Malware Domain List

Malware Related => Malicious Domains => Zlkon.lv => Topic started by: SysAdMini on April 09, 2009, 11:13:13 am

Title: hs.3-40.zlkon.lv -(94.247.3.40)
Post by: SysAdMini on April 09, 2009, 11:13:13 am
Fake AV
Code: [Select]
antivirusonlineproscan.com
antivirus-pro-live-scan.com
antivirusonlineproscanner.com
allsoftwarepayments.com
powerdownloadserver.com
securitysoftwarecheck.com
thankyou4check.com
professionalsoftwareupdates.com
excelsystems.cn/soft.php?aid=0860&d=1&refer=be4f5fba9
devinepromotions.cn/soft.php?aid=0860&d=1&refer=be4f5fba9
transformercity.cn/soft.php?aid=0860&d=1&refer=be4f5fba9
grooveyourdestiny.cn/soft.php?aid=0860&d=1&refer=be4f5fba9
windowssecurityupdates.cn/soft.php?aid=0860&d=1&refer=be4f5fba9
falloutneferwin.cn/soft.php?aid=0860&d=1&refer=be4f5fba9
overpoweredsystem.cn/soft.php?aid=0860&d=1&refer=be4f5fba9
thankyouforinstall.cn/soft.php?aid=0860&d=1&refer=be4f5fba9
securedosupdates.cn/soft.php?aid=0860&d=1&refer=be4f5fba9
awardspacelooksbig.cn/soft.php?aid=0860&d=1&refer=be4f5fba9
securedprosoftwareupdate.cn/soft.php?aid=0860&d=1&refer=be4f5fba9
macroviewonline.cn/soft.php?aid=0860&d=1&refer=be4f5fba9
Title: Re: hs.3-40.zlkon.lv -(94.247.3.40)
Post by: SysAdMini on April 10, 2009, 01:01:02 pm
redirects to fraudulent payment system
Code: [Select]
windowssecurityupdates.cn/order_xp.php?ver=1
all-software-payments.com/order_av.php?ver=1
securedupdateslive.cn/order_xp.php?ver=1
securityupdatessystem.cn/order_xp.php?ver=1
securedsystemresources.cn/order_xp.php?ver=1
thankyou4check.com/order_xp.php?ver=1
securedsoftwareupdate.cn/order_xp.php?ver=1
securedwindowsupdate.cn/order_xp.php?ver=1

involved in fraudulent payment system
Code: [Select]
antispywareupdatesystem.com/download/security.bmp
softwareupdatessystem.com/download/security.bmp
professionalsoftwareupdates.com/download/security.bmp

Can someone figure out what this security.bmp is ?
Title: Re: hs.3-40.zlkon.lv -(94.247.3.40)
Post by: SysAdMini on April 22, 2009, 10:45:13 am
Fake AV
Code: [Select]
antivirus-quickscanv2.com