New iframe & fast-flux Domains
34 new domains associated with iframe & fast-flux. Sources include: www.shadowserver.org, blog.scansafe.com, and a private communication with domains associated with the new fast-flux domains.
Usually we do not include domains which are not listed in a public source. But in this case we are making an exception. The domains in question are clearly marked in the domains.txt file.
52pk .com o7n9 .cn bnk11 .com p060523 .info bnk45 .us redir94 .com cat92 .net refer68 .com chintiwn .org rexec39 .com chk08 .net rundll41 .com ck1 .in rundll92 .com client46 .com script46 .com cmiia .com sysid72 .com cool0 .biz tag95 .com fami4ka .net tagid42 .com fuckuu .us tg95 .com guid86 .com tlcn .net hoursebuilds .cn trace88 .com libid53 .com user93 .com locale48 .com xiaobaishan .net logid83 .com xml48 .com y66 .us
Help fight spyware: Join the Spyware Listening Post!
domains.txt file is the complete list along with original reference
Updates are located at http://www.malwaredomains.com/updates
The full files are located at: http://www.malwaredomains.com/files
BOOT file is in MS DNS format
spywaredomains.zones file is in BIND format