| 11replicahermes.com
|
ns1cnb.name.com => 163.114.216.17
ns3cna.name.com => 163.114.217.17
ns4ksy.name.com => 163.114.217.49
ns2qvz.name.com => 163.114.216.49
|
(AS40476) SCALAHOST |
Malicious domain |
2024-03-03
|
| watchesoutletonline.com
|
ns4ksy.name.com => 163.114.217.49
ns1cnb.name.com => 163.114.216.17
ns2qvz.name.com => 163.114.216.49
ns3cna.name.com => 163.114.217.17
|
(AS58065)
PACKETEXCHA |
Malicious domain |
2024-03-03
|
| buyfakeoakleyus.com
|
ns2qvz.name.com => 163.114.216.49
ns4ksy.name.com => 163.114.217.49
ns3cna.name.com => 163.114.217.17
ns1cnb.name.com => 163.114.216.17
|
(AS17378) AS17378, US |
Malicious domain |
2024-03-02
|
| webdisk.christianlouboutinsaleclearance.com
|
ns4ksy.name.com => 163.114.217.49
ns2qvz.name.com => 163.114.216.49
ns1cnb.name.com => 163.114.216.17
ns3cna.name.com => 163.114.217.17
|
(AS58065)
PACKETEXCHA |
Malicious domain |
2024-02-29
|
| cpcontacts.christianlouboutinsaleclearance.com
|
ns4ksy.name.com => 163.114.217.49
ns2qvz.name.com => 163.114.216.49
ns1cnb.name.com => 163.114.216.17
ns3cna.name.com => 163.114.217.17
|
(AS58065)
PACKETEXCHA |
Malicious domain |
2024-02-29
|
| cpcalendars.christianlouboutinsaleclearance.com
|
ns4ksy.name.com => 163.114.217.49
ns2qvz.name.com => 163.114.216.49
ns1cnb.name.com => 163.114.216.17
ns3cna.name.com => 163.114.217.17
|
(AS58065)
PACKETEXCHA |
Malicious domain |
2024-02-29
|
| christianlouboutinsaleclearance.com
|
ns4ksy.name.com => 163.114.217.49
ns2qvz.name.com => 163.114.216.49
ns1cnb.name.com => 163.114.216.17
ns3cna.name.com => 163.114.217.17
|
(AS58065)
PACKETEXCHA |
Malicious domain |
2024-02-29
|
| getyourapi.site
|
ns2fkr.name.com => 163.114.216.49
ns4ksy.name.com => 163.114.217.49
ns3jnr.name.com => 163.114.217.17
ns1jsv.name.com => 163.114.216.17
|
(AS16509) AMAZON-02 |
Malicious domain |
2024-02-29
|
| dodohelp.com
|
ns2jrt.name.com => 163.114.216.49
ns1qsy.name.com => 163.114.216.17
ns4ksy.name.com => 163.114.217.49
ns3dty.name.com => 163.114.217.17
|
(AS47846) SEDO |
Malicious domain |
2024-02-29
|
| a.tes1-ssp.xyz
|
ns3jnr.name.com => 163.114.217.17
ns1jsv.name.com => 163.114.216.17
ns2fkr.name.com => 163.114.216.49
ns4ksy.name.com => 163.114.217.49
|
(AS16509) AMAZON-02 |
Phishing |
2022-10-07
|
| a.progh-mm.xyz
|
ns3jnr.name.com => 163.114.217.17
ns2fkr.name.com => 163.114.216.49
ns4ksy.name.com => 163.114.217.49
ns1jsv.name.com => 163.114.216.17
|
(AS16509) AMAZON-02 |
Phishing |
2022-10-07
|
| a.anticrsss1-ep.xyz
|
ns2fkr.name.com => 163.114.216.49
ns1jsv.name.com => 163.114.216.17
ns3jnr.name.com => 163.114.217.17
ns4ksy.name.com => 163.114.217.49
|
(AS16509) AMAZON-02 |
Phishing |
2022-10-07
|
| 1pro-pl.live1program.site
|
