View Full Version : MalwareDomainsBlocklists - archived updates
AplusWebMaster
2010-03-15, 19:16
FYI...
- http://www.malwaredomains.com/wordpress/?p=880
March 13, 2010 - "151 new domains from www .malwareurl .com, malc0de.com, ddanchev.blogspot.com, safeweb.norton.com and others"
:fear:
AplusWebMaster
2010-03-17, 21:38
FYI...
- http://www.malwaredomains.com/wordpress/?p=886
March 17, 2010 - "217 new domains associated with rogue antivirus, fastflux, trojan, iframes, botnets, etc. Souces include secuboxlabs.fr, malwaredomainlist.com, ddanchev.blogspot.com..."
:fear:
AplusWebMaster
2010-03-22, 11:44
FYI...
- http://www.malwaredomains.com/wordpress/?p=889
March 20, 2010 - "201 new domains to block. Sources include ddanchev.blogspot.com, blogs.paretologic.com, support.clean-mx.de..."
:fear:
AplusWebMaster
2010-03-24, 22:51
FYI...
- http://www.malwaredomains.com/wordpress/?p=892
March 24, 2010 - "160 new domains flagged as drive-by downloads, scareware, zeus, and harmful by malc0de.com, jsunpack.jeek.org, malwareint.blogspot.com and others..."
:fear:
AplusWebMaster
2010-03-28, 01:40
FYI...
- http://www.malwaredomains.com/wordpress/?p=896
March 27, 2010 - "173 new domains to add to your shunlist and blocklist… Sources: www.malwareurl.com, malc0de.com, phil-secu.over-blog.net and others.."
:fear:
AplusWebMaster
2010-03-31, 13:20
FYI...
Blackhole DNS Update – 196 new domains
- http://www.malwaredomains.com/wordpress/?p=901
March 30, 2010 - "Sources include securehomenetwork.blogspot.com, zeustracker.abuse.ch, ddanchev.blogspot.com..."
:fear:
AplusWebMaster
2010-04-06, 13:58
FYI...
- http://www.malwaredomains.com/wordpress/?p=909
April 5, 2010 - "... 300 new domains have been added. Sources: support.clean-mx.de, www.freepcsecurity.co.uk, www.malwareurl.com, and others..."
:fear:
AplusWebMaster
2010-04-09, 13:26
FYI...
- http://www.malwaredomains.com/wordpress/?p=911
April 8, 2010 - "Added 210 koobface domains and 53 other domains associated with malicious activity. Sources: www.malwareurl.com, www.malwaredomainlist.com, secuboxlabs.fr, and others..."
:fear:
AplusWebMaster
2010-04-12, 15:39
FYI...
- http://www.malwaredomains.com/wordpress/?p=919
April 11, 2010 - "230 domains to add to your malware blocklist or malware domain sinkhole..."
:fear:
AplusWebMaster
2010-04-15, 12:28
FYI...
- http://www.malwaredomains.com/wordpress/?p=924
April 14, 2010 - "261 domains to block or redirect to your sinkhole. Sources include malc0de.com, support.clean-mx.de, and secuboxlabs.fr..."
:fear:
AplusWebMaster
2010-04-17, 15:26
FYI...
Big Update: gumblar domains, rbn domains, trojan domains and more
- http://www.malwaredomains.com/wordpress/?p=933
April 16, 2010 - "Over 300 domains associated with the RBN, gumblar, trojans, as well as domains associated with fraud. Sources include defintel.blogspot.com, emergingthreats.net, krebsonsecurity.com..."
:fear:
AplusWebMaster
2010-04-19, 20:15
FYI...
MalwareDomains updated - 2010.04.19...
- http://www.malwaredomains.com/wordpress/?p=938
April 19, 2010 - "... quick update, mainly of the domains mentioned earlier...
xfgkddya .cn, yesoc .in, yetanotherguitarsite .com, bitapardaz .net, crystaldesignlab .com, excellentblener .ru, binglbalts .com, corpadsinc .com, fourkingssports .com, mauiexperts .com, mauisportsinsider .com, 4238789324 .com"
Urgent additions
- http://www.malwaredomains.com/wordpress/?p=935
April 18, 2010 - "... the following domains are blocked or blacklisted:
binglbalts . com, corpadsinc .com, fourkingssports .com, networkads .net, mainnetsoll .com
sources: http://ddanchev.blogspot.com/2010/04/dissecting-wordpress-blogs-compromise.html , http://isc.sans.org/diary.html?storyid=8647 ."
:fear:
AplusWebMaster
2010-04-22, 00:38
FYI...
Blackhole DNS Update
- http://www.malwaredomains.com/wordpress/?p=940
April 20, 2010 - "Sources: wepawet.cs.ucsb.edu, malc0de.com, jsunpack.jeek.org, ddanchev.blogspot.com and others..."
:fear:
AplusWebMaster
2010-04-24, 12:47
FYI...
Many fastflux and rogue domains
- http://www.malwaredomains.com/wordpress/?p=946
April 24, 2010 - "Sources include www.malwareurl.com, www.siteadvisor.com, www.malwaredomainlist.com..."
:fear:
AplusWebMaster
2010-04-30, 12:17
FYI...
- http://www.malwaredomains.com/wordpress/?p=948
April 29, 2010 - "rogues, backdoors, exploit domains, and other badness. Sources include www.malwaredomainlist.com, atlas.arbor.net, threatexpert.com..."
:fear:
AplusWebMaster
2010-05-01, 17:04
FYI...
Fake McAfee DAT 5959: Google SEO hijacking
- http://www.malwaredomains.com/wordpress/?p=950
April 30, 2010 - "please block
* malware-checker-free. com
* tolstiy.co. cc
* endroiturlredirect. com
These sites are involved in google SEO hijacking and host exploits. Sites will be added on the next update.
Source: http://phil-secu.over-blog.net
:mad::fear:
AplusWebMaster
2010-05-04, 14:42
FYI...
DNS-BH Update...
... rogue antivirus, zeus...
- http://www.malwaredomains.com/wordpress/?p=952
May 3, 2010 - "Sources: secuboxlabs.fr, safeweb.norton.com. www.malwaredomainlist.com, and others..."
:fear::mad:
AplusWebMaster
2010-05-05, 22:13
FYI...
Important additions...
- http://www.malwaredomains.com/wordpress/?p=955
May 5, 2010 - "...Please block the following ASAP:
thejustb. com
grepad. com
ginopost. com
Sources:
- http://blog.scansafe.com/journal/2010/5/4/grepadcom-iframe-nets-govt-niche-sites.html
- http://isc.sans.org/diary.html?storyid=8740
- http://ddanchev.blogspot.com/2010/05/us-treasury-site-compromise-linked-to.html ..."
___
- http://google.com/safebrowsing/diagnostic?site=thejustb.com/
"... suspicious content was found on this site... on 2010-05-04. Malicious software includes 1 exploit(s)..."
- Country: UA
- http://google.com/safebrowsing/diagnostic?site=ginopost.com/
"... suspicious content was found on this site... on 2010-04-26. Malicious software includes 6 exploit(s), 5 trojan(s)..." - Country: UA
- http://google.com/safebrowsing/diagnostic?site=grepad.com/
"... suspicious content was found on this site.... on 2010-04-28. Malicious software includes 15 exploit(s), 9 trojan(s)..." - Country: UA
:mad::mad:
AplusWebMaster
2010-05-06, 16:37
FYI...
exploit, fastflux, malspam, rogue domains
- http://www.malwaredomains.com/wordpress/?p=959
May 6, 2010 - "159 domains containing malspam, rogue antivirus, trojans, or associated with fraud. Sources include www.malwareurl.com, atlas.arbor.net, hphosts.blogspot.com, ddanchev.blogspot.com..."
:fear::mad:
AplusWebMaster
2010-05-18, 12:46
FYI...
exploit, zeus, trojan domains
- http://www.malwaredomains.com/wordpress/?p=970
May 17, 2010 - "Sources include: www.malwaredomainlist.com, secuboxlabs.fr, blog.sucuri.net..."
:fear:
AplusWebMaster
2010-05-20, 13:55
FYI...
Huge Update: 270 domains
- http://www.malwaredomains.com/wordpress/?p=974
May 19, 2010 - "rogue domains, fastflux domains, exploit domains, and other malicious domains. Sources include www.malwaredomainlist.com, www.malwareurl.com, secuboxlabs.fr, and jsunpack.jeek.org..."
:fear:
AplusWebMaster
2010-05-24, 00:13
FYI...
Update: koobface,fastflux,zbot,zeus domains
- http://www.malwaredomains.com/wordpress/?p=976
May 23, 2010 - "Over 250 new domains associated with zbot, zeus,torpig,neosploit, koobface and other maliciousness. Sources include ddanchev.blogspot.com, atlas.arbor.net/summary/fastflux, www.malc0de.com, zeustracker.abuse.ch..."
- http://atlas.arbor.net/summary/fastflux
"... Currently monitoring 226 active fastflux domains..."
- http://www.malwaredomains.com/wordpress/?p=979
May 24, 2010 - "trendsecure.com is incorrectly listed and has been removed. Please remove from your blocklists ASAP."
:fear:
AplusWebMaster
2010-05-26, 22:11
FYI...
Blackhole DNS Update: 138 new domains
- http://www.malwaredomains.com/wordpress/?p=986
May 26, 2010 - "sources: secuboxlabs.fr, www.siteadvisor.com..."
:fear:
AplusWebMaster
2010-05-28, 12:35
FYI...
Urgent addition: v-medical-dot-org/89.187.53.203
- http://www.malwaredomains.com/wordpress/?p=990
Posted on May 27th, 2010 in 0day, New Domains by dglosser
Please add v-medical. org (89.187.53.203) to your blocklists.
Source: http://isc.sans.org/diary.html?storyid=8860
Last Updated: 2010-05-27 18:18:30 UTC
:fear:
AplusWebMaster
2010-05-30, 13:37
FYI...
- http://www.malwaredomains.com/wordpress/?p=993
May 29, 2010 - "Over 250 new malicious domains associated with zeus, fake security, neosploit, and other trojans and malware. Sources include malwaredomainlist.com, google.com/safebrowsing, blog.dynamoo.com..."
:fear:
AplusWebMaster
2010-06-02, 01:41
FYI...
List cleanup: 950 domains removed
- http://www.malwaredomains.com/wordpress/?p=1000
June 1, 2010 - "950 older domains have been removed. They are located in the file “removed-domains-20100601.txt” . Please let us know ASAP if any should be placed back on active state."
.
AplusWebMaster
2010-06-03, 05:06
FYI...
Urgent Block: credittreport-dot-info Clickjacking Attacks
- http://www.malwaredomains.com/wordpress/?p=1003
June 2, 2010 - "There has been an outbreak of clickjacking attacks on Facebook’s “Like” plugin. The target domain associated with the hidden iframe is credittreport. info. Please block that domain ASAP. Source:
- http://isc.sans.org/diary.html?storyid=8893
Last Updated: 2010-06-02 19:08:01 UTC
:mad::fear:
AplusWebMaster
2010-06-04, 22:15
FYI...
140 Domains added...
- http://www.malwaredomains.com/wordpress/?p=1007
June 4, 2010 - "140 new domains to shun, redirect, or just block. Sources: dnsbl.abuse.ch, www.malwaregroup.com, malc0de.com, and others..."
:fear:
AplusWebMaster
2010-06-07, 00:40
FYI...
279 malicious domains added
- http://www.malwaredomains.com/wordpress/?p=1010
June 6, 2010 - "279 new domains. Many associated with a malicious “8080 campaign” sent to us from malc0de.com..."
:fear:
AplusWebMaster
2010-06-07, 23:50
FYI...
Urgent Block: google-analytics(dot)dynalias.org
- http://www.malwaredomains.com/wordpress/?p=1013
June 7th, 2010 - Please block google-analytics. dynalias. org.
Sources:
- http://www.symantec.com/business/security_response/writeup.jsp?docid=2010-060601-3020-99&tabid=2
Updated: June 7, 2010 1:56:30 AM
- http://phil-secu.over-blog.net/
:fear::fear:
AplusWebMaster
2010-06-09, 13:29
FYI...
Scareware, trojan, exploit domains
- http://www.malwaredomains.com/wordpress/?p=1015
June 8, 2010 - "A bunch of new domains associated with scareware, exploits, trojans, etc. Sources: paretologic.com, www3.malekal.com, www.kvarcasvany .hu, ddanchev.blogspot.com and others..."
:fear:
AplusWebMaster
2010-06-10, 00:44
FYI...
