API tools faq
paste
Advertisement
MalwareMustDie

#MMD #UPDATE: Additional Kelihos Payload URL 100 domains

MalwareMustDie
Aug 2nd, 2013
1,733
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
PHP 38.20 KB | None | 0 0
raw download clone embed print report
  1. // Kelihos Additional Alive 100 domain monitor
  2. // The alive IP in domains (85/100),
  3. // previously checked on July 25th was 25/100
  4. // report followed properly, no action seems taken.
  5. // #MalwareMustDie
  6. // @unixfreaxjp | Sat Aug  3 03:31:53 JST 2013
  7.  
  8. // ACTIVATED BY THESE DNS VIA REGGI.RU
  9.  
  10. server:       ns1.karozgi.com.
  11. nserver:       ns2.karozgi.com.
  12. nserver:       ns3.karozgi.com.
  13. nserver:       ns4.karozgi.com.
  14. nserver:       ns5.karozgi.com.
  15. nserver:       ns6.karozgi.com.
  16. state:         REGISTERED, DELEGATED, UNVERIFIED
  17. person:        Private Person
  18. registrar:     REGGI-REG-RIPN
  19. admin-contact: https://panel.reggi.ru/user/whois/webmail/
  20. created:       2013.07.22
  21. paid-till:     2014.07.22
  22. free-date:     2014.08.22
  23. source:        TCI
  24. Last updated on 2013.08.02 22:51:37 MSK
  25.  
  26. // Which KAROZGI.COM is UNDEr the below registrar;
  27.  
  28.    Domain Name: KAROZGI.COM
  29.    Registrar: INTERNET.BS CORP.
  30.    Whois Server: whois.internet.bs
  31.    Referral URL: http://www.internet.bs
  32.    Name Server: NS1.KAROZGI.COM
  33.    Name Server: NS2.KAROZGI.COM
  34.    Name Server: NS3.KAROZGI.COM
  35.    Name Server: NS4.KAROZGI.COM
  36.    Name Server: NS5.KAROZGI.COM
  37.    Name Server: NS6.KAROZGI.COM
  38.    Status: clientTransferProhibited
  39.    Updated Date: 03-jul-2013
  40.    Creation Date: 18-jun-2013
  41.    Expiration Date: 18-jun-2014
  42.  
  43. // The INTERNET.BS.CORP also served more domains
  44. // serving Kelihos downloads in every A records
  45. // as per listed below:
  46.   ZUNCHER.COM
  47.   FLOWSRE.COM
  48.   OMBUGEW.COM
  49.   WIDERAT.COM
  50.   DAVUJUZ.COM
  51.   XEXUMYB.COM
  52.  
  53. // VERDICT IS DGA MALWARE DOMAINS WITH IP ADDRESS, UP & ALIVE...
  54.  
  55. ABJIQFIR.RU,188.209.251.38,
  56. ACXYPZUK.RU,109.89.137.178,
  57. AFEBIRYN.RU,,
  58. ANGENJEJ.RU,,
  59. BADMYVOK.RU,77.122.196.95,
  60. BEZGESUK.RU,77.122.139.203,
  61. BITITROJ.RU,109.191.82.32,
  62. BOVEWHAV.RU,93.79.91.188,
  63. BOWRETTI.RU,,
  64. CICDIWYH.RU,89.229.196.228,
  65. COLYDQEC.RU,46.56.67.7,
  66. CYVWYDJE.RU,190.220.70.5,
  67. DAHADKYZ.RU,178.75.46.67,
  68. DEPCOPUQ.RU,89.149.105.201,
  69. DEQYPPIL.RU,109.87.198.110,
  70. DIICUHXA.RU,95.111.205.207,
  71. EJOPOWOZ.RU,79.112.214.164,
  72. EJQIURMY.RU,188.129.240.79,
  73. FITUZVOF.RU,37.229.99.95,
  74. FOJEGGUF.RU,,
  75. GAJKUKUC.RU,176.37.121.102,
  76. GECAKCEM.RU,77.122.191.111,
  77. GYCBOKUD.RU,176.8.231.155,
  78. HURVINEV.RU,46.237.110.5,
  79. HUZNEJEX.RU,95.65.80.117,
  80. HYNEQREL.RU,94.76.110.237,
  81. IMKYHTUG.RU,37.252.67.195,
  82. IPXYJYOQ.RU,93.79.231.55,
  83. ITWILMEP.RU,,
  84. IWKYXSEZ.RU,178.218.66.19,
  85. IXMUTIRI.RU,109.207.113.126,
  86. JAHKUXYV.RU,46.185.24.210,
  87. JEFDYWSO.RU,93.125.45.196,
  88. JIQLIDOX.RU,109.201.107.204,
  89. JOKLASAN.RU,88.206.28.89,
  90. KAPKICOH.RU,109.207.118.98,
  91. KEBWAKQY.RU,109.251.94.117,
  92. KICSIHOP.RU,77.120.229.169,
  93. KIZCIVZE.RU,86.101.22.28,
  94. KUBGYBOH.RU,77.122.217.253,
  95. KYCROTUS.RU,94.253.45.147,
  96. LICLAJLE.RU,46.33.55.77,
  97. LIMJOZEH.RU,93.126.126.71,
  98. LIZECGIJ.RU,,
