Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #MalwareMustDie! Project: Mapping of compromised PC used to send Upatre/GMO/Zbot
- #Purpose: We launch this project for the CERT & ISP to clean up these soam bots from their network,
- and supporting research/investigation to the threat of Upatre/GMO/Zbot
- #Range: APRIL 2014 (April 1st - April 29th 2014)
- #Volume Detected: 134 Hosts SMTP Success Spam Sessions, 124 IP (unique), 46 countries, 45 IP ALIVE (now)
- #Samples: 500+ from US, DE & Japan network
- #Graph: http://malwaremustdie.org/stat/spambot.html
- #Comment: There are older data but better we started to the new ones.
- If you think we should also put older data pls message to @malwaremustdie (twitter)
- It's a new project, please kindly help to contribute your known data. Thank's!
- #Source: MMD SMTP Honeypot
- // 1. The SMTP Session of the Spambot
- // (total: 134 campaigns hosts, multiple spams per host is uncounted, further will be referred as "Session")
- // FQDN is unknown, some of the HELO are fakes, the IPs are correctly detected.
- FQDN: unknown | Session: (HELO 109-228-l2199.crnagora.net) (109.228.72.151)
- FQDN: unknown | Session: (HELO reverse.completel.net) (92.103.44.112)
- FQDN: unknown | Session: (HELO aexp.com) (41.221.29.38)
- FQDN: unknown | Session: (HELO ?41.249.67.22?) (41.249.67.22)
- FQDN: unknown | Session: (HELO co.za) (105.224.90.36)
- FQDN: unknown | Session: (HELO ?85.132.57.50?) (85.132.57.50)
- FQDN: unknown | Session: (HELO ?42.113.40.211?) (42.113.40.211)
- FQDN: unknown | Session: (HELO 5aceeeff.bb.sky.com) (90.206.238.255)
- FQDN: unknown | Session: (HELO ?87.238.105.205?) (87.238.105.205)
- FQDN: unknown | Session: (HELO aexp.com) (190.21.163.4)
- FQDN: unknown | Session: (HELO mail.gcples.ie) (86.47.53.42)
- FQDN: unknown | Session: (HELO host-176-42-96-76.reverse.superonline.net) (176.42.96.76)
- FQDN: unknown | Session: (HELO klntrm-fld-01.forthnet.gr) (62.1.46.12)
- FQDN: unknown | Session: (HELO 79.Red-79-159-181.staticIP.rima-tde.net) (79.159.181.79)
- FQDN: unknown | Session: (HELO owa.themanorassn.com) (71.6.111.34)
- FQDN: unknown | Session: (HELO bb-66-63-69-26.static.gwi.net) (66.63.69.26)
- FQDN: unknown | Session: (HELO JEXVJQV) (1.54.240.239)
- FQDN: unknown | Session: (HELO ROUTER) (190.190.196.103)
- FQDN: unknown | Session: (HELO localhost) (113.172.105.76)
- FQDN: unknown | Session: (HELO ?14.47.238.211?) (14.47.238.211)
- FQDN: unknown | Session: (HELO ?197.155.140.130?) (197.155.140.130)
- FQDN: unknown | Session: (HELO 190-82-83-98.static.tie.cl) (190.82.83.98)
- FQDN: unknown | Session: (HELO ip-78-94-74-96.unitymediagroup.de) (78.94.74.96)
- FQDN: unknown | Session: (HELO 79.109.232.90.dyn.user.ono.com) (79.109.232.90)
- FQDN: unknown | Session: (HELO 50-223-114-200.fibertel.com.ar) (200.114.223.50)
- FQDN: unknown | Session: (HELO pt.lu) (83.99.38.205)
- FQDN: unknown | Session: (HELO h69-129-183-234.applwi.dedicated.static.tds.net) (69.129.183.234)
- FQDN: unknown | Session: (HELO 058177202202.ctinets.com) (58.177.202.202)
- FQDN: unknown | Session: (HELO RDTOGGV) (210.64.55.245)
- FQDN: unknown | Session: (HELO 23-25-95-101-static.hfc.comcastbusiness.net) (23.25.95.101)
- FQDN: unknown | Session: (HELO cust.static.109-164-236-147.swisscomdata.ch) (109.164.236.147)
- FQDN: unknown | Session: (HELO co.za) (105.224.111.249)
- FQDN: unknown | Session: (HELO cpc13-rdng22-2-0-cust455.15-3.cable.virginm.net) (80.7.141.200)
- FQDN: unknown | Session: (HELO vidin-110-99.vidaoptics.com) (89.106.110.99)
- FQDN: unknown | Session: (HELO ?14.162.160.131?) (14.162.160.131)
- FQDN: unknown | Session: (HELO 111-248-116-210.dynamic.hinet.net) (111.248.116.210)
- FQDN: unknown | Session: (HELO rs.tbroad) (124.80.45.30)
- FQDN: unknown | Session: (HELO localhost) (123.16.131.243)
- FQDN: unknown | Session: (HELO host86-171-56-89.range86-171.btcentralplus.com) (86.171.56.89)
- FQDN: unknown | Session: (HELO NMHHBIZEK) (116.226.24.104)
- FQDN: unknown | Session: (HELO ?179.32.248.54?) (179.32.248.54)
- FQDN: unknown | Session: (HELO customer-static-210-26-113.iplannetworks.net) (190.210.26.113)
- FQDN: unknown | Session: (HELO energized.webserversystems.com) (184.173.82.213)
- FQDN: unknown | Session: (HELO sciolli.webserversystems.com) (50.22.40.226)
- FQDN: unknown | Session: (HELO aexp.com) (190.21.163.4)
- FQDN: unknown | Session: (HELO mail.gcples.ie) (86.47.53.42)
- FQDN: unknown | Session: (HELO host-176-42-96-76.reverse.superonline.net) (176.42.96.76)
- FQDN: unknown | Session: (HELO klntrm-fld-01.forthnet.gr) (62.1.46.12)
- FQDN: unknown | Session: (HELO 79.Red-79-159-181.staticIP.rima-tde.net) (79.159.181.79)
- FQDN: unknown | Session: (HELO owa.themanorassn.com) (71.6.111.34)
- FQDN: unknown | Session: (HELO bb-66-63-69-26.static.gwi.net) (66.63.69.26)
- FQDN: unknown | Session: (HELO JEXVJQV) (1.54.240.239)
- FQDN: unknown | Session: (HELO 109-184-228-134.dynamic.mts-nn.ru) (109.184.228.134)
- FQDN: unknown | Session: (HELO ROUTER) (190.190.196.103)