Urgent Block: ww-dot-robint-dot-us
- http://www.malwaredomains.com/wordpress/?p=1017
June 9, 2010 - "ww(dot)robint(dot)us has been injected into over 111,000 IIS/ASP sites. Please add this to your blocklist ASAP (or refresh your zone file, as last night’s update included that domain) Sources:
- http://blog.sucuri.net/2010/06/mass-infection-of-iisasp-sites-robint-us.html
- http://nsmjunkie.blogspot.com/2010/06/anatomy-of-latest-mass-iisasp-infection.html
- http://isc.sans.edu/diary.html?storyid=8935 "
- http://forums.spybot.info/showpost.php?p=373948&postcount=92
:fear::fear:
AplusWebMaster
2010-06-12, 19:29
FYI...
many scareware, exploit, and rogue domains added
- http://www.malwaredomains.com/wordpress/?p=1025
June 12, 2010 - "Sources: ddanchev.blogspot.com, jsunpack.jeek.org, and others..."
:fear:
AplusWebMaster
2010-06-15, 14:19
FYI...
zeus, 8080, rogue domains... added
- http://www.malwaredomains.com/wordpress/?p=1034
June 14, 2010 - "Sources include: malwaredomainlist.com, malc0de.com, support.clean-mx.de, zeustracker.abuse.ch..."
:fear:
AplusWebMaster
2010-06-16, 13:26
FYI...
fastflux, zeus, trojan domains added
- http://www.malwaredomains.com/wordpress/?p=1044
June 15, 2010 - "sources include secuboxlabs.fr, atlas.arbor.net, malwaredomainlist.com, zeustracker.abuse.ch..."
- http://www.abuse.ch/?p=2568
May 17, 2010 - "... Arbor Networks... has added a fingerprint in their Peakflow product family to help Internet Service Providers (ISPs) and companies around the world to mitigate, protect and monitor malicious ZeuS C&C Botnet traffic within their Networks. The fingerprint provided by Arbor is being generated in cooperation with the ZeuS Tracker... If you are a network administrator and your company is runing Arbor Peakflow you just can activate the fingerprint using Arbor’s Active Threat Feed policies (ATF)."
:fear:
AplusWebMaster
2010-06-19, 04:20
FYI...
dns-bh update: 145 new domains
- http://www.malwaredomains.com/wordpress/?p=1054
June 18, 2010 - "Sources include: secuboxlabs.fr, www.malwaredomainlist.com, support.clean-mx.de, ddanchev.blogspot.com..."
:fear:
AplusWebMaster
2010-06-21, 04:54
FYI...
fake video, exploit, rogue security domains
- http://www.malwaredomains.com/wordpress/?p=1058
June 20, 2010 - "Sources include: paretologic.com, malwaredomainlist.com, malc0de.com..."
:mad:
AplusWebMaster
2010-06-23, 03:11
FYI...
Urgent block: volgo-marun .cn & sicha-linna8 .com
- http://www.malwaredomains.com/wordpress/?p=1065
June 22, 2010 - "From cyberinsecure.com:
The support site of leading Chinese PC manufacturer Lenovo has been compromised by unknown attackers who injected a rogue IFrame into the pages over the weekend. Security researchers warn that unwary visitors looking for drivers are exposed to several exploits that install the Bredolab trojan onto their computers.
The IFrame points to an exploit kit hosted on a domain called volgo-marun. cn. After performing several checks to determine what vulnerable software they had installed on their computer, the visitors were served with exploits targeting older versions of Internet Explorer, Adobe Reader or Adobe Flash player... and receives commands from C&C server with domain sicha-linna8 .com "
:mad:
AplusWebMaster
2010-06-23, 12:28
FYI...
128 new zeus, rogue, exploit domains
- http://www.malwaredomains.com/wordpress/?p=1067
June 22, 2010 - "128 new domains associated with exploits, zeus, rogue and other maliciousness..."
:fear:
AplusWebMaster
2010-06-25, 12:43
FYI...
Artro, asprox,zeus,rogue domains…
- http://www.malwaredomains.com/wordpress/?p=1081
June 24, 2010 - "Sources include: x.maldb.com, abuse.ch, m86security.com, secuboxlabs.fr..."
:fear:
AplusWebMaster
2010-07-02, 20:06
FYI...
20 new domains
- http://www.malwaredomains.com/wordpress/?p=1088
July 2, 2010 - "Quick update… 20 New domains..."
:fear:
AplusWebMaster
2010-07-06, 00:46
FYI...
List Cleanup: 646 Domains Removed
- http://www.malwaredomains.com/wordpress/?p=1092
July 5, 2010 - "646 domains have been removed. Please let us know if any need to be readded. There were 31 domains added in July 2009 and, a year later, are still actively serving up malware (according to google safebrowsing)..."
:fear:
AplusWebMaster
2010-07-07, 12:41
FYI
138 new domains
- http://www.malwaredomains.com/wordpress/?p=1094
July 6, 2010 - "138 new domains, including some gumblar and “malvertising” domains. Sources include: mdl.paretologic.com, malc0de.com/database/, blog.unmaskparasites.com, stopmalvertising.com..."
:fear:
AplusWebMaster
2010-07-08, 18:06
FYI...
Update: 246 harmful domains
- http://www.malwaredomains.com/wordpress/?p=1097
July 8, 2010 - "sources: securehomenetwork.blogspot.com, blog.unmaskparasites.com, freepcsecurity.co.uk, blog.dynamoo.com and others..."
:fear:
AplusWebMaster
2010-07-10, 20:57
FYI...
Update: 74 harmful domains added
- http://www.malwaredomains.com/wordpress/?p=1101
July 10, 2010 - "Sources include malc0de.com, safeweb.norton.com,abuse.ch..."
:fear:
AplusWebMaster
2010-07-13, 04:45
FYI...
Lots of zeus, exploit, neosploit domains…
- http://www.malwaredomains.com/wordpress/?p=1105
July 12, 2010 - "155 new domains. Sources include www.malwaredomainlist.com, zeustracker.abuse.ch, www.freepcsecurity.co.uk..."
:fear:
AplusWebMaster
2010-07-15, 15:48
FYI...
gumblar, koobface, and other nasty domains
- http://www.malwaredomains.com/wordpress/?p=1110
July 14, 2010 - "Sources include support.clean-mx.de, safeweb.norton.com,blog.unmaskparasites.com, ddanchev.blogspot.com..."
:fear:
AplusWebMaster
2010-07-16, 14:44
FYI...
koobface, exploit domains
- http://www.malwaredomains.com/wordpress/?p=1115
July 15, 2010 - "sources include isc.sans.org, ddanchev.blogspot.com,x.maldb.com, blog.unmaskparasites.com..."
:fear:
AplusWebMaster
2010-07-19, 17:58
FYI...
gumblar, rogue, scareware domains
- http://www.malwaredomains.com/wordpress/?p=1120
July 19, 2010 - "Sources: honeywhales.com, www.threatexpert.com, blog.unmaskparasites.com and others..."
:fear:
AplusWebMaster
2010-07-22, 15:46
FYI...
152 new domains (artro, gumblar, zeus, etc)
- http://www.malwaredomains.com/wordpress/?p=1126
July 21, 2010 - "Sources include abuse.ch, honeywhales.com, malc0de.com, www.freepcsecurity.co.uk..."
:fear:
AplusWebMaster
2010-07-24, 15:47
FYI...
164 new domains (zeus, gumblar, iframe, etc)
- http://www.malwaredomains.com/wordpress/?p=1129
July 23, 2010 - "164 new domains associated with sql injection, gumblar, zeus and other badness. Sources: safebrowsing.clients.google.com, ddanchev.blogspot.com, blog.unmaskparasites.com and others..."
:fear:
AplusWebMaster
2010-07-28, 13:35
FYI...
125 new unsafe domains
- http://www.malwaredomains.com/wordpress/?p=1133
July 27, 2010 - "Sources include safebrowsing.clients.google.com, blog.unmaskparasites.com, atlas.arbor.net..."
- http://atlas.arbor.net/summary/fastflux
"... Currently monitoring 195 active fastflux domains. The average duration across the 55880 domains ever tracked is 1 week 1 day. The longest duration of any domain is 65 weeks."
:mad::fear:
AplusWebMaster
2010-07-30, 12:54
FYI...
186 new domains
- http://www.malwaredomains.com/wordpress/?p=1136
July 29th, 2010 - "Trojans, gumblar, zeus... sources include honeywhales.com, malwaredomainlist, safebrowsing.google.com..."
:fear:
AplusWebMaster
2010-08-03, 10:59
FYI...
247 New Domains
- http://www.malwaredomains.com/wordpress/?p=1142
August 2nd, 2010 - "Start with harmful, dangerous, exploit domains. Add some fastflux and gumblar domains. Top it off with zeus, neosploit, and trojan domains... Sources include blog.unmaskparasites.com, blog.urlvoid.com, mdl.paretologic.com/index.php..."
:fear:
AplusWebMaster
2010-08-05, 12:56
FYI...
Over 200 Domains
- http://www.malwaredomains.com/wordpress/?p=1148
August 4, 2010 - "Over 200 domains associated with seomalware, malspam, zeus, gumblar have been added. Sources include safebrowsing.clients.google.com, blog.unmaskparasites.com, research.zscaler.com..."
- http://www.malwaredomains.com/wordpress/?p=1150
August 5, 2010 - "We just fixed two typos in the main files. The checksums will not match until they are re-synced."
:fear:
AplusWebMaster
2010-08-06, 13:35
FYI...
Long-lived malware domains
- http://www.malwaredomains.com/wordpress/?p=1152
August 5, 2010 - "We’ve been revalidating domains on the dns-bh list. There are over 739 domains (and counting) which were identified as malicious anywhere between 90 and 360 days ago. But according to google safebrowsing, are still actively involved in badness."
- http://www.malwaredomains.com/files/longlived_malware_domains.txt
>> http://boards.cexx.org/index.php?topic=18646.0
:fear:
AplusWebMaster
2010-08-08, 12:39
FYI...
Almost 200 New Malicious Domains
- http://www.malwaredomains.com/wordpress/?p=1156
August 7th, 2010 - "Sources include blog.dynamoo.com, blog.unmaskparasites.com, trojanedbinaries.com..."
:fear:
AplusWebMaster
2010-08-10, 13:58
FYI...
zeus, artro, fastflux domains
- http://www.malwaredomains.com/wordpress/?p=1166
August 9th, 2010 - "Sources include securehomenetwork.blogspot.com, amada.abuse.ch, honeywhales.com, support.clean-mx.de..."
:fear:
AplusWebMaster
2010-08-14, 03:15
FYI...
exploit, zeus, fastflux…
- http://www.malwaredomains.com/wordpress/?p=1172
August 13th, 2010 - "Over 200 domains associated with zeus, pdf exploits and other badness. Sources include safebrowsing.google.com, malekal.com, ddanchev.blogspot.com..."
:fear:
182 malicious domains added.
http://www.malwaredomains.com/wordpress/?p=1189
AplusWebMaster
2010-08-22, 11:37
FYI...
238 new malicious domains added...
- http://www.malwaredomains.com/wordpress/?p=1194
August 21st, 2010 - "Sources include ddanchev.blogspot.com, malwaredomainlist.com, mdl.paretologic.com..."
:fear:
AplusWebMaster
2010-08-24, 13:37
FYI...
254 New Malicious Domains
- http://www.malwaredomains.com/wordpress/?p=1198
August 23rd, 2010 - "Sources: secuboxlabs.fr, www.scumware.org, zeustracker.abuse.ch, malwaresurvival.com, and others..."
:fear:
AplusWebMaster
2010-08-27, 11:56
FYI...
220 malicious sites to block
- http://www.malwaredomains.com/wordpress/?p=1207
August 26th, 2010 - "Sources include www.freepcsecurity.co.uk, blog.urlvoid.com, vxvault.siri-urz.net..."
Urgent Unblock: Bit.ly
- http://www.malwaredomains.com/wordpress/?p=1210
August 27th, 2010 - "Bit.ly was delisted many hours ago… Please update your blocklists ASAP..."
:fear:
AplusWebMaster
2010-08-30, 12:52
FYI...
189 new malicious domains
- http://www.malwaredomains.com/wordpress/?p=1223
August 29th, 2010 - "As always, look in the domains.txt file* for the original reference as to why it was added..."
* http://mirror1.malwaredomains.com/files/domains.txt
:fear:
AplusWebMaster
2010-09-02, 13:46
FYI...
212 New Malicious Sites to Block
- http://www.malwaredomains.com/wordpress/?p=1227
September 1st, 2010 - "The 212 new domains are active – trojan downloaders, zeus, fast flux, etc. Sources include malwaredomainlist, zeustracker.abuse.ch, malc0de.com (all sources are listed in the domain.txt file) ..."
- http://mirror1.malwaredomains.com/files/domains.txt
:fear:
AplusWebMaster
2010-09-05, 13:57
FYI...
c&c, zeus, rogue, fastflux, exploitpack domains
- http://www.malwaredomains.com/wordpress/?p=1247
September 4th, 2010 - "214 new c&c, zeus, fastflux, rogue, exploitpack and other malicous web sites. Sources include atlas.arbor.net, safebrowsing.clients.google.com, secuboxlabs.fr..."
