WARNING: All domains on this website should be considered dangerous. If you do
not know what you are doing here, it is recommended you leave right away. This
website is a resource for security professionals and enthusiasts.
Search: Results to return: Include inactive sites

Page 0 1 ... 30

Date (UTC)DomainIPReverse LookupDescriptionRegistrantASN
2016/05/24_17:36www.ceisystems.it/178.212.142.108ceisystems.it.pseudo darkleech on compromised site leads to Angler EK-47316IT
2016/05/23_15:17www.morettigioielleria.it/212.78.8.37-pseudo darkleech on compromised site leads to Angler EK-52025IT
2016/05/23_13:24yumanewsnow.com/23.254.153.210copperstateplastics.net.pseudo darkleech on compromised site leads to Angler EKRegistrar Abuse Contact abuse@melbourneit.com.au54290US
2016/05/23_12:34canalshopping.com.br/kf5d9104.236.67.125canalshopping.com.br.Locky ransomwareAlex Rocha / alex.rocha@adaptesolucoes.com.br393406US
2016/05/23_12:34jhplhomedecor.com/m637g23.229.202.132ip-23-229-202-132.ip.secureserver.net.Locky ransomwareRegistrant jainampathak@gmail.com26496US
2016/05/23_12:34lojaonline.eurobar.pt/kmdb4euf185.11.164.60vs510.rede1024.com.Locky ransomwareEUROBAR-SOCIEDADE ABASTECEDORA DE PRODUTOS ALIMENTARES CAETANOS LDA / eurobar.pt@rede1024.com8426PT
2016/05/23_12:14www.poolmaster.it/192.99.15.180ca01.cremonaweb.it.pseudo darkleech on compromised site leads to Angler EK-16276CA
2016/05/23_09:06www.sieltre.it/79.58.246.237host237-246-static.58-79-b.business.telecomitalia.it.pseudo darkleech on compromised site leads to Angler EK-3269IT
2016/05/22_11:07toestakenmareca.scottishhomesonline.com/yMHf/1877-zfcbIqjA-LZHay-iiBDRK-188.165.246.189ns3005997.ip-188-165-246.eu.Angler EKRegistrar Abuse Contact support@domainbox.com16276FR
2016/05/20_08:51koolrapensmil.eberspacher-lorry-heater.co.uk/tNefJC/FRsUb/nMiyDK/760901/TblEaXJ-419708-ssq.pdf138.201.148.67static.67.148.201.138.clients.your-server.de.Angler EKWilliam Hemmings / -24940DE
2016/05/20_08:51www.socotec.fr/178.33.203.76-pseudo darkleech on compromised site leads to Angler EKwebmaster@socotec.com16276FR
2016/05/20_06:56freesource.su/437gfinw2?FVOjTYdS=bsqsiKyX136.243.176.66srv.2site.ru.Locky ransomwareitmednov@gmail.com24940DE
2016/05/20_06:56kulibin.com.ua/437gfinw2?VjEVDX=NmyiwQvW77.87.198.174ef504.mirohost.net.Locky ransomware-28907UA
2016/05/19_10:48adestudio.w8w.pl/asfasfa193.203.99.112ip-99-112.redefine.pl.Locky ransomwaredomeny@ConsultingService.pl47303PL
2016/05/19_10:48dub3tv.com/2e22dfs184.168.107.21ip-184-168-107-21.ip.secureserver.net.trojan-26496US
2016/05/18_15:05brunowtrahoque-miagola.unishadeverticalsystem.com/1331481-positivity-misdiagnosis-refrigerants-slim-twinkles-array.png63.143.54.198198-54-143-63.static.reverse.lstn.net.Angler EKRegistrar Abuse Contact support@domainbox.com46475US
2016/05/18_15:05www.cafecalluna.nl/193.239.186.142sweb02.plinq.nl.pseudo darkleech on compromised site leads to Angler EK-35224NL