  99. LUFRUDET.RU,159.224.76.42,
  100. LUPQUXSE.RU,37.115.91.192,
  101. LYOHGEOF.RU,109.87.162.4,
  102. MAPUHXAF.RU,37.46.226.241,
  103. MOHGOXEB.RU,194.28.4.29,
  104. MYBFABWI.RU,27.49.104.107,
  105. NECUWFEW.RU,94.231.181.24,
  106. NENKUDYF.RU,178.165.23.171,
  107. NICLYCOM.RU,,
  108. NOJQAVYJ.RU,98.193.167.182,
  109. NORWOLLU.RU,178.137.203.149,
  110. NUKUNNOQ.RU,24.49.38.150,
  111. ONSUGNEM.RU,77.85.201.46,
  112. ORNEVKYC.RU,219.70.195.200,
  113. PEXDAJYP.RU,31.128.186.43,
  114. PIVGEVIT.RU,,
  115. PIYMNYFA.RU,46.173.112.16,
  116. POWERWIK.RU,94.244.129.195,
  117. PUPUXHEF.RU,176.8.38.115,
  118. PYDAJZYK.RU,2.68.213.50,
  119. QABADPIX.RU,46.211.63.25,
  120. QOFHIRAW.RU,176.37.121.102,
  121. QYSQUWKO.RU,178.137.72.42,
  122. RIFAUTIR.RU,213.111.69.126,
  123. RIZIKCUG.RU,,
  124. ROVSYMWO.RU,,
  125. RYTEOPBY.RU,89.146.79.57,
  126. SAWSOBCY.RU,,
  127. SOMOXBET.RU,121.129.93.208,
  128. TAFIBCUM.RU,109.87.7.53,
  129. TAZGYVAX.RU,180.110.156.205,
  130. TITGOQTE.RU,189.199.182.2,
  131. TYZFOWFE.RU,,
  132. UWPAYTNU.RU,77.122.227.41,
  133. VEFLOHGY.RU,,
  134. VEKDEGYL.RU,46.173.77.173,
  135. VUZNIQIK.RU,94.230.192.50,
  136. VYFUXTIS.RU,151.0.27.230,
  137. WANZAWBY.RU,212.142.96.18,
  138. WODYFWOD.RU,77.85.201.46,
  139. WORLIPXO.RU,77.121.79.14,
  140. XAKRYXOG.RU,118.160.103.152,
  141. XIMIRSEX.RU,220.137.79.242,
  142. XIMXAMLI.RU,195.24.155.245,
  143. XUGNEMYQ.RU,77.120.179.237,
  144. YFKYTXIX.RU,46.211.85
  145. YFXIGUSO.RU,195.24.155.245,
  146. YGXEYVXI.RU,178.211.139.155,
  147. YJSEYGFY.RU,,
  148. YWHYIWDY.RU,123.236.68.229,
  149. ZADNAZVO.RU,27.6.9.213,
  150. ZUNCUHAK.RU,,
  151. ZUVNENAX.RU,119.14.86.100,
  152. ZUZVAQAW.RU,123.241.73.225,
  153. ZYHIJWIN.RU,178.151.24.58,
  154. ZYRTYDAJ.RU,31.42.119.142,
  155.  
  156. // UP & ALive DATA With DNS Info:
  157.  
  158. ABJIQFIR.RU,178.150.16.128,      ns1.karozgi.com.
  159.       ns2.karozgi.com.
  160.       ns3.karozgi.com.
  161.       ns4.karozgi.com.
  162.       ns5.karozgi.com.
  163.       ns6.karozgi.com.
  164. ACXYPZUK.RU,46.35.249.164,      ns1.karozgi.com.
  165.       ns2.karozgi.com.
  166.       ns3.karozgi.com.
  167.       ns4.karozgi.com.
  168.       ns5.karozgi.com.
  169.       ns6.karozgi.com.
  170. AFEBIRYN.RU,,      ns1.karozgi.com.
  171.       ns2.karozgi.com.
  172.       ns3.karozgi.com.
  173.       ns4.karozgi.com.
  174.       ns5.karozgi.com.
  175.       ns6.karozgi.com.
  176. ANGENJEJ.RU,,      ns1.karozgi.com.
  177.       ns2.karozgi.com.
  178.       ns3.karozgi.com.
  179.       ns4.karozgi.com.
  180.       ns5.karozgi.com.
  181.       ns6.karozgi.com.
  182. BADMYVOK.RU,109.185.50.232,      ns1.karozgi.com.
  183.       ns2.karozgi.com.
  184.       ns3.karozgi.com.
  185.       ns4.karozgi.com.
  186.       ns5.karozgi.com.
  187.       ns6.karozgi.com.
  188. BEZGESUK.RU,178.217.212.100,      ns1.karozgi.com.
  189.       ns2.karozgi.com.
  190.       ns3.karozgi.com.
  191.       ns4.karozgi.com.
  192.       ns5.karozgi.com.
  193.       ns6.karozgi.com.
  194. BITITROJ.RU,109.185.118.66,      ns1.karozgi.com.
  195.       ns2.karozgi.com.
  196.       ns3.karozgi.com.
  197.       ns4.karozgi.com.
  198.       ns5.karozgi.com.
  199.       ns6.karozgi.com.
  200. BOVEWHAV.RU,174.108.51.230,      ns1.karozgi.com.
  201.       ns2.karozgi.com.
  202.       ns3.karozgi.com.
  203.       ns4.karozgi.com.
  204.       ns5.karozgi.com.
  205.       ns6.karozgi.com.
  206. BOWRETTI.RU,,      ns1.karozgi.com.
  207.       ns2.karozgi.com.