:fear:
AplusWebMaster
2010-09-09, 13:05
FYI...
218 New Malicious Sites
- http://www.malwaredomains.com/wordpress/?p=1254
September 8th, 2010 - "Sources include vxvault.siri-urz.net, wam.dasient.com, scamfraudalert.wordpress.com, db.aa419.org (full list is always in the http://mirror1.malwaredomains.com/files/domains.txt file)..."
:fear:
AplusWebMaster
2010-09-11, 23:40
FYI...
184 new malicious sites to block
- http://www.malwaredomains.com/wordpress/?p=1261
September 11th, 2010 - "Exploit domains, c&c domains, trojan domains and more… Sources include blog.dynamoo.com, blog.sucuri.net, malc0de.com ((full list is always in the http://mirror1.malwaredomains.com/files/domains.txt file)..."
:fear:
AplusWebMaster
2010-09-12, 20:04
FYI...
Gumblar Domains
- http://www.malwaredomains.com/wordpress/?p=1263
September 12th, 2010 - "Unmask Parasites has updated their list of Gumblar Zombie URLs. We’ve asked for permission to include it as a separate file in BIND and MS zone format while we intagrate them into our blocklists. But you should check out the massive list of over 1300 urls* yourself."
* http://blog.unmaskparasites.com/2009/12/18/list-of-gumblar-zombie-urls/
:fear::fear:
AplusWebMaster
2010-09-14, 15:03
FYI...
trojan, exploit, fastflux and other malicious sites to block
- http://www.malwaredomains.com/wordpress/?p=1267
September 14th, 2010 - "Sources include www.malwaredomainlist.com, atlas.arbor.net, secuboxlabs.fr, www.threatlog.com (the source for each entry is always in the http://mirror1.malwaredomains.com/files/domains.txt file)..."
:fear:
AplusWebMaster
2010-09-18, 20:08
FYI...
200+ malicious sites added
- http://www.malwaredomains.com/wordpress/?p=1276
September 18th, 2010 - "Amada C&C servers, harmful and malicious sites according to google safebrowsing, malvertisement domains, etc. (the source for each entry is always in the http://mirror1.malwaredomains.com/files/domains.txt file..."
:fear::fear:
AplusWebMaster
2010-09-19, 22:02
FYI...
379 new malicious domains added
- http://www.malwaredomains.com/wordpress/?p=1279
September 19th, 2010- "379 malicious sites containing amanda c&c domains, zeus domains, and other malicious domains. Sources include blog.dynamoo.com, amada.abuse.ch*..."
* http://amada.abuse.ch/blocklist.php
"... C&C servers ... included in the blocklist..."
- http://www.malwaredomains.com/wordpress/?p=1282
September 19th, 2010 - "We are continuing to revalidate domains on the dns-bh list. There are over 1230 domains which were identified as malicious anywhere between 90 and 360 days ago. but according to google safebrowsing, are still actively involved in badness.
- http://mirror1.malwaredomains.com/files/longlived_malware_domains.txt ..."
:fear:
AplusWebMaster
2010-09-23, 19:23
FYI...
240 New bulletproof, zeus, c&c, exploit domains
- http://www.malwaredomains.com/wordpress/?p=1289
September 23rd, 2010 - "... entries in the zone file containing an underscore have the line appended with “check-names ignore;};” Please let us know asap if you encounter any issues.
zeus domains, exploit domains, c&c domains, bulletproof and otherwise domains categorized as malicious by amada.abuse.ch*, vxvault.siri-urz.net, www3.malekal.com and others..."
* http://amada.abuse.ch/blocklist.php
:fear:
AplusWebMaster
2010-09-27, 11:14
FYI...
299 New Malicious Sites to Block
- http://www.malwaredomains.com/wordpress/?p=1298
September 26th, 2010 - "dns trojan domains, rogue domains, dropper domains, exploit and other harmful domains. Sources include blog.dynamoo.com, www.abuse.ch, www.malwaredomainlist.com..."
:fear:
AplusWebMaster
2010-09-29, 23:01
FYI...
234 New Malicious Sites
- http://www.malwaredomains.com/wordpress/?p=1300
September 29th, 2010 - "zeus, trojan, exploit domains and malicious sites. Sources include www.threatlog.com, www.malwaredomainlist.com, vxvault.siri-urz.net..."
:fear:
AplusWebMaster
2010-10-01, 18:42
FYI...
Blackhole DNS Update
- http://www.malwaredomains.com/wordpress/?p=1305
October 1st, 2010 - "168 new malicious sites and malicious urls to block..."
:fear:
AplusWebMaster
2010-10-03, 15:09
FYI...
... more “immortal” malware domains identified
- http://www.malwaredomains.com/wordpress/?p=1307
October 2nd, 2010 - "... 154 new “immortal” malware domains have been identified..."
:fear:
AplusWebMaster
2010-10-06, 14:24
FYI...
203 new malicious sites and domains
- http://www.malwaredomains.com/wordpress/?p=1312
October 6th, 2010 - "... categorized as harmful, exploit, rogue, trojan & zeus domains by zeustracker.abuse.ch, www.malwaredomainlist.com, google safebrowsing and others..."
:fear:
AplusWebMaster
2010-10-09, 16:41
FYI...
artro, rogue, c&c, fastflux botnet domains
- http://www.malwaredomains.com/wordpress/?p=1317
October 8th, 2010 - "fastflux botnet, artro, command & control domains, sites containing malicious iframes & malicious javascript. Sources include blog.dynamoo.com, mada.abuse.ch, www.threatlog.com..."
:fear:
AplusWebMaster
2010-10-12, 08:08
FYI...
211 new sites to block
- http://www.malwaredomains.com/wordpress/?p=1320
October 11th, 2010 - "211 domains associated with all sorts of badness. Sources include blog.sucuri.net, honeywhales.com, blog.dynamoo.com..."
:fear:
AplusWebMaster
2010-10-13, 15:29
FYI...
(193) more domains to blacklist
- http://www.malwaredomains.com/wordpress/?p=1325
October 13th, 2010 - "193 new sites to blacklist. Most came from sucuri.net..."
:fear:
AplusWebMaster
2010-10-16, 13:57
FYI...
Oct 15 Blackhole DNS Update
- http://www.malwaredomains.com/wordpress/?p=1338
October 15th, 2010 - "166 new domains, from sucuri.net and safebrowsing.clients.google.com..."
:fear:
AplusWebMaster
2010-10-18, 06:57
FYI...
openx exploit domains, zeus domains, rogue domains
- http://www.malwaredomains.com/wordpress/?p=1340
October 17th, 2010 - "251 domains associated with openx malware, zeus, exploits and other nasties you don’t want on your network. Sources include whitefirdesign.com, abuse.ch, atlas.arbor.net and others..."
:fear:
AplusWebMaster
2010-10-22, 07:08
FYI...
More “Immortal” Malware Distribution Sites
- http://www.malwaredomains.com/wordpress/?p=1350
October 21st, 2010 - "... updated our list of long lived malware distribution domains. These are 1492 domains which were originally identified as malicious anywhere between 90 and 360 days ago. However, according to google safebrowsing, these domains are still actively involved in malware distribution. List is here:
- http://mirror1.malwaredomains.com/files/longlived_malware_domains.txt
:fear:
AplusWebMaster
2010-10-24, 15:09
FYI...
185 New Malicious Sites
- http://www.malwaredomains.com/wordpress/?p=1354
October 23rd, 2010 - "Sources include sucuri.net, safebrowsing.clients.google.com, blog.dynamoo.com..."
:fear:
AplusWebMaster
2010-10-26, 23:50
FYI...
251 New Malware Sites to Block
- http://www.malwaredomains.com/wordpress/?p=1357
October 26th, 2010 - "... These sites are associated with Zeus, rogue antivirus, fastflux, and drive-by exploits. Sources include sucuri.net, research.zscaler.com, vxvault.siri-urz.net ..."
:fear:
AplusWebMaster
2010-10-28, 19:10
FYI...
New Domains to blacklist
- http://www.malwaredomains.com/wordpress/?p=1364
October 28th, 2010 - "194 new domains to add to your blacklist or sinkhole. Sources include honeywhales.com, safebrowsing.clients.google.com, secuboxlabs.fr, sucuri.net..."
:fear:
AplusWebMaster
2010-10-30, 13:43
FYI...
Small Oct 28 Update
- http://www.malwaredomains.com/wordpress/?p=1373
October 29th, 2010 - "Sources: sucuri.net, blog.urlvoid.com, malwaresurvival.com, zeustracker.abuse.ch..."
site delisting: elena-adams.com
- http://www.malwaredomains.com/wordpress/?p=1372
October 29th, 2010
:fear:
AplusWebMaster
2010-11-01, 13:37
FYI...
171 Harmful Domains to Blacklist
- http://www.malwaredomains.com/wordpress/?p=1376
October 31st, 2010 - "171 harmful, malicious sites. Sources: safebrowsing.clients.google.com, safeweb.norton.com, sucuri.net and others..."
:fear:
AplusWebMaster
2010-11-04, 14:12
FYI...
OpenX exploit domains, zeus, malicious iframes
- http://www.malwaredomains.com/wordpress/?p=1380
November 3rd, 2010 - "Lots of malicious sites to block, associated with the recent OpenX hack, zeus, etc. Sources include sucuri.net, www.whitefirdesign.com, atlas.arbor.net, wam.dasient.com..."
:fear:
AplusWebMaster
2010-11-07, 13:47
FYI...
206 new malicious domains
- http://www.malwaredomains.com/wordpress/?p=1386
November 6th, 2010 - "206 new malicious sites to block. Sources include siteadvisor, secuboxlabs.fr, honeywhales.com and others..."
:fear:
AplusWebMaster
2010-11-10, 20:22
FYI...
New fastflux, zeus, spyeye, trojan domains
- http://www.malwaredomains.com/wordpress/?p=1398
November 10th, 2010 - "Some new fastflux, spyeye, zeus, trojan domains..."
:fear:
AplusWebMaster
2010-11-14, 15:03
FYI...
156 New Malicious Domains
- http://www.malwaredomains.com/wordpress/?p=1402
November 13th, 2010 - "Sources include www.malwaredomainlist.com, secuboxlabs.fr, safebrowsing.clients.google.com..."
:fear:
AplusWebMaster
2010-11-16, 17:16
FYI...
113 New Harmful Domains Added
- http://www.malwaredomains.com/wordpress/?p=1405
November 16th, 2010 - "Added 113 harmful domains last night; also fixed an error in the list – if you updated your list last night please do so again at your earliest convenience..."
:fear:
AplusWebMaster
2010-11-18, 14:39
FYI...
Over 150 new harmful domains added
- http://www.malwaredomains.com/wordpress/?p=1411
November 17th, 2010 - "Domains associated with Neisploit, c&c, malspam, and trojans. Sources include malwaresurvival.com, www.malwaredomainlist.com, support.clean-mx.de..."
:fear:
AplusWebMaster
2010-11-22, 03:29
FYI...
malspam domains, more openx exploit domains, a couple of phishing domains
- http://www.malwaredomains.com/wordpress/?p=1418
November 20th, 2010 - "Some phishing and malspam domains, a couple more openx exploit domains, and assorted harmful domains you need to block. Sources include vxvault.siri-urz.net, www.whitefirdesign.com, malc0de.com and others..."
:fear:
AplusWebMaster
2010-11-23, 14:18
FYI...
fastflux, spyeye, zeus, rogue and other harmful domains
- http://www.malwaredomains.com/wordpress/?p=1425
November 22nd, 2010 - "Added 159 new malicious sites associated with zeus, spyeye, rogue security, etc. Sources include malc0de.com, safebrowsing.clients.google.com, atlas.arbor.net ..."
:fear:
AplusWebMaster
2010-11-27, 05:42
FYI...
DNS-BH Nov 24 Update
- http://www.malwaredomains.com/wordpress/?p=1432
November 24th, 2010 - "New malicious domains from malc0de.com, malwaresurvival.com, wam.dasient.com and others..."
- http://google.com/safebrowsing/diagnostic?site=google-stat50.info/
(One of many on the list)
:fear:
AplusWebMaster
2010-12-01, 04:40
FYI...
117 New Domains to Blacklist
- http://www.malwaredomains.com/wordpress/?p=1445
November 29th, 2010 - "zeus c&c, malicious javascript, spyeye and other malicious domains. Sources include safebrowsing.clients.google.com, honeywhales.com, vxvault.siri-urz.net ..."
:fear:
AplusWebMaster
2010-12-02, 07:41
FYI...
144 New harmful domains Domains
- http://www.malwaredomains.com/wordpress/?p=1450
December 1st, 2010 - "artro, zeus, harmful domains. Sources include safebrowsing.clients.google.com, www.malwaregroup.com, zeustracker.abuse.ch..."
