| casasypiscinas.com.ar.piscinasdellitoral.com.ar
|
c.dns.ar => 200.108.148.50
a.lactld.org => 200.0.68.10
f.dns.ar => 130.59.31.20
d.dns.ar => 192.140.126.50
e.dns.ar => 170.238.66.50
|
(AS16276) OVH |
Malicious domain |
2024-03-03
|
| facebook.com.ar.serveo.net
|
a.lactld.org => 200.0.68.10
f.dns.ar => 130.59.31.20
e.dns.ar => 170.238.66.50
c.dns.ar => 200.108.148.50
d.dns.ar => 192.140.126.50
|
(AS14061) DIGITALOCEAN-ASN |
Malicious domain |
2024-03-03
|
| abaco.com.ar.f86c19ee2312309358.temporary.link
|
e.dns.ar => 170.238.66.50
d.dns.ar => 192.140.126.50
a.lactld.org => 200.0.68.10
c.dns.ar => 200.108.148.50
f.dns.ar => 130.59.31.20
|
(AS54641) INMOTI-1 |
Malicious domain |
2024-03-02
|
| abbsa.com.ar.f86c19ee2312309358.temporary.link
|
e.dns.ar => 170.238.66.50
d.dns.ar => 192.140.126.50
a.lactld.org => 200.0.68.10
c.dns.ar => 200.108.148.50
f.dns.ar => 130.59.31.20
|
(AS54641) INMOTI-1 |
Malicious domain |
2024-03-02
|
| aadynd.org.ar.f86c19ee2312309358.temporary.link
|
e.dns.ar => 170.238.66.50
d.dns.ar => 192.140.126.50
c.dns.ar => 200.108.148.50
ar.cctld.authdns.ripe.net => 193.0.9.59
a.lactld.org => 200.0.68.10
f.dns.ar => 130.59.31.20
|
(AS54641) INMOTI-1 |
Malicious domain |
2024-03-02
|
| aaaci.org.ar.f86c19ee2312309358.temporary.link
|
e.dns.ar => 170.238.66.50
d.dns.ar => 192.140.126.50
c.dns.ar => 200.108.148.50
ar.cctld.authdns.ripe.net => 193.0.9.59
a.lactld.org => 200.0.68.10
f.dns.ar => 130.59.31.20
|
(AS54641) INMOTI-1 |
Malicious domain |
2024-03-02
|
| ayniperu.org.pe.f6885c4df212274187.temporary.link
|
PCH.RCP.pe => 204.61.216.85
A.LACTLD.ORG => 200.0.68.10
PE1.DNSNODE.NET => 194.146.106.82
QUIPU.RCP.NET.pe => 200.1.176.4
|
(AS22611) IMH-WEST |
Malicious domain |
2024-03-02
|
| redirzton-netservice.com.do
|
ns2.nic.do => 190.113.65.12
ns4.nic.do => 204.61.216.124
a.lactld.org => 200.0.68.10
phloem.uoregon.edu => 128.223.32.35
ns1.nic.do => 190.113.72.178
ns5.nic.do => 190.113.65.13
ns.nic.do => 190.113.72.177
|
(AS14315) 1GSERVERS, US |
Malicious domain |
2024-02-29
|
| binance-app.com.do
|
ns4.nic.do => 204.61.216.124
ns1.nic.do => 190.113.72.178
ns2.nic.do => 190.113.65.12
ns5.nic.do => 190.113.65.13
ns.nic.do => 190.113.72.177
phloem.uoregon.edu => 128.223.32.35
a.lactld.org => 200.0.68.10
|
(AS60781) LEASEWEB-NL |
Malicious domain |
2024-02-29
|
| locibelder.com.do
|
ns5.nic.do => 190.113.65.13
phloem.uoregon.edu => 128.223.32.35
ns2.nic.do => 190.113.65.12
ns1.nic.do => 190.113.72.178
a.lactld.org => 200.0.68.10
ns.nic.do => 190.113.72.177
ns4.nic.do => 204.61.216.124
|
(AS198953) PROTO |
Malicious domain |
2024-02-29
|
| naver.com.ec
|
n2.nic.ec => 200.12.199.1
n3.dns.ec => 204.61.216.39
