DNS-BH – Malware Domain Blocklist

Sources: www.malwaredomainlist.com, www.avira.com, www.malwareurl.com, and others:

563f235 .cn	adicionaamigork2 .webcindario .com
6malwarescan .com	affina-groupnet .cn
849jfg .com	affina-groupnet .com
888b123 .cn	affina-groupsvc .cc
99c342 .cn	affina-groupsvc .cn
aaeg .ru	aleksandrhomepage .com
add-block-11 .info	analytic-manager .org
afedovascevo .com	annuity-groupllc .cn
age-free .ru	annuity-groupllc .com
akvaryumizmir .com	annuity-groupnet .cc
allradiohits .com	annuity-groupnet .cn
ame .com .au	antispywaretotalscan5 .com
aqobeyv .cn	antiviruscontraviro .com
aviraplatinum .com	autoonlineadvisor .net
awulyna .cn	bufertongamoda .com
barmatuxa .info	buteratorionasd .com
bbortixx .info	celiminerkariota .com
best-scanpc .net	check-threats-online .com
biozavr .ru	ciscocommunity .cn
biozov .ru	danseavecnousbordeaux .com
bk-teknik .dk	dem .real-host .org
btctecnologia .com	despnar .idsn .gov .co
ccikudor .cn	directory .tatoosite .it
cheapsocks .cn	download-secure-files .com
citygateinc .com	fallsoftsafety .com
cnn08 .com	fastscanandprotect .com
coinheaven .com	fastscanandprotect .net
coolvideo4dom .cn	fast-scanandprotect .net
counter11 .info	fastscan-protect .com
crkeys4cheap .com	fastscan-protect .net
cybipmo .cn	fastscan-search .com
dark-cherep .com	fastscan-search .net
diding .co .kr	fastscansecure .com
dogstudio .net	fastscan-secure .com
doinw .com	fastscansecure .net
doxws .com	fastsearchandprotect .com
dumbmua .or .kr	fast-searchandprotect .com
dz-evil .com	fast-searchandprotect .net
easynettest .com	fast-searchandsecure .com
eddxx .com	fast-searchandsecure .net
ediyhy .cn	fastsearchprotection .com
elku .ru	fast-searchprotection .com
elxolionave .com	fastsearch-protection .com
ericlapointe .com	fastsearchprotection .net
ertubredong .com	fast-searchprotection .net
exchangenew .com	fastsearch-protection .net
filemarket .net	fastsearch-secure .com
fit77 .biz	fastsearch-secure .net
freshhost .info	fast-systemguard .com
gevyta .cn	floattubesonline .com
goldenpost .co .kr	flowersshoping .com
gratisweb .com	giandomenicolombardi .it
herosima1yet .cn	gogyadexchina0ab .cn
idoafy .cn	gumertagionader .com
ihrhrhrhereo .cn	headlinenews2 .com
imgnode .cn	informatica11 .dominiotemporario .com
ipoxyid .cn	internetprotectioncheck .com
iuulnta .cn	le-king-de-linformatique .com
iuzhejw .cn	malware-reaper .com
jyvlayu .cn	mega-manager .info
litjnz .cn	mega-statistic .com
lpreke .cn	mycomputerscanner11 .com
mega-manager .net	nuherfodaverta .com
mega-manager .org	nulerotkabelast .com
mirctr .org	nulkersonatior .com
nuliborkawer .com	opolertionfer .com
omega5 .cn	past-another-life .ru
online-cnn .com	paulmccartneyusa .cn
open-dns .info	polanermogalios .com
oqaezfy .cn	professionalblackbook .com
org-edu .ru	protected-field .com
osujyre .cn	protectmyzone .com
otherchina .cn	protect-myzone .com
palata666 .info	protectmyzone .net
plugidentity .com	protect-myzone .net
polygraphy-p .ru	protectyourpc-now1 .com
projekt2 .de	puritan-groupco .cc
report-cnn .com	puritan-groupco .cn
reycross .cn	puritan-groupinc .cn
roadone .net	puritan-groupinc .com
rucoc .com	regency-groupco .cn
rxumohas .cn	regency-groupco .com
scan-4-clean .com	regency-groupnet .cc
sdrukap .com	regency-groupnet .cn
searchdefend .net	scambiovisite .tatoosite .it
semihow .com	searchscan-online .com
serversen .cn	searchscan-online .net
skylife .cn	securescantools .com
softsafeness .com	securityrundlll .com
sowyen .co .kr	securityscantooldirect .com
starcountry .ru	securitytestnetonline .com
statscounter .cn	smsphonesymb02 .cn
stats-track .com	socialbeautytips .com
stiggba .com	systemprotected .net
susnoj .cn	tecbiosistemas .com .br
suxumzulum .cn	theanotherlife .ru
sweetfay .cn	tomotorsports .com
tahribat .com	topspyfreecheck .com
the-previous .ru	tracker-stats .com
tilowgy .cn	tracker-stats .net
tqeetazx .cn	trust-systemguard .com
trustwarrior .com	trustsystem-protect .net
ucuywih .cn	updatedownloadcenter2 .com
uhajokalesko .com	uplaserdunavats .com
uk4you .cn	usaworkinghard .cn
upiumry .cn	videoproducedsoftware .com
uzehayb .cn	vision-groupinc .cn
volkanboya .com	vision-groupsvc .com
vretupak .com	vuilertumegated .com
watzthebuzz .com	vuilleskomandar .com
webinwild .co .uk	vulerdasonatka .com
wett-profis .com	windowspcdefender .net
weueai .cn	windowsprotection-suite .net
xhtmlweb .com	windows-up2date .cn
xouymiw .cn	winfixscanner1 .com
ybcyyy .com	winfixscanner2 .com
yestour .net	winfixscanner7 .com
yh1weq .eu	winfixscanner8 .com
ynoubfa .cn	winfixscanner9 .com
ynyxeg .cn	yourfriskillness .cn
zimzikjun .cn	yoursecuritynetwork .com
zpit .pl

