WARNING: All domains on this website should be considered dangerous. If you do
not know what you are doing here, it is recommended you leave right away. This
website is a resource for security professionals and enthusiasts.
| Date (UTC) ⇑ ⇓ | Domain ⇑ ⇓ | IP ⇑ ⇓ | Reverse Lookup ⇑ ⇓ | Description ⇑ ⇓ | Registrant ⇑ ⇓ | ASN ⇑ ⇓ |
| 2010/03/09_21:19 | yougoodvideo.net/forum/exe/file.exe | 122.115.63.24 | netnic.com.cn. | rootkit TDSS | Domain Admin / contact@privacyprotect.org | 9803 |
| 2010/03/09_21:19 | diaiscjdthr.com/nte/INDEPHANDLER | 66.135.37.211 | server6.randasolutions.com. | NeoSploit, payload Zeus | Jim Nelson / Nelsondwer4@yahoo.com | 13768 |
| 2010/03/09_21:19 | diaiscjdthr.com/nte/INDEPHANDLER/eU8ea8ef33Hdfd932d2V0100f070006R00000000102T944f9e0c201l0409K08d80105320 | 66.135.37.211 | server6.randasolutions.com. | zeus/wsnpoem v2 trojan | Jim Nelson / Nelsondwer4@yahoo.com | 13768 |
| 2010/03/09_21:19 | www.youporn8.net/yama.exe | 174.120.148.154 | 9a.94.78ae.static.theplanet.com. | trojan StartPage | Ahmet ERCETIN | 21844 |
| 2010/03/09_21:19 | trastlifer.hk/vmxts.exe | 91.212.220.10 | - | zeus/wsnpoem v2 trojan | domain@now.net.cn | 49365 |
| 2010/03/09_21:19 | trastlifer.hk/ribbn.tar | 91.212.220.10 | - | zeus/wsnpoem v2 config file | domain@now.net.cn | 49365 |
| 2010/03/09_21:19 | trastlifer.hk/index1.php | 91.212.220.10 | - | zeus/wsnpoem v2 drop zone | domain@now.net.cn | 49365 |
| 2010/03/09_19:08 | stroimvmeste.in/affiliate/index.php?b=b | 77.222.56.35 | caracas.sweb.ru. | YES exploit kit | Bolortseseg Nagsadorj / trf00ok@gmail.com | 44112 |
| 2010/03/09_19:08 | stroimvmeste.in/affiliate/admin | 77.222.56.35 | caracas.sweb.ru. | control panel of YES exploit kit | Bolortseseg Nagsadorj / trf00ok@gmail.com | 44112 |
| 2010/03/09_19:08 | stroimvmeste.in/affiliate/cache/PDF.php?st=Internet | 77.222.56.35 | caracas.sweb.ru. | Explorer 6.0 | Bolortseseg Nagsadorj / trf00ok@gmail.com | 44112 |
| 2010/03/09_19:08 | stroimvmeste.in/affiliate/load.php?a=a&e=4 | 77.222.56.35 | caracas.sweb.ru. | rootkit TDSS | Bolortseseg Nagsadorj / trf00ok@gmail.com | 44112 |
| 2010/03/09_19:08 | foreinternet.com/sys/index.php | 91.210.173.2 | lc-b2.lorercorp.com. | YES exploit kit | tangrongnn@163.com | 48588 |
| 2010/03/09_19:08 | foreinternet.com/sys/admin | 91.210.173.2 | lc-b2.lorercorp.com. | control panel of YES exploit kit | tangrongnn@163.com | 48588 |
| 2010/03/09_19:08 | foreinternet.com/sys/load.php?a=a&e=4 | 91.210.173.2 | lc-b2.lorercorp.com. | trojan Oficla/Sasfis | tangrongnn@163.com | 48588 |
| 2010/03/09_19:08 | antiviruspc-update.com/mavzoley/bb.php?v=200&id=554905388&b=ze-us&tm=3 | 91.210.173.25 | lc-b25.lorercorp.com. | Oficla/Sasfis C&C | Jan Winstrom / dns@antiviruspc2009.com | 48588 |
| 2010/03/09_18:32 | yes-exploit-system.ru | 91.212.198.156 | - | YES exploit kit advertisement | admin@yes-exploit-system.ru | 49314 |
| 2010/03/09_17:39 | streamlinemediaworks.com/images/space.gif | 72.167.131.22 | p3swh205.shr.phx3.secureserver.net. | zeus/wsnpoem v2 config file | Streamline Mediaworks | 26496 |
| 2010/03/09_17:39 | kokojamba.com/a/d.php?e=CollabUTIL | 79.171.22.190 | static.vitalhosting.com.tr. | trojan | kokojamba.com / magikmind13@gmail.com | 44565 |
