| airbnb4holiday.eu
|
dns2.namecheaphosting.com => 216.87.152.33
dns1.namecheaphosting.com => 216.87.155.33
aspmx2.googlemail.com => 64.233.190.26
aspmx5.googlemail.com => 173.194.203.27
alt1.aspmx.l.google.com => 74.125.131.27
|
(AS22612) NAMECHEAP-NET |
Fake site / scam |
2017-12-25
|
| qwerty001.ucoz.net
|
ns1.ucoz.net => 195.216.243.104
ns2.ucoz.net => 213.174.157.200
ns3.ucoz.net => 190.115.19.142
ASPMX2.GOOGLEMAIL.COM => 108.177.14.27
ASPMX3.GOOGLEMAIL.COM => 209.85.202.27
|
(AS29226) MASTERTEL-AS |
Trojan |
2017-12-10
|
| yawn.cool
|
ns1.reg.ru => 176.99.13.13
ns2.reg.ru => 194.58.117.18
aspmx3.googlemail.com => 74.125.130.27
alt2.aspmx.l.google.com => 209.85.202.26
aspmx2.googlemail.com => 173.194.220.27
|
(AS197695) AS-REGRU |
Malicious domain |
2017-12-09
|
| geda.nobletechindia.com
|
ns1032.microhost.com => 103.209.144.103
ns1031.microhost.com => 103.209.144.103
aspmx2.googlemail.com => 64.233.190.27
aspmx3.googlemail.com => 209.85.202.27
aspmx.l.google.com => 74.125.133.26
|
(AS134926) MICROHOST-AS |
Trojan Skeeyah.A!rfn |
2017-11-27
|
| blog.ultimate-realty.com
|
ns3.appfoliowebsites6.com => 205.251.195.213
ns4.appfoliowebsites6.com => 205.251.198.74
ns1.appfoliowebsites6.com => 205.251.196.164
ns2.appfoliowebsites6.com => 205.251.192.28
aspmx2.googlemail.com => 64.233.190.26
|
(AS26496) PAH-INC |
Compromised website |
2017-11-13
|
| api.ctp-line.ru
|
ns3.ctp-line.ru => 185.4.75.25
ns1.ctp-line.ru => 91.146.50.179
ALT1.ASPMX.L.GOOGLE.COM => 74.125.131.26
ALT2.ASPMX.L.GOOGLE.COM => 74.125.206.27
ASPMX2.GOOGLEMAIL.COM => 74.125.131.27
|
(AS12389) ROSTELECOM |
Adware |
2017-09-22
|
| urgent-message.site123.me
|
ns-1529.awsdns-63.org => 205.251.197.249
ns-1797.awsdns-32.co.uk => 205.251.199.5
ns-842.awsdns-41.net => 205.251.195.74
ns-11.awsdns-01.com => 205.251.192.11
aspmx2.googlemail.com => 64.233.190.26
|
(AS14618) AMAZON |
Fake site / scam |
2017-09-19
|
| comadreja.cl
|
ns1.dreamhost.com => 64.90.62.230
ns3.dreamhost.com => 66.33.205.230
ns2.dreamhost.com => 208.97.182.10
ASPMX2.GOOGLEMAIL.COM => 64.233.190.26
ASPMX5.GOOGLEMAIL.COM => 108.177.119.27
|
(AS26347) DREAMHOST |
Hacked website |
2017-08-20
|
| cosmos.autoritas.net
|
ns10.piensasolutions.com => 82.223.219.198
ns9.piensasolutions.com => 217.76.150.149
alt1.aspmx.l.google.com => 108.177.14.27
aspmx.l.google.com => 74.125.192.26
aspmx2.googlemail.com => 108.177.14.27
|
(AS16509) AMAZON-02 |
Trojan JS |
2017-07-30
|
| sv.darkfetishnet.com
|
ns2.darkfetishnet.com => 91.192.116.22
ns1.darkfetishnet.com => 91.192.116.22
ALT2.ASPMX.L.GOOGLE.com => 209.85.203.27
ASPMX2.GOOGLEMAIL.com => 64.233.190.26
ASPMX3.GOOGLEMAIL.com => 209.85.203.26
|
(AS47143) TODAYHOST |
