| cs14productions.com
|
ns1.ninja-academy-online.com => 162.241.204.84
ns2.ninja-academy-online.com => 127.0.0.1
|
(AS46606) BLUEHOST |
Trojan Emotet |
2022-06-29
|
| arcomet.ae
|
dxbans1.ecompany.ae => 194.170.1.6
ns1.etisalatdomains.ae => 127.0.0.1
dxbans2.ecompany.ae => 194.170.1.7
auhans1.ecompany.ae => 194.170.1.99
ns3.etisalatdomains.ae => 127.0.0.1
ns2.etisalatdomains.ae => 5.195.168.53
auhans2.ecompany.ae => 195.229.237.52
ns4.etisalatdomains.ae => 5.195.168.55
|
(AS46606) BLUEHOST |
Phishing |
2021-12-02
|
| arcomet.ae
|
dxbans1.ecompany.ae => 194.170.1.6
ns1.etisalatdomains.ae => 127.0.0.1
dxbans2.ecompany.ae => 194.170.1.7
auhans1.ecompany.ae => 194.170.1.99
ns3.etisalatdomains.ae => 127.0.0.1
ns2.etisalatdomains.ae => 5.195.168.53
auhans2.ecompany.ae => 195.229.237.52
ns4.etisalatdomains.ae => 5.195.168.55
|
(AS46606) BLUEHOST |
Phishing |
2021-12-02
|
| diahc.ae
|
auhans1.ecompany.ae => 194.170.1.99
dxbans2.ecompany.ae => 194.170.1.7
dxbans1.ecompany.ae => 194.170.1.6
auhans2.ecompany.ae => 195.229.237.52
ns1.etisalatdomains.ae => 5.195.168.51
ns3.etisalatdomains.ae => 5.195.168.54
ns2.etisalatdomains.ae => 5.195.168.53
ns4.etisalatdomains.ae => 127.0.0.1
|
(AS5384) EMIRATES |
Phishing |
2021-11-22
|
| almarmoomfestivals.ae
|
auhans1.ecompany.ae => 194.170.1.99
ns4.etisalatdomains.ae => 127.0.0.1
dxbans1.ecompany.ae => 194.170.1.6
ns3.etisalatdomains.ae => 5.195.168.54
ns2.etisalatdomains.ae => 5.195.168.53
ns1.etisalatdomains.ae => 5.195.168.51
auhans2.ecompany.ae => 195.229.237.52
dxbans2.ecompany.ae => 194.170.1.7
|
(AS22611) IMH-WEST |
Phishing |
2021-11-22
|
| rnsjcsjpipe.com
|
ns1.arbors1nkh0le.com => 104.130.132.112
ns2.asertdns.com.deleted.gandi.net => 127.0.0.1
|
(AS33070) RACKSPACE |
Ramnit botnet controller |
2019-11-16
|
| twkpwfuecvvzcincq.net
|
ns1.arbors1nkh0le.com => 104.130.132.112
ns2.asertdns.com.deleted.gandi.net => 127.0.0.1
|
(AS) |
Botnet controller |
2019-11-17
|
| qekykev.com
|
ns1.arbors1nkh0le.com => 23.253.108.134
ns2.asertdns.com.deleted.gandi.net => 127.0.0.1
|
(AS) |
Simda botnet controller |
2019-11-17
|
| qedynul.com
|
ns1.arbors1nkh0le.com => 23.253.108.134
ns2.asertdns.com.deleted.gandi.net => 127.0.0.1
|
(AS) |
Simda botnet controller |
2019-11-17
|
| gacyqob.com
|
ns1.arbors1nkh0le.com => 23.253.108.134
ns2.asertdns.com.deleted.gandi.net => 127.0.0.1
|
(AS33070) RACKSPACE |
Simda botnet controller |
2019-11-17
|
| pupycag.com
|
ns1.arbors1nkh0le.com => 23.253.108.134
ns2.asertdns.com.deleted.gandi.net => 127.0.0.1
|
(AS) |
Simda botnet controller |
2019-11-17
|
| qetyhyg.com
|
ns1.arbors1nkh0le.com => 23.253.108.134
ns2.asertdns.com.deleted.gandi.net => 127.0.0.1
|
(AS33070) RACKSPACE |
Simda botnet controller |
2019-11-17
|
| vowyzuk.com
|
ns1.arbors1nkh0le.com => 23.253.108.134
ns2.asertdns.com.deleted.gandi.net => 127.0.0.1
|
(AS) |
Simda botnet controller |
2019-11-17
|
| archeryaddictions.com
|
ns1.archeryaddictions.com => 162.241.209.19
ns2.archeryaddictions.com => 127.0.0.1
|
(AS46606) BLUEHOST |
Trojan |
2019-03-03
|
| littmoden.ae
|
littmoden.ae => 127.0.0.1
|
(AS60140) BUZINESSWARE |
Trojan JS Nemucod |
2018-01-01
|
| zap334507-1.plesk06.zap-webspace.com
|