| 2010/03/09_17:39 | kokojamba.com/a/s/files/ie.swf | 79.171.22.190 | static.vitalhosting.com.tr. | flash exploit | kokojamba.com / magikmind13@gmail.com | 44565 |
| 2010/03/09_17:39 | kokojamba.com/a/admin.php | 79.171.22.190 | static.vitalhosting.com.tr. | control panel of Liberty exploit kit | kokojamba.com / magikmind13@gmail.com | 44565 |
| 2010/03/09_17:39 | kokojamba.com/a/s/files/clb.pdf | 79.171.22.190 | static.vitalhosting.com.tr. | pdf exploit | kokojamba.com / magikmind13@gmail.com | 44565 |
| 2010/03/09_17:39 | kokojamba.com/a/s/0.php | 79.171.22.190 | static.vitalhosting.com.tr. | Liberty exploit kit | kokojamba.com / magikmind13@gmail.com | 44565 |
| 2010/03/09_17:39 | - | 98.126.17.138/g86f3cbi2.php | CUSTOMER.KRYPT.COM. | zeus/wsnpoem v2 drop zone | - | 35908 |
| 2010/03/09_17:39 | inasss.info/pt_newold.exe | 122.115.63.9 | netnic.com.cn. | zeus/wsnpoem v2 trojan | Andrey Aleksandrovich Polev / o00o.code@gmail.com | 9803 |
| 2010/03/09_17:39 | calvinkleinstuffz.com/calvinklein2/cfg.bin | 122.115.63.37 | netnic.com.cn. | zeus/wsnpoem v1 config file | JOHN DUNCAN / contact@myprivateregistration.com | 9803 |
| 2010/03/09_17:39 | calvinkleinstuffz.com/calvinklein2/logger.php | 122.115.63.37 | netnic.com.cn. | zeus/wsnpoem v1 drop zone | JOHN DUNCAN / contact@myprivateregistration.com | 9803 |
| 2010/03/09_17:39 | hourbrand.com/scn/c4f12d4be2e5a718fc0fab8ff0519a17/0540f0d2bb566d0ed0d80150e2b728ef/f85b7b377112c272bc87f3e73f10508d | 98.142.243.10 | - | fake online Scanner | Chris Mosh / mosh@dev.mosh.com | 30407 |
| 2010/03/09_17:39 | zannualnews.com/download/0540f0d2bb566d0ed0d80150e2b728ef/f85b7b377112c272bc87f3e73f10508d/4 | 91.212.127.144 | - | trojan fakeSmoke | Private Whois Service efiis0c4b94e72d25553@ahwyn0f4b73feacadaa2.privatewhois.net | 49087 |
| 2010/03/09_17:39 | www.antivp.com/asvzgdwebasvzgdweb.htm?get=e0b399bd994a0556517f96487dd3ab29 | 91.212.127.142 | - | rogue installer | Private Whois Service nvu6cp14b744046930da@ahwyn0f4b73feacadaa2.privatewhois.net | 49087 |
| 2010/03/09_17:39 | antispyware-comp.com | 69.4.231.42 | no-rdns.ord02.hostingservicesinc.net. | fake av site | Pavel Eroshkin / volt@maillife.ru | 36351 |
| 2010/03/09_17:39 | antivirus-onecare2010.com | 76.76.102.198 | generic.gogax.com. | fake av site | barley@freenetbox.ru | 21793 |
| 2010/03/09_17:39 | pc-carelive.com | 76.76.102.197 | generic.gogax.com. | fake av site | bette@bigmailbox.ru | 21793 |
| 2010/03/09_17:39 | pccare-live.com | 76.76.102.195 | generic.gogax.com. | fake av site | bette@bigmailbox.ru | 21793 |
| 2010/03/09_17:39 | pcguard2010.com | 76.76.102.197 | generic.gogax.com. | fake av site | Yuri Vernitsky / larks@freenetbox.ru | 21793 |
| 2010/03/09_17:39 | pcguard-2010.com | 69.4.231.42 | no-rdns.ord02.hostingservicesinc.net. | fake av site | bette@bigmailbox.ru | 36351 |
| 2010/03/09_17:39 | pc-guard-2010.com | 173.192.214.194 | 173.192.214.194-static.reverse.softlayer.com. | fake av site | bette@bigmailbox.ru | 36351 |
| 2010/03/09_17:39 | pcguard20-10.com | 69.4.231.43 | no-rdns.ord02.hostingservicesinc.net. | fake av site | bette@bigmailbox.ru | 36351 |