Backdoor Androm |
2017-07-30
|
| produitnettoyagebilletnoir.over-blog.com
|
ns0.proceau.net => 83.243.21.30
ns1.proceau.net => 77.87.104.10
alt2.aspmx.l.google.com => 209.85.203.27
aspmx2.googlemail.com => 108.177.14.26
aspmx4.googlemail.com => 64.233.187.27
|
(AS43424) PROCEAU |
Fake site / scam |
2017-07-06
|
| dev.kprod.net
|
dns12.ovh.net => 213.251.188.131
ns12.ovh.net => 213.251.128.131
aspmx3.googlemail.com => 74.125.200.27
aspmx4.googlemail.com => 74.125.204.27
aspmx2.googlemail.com => 74.125.131.27
|
(AS16276) OVH |
Trojan JS |
2017-07-02
|
| billetnoirproduits.over-blog.com
|
ns1.proceau.net => 77.87.104.10
ns0.proceau.net => 83.243.21.30
alt2.aspmx.l.google.com => 74.125.200.27
aspmx2.googlemail.com => 64.233.190.27
aspmx4.googlemail.com => 108.177.15.27
|
(AS43424) PROCEAU |
Fake site / scam |
2017-06-11
|
| nettoyagedesbilletsdebanquesecuriser.over-blog.com
|
ns0.proceau.net => 83.243.21.30
ns1.proceau.net => 77.87.104.10
alt2.aspmx.l.google.com => 64.233.184.26
alt1.aspmx.l.google.com => 209.85.202.27
aspmx2.googlemail.com => 108.177.14.26
|
(AS43424) PROCEAU |
Fake site / scam |
2017-06-11
|
| elearning.sccs-sa.org
|
ns21.domaincontrol.com => 216.69.185.11
ns22.domaincontrol.com => 208.109.255.11
ASPMX.L.GOOGLE.COM => 209.85.232.27
ASPMX2.GOOGLEMAIL.COM => 108.177.14.27
ASPMX3.GOOGLEMAIL.COM => 64.233.184.27
|
(AS26496) PAH-INC |
VirTool JS Obfuscator |
2017-06-02
|
| sillysquad.snowmachine.me
|
ns62.domaincontrol.com => 208.109.255.32
ns61.domaincontrol.com => 216.69.185.32
ASPMX.L.GOOGLE.COM => 74.125.206.26
ASPMX2.GOOGLEMAIL.COM => 74.125.131.27
ASPMX3.GOOGLEMAIL.COM => 74.125.200.27
|
(AS30059) ZIMCOM |
Trojan Ransom MSIL VenusLocker.A |
2017-03-01
|
| install.followrulessoftware.com
|
ns50.domaincontrol.com => 208.109.255.25
ns49.domaincontrol.com => 216.69.185.25
ASPMX2.GOOGLEMAIL.com => 209.85.202.26
ASPMX3.GOOGLEMAIL.com => 74.125.206.26
ALT1.ASPMX.L.GOOGLE.com => 173.194.222.26
|
(AS54761) ARIN-SAMBREEL-SVCS |
Adware |
2017-02-24
|
| prosusa.cl
|
ns1.studiohost.cl => 190.14.60.132
ns2.studiohost.cl => 190.14.60.132
aspmx2.googlemail.com => 64.233.190.26
alt1.aspmx.l.google.com => 74.125.131.26
aspmx3.googlemail.com => 209.85.202.26
|
(AS6429) Telmex Chile Internet |
Exploit HTML IframeRef.gen |
2017-02-21
|
| staging.peakis.com
|
ns08.domaincontrol.com => 208.109.255.4
ns07.domaincontrol.com => 216.69.185.4
alt1.aspmx.l.google.com => 108.177.14.26
alt2.aspmx.l.google.com => 74.125.200.26
aspmx2.googlemail.com => 64.233.190.26
|
(AS26496) PAH-INC |
Trojan JS/HTML |
2017-02-20
|
| art.wdev.org
|
ns.wdev.org => 95.213.135.130
ns2.wdev.org => 95.213.132.178
ASPMX.L.GOOGLE.COM => 209.85.232.27