  208.       ns3.karozgi.com.
  209.       ns4.karozgi.com.
  210.       ns5.karozgi.com.
  211.       ns6.karozgi.com.
  212. CICDIWYH.RU,109.201.107.204,      ns1.karozgi.com.
  213.       ns2.karozgi.com.
  214.       ns3.karozgi.com.
  215.       ns4.karozgi.com.
  216.       ns5.karozgi.com.
  217.       ns6.karozgi.com.
  218. COLYDQEC.RU,68.184.196.12,      ns1.karozgi.com.
  219.       ns2.karozgi.com.
  220.       ns3.karozgi.com.
  221.       ns4.karozgi.com.
  222.       ns5.karozgi.com.
  223.       ns6.karozgi.com.
  224. CYVWYDJE.RU,109.162.94.114,      ns1.karozgi.com.
  225.       ns2.karozgi.com.
  226.       ns3.karozgi.com.
  227.       ns4.karozgi.com.
  228.       ns5.karozgi.com.
  229.       ns6.karozgi.com.
  230. DAHADKYZ.RU,77.121.157.213,      ns1.karozgi.com.
  231.       ns2.karozgi.com.
  232.       ns3.karozgi.com.
  233.       ns4.karozgi.com.
  234.       ns5.karozgi.com.
  235.       ns6.karozgi.com.
  236. DEPCOPUQ.RU,159.224.81.49,      ns1.karozgi.com.
  237.       ns2.karozgi.com.
  238.       ns3.karozgi.com.
  239.       ns4.karozgi.com.
  240.       ns5.karozgi.com.
  241.       ns6.karozgi.com.
  242. DEQYPPIL.RU,5.1.12.11,      ns1.karozgi.com.
  243.       ns2.karozgi.com.
  244.       ns3.karozgi.com.
  245.       ns4.karozgi.com.
  246.       ns5.karozgi.com.
  247.       ns6.karozgi.com.
  248. DIICUHXA.RU,77.122.196.95,      ns1.karozgi.com.
  249.       ns2.karozgi.com.
  250.       ns3.karozgi.com.
  251.       ns4.karozgi.com.
  252.       ns5.karozgi.com.
  253.       ns6.karozgi.com.
  254. EJOPOWOZ.RU,109.87.165.122,      ns1.karozgi.com.
  255.       ns2.karozgi.com.
  256.       ns3.karozgi.com.
  257.       ns4.karozgi.com.
  258.       ns5.karozgi.com.
  259.       ns6.karozgi.com.
  260. EJQIURMY.RU,195.24.155.245,      ns1.karozgi.com.
  261.       ns2.karozgi.com.
  262.       ns3.karozgi.com.
  263.       ns4.karozgi.com.
  264.       ns5.karozgi.com.
  265.       ns6.karozgi.com.
  266. FITUZVOF.RU,178.150.226.25,      ns1.karozgi.com.
  267.       ns2.karozgi.com.
  268.       ns3.karozgi.com.
  269.       ns4.karozgi.com.
  270.       ns5.karozgi.com.
  271.       ns6.karozgi.com.
  272. FOJEGGUF.RU,,      ns1.karozgi.com.
  273.       ns2.karozgi.com.
  274.       ns3.karozgi.com.
  275.       ns4.karozgi.com.
  276.       ns5.karozgi.com.
  277.       ns6.karozgi.com.
  278. GAJKUKUC.RU,31.129.99.78,      ns1.karozgi.com.
  279.       ns2.karozgi.com.
  280.       ns3.karozgi.com.
  281.       ns4.karozgi.com.
  282.       ns5.karozgi.com.
  283.       ns6.karozgi.com.
  284. GECAKCEM.RU,31.43.131.230,      ns1.karozgi.com.
  285.       ns2.karozgi.com.
  286.       ns3.karozgi.com.
  287.       ns4.karozgi.com.
  288.       ns5.karozgi.com.
  289.       ns6.karozgi.com.
  290. GYCBOKUD.RU,89.40.193.181,      ns1.karozgi.com.
  291.       ns2.karozgi.com.
  292.       ns3.karozgi.com.
  293.       ns4.karozgi.com.
  294.       ns5.karozgi.com.
  295.       ns6.karozgi.com.
  296. HURVINEV.RU,46.211.3.245,      ns1.karozgi.com.
  297.       ns2.karozgi.com.
  298.       ns3.karozgi.com.
  299.       ns4.karozgi.com.
  300.       ns5.karozgi.com.
  301.       ns6.karozgi.com.
  302. HUZNEJEX.RU,93.79.35.138,      ns1.karozgi.com.
  303.       ns2.karozgi.com.
  304.       ns3.karozgi.com.
  305.       ns4.karozgi.com.
  306.       ns5.karozgi.com.
  307.       ns6.karozgi.com.
  308. HYNEQREL.RU,95.69.157.172,      ns1.karozgi.com.
  309.       ns2.karozgi.com.
  310.       ns3.karozgi.com.
  311.       ns4.karozgi.com.
  312.       ns5.karozgi.com.
  313.       ns6.karozgi.com.
  314. IMKYHTUG.RU,46.241.53.115,      ns1.karozgi.com.
  315.       ns2.karozgi.com.
  316.       ns3.karozgi.com.
  317.       ns4.karozgi.com.
  318.       ns5.karozgi.com.
  319.       ns6.karozgi.com.
  320. IPXYJYOQ.RU,176.8.137.135,      ns1.karozgi.com.
  321.       ns2.karozgi.com.