| 2010/03/09_17:39 | pc-guard-20-10.com | 173.192.214.194 | 173.192.214.194-static.reverse.softlayer.com. | fake av site | bette@bigmailbox.ru | 36351 |
| 2010/03/09_17:39 | pcwindowslive.com | 69.4.231.40 | no-rdns.ord02.hostingservicesinc.net. | fake av site | Ananoliy Kunirkin / mazda@freenetbox.ru | 36351 |
| 2010/03/09_17:39 | pc-windowslive.com | 69.4.231.43 | no-rdns.ord02.hostingservicesinc.net. | fake av site | Ananoliy Kunirkin / mazda@freenetbox.ru | 36351 |
| 2010/03/09_17:39 | pcwindows-live.com | 69.4.231.41 | no-rdns.ord02.hostingservicesinc.net. | fake av site | Ananoliy Kunirkin / mazda@freenetbox.ru | 36351 |
| 2010/03/09_17:39 | pc-windows-live.com | 173.192.214.192 | 173.192.214.192-static.reverse.softlayer.com. | fake av site | Ananoliy Kunirkin / mazda@freenetbox.ru | 36351 |
| 2010/03/09_17:39 | pcwinlive.com | 173.83.26.46 | - | fake av site | Ananoliy Kunirkin / mazda@freenetbox.ru | 32392 |
| 2010/03/09_17:39 | pc-winlive.com | 173.83.26.44 | - | fake av site | Ananoliy Kunirkin / mazda@freenetbox.ru | 32392 |
| 2010/03/09_17:39 | pcwin-live.com | 76.76.102.196 | generic.gogax.com. | fake av site | Ananoliy Kunirkin / mazda@freenetbox.ru | 21793 |
| 2010/03/09_17:39 | pc-win-live.com | 69.4.231.41 | no-rdns.ord02.hostingservicesinc.net. | fake av site | Yuri Vernitsky / larks@freenetbox.ru | 36351 |
| 2010/03/09_17:39 | pcwinlive2010.com | 173.192.214.193 | 173.192.214.193-static.reverse.softlayer.com. | fake av site | Yuri Vernitsky / larks@freenetbox.ru | 36351 |
| 2010/03/09_17:39 | pc-winlive2010.com | 69.4.231.42 | no-rdns.ord02.hostingservicesinc.net. | fake av site | Yuri Vernitsky / larks@freenetbox.ru | 36351 |
| 2010/03/09_17:39 | pcwinlive-2010.com | 173.83.26.44 | - | fake av site | Yuri Vernitsky / larks@freenetbox.ru | 32392 |
| 2010/03/09_17:39 | pc-win-live-2010.com | 173.83.26.45 | - | fake av site | Yuri Vernitsky / larks@freenetbox.ru | 32392 |
| 2010/03/09_17:39 | spyware-destroyerone.com | 69.4.231.41 | no-rdns.ord02.hostingservicesinc.net. | fake av site | Anton Nikiforov / astral@freenetbox.ru | 36351 |
| 2010/03/09_17:39 | tragicapple.com | 76.76.98.196 | reverse-mtl-76-76-98-196.gogax.com. | fake av site | proxy1621500@1and1-private-registration.com | 21793 |
| 2010/03/09_17:39 | windef2010.com | 69.4.231.43 | no-rdns.ord02.hostingservicesinc.net. | fake av site | Alexander Bulatov / bands@freenetbox.ru | 36351 |
| 2010/03/09_17:39 | win-defender10.com | 69.4.231.40 | no-rdns.ord02.hostingservicesinc.net. | fake av site | skies@freenetbox.ru | 36351 |
| 2010/03/09_17:39 | windefender-10.com | 69.4.231.41 | no-rdns.ord02.hostingservicesinc.net. | fake av site | Lyubov Bushmakina / boil@maillife.ru | 36351 |
| 2010/03/09_17:39 | win-defender-10.com | 69.4.231.42 | no-rdns.ord02.hostingservicesinc.net. | fake av site | Lyubov Bushmakina / boil@maillife.ru | 36351 |
| 2010/03/09_17:39 | windowsdefender10.com | 69.4.231.40 | no-rdns.ord02.hostingservicesinc.net. | fake av site | Igor Goev / try@bigmailbox.ru | 36351 |
| 2010/03/09_17:39 | windows-defender10.com | 69.4.231.41 | no-rdns.ord02.hostingservicesinc.net. | fake av site | Svetlana Alyamkina / quilt@bigmailbox.ru | 36351 |