ASPMX2.GOOGLEMAIL.COM => 64.233.190.27
ALT1.ASPMX.L.GOOGLE.COM => 64.233.190.27
|
(AS49505) SELECTEL |
Trojan JS |
2017-02-20
|
| install-cdn.digidocket.net
|
pdns04.domaincontrol.com => 208.109.255.51
pdns03.domaincontrol.com => 216.69.185.51
ALT2.ASPMX.L.GOOGLE.COM => 74.125.200.27
ASPMX.L.GOOGLE.COM => 74.125.29.27
ASPMX2.GOOGLEMAIL.COM => 173.194.220.27
|
(AS20940) AKAMAI-ASN1 |
BrowserModifier Foxiebro |
2017-02-13
|
| cartesiarte.ro
|
ns2.localserver.ro => 89.34.160.199
ns3.localserver.ro => 194.6.203.250
ns1.localserver.ro => 81.181.130.250
ns.cartesiarte.ro => 89.18.6.182
ASPMX2.GOOGLEMAIL.COM => 108.177.14.26
|
(AS57136) VIVATELECOM-AS |
Trojan JS Redirector.BK |
2017-02-13
|
| social.omahalibrary.org
|
pdns02.domaincontrol.com => 208.109.255.50
pdns01.domaincontrol.com => 216.69.185.50
ALT2.ASPMX.L.GOOGLE.COM => 74.125.200.27
ASPMX2.GOOGLEMAIL.COM => 108.177.14.27
ASPMX3.GOOGLEMAIL.COM => 64.233.184.27
|
(AS22773) ASN-CXA-ALL-CCI-22773-RDC |
Virus VBS Ramnit.C |
2017-01-27
|
| blog.moscheni.it
|
ns2.dominiofaidate.com => 85.94.212.168
ns1.dominiofaidate.com => 5.144.169.178
aspmx2.googlemail.com => 74.125.131.26
aspmx4.googlemail.com => 108.177.97.27
aspmx3.googlemail.com => 74.125.206.27
|
(AS51167) GIGA-HOSTING |
Trojan JS Redirector.QE |
2017-01-17
|
| install-cdn.opticalsurfturf.com
|
ns32.domaincontrol.com => 208.109.255.16
ns31.domaincontrol.com => 216.69.185.16
ASPMX2.GOOGLEMAIL.com => 209.85.203.26
ASPMX3.GOOGLEMAIL.com => 64.233.184.26
ALT1.ASPMX.L.GOOGLE.com => 108.177.14.26
|
(AS20940) AKAMAI-ASN1 |
Trojan |
2017-01-15
|
| install-cdn.browsemark.net
|
pdns04.domaincontrol.com => 208.109.255.51
pdns03.domaincontrol.com => 216.69.185.51
ALT2.ASPMX.L.GOOGLE.COM => 74.125.200.26
ASPMX.L.GOOGLE.COM => 173.194.206.26
ASPMX2.GOOGLEMAIL.COM => 64.233.190.27
|
(AS1299) TELIANET |
Trojan |
2017-01-04
|
| synasc.ro
|
ns3.uvt.ro => 194.102.62.56
ns.synasc.ro => 194.102.63.174
alt1.aspmx.l.google.com => 209.85.202.27
aspmx2.googlemail.com => 108.177.14.26
aspmx.l.google.com => 74.125.133.27
|
(AS199513) UVT-AS, |
Trojan JS/HTML |
2017-01-02
|
| pastoral.safa.edu
|
ns4.acens.net => 217.116.0.149
ns7.acens.net => 217.116.15.172
ns3.acens.net => 217.116.0.192
aspmx2.googlemail.com => 209.85.202.27
aspmx.l.google.com => 66.102.1.27
|
(AS16371) ACENS |
Trojan JS/HTML |
2017-01-02
|
| win3d.vn
|
ns2.pavietnam.vn => 222.255.121.247
ns1.pavietnam.vn => 112.213.89.3
nsbak.pavietnam.net => 112.213.89.22
aspmx.l.google.com => 173.194.68.26
aspmx2.googlemail.com => 108.177.14.26
|
(AS45899) VNPT-VN |
TrojanClicker JS Faceliker.D |
2016-12-31
|
| egov.eletsonline.com
|
dns1.stabletransit.com => 69.20.95.4
dns2.stabletransit.com => 65.61.188.4
