API tools faq
paste
Advertisement
MalwareMustDie

List of TANGO DOWN of .RU Domains Posted via #MalwareMustDie

MalwareMustDie
Dec 24th, 2012
1,723
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
VIM 7.07 KB | None | 0 0
raw download clone embed print report
  1. // Credential stealer via BHEK2
  2. // Shutdown Domain List up to Dec 23rd 2012,
  3. // Reported as per Dec 24, 2012
  4. // Analyzed, reported & Monitored by: #MalwareMustDie
  5. // Reported Case list:
  6. //   http://malwaremustdie.blogspot.jp/2012/12/more-spam-to-bhek-to-cridex-how-they.html?utm_source=BP_recent
  7. //   http://malwaremustdie.blogspot.jp/2012/12/list-of-name-server-used-by-blackhole.html?utm_source=BP_recent
  8. //   http://malwaremustdie.blogspot.jp/2012/12/fake-facebook-notification-leads-to.html
  9. //   http://malwaremustdie.blogspot.jp/2012/11/full-disclosure-analysis-fake-facebook.html
  10. //   http://malwaremustdie.blogspot.jp/2012/12/spam-wordpress-redirector.html
  11.  
  12. With the help of all involved crusaders, with the coordination of
  13. .RU authorithies, Cert-GIB & registrars related, hereby we inform that
  14. the reported Malware Infector Domains as per listed & proved below
  15. are down & no sign of re-apparance.
  16.  
  17. However, since the criminals still free, we expect to meet their work,
  18. analyze, report, exposed their crime too, for we #MalwareMustDie will
  19. be as tireless as these bad actors.
  20.  
  21. It is not that what so called bullet proof domains is so invincible to destroy,
  22. but it is just a matter of time that the coordination of the good people in
  23. internet will outcome a good result like this.
  24.  
  25. The quantity of domains may not look so much, but these data also backed up with
  26. hundreds of IPs, upt o 30 mis-used DNS server lists, which we cannot expose,
  27. and by God speed, is not mis-used no more.
  28.  
  29. Gentlemen, we shall outsmart them, don't let these bad actors sleep too well!
  30.  
  31. //List of domain..
  32.  
  33. genevaonline.ru
  34. pelamutrika.ru  
  35. aliamognoa.ru  
  36. ahiontota.ru    
  37. anifkailood.ru  
  38. podarunoki.ru  
  39. aseniakrol.ru  
  40. publicatorian.ru
  41. pitoniamason.ru
  42. amnaosogo.ru    
  43. aviaonlolsio.ru
  44. dimarikanko.ru  
  45. adanagenro.ru  
  46. awoeionfpop.ru  
  47. aofngppahgor.ru
  48. aviaonlolsio.ru
  49. ganalionomka.ru
  50. publicatorian.ru
  51. francese.ru
  52. cinemaallon.ru
  53. leberiasun.ru
  54. somaliaonfloor.ru
  55. panamechkis.ru  
  56. apendiksator.ru
  57. angelaonfl.ru
  58. adanagenro.ru
  59. antariktika.ru
  60. aliamognoa.ru
  61. apensiona.ru
  62. anifkailood.ru
  63. apolinaklsit.ru
  64. sectantes-x.ru
  65.  :
  66. (and some older .RU domains belong to same moronz group)
  67.  
  68. //PoC:
  69.  
  70. > genevaonline.ru
  71. Server:  google-public-dns-a.google.com
  72. Address:  8.8.8.8
  73.  
  74. *** google-public-dns-a.google.com can't find genevaonline.ru: Non-existent domain
  75. > pelamutrika.ru
  76. Server:  google-public-dns-a.google.com
  77. Address:  8.8.8.8
  78.  
  79. *** google-public-dns-a.google.com can't find pelamutrika.ru: Non-existent domain
  80. > aliamognoa.ru
  81. Server:  google-public-dns-a.google.com
  82. Address:  8.8.8.8
  83.  
  84. *** google-public-dns-a.google.com can't find aliamognoa.ru: Non-existent domain
  85. > ahiontota.ru
  86. Server:  google-public-dns-a.google.com
  87. Address:  8.8.8.8
  88.  
  89. *** google-public-dns-a.google.com can't find ahiontota.ru: Non-existent domain
  90. > anifkailood.ru
  91. Server:  google-public-dns-a.google.com
  92. Address:  8.8.8.8
  93.  
  94. *** google-public-dns-a.google.com can't find anifkailood.ru: Non-existent domain
  95. > podarunoki.ru
  96. Server:  google-public-dns-a.google.com
  97. Address:  8.8.8.8
  98.  
  99. *** google-public-dns-a.google.com can't find podarunoki.ru: Non-existent domain
  100.  
  101. > aseniakrol.ru
  102. Server:  google-public-dns-a.google.com
  103. Address:  8.8.8.8
  104.  
  105. *** google-public-dns-a.google.com can't find aseniakrol.ru: Non-existent domain
  106.  
  107. > publicatorian.ru
  108. Server:  google-public-dns-a.google.com
  109. Address:  8.8.8.8
  110.  
  111. *** google-public-dns-a.google.com can't find publicatorian.ru: Non-existent domain
  112. > pitoniamason.ru
  113. Server:  google-public-dns-a.google.com
  114. Address:  8.8.8.8
  115.  