ns2.anycastdns.cz => 185.28.194.194
ns1.anycastdns.cz => 185.38.108.108
a.lactld.org => 200.0.68.10
|
(AS4766) KORNET |
APT43 |
2024-02-29
|
| delivery-waiting.do
|
phloem.uoregon.edu => 128.223.32.35
ns.nic.do => 190.113.72.177
ns2.nic.do => 190.113.65.12
ns5.nic.do => 190.113.65.13
a.lactld.org => 200.0.68.10
ns4.nic.do => 204.61.216.124
ns1.nic.do => 190.113.72.178
|
(AS198953) PROTO |
Phishing |
2024-02-29
|
| roblox.com.gt
|
a.lactld.org => 200.0.68.10
pch.gt => 204.61.216.95
ns-cz.gt => 193.29.206.2
ssdns-tld.nic.cl => 200.7.5.14
ns.dns.br => 200.160.0.5
gt.anycastdns.cz => 185.38.108.108
|
(AS8075) MICROSOFT-CORP---MSN-AS-BLOCK |
Phishing |
2022-11-01
|
| deliciasdvally.com.pe
|
PE1.DNSNODE.NET => 194.146.106.82
QUIPU.RCP.NET.pe => 200.1.176.4
A.LACTLD.ORG => 200.0.68.10
PCH.RCP.pe => 204.61.216.85
|
(AS46606) BLUEHOST |
Malicious host |
2022-10-03
|
| maderasperuanas.com.pe
|
PCH.RCP.pe => 204.61.216.85
QUIPU.RCP.NET.pe => 200.1.176.4
PE1.DNSNODE.NET => 194.146.106.82
A.LACTLD.ORG => 200.0.68.10
|
(AS46606) BLUEHOST |
Malicious host |
2022-10-03
|
| easydeals.hn
|
pch-anycast.rds.org.hn => 204.61.216.64
nicmx-anycast.rds.org.hn => 200.33.111.1
a.lactld.org => 200.0.68.10
|
(AS61976) SELECTEL- |
Resell credit card / Bank dumps |
2021-07-20
|
| carder.pe
|
PE1.DNSNODE.NET => 194.146.106.82
QUIPU.RCP.NET.pe => 200.1.176.4
A.LACTLD.ORG => 200.0.68.10
PCH.RCP.pe => 204.61.216.85
|
(ASNA) NA |
Malicious domain |
2021-07-20
|
| rapidservice.com.ec
|
a.lactld.org => 200.0.68.10
sns-pb.isc.org => 192.5.4.1
n3.dns.ec => 204.61.216.39
n2.nic.ec => 200.12.199.1
|
(AS46606) BLUEHOST |
Trojan JS |
2018-03-16
|
| carteleraministerial.midena.gob.ec
|
n2.nic.ec => 200.12.199.1
sns-pb.isc.org => 192.5.4.1
a.lactld.org => 200.0.68.10
n3.dns.ec => 204.61.216.39
|
(AS32475) SINGLEHOP |
Trojan JS |
2017-08-26
|
| en.aaschool.edu.ec
|
n2.nic.ec => 200.12.199.1
a.lactld.org => 200.0.68.10
n3.dns.ec => 204.61.216.39
sns-pb.isc.org => 192.5.4.1
|
(AS20013) CYRUSONE |
Trojan JS Redirector.NL |
2017-02-13
|
| eventos.utpl.edu.ec
|
n2.nic.ec => 200.12.199.1
a.lactld.org => 200.0.68.10
n3.dns.ec => 204.61.216.39
sns-pb.isc.org => 192.5.4.1
|
(AS3549) GBLX |
Phishing |
2016-12-04
|
| destinostravel.com.ec
|
a.lactld.org => 200.0.68.10
n2.nic.ec => 200.12.199.1
n3.dns.ec => 204.61.216.39
sns-pb.isc.org => 192.5.4.1
|
(AS20013) CYRUSONE |
Phishing |
2016-11-18
|
| solarenergy.co.cr
|
dns.nic.cr => 200.107.82.100
a.lactld.org => 200.0.68.10
p.nic.cr => 204.61.216.89
de.nic.cr => 194.0.11.107
ca1.nic.cr => 185.159.197.100
ca2.nic.cr => 185.159.198.100
|
(AS54641) INMOTI-1 |
Phishing |
2016-09-06
|
| euroamericano.edu.ec
|
sns-pb.isc.org => 192.5.4.1