ASPMX3.GOOGLEMAIL.com => 74.125.200.26
ASPMX2.GOOGLEMAIL.com => 209.85.202.26
|
(AS33070) RACKSPACE |
Trojan JS/HTML |
2016-12-12
|
| imeble.eu
|
fns2.42.pl => 193.70.13.218
fns1.42.pl => 79.98.145.34
ASPMX2.GOOGLEMAIL.COM => 74.125.131.27
ASPMX.L.GOOGLE.COM => 173.194.76.27
ALT2.ASPMX.L.GOOGLE.COM => 209.85.202.26
|
(AS24940) HETZNER |
Trojan JS |
2016-12-12
|
| sunhillmedia.eu
|
ns78.domaincontrol.com => 208.109.255.49
ns77.domaincontrol.com => 216.69.185.49
alt2.aspmx.l.google.com => 209.85.203.26
aspmx.l.google.com => 173.194.206.27
aspmx2.googlemail.com => 64.233.190.26
|
(AS26496) PAH-INC |
Trojan JS Redirector.QD |
2016-12-01
|
| cancercare.healthcareathomeindia.com
|
ns68.domaincontrol.com => 208.109.255.44
ns67.domaincontrol.com => 216.69.185.44
alt2.aspmx.l.google.com => 74.125.200.26
aspmx.l.google.com => 173.194.204.26
aspmx2.googlemail.com => 74.125.131.26
|
(AS16509) AMAZON-02 |
Trojan JS/HTML |
2016-11-30
|
| szkola.proszowki.pl
|
dns3.home.pl => 46.242.149.30
dns.home.pl => 46.242.149.10
dns2.home.pl => 46.242.149.20
aspmx.l.google.com => 66.102.1.26
aspmx2.googlemail.com => 108.177.14.27
|
(AS197155) ARTNET |
Trojan JS/HTML |
2016-11-30
|
| altoadige.italiadeivalori.it
|
elettrone.dns.tiscali.it => 213.205.36.125
protone.dns.tiscali.it => 213.205.32.125
ALT2.ASPMX.L.GOOGLE.COM => 209.85.202.26
ALT1.ASPMX.L.GOOGLE.COM => 74.125.131.27
ASPMX2.GOOGLEMAIL.COM => 64.233.190.27
|
(AS12874) FASTWEB |
Phishing |
2016-11-22
|
| emailapp.saberion.com
|
lucy.ns.cloudflare.com => 173.245.58.133
pete.ns.cloudflare.com => 173.245.59.136
alt2.aspmx.l.google.com => 64.233.184.27
aspmx2.googlemail.com => 209.85.202.27
|
(AS16509) AMAZON-02 |
Phishing |
2016-11-18
|
| laundryonwheels.ca
|
ns0.wixdns.net => 216.239.32.101
ns1.wixdns.net => 216.239.34.101
alt1.aspmx.l.google.com => 64.233.190.27
alt2.aspmx.l.google.com => 209.85.202.27
aspmx2.googlemail.com => 64.233.163.27
|
(AS46606) BLUEHOST |
Trojan Ransom Locky |
2016-11-11
|
| download.cdn.torchbrowser.com
|
ns-1496.awsdns-59.org => 205.251.197.216
ns-1653.awsdns-14.co.uk => 205.251.198.117
ns-647.awsdns-16.net => 205.251.194.135
ns-97.awsdns-12.com => 205.251.192.97
aspmx2.googlemail.com => 108.177.14.26
|
(AS22822) LLNW |
Adware Toolbar SearchSuite |
2016-10-25
|
| camionsrestos.fr
|
dns103.ovh.net => 213.251.188.147
ns103.ovh.net => 213.251.128.147
aspmx2.googlemail.com => 108.177.14.26
alt1.aspmx.l.google.com => 108.177.14.26
aspmx.l.google.com => 209.85.232.26
|
(AS42845) BRETAGNETELECOM |
Trojan JS Redirector |
2016-10-25
|
| ltstonesupplies.theprogressteam.com
|
ns1.livedns.co.uk => 213.171.192.250
ns3.livedns.co.uk => 213.171.192.254