| 2010/03/09_17:39 | windowsdefender-10.com | 69.4.231.42 | no-rdns.ord02.hostingservicesinc.net. | fake av site | Dmitriy Kolobanov / bob@qx8.ru | 36351 |
| 2010/03/09_17:39 | windows-defender-10.com | 69.4.231.43 | no-rdns.ord02.hostingservicesinc.net. | fake av site | skies@freenetbox.ru | 36351 |
| 2010/03/09_15:29 | lipesnaskom.com/cgi-binn/hitss.php | 95.143.192.40 | - | zeus/wsnpoem v2 drop zone | Hilary Kneber hilarykneber@yahoo.com | 49770 |
| 2010/03/09_14:18 | 842389423478923.com/2/l.php?i=6 | 195.88.208.8 | hosted-by.antaro-hosting.ru. | zeus/wsnpoem v2 trojan | Ignat Alekseev / admin@842389423478923.com | 12695 |
| 2010/03/09_14:18 | 842389423478923.com/2/statistics.php | 195.88.208.8 | hosted-by.antaro-hosting.ru. | control panel of Phoenix exploit kit | Ignat Alekseev / admin@842389423478923.com | 12695 |
| 2010/03/09_14:18 | 842389423478923.com/2/index.php | 195.88.208.8 | hosted-by.antaro-hosting.ru. | Phoenix exploit kit | Ignat Alekseev / admin@842389423478923.com | 12695 |
| 2010/03/09_12:04 | bravetools.net/en/mytools.php | 74.54.41.82 | gator326.hostgator.com. | exploit kit | Amir Hossein Jadidi / domian@parandis.com | 21844 |
| 2010/03/09_12:04 | www.from-jucar.de/ | 81.169.145.71 | w07.rzone.de. | compromised site directs to exploit kit | hostmaster@strato.de | 6724 |
| 2010/03/09_11:50 | qnnualnews.com/download/0540f0d2bb566d0ed0d80150e2b728ef/f85b7b377112c272bc87f3e73f10508d/4 | 212.150.147.45 | - | trojan FakeSmoke | Private Whois Service prf9am94b94e72c4a346@ahwyn0f4b73feacadaa2.privatewhois.net | 1680 |
| 2010/03/09_11:50 | checkliet.com/scn/f7293174e497c1447e298176d78e0ae1/0540f0d2bb566d0ed0d80150e2b728ef/f85b7b377112c272bc87f3e73f10508d | 98.142.243.10 | - | fake online Scanner | Chris Mosh / mosh@dev.mosh.com | 30407 |
| 2010/03/09_09:07 | openaskelisto.com/main1/view.php | 85.12.46.22 | - | zeus/wsnpoem v2 drop zone | Hary / admin@asusufurmeh.com | 34305 |
| 2010/03/09_08:26 | www.gaddem.net/scam/can/li.exe | 61.4.82.222 | - | zeus/wsnpoem v2 trojan | Pavel Pugachev / ya_whois@yandex.ru | 17964 |
| 2010/03/09_08:26 | ertriuanfhaeritruonceif.com/barcelona/barccfg9832789/barccfg23084292.bin | 91.212.220.68 | - | zeus/wsnpoem v2 config file | Yu MingSuo / abuseemaildhcp@gmail.com | 49365 |
| 2010/03/09_08:26 | countrtds.ru/cxd/fe.vv | 91.201.196.102 | - | zeus/wsnpoem v2 config file | thru@freenetbox.ru | 42229 |
| 2010/03/09_08:26 | iiiiiiiiiiiiii.net/games/update.set | 203.174.83.98 | 203-174-83-98.rev.ne.com.sg. | zeus/wsnpoem v2 config file | Alexander A Reva / klimckoe@yahoo.com | 38001 |
| 2010/03/09_08:24 | 777brabus777.com/tmp/404_ca.php | 94.228.220.66 | - | zeus/wsnpoem v2 drop zone | Bozvanovna L Olegovna / helukausa@yahoo.com | 47869 |
| 2010/03/09_08:24 | - | 193.105.0.71/yj6revg7.exe | - | zeus/wsnpoem v2 trojan | - | 50390 |
| 2010/03/09_08:24 | 777brabus777.com/fu/loc.so | 94.228.220.66 | - | zeus/wsnpoem v2 config file | Bozvanovna L Olegovna / helukausa@yahoo.com | 47869 |
| 2010/03/09_08:24 | - | 193.105.0.71/j65g5hh7.php | - | zeus/wsnpoem v2 drop zone | - | 50390 |
| 2010/03/09_08:24 | - | 193.105.0.71/allovu.bin | - | zeus/wsnpoem v2 config file | - | 50390 |