ns3jnr.name.com => 163.114.217.17
ns1jsv.name.com => 163.114.216.17
ns2fkr.name.com => 163.114.216.49
ns4ksy.name.com => 163.114.217.49
|
(AS16509) AMAZON-02 |
Phishing |
2022-10-07
|
| 1blog.live1program.site
|
ns3jnr.name.com => 163.114.217.17
ns1jsv.name.com => 163.114.216.17
ns2fkr.name.com => 163.114.216.49
ns4ksy.name.com => 163.114.217.49
|
(AS16509) AMAZON-02 |
Phishing |
2022-10-07
|
| command-host.com
|
ns3gxy.name.com => 163.114.217.17
ns4ksy.name.com => 163.114.217.49
ns1dhq.name.com => 163.114.216.17
ns2dky.name.com => 163.114.216.49
|
(AS24940) HETZNER |
Phishing |
2022-04-24
|
| coinglobalpro.com
|
ns2fwz.name.com => 163.114.216.49
ns1cnb.name.com => 163.114.216.17
ns3cna.name.com => 163.114.217.17
ns4ksy.name.com => 163.114.217.49
|
(AS32475) SINGLEHOP |
Phishing |
2022-04-02
|
| uobcollegehsc.net
|
ns1dhl.name.com => 163.114.216.17
ns3bgq.name.com => 163.114.217.17
ns2ckr.name.com => 163.114.216.49
ns4ksy.name.com => 163.114.217.49
|
(AS46606) BLUEHOST |
Phishing |
2021-11-22
|
| h5-chase.com
|
ns1dhq.name.com => 163.114.216.17
ns2fkr.name.com => 163.114.216.49
ns4ksy.name.com => 163.114.217.49
ns3qtx.name.com => 163.114.217.17
|
(AS36351) SOFTLAYER |
Phishing |
2021-10-31
|
| lazy.h5-chase.com
|
ns1dhq.name.com => 163.114.216.17
ns2fkr.name.com => 163.114.216.49
ns4ksy.name.com => 163.114.217.49
ns3qtx.name.com => 163.114.217.17
|
(AS36351) SOFTLAYER |
Phishing |
2021-10-31
|
| 1stsupportime.com
|
ns2kry.name.com => 163.114.216.49
ns1dhq.name.com => 163.114.216.17
ns4ksy.name.com => 163.114.217.49
ns3fgh.name.com => 163.114.217.17
|
(AS46606) BLUEHOST |
Phishing |
2021-09-10
|
| buruujtech.com
|
ns2ckr.name.com => 163.114.216.49
ns3bgq.name.com => 163.114.217.17
ns4ksy.name.com => 163.114.217.49
ns1dhl.name.com => 163.114.216.17
|
(AS46606) BLUEHOST |
Hancitor botnet controller |
2021-08-25
|
| indigopaypal.net
|
ns3qty.name.com => 163.114.217.17
ns1fkl.name.com => 163.114.216.17
ns2nsw.name.com => 163.114.216.49
ns4ksy.name.com => 163.114.217.49
|
(AS47846) SEDO |
Phishing |
2021-08-18
|
| indigopaypal.com
|
ns1fkl.name.com => 163.114.216.17
ns3qty.name.com => 163.114.217.17
ns2nsw.name.com => 163.114.216.49
ns4ksy.name.com => 163.114.217.49
|
(AS55002) DEFENSE-NET |
Phishing |
2021-08-18
|
| verify-wellsfargo-safe.com
|
ns3bgq.name.com => 163.114.217.17
ns1dhq.name.com => 163.114.216.17
ns2clp.name.com => 163.114.216.49
ns4ksy.name.com => 163.114.217.49
|
(AS213035) SERVERION-AS Serverion B.V., NL |
Phishing |
2021-08-18
|
| plverify-securehost0.com
|
ns1fkl.name.com => 163.114.216.17
ns3cjl.name.com => 163.114.217.17
ns4ksy.name.com => 163.114.217.49
ns2dqx.name.com => 163.114.216.49
|
(AS211252) UNU |
Phishing |