- FQDN: unknown | Session: (HELO fttu-67-223-13-64.btes.tv) (67.223.13.64)
- FQDN: unknown | Session: (HELO ovh.fr) (109.190.52.100)
- FQDN: unknown | Session: (HELO 058177202202.ctinets.com) (58.177.202.202)
- FQDN: unknown | Session: (HELO AIPCDRXNX) (41.224.167.244)
- FQDN: unknown | Session: (HELO NUNDLXZDFF) (96.54.161.154)
- FQDN: unknown | Session: (HELO mx.kaitaty.biz) (174.127.126.2)
- FQDN: unknown | Session: (HELO host-195.242.232.122.c3.net.pl) (195.242.232.122)
- FQDN: unknown | Session: (HELO adsl-068-213-079-187.sip.jax.bellsouth.net) (68.213.79.187)
- FQDN: unknown | Session: (HELO LPuteaux-656-01-08-233.w82-127.abo.wanadoo.fr) (82.127.139.233)
- FQDN: unknown | Session: (HELO h25.242.55.139.static.ip.windstream.net) (139.55.242.25)
- FQDN: unknown | Session: (HELO localhost) (113.170.25.97)
- FQDN: unknown | Session: (HELO 204.red-83-61-81.dynamicip.rima-tde.net) (83.61.81.204)
- FQDN: unknown | Session: (HELO ?216.68.130.22?) (216.68.130.22)
- FQDN: unknown | Session: (HELO ?220.241.219.141?) (220.241.219.141)
- FQDN: unknown | Session: (HELO host89-248-static.43-85-b.business.telecomitalia.it) (85.43.248.89)
- FQDN: unknown | Session: (HELO ?190.40.214.13?) (190.40.214.13)
- FQDN: unknown | Session: (HELO gvt.net.br) (179.176.97.77)
- FQDN: unknown | Session: (HELO aexp.com) (14.165.147.163)
- FQDN: unknown | Session: (HELO m91-187-92-207.andorpac.ad) (91.187.92.207)
- FQDN: unknown | Session: (HELO 173-161-174-69-philadelphia.hfc.comcastbusiness.net) (173.161.174.69)
- FQDN: unknown | Session: (HELO host36-121-static.90-94-b.business.telecomitalia.it) (94.90.121.36)
- FQDN: unknown | Session: (HELO static-pppoe-209-91-139-250.vianet.ca) (209.91.139.250)
- FQDN: unknown | Session: (HELO 98-64-206-175.mia.bellsouth.net) (98.64.206.175)
- FQDN: unknown | Session: (HELO wsip-24-249-49-137.ks.ks.cox.net) (24.249.49.137)
- FQDN: unknown | Session: (HELO telesp.net.br) (189.111.113.46)
- FQDN: unknown | Session: (HELO viettel.vn) (115.78.114.177)
- FQDN: unknown | Session: (HELO bb118-200-233-105.singnet.com.sg) (118.200.233.105)
- FQDN: unknown | Session: (HELO price-a2-occam-dsl-74-214-235-177.dynamic.etv.net) (74.214.235.177)
- FQDN: unknown | Session: (HELO 165-146-237-85.telkomadsl.co.za) (165.146.237.85)
- FQDN: unknown | Session: (HELO pp01513573197.pndsl.co.uk) (84.92.51.83)
- FQDN: unknown | Session: (HELO host-61-70-220-59.static.kbtelecom.net) (61.70.220.59)
- FQDN: unknown | Session: (HELO ?213.163.172.193?) (213.163.172.193)
- FQDN: unknown | Session: (HELO aexp.com) (186.67.71.101)
- FQDN: unknown | Session: (HELO client-201.240.6.190.speedy.net.pe) (201.240.6.190)
- FQDN: unknown | Session: (HELO bell.ca) (76.65.166.54)
- FQDN: unknown | Session: (HELO 123-241-200-147.nty.dynamic.tbcnet.net.tw) (123.241.200.147)
- FQDN: unknown | Session: (HELO ?94.99.76.81?) (94.99.76.81)
- FQDN: unknown | Session: (HELO 124.126.103.218.static.netvigator.com) (218.103.126.124)
- FQDN: unknown | Session: (HELO device.lan) (2.90.39.32)
- FQDN: unknown | Session: (HELO my.firewall) (62.0.111.29)
- FQDN: unknown | Session: (HELO mail.haulmont.com) (213.156.200.225)
- FQDN: unknown | Session: (HELO ?175.136.243.201?) (175.136.243.201)
- FQDN: unknown | Session: (HELO LMontsouris-656-01-144-127.w217-128.abo.wanadoo.fr) (217.128.77.127)
- FQDN: unknown | Session: (HELO 181-21-158-244.speedy.com.ar) (181.21.134.155)
- FQDN: unknown | Session: (HELO aexp.com) (200.31.65.170)
- FQDN: unknown | Session: (HELO 109.68.246.220.static.netvigator.com) (220.246.68.109)
- FQDN: unknown | Session: (HELO 177-100-38-254.viacaboip.com.br) (177.100.38.254)
- FQDN: unknown | Session: (HELO static-4-6-27-46.ipcom.comunitel.net) (46.27.6.4)
- FQDN: unknown | Session: (HELO 201-249-204-194.estatic.cantv.net) (201.249.204.194)
- FQDN: unknown | Session: (HELO ?195.208.179.19?) (195.208.179.19)
- FQDN: unknown | Session: (HELO XWUYYUNHFB) (77.86.92.34)
- FQDN: unknown | Session: (HELO 6.207.126.177.cpnet.com.br) (177.126.207.6)
- FQDN: unknown | Session: (HELO rrcs-97-79-49-98.se.biz.rr.com) (97.79.49.98)
- FQDN: unknown | Session: (HELO localhost) (113.189.81.133)
- FQDN: unknown | Session: (HELO XSFJWPY) (124.137.227.254)
- FQDN: unknown | Session: (HELO p29069-ipngnfx01osakakita.osaka.ocn.ne.jp) (180.43.69.69)
- FQDN: unknown | Session: (HELO CKHSABBGOM) (103.9.88.146)
- FQDN: unknown | Session: (HELO QENQNYVXOG) (212.34.12.20)
- FQDN: unknown | Session: (HELO mail.42.fskn.gov.ru) (95.181.56.74)
- FQDN: unknown | Session: (HELO ?183.100.213.187?) (183.100.213.187)
- FQDN: unknown | Session: (HELO aexp.com) (190.141.53.97)
- FQDN: unknown | Session: (HELO ?92.85.195.181?) (92.85.195.181)
- FQDN: unknown | Session: (HELO brasiltelecom.net.br) (177.1.109.148)
- FQDN: unknown | Session: (HELO 90.148.30.158.dynamic.saudi.net.sa) (90.148.30.158)
- FQDN: unknown | Session: (HELO 79-51-40-46.dynamic.stcable.net) (46.40.51.79)
- FQDN: unknown | Session: (HELO localhost) (117.5.135.201)
