver.com |
Fraud / Scam |
2012-10-24
|
| quivercove.com
|
dns1.spiritdomains.com => 67.15.253.220
dns2.spiritdomains.com => 74.54.56.236
dns3.spiritdomains.com => 67.15.253.219
dns4.spiritdomains.com => 74.52.140.83
|
(AS50465) IQHOST |
Trojan |
2011-11-21
|
| playwin89.com
|
ns5.synscon.com => 50.23.136.230
ns6.synscon.com => 74.54.56.236
ns7.synscon.com => 67.15.253.252
ns8.synscon.com => 184.173.150.58
|
(AS21844) THEPLANET |
Adware |
2011-11-07
|
| matoroad.com
|
dns1.spiritdomains.com => 67.15.253.251
dns2.spiritdomains.com => 74.54.56.236
dns3.spiritdomains.com => 67.15.253.219
dns4.spiritdomains.com => 74.52.140.83
|
(AS30693) EONIX-CORPORATION-AS-PHX01-WWW-INFINITIE-NET |
Trojan Zbot drop zone |
2011-10-31
|
| yatds.com
|
dns1.resellerclub.com => 67.15.47.189
dns2.resellerclub.com => 74.54.56.236
dns3.resellerclub.com => 67.15.47.188
dns4.resellerclub.com => 74.52.140.82
|
(AS36351) SOFTLAYER |
TDS server (directs to malware sites) |
2011-10-12
|
| safetywaitasecond.in
|
webpoint.mercury.orderbox-dns.com => 67.15.47.189
webpoint.venus.orderbox-dns.com => 74.54.56.236
webpoint.earth.orderbox-dns.com => 67.15.47.188
webpoint.mars.orderbox-dns.com => 74.52.140.84
|
(AS1241) FORTHNET-GR |
Trojan |
2011-10-03
|
| speditioncenterfright.com
|
ns1.gossimer.com => 67.15.253.251
ns2.gossimer.com => 74.54.56.236
ns3.gossimer.com => 67.15.47.188
ns4.gossimer.com => 74.52.140.84
|
(AS36351) SOFTLAYER |
Fake site / scam |
2011-09-25
|
| pacman.net.in
|
1st.registerdomain.name => 67.15.47.189
2nd.registerdomain.name => 74.54.56.236
3rd.registerdomain.name => 67.15.253.252
4th.registerdomain.name => 74.52.140.84
|
(AS15626) ITLAS |
Trojan SpyEye drop zone |
2011-09-14
|
| spacecadet.in
|
ns1.gossimer.com => 67.15.253.251
ns2.gossimer.com => 74.54.56.236
ns3.gossimer.com => 67.15.253.252
ns4.gossimer.com => 74.52.140.82
|
(AS15626) ITLAS |
Trojan SpyEye drop zone |
2011-09-10
|
| zqjsjtqppndnpor.com
|
dns1.bigrock.com => 67.15.253.251
dns2.bigrock.com => 74.54.56.236
|
(AS29873) BIZLAND |
Trojan Zbot |
2011-09-08
|
| mqofjsfngphqgs.org
|
dns1.bigrock.com => 67.15.253.251
dns2.bigrock.com => 74.54.56.236
|
(AS30693) EONIX-CORPORATION-AS-PHX01-WWW-INFINITIE-NET |
Trojan Zbot |
2011-09-08
|
| srjvfozormghpp.info
|
dns1.bigrock.com => 67.15.253.251
dns2.bigrock.com => 74.54.56.236
|
(AS30693) EONIX-CORPORATION-AS-PHX01-WWW-INFINITIE-NET |
Trojan Zbot |
2011-09-08
|
| odigwjvjrqyvdso.com
|
dns1.bigrock.com => 67.15.253.251
dns2.bigrock.com => 74.54.56.236
|
(AS30693) EONIX-CORPORATION-AS-PHX01-WWW-INFINITIE-NET |
Trojan Zbot |
2011-09-08
|
| kwitriclub.in
|
rutld.mercury.orderbox-dns.com => 67.15.253.251
rutld.venus.orderbox-dns.com => 74.54.56.236
rutld.earth.orderbox-dns.com => 67.15.47.188