  322.       ns3.karozgi.com.
  323.       ns4.karozgi.com.
  324.       ns5.karozgi.com.
  325.       ns6.karozgi.com.
  326. ITWILMEP.RU,,      ns1.karozgi.com.
  327.       ns2.karozgi.com.
  328.       ns3.karozgi.com.
  329.       ns4.karozgi.com.
  330.       ns5.karozgi.com.
  331.       ns6.karozgi.com.
  332. IWKYXSEZ.RU,159.224.9.71,      ns1.karozgi.com.
  333.       ns2.karozgi.com.
  334.       ns3.karozgi.com.
  335.       ns4.karozgi.com.
  336.       ns5.karozgi.com.
  337.       ns6.karozgi.com.
  338. IXMUTIRI.RU,180.176.105.225,      ns1.karozgi.com.
  339.       ns2.karozgi.com.
  340.       ns3.karozgi.com.
  341.       ns4.karozgi.com.
  342.       ns5.karozgi.com.
  343.       ns6.karozgi.com.
  344. JAHKUXYV.RU,58.97.200.246,      ns1.karozgi.com.
  345.       ns2.karozgi.com.
  346.       ns3.karozgi.com.
  347.       ns4.karozgi.com.
  348.       ns5.karozgi.com.
  349.       ns6.karozgi.com.
  350. JEFDYWSO.RU,78.29.148.241,      ns1.karozgi.com.
  351.       ns2.karozgi.com.
  352.       ns3.karozgi.com.
  353.       ns4.karozgi.com.
  354.       ns5.karozgi.com.
  355.       ns6.karozgi.com.
  356. JIQLIDOX.RU,188.231.173.6,      ns1.karozgi.com.
  357.       ns2.karozgi.com.
  358.       ns3.karozgi.com.
  359.       ns4.karozgi.com.
  360.       ns5.karozgi.com.
  361.       ns6.karozgi.com.
  362. JOKLASAN.RU,109.87.115.169,      ns1.karozgi.com.
  363.       ns2.karozgi.com.
  364.       ns3.karozgi.com.
  365.       ns4.karozgi.com.
  366.       ns5.karozgi.com.
  367.       ns6.karozgi.com.
  368. KAPKICOH.RU,81.162.243.4,      ns1.karozgi.com.
  369.       ns2.karozgi.com.
  370.       ns3.karozgi.com.
  371.       ns4.karozgi.com.
  372.       ns5.karozgi.com.
  373.       ns6.karozgi.com.
  374. KEBWAKQY.RU,93.79.16.130,      ns1.karozgi.com.
  375.       ns2.karozgi.com.
  376.       ns3.karozgi.com.
  377.       ns4.karozgi.com.
  378.       ns5.karozgi.com.
  379.       ns6.karozgi.com.
  380. KICSIHOP.RU,178.218.66.19,      ns1.karozgi.com.
  381.       ns2.karozgi.com.
  382.       ns3.karozgi.com.
  383.       ns4.karozgi.com.
  384.       ns5.karozgi.com.
  385.       ns6.karozgi.com.
  386. KIZCIVZE.RU,86.100.8.249,      ns1.karozgi.com.
  387.       ns2.karozgi.com.
  388.       ns3.karozgi.com.
  389.       ns4.karozgi.com.
  390.       ns5.karozgi.com.
  391.       ns6.karozgi.com.
  392. KUBGYBOH.RU,176.103.94.91,      ns1.karozgi.com.
  393.       ns2.karozgi.com.
  394.       ns3.karozgi.com.
  395.       ns4.karozgi.com.
  396.       ns5.karozgi.com.
  397.       ns6.karozgi.com.
  398. KYCROTUS.RU,176.36.171.67,      ns1.karozgi.com.
  399.       ns2.karozgi.com.
  400.       ns3.karozgi.com.
  401.       ns4.karozgi.com.
  402.       ns5.karozgi.com.
  403.       ns6.karozgi.com.
  404. LICLAJLE.RU,106.1.185.182,      ns1.karozgi.com.
  405.       ns2.karozgi.com.
  406.       ns3.karozgi.com.
  407.       ns4.karozgi.com.
  408.       ns5.karozgi.com.
  409.       ns6.karozgi.com.
  410. LIMJOZEH.RU,89.148.125.8,      ns1.karozgi.com.
  411.       ns2.karozgi.com.
  412.       ns3.karozgi.com.
  413.       ns4.karozgi.com.
  414.       ns5.karozgi.com.
  415.       ns6.karozgi.com.
  416. LIZECGIJ.RU,,      ns1.karozgi.com.
  417.       ns2.karozgi.com.
  418.       ns3.karozgi.com.
  419.       ns4.karozgi.com.
  420.       ns5.karozgi.com.
  421.       ns6.karozgi.com.
  422. LUFRUDET.RU,37.19.157.13,      ns1.karozgi.com.
  423.       ns2.karozgi.com.
  424.       ns3.karozgi.com.
  425.       ns4.karozgi.com.
  426.       ns5.karozgi.com.
  427.       ns6.karozgi.com.
  428. LUPQUXSE.RU,109.162.61.97,      ns1.karozgi.com.
  429.       ns2.karozgi.com.
  430.       ns3.karozgi.com.
  431.       ns4.karozgi.com.
  432.       ns5.karozgi.com.
  433.       ns6.karozgi.com.