Joshua Long (the JoshMeister) suggests the following rogue domains be blocked:

• rampir .info
• gomutescan .com
• goneatscan .com

These sites will be added on our next update, but you probably don’t want to wait that long

Sources include ddanchev.blogspot.com, ddanchev.blogspot.com, www.malwareurl.com, and malwaredomainlist.com:

245a34 .cn	musicanacional .com
2e7860 .cn	obamanewterror .com
9821g9 .cn	waitforsunrise .com
iqidoh .cn	windows-shield .com
iphotos .ir	worldsbestscan .com
iqiatwo .cn	xxx-white-tube .com
iqoyxab .cn	10-open-davinci .com
mofa .go .ug	emphasis-online .com
ukwirex .ws	getrequesttrest .com
dzuqiqaz .cn	mediastreamdata .net
jorgan .info	megaspywarescan .com
kpaxikey .cn	nationaltreasure .cn
magictin .cn	tryantivir-scan .com
nbakoff .com	virscan-online1 .com
nfovidab .cn	watch2010movies .com
novaetc .com	colonizemoon2010 .com
ukwirex .com	fast-systemguard .net
cnn-bcc2 .com	managetelevision .com
darkbitz .com	megaspywarescan5 .com
fornistan .cn	my-protectedzone .com
hoooools .com	my-protectedzone .net
kebike .co .kr	myprotectionzone .com
kilogid2 .biz	newsoverworldhot .com
lrxsoft .info	securedvirusscan .com
nnieqee .info	totalspywarescan .com
shaurman .com	totalvirusscanc3 .com
33duraka .info	xillercollection .biz
adultping .net	antimalwareshield .com
confsonort .ru	blastertroops2011 .com
fffkkeee .info	criticalmentality .com
iwanttowin .cn	exceldocumentsinfo .cn
j-vintage .com	myprotection-zone .net
kowpa .x-y .net	online-systemscan .net
rootscan .info	primeareanetworks .com
search890 .com	supportyourcountry .cn
uniqstats .net	totalspywarescan3 .com
bestscanpc .org	totalspywarescan4 .com
bintus-bahi .cn	totalspywarescan5 .com
issuenews1 .com	tryantivirscanner .com
jahanradio .com	warningvirusalert .com
lifecounter .cn	worldrolemodeling .com
newsoption .biz	worldsbestscanner .com
savemywork .net	005threats-scanner .com
sexualporno .ru	antivir-my-pc-scan .com
trucountme .com	antivir-scan-my-pc .com
winnerphone .cn	awardantivirusscan .com
banner09092 .com	becomemybestfriend .com
best-scanpc .com	delete-all-virus01 .com
bestscanpc .info	delete-all-virus03 .com
beststarwars .cn	delete-all-virus07 .com
downloadavr .com	delete-all-virus09 .com
ericwanhouse .cn	executive-officers .com
itorkalione .com	futureshortsonline .com
lionglervoa .com	multimediahomesoft .com
materetcaput .it	mysystemprotection .com
mymoney-blog .ru	mysystemprotection .net
newscnn2009 .com	tryantivir-scanner .com
norma-market .ru	antivir-scan-online .com
poligraphiya .cn	antivirusxppro-2009 .com
usanews2009 .com	mysystem-protection .net
willsmithinc .cn	tryantivirusscanner .com
4malwarescan .com	valueantivirusshop1 .com
batman-comics .cn	warningmalwarealert .com
bulkdvdreader .cn	warningspywarealert .com
downloadavr2 .com	warningvirusspreads .com
greattime2009 .cn	windowsprotection-9 .com
green-av-pre .com	bewareofvirusattacks .com
happy-winners .de	eenadu-epaper .hmsite .net
kingofrings .info	remove-all-pc-adware .com
modern-design .cn	uptodate-your-system .com
rover-machine .cn	warningmalwarealert2 .com
sitemechanics .cn	warningmalwarealert5 .com
space2009city .cn	winningantivirusscan .com
trucount3005 .com	001yourprivatescanner .com
trytowintoday .cn	antivirscanmycomputer .com
01malwarescan .com	antivirus-promo-scan1 .com
07malwarescan .com	antivirus-promo-scan9 .com
4cleanspyware .com	bewareofvirusattacks3 .com
6cleanspyware .com	blackwter-cuprumworks .net
7cleanspyware .com	firstspywarescannerv1 .com
adeptofmastery .cn	power-virus-scannerv2 .com
blue-xxx-tube .com	ustintimberlakestream .com
chinafavorites .cn	worldsbestantivirscan .com
cncdatanetwork .cn	bernie-madoff .coolinc .info
irs .gov .ikbas1 .eu	justintimberlakestream .com
irs .gov .yh1wek .eu	leading-antivirus-scan .com
noronha .pe .gov .br	securedvirusproscanner .com
obbeytheriver .com	totalsecurityscannerv3 .com
virscan-live1 .com	trustsusyem-protection .com
wheels-on-fire .cn	capitalofficeautomation .com
006all-scanner .com	festivalamazonasjazz .com .br
009all-scanner .com	justthingsyouneedtoknow .com
3removespyware .com	windows-protectionsuite .net
5removespyware .com	antivirus-promo-scanner3 .com
7removespyware .com	leading-antispyware-scan .com
8removespyware .com	greatsecuritytestinternet .com
bestwishestoyou .cn	secure .web-software-payments .com
hallecodecdivx .com