- FQDN: unknown | Session: (HELO YNOSRYKMEX) (82.129.222.1)
- FQDN: unknown | Session: (HELO ?113.162.101.78?) (113.162.101.78)
- FQDN: unknown | Session: (HELO MUQJYGPCBH) (121.130.145.243)
- FQDN: unknown | Session: (HELO 187-19-164-254-temp.static.brisanet.net.br) (187.19.164.254)
- FQDN: unknown | Session: (HELO ?205.201.149.56?) (205.201.149.56)
- FQDN: unknown | Session: (HELO ?117.218.71.93?) (117.218.71.93)
- FQDN: unknown | Session: (HELO servexchange.huglo-lepage.com) (81.255.80.193)
- FQDN: unknown | Session: (HELO ?119.195.219.132?) (119.195.219.132)
- FQDN: unknown | Session: (HELO ?201.251.91.101?) (201.251.91.101)
- FQDN: unknown | Session: (HELO NCXUAEY) (92.56.214.70)
- FQDN: unknown | Session: (HELO RXORHDM) (24.114.98.125)
- FQDN: unknown | Session: (HELO localhost) (113.184.73.67)
- FQDN: unknown | Session: (HELO aexp.com) (182.229.47.175)
- FQDN: unknown | Session: (HELO localhost) (113.189.106.130)
- // 2. List of 134 IP Addresses (session base/not unique) with Success Relay Spam Malware
- 109.228.72.151
- 92.103.44.112
- 41.221.29.38
- 41.249.67.22
- 105.224.90.36
- 85.132.57.50
- 42.113.40.211
- 90.206.238.255
- 87.238.105.205
- 190.21.163.4
- 86.47.53.42
- 176.42.96.76
- 62.1.46.12
- 79.159.181.79
- 71.6.111.34
- 66.63.69.26
- 1.54.240.239
- 190.190.196.103
- 113.172.105.76
- 14.47.238.211
- 197.155.140.130
- 190.82.83.98
- 78.94.74.96
- 79.109.232.90
- 200.114.223.50
- 83.99.38.205
- 69.129.183.234
- 58.177.202.202
- 210.64.55.245
- 23.25.95.101
- 109.164.236.147
- 105.224.111.249
- 80.7.141.200
- 89.106.110.99
- 14.162.160.131
- 111.248.116.210
- 124.80.45.30
- 123.16.131.243
- 86.171.56.89
- 116.226.24.104
- 179.32.248.54
- 190.210.26.113
- 184.173.82.213
- 50.22.40.226
- 190.21.163.4
- 86.47.53.42
- 176.42.96.76
- 62.1.46.12
- 79.159.181.79
- 71.6.111.34
- 66.63.69.26
- 1.54.240.239
- 109.184.228.134
- 190.190.196.103
- 67.223.13.64
- 109.190.52.100
- 58.177.202.202
- 41.224.167.244
- 96.54.161.154
- 174.127.126.2
- 195.242.232.122
- 68.213.79.187
- 82.127.139.233
- 139.55.242.25
- 113.170.25.97
- 83.61.81.204
- 216.68.130.22
- 220.241.219.141
- 85.43.248.89
- 190.40.214.13
- 179.176.97.77
- 14.165.147.163
- 91.187.92.207
- 173.161.174.69
- 94.90.121.36
- 209.91.139.250
- 98.64.206.175
- 24.249.49.137
- 189.111.113.46
- 115.78.114.177
- 118.200.233.105
- 74.214.235.177
- 165.146.237.85
- 84.92.51.83
- 61.70.220.59
- 213.163.172.193
- 186.67.71.101
- 201.240.6.190
- 76.65.166.54
- 123.241.200.147
- 94.99.76.81
- 218.103.126.124
- 2.90.39.32
- 62.0.111.29
- 213.156.200.225
- 175.136.243.201
- 217.128.77.127
- 181.21.134.155
- 200.31.65.170
- 220.246.68.109
- 177.100.38.254
- 46.27.6.4
- 201.249.204.194
- 195.208.179.19
- 77.86.92.34
- 177.126.207.6
- 97.79.49.98
- 113.189.81.133
- 124.137.227.254
- 180.43.69.69
- 103.9.88.146
- 212.34.12.20
- 95.181.56.74
- 183.100.213.187
- 190.141.53.97
- 92.85.195.181
- 177.1.109.148
- 90.148.30.158
- 46.40.51.79
- 117.5.135.201
- 82.129.222.1
- 113.162.101.78
- 121.130.145.243
- 187.19.164.254
- 205.201.149.56
- 117.218.71.93
- 81.255.80.193
- 119.195.219.132
- 201.251.91.101
- 92.56.214.70
- 24.114.98.125
- 113.184.73.67
- 182.229.47.175
- 113.189.106.130
- // 3. GeoIP per IP address in CSV (SMTP session base/not unique)
- IP Address, City, Region, Country Name, DMA Code
- 109.228.72.151, Podgorica, 00, Montenegro, 0
- 92.103.44.112, Paris, A8, France, 0
- 41.221.29.38, , , Algeria, 0
- 41.249.67.22, , , Morocco, 0
- 105.224.90.36, Cape Town, 11, South Africa, 0
- 85.132.57.50, , , Azerbaijan, 0
- 42.113.40.211, Hanoi, 44, Vietnam, 0
- 90.206.238.255, High Wycombe, B9, United Kingdom, 0
- 87.238.105.205, , , France, 0
- 190.21.163.4, , , Chile, 0
- 86.47.53.42, Dublin, 07, Ireland, 0
- 176.42.96.76, Istanbul, 34, Turkey, 0
- 62.1.46.12, , , Greece, 0
- 79.159.181.79, Malgrat De Mar, 56, Spain, 0
- 71.6.111.34, Modesto, CA, United States, 862
- 66.63.69.26, Biddeford, ME, United States, 500
- 1.54.240.239, Hanoi, 44, Vietnam, 0
- 190.190.196.103, Buenos Aires, 07, Argentina, 0
- 113.172.105.76, Hanoi, 44, Vietnam, 0
- 14.47.238.211, , , Korea Republic of, 0
- 197.155.140.130, , , Mali, 0
- 190.82.83.98, Santiago, 12, Chile, 0
- 78.94.74.96, Frankfurt Am Main, 05, Germany, 0
- 79.109.232.90, Inca, 07, Spain, 0
- 200.114.223.50, , , Argentina, 0
- 83.99.38.205, Dippach, 03, Luxembourg, 0
- 69.129.183.234, Appleton, WI, United States, 658
- 58.177.202.202, Central District, 00, Hong Kong, 0
- 210.64.55.245, Taipei, 03, Taiwan, 0
- 23.25.95.101, Pittsburgh, PA, United States, 508
- 109.164.236.147, Dudingen, 06, Switzerland, 0
- 105.224.111.249, Johannesburg, 06, South Africa, 0
- 80.7.141.200, , , United Kingdom, 0
- 89.106.110.99, , , Bulgaria, 0
- 14.162.160.131, Hanoi, 44, Vietnam, 0
- 111.248.116.210, , , Taiwan, 0
- 124.80.45.30, , , Korea Republic of, 0
- 123.16.131.243, Hanoi, 44, Vietnam, 0
- 86.171.56.89, , , United Kingdom, 0
- 116.226.24.104, Shanghai, 23, China, 0
- 179.32.248.54, Bogotá, 34, Colombia, 0