  434. LYOHGEOF.RU,109.87.168.247,      ns1.karozgi.com.
  435.       ns2.karozgi.com.
  436.       ns3.karozgi.com.
  437.       ns4.karozgi.com.
  438.       ns5.karozgi.com.
  439.       ns6.karozgi.com.
  440. MAPUHXAF.RU,31.43.131.230,      ns1.karozgi.com.
  441.       ns2.karozgi.com.
  442.       ns3.karozgi.com.
  443.       ns4.karozgi.com.
  444.       ns5.karozgi.com.
  445.       ns6.karozgi.com.
  446. MOHGOXEB.RU,190.73.77.81,      ns1.karozgi.com.
  447.       ns2.karozgi.com.
  448.       ns3.karozgi.com.
  449.       ns4.karozgi.com.
  450.       ns5.karozgi.com.
  451.       ns6.karozgi.com.
  452. MYBFABWI.RU,78.29.148.241,      ns1.karozgi.com.
  453.       ns2.karozgi.com.
  454.       ns3.karozgi.com.
  455.       ns4.karozgi.com.
  456.       ns5.karozgi.com.
  457.       ns6.karozgi.com.
  458. NECUWFEW.RU,178.137.203.149,      ns1.karozgi.com.
  459.       ns2.karozgi.com.
  460.       ns3.karozgi.com.
  461.       ns4.karozgi.com.
  462.       ns5.karozgi.com.
  463.       ns6.karozgi.com.
  464. NENKUDYF.RU,91.147.225.94,      ns1.karozgi.com.
  465.       ns2.karozgi.com.
  466.       ns3.karozgi.com.
  467.       ns4.karozgi.com.
  468.       ns5.karozgi.com.
  469.       ns6.karozgi.com.
  470. NICLYCOM.RU,,      ns1.karozgi.com.
  471.       ns2.karozgi.com.
  472.       ns3.karozgi.com.
  473.       ns4.karozgi.com.
  474.       ns5.karozgi.com.
  475.       ns6.karozgi.com.
  476. NOJQAVYJ.RU,109.191.21.91,      ns1.karozgi.com.
  477.       ns2.karozgi.com.
  478.       ns3.karozgi.com.
  479.       ns4.karozgi.com.
  480.       ns5.karozgi.com.
  481.       ns6.karozgi.com.
  482. NORWOLLU.RU,78.157.17.241,      ns1.karozgi.com.
  483.       ns2.karozgi.com.
  484.       ns3.karozgi.com.
  485.       ns4.karozgi.com.
  486.       ns5.karozgi.com.
  487.       ns6.karozgi.com.
  488. NUKUNNOQ.RU,134.17.81.121,      ns1.karozgi.com.
  489.       ns2.karozgi.com.
  490.       ns3.karozgi.com.
  491.       ns4.karozgi.com.
  492.       ns5.karozgi.com.
  493.       ns6.karozgi.com.
  494. ONSUGNEM.RU,46.185.29.170,      ns1.karozgi.com.
  495.       ns2.karozgi.com.
  496.       ns3.karozgi.com.
  497.       ns4.karozgi.com.
  498.       ns5.karozgi.com.
  499.       ns6.karozgi.com.
  500. ORNEVKYC.RU,37.115.85.186,      ns1.karozgi.com.
  501.       ns2.karozgi.com.
  502.       ns3.karozgi.com.
  503.       ns4.karozgi.com.
  504.       ns5.karozgi.com.
  505.       ns6.karozgi.com.
  506. PEXDAJYP.RU,176.36.76.20,      ns1.karozgi.com.
  507.       ns2.karozgi.com.
  508.       ns3.karozgi.com.
  509.       ns4.karozgi.com.
  510.       ns5.karozgi.com.
  511.       ns6.karozgi.com.
  512. PIVGEVIT.RU,,      ns1.karozgi.com.
  513.       ns2.karozgi.com.
  514.       ns3.karozgi.com.
  515.       ns4.karozgi.com.
  516.       ns5.karozgi.com.
  517.       ns6.karozgi.com.
  518. PIYMNYFA.RU,88.206.52.99,      ns1.karozgi.com.
  519.       ns2.karozgi.com.
  520.       ns3.karozgi.com.
  521.       ns4.karozgi.com.
  522.       ns5.karozgi.com.
  523.       ns6.karozgi.com.
  524. POWERWIK.RU,94.244.129.195,      ns1.karozgi.com.
  525.       ns2.karozgi.com.
  526.       ns3.karozgi.com.
  527.       ns4.karozgi.com.
  528.       ns5.karozgi.com.
  529.       ns6.karozgi.com.
  530. PUPUXHEF.RU,31.28.242.233,      ns1.karozgi.com.
  531.       ns2.karozgi.com.
  532.       ns3.karozgi.com.
  533.       ns4.karozgi.com.
  534.       ns5.karozgi.com.
  535.       ns6.karozgi.com.
  536. PYDAJZYK.RU,89.148.125.8,      ns1.karozgi.com.
  537.       ns2.karozgi.com.
  538.       ns3.karozgi.com.
  539.       ns4.karozgi.com.
  540.       ns5.karozgi.com.
  541.       ns6.karozgi.com.
  542. QABADPIX.RU,178.165.112.225,      ns1.karozgi.com.
  543.       ns2.karozgi.com.
  544.       ns3.karozgi.com.
  545.       ns4.karozgi.com.
  546.       ns5.karozgi.com.
  547.       ns6.karozgi.com.
