dedoLa

List of malicious URLs from public websites

Date	Source	URL	IP	Description
31-05-2016	PhishTank	http://stonemar.com.br/images/wordpress/956410b4b1dd62ac42f9c2bcc7557a93/	N/A	ishing-Citibank
31-05-2016	PhishTank	http://stonemar.com.br/media/wordpress/ff22d4169417075a22b095685f5ce274/	N/A	ishing-Citibank
31-05-2016	PhishTank	http://stonemar.com.br/modules/wordpress/9e117c8db4c0f6d05001b8769757c39d/	N/A	ishing-Citibank
31-05-2016	PhishTank	http://www.icsabuja.com/config/m2uSession/m2uSession/Welcome.html	N/A	ishing-Other
31-05-2016	PhishTank	https://www.ilmakiage.com.au/api/admin/postal/74cb99e7be9227f5407f97712af839eece4aa9d9/manage.compte/index.php?country.x=EU-Europe&lang.x=	N/A	ishing-Other
31-05-2016	RansomwareTracker	http://93.170.123.60/upload/_dispatch.php	93.170.123.60	Ransomware-Locky-C2
31-05-2016	RansomwareTracker	http://195.154.69.90/upload/_dispatch.php	195.154.69.90	Ransomware-Locky-C2
31-05-2016	PhishTank	http://online-hmrc-gov-application-tax-refund-automated-indetification.onocomp.com.br/index.php	N/A	ishing-Her Majesty's Revenue and Customs
30-05-2016	MDL	buildviet.info/servicer/fattura/	123.30.240.66	edirects to trojan download at SugarSync
30-05-2016	MDL	direct.tuvalet.tk/yrsj2.html	93.190.143.36	ateway to Angler EK
30-05-2016	MDL	breeches.urra-servicios.cl/yrsj2.html	93.190.143.36	ateway to Angler EK
30-05-2016	MDL	poverty.tutoner.tk/irctrt2.html	93.190.143.36	ateway to Angler EK
30-05-2016	MDL	squeak.veterinariasfasis.com.ar/irctrt2.html	93.190.143.36	ateway to Angler EK
30-05-2016	MDL	www.northpoleitalia.it/	46.37.11.7	seudo darkleech on compromised site leads to Angler EK
30-05-2016	MDL	harrow.tuorganizas.com.br/eqotzw2.html	93.190.143.36	ateway to Angler EK
30-05-2016	MDL	cheep.tsairyuarn.com/eqotzw2.html	93.190.143.36	ateway to Angler EK
30-05-2016	VxVault	turkeycitytour.com/LYmCSw	46.101.146.228	spicious file
30-05-2016	VxVault	yourmotionstore.com/LDMHwt	198.58.93.8	spicious file
30-05-2016	VxVault	chilloutplanet.com/BHRiGZ	109.71.69.138	spicious file
30-05-2016	VxVault	matthewmccright.org/89tgv5d34s	107.180.13.17	spicious file
30-05-2016	VxVault	deangelis.co.uk/89tgv5d34s	66.232.131.10	spicious file
30-05-2016	VxVault	dealgtc.com/89tgv5d34s	23.229.207.130	spicious file
30-05-2016	VxVault	australiancheerleader.com.au/89tgv5d34s	103.254.138.242	spicious file
30-05-2016	CyberCrime	semtestcraiova.ro/kizzy2/admin.php	195.254.135.18	ny
30-05-2016	Clean-MX	http://www.towerbundlesbits.com/WVl6OTRQVlphVjNobWNUWnRUQ1V5UWxwVVp6Rm1KVEpDT0hKMVUwTmhTVXRMZWt3MWJ6UTRKVEpHV0VGdGFTVXlSbXB2ZUZBM01DVXpSQ1pqUFZwUVYxWnhjSGxtY1c1cWIwOHpSME5PUkVsMmNFaHdVR2hEYTJSSmNqUTVRbkZKY1RVemVHNGxNa1l6TTFKUVFYRm5aazFJYVZGck1uRkZTRWhrTjFoMWFWVjRNR3RuWm5wcVIyOXFTa3BRYmpFeGVrSlVaV1ZGWTBoM2QwMDRhemRLVTFwcmMweFpWSFo1WkhZd1dUVnhWMDlYVm5ORFMyaGxPRVJvTVVOeWVWVmFabmhDZHpNMVdFSnVSVzlLUmt4SWVrNUZPRWxCSlRORUpUTkVKbVU5TUNabVlXeHNZbUZqYTE5MWNtdzlhSFIwY0NVellTVXlaaVV5Wm5kM2R5NWpiRzl1WldSMlpDNXVaWFFsTW1a	54.229.39.171	uS Trojan