n2.nic.ec => 200.12.199.1
a.lactld.org => 200.0.68.10
n3.dns.ec => 204.61.216.39
|
(AS27947) Telconet |
Virus VBS Ramnit.C |
2016-08-27
|
| bowsa.com.ec
|
sns-pb.isc.org => 192.5.4.1
a.lactld.org => 200.0.68.10
n2.nic.ec => 200.12.199.1
n3.dns.ec => 204.61.216.39
|
(AS27947) Telconet |
Trojan JS/HTML (Heuristic) |
2016-08-13
|
| apuestas.com.ec
|
a.lactld.org => 200.0.68.10
n2.nic.ec => 200.12.199.1
n3.dns.ec => 204.61.216.39
sns-pb.isc.org => 192.5.4.1
|
(AS16276) OVH |
Trojan HTML Inject |
2016-06-25
|
| ucuenca.edu.ec
|
sns-pb.isc.org => 192.5.4.1
n2.nic.ec => 200.12.199.1
a.lactld.org => 200.0.68.10
n3.dns.ec => 204.61.216.39
|
(AS15169) GOOGLE |
Trojan HTML Inject |
2016-06-25
|
| itnet.co.cr
|
dns.nic.cr => 200.107.82.100
a.lactld.org => 200.0.68.10
de.nic.cr => 194.0.11.107
p.nic.cr => 204.61.216.89
ca1.nic.cr => 185.159.197.100
ca2.nic.cr => 185.159.198.100
|
(AS52423) Data |
Trojan JS |
2016-06-21
|
| cumanda.gob.ec
|
n2.nic.ec => 200.12.199.1
sns-pb.isc.org => 192.5.4.1
a.lactld.org => 200.0.68.10
n3.dns.ec => 204.61.216.39
|
(AS46606) BLUEHOST |
Trojan JS/HTML |
2016-06-11
|
| diasparacrecer.co.cr
|
dns.nic.cr => 200.107.82.100
ca2.nic.cr => 185.159.198.100
de.nic.cr => 194.0.11.107
p.nic.cr => 204.61.216.89
ca1.nic.cr => 185.159.197.100
a.lactld.org => 200.0.68.10
|
(AS33182) DIMENOC |
Trojan JS/HTML |
2016-06-11
|
| divaestetica.com.ec
|
n2.nic.ec => 200.12.199.1
a.lactld.org => 200.0.68.10
sns-pb.isc.org => 192.5.4.1
n3.dns.ec => 204.61.216.39
|
(AS20013) CYRUSONE |
Trojan JS |
2016-06-07
|
| metal.co.cr
|
ca2.nic.cr => 185.159.198.100
dns.nic.cr => 200.107.82.100
a.lactld.org => 200.0.68.10
p.nic.cr => 204.61.216.89
de.nic.cr => 194.0.11.107
ca1.nic.cr => 185.159.197.100
|
(AS52423) Data |
Phishing |
2016-05-29
|
| line.co.cr
|
p.nic.cr => 204.61.216.89
a.lactld.org => 200.0.68.10
ca2.nic.cr => 185.159.198.100
ca1.nic.cr => 185.159.197.100
de.nic.cr => 194.0.11.107
dns.nic.cr => 200.107.82.100
|
(AS26496) PAH-INC |
Phishing |
2016-05-04
|
| www.asturiana.com.ec
|
n2.nic.ec => 200.12.199.1
n3.dns.ec => 204.61.216.39
sns-pb.isc.org => 192.5.4.1
a.lactld.org => 200.0.68.10
|
(AS14522) Satnet |
Trojan JS/HTML |
2016-04-22
|
| travelnet.com.ec
|
n2.nic.ec => 200.12.199.1
n3.dns.ec => 204.61.216.39
sns-pb.isc.org => 192.5.4.1
a.lactld.org => 200.0.68.10
|
(AS26496) PAH-INC |
Trojan JS |
2016-04-18
|
| ulvr.edu.ec
|
n2.nic.ec => 200.12.199.1
n3.dns.ec => 204.61.216.39
sns-pb.isc.org => 192.5.4.1
a.lactld.org => 200.0.68.10
|
(AS14420) CORPORACION |
Trojan JS |
2016-04-14
|
| teinvitoaleerconmigo.mep.go.cr
|
p.nic.cr => 204.61.216.89
de.nic.cr => 194.0.11.107
ca1.nic.cr => 185.159.197.100
ca2.nic.cr => 185.159.198.100