:fear:
AplusWebMaster
2010-12-04, 09:30
FYI...
144 domains added
- http://www.malwaredomains.com/wordpress/?p=1453
December 3rd, 2010 - "artro c&c domains, spyeye domains, some rogue domains, and lots of google safebrowsing domains. Sources include safebrowsing.clients.google.com, spyeyetracker.abuse.ch, amada.abuse.ch and others..."
:fear:
AplusWebMaster
2010-12-06, 18:50
FYI...
zeus, neosploit, rogue domains added
- http://www.malwaredomains.com/wordpress/?p=1456
December 5th, 2010 - "139 domains: rogue domains, zeus domains, neosploit domains, malicious iframes… Sources include safebrowsing.clients.google.com, sitevet.com..."
- http://www.symantec.com/business/security_response/attacksignatures/detail.jsp?asid=23749
:fear:
AplusWebMaster
2010-12-10, 14:34
FYI...
195 new domains to block
- http://www.malwaredomains.com/wordpress/?p=1467
December 8th, 2010 - "spyeye, artro, zeus, darkness ddos bot domains, and more… Sources include blog.dynamoo.com, amada.abuse.ch, blog.sucuri.net..."
:fear:
AplusWebMaster
2010-12-14, 15:49
FYI...
Malicious javascript, torpig, spyeye domains
- http://www.malwaredomains.com/wordpress/?p=1486
December 14th, 2010 - "domains containing malicious javascript. Domains associated with spyeye, artro or mebroot. A short but important list. Sources include spyeyetracker.abuse.ch, blog.dynamoo.com, www.cs.ucsb.edu/~marc..."
long lived malware domains ...
- http://www.malwaredomains.com/wordpress/?p=1491
December 14th, 2010 - "... Of these 1185 domains, 569, or 48% were deemed as still “worthy” of being kept on the DNS-BH blocklist. That’s 569 harmful domains which were active for over four months. Another analysis occurred in Dec 2010. Of the 569 remaining domains, 150 or 26% were delisted — which means that 74% continued to be associated with badness. There are over 380 domains which have been listed for over a year. Data is here: http://www.malwaredomains.com/files/long_lived_malware_domains_analysis.txt
One observation – there are no rogue security domains on this list."
:fear:
AplusWebMaster
2010-12-18, 19:57
FYI...
mebroot/torpig, fastflux, botnet sites to block
- http://www.malwaredomains.com/wordpress/?p=1498
December 17th, 2010 - "130 malicious sites and domains (torpig, mebroot, fastflux, botnet, etc). Sources include secuboxlabs.fr, zeustracker.abuse.ch, wam.dasient.com..."
:fear:
AplusWebMaster
2010-12-21, 22:43
FYI...
172 domains to block
- http://www.malwaredomains.com/wordpress/?p=1506
December 21st, 2010 - "malvertising, exploit, phishing, and other malicious sites to block or shun. Sources include blog.armorize.com, security.thejoshmeister.com, vxvault.siri-urz.net/URL_List.php, safebrowsing.google.com..."
:fear:
AplusWebMaster
2010-12-27, 11:07
FYI...
zeus, Sinowal, moneymule domains
- http://www.malwaredomains.com/wordpress/?p=1516
December 25th, 2010 - "Domains associated with Zeus, moneymules, Sinowal, exploits and more… Sources include www.malwaredomainlist.com, securehomenetworks.blogspot.com, vxvault.siri-urz.net..."
:fear:
AplusWebMaster
2010-12-30, 15:27
FYI...
1481 long-lived malware domains
- http://www.malwaredomains.com/wordpress/?p=1524
December 29th, 2010 - "1481 long-lived malware domains active for at least 90 days, 850 active for at least 6 months, 500 active for over a year. Full list, sorted by number of days on our blocklist, is located here*."
* http://mirror1.malwaredomains.com/files/long-lived-malware-domains.txt
:fear:
AplusWebMaster
2011-01-01, 01:29
FYI...
Update: 175 Malicious Sites
- http://www.malwaredomains.com/wordpress/?p=1526
December 30th, 2010 - "175 malicious sites — PDF Exploits, mebroot, Sinowal, Zeus, ransomware… Sources include malwareurl.com, support.clean-mx.de, securehomenetworks.blogspot.com..."
:fear:
AplusWebMaster
2011-01-03, 11:59
FYI...
178 New Malicious Sites
- http://www.malwaredomains.com/wordpress/?p=1531
January 2nd, 2011 - "Malicious Sites containing PDF Exploits, Storm 3.0 and other malware… Sources include safebrowsing.clients.google.com, www.shadowserver.org, malekal.com..."
:fear:
AplusWebMaster
2011-01-07, 01:10
FYI...
Urgent Block: NoS.fileave[dot]com and dota2trailer[dot]tk
- http://www.malwaredomains.com/wordpress/?p=1537
January 6th, 2011 - "From the Internet Storm Center*: "dota2trailer .tk claims to have a video trailer for the new Dota 2 game but instead installs a keylogger to steal credentials from gamers… Looking at the code on the site it does try to use java to download “hxxp://NoS. fileave. com/CamPlug.exe” These sites will be blocked on tonight’s update but you shouldn’t wait…"
Fake Game Demo website
* http://isc.sans.edu/diary.html?storyid=10228
Last Updated: 2011-01-06 21:10:19 UTC - "... VirusTotal's url check* didn't show -any- known maliciousness associated with that url..."
* http://www.virustotal.com/url-scan/report.html?id=c6b23afaa80fb96f096cb9b9e6a25012-1294334566
Submission date: 2011-01-06 18:22:46 (UTC)
Antivirus report: View downloaded file analysis
Webscan result: 0/6 (0.0%)
[ Firefox Clean site, G-Data Clean site, Google Safebrowsing Clean site, Opera Clean site, ParetoLogic Clean site, Phishtank Clean site ]
- http://www.virustotal.com/file-scan/report.html?id=ecb6e9b3a5c4aa9165a7725d6b28d22dae38c8a72fe10d25eec53de5189c54bf-1294358709
File name: CamPlug.exe
Submission date: 2011-01-07 00:05:09 (UTC)
Result: 2/43 (4.7%)
1) http://www.mywot.com/en/scorecard/nos.fileave.com
Spam - 1
2) http://www.mywot.com/en/scorecard/dota2trailer.tk
Spam - 1 / Browser exploit - 2
:fear::fear:
AplusWebMaster
2011-01-08, 11:57
FYI...
rogue, geinimi, torpig, android malware sites
- http://www.malwaredomains.com/wordpress/?p=1544
January 6th, 2011 - "Domains associated with piracy, android malware, rogue security,artro, and other stuff you don’t want you or your user’s browser visiting or contacting. Source include securehomenetworks.blogspot.com, vxvault.siri-urz.net/URL_List.php, secuboxlabs.fr..."
:fear:
AplusWebMaster
2011-01-12, 06:54
FYI...
194 New Domains
- http://www.malwaredomains.com/wordpress/?p=1549
January 10th, 2011 - "194 malicious domains to block. Sources include security.thejoshmeister.com, securehomenetworks.blogspot.com, blogs.paretologic.com..."
:fear:
AplusWebMaster
2011-01-16, 00:31
FYI...
196 New Domains to Block
- http://www.malwaredomains.com/wordpress/?p=1564
January 14th, 2011 - "196 new domains to add to your blocklist. Rogue security domains, zeus, backdoor, exploit domains listed at blog.urlvoid.com, securehomenetworks.blogspot.com, vxvault.siri-urz.net and others..."
:fear:
AplusWebMaster
2011-01-20, 02:02
FYI...
200 New Domains
- http://www.malwaredomains.com/wordpress/?p=1568
January 18th, 2011 - "200 new domains to add to your malware blocklist. Artro domains, exploit domains, fastflux domains, listed at securehomenetworks.blogspot.com, sucuri.net, and others..."
:fear:
AplusWebMaster
2011-01-21, 23:15
FYI...
artro, fastflux, phishing, torping domains...
- http://www.malwaredomains.com/wordpress/?p=1577
January 20th, 2011 - "165 new domains associated with torpig, rogue antivirus, phishing, fastflux, and other badness. Sources include atlas.arbor.net, abuse.ch, vxvault.siri-urz.net..."
:fear:
AplusWebMaster
2011-01-24, 21:31
FYI...
gumblar, artro, zeus domains
- http://www.malwaredomains.com/wordpress/?p=1581
January 23rd, 2011 - "Domains associated with gumblar, zeus, drive-by’s, rogues, etc... Sources include viralerts.com, safebrowsing.google.com, blog.unmaskparasites.com ..."
:fear:
AplusWebMaster
2011-01-27, 13:08
FYI...
iframe, gumblar, rogue and other malicious domains
- http://www.malwaredomains.com/wordpress/?p=1586
January 26th, 2011 - "Malicious domains associated with zeus, rogue security, gumblar and other nastiness. Sources include securehomenetworks.blogspot.com, blog.unmaskparasites.com, www.shadowserver.org..."
:fear:
AplusWebMaster
2011-01-31, 11:47
FYI...
exploit, gumblar, neosploit, zeus domains
- http://www.malwaredomains.com/wordpress/?p=1590
January 29th, 2011 - "Domains associated with gumblar, zeus, neosploit, spyeye and other exploits and trojan badness. Sources include www3.malekal.com, blog.unmarkparasites, viralerts.com..."
- http://www.malwaredomains.com/wordpress/?p=1597
January 31st, 2011 - "Last night’s “justdomains” file seems to have been corrupted… We just replaced it with a new one..."
:fear:
AplusWebMaster
2011-02-04, 01:10
FYI...
210 Domains
- http://www.malwaredomains.com/wordpress/?p=1601
February 2nd, 2011 - "... 210 domains associated with artro, gumblar, rbn, torpig and other exploits. Source include www3.malekal.com, securehomenetworks.blogspot.com, honeywhales.com, blog.unmaskparasites.com..."
:fear:
AplusWebMaster
2011-02-07, 05:44
FYI...
179 New Malicious Domains
- http://www.malwaredomains.com/wordpress/?p=1611
February 6th, 2011 - "179 new malicious sites associated with gumblar, backdoors, moneymule, rogue security. Sources include securehomenetworks.blogspot.com, log.unmaskparasites.com, www.cyber-ta.org..."
:fear:
AplusWebMaster
2011-02-09, 06:46
FYI...
NeoSploit, FastFlux, Zeus, MoneyMule Domains
- http://www.malwaredomains.com/wordpress/?p=1624
February 8th, 2011 - "Something for everyone… Neosploit. Gumblar, fastflux, rogue, phoenix, money mule, zeus, and more… Sources include securehomenetworks.blogspot.com, ddanchev.blogspot.com (Welcome Back), blog.unmaskparasites.com, zeustracker.abuse.ch..."
:fear::fear:
AplusWebMaster
2011-02-11, 20:38
FYI...
gumblar, neosploit, mebroot and other malicious domains
- http://www.malwaredomains.com/wordpress/?p=1628
February 10th, 2011 - "132 malicious sites and domains to add to your blocklist or malware shunlist. Sources include viralerts.com, securehomenetworks.blogspot.com, safebrowsing.google.com..."
:fear:
AplusWebMaster
2011-02-14, 18:15
FYI...
spyeye, pheonix, palevo, blackhole exploit kit domains
- http://www.malwaredomains.com/wordpress/?p=1636
February 13th, 2011 - "Malicious domains associated with blackhole exploit kit, palevo, gumblar, spyeye and other exploits. Sources include honeywhales.com, honeywhales.com, stopmalvertising.com..."
:fear:
AplusWebMaster
2011-02-18, 16:07
FYI...
184 New Malicious, Harmful Domains
- http://www.malwaredomains.com/wordpress/?p=1648
February 18th, 2011 - "Additions: 184 domains associated with zeus, trojans, spyeye, rogue antimalware, etc. Sources include blog.dynamoo.com, labs.snort.org, securehomenetworks.blogspot.com, safebrowsing.google.com..."
:fear:
AplusWebMaster
2011-02-22, 05:04
FYI...
iframes, artro c&c domains, scareware domains
- http://www.malwaredomains.com/wordpress/?p=1653
February 20th, 2011 - "This update includes zeus, tdss rootlkit, scareware, and other harmful, malicious sites and domains. Sources include ddanchev.blogspot.com, safebrowsing.google.com, www.sacour .cn and many others..."
:fear:
AplusWebMaster
2011-02-27, 13:16
FYI...
Pheonix, Palevo, Neosploit, Money Mule, Rogue Domains
- http://www.malwaredomains.com/wordpress/?p=1663
February 25th, 2011 - "Pheonix, Palevo, Neosploit, Money Mule, Rogue Domains... Sources include support.clean-mx.de, securehomenetworks.blogspot.com, honeywhales.com..."