Over 270 new domains to block – zeus, koobface, rogue domains. Sources include zeustracker.abuse.ch, ww.malwareurl.com, ddanchev.blogspot.com, and others:

0md .ru	094k .ofspokesman .com
2ijdi .cn	09computerquickscan .com
3eifj .cn	2sdfhs8d7fsh34d8f7s .org
4e4en .com	ad-warealert .com
abyvauw .cn	agoliopaner .com
adjudg .info	bianca .trinityonline .biz
adoimi .cn	crusade-affiliates .com
adspromo .cn	dercleaner .info
aflamsat .com	dotastoc .com
anmast .info	dot-soft .net
argier .info	dz-hacker .com
atwain .info	eljupdate .info
bedash .info	fast-virus-scan4 .com
botled .info	gotrioscan .com
broths .info	gsm .tehnogold .ru
camlet .info	hiccanaght .com
caretz .info	hiccanaght .net
cuplift .info	hqvirusscanner .com
debuty .info	hqvirusscanner5 .com
declin .info	hqvirusscanner7 .com
devicel .info	hqvirusscanner8 .com
dolchi .info	hundenhuete .com
extrip .info	iantiviruspro .com
fatted .info	iantivirus-pro .com
fifthz .info	ijnphysght .com
filths .info	inflightservice .se
fosset .info	inversiontrace .com
freckl .info	investmenttooltips .com
fulier .info	iron-words .info
gaudad .info	jaagobangladesh .com
gelded .info	jaesupgght .net
gfr24 .com	jaoxiavght .net
ghterwa .com	jdreborn .co .uk
haere .info	jornalinparcial .com .br
hjc .or .kr	jrigutto .com
holdit .info	junior-cup .de
hostned .ws	justintimberlake2009 .cn
hownet .info	justseethisonline .com
ia-pro .com	karmandala .com
ihagoin .cn	kasonkertub .com
ijobuaw .cn	kilibinchek .cn
ikoiwe .cn	kopol .com .ar
ikorate .cn	kpu .feelmuziq .com
ikyadeh .cn	labor .labcei .unimore .it
ikyigy .cn	lamorecosmetics .com
inquir .info	lastexesite .com
jpchase .cn	lilia .jino .ru
kedder .info	lllllllll .info
ki2ip .cn	lnx .mp3dmultimediastudio .it
kievsk .com	locationlite .com
klozep .net	magicsuser .net
knivel .info	malogrado .de
krapen .info	mamasanta .com
ksakksik .cn	management-overview .com
kult .si	media1950 .cn
kurskoi .com	megaspywarescan2 .com
l2707 .com	membres .lycos .fr
lafikhex .cn	millionmany .org
lamsa1 .com	mknjbhyju .exxl .pl
lastexe .com	moskaritobanios .com
lavyer .info	mravinsky .ru
liifd .cn	mt3pvkfmpi7de .cm
litsed .cn	museum-mputantular .com
loginup .cn	mybetorwager .cn
lsdc .be	myprotected-zone .net
luxexe .com	myth-busters .cn
mauds .co .uk	myvirusscanner .net
mayray .info	namethatshop .cn
meyrie .info	newwayscanner .info
mg0b .info	nordicholidayhomes .nl
miloty .info	novoxexe .com
mirstor .cn	ntrytodownload .info
n0one .com	osaertugern .com
narowz .info	pleasagain .com
nevils .info	preserveatetowah .com
numben .info	primemovier .net
oiluk .net	promodelia .com
onclew .info	refleksltd .org
orodes .info	rosariofutbol .com
outliv .info	rvertundfertug .com
pampa .hu	ryacleaner .info
penvie .info	sangrokwon .or .kr
piisp .com	scan-virus .net
pinua .com	searchpcguard .net
pittie .info	search-protect .net
plamet .info	securefileshere .com
plazec .info	securityscantoolworld .com
potinz .info	securitytoolworld .com
