WARNING: All domains on this website should be considered dangerous. If you do
not know what you are doing here, it is recommended you leave right away. This
website is a resource for security professionals and enthusiasts.
Date (UTC)DomainIPReverse LookupDescriptionRegistrant ASN
2015/02/28_14:36www.cellphoneupdated.com/fatalvirus/us/106/index.php?countryname=United%20States&model=Galaxy%20Nexus&brand=Samsung&isp=Nobis%20Technology%20Group%2C%20LLC&voluumdata=vid..00000003-87e9-496c-8000-000000000000__vpid..5226a000-bf41-11e4-8376-93ef5ad96b35__caid..a88aabcb-264f-46ba-9801-a85f36f00867__lid..1b71b07a-7436-46e5-981f-f6273dfbcbb5__rt..DJ__oid1..4e28fd07-1e86-4ea9-9d0e-bdcfc0d9ffd1__var1..U54.209.159.227ec2-54-209-159-227.compute-1.amazonaws.com.Malvertising, Android.FakeAVRegistrar Abuse Contact abuse@enom.com14618US
2015/02/28_14:36track.cellphoneupdated.com/a88aabcb-264f-46ba-9801-a85f36f00867?geo=US&site=79804&img={dynamicIMG}&zone={dynamicZNE}&cmp=11041&pub=42086&con=wired54.236.134.245ec2-54-236-134-245.compute-1.amazonaws.com.Malvertising, Android.FakeAVRegistrar Abuse Contact abuse@enom.com14618US
2015/02/28_14:36mobile.bitterstrawberry.org/?id=131985.17.137.41-Malvertising, Android.FakeAVBitter Strawberry / kd@bitterstrawberry.com60781NL
2015/02/28_14:36www.scanmyphones.com/fatalvirus/mx/101/index.php?countryname=United%20Kingdom&brand=&model=&isp=PlusNet%20Technologies%20Ltd&voluumdata=vid..00000008-5d87-4a50-8000-000000000000__vpid..15af7000-bf52-11e4-8afe-28ca782357aa__caid..b012dd3a-0871-4fc2-a5d8-8f6e6e30c334__lid..281f1d6a-3f5c-4aef-b00d-8178c6d9f00f__rt..D__oid1..14fdf5b9-f153-4ad7-9aec-c61b2432d31e54.209.159.227ec2-54-209-159-227.compute-1.amazonaws.com.Malvertising, Android.FakeAVRegistrar Abuse Contact abuse@enom.com14618US
2015/02/28_14:36www.officialrdr.com/b012dd3a-0871-4fc2-a5d8-8f6e6e30c33454.236.134.245ec2-54-236-134-245.compute-1.amazonaws.com.Malvertising, Android.FakeAVRegistrar Abuse Contact abuse@enom.com14618US
2015/02/28_14:36www.cellphoneupdated.com/fatalvirus/us/106/54.209.159.227ec2-54-209-159-227.compute-1.amazonaws.com.Malvertising, Android.FakeAVRegistrar Abuse Contact abuse@enom.com14618US
2015/02/28_14:36app.pho8.com/go.php?c=246&l=509&subid=21388413584?198.58.103.202li553-202.members.linode.com.Malvertising, Fake.Cleaner-36351US
2015/02/28_14:36app.pho8.com/jump/?jl=66968484198.58.103.202li553-202.members.linode.com.Malvertising, Android.FakeAV-36351US
2015/02/28_14:36app.pho8.com/go.php?c=255&l=387&subid=21843049645198.58.103.202li553-202.members.linode.com.Malvertising, Android.FakeAV-36351US
2015/02/28_14:36app.pho8.com/lp/sd/en/lp4/files/bootstrap-responsive.css198.58.103.202li553-202.members.linode.com.Malvertising, Android.FakeAV-36351US
2015/02/28_14:36app.pho8.com/lp/sd/en/lp4/files/bootstrap.css198.58.103.202li553-202.members.linode.com.Malvertising, Android.FakeAV-36351US
2015/02/28_14:36app.pho8.com/lp/sd/en/lp4/index.php?c=300&l=524&subid=21841780391198.58.103.202li553-202.members.linode.com.Malvertising, Android.FakeAV-36351US
2015/02/28_14:36app.pho8.com/click.php?c=246&key=l8s861364oq1y6w08t9kjkq1&pl_id=1286198.58.103.202li553-202.members.linode.com.Malvertising, Android.FakeAV-36351US
2015/02/28_14:36www.vipcpms.com/watch?key=e722a8eea048590dd97760d8b657327b&scrWidth=1680&scrHeight=1050&tz=0209.200.44.228trgdbtest.webair.com.Malvertising, Android.FakeAVRegistrar Abuse Contact abuse@enom.com27257US
2015/02/25_07:37static.retirementcommunitiesfyi.com/k?tstmp=3472398450.87.151.14650-87-151-146.unifiedlayer.com.Gateway for Sweet Orange EK-46606US
2015/02/23_12:36a.makeyourmoveknoxville.net:8085/secret/lines.php?norway=395.183.8.177hosted-by.ihc.ru.Sweet Orange EK-42244RU
2015/02/23_12:36static.platinumweddingplanner.com/k?tstmp=2340459850.87.151.14650-87-151-146.unifiedlayer.com.url for Sweet Orange EK-46606US
2015/02/17_01:15njtgsd.attackthethrone.com/public-justice/64XPKZldWDM_/R4efelSvf_/I1OdCoSKw2r1epqivQsiUvi9Pb1pHroRToqggbsG5oYAuB_/fSiunpQPK/_/lE3aXgQ~~/MTQ2N2I5OThlNWVjOWFmMWQ2OTE0ZjBh/governing-institution.mhtml94.242.203.247ip-static-94-242-203-247.server.lu.Browlock.Malvertising-5577LU
2015/02/17_01:15ad-beast.com/ads.js5.61.39.14-Browlock, MalvertisingRegistrar Abuse Contact tld-abuse@nic.ru16265GB
2015/02/17_01:15ydshttas.climat.ws/public-justice/64XPKZldWDM_/R4efelSvf_/I1OdCoSKw2r1epqivQsiUvi9Pb1pHroRToqggbsG5oYAuB_/fSiunpQPK/_/lE3aXgQ~~/MTQ2N2I5OThlNWVjOWFmMWQ2OTE0ZjBh/governing-institution.mhtml46.105.211.68-Browlock, MalvertisingRegistrar Abuse Contact abuse@godaddy.com16276FR
2015/02/17_01:15domains.mangowork.com/adShowMe.jsp?zoneid=27&bannerid=2&chid=341aa8fca26bcff7830499c1c5f8e3595.61.36.219-Browlock, Malvertising-16265GB
2015/02/17_01:15tfx.pw/a.js5.61.38.218-Browlock, MalvertisingRegistrant vpn@ihateclowns.com16265GB
2015/02/05_13:26pipersalegulfcoast.mathwolf.com:32612/mysqladmin/down.php?tuning=296888167.114.81.161-exploit kit-16276CA
2015/02/05_13:26bank.scarf-it-up.com/gao/maximum/law/core.js146.0.79.158-redirector to exploit kit-57043NL
You can find an overview of downloadable lists here