Malware Related > Malicious Domains
Trojan Ransom
EP_X0FF:
Currently it can't redirect to new domains because they all suspended (very fast response I see).
Perhaps we should just wait few hours :)
EP_X0FF:
Pornorolik
--- Quote ---hxxp://gigpornoforfree.ru/1/video/porno-rolik1.avi.exe
hxxp://gigpornoforfree.ru/2/video/porno-rolik2.avi.exe
hxxp://gigpornoforfree.ru/3/video/porno-rolik3.avi.exe
hxxp://gigpornoforfree.ru/4/video/porno-rolik4.avi.exe
hxxp://gigpornoforfree.ru/6/video/porno-rolik6.avi.exe
hxxp://gigpornoforfree.ru/7/video/porno-rolik7.avi.exe
hxxp://gigpornoforfree.ru/8/video/porno-rolik8.avi.exe
hxxp://gigpornoforfree.ru/9/video/porno-rolik9.avi.exe
hxxp://gigpornoforfree.ru/10/video/porno-rolik10.avi.exe
--- End quote ---
Redirector now works :)
For example
--- Quote ---hxxp://dokoler-w.info/gischematest.cgi?13
--- End quote ---
redirects to
--- Quote ---hxxp://gigpornoforfree.ru/3/porno.html
--- End quote ---
SysAdMini:
--- Quote from: EP_X0FF on July 17, 2011, 04:38:08 pm ---Pornorolik
Redirector now works :)
For example
--- Quote ---hxxp://dokoler-w.info/gischematest.cgi?13
--- End quote ---
redirects to
--- Quote ---hxxp://gigpornoforfree.ru/3/porno.html
--- End quote ---
--- End quote ---
Doesn't work here. It always redirects to
--- Code: ---hxxp://nightdate.ru/?tid=727&fo=1&gender=2
--- End code ---
Target url probably depends on country.
EP_X0FF:
--- Quote ---Target url probably depends on country.
--- End quote ---
Likely :)
Here is fresh Amazon sample
--- Quote ---hxxp://3vvporn.s3.amazonaws.com/xxx_video.exe
--- End quote ---
MBRLocker
--- Quote ---hxxp://fukudafcom.ru/xxxvideo.avi.exe
--- End quote ---
SysAdMini:
Redirection still doesn't work for me. I have tried different user agents and from different countries.
Have you used a referrer ? What was your user agent ? From what country did you send requests ?
If you don't want to publish details, then please send me a PM.
Thanks.
Navigation
[0] Message Index
[#] Next page
[*] Previous page
Go to full version