:fear:
AplusWebMaster
2011-03-02, 14:25
FYI...
Bulletproof Domains, Moneymule Domains, Exploit Domains, iframes and more...
- http://www.malwaredomains.com/wordpress/?p=1670
March 1st, 2011 - "... Sources include amada.abuse.ch, hphosts.blogspot.com, www.malwaredomainlist.com, support.clean-mx.de..."
:fear:
AplusWebMaster
2011-03-06, 05:19
FYI...
neosploit, blackhole, rogue & exploit domains
- http://www.malwaredomains.com/wordpress/?p=1675
March 4th, 2011 - "Sources include www.malwaredomainlist.com, support.clean-mx.de, safebrowsing.google.com..."
:fear:
AplusWebMaster
2011-03-09, 13:09
FYI...
Bullet Proof Domains, SpyEye, fast flux and other malicious domains
- http://www.malwaredomains.com/wordpress/?p=1684
March 8th, 2011 - "Bullet Proof SpyEye Domains, fast flux C&C, and other malicious domains. Sources include blog.sucuri.net, securehomenetworks.blogspot.com, www.sacour.cn & others..."
:fear:
AplusWebMaster
2011-03-14, 00:28
FYI...
Rogues, Trojans, Moneymule,Zeus domains
- http://www.malwaredomains.com/wordpress/?p=1695
March 12th, 2011 - "... Sources include ddanchev.blogspot.com, malwaredomainlist.com, vxvault.siri-urz.net and others..."
:fear:
AplusWebMaster
2011-03-17, 05:25
FYI...
malvertising*, exploit, rogue, moneymule domains
- http://www.malwaredomains.com/wordpress/?p=1698
March 16th, 2011 - "... sources include securehomenetworks.blogspot.com, www.malwaredomainlist.com, sunbeltblog.blogspot.com..."
* http://www.darkreading.com/taxonomy/index/printarticle/id/229300720
Mar 10, 2011
:fear:
AplusWebMaster
2011-03-20, 23:43
FYI...
artro, palevo, bulletproof, rogue domains
- http://www.malwaredomains.com/wordpress/?p=1702
March 19th, 2011 - "... Sources include amada.abuse.ch, support.clean-mx.de, www.malwaredomainlist.com..."
:fear:
AplusWebMaster
2011-03-23, 13:58
FYI...
Drive-by exploits, moneymule, zeus domains
- http://www.malwaredomains.com/wordpress/?p=1710
March 22nd, 2011 - "Zeus drive-by domains, drive-by exploits, moneymule, rogue security domains. Sources include blog.urlvoid.com, google.safebrowsing.com, www.spamhaus.org..."
:fear:
AplusWebMaster
2011-03-25, 23:00
FYI...
Bulletproof Zeus, cybercrime, rogue security domains
- http://www.malwaredomains.com/wordpress/?p=1714
March 25th, 2011 - "164 domains associated with Zeus (Bulletproof, drivebys), rogue antivirus, crybercrime and other badness. Sources include blog.sucuri.net, vxvault.siri-urz.net, www.malwaredomainlist.com..."
:fear::mad:
AplusWebMaster
2011-03-30, 18:42
FYI...
zeus, drive-by, malspam domains
- http://www.malwaredomains.com/wordpress/?p=1724
March 29th, 2011 - "Domains associated with malspam, moneymules, zeus, etc. Sources: www.spamhaus.org, safebrowsing.google.com and others..."
:fear:
AplusWebMaster
2011-03-31, 17:02
FYI...
DNS-BH Mar 30 update: 40 domains
- http://www.malwaredomains.com/wordpress/?p=1733
March 31st, 2011 - "A short but important update consisting of our two friends from yesterday (lizamoon . com and defender-uqko .in) and some rogue and exploit domains. Sources include sucuri.net, urlquery.net, urlvoid.com..."
:fear:
AplusWebMaster
2011-04-03, 14:46
FYI...
Lots of rogue and lizamoon domains
- http://www.malwaredomains.com/wordpress/?p=1738
April 2nd, 2011 - "163 domains, mainly associated with sql injection, lizamoon, and rogue antivirus. Most have been nuked but one can never be too careful (think about how many times gumblar has come back from the dead). Sources include ddanchev.blogspot.com, www .malwaregroup .com, community.websense.com/blogs..."
:fear::fear:
AplusWebMaster
2011-04-05, 17:18
FYI...
Big Update: lizamoon, driveby, rogue domains
- http://www.malwaredomains.com/wordpress/?p=1741
April 5th, 2011 - "Over 200 domains associated with zeus, lizamoon, drive-by exploits, moneymule, and fake security pages. Sources include securehomenetworks.blogspot.com, ddanchev.blogspot.com, urlvoid.com..."
:fear::fear:
AplusWebMaster
2011-04-08, 05:25
FYI...
Huge Update: Over 450 domains
- http://www.malwaredomains.com/wordpress/?p=1745
April 7th, 2011 - "One of the biggest updates ever – over 450 domains associated with some 0-day exploits, fakeav, lizamoon, and other badness...
Sources: amada.abuse.ch blocklist, safebrowsing.google.com, securehomenetworks.blogspot.com and others..."
:fear::mad::fear:
AplusWebMaster
2011-04-10, 11:54
FYI...
Another huge update – 278 Domains
- http://www.malwaredomains.com/wordpress/?p=1752
April 9th, 2011 - "278 domains associated with rouge security/fake AV, sql injection, lizamoon and other badness. Sources include blog.sucuri.net, safebrowsing.google.com, amada.abuse.ch and securehomenetworks.blogspot.com..."
:mad:
AplusWebMaster
2011-04-14, 12:58
FYI...
Rouges, moneymules, harmful domains
- http://www.malwaredomains.com/wordpress/?p=1755
April 13th, 2011 - "Domains associated with fake anvirus, moneymule and other badness added. Sources include sacour.cn, urlquery.net, amada.abuse.ch & securehomenetworks.blogspot.com..."
:fear:
AplusWebMaster
2011-04-17, 11:59
FYI...
266 Malicious Domains
- http://www.malwaredomains.com/wordpress/?p=1759
April 16th, 2011 - "266 domains (rouge, fake antivirus, and other badness) from sunbeltblog.blogspot.com, safebrowsing.google.com, amada.abuse.ch and others..."
:fear:
AplusWebMaster
2011-04-18, 20:03
FYI...
Fake AV, Malspam, gozi, harmful domains
- http://www.malwaredomains.com/wordpress/?p=1764
April 18th, 2011 - "Over 200 fake antivirus, rfi, malspam, gozi, harmful domains. Sources include amada.abuse.ch, ddanchev.blogspot.com, safebrowsing.google.com..."
:fear:
AplusWebMaster
2011-04-21, 14:41
FYI...
exploit kit, fake av, zeus domains
- http://www.malwaredomains.com/wordpress/?p=1773
April 20th, 2011 - "Domains associated with rogue/fake av, zeus, brandjackers were added. Sources include amada.abuse.ch, safebrowsing.google.com, securehomenetworks.blogspot.com..."
:fear::fear:
AplusWebMaster
2011-04-23, 14:10
FYI...
Lots of Rogue, Suspicious, Harmful Domains
- http://www.malwaredomains.com/wordpress/?p=1778
April 22nd, 2011 - "Over 200 domains associated with rogue security, fake av, harmful domains. Sources include amada.abuse.ch, blog.urlvoid.com, safebrowsing.clients.google.com..."
:fear:
AplusWebMaster
2011-04-29, 06:40
FYI...
Lots of Rogues, Fake AVs, trojans...
- http://www.malwaredomains.com/wordpress/?p=1787
April 27th, 2011 - "Over 250 malicious domains associated with rogue security, trojans, fake antivirus and other malicious behavior. Sources include amada.abuse.ch, hosts-file.net, malwareblacklist.com..."
:fear:
AplusWebMaster
2011-05-03, 01:25
FYI...
209 New Malicious Domains
- http://www.malwaredomains.com/wordpress/?p=1791
May 2nd, 2011 - "209 New Malicious Domains associated with Fake AV/Scareware, Trojans, etc. Sources include amada.abuse.ch, hosts-file.net, malwareurl.com..."
:fear:
AplusWebMaster
2011-05-05, 18:34
FYI...
Zeus, Scareware, and more fake security domains
- http://www.malwaredomains.com/wordpress/?p=1802
May 4th, 2011 - "lots of fake antivirus domains, zeus, scareware domains. Sources include sophos.com, securehomenetworks.blogspot.com, hosts-file.net..."
:fear::fear:
AplusWebMaster
2011-05-09, 06:23
FYI...
More Rogue Security & Rogue AV, Zeus and other Badness
- http://www.malwaredomains.com/wordpress/?p=1806
May 7th, 2011 - "Lots of Rogue Antivirus Domains, spyeye, zeus, and other malicious domains. Sources include zeustracker.abuse.ch, sacour.cn, blog.sucuri.net & others ..."
:fear:
AplusWebMaster
2011-05-11, 13:43
FYI...
Lots of Rogue AV/Scareware domains, zeus and other malicious domains
- http://www.malwaredomains.com/wordpress/?p=1810
May 9th, 2011 - "Over 180 new Fake AV/Rogue Domains, zeus and other harmful domains. Sources include securehomenetworks.blogspot.com, spamhaus.org, and others..."
:fear:
AplusWebMaster
2011-05-13, 14:51
FYI...
266 new domains. 5 “immortal” malware domains
- http://www.malwaredomains.com/wordpress/?p=1816
May 13th, 2011 - "Another huge update with domains originally listed at tristatelogic.com, safebrowsing.google.com, amada.abuse.ch and others..."
:fear:
AplusWebMaster
2011-05-17, 15:30
FYI...
279 Domains to Blacklist
- http://www.malwaredomains.com/wordpress/?p=1821
May 16th, 2011 - "279 domains added from safebrowsing.google.com, amada.abuse.ch, tristatelogic.com and other sources..."
:fear:
AplusWebMaster
2011-05-20, 23:58
FYI...
Urgent Block: xwhoisdns [dot] com
- http://www.malwaredomains.com/wordpress/?p=1828
May 20th, 2011 in 0day, New Domains - "xwhoisdns . com will be added to tonight’s blocklist, but you may wish to add to your blocklist ASAP. ThreatExpert* has more details on this guy."
* http://www.threatexpert.com/report.aspx?md5=e2a55a036f76bc550204de2e53406449
20 May 2011 ...
:mad:
AplusWebMaster
2011-05-22, 13:01
FYI...
265 new domains
- http://www.malwaredomains.com/wordpress/?p=1831
May 21st, 2011 - "265 new domains (botnets, moneymule,rogue,etc) have been added. Sources include spamhaus.org, tristatelogic.com, securehomenetworks.blogspot.com..."
- http://www.malwaredomains.com/wordpress/?p=1834
May 23rd, 2011 - "... 35% of domains originally listed six months ago were -still- associated with malware or other maliciousness..."
:fear::fear:
AplusWebMaster
2011-05-25, 18:10
FYI...
RBN, Rogue, koobface domains
- http://www.malwaredomains.com/wordpress/?p=1838
May 25th, 2011 - "330 domains associated with RBN, rogue/fake AV and other maliciousness were added. Sources include emergingthreats.net, securehomenetworks.blogspot.com..."
:fear::fear::fear:
AplusWebMaster
2011-05-28, 15:00
FYI...
c&c domains, exploit domains, rogue domains
- http://www.malwaredomains.com/wordpress/?p=1846
May 27th, 2011 - "Lots of Rogue, Zeus and other malicious domains. Sources include hosts-file.net, tristatelogic.com, zeustracker.abuse.ch..."
:fear::fear:
AplusWebMaster
2011-06-02, 16:58
FYI...
Over -200- Rogue Security Domains Added
- http://www.malwaredomains.com/wordpress/?p=1858
June 2nd, 2011 - "Over 200 Fake Antivirus and Rogue Security domains added. Special thanks to threatexpert.com, sophos.com, malwaredomainlist.com, and hosts-file.net for identifying them..."
:fear::fear:
AplusWebMaster
2011-06-06, 22:03
FYI...
Moneymule domains, malicious domains, trojans, etc.
- http://www.malwaredomains.com/wordpress/?p=1862
June 6th, 2011 - "Added 182 dirty domains from securehomenetworks.blogspot.com, vxvault.siri-urz.net, ddanchev.blogspot.com and others..."
:fear::fear:
AplusWebMaster
2011-06-12, 22:43
FYI...
More Rogue Security, Zeus, Spyeye, RBN Domains
- http://www.malwaredomains.com/wordpress/?p=1865
June 11th, 2011 - "210 SpyEye, RBN, Zeus, TDSS, bot, exploit domains. Original sources include doc.emergingthreats.net, malwaredomainlist.com, threatexpert.com..."
