Malware Domain Blocklist updated... Options

[AplusWebMaster]

FYI...

Over 250 malvertising, flashback, phishing domains
- http://www.malwaredomains.com/wordpress/?p=2599
April 12th, 2012 - "Added over 250 domains linked to flashback, phishing, malvertising, etc. Sources include threatexpert.com, private correspondence, contagiodump.blogspot.com and others..."



This post has been edited by AplusWebMaster: Apr 14 2012, 09:46 AM

[AplusWebMaster]

FYI...

BH-DNS Update: 125 New Domains
- http://www.malwaredomains.com/wordpress/?p=2603
April 15th, 2012 - "Added 125 new domains associated with scams, trojans, mebroot, etc. Sources include exposure.iseclab.org, threatexpert.com, malwareurl.com..."

[AplusWebMaster]

FYI...

hostexploit.com top bad hosts – 2012 Q1
- http://www.malwaredomains.com/wordpress/?p=2612
April 18th, 2012 - "We added our 'friends' nikjju . com and best-antiviruu.de .lv and also listed domains from ISP’s or hosting services listed on hostexploit.com‘s Q1 report on the top bad hosts*. To round things out, we also added domains flagged by sucuri as having malicious javascript or iframes..."
* http://hostexploit.com/
___

Top 3 AS listed at Hostexploit:

Diagnostic page for AS16138 (INTERIA.PL)
- http://google.com/safebrowsing/diagnostic?site=AS:16138
"... 1580 site(s)... served content that resulted in malicious software being downloaded and installed without user consent. The last time Google tested a site on this network was on 2012-04-19, and the last time suspicious content was found was on 2012-04-19... Over the past 90 days, we found 21 site(s) on this network.. that appeared to function as intermediaries for the infection of 25 other site(s)... this network has hosted sites that have distributed malicious software in the past 90 days. We found 22 site(s), including... that infected 28 other site(s)..."
> http://sitevet.com/db/asn/AS16138

Diagnostic page for AS47583 (HOSTING)
- http://google.com/safebrowsing/diagnostic?site=AS:47583
"... 1303 site(s)... served content that resulted in malicious software being downloaded and installed without user consent. The last time Google tested a site on this network was on 2012-04-19, and the last time suspicious content was found was on 2012-04-18... Over the past 90 days, we found 110 site(s) on this network... that appeared to function as intermediaries for the infection of 934 other site(s)... this network has hosted sites that have distributed malicious software in the past 90 days. We found 151 site(s)... that infected 1164 other site(s)..."
> http://sitevet.com/db/asn/AS47583

Diagnostic page for AS33182 (DIMENOC)
- http://google.com/safebrowsing/diagnostic?site=AS:33182
"... 1966 site(s)... served content that resulted in malicious software being downloaded and installed without user consent. The last time Google tested a site on this network was on 2012-04-19, and the last time suspicious content was found was on 2012-04-19... Over the past 90 days, we found 44 site(s)... that appeared to function as intermediaries for the infection of 65 other site(s)... this network has hosted sites that have distributed malicious software in the past 90 days. We found 87 site(s)... that infected 160 other site(s)..."
> http://sitevet.com/db/asn/AS33182



This post has been edited by AplusWebMaster: Apr 19 2012, 10:32 AM

[AplusWebMaster]

FYI...

Fake-AV, exploit, malvertising domains
- http://www.malwaredomains.com/wordpress/?p=2616
April 21st, 2012 - "Added 124 domains associated with rogue/fake AV, malvertising, exploits, etc. Sources include hosts-file.net, emergingthreats.net, urlvoid.com..."

[AplusWebMaster]

FYI...

Small Update – 4/27
- http://www.malwaredomains.com/wordpress/?p=2635
April 28th, 2012 - "... Added a couple of dozen malvertising, zeus, palevo and other harmful domains on 4/27..."

[AplusWebMaster]

FYI...

malvertising, malicious js, bugat domains
- http://www.malwaredomains.com/wordpress/?p=2653
April 29th, 2012 - "Added 137 domains associated with google safebrowsing, malvertising, malicious javascript, etc. Sources include exposure.iseclab.org, safebrowsing.clients.google.com, stopmalvertising.com and others..."

[AplusWebMaster]

FYI...

bhexploitkit, htaccess, iframes, trojans...
- http://www.malwaredomains.com/wordpress/?p=2660
May 4th, 2012 - "Added 110 domains associated with htaccess redirects, malicious iframes, trojans, etc. sources include malwaredomainlist.com, safebrowsing.clients.google.com, jsunpack.jeek.org..."

[AplusWebMaster]

FYI...

Exploit Domains, iframes, malvertising
- http://www.malwaredomains.com/wordpress/?p=2663
May 6th, 2012 - "Added over 140 domains associated with exploits, malvertising, ransom/rogues, and of course zeus, etc. Sources: mwis.ru, vxvault.siri-urz.net, vxvault.siri-urz.ne..."

[AplusWebMaster]

FYI...

sql injection, htaccess, malicious js domains
- http://www.malwaredomains.com/wordpress/?p=2673
May 13th, 2012 - "Added domains associated with htaccess redirection, sql injection, iframes, etc..."

[AplusWebMaster]

FYI...

BH Exploit Kit, malvertising, cridex domains
- http://www.malwaredomains.com/wordpress/?p=2676
May 17th, 2012 - "Added almost 150 domains associated with Black Hole Exploits, malvertising, cridex, etc. Sources: mwis.ru, zeustracker.abuse.ch, exposure.iseclab.org and several others..."

[AplusWebMaster]

FYI...

htaccess redirects, malicious javascript, trojans
- http://www.malwaredomains.com/wordpress/?p=2684
May 22nd, 2012 - "Added 137 domains associated with htaccess redirects, malvertising, iframes, trojans, etc. Sources: exposure.iseclab.org, threatexpert.com, zeustracker, sucuri.net, and others..."

[AplusWebMaster]

FYI...

Java Exploits, malicious advertising, SutraTDS
- http://www.malwaredomains.com/wordpress/?p=2691
May 26th, 2012 - "Added over 100 domains associated with malvertising, java exploits, htaccess redirects. Sources include hosts-file.net, mwis.ru, sucuri.net..."

[AplusWebMaster]

FYI...

Flamer, htaccess, botnet, malspam domains...
- http://www.malwaredomains.com/wordpress/?p=2705
June 1st, 2012 - "Added over 140 malicious domains associated with flamer, htaccess redirects, malspam etc. Sources include spamhaus.org, malwareurl.com, malware-control.com and many others..."

[AplusWebMaster]

FYI...

BH Exploit, citadel, malspam, Tinba domains...
- http://www.malwaredomains.com/wordpress/?p=2714
June 4th, 2012 - "Added over 140 domains associated with Tinba, pornmocup, back hold exploits, etc. Sources include exposure.iseclab.org, c-apture.blogspot.com, hosts-file.net, malware-control.com and others..."

[AplusWebMaster]

FYI...

malvertising, malicious javascript, trojans...
- http://www.malwaredomains.com/wordpress/?p=2732
June 13th, 2012 - "Added over 140 domains associated with trojans, sql injection, malvertising, etc. Sources include xylibox.com, safebrowsing.clients.google.com, blog.dynamoo.com and others..."