edna.ns.cloudflare.com => 173.245.58.109
josh.ns.cloudflare.com => 173.245.59.126
mail.zap-webspace.com => 127.0.0.1
|
(AS197071) ACTIVE-SERVERS |
Trojan Skeeyah.A |
2017-10-02
|
| fmwywfdlfom.plentyhorrify.ru
|
ns2.expired.r01.ru => 194.85.61.76
ns1.expired.r01.ru => 109.70.26.37
nomail.nic.ru => 127.0.0.1
|
(AS15626) ITLAS |
ITL Adware Campaign |
2017-06-06
|
| magflthzuyloqm.plentyhorrify.ru
|
ns1.expired.r01.ru => 109.70.26.37
ns2.expired.r01.ru => 194.85.61.76
nomail.nic.ru => 127.0.0.1
|
(AS15626) ITLAS |
ITL Adware Campaign |
2017-06-06
|
| iddlesbro.cockpitline.ru
|
ns1.sedoparking.com => 209.200.164.69
ns2.sedoparking.com => 209.200.165.74
localhost => 127.0.0.1
|
(AS15626) ITLAS |
ITL Adware Campaign |
2017-06-07
|
| 2f77e2ee799b099c8b6mphitryo.wait-arrive.ru
|
ns1.sedoparking.com => 209.200.164.69
ns2.sedoparking.com => 209.200.165.74
localhost => 127.0.0.1
|
(AS15626) ITLAS |
ITL Adware Campaign |
2017-06-06
|
| pipacti.sreenpea.supply-joy-emotion.ru
|
ns1.sedoparking.com => 209.200.164.69
ns2.sedoparking.com => 209.200.165.74
localhost => 127.0.0.1
|
(AS15626) ITLAS |
ITL Adware Campaign |
2017-05-31
|
| pro.st
|
ns2.sedoparking.com => 209.200.165.74
ns1.sedoparking.com => 209.200.164.69
localhost => 127.0.0.1
|
(AS26347) DREAMHOST |
Trojan JS HideLink.A |
2017-03-01
|
| message-staircase.ru
|
ns1.expired.r01.ru => 109.70.26.37
ns2.expired.r01.ru => 194.85.61.76
nomail.nic.ru => 127.0.0.1
|
(AS15626) ITLAS |
ITL Adware Campaign |
2017-02-26
|
| iav.trade
|
ns1.sedoparking.com => 209.200.164.69
ns2.sedoparking.com => 209.200.165.74
localhost => 127.0.0.1
|
(AS) |
Malicious domain |
2017-01-15
|
| ns2.pcrm.eu
|
ns1.sedoparking.com => 209.200.164.69
ns2.sedoparking.com => 209.200.165.74
localhost => 127.0.0.1
|
(AS15083) INFOLINK |
Name server for malicious domain |
2017-01-11
|
| ns2.ecolean.asia
|
ns2.sedoparking.com => 209.200.165.74
ns1.sedoparking.com => 209.200.164.69
localhost => 127.0.0.1
|
(AS15083) INFOLINK |
Name server for malicious domain |
2017-01-07
|
| ns2.bummer.eu
|
ns2.sedoparking.com => 209.200.165.74
ns1.sedoparking.com => 209.200.164.69
localhost => 127.0.0.1
|
(AS15083) INFOLINK |
Name server for malicious domain |
2017-01-07
|
| ns2.fobs.xyz
|
ns2.sedoparking.com => 209.200.165.74
ns1.sedoparking.com => 209.200.164.69
localhost => 127.0.0.1
|
(AS19324) DOSARREST |
Name server for malicious domain |
2017-01-07
|
| sinonimi.atomglobe.com
|
ns1.sedoparking.com => 209.200.164.69
ns2.sedoparking.com => 209.200.165.74
localhost => 127.0.0.1
|
(AS24961) FIBREONE-AS |
Trojan JS/HTML |
2017-01-02
|
| samourais-films.com
|
ns0.online.net => 195.154.228.249
ns2.online.net.deleted.bookmyname.net => 127.0.0.1
|
(AS12876) AS12876 |
Trojan JS/HTML (Heuristic) |
2016-10-23
|
| nonudegirls.pw
|
ns2.sedoparking.com => 209.200.165.74
ns1.sedoparking.com => 209.200.164.69
localhost => 127.0.0.1
|
(AS16276) OVH |
Malicious domain |
2016-10-23
|
| tdbank.loginu.net
|
ns2.sedoparking.com => 209.200.165.74
ns1.sedoparking.com => 209.200.164.69
localhost => 127.0.0.1
|
(AS22611) IMH-WEST |
Phishing |
2016-09-16
|
| southwestvisa.loginu.net
|
ns1.sedoparking.com => 209.200.164.69
ns2.sedoparking.com => 209.200.165.74