| 2010/03/09_01:44 | slavenkad.com/3/download.php?expid=3&fid=1 | 95.143.192.193 | - | zeus/wsnpoem v2 trojan | Chan Su tahli@yahoo.com | 49770 |
| 2010/03/09_01:44 | slavenkad.com/3/admin.php | 95.143.192.193 | - | control panel of Liberty exploit kit | Chan Su tahli@yahoo.com | 49770 |
| 2010/03/09_01:44 | slavenkad.com/3/index.php | 95.143.192.193 | - | Liberty exploit kit | Chan Su tahli@yahoo.com | 49770 |
| 2010/03/09_01:44 | oooowor.com/stat/load.php?spl=pdf_2012 | 122.115.63.24 | netnic.com.cn. | trojan | Alexander A Reva / klimckoe@yahoo.com | 9803 |
| 2010/03/09_01:44 | oooowor.com/stat/stat.php | 122.115.63.24 | netnic.com.cn. | control panel of Eleonore Exploits pack v1.3.2 | Alexander A Reva / klimckoe@yahoo.com | 9803 |
| 2010/03/09_01:44 | oooowor.com/stat/index.php | 122.115.63.24 | netnic.com.cn. | Eleonore Exploits pack v1.3.2 | Alexander A Reva / klimckoe@yahoo.com | 9803 |
| 2010/03/09_01:44 | kontroli.ru/s/load.php?id=&spl=4 | 95.211.4.6 | - | trojan | a.kanevskiy@mail.ru | 16265 |
| 2010/03/09_01:44 | kontroli.ru/s/index.php | 95.211.4.6 | - | exploit kit | a.kanevskiy@mail.ru | 16265 |
| 2010/03/09_01:44 | jl.chura.pl/rc/getexe.php?spl=mdac | 89.187.34.4 | host4-34.monitoring.md. | trojan Virut | - | 25129 |
| 2010/03/09_01:44 | jl.chura.pl/rc/stat.php | 89.187.34.4 | host4-34.monitoring.md. | control panel of Eleonore Exploits pack v1.2 | - | 25129 |
| 2010/03/09_01:44 | jl.chura.pl/rc/index.pjp | 89.187.34.4 | host4-34.monitoring.md. | Eleonore Exploits pack v1.2 | - | 25129 |
| 2010/03/09_01:44 | frondircass.cn/ee/imho.php | 95.143.192.193 | - | zeus/wsnpoem v2 drop zone | LiTah / tahli@yahoo.com | 49770 |
| 2010/03/09_01:44 | frondircass.cn/ee/ee.txt | 95.143.192.193 | - | zeus/wsnpoem v2 config file | LiTah / tahli@yahoo.com | 49770 |
| 2010/03/09_01:44 | brunongino.com/3/download.php?expid=3&fid=1 | 95.143.192.193 | - | zeus/wsnpoem v2 trojan | Chan Su tahli@yahoo.com | 49770 |
| 2010/03/09_01:44 | brunongino.com/3/admin.php | 95.143.192.193 | - | control panel of Liberty exploit kit | Chan Su tahli@yahoo.com | 49770 |
| 2010/03/09_01:44 | brunongino.com/3/index.php | 95.143.192.193 | - | Liberty exploit kit | Chan Su tahli@yahoo.com | 49770 |
| 2010/03/09_01:44 | test2.salefale.com/exe.exe | 67.141.185.89 | h89.185.141.67.static.ip.windstream.net. | zeus/wsnpoem v2 trojan | Vera Zaytseva, (20100301173314@antispam.alantron.com) | 7029 |
| 2010/03/09_01:44 | zxfr.salefale.com/exe.exe | 67.141.185.89 | h89.185.141.67.static.ip.windstream.net. | zeus/wsnpoem v2 trojan | Vera Zaytseva, (20100301173314@antispam.alantron.com) | 7029 |
| 2010/03/09_00:29 | superlayout.org/ws/g899.php | 61.4.82.216 | - | zeus/wsnpoem v2 drop zone | alexey pronin / vin.bond@gmail.com | 17964 |
| 2010/03/09_00:29 | superlayout.org/125/tyu7.exe | 61.4.82.216 | - | zeus/wsnpoem v2 trojan | alexey pronin / vin.bond@gmail.com | 17964 |
| 2010/03/09_00:29 | superlayout.org/125/gfy6.bin | 61.4.82.216 | - | zeus/wsnpoem v2 config file | alexey pronin / vin.bond@gmail.com | 17964 |
| 2010/03/08_20:39 | img95.lmagebucket.com/img/acomsw.jpg | 112.121.163.174 | - | trojan | hotdogs c/o Dynadot Privacy / privacy@dynadot.com | 45753 |