2021-08-18
|
| assistant-chase.com
|
ns3qty.name.com => 163.114.217.17
ns2fgp.name.com => 163.114.216.49
ns1fkl.name.com => 163.114.216.17
ns4ksy.name.com => 163.114.217.49
|
(AS47846) SEDO |
Phishing |
2021-07-25
|
| jupiter.toxsl.in
|
ns2fjz.name.com => 163.114.216.49
ns1djs.name.com => 163.114.216.17
ns3cpr.name.com => 163.114.217.17
ns4ksy.name.com => 163.114.217.49
|
(AS9498) BBIL |
Trojan Emotet |
2021-01-06
|
| vnitservice.com
|
ns1hwy.name.com => 163.114.216.17
ns2nsy.name.com => 163.114.216.49
ns3jnr.name.com => 163.114.217.17
ns4ksy.name.com => 163.114.217.49
|
(AS7552) VIETEL-AS-AP |
Trojan Emotet |
2020-07-23
|
| xaydungtiendung.com
|
ns1bcp.name.com => 162.88.61.47
ns2bkr.name.com => 162.88.60.47
ns3gnv.name.com => 162.88.61.49
ns4ksy.name.com => 162.88.60.49
|
(AS20473) CHOOPA |
Trojan Emotet |
2020-01-29
|
| etc-thai.com
|
ns1mpz.name.com => 162.88.61.47
ns2cvx.name.com => 162.88.60.47
ns3jmt.name.com => 162.88.61.49
ns4ksy.name.com => 162.88.60.49
|
(AS33494) IHNET |
Trojan HTML |
2019-09-05
|
| asleycruz.com
|
ns1lmy.name.com => 162.88.61.47
ns2fhn.name.com => 162.88.60.47
ns3cqz.name.com => 162.88.61.49
ns4ksy.name.com => 162.88.60.49
|
(AS36351) SOFTLAYER |
Trojan |
2019-03-23
|
| sign-in.apple.com.my-98757438534345-apps.com
|
ns1mpz.name.com => 162.88.61.47
ns2nsy.name.com => 162.88.60.47
ns3cqz.name.com => 162.88.61.49
ns4ksy.name.com => 162.88.60.49
|
(AS46606) BLUEHOST |
Trojan JS |
2018-11-08
|
| grssypddn.com
|
ns1djs.name.com => 162.88.61.47
ns2fln.name.com => 162.88.60.47
ns3hjx.name.com => 162.88.61.49
ns4ksy.name.com => 162.88.60.49
|
(AS16509) AMAZON-02 |
Trojan JS |
2018-09-02
|
| htepl.com
|
ns1cmt.name.com => 162.88.61.47
ns2clp.name.com => 162.88.60.47
ns3fgh.name.com => 162.88.61.49
ns4ksy.name.com => 162.88.60.49
|
(AS394695) PUBLIC-DOMAIN-REGISTRY |
Trojan JS downloader |
2018-05-13
|
| drtoothfamily.com
|
ns1cwy.name.com => 162.88.61.47
ns2fhn.name.com => 162.88.60.47
ns3cjl.name.com => 162.88.61.49
ns4ksy.name.com => 162.88.60.49
|
(AS8560) SCHLUND |
Trojan W2km Powload |
2018-03-20
|
| starfrenchbulldogs.com
|
ns1dns.name.com => 162.88.61.47
ns2fgv.name.com => 162.88.60.47
ns3jnr.name.com => 162.88.61.49
ns4ksy.name.com => 162.88.60.49
|
(AS36351) SOFTLAYER |
Fake site / scam |
2018-01-06
|
| website1373.empowernetworkview.us
|
ns3hjx.name.com => 98.124.246.2
ns2gtx.name.com => 98.124.246.1
ns4ksy.name.com => 98.124.246.1
ns1ntw.name.com => 184.172.59.30
|
(AS16276) OVH |
Sundown Exploit kit |
2017-01-15
|
| website1365.empowernetworkview.us
|
ns3hjx.name.com => 98.124.246.2
ns2gtx.name.com => 98.124.246.1
ns4ksy.name.com => 98.124.246.1
ns1ntw.name.com => 184.172.59.30
|
(AS16276) OVH |
