DDoS botnet C2 205.134.182.116

1. # Botnet C2 205.134.182.116 unique hosts attacked:
2. IP Reverse DNS Country Autonomous System ASN
3. 103.95.221.2 China CHINA UNICOM China169 Backbone AS4837
4. 103.95.221.88 China CHINA UNICOM China169 Backbone AS4837
5. 104.153.85.177 hosted-by.i3d.net United States i3D.net B.V AS49544
6. 147.135.22.58 ip58.ip-147-135-22.us United States OVH SAS AS16276
7. 167.114.29.161 ip161.ip-167-114-29.net Canada OVH SAS AS16276
8. 167.114.83.235 Canada OVH SAS AS16276
9. 174.137.22.253 United States Jackson Connect LLC AS31875
10. 185.11.145.5 hosted-by.blazingfast.io Netherlands Dotsi, Unipessoal Lda. AS49349
11. 198.14.223.48 United States Windstream Communications LLC AS7029
12. 208.117.69.45 United States Secom, Inc AS16832
13. 216.52.148.4 chicago-ventrilo.nfoservers.com United States Nuclearfallout Enterprises, Inc. AS14586
14. 24.13.10.162 c-24-13-10-162.hsd1.il.comcast.net United States Comcast Cable Communications, LLC AS7922
15. 34.205.15.41 ec2-34-205-15-41.compute-1.amazonaws.com United States Amazon.com, Inc. AS14618
16. 52.149.239.229 United States Microsoft Corporation AS8075
17. 66.151.138.9 sj-ventrilo.nfoservers.com United States Internap Corporation AS12182
18. 71.93.234.13 71-93-234-13.dhcp.mdfd.or.charter.com United States Charter Communications AS20115
19. 73.20.212.242 c-73-20-212-242.hsd1.ga.comcast.net United States Comcast Cable Communications, LLC AS7922
20. 74.108.139.133 pool-74-108-139-133.nycmny.fios.verizon.net United States MCI Communications Services, Inc. d/b/a Verizon Business AS701
21. 84.203.96.28 ip-84-203-96-28.broadband.digiweb.ie Ireland Digiweb ltd AS31122
22. 97.122.247.50 97-122-247-50.hlrn.qwest.net United States CenturyLink Communications, LLC AS209
23. 97.84.80.107 97-84-80-107.dhcp.snlo.ca.charter.com United States Charter Communications AS20115
24. 98.252.26.247 c-98-252-26-247.hsd1.de.comcast.net United States Comcast Cable Communications, LLC AS7922
25.  
26.  
27. # Botnet C2 205.134.182.116 DDoS attack commands gathered via Bad Packets C2 milker:
28. !* LDAP 98.252.26.247 53 10
29. !* LDAP 98.252.26.247 67 10
30. !* LDAP 98.252.26.247 67 30
31. !* OVH 98.252.26.247 67 5
32. !* LDAP 98.252.26.247 67 30
33. !* NTP 97.84.80.107 53 180
34. !* NTP 97.84.80.107 53 300
35. !* SSP 97.84.80.107 80 30
36. !* TCP 97.84.80.107 80 32
37. !* TCP 97.84.80.107 80 60
38. !* TS3 97.84.80.107 53 60
39. !* UDP 97.84.80.107 53 60
40. !* LDAP 97.122.247.50 53678 40
41. !* LDAP 84.203.96.28 53 700
42. !* LDAP 74.108.139.133 53776 15
43. !* LDAP 74.108.139.133 53776 17
44. !* LDAP 74.108.139.133 53776 20
45. !* SSP 74.108.139.133 53776 20
46. !* TS3 74.108.139.133 53776 20
47. !* LDAP 73.20.212.242 67 30
48. !* LDAP 73.20.212.242 67 5
49. !* LDAP 73.20.212.242
50. !* LDAP 73.20.212.242 67 30
51. !* LDAP 73.20.212.242 67 30
52. !* LDAP 71.93.234.13 53 30
53. !* NTP 71.93.234.13 80 30
54. !* NFO 66.151.138.9 22 5
55. !* NFO 66.151.138.9 3001 5
56. !* VSE 52.149.239.229 30103 40
57. !* VSE 34.205.15.41 9018 15
58. !* LDAP 24.13.10.162 67 5
59. !* NTP 24.13.10.162 67 5
60. !* VSE 24.13.10.162 67 5
61. !* NFO 216.52.148.4 22 15
62. !* LDAP 208.117.69.45 1171 50
63. !* NFO 208.117.69.45 1171 200
64. !* LDAP 198.14.223.48 80 40
65. !* LDAP 185.11.145.5 80 400
66. !* NFO 174.137.22.253 3074 30
67. !* OVH 167.114.83.235 80 15
68. !* OVH 167.114.29.161 65532 15
69. !* OVH 147.135.22.58 22 65
70. !* OVH 147.135.22.58 8080 15
71. !* TS3 104.153.85.177 54644 30
72. !* OVH 103.95.221.88 80 65
73. !* OVH 103.95.221.2 80 65
74. !* OVH 10.0.2.15 80 10