  548. QOFHIRAW.RU,178.137.237.123,      ns1.karozgi.com.
  549.       ns2.karozgi.com.
  550.       ns3.karozgi.com.
  551.       ns4.karozgi.com.
  552.       ns5.karozgi.com.
  553.       ns6.karozgi.com.
  554. QYSQUWKO.RU,46.173.106.7,      ns1.karozgi.com.
  555.       ns2.karozgi.com.
  556.       ns3.karozgi.com.
  557.       ns4.karozgi.com.
  558.       ns5.karozgi.com.
  559.       ns6.karozgi.com.
  560. RIFAUTIR.RU,93.95.189.73,      ns1.karozgi.com.
  561.       ns2.karozgi.com.
  562.       ns3.karozgi.com.
  563.       ns4.karozgi.com.
  564.       ns5.karozgi.com.
  565.       ns6.karozgi.com.
  566. RIZIKCUG.RU,,      ns1.karozgi.com.
  567.       ns2.karozgi.com.
  568.       ns3.karozgi.com.
  569.       ns4.karozgi.com.
  570.       ns5.karozgi.com.
  571.       ns6.karozgi.com.
  572. ROVSYMWO.RU,,      ns1.karozgi.com.
  573.       ns2.karozgi.com.
  574.       ns3.karozgi.com.
  575.       ns4.karozgi.com.
  576.       ns5.karozgi.com.
  577.       ns6.karozgi.com.
  578. RYTEOPBY.RU,178.137.40.237,      ns1.karozgi.com.
  579.       ns2.karozgi.com.
  580.       ns3.karozgi.com.
  581.       ns4.karozgi.com.
  582.       ns5.karozgi.com.
  583.       ns6.karozgi.com.
  584. SAWSOBCY.RU,,      ns1.karozgi.com.
  585.       ns2.karozgi.com.
  586.       ns3.karozgi.com.
  587.       ns4.karozgi.com.
  588.       ns5.karozgi.com.
  589.       ns6.karozgi.com.
  590. SOMOXBET.RU,91.189.158.108,      ns1.karozgi.com.
  591.       ns2.karozgi.com.
  592.       ns3.karozgi.com.
  593.       ns4.karozgi.com.
  594.       ns5.karozgi.com.
  595.       ns6.karozgi.com.
  596. TAFIBCUM.RU,46.172.237.163,      ns1.karozgi.com.
  597.       ns2.karozgi.com.
  598.       ns3.karozgi.com.
  599.       ns4.karozgi.com.
  600.       ns5.karozgi.com.
  601.       ns6.karozgi.com.
  602. TAZGYVAX.RU,178.149.154.113,      ns1.karozgi.com.
  603.       ns2.karozgi.com.
  604.       ns3.karozgi.com.
  605.       ns4.karozgi.com.
  606.       ns5.karozgi.com.
  607.       ns6.karozgi.com.
  608. TITGOQTE.RU,58.121.26.21,      ns1.karozgi.com.
  609.       ns2.karozgi.com.
  610.       ns3.karozgi.com.
  611.       ns4.karozgi.com.
  612.       ns5.karozgi.com.
  613.       ns6.karozgi.com.
  614. TYZFOWFE.RU,,      ns1.karozgi.com.
  615.       ns2.karozgi.com.
  616.       ns3.karozgi.com.
  617.       ns4.karozgi.com.
  618.       ns5.karozgi.com.
  619.       ns6.karozgi.com.
  620. UWPAYTNU.RU,176.36.162.85,      ns1.karozgi.com.
  621.       ns2.karozgi.com.
  622.       ns3.karozgi.com.
  623.       ns4.karozgi.com.
  624.       ns5.karozgi.com.
  625.       ns6.karozgi.com.
  626. VEFLOHGY.RU,,      ns1.karozgi.com.
  627.       ns2.karozgi.com.
  628.       ns3.karozgi.com.
  629.       ns4.karozgi.com.
  630.       ns5.karozgi.com.
  631.       ns6.karozgi.com.
  632. VEKDEGYL.RU,92.241.122.47,      ns1.karozgi.com.
  633.       ns2.karozgi.com.
  634.       ns3.karozgi.com.
  635.       ns4.karozgi.com.
  636.       ns5.karozgi.com.
  637.       ns6.karozgi.com.
  638. VUZNIQIK.RU,85.217.246.164,      ns1.karozgi.com.
  639.       ns2.karozgi.com.
  640.       ns3.karozgi.com.
  641.       ns4.karozgi.com.
  642.       ns5.karozgi.com.
  643.       ns6.karozgi.com.
  644. VYFUXTIS.RU,109.191.21.91,      ns1.karozgi.com.
  645.       ns2.karozgi.com.
  646.       ns3.karozgi.com.
  647.       ns4.karozgi.com.
  648.       ns5.karozgi.com.
  649.       ns6.karozgi.com.
  650. WANZAWBY.RU,92.52.148.100,      ns1.karozgi.com.
  651.       ns2.karozgi.com.
  652.       ns3.karozgi.com.
  653.       ns4.karozgi.com.
  654.       ns5.karozgi.com.
  655.       ns6.karozgi.com.
  656. WODYFWOD.RU,93.79.16.130,      ns1.karozgi.com.
  657.       ns2.karozgi.com.
  658.       ns3.karozgi.com.
  659.       ns4.karozgi.com.
  660.       ns5.karozgi.com.
  661.       ns6.karozgi.com.
  662. WORLIPXO.RU,78.30.249.81,      ns1.karozgi.com.
  663.       ns2.karozgi.com.