ns2.livedns.co.uk => 213.171.193.250
ALT2.ASPMX.L.GOOGLE.com => 74.125.200.26
ASPMX2.GOOGLEMAIL.com => 64.233.190.26
|
(AS34934) UKFAST |
Phishing |
2016-10-08
|
| round1.sg
|
dns2.registrar-servers.com => 216.87.152.33
dns1.registrar-servers.com => 216.87.155.33
aspmx2.googlemail.com => 173.194.222.26
aspmx3.googlemail.com => 74.125.200.26
alt1.aspmx.l.google.com => 108.177.14.27
|
(AS16509) AMAZON-02 |
Trojan JS/HTML |
2016-09-28
|
| alwinart.ro
|
ns.wns.ro => 89.35.128.2
aspmx5.googlemail.com => 108.177.119.27
aspmx.l.google.com => 74.125.29.27
aspmx3.googlemail.com => 209.85.202.26
aspmx2.googlemail.com => 64.233.190.26
|
(AS42280) WNS-RO-AS |
Trojan Ransom Locky |
2016-09-22
|
| ruiztagle.cl
|
fc3.fastserverschile.com => 64.237.45.60
fc2.fastserverschile.com => 64.237.45.59
fc1.fastserverschile.com => 64.237.45.58
fc4.fastserverschile.com => 64.237.45.61
aspmx2.googlemail.com => 64.233.190.27
|
(AS20473) CHOOPA |
Trojan JS/HTML (Heuristic) |
2016-09-21
|
| cluj-case.ro
|
ns2.hosterion.com => 89.32.150.150
ns1.hosterion.net => 77.81.240.240
ns1.hosterion.com => 184.75.254.254
ns2.hosterion.net => 89.45.250.250
aspmx2.googlemail.com => 64.233.190.27
|
(AS35818) WEBFACTOR-AS |
Phishing |
2016-09-16
|
| williammaryvsncstatelive.challonge.com
|
drew.ns.cloudflare.com => 173.245.59.160
cass.ns.cloudflare.com => 173.245.58.81
aspmx4.googlemail.com => 74.125.204.26
aspmx2.googlemail.com => 209.85.202.26
|
(AS19551) INCAPSULA |
Phishing |
2016-09-16
|
| s130048.gridserver.com
|
ns1.mediatemple.net => 64.207.128.246
ns2.mediatemple.net => 70.32.65.137
ASPMX2.GOOGLEMAIL.com => 108.177.14.26
ASPMX5.GOOGLEMAIL.com => 173.194.202.27
ASPMX4.GOOGLEMAIL.com => 74.125.203.27
|
(AS31815) MEDIATEMPLE |
Virus |
2017-03-23
|
| titansvsdolphinslive.challonge.com
|
cass.ns.cloudflare.com => 173.245.58.81
drew.ns.cloudflare.com => 173.245.59.160
aspmx2.googlemail.com => 108.177.14.27
aspmx3.googlemail.com => 74.125.200.27
|
(AS19551) INCAPSULA |
Phishing |
2016-09-16
|
| saptec.cl
|
ns1.xenhost.cl => 200.27.142.126
ns2.xenhost.cl => 200.27.142.124
aspmx2.googlemail.com => 108.177.14.26
aspmx3.googlemail.com => 74.125.200.27
aspmx.l.google.com => 173.194.204.27
|
(AS6429) Telmex Chile Internet |
Phishing |
2016-09-16
|
| zoom.lk
|
sara.ns.cloudflare.com => 173.245.58.144
lee.ns.cloudflare.com => 173.245.59.129
aspmx2.googlemail.com => 108.177.14.26
aspmx3.googlemail.com => 209.85.202.26
|
(AS13335) CLOUDFLARENET |
Virus |
2017-03-23
|
| photoblog.sicario.tv
|
ns2.sicario.tv => 207.7.91.79
ns1.sicario.tv => 207.7.90.79
aspmx.l.google.com => 173.194.205.27
aspmx2.googlemail.com => 64.233.190.27
|
(AS63410) PRIVATESYSTEMS |
Trojan JS HideLink.A |
2017-03-26
|