  116. *** google-public-dns-a.google.com can't find pitoniamason.ru: Non-existent domain
  117. > amnaosogo.ru
  118. Server:  google-public-dns-a.google.com
  119. Address:  8.8.8.8
  120.  
  121. *** google-public-dns-a.google.com can't find amnaosogo.ru: Non-existent domain
  122. > aviaonlolsio.ru
  123. Server:  google-public-dns-a.google.com
  124. Address:  8.8.8.8
  125.  
  126. *** google-public-dns-a.google.com can't find aviaonlolsio.ru: Non-existent domain
  127. > dimarikanko.ru
  128. Server:  google-public-dns-a.google.com
  129. Address:  8.8.8.8
  130.  
  131. *** google-public-dns-a.google.com can't find dimarikanko.ru: Non-existent domain
  132. > adanagenro.ru
  133. Server:  google-public-dns-a.google.com
  134. Address:  8.8.8.8
  135.  
  136. *** google-public-dns-a.google.com can't find adanagenro.ru: Non-existent domain
  137.  
  138. > awoeionfpop.ru
  139. Server:  google-public-dns-a.google.com
  140. Address:  8.8.8.8
  141.  
  142. *** google-public-dns-a.google.com can't find awoeionfpop.ru: Non-existent domain
  143. > aofngppahgor.ru
  144. Server:  google-public-dns-a.google.com
  145. Address:  8.8.8.8
  146.  
  147. *** google-public-dns-a.google.com can't find aofngppahgor.ru: Non-existent doma
  148. in
  149. > aviaonlolsio.ru
  150. Server:  google-public-dns-a.google.com
  151. Address:  8.8.8.8
  152.  
  153. *** google-public-dns-a.google.com can't find aviaonlolsio.ru: Non-existent domain
  154. > ganalionomka.ru
  155. Server:  google-public-dns-a.google.com
  156. Address:  8.8.8.8
  157.  
  158. *** google-public-dns-a.google.com can't find ganalionomka.ru: Non-existent domain
  159. > publicatorian.ru
  160. Server:  google-public-dns-a.google.com
  161. Address:  8.8.8.8
  162.  
  163. *** google-public-dns-a.google.com can't find publicatorian.ru: Non-existent domain
  164. >
  165. > francese.ru
  166. Server:  google-public-dns-a.google.com
  167. Address:  8.8.8.8
  168.  
  169. *** google-public-dns-a.google.com can't find francese.ru: Non-existent domain
  170. > cinemaallon.ru
  171. Server:  google-public-dns-a.google.com
  172. Address:  8.8.8.8
  173.  
  174. *** google-public-dns-a.google.com can't find cinemaallon.ru: Non-existent domain
  175. > leberiasun.ru
  176. Server:  google-public-dns-a.google.com
  177. Address:  8.8.8.8
  178.  
  179. *** google-public-dns-a.google.com can't find leberiasun.ru: Non-existent domain
  180.  
  181. > somaliaonfloor.ru
  182. Server:  google-public-dns-a.google.com
  183. Address:  8.8.8.8
  184.  
  185. *** google-public-dns-a.google.com can't find somaliaonfloor.ru: Non-existent domain
  186. > panamechkis.ru
  187. Server:  google-public-dns-a.google.com
  188. Address:  8.8.8.8
  189.  
  190. *** google-public-dns-a.google.com can't find panamechkis.ru: Non-existent domain
  191. >
  192.  
  193. > apendiksator.ru
  194. Server:  google-public-dns-a.google.com
  195. Address:  8.8.8.8
  196.  
  197. *** google-public-dns-a.google.com can't find apendiksator.ru: Non-existent domain
  198. > angelaonfl.ru
  199. Server:  google-public-dns-a.google.com
  200. Address:  8.8.8.8
  201.  
  202. *** google-public-dns-a.google.com can't find angelaonfl.ru: Non-existent domain
  203.  
  204. > adanagenro.ru
  205. Server:         8.8.8.8
  206. Address:        8.8.8.8#53
  207.  
  208. ** server can't find adanagenro.ru: NXDOMAIN
  209.  
  210. > antariktika.ru
  211. > aliamognoa.ru
  212. > apensiona.ru
  213. > anifkailood.ru
  214. > apolinaklsit.ru
  215.  
  216. > Server:               8.8.8.8
  217. Address:        8.8.8.8#53
  218. ** server can't find antariktika.ru: NXDOMAIN
  219.  
  220. > Server:               8.8.8.8
  221. Address:        8.8.8.8#53
  222. ** server can't find aliamognoa.ru: NXDOMAIN
  223.  
  224. > Server:               8.8.8.8
  225. Address:        8.8.8.8#53
  226. ** server can't find apensiona.ru: NXDOMAIN
  227.  
  228. > Server:               8.8.8.8
  229. Address:        8.8.8.8#53
  230. ** server can't find anifkailood.ru: NXDOMAIN
  231.  
  232. > Server:               8.8.8.8
  233. Address:        8.8.8.8#53
  234. ** server can't find apolinaklsit.ru: NXDOMAIN
  235.  
  236. > sectantes-x.ru
  237. Server:         8.8.8.8
  238. Address:        8.8.8.8#53
  239. ** server can't find sectantes-x.ru: NXDOMAIN
  240.  
  241. ---
  242. #MalwareMustDie!!
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!