  664.       ns3.karozgi.com.
  665.       ns4.karozgi.com.
  666.       ns5.karozgi.com.
  667.       ns6.karozgi.com.
  668. XAKRYXOG.RU,77.122.162.164,      ns1.karozgi.com.
  669.       ns2.karozgi.com.
  670.       ns3.karozgi.com.
  671.       ns4.karozgi.com.
  672.       ns5.karozgi.com.
  673.       ns6.karozgi.com.
  674. XIMIRSEX.RU,159.224.54.216,      ns1.karozgi.com.
  675.       ns2.karozgi.com.
  676.       ns3.karozgi.com.
  677.       ns4.karozgi.com.
  678.       ns5.karozgi.com.
  679.       ns6.karozgi.com.
  680. XIMXAMLI.RU,81.190.242.170,      ns1.karozgi.com.
  681.       ns2.karozgi.com.
  682.       ns3.karozgi.com.
  683.       ns4.karozgi.com.
  684.       ns5.karozgi.com.
  685.       ns6.karozgi.com.
  686. XUGNEMYQ.RU,188.254.141.178,      ns1.karozgi.com.
  687.       ns2.karozgi.com.
  688.       ns3.karozgi.com.
  689.       ns4.karozgi.com.
  690.       ns5.karozgi.com.
  691.       ns6.karozgi.com.
  692. YFKYTXIX.RU,217.199.232.187,      ns1.karozgi.com.
  693.       ns2.karozgi.com.
  694.       ns3.karozgi.com.
  695.       ns4.karozgi.com.
  696.       ns5.karozgi.com.
  697.       ns6.karozgi.com.
  698. YFXIGUSO.RU,188.231.173.6,      ns1.karozgi.com.
  699.       ns2.karozgi.com.
  700.       ns3.karozgi.com.
  701.       ns4.karozgi.com.
  702.       ns5.karozgi.com.
  703.       ns6.karozgi.com.
  704. YGXEYVXI.RU,93.79.34.191,      ns1.karozgi.com.
  705.       ns2.karozgi.com.
  706.       ns3.karozgi.com.
  707.       ns4.karozgi.com.
  708.       ns5.karozgi.com.
  709.       ns6.karozgi.com.
  710. YJSEYGFY.RU,,      ns1.karozgi.com.
  711.       ns2.karozgi.com.
  712.       ns3.karozgi.com.
  713.       ns4.karozgi.com.
  714.       ns5.karozgi.com.
  715.       ns6.karozgi.com.
  716. YWHYIWDY.RU,46.33.54.64,      ns1.karozgi.com.
  717.       ns2.karozgi.com.
  718.       ns3.karozgi.com.
  719.       ns4.karozgi.com.
  720.       ns5.karozgi.com.
  721.       ns6.karozgi.com.
  722. ZADNAZVO.RU,151.0.18.164,      ns1.karozgi.com.
  723.       ns2.karozgi.com.
  724.       ns3.karozgi.com.
  725.       ns4.karozgi.com.
  726.       ns5.karozgi.com.
  727.       ns6.karozgi.com.
  728. ZUNCUHAK.RU,,      ns1.karozgi.com.
  729.       ns2.karozgi.com.
  730.       ns3.karozgi.com.
  731.       ns4.karozgi.com.
  732.       ns5.karozgi.com.
  733.       ns6.karozgi.com.
  734. ZUVNENAX.RU,78.30.244.41,      ns1.karozgi.com.
  735.       ns2.karozgi.com.
  736.       ns3.karozgi.com.
  737.       ns4.karozgi.com.
  738.       ns5.karozgi.com.
  739.       ns6.karozgi.com.
  740. ZUZVAQAW.RU,46.72.103.223,      ns1.karozgi.com.
  741.       ns2.karozgi.com.
  742.       ns3.karozgi.com.
  743.       ns4.karozgi.com.
  744.       ns5.karozgi.com.
  745.       ns6.karozgi.com.
  746. ZYHIJWIN.RU,178.211.139.155,      ns1.karozgi.com.
  747.       ns2.karozgi.com.
  748.       ns3.karozgi.com.
  749.       ns4.karozgi.com.
  750.       ns5.karozgi.com.
  751.       ns6.karozgi.com.
  752. ZYRTYDAJ.RU,213.174.10.83,      ns1.karozgi.com.
  753.       ns2.karozgi.com.
  754.       ns3.karozgi.com.
  755.       ns4.karozgi.com.
  756.       ns5.karozgi.com.
  757.       ns6.karozgi.com.
  758.  
  759.  
  760. ----------------------previous report on Jul 25, 2013---------------------
  761.  
  762.  
  763. // Registrar information:
  764.  
  765. nserver:       ns1.karozgi.com.
  766. nserver:       ns2.karozgi.com.
  767. nserver:       ns3.karozgi.com.
  768. nserver:       ns4.karozgi.com.
  769. nserver:       ns5.karozgi.com.
  770. nserver:       ns6.karozgi.com.
  771. state:         REGISTERED, DELEGATED, UNVERIFIED
  772. person:        Private Person
  773. registrar:     REGGI-REG-RIPN
  774. admin-contact: https://panel.reggi.ru/user/whois/webmail/
  775.  
  776. // Proven served Kelihos Payload with evidence:
  777.  