2016/05/18_07:28spreadware.com/09jhg54g162.244.95.27-Locky ransomwareRegistrar Abuse Contact abuse@namesilo.com53667US
2016/05/17_13:34passagegoldtravel.com/678y8h23.229.182.198ip-23-229-182-198.ip.secureserver.net.Locky ransomware-26496US
2016/05/17_10:32armstrongcreekgeleedpotig.imber.me.uk/VDBGs/ftPRd/ZXyG-lBfzftj/37.130.229.104uk.server.Angler EKNominet UK / -13213GB
2016/05/17_10:32www.gptecno.it/178.255.186.250www010.avanzati.it.pseudo darkleech on compromised site leads to Angler EK-42425IT
2016/05/17_09:54actinomorphous.excelwood.co.uk/euNsbCci/FAUk/Olvp/82749/SAitPlttYB-35817144-hgs.png37.130.229.104uk.server.Angler EKDecora Blind Systems / -13213GB
2016/05/17_07:17uwzorg.info/k76gf34g4g89.105.197.30mail.teurlings.biz.Locky ransomwareMAM Teurlings / webmaster@teurlings.biz24875NL
2016/05/16_18:05sunlite.com.au/j76jn5nbv27.124.119.225server-69-r12.ipv4.au.syrahost.com.Locky ransomwareWayne Hughes / Visit whois.ausregistry.com.au for Web based WhoIs38719AU
2016/05/16_12:40excitable.charmedmultimedia.eu/brhsc4.html93.190.140.219s10.sheermail.com.gateway to Angler EKNOT DISCLOSED! / -49981NL
2016/05/16_12:35charge.cenzorate-expertize.ro/brhsc4.html93.190.140.219s10.sheermail.com.gateway to Angler EK-49981NL
2016/05/16_12:00gutter.celebway.net/brhsc4.html93.190.140.219s10.sheermail.com.gateway to Angler EKRegistrar Abuse Contact abuse@bizcn.com49981NL
2016/05/16_11:55press.centraljoias.com/brhsc4.html93.190.140.219s10.sheermail.com.gateway to Angler EKRegistrant flavio.dygo@gmail.com49981NL
2016/05/16_11:51no-id.eu/987t5t7g83.137.194.81server6.hosting2go.nl.trojanNOT DISCLOSED! / -34233NL
2016/05/16_11:15inclination.cdrn70.xyz/brhsc4.html93.190.140.219s10.sheermail.com.gateway to Angler EK-49981NL
2016/05/16_10:40sign.cdrn70.xyz/hfziso4.html93.190.140.154-gateway to Angler EK-49981NL
2016/05/15_15:23meuble-ligansadaequabat.thepinkskip.co.uk/hoteliers/6719/66/01/511758321.html188.165.167.255-Angler EKBrian Barr / -16276FR
2016/05/13_13:23arbeiderspartij.be-spry.co.uk/NTQBuUVxO/gXyyX/IobVvqD-pRXCfMd/85.25.41.91static-ip-85-25-41-91.inaddr.ip-pool.com.Angler EKH R Searle / -8972DE
2016/05/13_13:23www.imageprecision.com/188.121.41.53n1nw8shg125.shr.prod.ams1.secureserver.net.pseudo darkleech on compromised site leads to Angler EK-26496NL
2016/05/12_14:23tannpastnevicher.themakershop.co.uk/mj/o/3557/69.162.126.172172-126-162-69.static.reverse.lstn.net.Angler EKColyton Industrial Designs ltd / -46475US
2016/05/12_14:22www.autoappassionati.it/109.233.126.14cpanel01.infinitynet.it.pseudo darkleech on compromised site leads to Angler EK-48815IT
2016/05/12_12:39microencapsulation.readmyweather.com/satire/pairing/58798892_pkfpfGESM69.162.126.172172-126-162-69.static.reverse.lstn.net.Angler EKRegistrar Abuse Contact support@domainbox.com46475US
2016/05/12_12:39www.jobbainorge.nu/195.74.38.95cl-11.atm.binero.net.pseudo darkleech on compromised site leads to Angler EK-41528SE