prarie .info	shop .kbench .com
psmellc .org	sjkmerirtokm .cn
psycho .lv	somfaigabor .hu
quoifs .info	spacecountry .cn
raught .info	sportime .co .kr
rh4df .cn	sportshots .cn
rustat .su	startexcite .com
sawme .info	startexe .com
scarre .info	sterlate .com
scrowl .info	summertoday .com
seca .ws	supertubeworks .com
sighal .info	sycamorecanyonschool .com
sigura .ro	system-guard .com
silvton .cn	systguard2009 .com
skylog .kz	tahulavumbak .com
slavik2 .com	teacherslounge .cn
slavik3 .com	tech44tech .com
solnamu .com	theinfectedsurvivors .eu
speen .info	toprambler .biz
stampo .info	totalunix .net
steepy .info	train-modelisme .com
stikkso .com	tryantivirusscan .com
subsul .com	u0asd9fua0sd8fuasdf .org
swoons .info	uiskddcuiretog .com
syukadig .cn	uliboktebededmakar .com
tandkof .cn	uliondarvasoka .com
tented .info	uliya737 .freehostia .com
thingre .com	univpancasila .ac .id
ticedu .info	urlupdate .info
tithed .info	urodinam .net
tobaco .name	us-business-shop-2019 .com
trimecs .net	usdisturbed .cn
uintoo .ru	usesomescents .com
uloumir .cn	vin4enso .cz8 .ru
unclin .info	virtuozbilnyak .cn
undeaf .info	weeeeeld .com
unwept .info	wejlk298798324 .cn
usicam .info	wificafe-search .com
vklom .com	windowspcline .cn
w0rk .biz	winspycleaner .com
wg879 .cn	woptimizer .com
wiving .info	worldbestonlinescan5 .com
wwwzapas .cn	worldbestonlinescan9 .com
wzand .info	worldbestonlinescanner .com
x83 .ru	xcuidflofertun .com
x-pager .com	xsconceptgolf .com
xsddss .net	yournamequickshop .cn
xyu-bam .cn	zellmada .co .cc
zaiki .biz	zeromagic .spb .ru
zussia .info	zoldtermekek .hu

Read this page if you want to report a false positive.

Domains.txt file is the complete list along with original reference.
New: Justdomains contains list of only the domain names.
Updates are located at http://www.malwaredomains.com/updates.
The full files are located at: http://www.malwaredomains.com/files
BOOT file is in MS DNS format. spywaredomains.zones file is in BIND format.

Also Available in AdBlock, ISA, and MaraDNS formats.
Now a trusted source on the WOT-the Web of Trust!
Used by SURBL, MOREnet, and others…

Please add teacherslounge .cn and  mg0b .info to your blocklists as soon as possible.

Thanks to the “JoshMeister” :

This Google search…
www.google.com/search?q=poll+skinner+won+america’s+got+talent

…brings up this link on the first page of results (which on the surface looks like a legit site that may have been hacked, but who knows)…
www.bgbc .org/wp-content/themes/arras-theme/css/blueprint/blue.php?kevin-skinner-wins-america-s-got-talent

…which redirects to  mg0b .info/go2.php?s=x243

…which redirects to
teacherslounge .cn/go.php?id=2031&key=6c2039a17&p=1

…which as of this moment isn’t redirecting anywhere for me, but is hosted on the same IP as tons of other malware domains (94.102.48 .29).  Presumably this URL will soon redirect to a fake virus scan or something else malicious.

Update: Josh reports a brand new domain to block: cnn-bcc2  .com

Over 280 new malicious domains added from atlas.arbor.net, www.malwaredomainlist.com, www.tech-linkblog.com and others:

21site .com .cn	aaaauto .servebbs .net
39sys39 .cn	aaburke .dynalias .org
7oydomen .cn	aaliyahicare4u .office-on-the .net
81wordfly .de	aamane06 .isa-geek .com
84chatterworks .de	aandrioli .servebbs .net
87m .co .cc	aarab51 .go .dyndns .org
90snapset .de	aartt .dyn-o-saur .com
a2stu .blogdns .com	abbassi03 .homedns .org
absbillnow .com	afedodevascevo .com
admnqtc .cn	agodaynsvcbert .com
afgc .asso .fr	alertonbgabert .com
agiaten .cn	alliance-marketing .cn
alex-bron .ru	antispywarescanner08 .com
alioneferkilo .com	antivirusonlinescan03 .com
annunci-motori .it	archway-groupinc .cn
antipirat .cn	best-topscanner .com
avpersona .net	best-virus-scanner5 .com
bellasbar .co .za	billing365solution .com
	billingsecurepayment .com
benber .info	bill-service-365 .com
bezzpaleva .cn	bill-solution-365 .com
bigamadillo .cn	buhervadonuska .com
biig .net	canasta-banditen .de
bill-it-now .com	ccpaymentsys24 .com
billmeplease .biz	cc-payment-sys24 .com
billmyccnow .com	cc-pay-system .com
billsoftpay .com	clean-all-spyware03 .com
billsystem-24 .com	clean-all-spyware10 .com
bomkyvi .cn	comanda-parfum .com
bukake3890 .info	continental-systems .com
campani .net	core2623 .ingloriousbastardsx .com
cuantosexo .com	cr0d .interfree .it
davidbredov .ru	dayoneskateshop .com
dirvsdl .or .kr	demoscan4free .com
divambee35 .de	ecologygreenpc .com
dmitrygaiduk .cn	elxolisdonave .com
ebator .com	ertubredxcong .com
eleparts .co .kr	fast-virus-scan01 .com
embrari-1 .cn	fast-virus-scan7 .com
forms .dgpj .mj .pt	findbigbearproperty .cn
free-checkpc .com	firesaverbest .com
freedom3 .cn	forum .mylinkreview .com
free-scan-pc .us	fotomasterstvo .ru
gemmakt .cn	fuck-celebrities-movie .com
geotisto .info	gomasukanahui .com
geroyvoin .cn	google-stats008 .cn
git77 .biz	goscan-protect .net
goldtraff .info	go-searchandprotect .com
good-week .cn	groupmomsorgies .net
googie-stats .com	hearabout .linksysnet .com
gorodu .com	hfju38djfhjdi3kd .cn
goscantech .com	hulieropedaso .com
guotao518 .cn	ingloriousbastardsx .com
harlingens .com	integrity-groupinc .cn
hat77 .biz	integrity-groupsvc .cn
hkindoor .com	intellectual-vir-scan08 .com
huladopkaert .com	intellectual-vir-scan09 .com
hyg12zr .eu	iobacebauiler .com
hyg12zu .eu	iobacebyuauiler .com
hyu11hec .eu	itorkadflione .com
hyu11heh .eu	join2623 .softwareordersx .com
hyu11hej .eu	kasongskertub .com
hyu11her .eu	kolinhopewaqs .com
hyy12cyl .eu	kopaeva .servegame .com
idofrosting .com	lionglenhrvoa .com
idunef .cn	malwareinternetscanner03 .com
ifypeod .cn	malwareseradicator .com
igivor .cn	malwareurlirblock .com
ijuoxe .cn	marketservers .net
indo .home .ro	massive-groupsvc .cc
jejucasa .com	mega-business-online-shop-2009 .com
kiano-180809 .com	mega-tracker .info
kokkosik .com	newcellphones-overview .com
korcacity .com	new-systemguard .com
krommeknilles .nl	new-systemprotection .com
kvumurij .cn	new-systemprotection .net
leiayre .cn	nrefadoteskfer .com
libesouz .ru	nulcdiborkawer .com
lingobest .com	numbergatoriosso .com
lionaserduma .com	onlinebillingsolution .net
listven .com	online-scanandsecure .net
losawzs .eu	onlinescansystem .net
medialabs .it	online-securescanner .com
mena-groupsvc .cn	onlinesoftwarebilling .com
messengerinfo .cn	onlinestoresystem .com
milet-company .cn	onlinesystemscan .com
mredkizerut .com	online-systemscan .com
mtkstrip .co .kr	onlinesystemscan .net
mtkstrip .com	order-software-online .com
mtkstrip .kr	overviewforexbids .com
muvz .sytes .net	ovuiobvipolak .com
mvdhiraagu .com	paymentsolution24 .com
mylipc .com	payment-solution24 .com
myzonedom .ru	pay-securesystem .com
nameguards .cn	paysoftbillsolution .com
nashi-babki2 .com	pebergenufeska .com
neztro .com	pencil-netwok .com
noliporedtre .com	personaldetailsinfo .com
nosatorabumb .com	personalpurchuasesite .com
onpromo .cn	prime-groupinc .cc
oretoderfat .com	prime-groupinc .cn
oyks .net	privacyguardpro .com
pay-cc-24 .com	project .usinfolab .net
pcfsupport .com	protection-check07 .com
personal08 .com	quick-virus-scanner02 .com
photopath49 .de	quick-virus-scanner07 .com
poavlonini .com	quick-virus-scanner08 .com
prikulamud .com	rdafergfvacex .com
prime-groupco .cn	redeye-groupco .cn
radioheadicon .cn	redeye-groupinc .cc
rdafervacex .com	redeye-groupinc .cn
red-wolf .ru	retrobaziliona .com
rhrhrhrhereo .cn	rss-checkfeeds .com
rjkifj .cn	safe-fileshere .com
saint56 .pe .kr	santacruzcall .com
searchgroovy .cn	saturn-groupco .cn
searra-ditol .cn	saturn-groupsvc .cn
shrekmovie .cn	sdoosdne774bsd3s83bn .com
sigatrio .org	sebastienleabse .com
slavik1 .com	securityscantoolguide .com
sms-vkontakte .ru	senmu .homeftp .net
sockslab .net	sex-and-the-city .cn
softhotspot .com	shounbakerpro .info
soft-process .com	slyusarenko .kicks-ass .org
spasicomp .com	smart-online-shop .com
srvfarino .co .cr	smarttech-house .net
step2me .net	softwareordersx .com
tiete .com .br	street-peppers .ru
tiondapulkat .com	styleorient .dnsalias .org
totalgroupinc .cn	sunshinecoasttours .selfip .net
total-groupli .cn	superb-antivir-scan01 .com
traceback-ip .eu	taborfilmfestival .com
tradenton .com	tahulavubgmbak .com
turbo-profit .com	tour .ivancity .com
ukwirex .info	trufficseovciezlocovnert .com
upwize .info	tudoaqui2 .xpg .com .br
utionakertu .com	uhajokvfalesko .com
validating .ru	upinosatoretr .com
volonterkom .cn	virtualsecuritycheck .com
warningdt .nm .ru	washingtontruth .com
yamagiku .net	wertagulionaders .com
yesfreescan .com

Read this page if you want to report a false positive.

Domains.txt file is the complete list along with original reference.
New: Justdomains contains list of only the domain names.
Updates are located at http://www.malwaredomains.com/updates.
The full files are located at: http://www.malwaredomains.com/files
BOOT file is in MS-DNS format. spywaredomains.zones file is in BIND format.

Also Available in AdBlock, ISA, and MaraDNS formats.
Also a trusted source on the WOT-the Web of Trust!

Used by SURBL, MOREnet, and others…

Sources include     www.bobbear.co.uk, malwaredomainlist.com, www.trustedsource.org and others:

97kanmm .cn	aha-shame-shame .com
arda .or .th	antispyware-scanner2 .com
armartshop .com	antivirus-fast-scan01 .com
avpro2010 .com	antivirus-fast-scan02 .com
av-pro2010 .com	antivirus-fast-scan04 .com
bazarish .net	antivirus-fast-scan05 .com
bcobanut .cn	antivirusfilter-zone .com
bcugusot .cn	antivirusonlinescan6 .com
bdekowip .cn	antivirusp2010 .com
bdonilix .cn	antivirus-p2010 .com
beeves .info	antivirusp-2010 .com
bestexe .com	antivirus-p-2010 .com
bgsew .com	antiviruspro2010 .com
bideqta .cn	antivirus-pro2010 .com
bluepadma .com	antiviruspro-2010 .com
boomexe .com	antivirus-pro-2010 .com
cityfit .ru	antivirus-promo-scan .com
clxwe .com	antivirusquickscan2 .com
cosovowar .cn	antivirus-scanner6 .com
crisis1s .com	anti-virus-solution .org
d10gc .cn	anti-virus-xp-pro2009 .com
db9qq .cn	apelsin4ik .co .cc
derebas .co .cc	archway-groupinc .com
dile1 .info	arosakilomen .com
drjwv .com	artvariety .co .za
droope .info	avchecknow .com
ds .xdns .eu	avirus2010 .com
ds3gj .cn	a-virus2010 .com
eelcd5 .info	avirus-2010 .com
eraean .com	a-virus-2010 .com
eurccc .cn	bervuilendosate .com
exe-por01 .com	best-erotic .mcdir .ru
f6e .ru	bestexeonline .com
f6y .ru	best-live-lottery .cn
f7p .ru	bestscanpc .net
f7y .ru	bethanyhousetwells .co .uk
f8a .ru	bnbsuubtvvsyy4ndvg .com
faites .info	boomexesite .com
ffxiname .com	boxenstopp .biz
fguyamoz .cn	bravemousepride .com
forety .com	buhervadoska .com
fpgo .ru	bumergonagortaut .com
frantsuz .com	bundesregeirung .de
galz177 .net	cdmhsxdght .net
gathernet .in	csjh .tpc .edu .tw
gd1di .cn	dedkeopght .net
gd8bb .cn	denpcysght .net
gidromash .cn	dimka2009 .real-host .org
googlle .in	dkitistnoif .info
gosstroy .com	dnsless .gh0sthosting .com
green-av .com	dns-systems123 .com
gt5ev .cn	doubleclick-rss .com
hd6bb .cn	elitedigiscrappers .com
hexexe .com	ewaxertulio .com
mofmeta .com	expo .ubsc .or .kr
nenastiya .cn	extremeanalonline .com
ottopay .cn	fear-angels .bissnes .org
prepaider .net	fernudarogal .com
q05 .ru	fgddfgdgdfg .com
q07 .ru	fiminalisimo .net
q1e .ru	fragus-v1-1 .cn
q38 .ru	frantsuzik .com
q3t .ru	free-scan-here .com
q46 .ru	gc4fg456hfghfss6sg4 .com
q59 .ru	genie-hkfc .com
traiden .org	get-safe-files .com
u0e .ru	ghlyhwpght .net
u19 .ru	gmail-pop3 .com
u9j .ru	gobcounter .org
verticalt .com	goffin-escrow .com
x0v .ru	google .hmsite .net
x1h .ru	google-update-checker .cn
x1i .ru	gosalerbas .com
x3b .ru	go-scanandprotect .com
x6g .ru	grabmymotor .com
x6h .ru	great-connections .com
x6p .ru	green-av-pro .com
x6q .ru	guianossacidade .com .br
x7d .ru	hardexeworld .com
x8f .ru	hexexeterra .com
x8y .ru	holding-group .cn
x9v .ru	imeyerhome .org
x9w .ru	med-payments .org
xb4 .ru	megahostname .biz
xb5 .ru	moneytransferltd .com
xc6 .ru	neweca-payments .com
xc7 .ru	new-systemshield .com
xe6 .ru	prime-groupco .com
xh9 .ru	redeye-groupco .com
xi5 .ru	remove-all-adware06 .com
xj4 .ru	rude-xxx-tube .com
xj7 .ru	saturn-groupsvc .com
xk7 .ru	shontecltd .com
xk9 .ru	windows-protectonline .com
xm0 .ru	windows-systemguard .com
xr3 .ru	windows-systemguard .net
xt7 .ru	windows-virusscan .com
xt8 .ru	windows-virusscan .net
xw0 .ru

Rogue security domains,  fake antivirus domains,  some sql injection domains.   Sources include www.malwareurl.com,  s3cwatch.wordpress.com,     www.siteadvisor.com and others:

18xn .com	1a-7294 .antagus .de
1kfie .cn	ablegang .com
28zxc .ws	advancedpcscanner2 .com
345s .com	advancedpcscanner3 .com
5fgh .ws	advancedpcscanner6 .com
88mw .com	advancedpcscanner9 .com
88wdvd .cn	advancedvirscanner3 .com
99boxx .com	antivirus-deluxe .com
a3h .at	antivirusplus1 .com
a3l .at	antivirusquickscan3 .com
a3q .at	antivirusquickscan5 .com
a5f .at	antivirus-xp .awardspace .us
a5h .at	armor-groupco .cc
a5j .at	armor-groupco .cn
a5m .at	avir-guardian .com
apalet .info	av-scan-2009 .com
b5c .at	av-scan-2009-up .com
b5r .at	av-scanner-2009 .com
b6l .at	awareremover .com
b6t .at	beachhousename .cn
b7g .at	besecuresallpcs .com
b7p .at	best-antivirus3 .com
boksx .com	best-antivirus8 .com
bqtl .in	bestantivirusscanv8 .com
c6h .at	bestscanantispywarev3 .com
c7h .at	best-virus-scanner4 .com
c7r .at	best-virus-scanner6 .com
c8t .at	bigtopleads .cn
c9m .at	bigtoprocks .cn
c9m .ru	boxhidden .com
c9u .at	brandschutztechnik-hartmann .de
captum .info	cahsbadaboom .awardspace .us
cncn88cn .cn	checkvirus-zone .net
dateing .de	clean-all-spyware07 .com
dd88567 .cn	coolnssecurity .com
dma .ma	cosco-groupmain .cn
downbt .com	cosco-groupmain .com
dwsx .com	datescout .de
enlarg .info	download4safe .com
envied .info	dynamicfilmmedia .cn
erpeer .info	earchsafetyprotection .net
espied .info	ebookexpress .de
f6y .at	enter .popporn .in
f7p .at	entreamis .ma
f7y .at	entryservice .de
f8a .at	ertubedewse .com
figgle .info	goeachscan .com
froday .info	go-scansystem .com
gehae .info	go-scansystem .net
grumio .info	go-searchprotection .com
gssmedia .cn	gotomyprotectedzone .com
haerh .info	greatestsecscans .com
hardnut .cn	greenbillsystem .com
hhbg .in	homepersonalantivirus .com
huchinu .com	hqvirusscanner2 .com
hyg12zk .eu	imjustbored .com
hyg12zq .eu	imoviemax .ru
hyu11heb .eu	intsecureprof .com
hyu11hep .eu	invalda-groupmain .cn
hyu11hew .eu	kissfromde .cn
iis .mo .cn	larkmedia .ru
ilixyeq .cn	livetimesecurityscan .com
ilodux .cn	livetimevirusscaner .com
iloefe .cn	lowexeonline .com
iluefot .cn	martpictureexistence .cn
inb4ch .com	mashroomtheory .cn
in-t-h-e .cn	meldorgroup .cn
ipqk .in	micronetsys .org
jackvn .net	movies-hidden-places .com
jaybi .ma	mylovsecurity .com
jayfor .com	myprotected-zone .com
kbgg .in	mysecurityshield .net
kgapofef .cn	newpcguard .net
kkxv .in	ns37428 .ovh .net
lapsek .info	officesecuritysupply .com
lowexe .com	pagerank-backlinks .de
mcsmc .org	pagerank-submit .de
mnprfix .cn	pickknob .info
nqrl .in	pictswizard .com
nyusa2a .eu	porno-inter .ru
nyusa2b .eu	proofdefender .com
nyusa2s .eu	protectmycomputernow .com
oufc .in	pro-voting .com
pleach .info	publicpub .net
polear .info	qingchun-meinv .cn
q0j .ru	quickhealcleaner .com
q0w .ru	quick-virus-scanner01 .com
q1f .ru	ranking-charts .com
q1l .ru	safetysystem-shield .net
q1n .ru	scan4youpconline .com
q3c .ru	scanonline-protect .com
q5k .ru	scanonline-protect .net
qoeirq .com	scan-secure .net
s1p5 .info	scansystemonline .com
sallat .info	scansystem-online .com
searce .info	scantoolsite .com
sexyy .ru	scanvirus-online .net
sicyon .info	search-systemshield .com
slatch .info	secure-systemshield .net
soac .in	seyconel .com .br
spelem .info	stonek .info
tour6 .info	system-guard .net
traffok .cn	system-guard2009 .com
u0r .ru	tenshy .info
u1j .ru	thegreatav .com
u3j .ru	towton .info
u3m .ru	tsfxzg .info
u3v .ru	ultrapc-scan .com
u3y .ru	unroot .info
u5m .ru	us-windowsupdate .com
u5v .ru	vagrom .info
u6k .ru	vanni-van .cn
u6n .ru	vector-groupfine .cn
u7e .ru	vector-groupfly .cc
u7n .ru	virusermoverpro .com
u7x .ru	virusfilter-zone .net
u8b .ru	viruskill2009 .com
u8h .ru	vista-store .de
u9b .ru	voided .info
u9k .ru	vrenutredo .com
uppd .in	web-masteru .do .am
x0o .ru	windowsguardpro .com
xrbw .in	windowsultimate-guard .com
ynaa .in	winprotection-suite .net
z360 .net	wins-guard .com

Read this page if you want to report a false positive.

Domains.txt file is the complete list along with original reference.
New: Justdomains contains list of only the domain names.
Updates are located at http://www.malwaredomains.com/updates.
The full files are located at: http://www.malwaredomains.com/files
BOOT file is in MS DNS format. spywaredomains.zones file is in BIND format.

Also Available in AdBlock, ISA, and MaraDNS formats.
Now a trusted source on the WOT-the Web of Trust!

Used by SURBL, MOREnet, and others…

Time to reload your master list: we just finished cleaning up the malware master domain list and removed over 3200 domains.

The full list of removed domains are located at:  http://www.malwaredomains.com/files/removed-justdomains-20090907.txt

Please let us know ASAP if any domains should be added back in.

Don’t worry, plenty of new domains will added over the next few weeks