- 190.210.26.113, Buenos Aires, 07, Argentina, 0
- 184.173.82.213, Houston, TX, United States, 618
- 50.22.40.226, Dallas, TX, United States, 623
- 190.21.163.4, , , Chile, 0
- 86.47.53.42, Dublin, 07, Ireland, 0
- 176.42.96.76, Istanbul, 34, Turkey, 0
- 62.1.46.12, , , Greece, 0
- 79.159.181.79, Malgrat De Mar, 56, Spain, 0
- 71.6.111.34, Modesto, CA, United States, 862
- 66.63.69.26, Biddeford, ME, United States, 500
- 1.54.240.239, Hanoi, 44, Vietnam, 0
- 109.184.228.134, Nizhniy Novgorod, 51, Russian Federation, 0
- 190.190.196.103, Buenos Aires, 07, Argentina, 0
- 67.223.13.64, Bristol, TN, United States, 531
- 109.190.52.100, , , France, 0
- 58.177.202.202, Central District, 00, Hong Kong, 0
- 41.224.167.244, , , Tunisia, 0
- 96.54.161.154, , , Canada, 0
- 174.127.126.2, Providence, UT, United States, 770
- 195.242.232.122, Poznan, 86, Poland, 0
- 68.213.79.187, Jacksonville, FL, United States, 561
- 82.127.139.233, , , France, 0
- 139.55.242.25, Yutan, NE, United States, 652
- 113.170.25.97, Hanoi, 44, Vietnam, 0
- 83.61.81.204, , , Spain, 0
- 216.68.130.22, , , United States, 0
- 220.241.219.141, , , Hong Kong, 0
- 85.43.248.89, , , Italy, 0
- 190.40.214.13, Lima, 15, Peru, 0
- 179.176.97.77, , , Brazil, 0
- 14.165.147.163, Hanoi, 44, Vietnam, 0
- 91.187.92.207, Andorra La Vella, 07, Andorra, 0
- 173.161.174.69, Philadelphia, PA, United States, 504
- 94.90.121.36, Milan, 09, Italy, 0
- 209.91.139.250, Sudbury, ON, Canada, 0
- 98.64.206.175, Miami, FL, United States, 528
- 24.249.49.137, Hutchinson, KS, United States, 678
- 189.111.113.46, , , Brazil, 0
- 115.78.114.177, Ho Chi Minh City, 20, Vietnam, 0
- 118.200.233.105, Singapore, 00, Singapore, 0
- 74.214.235.177, Price, UT, United States, 770
- 165.146.237.85, , , South Africa, 0
- 84.92.51.83, , , United Kingdom, 0
- 61.70.220.59, , , Taiwan, 0
- 213.163.172.193, Courbevoie, A8, France, 0
- 186.67.71.101, Santiago, 12, Chile, 0
- 201.240.6.190, , , Peru, 0
- 76.65.166.54, , , Canada, 0
- 123.241.200.147, Taipei, 03, Taiwan, 0
- 94.99.76.81, Riyadh, 10, Saudi Arabia, 0
- 218.103.126.124, Central District, 00, Hong Kong, 0
- 2.90.39.32, Dammam, 06, Saudi Arabia, 0
- 62.0.111.29, , , Israel, 0
- 213.156.200.225, Samara, 65, Russian Federation, 0
- 175.136.243.201, Kuala Lumpur, 14, Malaysia, 0
- 217.128.77.127, , , France, 0
- 181.21.134.155, , , Argentina, 0
- 200.31.65.170, Bogotá, 34, Colombia, 0
- 220.246.68.109, Kwai Chung, 00, Hong Kong, 0
- 177.100.38.254, Brusque, 26, Brazil, 0
- 46.27.6.4, , , Spain, 0
- 201.249.204.194, , , Venezuela, 0
- 195.208.179.19, , , Russian Federation, 0
- 77.86.92.34, , , United Kingdom, 0
- 177.126.207.6, , , Brazil, 0
- 97.79.49.98, Bradenton, FL, United States, 539
- 113.189.81.133, Hanoi, 44, Vietnam, 0
- 124.137.227.254, , , Korea Republic of, 0
- 180.43.69.69, Osaka, , Japan, 0
- 103.9.88.146, Ulaanbaatar, 20, Mongolia, 0
- 212.34.12.20, Amman, 02, Jordan, 0
- 95.181.56.74, Kemerovo, 29, Russian Federation, 0
- 183.100.213.187, , , Korea Republic of, 0
- 190.141.53.97, Pueblo Nuevo, 02, Panama, 0
- 92.85.195.181, Chichis, 15, Romania, 0
- 177.1.109.148, , , Brazil, 0
- 90.148.30.158, , , Saudi Arabia, 0
- 46.40.51.79, Backa Topola, 00, Serbia, 0
- 117.5.135.201, Hanoi, 44, Vietnam, 0
- 82.129.222.1, , , Egypt, 0
- 113.162.101.78, Ninh Bình, 59, Vietnam, 0
- 121.130.145.243, , , Korea Republic of, 0
- 187.19.164.254, , , Brazil, 0
- 205.201.149.56, Tampa, FL, United States, 539
- 117.218.71.93, Kanchipuram, India, AS, 0
- 81.255.80.193, , France, EU, 0
- 119.195.219.132, , Korea Republic of, AS, 0
- 201.251.91.101, , Argentina, SA, 0
- 92.56.214.70, , Spain, EU, 0
- 24.114.98.125, Montréal, Canada, NA, 0
- 113.184.73.67, Dong Nai, Vietnam, AS, 0
- 182.229.47.175, Seoul, Korea Republic of, AS, 0
- 113.189.106.130, Hanoi, Vietnam, AS, 0
- // 4. Reverse IP (session base/not unique) , ASN, Hoster, Network Prefix, ISP Name
- 109.228.72.151|adsl-109-228-l2199.crnagora.net.|8585 | 109.228.64.0/18 | INTERNET | ME | TELEKOM.ME | CRNOGORSKI TELEKOM A.D.PODGORICA
- 92.103.44.112|reverse.completel.net.|12670 | 92.103.0.0/18 | AS | FR | COMPLETEL.NET | MONT DE MARSAN
- 41.221.29.38||36947 | 41.221.16.0/20 | ALGTEL | DZ | ALGERIETELECOM.DZ | TELECOM ALGERIA
- 41.249.67.22||6713 | 41.249.64.0/21 | IAM | MA | MAROCTELECOM.COM | OFFICE NATIONAL DES POSTES ET TELECOMMUNICATIONS ONPT (MAROC TELECOM)/IAM
- 105.224.90.36|ti-224-90-36.telkomadsl.co.za.|37457 | 105.224.0.0/16 | Telkom | ZA | TELKOM-IPNET.CO.ZA | TELKOM SA LTD.
- 85.132.57.50||29049 | 85.132.57.0/24 | DELTA-TELECOM | AZ | DELTA-TELECOM.NET | DELTA TELECOM LTD
- 42.113.40.211||18403 | 42.113.32.0/20 | FPT-AS | VN | FPT.COM.VN | FPT TELECOM COMPANY
- 90.206.238.255|5aceeeff.bb.sky.com.|5607 | 90.192.0.0/11 | BSKYB-BROADBAND | GB | EASYNET.COM | EASYNET LTD
- 87.238.105.205||25186 | 87.238.105.0/24 | TRANSIT-VPN | FR | SONEMA.COM | SONEMA
- 190.21.163.4|190-21-163-4.baf.movistar.cl.|7418 | 190.21.0.0/16 | TELEFモNICA | CL | TELEFONICACHILE.CL | TELEFONICA CHILE S.A.