localhost => 127.0.0.1
|
(AS22611) IMH-WEST |
Phishing |
2016-09-16
|
| manday.sweed-viki.ru
|
ns1.expired.r01.ru => 109.70.26.37
ns2.expired.r01.ru => 194.85.61.76
nomail.nic.ru => 127.0.0.1
|
(AS62082) HOSTLAND |
PWS Fareit |
2017-03-26
|
| porlovisto.blogsinfolibre.es
|
ns1.sedoparking.com => 209.200.164.69
ns2.sedoparking.com => 209.200.165.74
localhost => 127.0.0.1
|
(AS200130) DIGITALOCEAN-ASN-1 |
Trojan JS/HTML |
2016-09-04
|
| bookmyroom.pk
|
ns1.sedoparking.com => 209.200.164.69
ns2.sedoparking.com => 209.200.165.74
localhost => 127.0.0.1
|
(AS32613) IWEB |
Ransom Enckerbee |
2016-08-27
|
| preglitzer.heimat.eu
|
ns2.webmachine.at => 213.208.134.10
ns1.webmachine.at => 213.208.132.100
localhost.heimat.eu => 127.0.0.1
|
(AS1764) NEXTLAYER-AS |
Trojan Ransom Locky |
2016-08-12
|
| eur.loan
|
ns2.sedoparking.com => 209.200.165.74
ns1.sedoparking.com => 209.200.164.69
localhost => 127.0.0.1
|
(AS33387) DATASHACK |
Virus VBS Ramnit.C |
2016-08-02
|
| ygnopsi.supply-joy-emotion.ru
|
ns1.sedoparking.com => 209.200.164.69
ns2.sedoparking.com => 209.200.165.74
localhost => 127.0.0.1
|
(AS15626) ITLAS |
ITL Adware Campaign |
2016-07-21
|
| riegspi.wait-arrive.ru
|
ns2.sedoparking.com => 209.200.165.74
ns1.sedoparking.com => 209.200.164.69
localhost => 127.0.0.1
|
(AS15626) ITLAS |
ITL Adware Campaign |
2016-07-21
|
| uryzonotri.supply-joy-emotion.ru
|
ns1.sedoparking.com => 209.200.164.69
ns2.sedoparking.com => 209.200.165.74
localhost => 127.0.0.1
|
(AS15626) ITLAS |
ITL Adware Campaign |
2016-07-21
|
| ercopida.wait-arrive.ru
|
ns2.sedoparking.com => 209.200.165.74
ns1.sedoparking.com => 209.200.164.69
localhost => 127.0.0.1
|
(AS15626) ITLAS |
ITL Adware Campaign |
2016-07-21
|
| ephistophelea.nowhere-ago.ru
|
ns2.sedoparking.com => 209.200.165.74
ns1.sedoparking.com => 209.200.164.69
localhost => 127.0.0.1
|
(AS15626) ITLAS |
ITL Adware Campaign |
2016-07-21
|
| arolina.cockpitline.ru
|
ns1.sedoparking.com => 209.200.164.69
ns2.sedoparking.com => 209.200.165.74
localhost => 127.0.0.1
|
(AS15626) ITLAS |
ITL Adware Campaign |
2016-07-21
|
| apsella.supply-joy-emotion.ru
|
ns2.sedoparking.com => 209.200.165.74
ns1.sedoparking.com => 209.200.164.69
localhost => 127.0.0.1
|
(AS15626) ITLAS |
ITL Adware Campaign |
2016-07-21
|
| anielso.nowhere-ago.ru
|
ns1.sedoparking.com => 209.200.164.69
ns2.sedoparking.com => 209.200.165.74
localhost => 127.0.0.1
|
(AS15626) ITLAS |
ITL Adware Campaign |
2016-07-21
|
| alpighia.nowhere-ago.ru
|
ns2.sedoparking.com => 209.200.165.74
ns1.sedoparking.com => 209.200.164.69
localhost => 127.0.0.1
|
(AS15626) ITLAS |
ITL Adware Campaign |
2016-07-21
|
| aemuliida.cockpitline.ru
|
ns2.sedoparking.com => 209.200.165.74
ns1.sedoparking.com => 209.200.164.69
localhost => 127.0.0.1
|
(AS15626) ITLAS |
ITL Adware Campaign |
2016-07-21
|
| aemamoeba.cockpitline.ru
|
ns2.sedoparking.com => 209.200.165.74
ns1.sedoparking.com => 209.200.164.69
localhost => 127.0.0.1
|
(AS15626) ITLAS |
ITL Adware Campaign |
2016-07-21
|
| xn--80ad0abc8ar.xn--p1ai
|
ns2.expired.r01.ru => 194.85.61.76
ns1.expired.r01.ru => 109.70.26.37
nomail.nic.ru => 127.0.0.1
|
(AS38197) SUNHK-DATA-AS-AP |
Fraud / Scam |
2017-04-15
|