  778. DAHADKYZ.RU,111.118.178.151, http://urlquery.net/report.php?id=3924662  http://urlquery.net/report.php?id=3878882
  779. EJQIURMY.RU,213.109.238.24, http://urlquery.net/report.php?id=3868626
  780. MAPUHXAF.RU,31.128.69.184, http://urlquery.net/report.php?id=3852545 http://urlquery.net/report.php?id=3797652 http://urlquery.net/report.php?id=3664957
  781. ONSUGNEM.RU,46.229.52.203, http://urlquery.net/report.php?id=3884094
  782. PEXDAJYP.RU,109.87.32.180, http://urlquery.net/report.php?id=3929458 http://urlquery.net/report.php?id=3698178
  783. QABADPIX.RU,210.148.165.67, http://urlquery.net/report.php?id=3988575 http://urlquery.net/report.php?id=3809378 http://urlquery.net/report.php?id=3685249
  784. WANZAWBY.RU,46.150.84.242, http://urlquery.net/report.php?id=3924588 http://urlquery.net/report.php?id=3834280
  785. YWHYIWDY.RU,188.138.154.163, http://urlquery.net/report.php?id=3830822
  786.  
  787. // No Payload URL detected yet (in process):
  788.  
  789. POWERWIK.RU,213.200.36.167,
  790. QOFHIRAW.RU,193.140.254.125,
  791. UWPAYTNU.RU,117.223.197.65,
  792. XIMIRSEX.RU,93.95.188.189,
  793. XIMXAMLI.RU,141.138.112.126,
  794. BADMYVOK.RU,46.118.111.225,
  795. BOVEWHAV.RU,188.191.21.206,
  796. GAJKUKUC.RU,178.137.38.214,
  797. GYCBOKUD.RU,36.231.250.225,
  798. IPXYJYOQ.RU,109.86.235.177,
  799. JAHKUXYV.RU,5.248.59.213,
  800. JEFDYWSO.RU,36.231.250.225,
  801. JIQLIDOX.RU,46.118.20.152,
  802. LICLAJLE.RU,31.202.206.206,
  803. ZUZVAQAW.RU,178.168.47.197,
  804. ZYHIJWIN.RU,176.36.152.60,
  805. ZYRTYDAJ.RU,93.77.95.231,
  806.  
  807. // The below domains is inactivated with IP addresses (now):
  808.  
  809. ABJIQFIR.RU,,
  810. ACXYPZUK.RU,,
  811. AFEBIRYN.RU,,
  812. ANGENJEJ.RU,,
  813. BEZGESUK.RU,,
  814. BITITROJ.RU,,
  815. BOWRETTI.RU,,
  816. CICDIWYH.RU,,
  817. COLYDQEC.RU,,
  818. CYVWYDJE.RU,,
  819. DEPCOPUQ.RU,,
  820. DEQYPPIL.RU,,
  821. DIICUHXA.RU,,
  822. EJOPOWOZ.RU,,
  823. FITUZVOF.RU,,
  824. FOJEGGUF.RU,,
  825. GECAKCEM.RU,,
  826. HURVINEV.RU,,
  827. HUZNEJEX.RU,,
  828. HYNEQREL.RU,,
  829. IMKYHTUG.RU,,
  830. ITWILMEP.RU,,
  831. IWKYXSEZ.RU,,
  832. IXMUTIRI.RU,,
  833. JOKLASAN.RU,,
  834. KAPKICOH.RU,,
  835. KEBWAKQY.RU,,
  836. KICSIHOP.RU,,
  837. KIZCIVZE.RU,,
  838. KUBGYBOH.RU,,
  839. KYCROTUS.RU,,
  840. LIMJOZEH.RU,,
  841. LIZECGIJ.RU,,
  842. LUFRUDET.RU,,
  843. LUPQUXSE.RU,,
  844. LYOHGEOF.RU,,
  845. MOHGOXEB.RU,,
  846. MYBFABWI.RU,,
  847. NECUWFEW.RU,,
  848. NENKUDYF.RU,,
  849. NICLYCOM.RU,,
  850. NOJQAVYJ.RU,,
  851. NORWOLLU.RU,,
  852. NUKUNNOQ.RU,,
  853. ORNEVKYC.RU,,
  854. PIVGEVIT.RU,,
  855. PIYMNYFA.RU,,
  856. PUPUXHEF.RU,,
  857. PYDAJZYK.RU,,
  858. QYSQUWKO.RU,,
  859. RIFAUTIR.RU,,
  860. RIZIKCUG.RU,,
  861. ROVSYMWO.RU,,
  862. RYTEOPBY.RU,,
  863. SAWSOBCY.RU,,
  864. SOMOXBET.RU,,
  865. TAFIBCUM.RU,,
  866. TAZGYVAX.RU,,
  867. TITGOQTE.RU,,
  868. TYZFOWFE.RU,,
  869. VEFLOHGY.RU,,
  870. VEKDEGYL.RU,,
  871. VUZNIQIK.RU,,
  872. VYFUXTIS.RU,,
  873. WODYFWOD.RU,,
  874. WORLIPXO.RU,,
  875. XAKRYXOG.RU,,
  876. XUGNEMYQ.RU,,
  877. YFKYTXIX.RU,,
  878. YFXIGUSO.RU,,
  879. YGXEYVXI.RU,,
  880. YJSEYGFY.RU,,
  881. ZADNAZVO.RU,,
  882. ZUNCUHAK.RU,,
  883. ZUVNENAX.RU,,
  884.  
  885.  
  886. // Check Logs:
  887. #MalwareMustDie
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!