Sundown Exploit kit |
2017-01-15
|
| website1361.empowernetworkpackage.biz
|
ns3hjx.name.com => 98.124.246.2
ns2gtx.name.com => 98.124.246.1
ns4ksy.name.com => 98.124.246.1
ns1ntw.name.com => 184.172.59.30
|
(AS16276) OVH |
Sundown Exploit kit |
2017-01-15
|
| website1358.empowernetworkview.us
|
ns3hjx.name.com => 98.124.246.2
ns2gtx.name.com => 98.124.246.1
ns4ksy.name.com => 98.124.246.1
ns1ntw.name.com => 184.172.59.30
|
(AS16276) OVH |
Sundown Exploit kit |
2017-01-15
|
| website1344.empowernetworkview.us
|
ns3hjx.name.com => 98.124.246.2
ns2gtx.name.com => 98.124.246.1
ns4ksy.name.com => 98.124.246.1
ns1ntw.name.com => 184.172.59.30
|
(AS16276) OVH |
Sundown Exploit kit |
2017-01-15
|
| website1343.empowernetworkview.us
|
ns3hjx.name.com => 98.124.246.2
ns2gtx.name.com => 98.124.246.1
ns4ksy.name.com => 98.124.246.1
ns1ntw.name.com => 184.172.59.30
|
(AS16276) OVH |
Sundown Exploit kit |
2017-01-15
|
| website1342.empowernetworkview.us
|
ns3hjx.name.com => 98.124.246.2
ns2gtx.name.com => 98.124.246.1
ns4ksy.name.com => 98.124.246.1
ns1ntw.name.com => 184.172.59.30
|
(AS16276) OVH |
Sundown Exploit kit |
2017-01-15
|
| website1340.empowernetworkview.us
|
ns3hjx.name.com => 98.124.246.2
ns2gtx.name.com => 98.124.246.1
ns4ksy.name.com => 98.124.246.1
ns1ntw.name.com => 184.172.59.30
|
(AS16276) OVH |
Sundown Exploit kit |
2017-01-15
|
| website134.empowernetworkpackage.biz
|
ns3hjx.name.com => 98.124.246.2
ns2gtx.name.com => 98.124.246.1
ns4ksy.name.com => 98.124.246.1
ns1ntw.name.com => 184.172.59.30
|
(AS16276) OVH |
Sundown Exploit kit |
2017-01-15
|
| website1335.empowernetworkview.us
|
ns3hjx.name.com => 98.124.246.2
ns2gtx.name.com => 98.124.246.1
ns4ksy.name.com => 98.124.246.1
ns1ntw.name.com => 184.172.59.30
|
(AS16276) OVH |
Sundown Exploit kit |
2017-01-15
|
| website1334.empowernetworkview.us
|
ns3hjx.name.com => 98.124.246.2
ns2gtx.name.com => 98.124.246.1
ns4ksy.name.com => 98.124.246.1
ns1ntw.name.com => 184.172.59.30
|
(AS16276) OVH |
Sundown Exploit kit |
2017-01-15
|
| website1330.empowernetworkpackage.biz
|
ns3hjx.name.com => 98.124.246.2
ns2gtx.name.com => 98.124.246.1
ns4ksy.name.com => 98.124.246.1
ns1ntw.name.com => 184.172.59.30
|
(AS16276) OVH |
Sundown Exploit kit |
2017-01-15
|
| website133.empowernetworkview.us
|
ns3hjx.name.com => 98.124.246.2
ns2gtx.name.com => 98.124.246.1
ns4ksy.name.com => 98.124.246.1
ns1ntw.name.com => 184.172.59.30
|
(AS16276) OVH |
Sundown Exploit kit |
2017-01-15
|
| website1327.empowernetworkpackage.biz
|
ns3hjx.name.com => 98.124.246.2
ns2gtx.name.com => 98.124.246.1
ns4ksy.name.com => 98.124.246.1
ns1ntw.name.com => 184.172.59.30
|
(AS16276) OVH |
Sundown Exploit kit |
2017-01-15
|
