MalwareDomainsBlocklists - archived updates

AplusWebMaster · Dec 4, 2010

MalwareDomains updated - 2010.12.03...

FYI...

144 domains added
- http://www.malwaredomains.com/wordpress/?p=1453
December 3rd, 2010 - "artro c&c domains, spyeye domains, some rogue domains, and lots of google safebrowsing domains. Sources include safebrowsing.clients.google.com, spyeyetracker.abuse.ch, amada.abuse.ch and others..."

:fear:

AplusWebMaster · Dec 6, 2010

MalwareDomains updated - 2010.12.05...

FYI...

zeus, neosploit, rogue domains added
- http://www.malwaredomains.com/wordpress/?p=1456
December 5th, 2010 - "139 domains: rogue domains, zeus domains, neosploit domains, malicious iframes… Sources include safebrowsing.clients.google.com, sitevet.com..."

- http://www.symantec.com/business/security_response/attacksignatures/detail.jsp?asid=23749

:fear:

AplusWebMaster · Dec 10, 2010

MalwareDomains updated - 2010.12.08...

FYI...

195 new domains to block
- http://www.malwaredomains.com/wordpress/?p=1467
December 8th, 2010 - "spyeye, artro, zeus, darkness ddos bot domains, and more… Sources include blog.dynamoo.com, amada.abuse.ch, blog.sucuri.net..."

:fear:

AplusWebMaster · Dec 14, 2010

MalwareDomains updated - 2010.12.14...

FYI...

Malicious javascript, torpig, spyeye domains
- http://www.malwaredomains.com/wordpress/?p=1486
December 14th, 2010 - "domains containing malicious javascript. Domains associated with spyeye, artro or mebroot. A short but important list. Sources include spyeyetracker.abuse.ch, blog.dynamoo.com, www.cs.ucsb.edu/~marc..."

long lived malware domains ...
- http://www.malwaredomains.com/wordpress/?p=1491
December 14th, 2010 - "... Of these 1185 domains, 569, or 48% were deemed as still “worthy” of being kept on the DNS-BH blocklist. That’s 569 harmful domains which were active for over four months. Another analysis occurred in Dec 2010. Of the 569 remaining domains, 150 or 26% were delisted — which means that 74% continued to be associated with badness. There are over 380 domains which have been listed for over a year. Data is here: http://www.malwaredomains.com/files/long_lived_malware_domains_analysis.txt
One observation – there are no rogue security domains on this list."

:fear:

AplusWebMaster · Dec 18, 2010

MalwareDomains updated - 2010.12.17...

FYI...

mebroot/torpig, fastflux, botnet sites to block
- http://www.malwaredomains.com/wordpress/?p=1498
December 17th, 2010 - "130 malicious sites and domains (torpig, mebroot, fastflux, botnet, etc). Sources include secuboxlabs.fr, zeustracker.abuse.ch, wam.dasient.com..."

:fear:

AplusWebMaster · Dec 21, 2010

MalwareDomains updated - 2010.12.21...

FYI...

172 domains to block
- http://www.malwaredomains.com/wordpress/?p=1506
December 21st, 2010 - "malvertising, exploit, phishing, and other malicious sites to block or shun. Sources include blog.armorize.com, security.thejoshmeister.com, vxvault.siri-urz.net/URL_List.php, safebrowsing.google.com..."

:fear:

AplusWebMaster · Dec 27, 2010

MalwareDomains updated - 2010.12.25...

FYI...

zeus, Sinowal, moneymule domains
- http://www.malwaredomains.com/wordpress/?p=1516
December 25th, 2010 - "Domains associated with Zeus, moneymules, Sinowal, exploits and more… Sources include www.malwaredomainlist.com, securehomenetworks.blogspot.com, vxvault.siri-urz.net..."

:fear:

AplusWebMaster · Dec 30, 2010

MalwareDomains updated - 2010.12.29...

FYI...

1481 long-lived malware domains
- http://www.malwaredomains.com/wordpress/?p=1524
December 29th, 2010 - "1481 long-lived malware domains active for at least 90 days, 850 active for at least 6 months, 500 active for over a year. Full list, sorted by number of days on our blocklist, is located here*."
* http://mirror1.malwaredomains.com/files/long-lived-malware-domains.txt

:fear:

AplusWebMaster · Dec 31, 2010

MalwareDomains updated - 2010.12.30...

FYI...

Update: 175 Malicious Sites
- http://www.malwaredomains.com/wordpress/?p=1526
December 30th, 2010 - "175 malicious sites — PDF Exploits, mebroot, Sinowal, Zeus, ransomware… Sources include malwareurl.com, support.clean-mx.de, securehomenetworks.blogspot.com..."

:fear:

AplusWebMaster · Jan 3, 2011

MalwareDomains updated - 2011.01.02...

FYI...

178 New Malicious Sites
- http://www.malwaredomains.com/wordpress/?p=1531
January 2nd, 2011 - "Malicious Sites containing PDF Exploits, Storm 3.0 and other malware… Sources include safebrowsing.clients.google.com, www.shadowserver.org, malekal.com..."

:fear:

AplusWebMaster · Jan 6, 2011

ISC urgent blocks ...

FYI...