rutld.mars.orderbox-dns.com => 74.52.140.84
|
(AS19318) NJIIX |
Trojan |
2011-09-03
|
| whitefordprestonandpartner.org
|
mercury.yarantoos.com => 67.15.253.251
venus.yarantoos.com => 74.54.56.236
earth.yarantoos.com => 67.15.47.188
mars.yarantoos.com => 74.52.140.83
|
(AS32244) LIQUID |
Fraud / Scam |
2011-08-21
|
| millonetibck.net.in
|
1st.registerdomain.name => 67.15.253.220
2nd.registerdomain.name => 74.54.56.236
3rd.registerdomain.name => 67.15.47.188
4th.registerdomain.name => 74.52.140.82
|
(AS48587) NET-0X2A |
Trojan SpyEye drop zone |
2011-08-20
|
| httyemn.in
|
66217.mercury.orderbox-dns.com => 67.15.253.251
66217.venus.orderbox-dns.com => 74.54.56.236
66217.earth.orderbox-dns.com => 67.15.47.188
66217.mars.orderbox-dns.com => 74.52.140.84
|
(AS12695) DINET |
Blackhole Exploit kit |
2011-08-15
|
| goooos.in
|
66217.mercury.orderbox-dns.com => 67.15.253.251
66217.venus.orderbox-dns.com => 74.54.56.236
66217.earth.orderbox-dns.com => 67.15.47.188
66217.mars.orderbox-dns.com => 74.52.140.84
|
(AS12695) DINET |
Blackhole Exploit kit |
2011-08-15
|
| generation-m.in
|
66217.mercury.orderbox-dns.com => 67.15.253.251
66217.venus.orderbox-dns.com => 74.54.56.236
66217.earth.orderbox-dns.com => 67.15.47.188
66217.mars.orderbox-dns.com => 74.52.140.84
|
(AS12695) DINET |
Blackhole Exploit kit |
2011-08-15
|
| myovu.in
|
webst.mercury.orderbox-dns.com => 67.15.253.220
webst.venus.orderbox-dns.com => 74.54.56.236
webst.earth.orderbox-dns.com => 67.15.253.252
webst.mars.orderbox-dns.com => 74.52.140.84
|
(AS19318) NJIIX |
Trojan Renos calls home |
2011-08-15
|
| marko10.in
|
webst.mercury.orderbox-dns.com => 67.15.253.220
webst.venus.orderbox-dns.com => 74.54.56.236
webst.earth.orderbox-dns.com => 67.15.253.252
webst.mars.orderbox-dns.com => 74.52.140.84
|
(AS42692) KCCE |
Blackhole Exploit kit / Trojan SpyEye / Rogue Antivirus |
2011-08-15
|
| marko9.in
|
webst.mercury.orderbox-dns.com => 67.15.253.220
webst.venus.orderbox-dns.com => 74.54.56.236
webst.earth.orderbox-dns.com => 67.15.253.252
webst.mars.orderbox-dns.com => 74.52.140.84
|
(AS42692) KCCE |
Blackhole Exploit kit / Trojan SpyEye / Rogue Antivirus |
2011-08-15
|
| marko8.in
|
webst.mercury.orderbox-dns.com => 67.15.253.220
webst.venus.orderbox-dns.com => 74.54.56.236
webst.earth.orderbox-dns.com => 67.15.253.252
webst.mars.orderbox-dns.com => 74.52.140.84
|
(AS42692) KCCE |
Blackhole Exploit kit / Trojan SpyEye / Rogue Antivirus |
2011-08-15
|
| marko7.in
|
webst.mercury.orderbox-dns.com => 67.15.253.220
webst.venus.orderbox-dns.com => 74.54.56.236
webst.earth.orderbox-dns.com => 67.15.253.252
webst.mars.orderbox-dns.com => 74.52.140.84
|
(AS42692) KCCE |
Blackhole Exploit kit / Trojan SpyEye / Rogue Antivirus |