- 86.47.53.42|mail.gcples.ie.|5466 | 86.40.0.0/13 | EIRCOM | IE | EIRCOM.NET | EIRCOM
- 176.42.96.76|host-176-42-96-76.reverse.superonline.net.|34984 | 176.42.96.0/20 | TELLCOM | TR | SUPERONLINE.NET | TELLCOM BUR-GANT-KOCA FIBER DYNAMIC
- 62.1.46.12|klntrm-fld-01.forthnet.gr.|1241 | 62.1.0.0/16 | FORTHNET | GR | FORTHNET.GR | KOLONOS DATACENTER
- 79.159.181.79|79.Red-79-159-181.staticIP.rima-tde.net.|3352 | 79.159.0.0/16 | TELEFONICA_DE_ESPANA | ES | TELEFONICA.COM | TELEFONICA DE ESPANA SAU
- 71.6.111.34|owa.themanorassn.com.|14265 | 71.6.96.0/20 | US-TELEPACIFIC | US | TELEPACIFIC.NET | THE MANOR ASSOCIATION
- 66.63.69.26|bb-66-63-69-26.static.gwi.net.|5760 | 66.63.64.0/20 | BIDDEFORD1 | US | GWI.NET | GREAT WORKS INTERNET
- 1.54.240.239||18403 | 1.54.240.0/20 | FPT-AS | VN | FPT.COM.VN | FPT TELECOM COMPANY
- 190.190.196.103|103-196-190-190.cab.prima.net.ar.|10481 | 190.190.192.0/19 | Prima | AR | PRIMA.COM.AR | PRIMA S.A.
- 113.172.105.76|localhost.|45899 | 113.172.96.0/19 | VNPT-AS | VN | VINAPHONE.COM.VN | 3G + GPRS VINAPHONE
- 14.47.238.211||4766 | 14.40.0.0/13 | KIXS-AS | KR | KT.COM | KOREA TELECOM
- 197.155.140.130||30985 | 197.155.128.0/18 | IKATELNET,M | ML | IKATELNET.NET | ORANGE MALI SA
- 190.82.83.98|190-82-83-98.static.tie.cl.|15311 | 190.82.64.0/19 | Telefonica | CL | - | IVERSIONES ALCA LTDA.
- 78.94.74.96|ip-78-94-74-96.unitymediagroup.de.|20825 | 78.94.0.0/17 | UNITYMEDIA | DE | UNITYMEDIA.DE | UNITYMEDIA NRW GMBH
- 79.109.232.90|79.109.232.90.dyn.user.ono.com.|6739 | 79.109.128.0/17 | ONO | ES | ONO.COM | RANGOS CABLEMODEMS
- 200.114.223.50|50-223-114-200.fibertel.com.ar.|10318 | 200.114.192.0/19 | CABLEVISION | AR | CABLEVISION.COM.AR | CABLEVISION S.A.
- 83.99.38.205|ip-83-99-38-205.dyn.luxdsl.pt.lu.|6661 | 83.99.0.0/17 | EPT | LU | PT.LU | ENTREPRISE DES POSTES ET TELECOMMUNICATIONS
- 69.129.183.234|h69-129-183-234.applwi.dedicated.static.tds.net.|4181 | 69.128.0.0/14 | TDS-AS | US | TDS.NET | INOMETA AKL FLEXO SYSTEMS
- 58.177.202.202|058177202202.ctinets.com.|9269 | 58.177.192.0/18 | HKBN-AS | HK | CTINETS.COM | SAN MIGUEL BREWERY HK LTD - CITIMARK PLAZA
- 210.64.55.245||4780 | 210.64.32.0/19 | SEEDNET | TW | DIGITALUNITED.COM | DIGITAL UNITED INC.
- 23.25.95.101|23-25-95-101-static.hfc.comcastbusiness.net.|7922 | 23.24.0.0/15 | COMCAST-7922 | US | COMCASTBUSINESS.NET | COMCAST BUSINESS COMMUNICATIONS LLC
- 109.164.236.147|cust.static.109-164-236-147.swisscomdata.ch.|3303 | 109.164.192.0/18 | SWISSCOM | CH | SWISSCOM.CH | SWISSCOM (SCHWEIZ) AG
- 105.224.111.249|ti-224-111-249.telkomadsl.co.za.|37457 | 105.224.0.0/16 | Telkom | ZA | TELKOM-IPNET.CO.ZA | TELKOM SA LTD.
- 80.7.141.200|cpc13-rdng22-2-0-cust455.15-3.cable.virginm.net.|5089 | 80.6.0.0/15 | NTL | GB | VIRGINMEDIA.COM | NTL INFRASTRUCTURE - OXFORD
- 89.106.110.99|vidin-110-99.vidaoptics.com.|42248 | 89.106.110.0/23 | VIDA | BG | VIDAOPTICS.COM | VIDA OPTICS TVV LTD.
- 14.162.160.131||45899 | 14.162.160.0/19 | VNPT-AS | VN | VNPT.COM.VN | VIETNAM POST AND TELECOM CORPORATION
- 111.248.116.210|111-248-116-210.dynamic.hinet.net.|3462 | 111.248.0.0/16 | HINET | TW | HINET.NET | DATA COMMUNICATION BUSINESS GROUP
- 124.80.45.30||17849 | 124.80.32.0/19 | GINAMHANVIT-AS | KR | - | HANVIT GINAM BROADCATING CO.
- 123.16.131.243|localhost.|45899 | 123.16.128.0/18 | VNPT-AS | VN | VNPT.COM.VN | VIETNAM POSTS AND TELECOMMUNICATIONS
- 86.171.56.89|host86-171-56-89.range86-171.btcentralplus.com.|2856 | 86.128.0.0/10 | BT-UK | GB | BT.COM | BT PUBLIC INTERNET SERVICE
- 116.226.24.104||4812 | 116.226.0.0/16 | CHINANET-SH | CN | CHINATELECOM.COM.CN | CHINANET SHANGHAI PROVINCE NETWORK
- 179.32.248.54||3816 | 179.32.240.0/20 | COLOMBIA | CO | TELEFONICA.CO | COLOMBIA TELECOMUNICACIONES S.A. ESP
- 190.210.26.113|customer-static-210-26-113.iplannetworks.net.|16814 | 190.210.24.0/22 | NSS | AR | NSS-SA.CO.ZA | NSS S.A.
- 184.173.82.213|energized.webserversystems.com.|36351 | 184.173.64.0/18 | SOFTLAYER | US | SOFTLAYER.COM | ABUSE ADMIN
- 50.22.40.226|sciolli.webserversystems.com.|36351 | 50.22.0.0/18 | SOFTLAYER | US | SOFTLAYER.COM | ABUSE ADMIN
- 190.21.163.4|190-21-163-4.baf.movistar.cl.|7418 | 190.21.0.0/16 | TELEFモNICA | CL | TELEFONICACHILE.CL | TELEFONICA CHILE S.A.
