Malware Related > Malicious Domains

daily something......

<< < (257/259) > >>

techhelplist.com:
trapwot fake-antivirus downloads, must use IE user-agent, GET params probably have to change.

trovione.altervista.org/document.php?rnd=7471&id=5555555E06050D08011D24050613034A0B1603
saintclan2.altervista.org/document.php?rnd=7471&id=5555555E06050D08011D24050613034A0B1603
amperspective.com/document.php?rnd=7471&id=5555555E06050D08011D24050613034A0B1603

c2 at : 176.53.125.25

techhelplist.com:
encrypted dyreza for upatre to download, not really RTF or PNG files:

rskn.be/lux3.png
darjael.es/upload/pictures/lux3.png
divioserv.ro/sites/all/muz4.rtf
djgabriellalavitt.com/css/muz4.rtf
noizeradio.gr/images/img21.png
powderpure.com/science/img21.png

techhelplist.com:
hancitor download

91.194.254.212/ca/file.jpg

techhelplist.com:
dyreza downloads, encryped binaries not PNG files:

134.249.63.46/arrow4.png
194.28.190.167/arrow4.png
195.3.157.218/arrow4.png
46.151.48.173/arrow4.png
91.232.157.139/arrow4.png
93.123.40.17/arrow4.png


dridex downloads :

inesbrook.com/js/bin.exe
dogordie.de/js/bin.exe
wuppie.dyndns.org/js/bin.exe

techhelplist.com:
hancitor download

91.194.254.215/us/file.exe

Navigation

[0] Message Index

[#] Next page

[*] Previous page

Go to full version