Reverse | Unknown |
Country | US |
City | Buffalo |
Organization | ColoCrossing |
ASN | AS36352 |
Subnet | 23.249.160.0/20 |
Country | US |
Netname | Undisclosed |
Subnet | Undisclosed |
Information | Undisclosed |
https://pastebin.com/4qsJctF6 (2019-02-16)
https://pastebin.com/HK8QDf7Q (2019-02-06)
https://pastebin.com/8hFM57ab (2019-01-30)
Forward - resonance-pub.watchdogdns.duckdns.org (2019-02-17)
Forward - www.watchdogdns.duckdns.org (2019-02-17)
Forward - watchdogdns.duckdns.orgwatchdogdns.duckdns.org (2019-02-17)
Forward - iprudential.com.watchdogdns.duckdns.org (2019-02-17)
Forward - duoliprudential.com.watchdogdns.duckdns.org (2019-02-17)
Forward - coqianlong.watchdogdns.duckdns.org (2019-02-17)
Forward - cocomputewww.watchdogdns.duckdns.org (2019-02-17)
Forward - com.watchdogdns.duckdns.org (2019-02-17)
Forward - ggvoyages.comduoliprudential.com.watchdogdns.duckdns.org (2019-02-17)
Forward - farmcomputewww.watchdogdns.duckdns.org (2019-02-17)
135/TCP - Windows (2019-02-17)
3306/TCP - Windows (2019-02-05)
139/TCP - Windows (2019-01-22)
445/TCP - Windows (2019-01-22)
443/TCP - Windows (2019-01-22)
- https://23.249.161.100/
3389/TCP - FreeBSD (2019-01-22)
80/TCP - Windows (2019-01-22)
- http://23.249.161.100/
80/TCP - http (2019-02-17)
- http://23.249.161.100/
Product - HTTP Server (version: 2.4.37)
HTTP/1.1 200 OK Date: Sun, 17 Feb 2019 20:28:50 GMT Server: Apache/2.4.37 (Win32) OpenSSL/1.0.2p PHP/7.0.33 Content-Length: 1428 Content-Type: text/html;charset=UTF-8 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN"> <html> <head> <title>Index of /frank</title> </head> <body> <h1>Index of /frank</h1> <table> <tr><th valign="top"><img src="/icons/blank.gif" alt="[ICO]"></th><th><a href="?C=N;O=D">Name</a></th><th><a href="?C=M;O=A">Last modified</a></th><th><a href="?C=S;O=A">Size</a></th><th><a href="?C=D;O=A">Description</a></th></tr> <tr><th colspan="5"><hr></th></tr> <tr><td valign="top"><img src="/icons/back.gif" alt="[PARENTDIR]"></td><td><a href="/">Parent Directory</a> </td><td> </td><td align="right"> - </td><td> </td></tr> <tr><td valign="top"><img src="/icons/binary.gif" alt="[ ]"></td><td><a href="AZEEZ.exe">AZEEZ.exe</a> </td><td align="right">2019-01-22 08:51 </td><td align="right">558K</td><td> </td></tr> <tr><td valign="top"><img src="/icons/binary.gif" alt="[ ]"></td><td><a href="Azeez%202.exe">Azeez 2.exe</a> </td><td align="right">2019-01-29 09:16 </td><td align="right">606K</td><td> </td></tr> <tr><td valign="top"><img src="/icons/binary.gif" alt="[ ]"></td><td><a href="invioce.exe">invioce.exe</a> </td><td align="right">2019-02-06 02:32 </td><td align="right">556K</td><td> </td></tr> <tr><th colspan="5"><hr></th></tr> </table> <address>Apache/2.4.37 (Win32) OpenSSL/1.0.2p PHP/7.0.33 Server at www.watchdogdns.duckdns.org Port 80</address> </body></html>
HTTP/1.1 200 OK Date: Sun, 17 Feb 2019 20:28:49 GMT Server: Apache/2.4.37 (Win32) OpenSSL/1.0.2p PHP/7.0.33 Content-Length: 1435 Content-Type: text/html;charset=UTF-8 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN"> <html> <head> <title>Index of /jack</title> </head> <body> <h1>Index of /jack</h1> <table> <tr><th valign="top"><img src="/icons/blank.gif" alt="[ICO]"></th><th><a href="?C=N;O=D">Name</a></th><th><a href="?C=M;O=A">Last modified</a></th><th><a href="?C=S;O=A">Size</a></th><th><a href="?C=D;O=A">Description</a></th></tr> <tr><th colspan="5"><hr></th></tr> <tr><td valign="top"><img src="/icons/back.gif" alt="[PARENTDIR]"></td><td><a href="/">Parent Directory</a> </td><td> </td><td align="right"> - </td><td> </td></tr> <tr><td valign="top"><img src="/icons/binary.gif" alt="[ ]"></td><td><a href="dd.exe">dd.exe</a> </td><td align="right">2019-01-19 07:03 </td><td align="right">756K</td><td> </td></tr> <tr><td valign="top"><img src="/icons/binary.gif" alt="[ ]"></td><td><a href="dmw.exe">dmw.exe</a> </td><td align="right">2019-02-05 21:32 </td><td align="right">1.8M</td><td> </td></tr> <tr><td valign="top"><img src="/icons/unknown.gif" alt="[ ]"></td><td><a href="mt103.doc">mt103.doc</a> </td><td align="right">2019-02-05 09:11 </td><td align="right">3.5K</td><td> </td></tr> <tr><th colspan="5"><hr></th></tr> </table> <address>Apache/2.4.37 (Win32) OpenSSL/1.0.2p PHP/7.0.33 Server at watchdogdns.duckdns.orgwatchdogdns.duckdns.org Port 80</address> </body></html>
HTTP/1.1 200 OK Date: Sun, 17 Feb 2019 20:26:37 GMT Server: Apache/2.4.37 (Win32) OpenSSL/1.0.2p PHP/7.0.33 Content-Length: 1418 Content-Type: text/html;charset=UTF-8 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN"> <html> <head> <title>Index of /ace</title> </head> <body> <h1>Index of /ace</h1> <table> <tr><th valign="top"><img src="/icons/blank.gif" alt="[ICO]"></th><th><a href="?C=N;O=D">Name</a></th><th><a href="?C=M;O=A">Last modified</a></th><th><a href="?C=S;O=A">Size</a></th><th><a href="?C=D;O=A">Description</a></th></tr> <tr><th colspan="5"><hr></th></tr> <tr><td valign="top"><img src="/icons/back.gif" alt="[PARENTDIR]"></td><td><a href="/">Parent Directory</a> </td><td> </td><td align="right"> - </td><td> </td></tr> <tr><td valign="top"><img src="/icons/binary.gif" alt="[ ]"></td><td><a href="ss.exe">ss.exe</a> </td><td align="right">2019-01-29 07:42 </td><td align="right">756K</td><td> </td></tr> <tr><td valign="top"><img src="/icons/binary.gif" alt="[ ]"></td><td><a href="vbc.exe">vbc.exe</a> </td><td align="right">2019-02-03 23:31 </td><td align="right">477K</td><td> </td></tr> <tr><td valign="top"><img src="/icons/binary.gif" alt="[ ]"></td><td><a href="vpn.exe">vpn.exe</a> </td><td align="right">2019-01-21 22:29 </td><td align="right">1.9M</td><td> </td></tr> <tr><th colspan="5"><hr></th></tr> </table> <address>Apache/2.4.37 (Win32) OpenSSL/1.0.2p PHP/7.0.33 Server at coqianlong.watchdogdns.duckdns.org Port 80</address> </body></html>
HTTP/1.1 200 OK Date: Sun, 17 Feb 2019 20:26:38 GMT Server: Apache/2.4.37 (Win32) OpenSSL/1.0.2p PHP/7.0.33 Content-Length: 1420 Content-Type: text/html;charset=UTF-8 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN"> <html> <head> <title>Index of /ace</title> </head> <body> <h1>Index of /ace</h1> <table> <tr><th valign="top"><img src="/icons/blank.gif" alt="[ICO]"></th><th><a href="?C=N;O=D">Name</a></th><th><a href="?C=M;O=A">Last modified</a></th><th><a href="?C=S;O=A">Size</a></th><th><a href="?C=D;O=A">Description</a></th></tr> <tr><th colspan="5"><hr></th></tr> <tr><td valign="top"><img src="/icons/back.gif" alt="[PARENTDIR]"></td><td><a href="/">Parent Directory</a> </td><td> </td><td align="right"> - </td><td> </td></tr> <tr><td valign="top"><img src="/icons/binary.gif" alt="[ ]"></td><td><a href="ss.exe">ss.exe</a> </td><td align="right">2019-01-29 07:42 </td><td align="right">756K</td><td> </td></tr> <tr><td valign="top"><img src="/icons/binary.gif" alt="[ ]"></td><td><a href="vbc.exe">vbc.exe</a> </td><td align="right">2019-02-03 23:31 </td><td align="right">477K</td><td> </td></tr> <tr><td valign="top"><img src="/icons/binary.gif" alt="[ ]"></td><td><a href="vpn.exe">vpn.exe</a> </td><td align="right">2019-01-21 22:29 </td><td align="right">1.9M</td><td> </td></tr> <tr><th colspan="5"><hr></th></tr> </table> <address>Apache/2.4.37 (Win32) OpenSSL/1.0.2p PHP/7.0.33 Server at cocomputewww.watchdogdns.duckdns.org Port 80</address> </body></html>
HTTP/1.1 200 OK Date: Sun, 17 Feb 2019 20:26:38 GMT Server: Apache/2.4.37 (Win32) OpenSSL/1.0.2p PHP/7.0.33 Content-Length: 1428 Content-Type: text/html;charset=UTF-8 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN"> <html> <head> <title>Index of /frank</title> </head> <body> <h1>Index of /frank</h1> <table> <tr><th valign="top"><img src="/icons/blank.gif" alt="[ICO]"></th><th><a href="?C=N;O=D">Name</a></th><th><a href="?C=M;O=A">Last modified</a></th><th><a href="?C=S;O=A">Size</a></th><th><a href="?C=D;O=A">Description</a></th></tr> <tr><th colspan="5"><hr></th></tr> <tr><td valign="top"><img src="/icons/back.gif" alt="[PARENTDIR]"></td><td><a href="/">Parent Directory</a> </td><td> </td><td align="right"> - </td><td> </td></tr> <tr><td valign="top"><img src="/icons/binary.gif" alt="[ ]"></td><td><a href="AZEEZ.exe">AZEEZ.exe</a> </td><td align="right">2019-01-22 08:51 </td><td align="right">558K</td><td> </td></tr> <tr><td valign="top"><img src="/icons/binary.gif" alt="[ ]"></td><td><a href="Azeez%202.exe">Azeez 2.exe</a> </td><td align="right">2019-01-29 09:16 </td><td align="right">606K</td><td> </td></tr> <tr><td valign="top"><img src="/icons/binary.gif" alt="[ ]"></td><td><a href="invioce.exe">invioce.exe</a> </td><td align="right">2019-02-06 02:32 </td><td align="right">556K</td><td> </td></tr> <tr><th colspan="5"><hr></th></tr> </table> <address>Apache/2.4.37 (Win32) OpenSSL/1.0.2p PHP/7.0.33 Server at com.watchdogdns.duckdns.org Port 80</address> </body></html>
HTTP/1.1 200 OK Date: Sun, 17 Feb 2019 20:24:30 GMT Server: Apache/2.4.37 (Win32) OpenSSL/1.0.2p PHP/7.0.33 Content-Length: 1232 Content-Type: text/html;charset=UTF-8 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN"> <html> <head> <title>Index of /jhn</title> </head> <body> <h1>Index of /jhn</h1> <table> <tr><th valign="top"><img src="/icons/blank.gif" alt="[ICO]"></th><th><a href="?C=N;O=D">Name</a></th><th><a href="?C=M;O=A">Last modified</a></th><th><a href="?C=S;O=A">Size</a></th><th><a href="?C=D;O=A">Description</a></th></tr> <tr><th colspan="5"><hr></th></tr> <tr><td valign="top"><img src="/icons/back.gif" alt="[PARENTDIR]"></td><td><a href="/">Parent Directory</a> </td><td> </td><td align="right"> - </td><td> </td></tr> <tr><td valign="top"><img src="/icons/binary.gif" alt="[ ]"></td><td><a href="tony.exe">tony.exe</a> </td><td align="right">2019-01-14 04:26 </td><td align="right">544K</td><td> </td></tr> <tr><td valign="top"><img src="/icons/binary.gif" alt="[ ]"></td><td><a href="vbc.exe">vbc.exe</a> </td><td align="right">2019-02-13 03:47 </td><td align="right">532K</td><td> </td></tr> <tr><th colspan="5"><hr></th></tr> </table> <address>Apache/2.4.37 (Win32) OpenSSL/1.0.2p PHP/7.0.33 Server at ggvoyages.comduoliprudential.com.watchdogdns.duckdns.org Port 80</address> </body></html>
HTTP/1.1 200 OK Date: Sun, 17 Feb 2019 20:22:16 GMT Server: Apache/2.4.37 (Win32) OpenSSL/1.0.2p PHP/7.0.33 Content-Length: 996 Content-Type: text/html;charset=UTF-8 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN"> <html> <head> <title>Index of /shell</title> </head> <body> <h1>Index of /shell</h1> <table> <tr><th valign="top"><img src="/icons/blank.gif" alt="[ICO]"></th><th><a href="?C=N;O=D">Name</a></th><th><a href="?C=M;O=A">Last modified</a></th><th><a href="?C=S;O=A">Size</a></th><th><a href="?C=D;O=A">Description</a></th></tr> <tr><th colspan="5"><hr></th></tr> <tr><td valign="top"><img src="/icons/back.gif" alt="[PARENTDIR]"></td><td><a href="/">Parent Directory</a> </td><td> </td><td align="right"> - </td><td> </td></tr> <tr><td valign="top"><img src="/icons/binary.gif" alt="[ ]"></td><td><a href="vbc.exe">vbc.exe</a> </td><td align="right">2019-02-05 22:55 </td><td align="right">339K</td><td> </td></tr> <tr><th colspan="5"><hr></th></tr> </table> <address>Apache/2.4.37 (Win32) OpenSSL/1.0.2p PHP/7.0.33 Server at com.watchdogdns.duckdns.org Port 80</address> </body></html>
HTTP/1.1 200 OK Date: Sun, 17 Feb 2019 20:22:16 GMT Server: Apache/2.4.37 (Win32) OpenSSL/1.0.2p PHP/7.0.33 Content-Length: 1640 Content-Type: text/html;charset=UTF-8 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN"> <html> <head> <title>Index of /jae</title> </head> <body> <h1>Index of /jae</h1> <table> <tr><th valign="top"><img src="/icons/blank.gif" alt="[ICO]"></th><th><a href="?C=N;O=D">Name</a></th><th><a href="?C=M;O=A">Last modified</a></th><th><a href="?C=S;O=A">Size</a></th><th><a href="?C=D;O=A">Description</a></th></tr> <tr><th colspan="5"><hr></th></tr> <tr><td valign="top"><img src="/icons/back.gif" alt="[PARENTDIR]"></td><td><a href="/">Parent Directory</a> </td><td> </td><td align="right"> - </td><td> </td></tr> <tr><td valign="top"><img src="/icons/unknown.gif" alt="[ ]"></td><td><a href="invoice.doc">invoice.doc</a> </td><td align="right">2019-02-05 03:38 </td><td align="right">4.5K</td><td> </td></tr> <tr><td valign="top"><img src="/icons/binary.gif" alt="[ ]"></td><td><a href="ss.exe">ss.exe</a> </td><td align="right">2019-01-19 07:03 </td><td align="right">756K</td><td> </td></tr> <tr><td valign="top"><img src="/icons/binary.gif" alt="[ ]"></td><td><a href="user.exe">user.exe</a> </td><td align="right">2019-02-12 10:22 </td><td align="right">836K</td><td> </td></tr> <tr><td valign="top"><img src="/icons/binary.gif" alt="[ ]"></td><td><a href="win32.exe">win32.exe</a> </td><td align="right">2019-01-28 04:57 </td><td align="right">634K</td><td> </td></tr> <tr><th colspan="5"><hr></th></tr> </table> <address>Apache/2.4.37 (Win32) OpenSSL/1.0.2p PHP/7.0.33 Server at farmcomputewww.watchdogdns.duckdns.org Port 80</address> </body></html>
HTTP/1.1 200 OK Date: Sun, 17 Feb 2019 20:22:17 GMT Server: Apache/2.4.37 (Win32) OpenSSL/1.0.2p PHP/7.0.33 Content-Length: 1018 Content-Type: text/html;charset=UTF-8 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN"> <html> <head> <title>Index of /work</title> </head> <body> <h1>Index of /work</h1> <table> <tr><th valign="top"><img src="/icons/blank.gif" alt="[ICO]"></th><th><a href="?C=N;O=D">Name</a></th><th><a href="?C=M;O=A">Last modified</a></th><th><a href="?C=S;O=A">Size</a></th><th><a href="?C=D;O=A">Description</a></th></tr> <tr><th colspan="5"><hr></th></tr> <tr><td valign="top"><img src="/icons/back.gif" alt="[PARENTDIR]"></td><td><a href="/">Parent Directory</a> </td><td> </td><td align="right"> - </td><td> </td></tr> <tr><td valign="top"><img src="/icons/binary.gif" alt="[ ]"></td><td><a href="vbc.exe">vbc.exe</a> </td><td align="right">2019-02-13 19:27 </td><td align="right">556K</td><td> </td></tr> <tr><th colspan="5"><hr></th></tr> </table> <address>Apache/2.4.37 (Win32) OpenSSL/1.0.2p PHP/7.0.33 Server at bounces.duoliprudential.com.watchdogdns.duckdns.org Port 80</address> </body></html>
HTTP/1.1 200 OK Date: Sun, 17 Feb 2019 20:20:14 GMT Server: Apache/2.4.37 (Win32) OpenSSL/1.0.2p PHP/7.0.33 Content-Length: 1439 Content-Type: text/html;charset=UTF-8 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN"> <html> <head> <title>Index of /jack</title> </head> <body> <h1>Index of /jack</h1> <table> <tr><th valign="top"><img src="/icons/blank.gif" alt="[ICO]"></th><th><a href="?C=N;O=D">Name</a></th><th><a href="?C=M;O=A">Last modified</a></th><th><a href="?C=S;O=A">Size</a></th><th><a href="?C=D;O=A">Description</a></th></tr> <tr><th colspan="5"><hr></th></tr> <tr><td valign="top"><img src="/icons/back.gif" alt="[PARENTDIR]"></td><td><a href="/">Parent Directory</a> </td><td> </td><td align="right"> - </td><td> </td></tr> <tr><td valign="top"><img src="/icons/binary.gif" alt="[ ]"></td><td><a href="dd.exe">dd.exe</a> </td><td align="right">2019-01-19 07:03 </td><td align="right">756K</td><td> </td></tr> <tr><td valign="top"><img src="/icons/binary.gif" alt="[ ]"></td><td><a href="dmw.exe">dmw.exe</a> </td><td align="right">2019-02-05 21:32 </td><td align="right">1.8M</td><td> </td></tr> <tr><td valign="top"><img src="/icons/unknown.gif" alt="[ ]"></td><td><a href="mt103.doc">mt103.doc</a> </td><td align="right">2019-02-05 09:11 </td><td align="right">3.5K</td><td> </td></tr> <tr><th colspan="5"><hr></th></tr> </table> <address>Apache/2.4.37 (Win32) OpenSSL/1.0.2p PHP/7.0.33 Server at www.watchdogdns.duckdns.orgwatchdogdns.duckdns.org Port 80</address> </body></html>
ONYPHE - botnet/bcmupnphunter | NO |
ONYPHE - botnet/mirai | NO |
Abusech - Zeus IPs | NO |
Abusech - Zeus bad IPs | NO |
Alienvault - Reputation | NO |
Bambenekconsulting - C2 IP master list | NO |
Binarydefense - IP blacklist | NO |
Blutmagie - Tor exit nodes | NO |
Dan - Tor nodes | NO |
Dataplane - SSH client | NO |
Dataplane - SSH pwauth | NO |
Emergingthreats - Compromised IPs | NO |
Emergingthreats - Spamhaus, DShield and Abuse.ch | NO |
Greensnow - IP blacklist | NO |
Iblocklist - Exploiters, scanners and spammers | NO |
Iblocklist - Malicious IPs | NO |
Iblocklist - Proxies and Tor exit nodes | NO |
Labssnort - IP blacklist | NO |
Nothink - SSH day blacklist | NO |
SANS - IP blacklist | NO |
SANS - Malicious IPs | NO |
Torproject - Tor relays | NO |
Uceprotect - IP blacklist level-1 | NO |
Uceprotect - IP blacklist level-2 | NO |
Uceprotect - IP blacklist level-3 | NO |
* This product includes GeoLite2 data created by MaxMind, available from http://www.maxmind.com.