2016/05/12_10:40scrubs.dresscool.co/zcv3hhs107.180.25.1ip-107-180-25-1.ip.secureserver.net.Locky ransomwaredresscool.co@domainsbyproxy.com26496US
2016/05/12_10:40lojasrana.com:7080/ujh3jmd186.202.183.138pleskcl0243.hospedagemdesites.ws.Locky ransomware-27715BR
2016/05/12_09:49chashmawala.com/mn3yhds142.4.1.197142-4-1-197.unifiedlayer.com.Locky ransomware-46606US
2016/05/12_08:36www.airsonett.se193.44.13.93193-44-13-93.net.tnm.se.pseudo darkleech on compromised site leads to Angler EK-3301SE
2016/05/12_08:01oceanviewfootmassage.com/js/BKTbCv.html192.254.225.146-Compromised site, leads to LockyRegistrar Abuse Contact abuse@1and1.com46606US
2016/05/12_08:01myfavoriteviolincd.com/sibelius/tagnvatz/Xw7P8j.html192.254.236.109-Compromised site, leads to LockyRegistrant MAESTRI@RAMBLER.RU46606US
2016/05/12_08:01hitechtattoos.com/wp-includes/SimplePie/il5vOt.html192.185.236.182-Compromised site, leads to Locky-46606US
2016/05/12_08:01happyheadphonestore.com/css/Theme8/L15I6t.html108.167.140.116-Compromised site, leads to Locky-20013US
2016/05/12_08:01drbarryjones.com/sIFR/tNgbT1.html192.185.226.203-Compromised site, leads to Locky-46606US
2016/05/12_08:01drbarryjones.com/sIFR/gzXOh2.html192.185.226.203-Compromised site, leads to Locky-46606US
2016/05/12_08:01vittorioceccoli.com/modules/mod_finder/WbYIOv.html94.141.22.12srv-hp10.netsons.net.Compromised site, leads to LockyRegistrant info@vittorioceccoli.it5602IT
2016/05/12_08:01vibranx.com/php/JSON/KcmLab.html192.185.5.192-Compromised site, leads to Locky-20013US
2016/05/12_08:01prnutritionals.com/css/a_QfP4.html98.129.229.68-Compromised site, leads to Locky-33070US
2016/05/12_08:01prepagoseroticas.com/wp-includes/certificates/FWutUm.html108.163.206.213single-4650.banahosting.com.Compromised site, leads to LockyRegistrant 53682653751B4EF0BF3313960BE6F839.PROTECT@WHOISGUARD.COM32475US
2016/05/12_08:01pianuramarine.com/yonetim/ajax/EQy0X7.html77.223.142.5ns61-out.dnscini.com.Compromised site, leads to LockyRegistrant INFO@OZNETYAZILIM.COM43391TR
2016/05/12_08:01pegasalearningsystems.com/formula/6155/mzg_37.html23.229.139.104ip-23-229-139-104.ip.secureserver.net.Compromised site, leads to Locky-26496US
2016/05/12_08:01newlifefoundations.com/Backup/dNbeBL.html74.81.74.52server04.abstractdns.com.Compromised site, leads to Locky-16626US
2016/05/12_08:01liquidflirt.com/beta/paypal-sdk/if56lR.html143.95.111.248ip-143-95-111-248.iplocal.Compromised site, leads to Locky-36024US
2016/05/12_08:01korbinian-pauli.com/css/D2uqlA.html85.13.145.54dd26134.kasserver.com.Compromised site, leads to LockyRegistrar Abuse Contact abuse@hetzner.de34788DE
2016/05/12_08:01info.capitolcmg.com/images/9RxV8r.html66.147.254.11066-147-254-110.unifiedlayer.com.Compromised site, leads to LockyRegistrar Abuse Contact abuse@web.com46606US
2016/05/12_08:01google-plays.com/var/stores/79ZTNG.html31.41.40.222s10.cishost.ru.Compromised site, leads to LockyRegistrant artem_bb@mail.ru56577RU