:fear:
AplusWebMaster
2011-06-15, 18:48
FYI...
Botnet Domains, Black Hole Exploit-Kit Domains
- http://www.malwaredomains.com/wordpress/?p=1869
June 14th, 2011 - "246 Domains associated with Zeus, iframes, bots, black-hole exploit and other maliciousness. Sources include safebrowsing.google.com, securehomenetworks.blogspot.com, sucuri.net..."
:fear:
AplusWebMaster
2011-06-18, 19:53
FYI...
Malvertising, rbn, rogue, sql injection domains
- http://www.malwaredomains.com/wordpress/?p=1874
June 17th, 2011 - "Added over 200 domains associated with malvertising, Rogue/fake security, sql injection, etc. Sources include blog.dynamoo.com, websense.com, research.zscaler.com..."
:fear::fear:
AplusWebMaster
2011-06-21, 06:00
FYI...
251 new domains: malvertising, zeus v2.0, spyeye, rogues…
- http://www.malwaredomains.com/wordpress/?p=1879
June 19th, 2011 - "251 new domains added. These domains are associated with Zeus v2.0, spyeye, rogue security, malverising, sql injection. Sources include tristatelogic.com, vxvault.siri-urz.net, www.spamhaus.org..."
:fear::fear:
AplusWebMaster
2011-06-25, 14:39
FYI...
328 domains - exploits, moneymule scams, rogue security, scams...
- http://www.malwaredomains.com/wordpress/?p=1886
June 22nd, 2011 - "Added 328 domains... associated with exploits, moneymule scams, rogue security, scams and other badness. Sources include tristatelogic.com, spamhaus.org, scamfraudalert.com and others."
:fear:
AplusWebMaster
2011-06-27, 14:31
FYI...
163 New Domains: Trojans, Rogue Antivirus, Zeus, PDF Exploits
- http://www.malwaredomains.com/wordpress/?p=1891
June 25th, 2011 - "163 new domains associated with fake security programs, trojans and exploits. Sources include emergingthreats.net, vxvault.siri-urz.net, blog.fireeye.com and others..."
:fear:
AplusWebMaster
2011-07-03, 17:44
FYI...
DNS-BH Update: 259 New Domains
- http://www.malwaredomains.com/wordpress/?p=1899
July 2nd, 2011 - "259 domains associated with cybercriminals, payment processors for rogue/fake security software, fake antivirus/security, and trojans. Sources include tristatelogic.com, spamhaus.org, securehomenetworks.blogspot.com, doc.emergingthreats.net..."
:fear:
AplusWebMaster
2011-07-05, 18:35
FYI...
tld4, cutwail, zeus c&c and other malicious domains
- http://www.malwaredomains.com/wordpress/?p=1902
July 5th, 2011 - "Added 236 domains labeled as rogue, tld4, cutwail, zeus c&c, and other maliciousness by securehomenetworks.blogspot.com, malwareblacklist.com, zeustracker.abuse.ch and other respected sources..."
:fear:
AplusWebMaster
2011-07-17, 14:50
FYI...
168 New Domains added
- http://www.malwaredomains.com/wordpress/?p=1919
July 12th, 2011 - "168 new domains associated with BH Exploit, fake job offers, moneymule, RBN and more. Sources include doc.emergingthreats.net, amada.abuse.ch, ddanchev.blogspot.com, securehomenetworks.blogspot.com..."
- http://www.malwaredomains.com/wordpress/?p=1923
July 14th, 2011 - "The HostExpoloit Q2 Top 50 Bad Hosts & Networks report has been released. This report analyses all 38,030 currently advertised and commercial hosts (ASNs) and focuses on the 50 worst offenders. Get it here*."
* http://hostexploit.com/downloads/viewdownload/7/30.html
:fear:
AplusWebMaster
2011-07-18, 00:45
FYI...
exploit, gbot, RBN, worms... 195 New Domains to Block
- http://www.malwaredomains.com/wordpress/?p=1928
July 16th, 2011 - "195 new malicious domains associated with exploits, rbn, gbot and other badness to add to your shun or blacklist. Sources include malwareblacklist.com, support.clean-mx.de, securehomenetworks.blogspot.com, riskanalytics.com, safebrowsing.google.com..."
:fear:
AplusWebMaster
2011-07-20, 09:51
FYI...
180 New TDL3/TDSS Botnet, cycbot, exploit, rogue domains
- http://www.malwaredomains.com/wordpress/?p=1933
July 18th, 2011 - "Added 180 domains associated with fake security/scareware, rbn, TDSS/TDL3, TDSS4 etc. Sources include securehomenetworks.blogspot.com, scrapbook.zscaler.com, blog.eset.com and others..."
___
Server Load
- http://www.malwaredomains.com/wordpress/?p=1939
July 21st, 2011 - "The load on the main malwaredomains.com site continues to grow and there have been disruptions of service... If you haven’t already done so, please make sure that the zone files and text files are only downloaded from one of our mirror and NOT the main site. Starting on August 1st, the zone and text files will ONLY be available from a mirror and will no longer be available on the main site."
:fear:
AplusWebMaster
2011-07-25, 15:04
FYI...
179 New Palevo, Zeus, Rogue Security, iframe Domains
- http://www.malwaredomains.com/wordpress/?p=1948
July 24th, 2011 - "179 domains containing malicious javascript, malicious iframes, exploits, zeus, palevo, fake security... Sources include amada.abuse.ch, doc.emergingthreats.net, malc0de.com, and others...
Reminder: Starting on August 1st, the zone and text files will ONLY be available from a mirror and will no longer be available on the main site!..."
:fear:
AplusWebMaster
2011-07-30, 06:08
FYI...
265 new domains
- http://www.malwaredomains.com/wordpress/?p=1959
July 27th, 2011 - "ramnit, palevo, rogue, fake codec domains were added. Sources include vxvault.siri-urz.net, threatexpert.com, garwarner.blogspot.com..."
:fear:
AplusWebMaster
2011-08-09, 02:01
FYI...
211 New Domains (dns trojan, gbot, hiloti, zeus…)
- http://www.malwaredomains.com/wordpress/?p=1971
August 8th, 2011 - "Domains associated with dns.trojan, gbot, hiloti, zeus, rogues, and other badness. Sources include amada.abuse.ch, stopmalvertising.com, tristatelogic.com, spamhaus.org, zeustracker.abuse.ch..."
:fear:
AplusWebMaster
2011-08-12, 06:12
FYI...
artro, fakeav, malspam, zeus domains
- http://www.malwaredomains.com/wordpress/?p=1977
August 10th, 2011 - "Added some artro, fakeav, malspam, zeus domains. Sources include zeustracker.abuse.ch, siteadvisor.com, siteinspector.comodo.com, garwarner.blogspot.com..."
:fear:
AplusWebMaster
2011-08-15, 16:06
FYI...
zeus, rogues, spyeye, artro, fake job domains…
- http://www.malwaredomains.com/wordpress/?p=1981
August 14th, 2011 - "251 domains associated with fake job offers, zeus, fake av, etc. Sources include amada.abuse.ch, blog.dynamoo.com, safebrowsing.google.com, tristatelogic.com..."
___
- http://amada.abuse.ch/blocklist.php
- http://blog.dynamoo.com/
:fear:
AplusWebMaster
2011-08-24, 16:18
FYI...
Drivebys, fast flux, botnet, moneymule...
- http://www.malwaredomains.com/wordpress/?p=1999
August 23rd, 2011 - "... Over 300 zeus, moneymule, botnet domains..."
:fear::fear:
AplusWebMaster
2011-08-26, 06:32
FYI...
zbot, trojans, Ponmocup, drivebys...
- http://www.malwaredomains.com/wordpress/?p=2007
August 24th, 2011 - "192 domains associated with zbot, ponmocup, drivebys, spyeye… Sources include amada.abuse.ch, emergingthreats.net, malwareurl.com..."
:fear::mad:
AplusWebMaster
2011-09-01, 16:53
FYI...
Artro, bestpack, morto, zbot domains
- http://www.malwaredomains.com/wordpress/?p=2010
August 31st, 2011 - "Added 240 domains associated with zbot, morto. bestpack, etc. Sources include spamhaus.org... emergingthreats.net, malwareurl.com..."
:fear::fear:
AplusWebMaster
2011-09-03, 01:59
FYI...
More Bulk/Free Registrars
- http://www.malwaredomains.com/wordpress/?p=2016
September 2nd, 2011 - "We just added a bunch more bulk/free registrars to our list. (Source: emergingthreats.net)..."
:fear::fear:
AplusWebMaster
2011-09-05, 17:43
FYI...
blackholeexploitkit, fraud, rogue, domains
- http://www.malwaredomains.com/wordpress/?p=2022
September 4th, 2011 - "Added over 340 domains associated with fraud, blackhole exploit kit, phishing, rogue antivirus, etc. Sources include malwareurl.com, spamhaus.org, malwaredomainlist.com..."
:fear::fear:
AplusWebMaster
2011-09-08, 15:10
FYI...
346 New domains added
- http://www.malwaredomains.com/wordpress/?p=2027
September 6th, 2011 - "lots of fraud/scam domains, zeus c&c domains, and other malicious domains. Sources include zeustracker.abuse.ch, malwareurl.com and others..."
:fear:
AplusWebMaster
2011-09-13, 06:22
FYI...
Forgery, scam, phishing domains
- http://www.malwaredomains.com/wordpress/?p=2046
September 12th, 2011 - "Added almost 200 domains associated with scams, frauds, phishing, as well as the usual zeus and malicious domains. Sources include zeustracker.abuse.ch, spamhaus.org, vxvault.siri-urz.net..."
:fear::mad:
AplusWebMaster
2011-09-24, 18:30
FYI...
Small but important update: 64 domains added...
- http://www.malwaredomains.com/wordpress/?p=2088
September 23rd, 2011 - "Added 64 buterat, sql injection and other malicious domains. Sources include amada.abuse.ch, siteadvisor.com, support.clean-mx.de..."
:fear:
AplusWebMaster
2011-09-30, 17:48
FYI...
Fraud, Scam, Spyeye, Zeus
- http://www.malwaredomains.com/wordpress/?p=2100
September 30th, 2011 - "Added -100- Fraud, Scam, Spyeye, Zeus and other malicious domains. Sources include xylibox.blogspot.com, vxvault.siri-urz.net, blog.dynamoo.com..."
:fear:
AplusWebMaster
2011-10-05, 15:35
FYI...
Slimeware, Fraud, Scam domains
- http://www.malwaredomains.com/wordpress/?p=2104
October 4th, 2011 - "Added over -100- slimeware, Scam, Spyeye, and other malicious domains. Sources include blog.dynamoo.com, safebrowsing.google.com..."
:fear:
AplusWebMaster
2011-10-08, 16:40
FYI...
blackhole exploit kit, fraudload, ransom, rogue domains
- http://www.malwaredomains.com/wordpress/?p=2111
October 7th, 2011 - "Added over 100 zeus, rogue, BH Exploit Kit, FraudLoad domains. Sources include amada.abuse.ch, malwaredomainlist.com and others..."
:fear::fear:
AplusWebMaster
2011-10-12, 14:16
FYI...
iframe, moneymule, rbn domains
- http://www.malwaredomains.com/wordpress/?p=2121
October 11th, 2011 - "Added over -120- domains associated with RBN, moneymule, blackhole exploit kit… Sources include wam.dasient.com, emergingthreats.net, spamhaus.org ..."
:fear::fear:
AplusWebMaster
2011-10-16, 09:29
FYI...
DNS Sinkhole 10/14 Update: 129 New Domains
- http://www.malwaredomains.com/wordpress/?p=2127
October 15th, 2011 - "Added 129 domains associated with RBN, moneymule, malspam and other malicious activity you don’t want on your personal computer or network. Sources: emergingthreats.net, blog.dynamoo.com, labs.m86security.com and others..."
:fear:
AplusWebMaster
2011-10-19, 18:44
FYI...
Over 190 malicious domains added
- http://www.malwaredomains.com/wordpress/?p=2135
October 19th, 2011 - "Added over 190 malicious domains associated with rbn, blackholeexploit, zeus, etc. Sources include blog.dynamoo.com, malwaredomainlist.com, emergingthreats.net..."
:fear:
AplusWebMaster
2011-10-23, 15:44
FYI...
spyeye, zeus, rbn, scam domains
- http://www.malwaredomains.com/wordpress/?p=2140
October 22nd, 2011 - "Added -206- domains associated with rbn, zeus, botnets, etc. Sources: blog.dynamoo.com, emergingthreats.net, zeustracker.abuse.ch and many others..."
:fear::fear:
AplusWebMaster
2011-10-26, 15:55
FYI...