- 86.47.53.42|mail.gcples.ie.|5466 | 86.40.0.0/13 | EIRCOM | IE | EIRCOM.NET | EIRCOM
- 176.42.96.76|host-176-42-96-76.reverse.superonline.net.|34984 | 176.42.96.0/20 | TELLCOM | TR | SUPERONLINE.NET | TELLCOM BUR-GANT-KOCA FIBER DYNAMIC
- 62.1.46.12|klntrm-fld-01.forthnet.gr.|1241 | 62.1.0.0/16 | FORTHNET | GR | FORTHNET.GR | KOLONOS DATACENTER
- 79.159.181.79|79.Red-79-159-181.staticIP.rima-tde.net.|3352 | 79.159.0.0/16 | TELEFONICA_DE_ESPANA | ES | TELEFONICA.COM | TELEFONICA DE ESPANA SAU
- 71.6.111.34|owa.themanorassn.com.|14265 | 71.6.96.0/20 | US-TELEPACIFIC | US | TELEPACIFIC.NET | THE MANOR ASSOCIATION
- 66.63.69.26|bb-66-63-69-26.static.gwi.net.|5760 | 66.63.64.0/20 | BIDDEFORD1 | US | GWI.NET | GREAT WORKS INTERNET
- 1.54.240.239||18403 | 1.54.240.0/20 | FPT-AS | VN | FPT.COM.VN | FPT TELECOM COMPANY
- 109.184.228.134|109-184-228-134.dynamic.mts-nn.ru.|25405 | 109.184.0.0/16 | NMTS | RU | MTS-NN.RU | PPPOE CLIENTS TERMINATIONS IN
- 190.190.196.103|103-196-190-190.cab.prima.net.ar.|10481 | 190.190.192.0/19 | Prima | AR | PRIMA.COM.AR | PRIMA S.A.
- 67.223.13.64|fttu-67-223-13-64.btes.tv.|22051 | 67.223.13.0/24 | BTES-AS | US | BTES.TV | BRISTOL TENNESSEE ESSENTIAL SERVICES
- 109.190.52.100|100-52-190-109.dsl.ovh.fr.|35540 | 109.190.0.0/16 | OVH | FR | OVH.COM | OVH SAS
- 58.177.202.202|058177202202.ctinets.com.|9269 | 58.177.192.0/18 | HKBN-AS | HK | CTINETS.COM | SAN MIGUEL BREWERY HK LTD - CITIMARK PLAZA
- 41.224.167.244||37492 | 41.224.128.0/18 | ORANGE | TN | ATI.TN | AGENCE TUNISIENNE INTERNET - ATI
- 96.54.161.154||6327 | 96.54.0.0/16 | SHAW | CA | SHAWCABLE.NET | SHAW COMMUNICATIONS INC.
- 174.127.126.2|phnx.meatarsh.biz.|32780 | 174.127.120.0/21 | HOSTINGSERVICES-INC | US | MIDPHASE.COM | HOSTING SERVICES INC.
- 195.242.232.122|host-195.242.232.122.c3.net.pl.|50606 | 195.242.232.0/22 | PL-FUZ | PL | C3.NET.PL | DARIUSZ JAWORSKI FIRMA C3
- 68.213.79.187|adsl-068-213-079-187.sip.jax.bellsouth.net.|6389 | 68.213.64.0/20 | BELLSOUTH-NET-BLK | US | BELLSOUTH.NET | BELLSOUTH.NET INC.
- 82.127.139.233|LPuteaux-656-01-08-233.w82-127.abo.wanadoo.fr.|3215 | 82.127.0.0/16 | AS3215 | FR | ORANGE.COM | ORANGE S.A.
- 139.55.242.25|h25.242.55.139.static.ip.windstream.net.|7029 | 139.55.240.0/22 | WINDSTREAM | US | WINDSTREAM.NET | WINDSTREAM COMMUNICATIONS INC
- 113.170.25.97|localhost.|45899 | 113.170.0.0/19 | VNPT-AS | VN | VINAPHONE.COM.VN | 3G + GPRS VINAPHONE
- 83.61.81.204|204.Red-83-61-81.dynamicIP.rima-tde.net.|3352 | 83.61.0.0/16 | TELEFONICA_DE_ESPANA | ES | TELEFONICA.COM | TELEFONICA DE ESPANA SAU
- 216.68.130.22|Vogt-Warehouse-SharonRd.STATIC.fuse.net.|6181 | 216.68.0.0/16 | FUSE-NET | US | FUSE.NET | FUSE INTERNET ACCESS
- 220.241.219.141||4515 | 220.241.192.0/19 | ERX | HK | - | AKIN PROFESSIONALS LTD
- 85.43.248.89|host89-248-static.43-85-b.business.telecomitalia.it.|3269 | 85.43.0.0/16 | ASN | IT | TELECOMITALIA.IT | TELECOM ITALIA SPA
- 190.40.214.13||6147 | 190.40.0.0/16 | Telefonica | PE | SPEEDY.NET.PE | TDPERX5 LACNIC
- 179.176.97.77|179.176.97.77.dynamic.adsl.gvt.net.br.|18881 | 179.176.96.0/21 | Global | BR | GVT.NET.BR | GLOBAL VILLAGE TELECOM
- 14.165.147.163||45899 | 14.165.128.0/19 | VNPT-AS | VN | VNPT.COM.VN | VIETNAM POST AND TELECOM CORPORATION
- 91.187.92.207|m91-187-92-207.andorpac.ad.|6752 | 91.187.92.0/22 | ANDORRA | AD | ANDORPAC.AD | ANDORRA TELECOM
- 173.161.174.69|173-161-174-69-Philadelphia.hfc.comcastbusiness.net.|7922 | 173.160.0.0/13 | COMCAST-7922 | US | COMCASTBUSINESS.NET | COMCAST BUSINESS COMMUNICATIONS LLC
- 94.90.121.36|host36-121-static.90-94-b.business.telecomitalia.it.|3269 | 94.90.0.0/15 | ASN | IT | TELECOMITALIA.IT | AGENZIA STUDI E SERVIZI PER L'OCCUPAZIONE S.R.L.
- 209.91.139.250|static-pppoe-209-91-139-250.vianet.ca.|5690 | 209.91.128.0/18 | VIANET-NO | CA | VIANET.CA | VIANET
- 98.64.206.175|adsl-98-64-206-175.mia.bellsouth.net.|6389 | 98.64.0.0/16 | BELLSOUTH-NET-BLK | US | BELLSOUTH.NET | BELLSOUTH.NET INC.
- 24.249.49.137|wsip-24-249-49-137.ks.ks.cox.net.|22773 | 24.249.48.0/20 | ASN-CXA-ALL-CCI-2277 | US | COX.COM | COX COMMUNICATIONS
- 189.111.113.46|189-111-113-46.dsl.telesp.net.br.|27699 | 189.110.0.0/15 | TELEFヤNICA | BR | TELEFONICA.COM.BR | TELEFONICA BRASIL S.A
- 115.78.114.177|adsl.viettel.vn.|7552 | 115.78.112.0/20 | VIETEL-AS | VN | VIETTEL.VN | DAI IP SU DUNG CHO MANG KHACH HANG FTTH O HCMC
- 118.200.233.105|bb118-200-233-105.singnet.com.sg.|9506 | 118.200.0.0/16 | MAGIX-SG | SG | SINGNET.COM.SG | SINGNET PTE LTD
- 74.214.235.177|price-a2-occam-dsl-74-214-235-177.dynamic.etv.net.|36728 | 74.214.224.0/19 | EMERYTELCOM | US | EMERYTELCOM.COM | EMERY TELCOM
- 165.146.237.85|dsl-165-146-237-85.telkomadsl.co.za.|5713 | 165.146.0.0/16 | SAIX | ZA | TELKOM.CO.ZA | TELKOM SA LIMITED
- 84.92.51.83|pp01513573197.pndsl.co.uk.|6871 | 84.92.0.0/15 | PLUSNET | GB | PLUS.NET | PLUSNET PLC.