2011-08-15
|
| ukpdcourserv.com
|
ns1.gossimer.com => 67.15.47.189
ns2.gossimer.com => 74.54.56.236
ns3.gossimer.com => 67.15.253.219
ns4.gossimer.com => 74.52.140.84
|
(AS) |
Fraud / Scam (mail server still online) |
2011-08-14
|
| usmilitarynet.com
|
ns1.gossimer.com => 67.15.47.189
ns2.gossimer.com => 74.54.56.236
ns3.gossimer.com => 67.15.253.219
ns4.gossimer.com => 74.52.140.84
|
(AS) |
Fraud / Scam (mail server still online) |
2011-08-14
|
| chesterfield.net.in
|
1st.registerdomain.name => 67.15.47.189
2nd.registerdomain.name => 74.54.56.236
3rd.registerdomain.name => 67.15.47.188
4th.registerdomain.name => 74.52.140.82
|
(AS48587) NET-0X2A |
Trojan SpyEye drop zone |
2011-08-14
|
| siriusprojbck.net.in
|
1st.registerdomain.name => 67.15.47.189
2nd.registerdomain.name => 74.54.56.236
3rd.registerdomain.name => 67.15.47.188
4th.registerdomain.name => 74.52.140.82
|
(AS48587) NET-0X2A |
Trojan SpyEye drop zone |
2011-08-14
|
| siriusproj.net.in
|
1st.registerdomain.name => 67.15.253.251
2nd.registerdomain.name => 74.54.56.236
3rd.registerdomain.name => 67.15.253.219
4th.registerdomain.name => 74.52.140.84
|
(AS48587) NET-0X2A |
Malware calls home |
2011-08-12
|
| astaloscojones.net.in
|
1st.registerdomain.name => 67.15.253.251
2nd.registerdomain.name => 74.54.56.236
3rd.registerdomain.name => 67.15.253.219
4th.registerdomain.name => 74.52.140.84
|
(AS48587) NET-0X2A |
VirTool VBInject |
2011-08-12
|
| kwmwnvhlpnksst.com
|
dns1.bigrock.com => 67.15.253.220
dns2.bigrock.com => 74.54.56.236
|
(AS30693) EONIX-CORPORATION-AS-PHX01-WWW-INFINITIE-NET |
Trojan Zbot |
2011-08-09
|
| donkidom.in
|
webst.mercury.orderbox-dns.com => 67.15.253.220
webst.venus.orderbox-dns.com => 74.54.56.236
webst.earth.orderbox-dns.com => 67.15.253.219
webst.mars.orderbox-dns.com => 74.52.140.82
|
(AS29761) OC3-NETWORKS-AS-NUMBER |
Trojan Renos calls home |
2011-08-09
|
| my-kido.in
|
webst.mercury.orderbox-dns.com => 67.15.253.220
webst.venus.orderbox-dns.com => 74.54.56.236
webst.earth.orderbox-dns.com => 67.15.253.219
webst.mars.orderbox-dns.com => 74.52.140.82
|
(AS19318) NJIIX |
Trojan Renos calls home |
2011-08-09
|
| validzone.ws
|
altushost01.earth.orderbox-dns.com => 67.15.47.188
altushost01.mars.orderbox-dns.com => 74.52.140.83
altushost01.mercury.orderbox-dns.com => 67.15.253.220
altushost01.venus.orderbox-dns.com => 74.54.56.236
|
(AS9371) SAKURA |
Resell credit cards / bank dumps |
2011-08-08
|
| clubsvideoprograms.com
|
rutld.earth.orderbox-dns.com => 67.15.253.219
rutld.mars.orderbox-dns.com => 74.52.140.84
rutld.mercury.orderbox-dns.com => 67.15.253.251
rutld.venus.orderbox-dns.com => 74.54.56.236
|
(AS35415) WEBAZILLA |
Fast Flux Trojan Renos |