SQLi, Fastflux Botnet, Dirt Jumper and more
- http://www.malwaredomains.com/wordpress/?p=2143
October 25th, 2011 - "Added -210- domains associated with SQLi, Dirt Jumper, RBN, fast flux botnets and other maliciousness. Sources include blog.dynamoo.com, ddanchev.blogspot.com, malwareurl.com and others..."
:fear::fear:
AplusWebMaster
2011-11-03, 06:13
FYI...
Urgent Block: stats1. in
- http://www.malwaredomains.com/wordpress/?p=2156
November 2nd, 2011 - "Please add stats1. in to your blocklists... See:
- http://google.com/safebrowsing/diagnostic?site=stats1.in
'... last time suspicious content was found on this site was on 2011-11-02...
Malicious software includes 103 scripting exploit(s), 59 exploit(s), 53 trojan(s)'.
We’ll block this domain tonight but you shouldn’t wait..."
:fear::fear:
AplusWebMaster
2011-11-03, 15:15
FYI...
Nov 2 Update: 167 Dangerous Domains
- http://www.malwaredomains.com/wordpress/?p=2159
November 3rd, 2011 - "167 malicious and Dangerous Domains associated with fake jobs, malvertising, poisonivy, nitro, trojans..."
:fear::mad:
AplusWebMaster
2011-11-07, 07:58
FYI...
black hole exploitkit, zeroaccess & other harmful domains
- http://www.malwaredomains.com/wordpress/?p=2166
November 5th, 2011 - "Added -118- domains associated with the Black Hole Exploit Kit, Zero Access, and other risky and harmful domains. Sources:malwareurl.com, zeustracker.abuse.ch, vxvault.siri-urz.net and others..."
:fear:
AplusWebMaster
2011-11-10, 12:27
FYI...
Blackhole Exploit, LockEmAll, Zeus Domains
- http://www.malwaredomains.com/wordpress/?p=2170
November 9th, 2011 - "Added -119- new Zeus, trojan, “LockEmAll”, BH Exploit domains. Sources include malwareurl.com, safebrowsing.clients.google.com, malwaredomainlist.com and others…"
:fear::spider:
AplusWebMaster
2011-11-13, 15:03
FYI...
htaccess redirects, malicious iframes, malvertising domains
- http://www.malwaredomains.com/wordpress/?p=2175
November 12th, 2011 - "Added domains associated with malvertising, malicious javascripts, malicious iframes, htaccess redirects and more. Sources include vxvault.siri-urz.net, hphosts.nets…"
:fear::mad:
AplusWebMaster
2011-11-14, 17:24
FYI...
Immortal malware domains...
- http://www.malwaredomains.com/wordpress/?p=2180
November 14th, 2011 - "... recertification of -237- long-lived, “immortal” malware domains... These are domains which continue to actively serve malware for months if not years. Some of these domains have been active here for more than two years. Of those 237 domains, 34, or less than 15% were removed. That means that over 85% of these long-lived domains are truly “bulletproof”, and have remained actively malicious for over two years... List of these “immortals” is here:
- http://mirror2.malwaredomains.com/files/immortal_domains.txt
:mad: :mad:
AplusWebMaster
2011-11-16, 13:47
FYI...
Small but important update
- http://www.malwaredomains.com/wordpress/?p=2187
November 15th, 2011 - "A small but important update… Domains associated with cve-2011-2140*, fast-flux botnets, malicious iframes, etc. were added. Sources include blog.sucuri.net, malc0de.com, dasient.com and others..."
* http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-2140
:fear:
AplusWebMaster
2011-11-23, 15:53
FYI...
Malvertisers, Zeus, BH Exploit Domains…
- http://www.malwaredomains.com/wordpress/?p=2196
November 21st, 2011 - "Malicious domains associated with trojans, backdoors, BH Exploit Kit, RBN malvertisments were added. Sources include malwareurl.com, xylibox.blogspot.com, scrapbook.zscaler.com, malc0de.com..."
___
- http://www.malwareurl.com/
Total domains: 251677
Total IP addresses: 42006
- http://xylibox.blogspot.com
Midlet URL's...
Landing URL's...
Screenshots ...
"... According to VirusTotal, 15 AV detect these JAR files as Java/SMSSend... And only 10 AV detect these APK files as Android/FakeInst..."
- http://www.malwaredomainlist.com/mdl.php
Page 0 1 ... 38 !
- http://scrapbook.zscaler.com/
"... a lot of emails with attachments like: Facebook_Password_#8071.zip
where the number changes to avoid spam detection.
The email message looks like:
From: "Facebook"
Subject: Facebook Service# Your account has been blocked! Order/1721..."
- http://www.blog.malc0de.com/category/malware/
"... link domains that were serving the same executable. What I found out in a very short period of time is the binaries are updated so frequently that this becomes almost impossible... made a few adjustments to the database which should speed up the queries... here we can find a domain hosting the Neosploit exploit pack. The domain is hosted on 75 .125.212 .58. By searching malwaregroup.com* we can see domains hosted on the same IP that are named in a similar fashion and are most likely also hosting Neosploit or being staged..."
* http://www.malwaregroup.com/ipaddresses/details/75.125.212.58
... 21844 THEPLANET-AS21844:
> http://www.google.com/safebrowsing/diagnostic?site=AS:21844
"... over the past 90 days, 7863 site(s)... served content that resulted in malicious software being downloaded and installed without user consent. The last time Google tested a site on this network was on 2011-11-23, and the last time suspicious content was found was on 2011-11-23... we found 406 site(s) on this network... that appeared to function as intermediaries for the infection of 1619 other site(s)... this network has hosted sites that have distributed malicious software in the past 90 days. We found 834 site(s)... that infected 7709 other site(s)..."
:fear::mad::fear:
AplusWebMaster
2011-11-26, 14:20
FYI...
Black Hole, Cridex, Drivebys, Trojan Domains
- http://www.malwaredomains.com/wordpress/?p=2199
November 24th, 2011 - "Add domains associated with Cridex, trojans, drive-bys. malicious javascript and more. Sources include securityhome.eu, spamhaus.org, malc0de.com..."
:fear::mad:
AplusWebMaster
2011-11-29, 14:15
FYI...
Big Update – android malware, bhexploitkit, malspam domains
- http://www.malwaredomains.com/wordpress/?p=2202
November 28th, 2011 - "Added -156- domains associated with “LockEmAll”, Malspam, Seus, BH Exploit Kit, Android Malware and more… Sources include blog.dynamoo.com, malc0de.com, malekal.com, xylibox.blogspot.com…"
:mad::fear:
AplusWebMaster
2011-12-05, 07:40
FYI...
iframe,sqli,cybercriminal domains
- http://www.malwaredomains.com/wordpress/?p=2215
December 3rd, 2011 - "A small but important update containing domains associated with iframes, cybercriminals, zeus, and our 'friend' lilupophilupop . com. Sources include malc0de.com, safebrowsing.google.com, spamhaus.org..."
:fear:
AplusWebMaster
2011-12-08, 15:17
FYI...
Malspam and other Malicious Domains
- http://www.malwaredomains.com/wordpress/?p=2228
December 7th, 2011 - "Added -67- domains associated with malspam and other malicious activity..."
:fear::fear:
AplusWebMaster
2011-12-12, 21:44
FYI...
zeus, trojan, htaccess redirect, malicious javascript domains
- http://www.malwaredomains.com/wordpress/?p=2236
December 11th, 2011 - "Added over -110- domains associated with malicious javascript, malicious .htaccess redirects, spam leading to malware, etc. Source include sucuri.net, malc0de.com, blog.dynamoo.com..."
:mad::fear:
AplusWebMaster
2011-12-14, 18:43
FYI...
Scam, Spyeye, Exploit Domains
- http://www.malwaredomains.com/wordpress/?p=2245
December 14th, 2011 - "Added almost 100 new domains associated with investment scams, exploits, etc. Sources include malc0de.com, spyeyetracker.abuse.ch, malekal.com and several others..."
:fear::fear:
AplusWebMaster
2011-12-19, 12:29
FYI...
zeus, nachaspam, fastflux domains
- http://www.malwaredomains.com/wordpress/?p=2282
December 18th, 2011 - "Added domains associated with advance-fee scams, fast-flux botnet, Lockemall, nashaspam, etc. Sources include zeustracker.abuse.ch, malwaredomainlist.com, securehomenetworks.blogspot.com, boiler-rooms.org..."
:fear::mad:
AplusWebMaster
2011-12-23, 16:11
FYI...
BH-DNS Update...
- http://www.malwaredomains.com/wordpress/?p=2298
December 22nd, 2011 - "Added domains associated with htaccess redirects, malicious javascript, malicious spam, malvertising, pdf exploits. Sources include sucuri.net, safebrowsing.clients.google.com, blog.dynamoo.com..."
:fear::fear:
AplusWebMaster
2011-12-27, 05:46
FYI...
Advance Fee Scam, BH Exploit, Rogue Domains
- http://www.malwaredomains.com/wordpress/?p=2309
December 25th, 2011 - "Added domains associated with Advance Fee Scams, Black Hole Exploit, Money Mule, PDF Exploits, etc. Sources include boiler-rooms.org, jsunpack.jeek.org, malwaredomainlist.com, xylibox.blogspot.com and others..."
:fear::mad:
AplusWebMaster
2011-12-30, 19:15
FYI...
Small but important Update
- http://www.malwaredomains.com/wordpress/?p=2324
December 30th, 2011 - "A small but important update containing harmful domains associated with pdf exploits, malvertising, rogue/fake antivirus, etc. Sources include malekal.com, malware-control.com, threatexpert.com and others..."
:fear:
AplusWebMaster
2012-01-03, 00:02
FYI...
Spyeye, Botnet, Malvertising Domains
- http://www.malwaredomains.com/wordpress/?p=2334
January 2nd, 2012 - "... added over 90 domains associated with dirtjumper, dorkbot, htaccess redirects, malvertising, spyeye, etc. Sources include google.com/safebrowsing, safeweb.norton.com, sucuri.net..."
:fear::mad:
AplusWebMaster
2012-01-07, 08:19
FYI...
Black Hole Exploit kit, Rogues, Trojans ...
- http://www.malwaredomains.com/wordpress/?p=2351
January 6th, 2012 - "Added domains from malwaredomainlist.com, emergingthreats.net, blog.dynamoo.com and other sources..."
:fear::spider:
AplusWebMaster
2012-01-09, 15:13
FYI...
fakehdd, malicious javascript, malspam, TDL/TDSSC&C
- http://www.malwaredomains.com/wordpress/?p=2357
January 8th, 2012 - "added about a hundred domains associated with TDL/TDSSC&C, rogue, fake HDD and other maliciousness. Sources include xylibox.blogspot.com, threatexpert.com, sucuri.net and others..."
:fear::fear:
AplusWebMaster
2012-01-12, 08:55
FYI...
BPHoster, Zeus, Palevo, Trojan Domains
- http://www.malwaredomains.com/wordpress/?p=2367
January 11th, 2012 - "A small update but one containing BPHoster, Palevo, Zeus, Trojan, BH Exploit kit domains. Sources include amada.abuse.ch, securecast.co.kr, zeustracker.abuse.ch..."
:fear:
AplusWebMaster
2012-01-14, 06:22
FYI...
92 Domains
- http://www.malwaredomains.com/wordpress/?p=2370
January 13th, 2012 - "Added 92 domains associated with Alureon Trojan, rogue/fake AV, fastflux botnet, etc. Sources include zeustracker.abuse.ch, spamhaus.org, emergingthreats.net, amada.abuse.ch/blocklist.php?download=proactivelistings ..."
:fear:
AplusWebMaster
2012-01-15, 16:34
FYI...
HUGE Update: Ramnit and Redret malspam domains
- http://www.malwaredomains.com/wordpress/?p=2375
January 14th, 2012 - "Ramnit is Zeus-like malware with rootkit capabilities. Seculert* has a nice write-up about a financial variant which is steals Facebook credentials. According to Contiago**, samples have are being spread via Blackhole exploit kit. We’ve added over 200 Ramnit domains (thanks Kevin). As a bonus, 29 more “Redret” malspam domains from dynamoo*** have also been added to our malware blacklist. Please update your blocklists/sinkhole..."
* http://blog.seculert.com/2012/01/ramnit-goes-social.html
** http://contagiodump.blogspot.com/2012/01/blackhole-ramnit-samples-and-analysis.html
*** http://blog.dynamoo.com/2012/01/your-order-for-helicopter-for-weekend.html
:fear::fear::fear:
AplusWebMaster
2012-01-17, 18:18
FYI...
Black Hole Exploit Kit Domains, BPHoster*, sykipot**
- http://www.malwaredomains.com/wordpress/?p=2383
January 17th, 2012 - "Added 111 domains associated with BPHoster, Sykipot, malvertising, BH Exploit Kit, and others. Sources include symantec.com, malwaredomainlist.com, isc.sans.org, amada.abuse.ch..."
