These domains and IPs are all connected with
this gang, some of it appears to be involved in malware distribution, fraud or other illegal activities. I recommend that you block these IPs and domains.
Note that some of the IPs listed below are compromised nameservers (marked [ns]) which look like they are insufficiently well locked down. There is a plain list of IPs at the end for copy-and-pasting.
accounting-kent.net
aerostat-adventures.net
aim-darts.net
airnavrace.net
amia.cc
aqu.su
artplat.com
binfile.net
brigadiramoon170.com
ccl.su
clubkindergarten.net
combonicer200.com
ehk.su
flatroom.net
gefesosexwithjimmy.org
iceselinsgrove.com
kartaby.com
keksnownikolle.biz
kirr.cc
lollipollyboobs.org
lostpetutah.net
macdegredo.com
mecheti.com
megemind.com
onetimedns.com
orimylife.net
pcg.su
quarter.su
sandwars.net
sec-one-dns.com
security-apps24.com
securityappsmart.com
security-safedomains.com
security-trust.com
smis.cc
stepnitres.ru
studio-sands.net
unicttaskforce.com
usgunlavs.net
webercountyfairr.net
wildscot-tv.com
world-motorhome.net
12.42.61.221 (AT&T, US)
19.214.121.54 (Ford Motor Company, US) [ns]
22.15.199.21 (DOD, US) [ns]
23.253.75.234 (Rackspace, US)
31.210.107.33 (Radore Veri Merkezi Hizmetleri, Turkey)
32.21.129.43 (AT&T, US) [ns]
32.90.65.25 (AT&T, US) [ns]
37.255.241.29 (TCE, Iran)
41.66.55.3 (Cote d'Ivoire Telecom, Cote d'Ivoire) [ns]
41.106.3.132 (FTTH, Algeria) [ns]
42.96.195.183 (Alibaba, China) [ns]
54.81.32.208 (Amazon AWS, US)
65.27.155.176 (Time Warner Cable, US)
79.88.112.206 (Societe Francaise du Radiotelephone, France)
83.239.90.244 (OJSC Rostelecom Macroregional Branch South, Russia)
89.39.83.177 (C&A Connect SRL, Romania)
89.69.138.91 (UPC, Poland)
92.84.13.131 (Romtelecom, Romania) [ns]
93.190.137.5 (Worldstream, Netherlands)
95.57.118.56 (Dmitry Davydenko / Goldhost LLC, Kazakhstan)
96.44.143.179 (Quadranet Inc, US)
103.31.251.202 (Argon Data Communication, Indonesia)
108.81.248.139 (William Allard / AT&T, US)
109.24.255.129 (Societe Francaise du Radiotelephone, France)
112.222.201.43 (LG DACOM Corporation, Korea)
115.28.39.216 (Hichina Web Solutions, China)
128.101.154.25 (University of Minnesota, US) [ns]
128.199.235.196 (DigitialOcean Cloud, Singapore)
130.255.185.19 (Bradler & Krantz, Germany)
147.249.171.10 (IDD Information Services, US) [ns]
152.46.17.236 (North Carolina Research and Education Network, US)
162.243.39.118 (Digital Ocean, US)
167.15.26.219 (Munich Reinsurance America Inc, US) [ns]
167.120.25.43 (The Dow Chemical Company, US) [ns]
171.76.101.11 (Bharti Cellular Ltd, India) [ns]
175.107.192.56 (Cyber Internet Services Pakistan, Pakistan)
176.53.125.6 (Radore Veri Merkezi Hizmetleri, Turkey)
181.41.194.253 (HOST1FREE at Brazil, Brazil)
184.154.170.10 (SingleHop, US) [ns]
185.9.159.205 (Salay Telekomunikasyon Ticaret Limited Sirketi, Turkey)
186.194.39.139 (FMG Macabuense com serv distrib ltda-me, Brazil) [ns]
186.202.184.178 (Locaweb Serviços de Internet S/A, Brazil)
186.214.212.64 (Global Village Telecom, Brazil)
188.165.91.216 (OVH, France / DoHost, Egypt) [ns]
188.168.142.57 (Transtelecom CJSC, Russia)
193.17.184.247 (Biznes-Host.pl, Poland)
194.209.82.222 (blue-infinity, Switzerland) [ns]
203.235.181.138 (KRNIC, Korea)
208.167.238.115 (Choopa LLC, US)
209.203.50.200 (Vox Telecom, South Africa)
222.218.13.91 (Chinanet Guangxi Province Network , China) [ns]
12.42.61.221 |
19.214.121.54 |
22.15.199.21 |
23.253.75.234 |
31.210.107.33 |
32.21.129.43 |
32.90.65.25 |
37.255.241.29 |
41.66.55.3 |
41.106.3.132 |
42.96.195.183 |
54.81.32.208 |
65.27.155.176 |
79.88.112.206 |
83.239.90.244 |
89.39.83.177 |
89.69.138.91 |
92.84.13.131 |
93.190.137.5 |
95.57.118.56 |
96.44.143.179 |
103.31.251.202 |
108.81.248.139 |
109.24.255.129 |
112.222.201.43 |
115.28.39.216 |
128.101.154.25 |
128.199.235.196 |
130.255.185.19 |
147.249.171.10 |
152.46.17.236 |
162.243.39.118 |
167.15.26.219 |
167.120.25.43 |
171.76.101.11 |
175.107.192.56 |
176.53.125.6 |
181.41.194.253 |
184.154.170.10 |
185.9.159.205 |
186.194.39.139 |
186.202.184.178 |
186.214.212.64 |
188.165.91.216 |
188.168.142.57 |
193.17.184.247 |
194.209.82.222 |
203.235.181.138 |
208.167.238.115 |
209.203.50.200 |
222.218.13.91 |