Cleanup: Over 450 domains removed

Posted on May 10th, 2009 in Removed Domains by dglosser

Over 450 domains were deleted as they were either expired or were no longer associated with malware.

As this is a complete reload of the database, please check the files are report back ASAP if you have any issues.

We will attempt to do this checking on a regular basis.  If anyone has any perl or other code which they can share which will  automate this process, please let us know. Thanks.

Rogue Security, Fast-Flux, other bad domains

Posted on May 5th, 2009 in New Domains,rogue antivirus by dglosser

Sources include:     atlas.arbor.net, www.malwaredomainlist.com, www.scanw.com and others…

1256hrom .cn 1quickpcscanner .com
5944v .net 2b0a74 .beladen .net
ahz1000 .cn alibaster-lab .com
anet123 .com buscandotodo .cn
antivirus .vc cleandownloaded .com
av-lookup .com clothingright .com
bzjcx .net .cn creampie-olders-orgies .com
cahoot14 .com fast-scanner-av-pro .com
cahoot17 .com freak-vkontakte .biz
cahoot50 .com free-xxx-central .com
cahoot55 .com grandchasse .com
cahoot57 .com guardlab2009 .biz
cahoot62 .com hosskurnelli .cn
cahoot65 .com image-facebook .info
cahoot70 .com imagen-myspace .info
cahoot72 .com itcoreguard .net
cahoot89 .com itunes-vouchers .com
carpena .co .uk liteautogreatestonline .cn
geninch .com live-player .com
gogoserv333 .cn main4scan .info
gumblar .cn mainscan4 .info
host800 .com mature-sperm-lovers .com
izhangye .com onlinesecurityhost .com
jump1 .info privatisworld .com
junglemix .in redro-stonean .com
lsiu .info scan4main .info
ms-scan .biz scan4true .info
ms-scan .info scan4user .info
ms-scan .net scanmain4 .info
ms-scan .org scantrue4 .info
nge68 .cn support .adelaidam .fvds .ru
night69 .com system-protector .org
polotomo .com tojandglow .com
scan4lux .info travelto .uz .ua
scan4way .info true4scan .info
sispewtr .cn truepornupload .com
srv-scan .biz truepornvideo .com
srv-scan .us truescan4 .info
stagech .com updateyoursecurity .com
way4scan .info userscan4 .info
wayscan4 .info villain7878 .cn
wq9q .cn xxxtube-for-xxxtube .com
xxoo8 .com .cn zoomscan4 .info
yf3e .com

Contact us if you want to help us keep the MalwareDomain Blacklist current.
Read this page if you want to report a false positive.
Domains.txt file is the complete list along with original reference.
Updates are located at http://www.malwaredomains.com/updates.
The full files are located at: http://www.malwaredomains.com/files
BOOT file is in MS DNS format. spywaredomains.zones file is in BIND format.
Also Available in AdBlock, ISA, and MaraDNS formats.
Now a trusted source on the WOT-the Web of Trust!
Used by SURBL, MOREnet, and others…

47 malicious sites

Posted on May 3rd, 2009 in New Domains by dglosser

trojan domains, rogue antivirus, and other harmful domains.  Sources include: www.siteadvisor.com, safeweb.norton.com, zeustracker.abuse.ch, and others:

lilj .us formybro .info
s8m1 .com ghuvidfir .com
pvden .net olinredr2 .com
habrion .cn pechenka .info
konter .biz ukxvgbnmzp .cn
pvden .info 8addition .info
salaka .biz expressbay .biz
guardav .com sivillas .co .uk
gukgifoc .cn aboutmmgftf .com
l-state .com nua06032009 .biz
p-state .com statcluster .com
rfvv0080 .cn bitcoreguard .com
tukhemaj .cn bitcoreguard .net
z-state .com google-newbot .cn
0083vorit .cn guardlab2009 .com
bizoplata .ru guardlab2009 .net
cdev7rpa .net monkey-squad .net
egangoff .com startdontstop .ru
fihigxeb .com coreguard2009 .biz
guardlab .com free-webscaners .com
jaednrpa .net pccleansolution .com
khdjehsk .biz coreguardlab2009 .biz
tds4self .com theonlinesecurity .com
dofulfill .net