2016/05/12_08:01demo.sfu-prof.com/asu/templates/HG0wN2.html89.253.252.100-Compromised site, leads to LockyRegistrar Abuse Contact tld-abuse@nic.ru41535RU
2016/05/12_08:01contest.macroviz.com/js/macroviz/LQhCOx.html113.196.236.41p23.coowo.com.Compromised site, leads to Locky-9919TW
2016/05/12_08:01burstdial.com/members/importbuddy/iGwKlo.html50.87.147.8450-87-147-84.unifiedlayer.com.Compromised site, leads to Locky-46606US
2016/05/12_08:01threepillarsattorneys.vtgbackstage.com/mobile/images/Z0Esb3.html98.129.229.176-Compromised site, leads to Locky-33070US
2016/05/12_08:01sama-thomas-sully.swebdevelopment.com/quiz/images/aGieSA.html98.129.229.71-Compromised site, leads to Locky-33070US
2016/05/12_08:01sahomerentals.com/img/common/V3b7lp.html104.236.183.112server.markette.com.Compromised site, leads to Locky-14061US
2016/05/12_08:01musicstack.com/livezilla/_language/dOr135.html206.223.65.104web1.musicstack.com.Compromised site, leads to Locky-7381US
2016/05/12_08:01melia.mudounet.com/kawy/page/XF2U8b.html121.40.161.168-Compromised site, leads to LockyRegistrant clover_cui@163.com37963CN
2016/05/12_08:01m.sharpmobilemarketing.onlinetrafficresults.com/wp-admin/js/IJhslG.html192.254.189.126ecosonline.net.Compromised site, leads to Locky-46606US
2016/05/12_08:01linkvo.com/_compareTemp/EBY7Xe.html192.185.5.192-Compromised site, leads to Locky-20013US
2016/05/12_08:01ka-ji-ya.com/style/WAmj1/HjfWBt.html219.94.192.106www1696.sakura.ne.jp.Compromised site, leads to LockyRegistrar Abuse Contact gtld-abuse@jprs.jp9371JP
2016/05/12_08:01jpcauto.com/2011/09/vbh9Bt.html216.224.174.117vps-1112725-12514.manage.myhosting.com.Compromised site, leads to Locky-22905US
2016/05/12_08:01fj.hmtcn.com/manage/image/cx0L89.html139.196.180.122-Compromised site, leads to LockyRegistrant YuMing@YinSiBaoHu.AliYun.com37963CN
2016/05/12_08:01drdavidcoppola.com/test/python/QLlTu8.html104.18.34.121-Compromised site, leads to Locky-13335US
2016/05/12_08:01dontrentfrom.com/images/icons/4bm1_P.html72.41.158.113rev.opentransfer.com.113.158.41.72.in-addr.arpa.Compromised site, leads to LockyRegistrar Abuse Contact domainabuse@tucows.com32392US
2016/05/12_08:01burstdial.com/members/importbuddy/nh5gws.html50.87.147.8450-87-147-84.unifiedlayer.com.Compromised site, leads to Locky-46606US
2016/05/12_08:01beta.stats.logalty.com/assets/d88d0ecf/4MO1UH.html81.4.123.222-Compromised site, leads to LockyRegistrar Abuse Contact abuse@web.com198203NL
2016/05/12_07:47esd-coach.de83.133.255.202s99.pixelx.de.pseudo darkleech on compromised site leads to Angler EKhostmaster@pixelx.de13237EU
2016/05/12_07:40kitendi.com/nj4yhd37.187.153.84ns335980.ip-37-187-153.eu.Locky ransomwareRegistrar Abuse Contact abuse@ovh.net16276FR
2016/05/12_07:40wisebuyoutlet.com/hj46hds69.195.124.253box1053.bluehost.com.Locky ransomwareRegistrar Abuse Contact abuse@uniregistry.com46606US
2016/05/12_07:33kuestenartillerie.axminsterbandb.co.uk/95216608-collide-rationalists-cochlea-sculleries-adults-insomniacs.png69.162.126.172172-126-162-69.static.reverse.lstn.net.Angler EKJohnathon Thomas / -46475US