- 61.70.220.59|host-61-70-220-59.static.kbtelecom.net.|9416 | 61.70.128.0/17 | MULTIMEDIA-AS | TW | KBTELECOM.NET | HOSHIN MULTIMEDIA CENTER INC
- 213.163.172.193||20917 | 213.163.160.0/19 | KHEOPS-AUTONOMOUS | FR | KHEOPS.ORG | KHEOPS ORGANISATION
- 186.67.71.101||6471 | 186.67.0.0/17 | ENTEL | CL | ENTEL.CL | ENTEL CHILE S.A.
- 201.240.6.190|client-201.240.6.190.speedy.net.pe.|6147 | 201.240.0.0/18 | Telefonica | PE | SPEEDY.NET.PE | TDPERX9 LACNIC
- 76.65.166.54|bas1-montreal46-1279370806.dsl.bell.ca.|577 | 76.65.0.0/16 | BACOM | CA | BELL.CA | SYMPATICO HSE
- 123.241.200.147|123-241-200-147.nty.dynamic.tbcnet.net.tw.|4780 | 123.241.200.0/22 | SEEDNET | TW | TBC.US | TBC
- 94.99.76.81||25019 | 94.99.64.0/18 | SAUDINETSTC | SA | STC.COM.SA | SAUDINET SAUDI TELECOM COMPANY
- 218.103.126.124|124.126.103.218.static.netvigator.com.|4760 | 218.103.64.0/18 | HKTIMS | HK | PCCW.COM | PCCW LIMITED
- 2.90.39.32||25019 | 2.90.0.0/18 | SAUDINETSTC | SA | STC.COM.SA | SAUDINET SAUDI TELECOM COMPANY
- 62.0.111.29|TLV62-0-111-29.bb.netvision.net.il.|1680 | 62.0.0.0/16 | NV | IL | NETVISION.NET.IL | NV FIX IP
- 213.156.200.225|mail.haulmont.com.|13227 | 213.156.192.0/19 | KRAFT | RU | KRAFT-S.RU | KRAFT-S JSC.
- 175.136.243.201||4788 | 175.136.0.0/16 | TMNET-AS | MY | TM.NET.MY | TMNET
- 217.128.77.127|LMontsouris-656-01-144-127.w217-128.abo.wanadoo.fr.|3215 | 217.128.0.0/16 | AS3215 | FR | ORANGE.COM | ORANGE S.A.
- 181.21.134.155|181-21-134-155.speedy.com.ar.|22927 | 181.20.0.0/14 | Telefonica | AR | TELEFONICA.COM.AR | TELEFONICA DE ARGENTINA
- 200.31.65.170||27975 | 200.31.65.0/24 | SYNAPSIS | CO | - | CITIBANK COLOMBIA
- 220.246.68.109|109.68.246.220.static.netvigator.com.|4760 | 220.246.64.0/19 | HKTIMS | HK | PCCW.COM | PCCW LIMITED
- 177.100.38.254|177-100-38-254.viacaboip.com.br.|28281 | 177.100.38.0/23 | VCB | BR | VIACABOIP.COM.BR | VCB PROVEDOR DE ACESSO LTDA
- 46.27.6.4|static-4-6-27-46.ipcom.comunitel.net.|12357 | 46.24.0.0/14 | COMUNITEL | ES | VODAFONE.ES | VODAFONE ESPANA S.A.U.
- 201.249.204.194|201-249-204-194.estatic.cantv.net.|8048 | 201.249.0.0/16 | CANTV | VE | CANTV.NET | CANTV SERVICIOS VENEZUELA
- 195.208.179.19||56952 | 195.208.179.0/24 | DATATEH | RU | - | OOO DATATEH
- 77.86.92.34|adsl-77-86-92-34.karoo.kcom.com.|12390 | 77.86.0.0/17 | KINGSTON-UK | GB | KCOM.COM | KAROO ADSL
- 177.126.207.6|6.207.126.177.cpnet.com.br.|28224 | 177.126.192.0/20 | CPNET | BR | CPNET.COM.BR | CAPINZAL NET LTDA ME
- 97.79.49.98|rrcs-97-79-49-98.se.biz.rr.com.|33363 | 97.79.0.0/17 | BHN-TAMPA | US | TWCABLE.COM | TIME WARNER CABLE INTERNET LLC
- 113.189.81.133|localhost.|45899 | 113.189.64.0/19 | VNPT-AS | VN | VNPT.COM.VN | IP POOL ADSL TP HCM
- 124.137.227.254||18302 | 124.136.0.0/14 | SKG_NW-AS | KR | SKNETWORKS.COM | SK NETWORKS CO. LTD
- 180.43.69.69|p29069-ipngnfx01osakakita.osaka.ocn.ne.jp.|4713 | 180.0.0.0/10 | OCN | JP | OCN.NE.JP | OPEN COMPUTER NETWORK
- 103.9.88.146||58598 | 103.9.88.0/22 | COMTEL-NET | MN | COMTEL.MN | MONGOLIA
- 212.34.12.20||65536 | 212.34.12.0/24 | - | JO | JT.NET.JO | JORDAN TELECOMMUNICATIONS COMPANY
- 95.181.56.74|95-181-56-74.goodline.info.|39927 | 95.181.0.0/17 | ELIGHT | RU | ELTC.RU | E-LIGHT-TELECOM
- 183.100.213.187||4766 | 183.96.0.0/13 | KIXS-AS | KR | KT.COM | KOREA TELECOM
- 190.141.53.97|cpe-54e6fcc1dd55.cpe.cableonda.net.|18809 | 190.141.52.0/22 | Cable | PA | CABLEONDA.NET | CABLE ONDA
- 92.85.195.181||9050 | 92.85.0.0/16 | RTD | RO | ROMTELECOM.RO | ROMTELECOM S.A.
- 177.1.109.148|177-1-109-148.gnace702.dsl.brasiltelecom.net.br.|8167 | 177.1.64.0/18 | Brasil | BR | BRASILTELECOM.NET.BR | BRASIL TELECOM S/A - FILIAL DISTRITO FEDERAL
- 90.148.30.158|90.148.30.158.dynamic.saudi.net.sa.|25019 | 90.148.0.0/18 | SAUDINETSTC | SA | STC.COM.SA | SAUDINET SAUDI TELECOM COMPANY
- 46.40.51.79|79-51-40-46.dynamic.stcable.net.|41897 | 46.40.48.0/21 | SAT-TRAKT | RS | SATTRAKT.COM | SAT-TRAKT D.O.O.