dns.nic.cr => 200.107.82.100
a.lactld.org => 200.0.68.10
|
(AS11830) Instituto Costarricense de Electricidad y Telecom |
Trojan JS |
2016-01-20
|
| soldelosandes.fin.ec
|
sns-pb.isc.org => 192.5.4.1
n2.nic.ec => 200.12.199.1
a.lactld.org => 200.0.68.10
n3.dns.ec => 204.61.216.39
|
(AS46664) VOLUMEDRIVE |
Trojan Zbot |
2013-02-15
|
| checa.com.ec
|
n2.nic.ec => 200.12.199.1
a.lactld.org => 200.0.68.10
n3.dns.ec => 204.61.216.39
sns-pb.isc.org => 192.5.4.1
|
(AS46606) BLUEHOST |
Trojan JS IframeRef |
2013-01-28
|
| omarsa.com.ec
|
n2.nic.ec => 200.12.199.1
n3.dns.ec => 204.61.216.39
sns-pb.isc.org => 192.5.4.1
a.lactld.org => 200.0.68.10
|
(AS27947) Telconet |
Compromised website / Directs to Exploit kit |
2013-01-10
|
| fibran.com.ec
|
n2.nic.ec => 200.12.199.1
n3.dns.ec => 204.61.216.39
sns-pb.isc.org => 192.5.4.1
a.lactld.org => 200.0.68.10
|
(AS27947) Telconet |
Trojan HTML Redirector |
2012-11-06
|
| florida.co.cr
|
p.nic.cr => 204.61.216.89
a.lactld.org => 200.0.68.10
ca2.nic.cr => 185.159.198.100
ca1.nic.cr => 185.159.197.100
de.nic.cr => 194.0.11.107
dns.nic.cr => 200.107.82.100
|
(AS33070) RACKSPACE |
Trojan JS |
2012-10-15
|
| bratwurst.com.ec
|
n2.nic.ec => 200.12.199.1
n3.dns.ec => 204.61.216.39
sns-pb.isc.org => 192.5.4.1
a.lactld.org => 200.0.68.10
|
(AS46606) BLUEHOST |
TrojanSpy HTML Paylap |
2012-10-15
|
| web2.congope.gob.ec
|
n3.dns.ec => 204.61.216.39
sns-pb.isc.org => 192.5.4.1
a.lactld.org => 200.0.68.10
n2.nic.ec => 200.12.199.1
|
(AS14420) CORPORACION |
Exploit JS Blacole |
2012-09-30
|
| liceointegralcuenca.edu.ec
|
a.lactld.org => 200.0.68.10
n2.nic.ec => 200.12.199.1
n3.dns.ec => 204.61.216.39
sns-pb.isc.org => 192.5.4.1
|
(AS46606) BLUEHOST |
Program CoinMiner |
2012-08-15
|
| copa-armada.clubnaval.mil.ec
|
n3.dns.ec => 204.61.216.39
n2.nic.ec => 200.12.199.1
sns-pb.isc.org => 192.5.4.1
a.lactld.org => 200.0.68.10
|
(AS32244) LIQUID |
Trojan PHP RunShell.A |
2012-07-25
|
| fcs.uta.edu.ec
|
a.lactld.org => 200.0.68.10
n2.nic.ec => 200.12.199.1
n3.dns.ec => 204.61.216.39
sns-pb.isc.org => 192.5.4.1
|
(AS27947) Telconet |
Trojan JS BlacoleRef |
2012-07-12
|
| laisladeldescanso.com.ec
|
n2.nic.ec => 200.12.199.1
a.lactld.org => 200.0.68.10
n3.dns.ec => 204.61.216.39
sns-pb.isc.org => 192.5.4.1
|
(AS11388) MAXIM |
Trojan Banload |
2012-06-26
|
| datelec.com.ec
|
n2.nic.ec => 200.12.199.1
n3.dns.ec => 204.61.216.39
sns-pb.isc.org => 192.5.4.1
a.lactld.org => 200.0.68.10
|
(AS30496) COLO4 |
Trojan JS BlacoleRef |
2012-06-08
|
| floresyfresas.com.ec
|
n3.dns.ec => 204.61.216.39
a.lactld.org => 200.0.68.10
n2.nic.ec => 200.12.199.1
sns-pb.isc.org => 192.5.4.1
|
(AS30496) COLO4 |
Trojan JS BlacoleRef |
2012-05-24
|