2016/05/11_14:25coddle.consultoragonzori.com.ar/tjnhyq4.html93.190.140.162customer.worldstream.nl.gateway to Angler EK-49981NL
2016/05/11_14:20billow.crimean.us/tjnhyq4.html93.190.140.162customer.worldstream.nl.gateway to Angler EKKonstantin Chvilyov / kchvilyov@gmail.com49981NL
2016/05/11_13:35bounce.elsalibanio.pt/cgddlv4.html93.190.140.162customer.worldstream.nl.gateway to Angler EKElsa Maria Martins Libānio / horacio.mota@motagest.pt49981NL
2016/05/11_13:30purple.ehirak.ee/cgddlv4.html93.190.140.162customer.worldstream.nl.gateway to Angler EKname: Kristo Kalnin / -49981NL
2016/05/11_12:30plump.dhalimp.cl/vewqgw4.html93.190.140.162customer.worldstream.nl.gateway to Angler EK-49981NL
2016/05/11_12:20stain.egregiesystems.mx/vewqgw4.html93.190.140.162customer.worldstream.nl.gateway to Angler EKCesar Tovar de Jesus / % by email at ayuda@nic.mx .49981NL
2016/05/11_12:02www.saint-pauldevence.com/94.23.40.15ns369012.ip-94-23-40.eu.pseudo darkleech on compromised site leads to Angler EKRegistrar Abuse Contact abuse@namebay.com16276FR
2016/05/11_12:02batonnetstougespring.zuggmusic.com/NDiYStMT/QBKmBXil/yPaCKOPhEK-uOFzvQtaLd/37.130.230.1182582e676.rdns.100tb.com.Angler EK-13213GB
2016/05/11_11:55thenewzealandcellar.co.uk/cvbe3ols52.24.35.255ec2-52-24-35-255.us-west-2.compute.amazonaws.com.Locky ransomwareAdam Thomas / -16509US
2016/05/11_11:55lazerstore.com.br/ueow0okd104.27.158.249-Locky ransomwareKATIANA S MOSQUETI / katyler1@gmail.com13335US
2016/05/11_11:55autourdeslunettes.com/eor9oi212.227.247.138clienthosting.fr.Locky ransomwareRegistrar Abuse Contact abuse@1and1.com8560DE
2016/05/11_11:55gesdes.com/87yg7yyb23.229.156.225ip-23-229-156-225.ip.secureserver.net.Locky ransomware-26496US
2016/05/11_11:40depart.febriansptr.tk/wxwiwy4.html93.190.140.162customer.worldstream.nl.gateway to Angler EKE-mail: abuse: abuse@freenom.com, copyright infringement: copyright@freenom.com49981NL
2016/05/11_11:00dish.favebid.com.br/mrfwv4.html93.190.140.162customer.worldstream.nl.gateway to Angler EKPedro Henrique Alves Muniz / pedroalvesmuniz@gmail.com49981NL
2016/05/11_10:25amphibian.edivovina.hr/mrfwv4.html93.190.140.162customer.worldstream.nl.gateway to Angler EK-49981NL
2016/05/11_10:20course.fashion-shop.se/mrfwv4.html93.190.140.162customer.worldstream.nl.gateway to Angler EK-49981NL
2016/05/11_09:25leave.eclatant.cl/mrfwv4.html93.190.140.162customer.worldstream.nl.gateway to Angler EK-49981NL
2016/05/10_20:164hotdeals.com.au/j47sfe117.55.235.17cbr1lcp16.webhosting.openconnect.com.au.Locky ransomwareAvi Haimes / Visit whois.ausregistry.com.au for Web based WhoIs24557AU
2016/05/10_20:11realdirectsale.com/gh4ghsjd107.191.50.84107.191.50.84.vultr.com.Locky ransomware-20473US
2016/05/10_18:08healthcarewidgets.com/nbm3kd107.180.3.20ip-107-180-3-20.ip.secureserver.net.Locky ransomware-26496US

Page 0 1 ... 30


You can find an overview of downloadable lists here