Urgent Block: NoS.fileave[dot]com and dota2trailer[dot]tk
- http://www.malwaredomains.com/wordpress/?p=1537
January 6th, 2011 - "From the Internet Storm Center*: "dota2trailer .tk claims to have a video trailer for the new Dota 2 game but instead installs a keylogger to steal credentials from gamers… Looking at the code on the site it does try to use java to download “hxxp://NoS. fileave. com/CamPlug.exe” These sites will be blocked on tonight’s update but you shouldn’t wait…"

Fake Game Demo website
* http://isc.sans.edu/diary.html?storyid=10228
Last Updated: 2011-01-06 21:10:19 UTC - "... VirusTotal's url check* didn't show -any- known maliciousness associated with that url..."
* http://www.virustotal.com/url-scan/report.html?id=c6b23afaa80fb96f096cb9b9e6a25012-1294334566
Submission date: 2011-01-06 18:22:46 (UTC)
Antivirus report: View downloaded file analysis
Webscan result: 0/6 (0.0%)
[ Firefox Clean site, G-Data Clean site, Google Safebrowsing Clean site, Opera Clean site, ParetoLogic Clean site, Phishtank Clean site ]
- http://www.virustotal.com/file-scan...2dae38c8a72fe10d25eec53de5189c54bf-1294358709
File name: CamPlug.exe
Submission date: 2011-01-07 00:05:09 (UTC)
Result: 2/43 (4.7%)

1) http://www.mywot.com/en/scorecard/nos.fileave.com
Spam - 1
2) http://www.mywot.com/en/scorecard/dota2trailer.tk
Spam - 1 / Browser exploit - 2

:fear::fear:

AplusWebMaster · Jan 8, 2011

MalwareDomains updated - 2011.01.06...

FYI...

rogue, geinimi, torpig, android malware sites
- http://www.malwaredomains.com/wordpress/?p=1544
January 6th, 2011 - "Domains associated with piracy, android malware, rogue security,artro, and other stuff you don’t want you or your user’s browser visiting or contacting. Source include securehomenetworks.blogspot.com, vxvault.siri-urz.net/URL_List.php, secuboxlabs.fr..."

:fear:

AplusWebMaster · Jan 12, 2011

MalwareDomains updated - 2011.01.11...

FYI...

194 New Domains
- http://www.malwaredomains.com/wordpress/?p=1549
January 10th, 2011 - "194 malicious domains to block. Sources include security.thejoshmeister.com, securehomenetworks.blogspot.com, blogs.paretologic.com..."

:fear:

AplusWebMaster · Jan 15, 2011

MalwareDomains updated - 2011.01.14...

FYI...

196 New Domains to Block
- http://www.malwaredomains.com/wordpress/?p=1564
January 14th, 2011 - "196 new domains to add to your blocklist. Rogue security domains, zeus, backdoor, exploit domains listed at blog.urlvoid.com, securehomenetworks.blogspot.com, vxvault.siri-urz.net and others..."

:fear:

AplusWebMaster · Jan 20, 2011

MalwareDomains updated - 2011.01.18...

FYI...

200 New Domains
- http://www.malwaredomains.com/wordpress/?p=1568
January 18th, 2011 - "200 new domains to add to your malware blocklist. Artro domains, exploit domains, fastflux domains, listed at securehomenetworks.blogspot.com, sucuri.net, and others..."

:fear:

AplusWebMaster · Jan 21, 2011

MalwareDomains updated - 2011.01.20...

FYI...

artro, fastflux, phishing, torping domains...
- http://www.malwaredomains.com/wordpress/?p=1577
January 20th, 2011 - "165 new domains associated with torpig, rogue antivirus, phishing, fastflux, and other badness. Sources include atlas.arbor.net, abuse.ch, vxvault.siri-urz.net..."

:fear:

AplusWebMaster · Jan 24, 2011

MalwareDomains updated - 2011.01.23...

FYI...

gumblar, artro, zeus domains
- http://www.malwaredomains.com/wordpress/?p=1581
January 23rd, 2011 - "Domains associated with gumblar, zeus, drive-by’s, rogues, etc... Sources include viralerts.com, safebrowsing.google.com, blog.unmaskparasites.com ..."

:fear:

AplusWebMaster · Jan 27, 2011

MalwareDomains updated - 2011.01.26...

FYI...

iframe, gumblar, rogue and other malicious domains
- http://www.malwaredomains.com/wordpress/?p=1586
January 26th, 2011 - "Malicious domains associated with zeus, rogue security, gumblar and other nastiness. Sources include securehomenetworks.blogspot.com, blog.unmaskparasites.com, www.shadowserver.org..."

:fear:

AplusWebMaster · Jan 31, 2011

MalwareDomains updated - 2011.01.29...

FYI...

exploit, gumblar, neosploit, zeus domains
- http://www.malwaredomains.com/wordpress/?p=1590
January 29th, 2011 - "Domains associated with gumblar, zeus, neosploit, spyeye and other exploits and trojan badness. Sources include www3.malekal.com, blog.unmarkparasites, viralerts.com..."

- http://www.malwaredomains.com/wordpress/?p=1597
January 31st, 2011 - "Last night’s “justdomains” file seems to have been corrupted… We just replaced it with a new one..."

:fear:

AplusWebMaster · Feb 3, 2011

MalwareDomains updated - 2011.02.02...

FYI...

210 Domains
- http://www.malwaredomains.com/wordpress/?p=1601
February 2nd, 2011 - "... 210 domains associated with artro, gumblar, rbn, torpig and other exploits. Source include www3.malekal.com, securehomenetworks.blogspot.com, honeywhales.com, blog.unmaskparasites.com..."

:fear:

MalwareDomainsBlocklists - archived updates

New member

New member

New member

New member

New member

New member

New member

New member

New member

New member

New member

New member

New member

New member

New member

New member

New member

New member

New member

New member