Please submit sites to be added to hpHosts, to this thread

MysteryFCM · **Joined:** Thu May 28, 2009 11:25 am **Posts:** 3694

Cheers

anakinn · **Joined:** Fri May 29, 2009 9:29 pm **Posts:** 50

counters

x-stats-x.com
www.x-stats-x.com
www.yourhitstats.com
x-counter.org
www.x-counter.org
www.xstat.pl
x-stats.info
www.x-stats.info

MysteryFCM · **Joined:** Thu May 28, 2009 11:25 am **Posts:** 3694

Added, cheers

YoKenny · **Posted:** Tue Jul 27, 2010 10:43 pm

Quote:

aletrs.servepics.com

http://www.google.com/safebrowsing/diag ... vepics.com
http://www.google.com/safebrowsing/diag ... pointe.com

Quote:

Has this network hosted sites acting as intermediaries for further malware distribution?

Over the past 90 days, we found 10 site(s) on this network, including, for example, fkb.bm/, taraconstruction.com/, airfareoffice.com/, that appeared to function as intermediaries for the infection of 21 other site(s) including, for example, visitinglatinamerica.com/, katrekontor.com/, ikisae.com/.

http://www.google.com/safebrowsing/diagnostic?site=AS:4250

MysteryFCM · **Joined:** Thu May 28, 2009 11:25 am **Posts:** 3694

Cheers

redwolfe_98 · **Joined:** Tue Sep 01, 2009 2:22 am **Posts:** 66

Code:

rerec.net  208.73.210.48
nwomscxare.net  208.73.210.48
adxanet.net  208.73.210.48
www.xeoas.com  208.73.210.48
www.esxao.net  208.73.210.48
rerea.net  208.73.210.48
sbr.imxr.net  85.17.162.231
matt-levine.com  67.210.98.145
forestarabians.nl  195.8.208.122
jocudaidie.ru  144.16.111.140
ohphahfech.ru  144.16.111.140
awrinc.net  208.43.45.98
adobeflash-ver16.co.tv  188.165.201.81
netmediaforum.com  3.3.3.3
tdsinfo.tk  94.100.31.28
xptmedia.com  178.162.133.176
whereisdudescars.com  77.78.239.53
www4.realprotection36.co.cc  114.207.244.145
y5-media.com  178.162.133.226
333.gorgrengos.com  91.216.122.85

these are malicious URL's.. they came from "danchev's blog", kimberly's "stopmalvertizing", and "spywaresucks".. and some might also be from the "malwaredomainslist" forum.. some are used in "malvertizedments" and some are for directly downloading malware, which the malvertizements lead to..

http://stopmalvertising.com/

i think that "jocudaidie.ru" is "fastflux" so it will resolve to various ip addresses, depending on the luck of the draw..

Code:

creative.clicksor.com 38.99.186.4

this one could be classifed as "ATS" but it is being used in "malvertizements"..

anakinn · **Joined:** Fri May 29, 2009 9:29 pm **Posts:** 50

warez

goldenwarez.info
netwarezone.com
warezfans.com
warezter.com
zwarezsite.com

malware
xwarezzz.com

MysteryFCM · **Joined:** Thu May 28, 2009 11:25 am **Posts:** 3694

Cheers guys

YoKenny · **Posted:** Thu Jul 29, 2010 1:14 pm

Spam form avast! forum

Code:

http://makemoneyonline.net.ph

http://forum.avast.com/index.php?topic= ... #msg526652

Bob Zenith · **Posted:** Thu Jul 29, 2010 3:58 pm

Phishing (Fake Canadian Pharmacies)

famousfrom.com
canadian-pharmacyss.com
rxpills2u.com
wishwinner.com

Please submit sites to be added to hpHosts, to this thread

Who is online