- 117.5.135.201|localhost.|7552 | 117.5.128.0/20 | VIETEL-AS | VN | VIETTEL.VN | DAI IP CHO DICH VU ADSL TAI HCM
- 82.129.222.1||24835 | 82.129.192.0/19 | RAYA | EG | RAYACORP.COM | RAYA TELECOM
- 113.162.101.78||45899 | 113.162.96.0/19 | VNPT-AS | VN | VDC.VN | IP ADSL STATIC + CABLE TV VOIP VPN
- 121.130.145.243||4766 | 121.128.0.0/13 | KIXS-AS | KR | KT.COM | KOREA TELECOM
- 187.19.164.254|187-19-164-254-temp.static.brisanet.net.br.|28126 | 187.19.160.0/21 | BRISANET | BR | BRISANET.NET.BR | BRISANET SERVICOS DE TELECOMUNICACOES LTDA
- 205.201.149.56||21889 | 205.201.149.0/24 | RAPIDSYSTEMS | US | RAPIDSYS.COM | RAPID SYSTEMS INC.
- 117.218.71.93||9829 | 117.218.64.0/20 | BSNL | IN | BSNL.IN | BROADBAND MULTIPLAY PROJECT
- 81.255.80.193|servexchange.huglo-lepage.com.| 3215 | 81.255.0.0/16 | AS3215 | FR | ORANGE.COM | ORANGE S.A.
- 119.195.219.132|| 4766 | 119.192.0.0/13 | KIXS-AS | KR | KT.COM | KOREA TELECOM
- 201.251.91.101|| 22927 | 201.251.64.0/18 | Telefonica | AR | TELEFONICA.COM.AR | TELEFONICA DE ARGENTINA
- 92.56.214.70|| 12479 | 92.56.208.0/21 | UNI2 | ES | ORANGE.ES | FRANCE TELECOM ESPANA S.A
- 24.114.98.125|| 812 | 24.114.0.0/16 | ROGERS-CABLE | CA | ROGERS.COM | ROGERS CABLE COMMUNICATIONS INC.
- 113.184.73.67|localhost.| 45899 | 113.184.64.0/19 | VNPT-AS | VN | VNPT.COM.VN | IP POOL ADSL DONG NAI
- 182.229.47.175|| 17858 | 182.228.0.0/14 | KRNIC-ASBLOCK | KR | POWERCOMM.COM | LG POWERCOMM
- 113.189.106.130|localhost.| 45899 | 113.189.96.0/19 | VNPT-AS | VN | VNPT.COM.VN | IP POOL ADSL TP HCM
- // 5. Spambot IP UP Status per 2014-05-02 16:45 JST
- // 134 IP addresses (45 hosts up) scanned in 51.05 seconds
- 41.221.29.38
- 85.132.57.50
- mail.gcples.ie (86.47.53.42)
- 197.155.140.130
- 190-82-83-98.static.tie.cl (190.82.83.98)
- ip-83-99-38-205.dyn.luxdsl.pt.lu (83.99.38.205)
- h69-129-183-234.applwi.dedicated.static.tds.net (69.129.183.234)
- 058177202202.ctinets.com (58.177.202.202)
- 210.64.55.245
- 14.162.160.131
- 111-248-116-210.dynamic.hinet.net (111.248.116.210)
- customer-static-210-26-113.iplannetworks.net (190.210.26.113)
- energized.webserversystems.com (184.173.82.213)
- sciolli.webserversystems.com (50.22.40.226)
- mail.gcples.ie (86.47.53.42)
- 058177202202.ctinets.com (58.177.202.202)
- host-195.242.232.122.c3.net.pl (195.242.232.122)
- h25.242.55.139.static.ip.windstream.net (139.55.242.25)
- 190.40.214.13
- m91-187-92-207.andorpac.ad (91.187.92.207)
- 173-161-174-69-Philadelphia.hfc.comcastbusiness.net (173.161.174.69)
- host36-121-static.90-94-b.business.telecomitalia.it (94.90.121.36)
- adsl-98-64-206-175.mia.bellsouth.net (98.64.206.175)
- bb118-200-233-105.singnet.com.sg (118.200.233.105)
- price-a2-occam-dsl-74-214-235-177.dynamic.etv.net (74.214.235.177)
- dsl-165-146-237-85.telkomadsl.co.za (165.146.237.85)
- 213.163.172.193
- client-201.240.6.190.speedy.net.pe (201.240.6.190)
- 124.126.103.218.static.netvigator.com (218.103.126.124)
- mail.haulmont.com (213.156.200.225)
- 175.136.243.201
- 181-21-134-155.speedy.com.ar (181.21.134.155)
- 200.31.65.170
- 201-249-204-194.estatic.cantv.net (201.249.204.194)
- 6.207.126.177.cpnet.com.br (177.126.207.6)
- 124.137.227.254
- 103.9.88.146
- 177-1-109-148.gnace702.dsl.brasiltelecom.net.br (177.1.109.148)
- 82.129.222.1
- 121.130.145.243
- 119.195.219.132
- 201.251.91.101
- localhost (113.184.73.67)
- 182.229.47.175
- localhost (113.189.106.130)
- // 6. Ten (10) spambot IPs with more than one attempt to send malware spam campaign
- // Format: IP Address, City, Country Name, Continent, ASN, PREFIX, AS Name, CountryCode, ISP, ISP Name
- 66.63.69.26, Biddeford, United States, NA, 5760 , 66.63.64.0/20 , BIDDEFORD1 , US , GWI.NET , GREAT WORKS INTERNET
- 71.6.111.34, Modesto, United States, NA, 14265 , 71.6.96.0/20 , US-TELEPACIFIC , US , TELEPACIFIC.NET , THE MANOR ASSOCIATION
- 1.54.240.239, Hanoi, Vietnam, 18403 , 1.54.240.0/20 , FPT-AS , VN , FPT.COM.VN , FPT TELECOM COMPANY
- 176.42.96.76, Istanbul, Turkey, EU, 34984 , 176.42.96.0/20 , TELLCOM , TR , SUPERONLINE.NET , TELLCOM BUR-GANT-KOCA FIBER DYNAMIC
- 190.190.196.103, Buenos Aires, Argentina, SA, 10481 , 190.190.192.0/19 , Prima , AR , PRIMA.COM.AR , PRIMA S.A.
- 190.21.163.4, , Chile, SA, 7418 , 190.21.0.0/16 , TELEFONICA , CL , TELEFONICACHILE.CL , TELEFONICA CHILE S.A.
- 58.177.202.202, Central District, Hong Kong, AS, 9269 , 58.177.192.0/18 , HKBN-AS , HK , CTINETS.COM , SAN MIGUEL BREWERY HK LTD - CITIMARK PLAZA
- 62.1.46.12, , Greece, EU, 1241 , 62.1.0.0/16 , FORTHNET , GR , FORTHNET.GR , KOLONOS DATACENTER
- 79.159.181.79, Malgrat De Mar, Spain, EU, 3352 , 79.159.0.0/16 , TELEFONICA_DE_ESPANA , ES , TELEFONICA.COM , TELEFONICA DE ESPANA SAU
- 86.47.53.42, Dublin, Ireland, EU, 5466 , 86.40.0.0/13 , EIRCOM , IE , EIRCOM.NET , EIRCOM
- ---
- #MalwareMustDie!
- Report compiled by @unixfreaxjp
- *) Tools used will not published openly for security purpose
- *) Last Updated: Fri May 2 17:04:58 JST 2014
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement