# Copyright (c) 2014-2019 Maltrail developers (https://github.com/stamparm/maltrail/)
# See the file 'LICENSE' for copying permission

# Reference: https://citizenlab.ca/2015/12/packrat-report/

conhost.servehttp.com
dllhost.servehttp.com
lolinha.no-ip.org
ruley.no-ip.org
taskmgr.serveftp.com
taskmgr.servehttp.com
wjwj.no-ip.org

# Reference: https://twitter.com/ScumBots/status/1046773497949814785

mujo.ddns.net

# Reference: https://twitter.com/ScumBots/status/1036411466226827264

yuremiguel.ddns.net

# Reference: https://twitter.com/MalwareConfig/status/987384581681754113

minhaconta.ddns.net

# Reference: https://twitter.com/MalwareConfig/status/969993246565945347

zueirasemlimites.duckdns.org

# Reference: https://twitter.com/MalwareConfig/status/961830376833298434

kamalos.no-ip.biz

# Reference: https://twitter.com/MalwareConfig/status/945392209427345408

vs1.redirectme.net

# Reference: https://twitter.com/MalwareConfig/status/887165390954123264

fuckyoulammer.duckdns.org

# Reference: https://twitter.com/MalwareConfig/status/885632467750842368

xdxdxd.ddns.net

# Reference: https://twitter.com/MalwareConfig/status/864635038771679232

tenebrosotcs.duckdns.org

# Reference: https://twitter.com/MalwareConfig/status/849645725168398336

saviolasnaiik.duckdns.org

# Reference: https://twitter.com/MalwareConfig/status/790193491221643264

polyhack.no-ip.info

# Reference: https://twitter.com/MalwareConfig/status/790193179576377344

mahmouddayo.no-ip.biz

# Reference: https://twitter.com/MalwareConfig/status/790191737197195264

lal909.no-ip.org

# Reference: https://twitter.com/MalwareConfig/status/790191370682114048

rbroxz.servehalflife.com

# Reference: https://twitter.com/MalwareConfig/status/790190389504409604

nfexi.sytes.net

# Reference: https://twitter.com/MalwareConfig/status/790172395537653760

xuxa.no-ip.org

# Reference: https://twitter.com/MalwareConfig/status/790162573299679232

iletisim.no-ip.biz

# Reference: https://twitter.com/MalwareConfig/status/790153594003652608

hacker37.no-ip.info

# Reference: https://twitter.com/MalwareConfig/status/790153283927171072

manguera9417.no-ip.org

# Reference: https://twitter.com/MalwareConfig/status/790147534475984900

claraggg.no-ip.biz

# Reference: https://twitter.com/MalwareConfig/status/790147325490520066

whatthehell.no-ip.org

# Reference: https://twitter.com/MalwareConfig/status/790147289729929216

sanane2121.no-ip.org

# Reference: https://twitter.com/MalwareConfig/status/776523816340230145

adanali0113.ddns.net

# Reference: https://twitter.com/MalwareConfig/status/769699884232474624

henriquepenis.no-ip.org

# Reference: https://twitter.com/MalwareConfig/status/764204959047049216

serviceupdate.ddns.net

# Reference: https://twitter.com/MalwareConfig/status/756824336158363652

k3zgi.ddns.net

# Reference: https://twitter.com/MalwareConfig/status/756117630960926720

scdomal1177.duckdns.org

# Reference: https://twitter.com/MalwareConfig/status/756109184299593728

spynetpulssy.ddns.net

# Reference: https://twitter.com/MalwareConfig/status/754980281250185216

gabrielking.ddns.net

# Reference: https://twitter.com/MalwareConfig/status/753399932397248512

isleep.ddns.net

# Reference: https://twitter.com/ScumBots/status/1129450780380024839

178.54.139.105:1604