2011-08-07
|
| trimmedialife.net
|
jdomen.earth.orderbox-dns.com => 67.15.253.252
jdomen.mars.orderbox-dns.com => 74.52.140.84
jdomen.mercury.orderbox-dns.com => 67.15.253.251
jdomen.venus.orderbox-dns.com => 74.54.56.236
|
(AS35415) WEBAZILLA |
Fast Flux Trojan Renos |
2011-08-06
|
| jfvpqxvywordryr.biz
|
dns1.bigrock.com => 67.15.253.220
dns2.bigrock.com => 74.54.56.236
|
(AS21844) THEPLANET |
Trojan Zbot |
2011-08-04
|
| lfrtvettnwmnpmi.com
|
dns1.bigrock.com => 67.15.253.220
dns2.bigrock.com => 74.54.56.236
|
(AS21844) THEPLANET |
Trojan Zbot |
2011-08-04
|
| nnkpwsnovpsptl.biz
|
dns1.bigrock.com => 67.15.253.220
dns2.bigrock.com => 74.54.56.236
|
(AS20115) CHARTER |
Trojan Zbot |
2011-08-04
|
| jctozilnwnwutgf.biz
|
dns1.bigrock.com => 67.15.253.220
dns2.bigrock.com => 74.54.56.236
|
(AS20115) CHARTER |
Trojan Zbot |
2011-08-04
|
| qkkksvpoisrwshoq.biz
|
dns1.bigrock.com => 67.15.253.220
dns2.bigrock.com => 74.54.56.236
|
(AS23352) SERVERCENTRAL |
Trojan Zbot |
2011-08-04
|
| znmoulhgfullqk.biz
|
dns1.bigrock.com => 67.15.253.220
dns2.bigrock.com => 74.54.56.236
|
(AS33182) DIMENOC |
Trojan Zbot |
2011-08-04
|
| jmjjeqfunuotrion.org
|
dns1.bigrock.com => 67.15.253.220
dns2.bigrock.com => 74.54.56.236
|
(AS33182) DIMENOC |
Trojan Zbot |
2011-08-04
|
| hvlqmwtesqdkktgo.net
|
dns1.bigrock.com => 67.15.253.220
dns2.bigrock.com => 74.54.56.236
|
(AS33182) DIMENOC |
Trojan Zbot |
2011-08-04
|
| realaiveo.in
|
jdomen.mercury.orderbox-dns.com => 67.15.47.189
jdomen.venus.orderbox-dns.com => 74.54.56.236
jdomen.earth.orderbox-dns.com => 67.15.47.188
jdomen.mars.orderbox-dns.com => 74.52.140.83
|
(AS29761) OC3-NETWORKS-AS-NUMBER |
Trojan Renos calls home |
2011-08-04
|
| aiveoclub.in
|
jdomen.mercury.orderbox-dns.com => 67.15.47.189
jdomen.venus.orderbox-dns.com => 74.54.56.236
jdomen.earth.orderbox-dns.com => 67.15.47.188
jdomen.mars.orderbox-dns.com => 74.52.140.83
|
(AS19318) NJIIX |
Trojan Renos calls home |
2011-08-04
|
| mymita.in
|
rutld.mercury.orderbox-dns.com => 67.15.253.251
rutld.venus.orderbox-dns.com => 74.54.56.236
rutld.earth.orderbox-dns.com => 67.15.47.188
rutld.mars.orderbox-dns.com => 74.52.140.83
|
(AS24940) HETZNER |
Trojan Renos calls home |
2011-08-04
|
| topweltmultimedia.com
|
rutld.earth.orderbox-dns.com => 67.15.47.188
rutld.mars.orderbox-dns.com => 74.52.140.83
rutld.mercury.orderbox-dns.com => 67.15.253.251
rutld.venus.orderbox-dns.com => 74.54.56.236
|
(AS35415) WEBAZILLA |
Fast Flux Trojan Renos |
2011-08-04
|
| qizsqtunwqonfqy.net
|
dns1.spiritdomains.com => 67.15.253.251
dns2.spiritdomains.com => 74.54.56.236
dns3.spiritdomains.com => 67.15.47.188
dns4.spiritdomains.com => 74.52.140.82
|
(AS13789) ALTAWAY |
Trojan Zbot |
2011-08-02
|