* https://secure.wikimedia.org/wikipedia/en/wiki/Bulletproof_hosting
Sykipot steals Smart-Card credentials
** http://www.darkreading.com/taxonomy/index/printarticle/id/232400288
:fear::fear:
AplusWebMaster
2012-01-20, 01:41
FYI...
Another Huge Update: 220+ Ramnit, Rogue, Zbot Domains
- http://www.malwaredomains.com/wordpress/?p=2387
January 19th, 2012 - "Added over 220 domains associated with zbot-bgz, rogue, ramnit and other badness. Sources include contagiodump.blogspot.com, sophos.com..."
:fear::mad:
AplusWebMaster
2012-01-23, 09:36
FYI...
rbackdoor-pihar, bphoster, htaccessredirect domains
- http://www.malwaredomains.com/wordpress/?p=2401
January 22nd, 2012 - "Added 110 domains... associated with bphoster, zeus, drivebys, pihar and other badness. Sources include amada.abuse.ch, google safebrowsing, spamhaus.org..."
:fear::spider:
AplusWebMaster
2012-01-26, 04:50
FYI...
BPhoster, Zeus, Fast Flux...
- http://www.malwaredomains.com/wordpress/?p=2416
January 25th, 2012 - "Added 101 domains associated with BPHoster, Zeus, Fast Flux, Hiloti, iceIX. Sources include amada.abuse.ch, exposure.iseclab.org, emergingthreats.net..."
:fear::fear:
AplusWebMaster
2012-01-28, 02:07
FYI...
Trojan.Pidief, redret, phishing domains
- http://www.malwaredomains.com/wordpress/?p=2420
January 27th, 2012 - "Over 150 malicious domains associated AS47583, Pidief, redret, phishing, etc added. Sources include blog.dynamoo.com, support.clean-mx.de, xylibox.blogspot.com..."
- http://www.google.com/safebrowsing/diagnostic?site=AS:47583
:fear:
AplusWebMaster
2012-01-31, 16:12
FYI...
1617 domains removed, 33 domains added ...
- http://www.malwaredomains.com/wordpress/?p=2430
January 30th, 2012 - "1617 Domains have been removed; 33 domains have been added to the “immortal” domain lists. Please update your blocklists (... no reason to do it every hour like some people who will be blocked for continuous abuse)..."
:fear:
AplusWebMaster
2012-02-02, 13:04
FYI...
fastflux, malicious javascript, and spyeye...
- http://www.malwaredomains.com/wordpress/?p=2438
February 1st, 2012 - "Added 129 domains associated with malicious javascript, spyeye, pdf exploits, etc. Sources: www3.malekal.com/pdf.txt, exposure.iseclab.org, sucuri.net and others..."
:fear::fear:
AplusWebMaster
2012-02-04, 11:24
FYI...
Incognito, malspam, purplehaze domains
- http://www.malwaredomains.com/wordpress/?p=2444
February 3rd, 2012 - "Added 138 malicious domains associated with purple haze, Incognito, malspam, zeus, msupdater, etc. Sources include exposure.iseclab.org, zeustracker.abuse.ch, blog.dynamoo.com..."
:fear::mad:
AplusWebMaster
2012-02-07, 14:53
FYI...
bhexploit, htaccess redirects, Incognito, PDF exploits
- http://www.malwaredomains.com/wordpress/?p=2451
February 6th, 2012 - "Added 119 domains listed on xylibox.blogspot.com, malekal.com, exposure.iseclab.org and others..."
:fear:
AplusWebMaster
2012-02-09, 15:45
FYI...
BH-DNS Update: 200+ Domains Added
- http://www.malwaredomains.com/wordpress/?p=2455
February 8th, 2012 - "Added over 200 domains associated with Palevo, Fake AV,BPhoster, htaccess redirects, etc. Sources include zeustracker, xylibox, abuse.ch..."
:fear::fear:
AplusWebMaster
2012-02-12, 06:49
FYI...
Another 200+ domains added
- http://www.malwaredomains.com/wordpress/?p=2460
February 10th, 2012 - "Added 200+ domains associated with the usual exploits, trojans, malvertising, etc. Sources include wepawet.iseclab.org, hosts-file.net, abuse.ch..."
:fear:
AplusWebMaster
2012-02-14, 18:20
FYI...
Backdoors, htaccess redirects, nacha and other malicious domains
- http://www.malwaredomains.com/wordpress/?p=2465
February 13th, 2012 - "Domains from xylibox.blogspot.com, sucuri.net, blog.dynamoo.com and others were added..."
:fear:
AplusWebMaster
2012-02-18, 14:01
FYI...
More pdfexploits, c&c, malvertising domains
- http://www.malwaredomains.com/wordpress/?p=2478
February 17th, 2012 - "104 new domains associated with pdf exploits, c&c, malvertising, and other maliciousness added. Sources include exposure.iseclab.org, phishtank.com, malekal.com and others..."
:fear:
AplusWebMaster
2012-02-19, 18:49
FYI...
Carberp, IceX, malvertising, sinowal domains
- http://www.malwaredomains.com/wordpress/?p=2483
February 19th, 2012 - "109 new domains added. Associated with Carberp, IceX, malvertising, sinowal, Zeus, etc. Sources: zeustracker.abuse.ch, spamhaus.org, urlquery.net, google safebrowsing and other..."
:fear::fear:
AplusWebMaster
2012-02-25, 05:41
FYI...
blackhole, cridex, sefnit domains...
- http://www.malwaredomains.com/wordpress/?p=2498
February 24th, 2012 - "Added over 150 domains associated with sefnit, cridex, blackhole, etc..."
:fear::fear:
AplusWebMaster
2012-02-29, 14:11
FYI...
Dynamic DNS, bphoster, cycbot, palevo
- http://www.malwaredomains.com/wordpress/?p=2508
February 28th, 2012 - "Added many dynamic dns domains to our dynamic dns list, and domains associated with bphoster, cycbot, palevo, malvertising to our domain blocklists. Sources: xylibox.blogspot.com, malware-control.com, hosts-file.net and others..."
:fear::fear:
AplusWebMaster
2012-03-03, 07:35
FYI...
170+ New Domains
- http://www.malwaredomains.com/wordpress/?p=2514
March 2nd, 2012 - "Added over 170 domains associated with exploits, htaccess redirects, malicious iframes, malicious javascript and other badness. Sources include exposure.iseclab.org, amada.abuse.ch, hosts-file.net and others..."
:fear::fear:
AplusWebMaster
2012-03-05, 14:14
FYI...
Black Hole Exploit Domains, Cridex, Sakura, malspam
- http://www.malwaredomains.com/wordpress/?p=2518
March 4th, 2012 - "Added 167 domains associated with malspam, malicious advertising, Sakura, Cridex, black hole exploits, etc. Sources include mwis.ru, spamalysis.wordpress.com and many others..."
:fear::fear:
AplusWebMaster
2012-03-06, 23:41
FYI...
Urgent Block: ionis90landsi -dot- rr -dot- nu
Mass Injection of WordPress Websites
- http://www.malwaredomains.com/wordpress/?p=2522
March 6th, 2012 - "Websense* has posted an article relating to mass SQL injection into wordpress sites. The domain is ionis90landsi. rr. nu (spaces added)..."
* http://community.websense.com/blogs/securitylabs/archive/2012/03/05/mass-injection-of-wordpress-sites.aspx
5 Mar 2012
___
- http://google.com/safebrowsing/diagnostic?site=ionis90landsi.rr.nu/
"... This site was hosted on 1 network(s) including AS48691 (SPECIALIST)..."
- http://www.google.com/safebrowsing/diagnostic?site=AS:48691
"... Over the past 90 days, we found 285 site(s) on this network... that appeared to function as intermediaries for the infection of 1016 other site(s)... We found 650 site(s)... that infected 8361 other site(s)..."
- http://centralops.net/co/DomainDossier.aspx
inetnum: 194.28.112.0 - 194.28.115.255
descr: Specialist
country: MD
Information related to 194.28.112.0/22
origin: AS48691
___
- https://blogs.msdn.com/themes/blogs/generic/post.aspx?WeblogApp=alexhomer&y=2011&m=02&d=06&WeblogPostName=blocking-malware-domains-in-isa-2006&GroupKeys=
"... Also be aware that malware that connects using an IP address instead of a domain name will -not- be blocked when you use just domain name lists..."
:fear::fear:
AplusWebMaster
2012-03-08, 16:07
FYI...
sqli, zeus, domains, rogue domains
- http://www.malwaredomains.com/wordpress/?p=2532
March 8th, 2012 - "Added SQL injection domains... also added domains associated with malspam, kelihos, rogue antivirus, etc..."
:fear::fear:
AplusWebMaster
2012-03-12, 06:57
FYI...
342 Domains Added ... !!
- http://www.malwaredomains.com/wordpress/?p=2535
March 11th, 2012 - "Added 342 domains associated with agent-vcf, bhexploitkit, phoenix exploit kit, zbot, and lots of other badness. Sources include sophos.com, malwareurl.com, c-apt-ure.blogspot.com, and many many others..."
:fear::fear:
AplusWebMaster
2012-03-16, 15:54
FYI...
200+ Domains Added
- http://www.malwaredomains.com/wordpress/?p=2541
March 15th, 2012 - "Added over 200 domains associated with pornmocup, black hole exploits, sakura, crimepack, etc. Sources include hosts-file.net, malwareurl.com, c-apt-ure.blogspot.com and others..."
:fear::fear:
AplusWebMaster
2012-03-20, 05:47
FYI...
Backdoors, botnets, malspam, trojan domains
- http://www.malwaredomains.com/wordpress/?p=2546
March 19th, 2012 - "Added over 185 domains associated with trojans, malspam, backdoors, etc. Sources include sophos.com, amada.abuse.ch, exposure.iseclab.org and others..."
:fear::fear:
AplusWebMaster
2012-03-24, 06:16
FYI...
bankpatch, blackenergy, htaccess redirects
- http://www.malwaredomains.com/wordpress/?p=2550
March 23nd, 2012 - "Added over 190 domains associated with iframes, malicious javascripts, htaccess redirects, malvertising, etc. Sources include sucuri.net, safebrowsing.clients.google.com, iseclab.org and others..."
:fear:
AplusWebMaster
2012-03-27, 03:02
FYI...
malspam, exploits, malicious iframes
- http://www.malwaredomains.com/wordpress/?p=2558
March 26th, 2012 - "Added over 200 domains associated with malspam, black hole exploits, botnets and other badness. Sources include malwareurl.com, google.co.uk, zeustracker.abuse.ch..."
:fear::fear:
AplusWebMaster
2012-04-01, 06:52
FYI...
cybercriminal, hiloti, trojan domains
- http://www.malwaredomains.com/wordpress/?p=2567
March 28th, 2012 - "Added 164 domains associated with trojan activity, cybercriminals, hiloti, etc. Sources include iseclab.org, amada.abuse.ch, www.spamhaus.org and others..."
:fear:
AplusWebMaster
2012-04-01, 23:51
FYI...
150+ trojan, spyeye, worm, malicious domains
- http://www.malwaredomains.com/wordpress/?p=2571
March 31st, 2012 - "Added over 150 malicious domains associated with trojans, droppers, spyeye, etc. Sources include threatexpert.com, sophos.com, safebrowsing.google.com, exposure.iseclab.org, amada.abuse.ch..."
:fear:
AplusWebMaster
2012-04-06, 16:21
FYI...
htaccess redirects, luckycat, malspam, palevo, rogues
- http://www.malwaredomains.com/wordpress/?p=2583
April 5th, 2012 - "Added almost 300 domains associated with zeus, rogues, palevo, htaccess redirects, etc. Sources include dynamoo.com, fireeye.com, research.zscaler.com and others..."
:fear::fear:
AplusWebMaster
2012-04-09, 12:46
FYI...
142 trojan, malspam, carberp domains added
- http://www.malwaredomains.com/wordpress/?p=2587
April 8th, 2012 - "Added 142 domains associated with police-trojan, malicious spam, TDL3/TDSS and other nastiness. Sources include trendmicro.com, spamalysis.wordpress.com, sucuri.net..."
:fear:
AplusWebMaster
2012-04-12, 15:05
FYI...
trojan/ransom, flashback,bhexploit domains
- http://www.malwaredomains.com/wordpress/?p=2591
April 11th, 2012 - "Added 193 malicious domains associated with trojan-ransom, malvertising, flashback, etc. Sources include exposure.iseclab.org, blog.eset.com, news.drweb.com..."
:fear::fear::spider:
AplusWebMaster
2012-04-14, 18:48
FYI...
Over 250 malvertising, flashback, phishing domains
- http://www.malwaredomains.com/wordpress/?p=2599
April 12th, 2012 - "Added over 250 domains linked to flashback, phishing, malvertising, etc. Sources include threatexpert.com, private correspondence, contagiodump.blogspot.com and others..."
:fear::fear: