Feed

74 more to add to your domain blacklist

Posted on November 8th, 2008 in fake codecs,New Domains,rogue antivirus,spam,sql injection by dglosser

Some Obama malspam, fake porntube, phishing, sql injection sites. Some of this malware has very low detection rates.  Add to your malware DNSBL fast…

Sources: garwarner.blogspot.com, www.malwaredomainlist.com, www.threatexpert.com, s3cwatch.wordpress.com, and others:

10wrj .com liebiao .2008just .cn
tcact .com antivirus-online-scanner .com
404mispage .com lovelypornovideo .net
adxbnet .net oiuyt .net
adxcnet .net oritrsunwart .com
adxdnet .net pizder .com
ahiiptjsto .com playswomen .com
alexinic .info poreibrsu .com
lolika .cn pubdomainstr .com
antivirus-x .com qmkaanta .com
anyygfxes .com bloomingmarvellous .net .au
aolpound .com s8marta .info
avproscan .com secure-ebank .com
banner-count .com secure-ebanking .com
baraokl .com secure-ibank .com
bfiinwach .com secure-ibanking .com
realimgz .com secure-netbanker .com
sion .or .kr securebanking-net .com
bnmhg .com secureconnect-us .com
bot-tob .ru securesolutions-net .com
cc86 .info seove .com .cn
co .uk .trkidsub .ch serensy .com
connect-secure .com zz .ushealthmart .com
ebasearch .org 1securebanking .com
fleshkatera .cn tdbanks .net
freegoogla .vicp .net thelocatemissing .com
gensoftdownload .com topavailable .info
google-moogle .net us-bankconnect .com
herowood .info us-securebanking .com
ibanking-net .com vcoenutrmsi .com
ibanking-secure .com wconlinenrue .com
il3er .cn wrsnav .wwlax .com
ko118cn youtube-spyvideo .com
kremz .ru bmanager .shadypart .net
lenovowireless .net yourglobalsite .info
ycn6 .cn youtube-spy .info
xiaoxiao02 .cn

Contact us if you want to help us keep the Malware Blocklist current.Read this page if you want to report a false positive.
Domains.txt file is the complete list along with original reference.
Updates are located at http://www.malwaredomains.com/updates
The full files are located at: http://www.malwaredomains.com/files
BOOT file is in MS DNS format
spywaredomains.zones file is in BIND format
Also available in AdBlock, ISA, and MaraDNS formats!
Now a trusted source on the WOT-the Web of Trust!
Used by SURBL, MOREnet, and others…

ms08-067 exploitation by 61.218.147.66

Posted on November 5th, 2008 in Domain News by dglosser

From SANs:

Exploiting ip 61.218.147.66 …. is definitely sequentially scanning ip addresses for tcp 445 looking for vulnerable systems so blocking it at your enterprise gateway is recommended.

“You Have No Right to Block My Website”

Posted on November 4th, 2008 in Domain News by dglosser

Occassionally we receive emails asking or  demanding that we unblock a website. Sometimes we are accused of censorship. For example. we just received an email stating

“you are not eligible to block any websites I want to get access to. It is my privacy to do what I want to do.”

We do not block ANY websites. We publish a list of domains which have been associated with viruses or malware collected from public sources. It is up to the network administrators of your company or school to utilize this (or other) blocklists.

They can choose to use part of, or all, of the malware domain blocklist. They can also remove, or “whitelist”, any domains on the list.

We do not make any money off of this list.   It is free for anyone to use, for non-commercial use.

The list hosted here is a public service to be used as one more tool in the fight against malware. It is up to your school or corporation to use the list in any way they want for noncommercial use.

If you believe a domain is improperly listed, look at the domains.txt file, which contains the original reference as to why it was listed. Also check your domain in other services such as siteadvisor or Norton Safe Web. Finally, type your domain name and malware in a search engine. It’s possible your domain has been infected and you don’t realize it.

If you still believe a domain has been improperly listed, contact us. If we agree, we will delist it, usually within 24 hours

Domain Delistings: giveawayoftheday.com

Posted on November 3rd, 2008 in Domain News,Removed Domains by dglosser

The following domains have been delisted:

giveawayoftheday.com
spb.ru
Flashget.com

Please update your blocklists.

HUGH Malware Blocklist: 0ver 400 New domains

Posted on November 1st, 2008 in asprox,fake codecs,rogue antivirus by dglosser

HUGE update, over 400 new domains, mainly from the Emergingthreats Sandbox.  Fake antivirus, asprox, rogue antispyware, fake codecs, and more.

1000yb .cn lftsbc .cn
111222 .cn llldr .com
1route .in log-in1 .jp
21java .tk log .onmuz .com
21yjxm .com log .r001 .info
2ppp .com log .realone .com
2tutu .cn login5 .gs
31tg .com loloplanet .com
38rate .tk lpbmx .ru
3s9t .cn macfeeresponse .org
43ole .me mail .ubbi .com .br
464fg .org makrea .com
48filt .jp manage5 .tv
4client .mobi map19 .net
4logon .jp mdegunjderinkdasewin .com
511u .com media .wow-europe .com
52hdy .com miami .theaddiction561 .com
55pif .me microsoft .hr
5token .ws microsoftcihwindows .com
63page .ws mijafolu .com
69reg .cc mil .konfigs .com .br
6domain .tk mipr .org
76mtv .com mirengeqian .cn
78hit .gs mmobot .net
7direct .co .uk motorolaupload .web .cedant .com
82wg .com mp3 .info .pl
83166 .com mrak .bos .ru
83set .name mu555 .cn
8585le .com muttus .net
86dx .net muzi888 .com
881pp .net mywlhn .com
88site .cn net1 .6e3c0f .com
8ipsec .asia netapi7 .name
8shell .mobi netmsg5 .eu
91tmp .eu newv2count .net
97type .me nhatquanglan2 .0catch .com
99114 .com nihaojz .cn
9frame .eu noobskill .de
ac86 .cn ok .lovehy .com
ademails .com adsby .popupmoney .com
admin .bigban .info adserver .adsincontext .com
adrenalline .in outhang .cn
onlyi .cn p0llko .com
ononcom .cn paginas .terra .com .br
adsnunjmd .com pazmogutionsa .com
adult .bsdqc .com pi .gsm-ping .ru
adwim8812 .cn pictures-base .com
agakemegood24 .com pictures-library .com
agama .ec picturesbase .com
aging-information .com antivirus-premiumscan .com
akmainsystech .com antivirus-quick-scan .com
alerts .xiaoi .com antivirus-scan-online .com
alxup .com antivirus-telemex .com
amancioortega .es portal .tenpay .com
antimalware09 .net portal6 .jp
plotfive .cn premiumlivescan .com
pluscount .net program .mediaclick .kr
popo321 .cn promosoft24 .com
pornotube8 .net puxabobo .ifrance .com
antivirxp08 .com qejuunjmd .com
api07 .eu qiuyipin668 .com
api68 .co .uk app .savemoneyshop .com
qn518 .com qq87459418 .server61 .dns8cn .cn
aresgalaxy .org qqstup .cn
automodelo .info qqvip3 .com .cn
avcheck .biz qtcpplugin .com
avx2008 .com qwer .uyghuri .com
avxp-2008 .com rckiuag .net
avxp08 .com bugzilla .highlevel .biz
b .toosool .net camirnetruryeefyeiie .net
bbtguag .biz caratecanet .prohosts .org
bbtguag .com rrdcfoouyhm .com
bervioneeil .com s .ayola .net
bestsite .h1 .ru s4 .jonnyblack7934 .net
betpunjmd .com sakang .net
bhtoesp .biz sateliting .cn
bjnwsqtwth .com savemoneyshop .com
bloople .net sco .rs-forum .biz
boadongo .org search-lasslorn .com
bov2bllev .com searchpia .com
bsybr .cn searchresultsdirect .com
btjoy .com searchtool .co .kr
rdir52 .us securewarn .com
report7 .asia seecode .com
rid31 .ws set .prevairmsesades .info
carolina-clicks .com setup .ezreward .co .kr
caroll .pl setup2 .interich .com
catavireitanot .fgmn .info sexy .omakanika .net
cbhbooks .com sglyunjmd .com
ccqit .com sh .ndi .com .cn
ccumuag .biz shakeril .com
cdn .e5c6a4 .com shans-ua .com
chaoren34 .9k9k .cn shopmoneyback .com
chuangzaohuihuang .cn snmp52 .gs
cid49 .gs softsuppliers .com
cinselliknet .com soobao .cn
ck .haor2 .com srmvx .com .br
clicking2rewards .com ssl37 .name
code11 .ca sslnet3 .name
code57 .ws stableclick .com
ten .ru stableclicks .com
control7 .ca stats .sparnai .net
cool .47555 .com statweb .info
count28 .5iyes .com studioart7 .net
cpvcash .com sucop .com
csj-ath .be suka .x–x–x .com
ctsdowg .com sum4count .net
customlod .com suportelogtrans .com .br
cutedayz .com surfboardhacker .net
d .lv66 .com .cn surfing4cash .info
d .ylyh888 .com susanlabo .pl
d1o3 .2e6c3f .com swedish .ircfast2 .com
da .ca .b2 .a1 .top .list .ru szxintianli .cn
date .xerz .net t .g001 .info
dciman32 .com teachersgood .cn
dcvivutj .com techsearchsite .com
deepdo .com techsupporter .info
default2 .asia teknik .siberscript .net
demo-codec .net telmex .com
depositcredit .com construction-barascud .com
der8 .cn thebestwebsearch .net
desarroya .net thecha0s .com .br
dfeuyerl .com thmbunjmd .com
dfsas23 .com tibgtswe .com
digfree8 .cn timeforfuck .com
divinets .cn todosjuntosrb .com
dl .filekicker .com tools .spylog .ru
dl11 .filekicker .net tray62 .tw
dld .av2008dl .com trlist .gen .tr
dna .rrads .cn twwen .com
doc2 .cnaz .com tyisp .com
doctorsforchild .com typk520 .cn
dolchivideo .info u .6e6w .cn
domainameshome .com ufastanki .ru
down6 .flashget .com undelete-plus .com
down8888 .cn updatemicr0s0ft .net
download-es .com updatepanel .us
dr520 .cn urjb .com
dreamscards .com .br usasrv01 .hk
dvdvideosoft .com user .qzone .qq .com
dvgdfg4650 .com uswow1 .com
dwrdferfd6 .com util13 .us
e-soft1 .com v0id .izi .su
ehwvunjmd .com valusearch2004 .com
elbusines .com vbs27 .bz
en-us7 .tk vbsjs .cn
encode1 .name vfgt11 .com
err05 .bz viacodecright—1 .com
eyecuve .co .kr viacodecright1 .com
eytcghixk .net videofreeforonline .com
ezday .co .kr videosmil .com .br
f .thec .cn vilemov .farnost .cz
f145h .c47 .ru vip89 .com
fafa56 .cn viresh2 .net
fedorenko .mk .ua vjofunjmd .com
fgxoesp .net vps .msk .su
fhxzvtrtpq .net w .dengzhi .net
fileupyours .com w .qq-uc .cn
findxproportal .com w07dns .com
fritz .box waphunjmd .com
fsshdardhwd .com webng .com
fvtnksbjqo .com webscannertools .com
fx15 .org whenudownloads .com
fzbegqnl .com windefender-2009 .com
g1g1it .com windefender2009 .com
gamersxpro .info windowshelper .co .kr
ip .8684 .cn wishclub .ro
go .17mugua .cn wo709394 .cn
go .ztcool .com world-transfer .biz
gogocom .cn wpw .52hack .ch
googler .de wzhyyf .sgsg .cn
gooo .ru x-gold .org
goospam .com xbqjunjmd .com
gsjcwekg .com xdqs09 .com
gto .net .om xiaoaistudio .cn
hacker-bolivia .com xml .click9 .com
hardserver .ath .cx xsismdirys .com
hbclass .com .br xxlmpegs .com
hcpk .net xxxmovies .dip .jp
hemjewels .com xyblack .cn
hgfdujt .info y0shi32 .opendns .be
hhaouag .biz yahoo .go .co .kr
ineks-s .ru yinseshangdi .eicp .net
hotel4all .info ynlsw .cn
hotellives .info yxwdwg .cn
hunll .com yyl .mofish .cn
hzrj8 .cn zarateindustrial .com .ar
i .gulao .net zarazza .cn
icache .cnaz .com zaza999 .com
icbmulj .biz zebald .com
id294 .com zhoujun168 .host1 .8mak .com
ihaozhe .com zidane18 .8m .com
image-big-library .com zlmaukljwyvo .net
images-library .com zyzhuiku .cn
img-library .com hobbyistenkoiforum .nl
impressiontracker .com giveawayoftheday .com
in .webstat44 .com isyybj1471 .0-168 .com
info-records .com jhonson08host .com .br
jintian12 .cn jumbaia .com
jjckr .com k433 .com
irc .itexltd .com kangk .cn
lecoquin .net kesefkal .net
ittool .cn kkads .cn
iwin .com ksn .a27 .wrs .flutix .com
jcc9unjmd .com kumaojoke .cn
jedzasowaz .com l7l71 .com
jeliru .com l8 .blogfa .com
laderses .com  

Contact us if you want to help us keep the Malware Blocklist current.Read this page if you want to report a false positive.
Domains.txt file is the complete list along with original reference.
Updates are located at http://www.malwaredomains.com/updates
The full files are located at: http://www.malwaredomains.com/files
BOOT file is in MS DNS format
spywaredomains.zones file is in BIND format
Also available in AdBlock, ISA, and MaraDNS formats!
Now a trusted source on the WOT-the Web of Trust!
Used by SURBL, MOREnet, and others…