30-05-2016	Clean-MX	http://174.139.83.11:2011/2.exe/?=179	174.139.83.11	spicious
30-05-2016	Clean-MX	http://174.139.83.11:2011/3.exe/?=349	174.139.83.11	spicious
30-05-2016	Clean-MX	http://222.92.154.228/svchost.exe	222.92.154.228	spicious
30-05-2016	Clean-MX	http://174.139.83.11:2011/2.exe?=1152	174.139.83.11	spicious
30-05-2016	Clean-MX	http://174.139.83.11:2011/2.exe/?=171	174.139.83.11	spicious
30-05-2016	Clean-MX	http://174.139.83.11:2011/2.exe/?=559	174.139.83.11	spicious
30-05-2016	Clean-MX	http://174.139.83.11:2011/2.exe?=897	174.139.83.11	spicious
30-05-2016	Clean-MX	http://174.139.83.11:2011/2.exe/?=937	174.139.83.11	spicious
30-05-2016	Clean-MX	http://174.139.83.11:2011/3.exe/?=180	174.139.83.11	spicious
30-05-2016	Clean-MX	http://perso.wanadoo.es/winworld/exec.exe	62.37.237.60	uS Trojan
30-05-2016	Clean-MX	http://173.254.207.229/1.exe	173.254.207.229	spicious
30-05-2016	Clean-MX	http://ibmsn.org.br/dati/Ordine.zip/	189.113.168.235	spicious
30-05-2016	Clean-MX	http://videohost.tk/2/download/flashplayer.exe	46.30.40.103	spicious
30-05-2016	Clean-MX	https://dl.dropboxusercontent.com/u/77805496/DCrat/Crypted/bot.exe	108.160.173.5	spicious
30-05-2016	Clean-MX	http://teng8.3322.org/2.exe	125.77.199.30	spicious
30-05-2016	Clean-MX	http://adalbertobarcelos.com.br/fisk/severphp/gate.php	179.188.17.94	spicious C&C DropZone
30-05-2016	Clean-MX	http://dl.showthisappforyou.com/download/2/wizzrelease.exe?jurmqp9yix4v2nzcr0l6f17d0okeshvw19u3cv1gfojzzwkxyyhgxvplsrmbqjywukmsvw4epu6pntxdzakavvo69rvsl7cx0w/1tqclrtqs4ruifdzf4hnewobjm0qafpemijkb+na20zcbf1r+jq	149.202.68.127	spicious Exe
30-05-2016	Clean-MX	http://dl.showthisappforyou.com/download/2/wizzrelease.exe/?jurmqp9yix4v2nzcr0l6f17d0okeshvw19u3cv1gfojzzwkxyyhgxvplsrmbqjywukmsvw4epu6pntxdzakavvo69rvsl7cx0w/1tqclrtqs4ruifdzf4hnewobjm0qafpemijkb+na20zcbf1r+jq	164.132.161.107	spicious Exe
30-05-2016	PhishTank	http://keditor.org/uploads/	N/A	ishing-Other
30-05-2016	PhishTank	http://www.ateliedobb.com/Boss/index.php	N/A	ishing-Other
30-05-2016	PhishTank	http://www.plish.ru/system/logs/images/cfc9d90a57dd90181efd035026c02ac5/signin/support-service/login.php?country.x=-&lang.x=en	N/A	ishing-Other
30-05-2016	PhishTank	http://pousadarealsantos.com.br/singin-e3Bay-co-uk-ISAPIdllSignInr/	N/A	ishing-Other
30-05-2016	PhishTank	http://paypal.com.update.account.suspend.information.p2837486978290129479734q234-247387239809138276371942947.fumecead.com.br/confirm/signin/92d5d78d09be40028A87c6bc774c9d87D/login.php?country.x=EU-Europe&lang.x=en	N/A	ishing-Other
30-05-2016	PhishTank	http://donovandesouza.com/usaa.com-inet-ent-logoff-Logoff-detour-start-detourIdsCADMember-CADLogoff-true/	N/A	ishing-"United Services Automobile Association"
30-05-2016	PhishTank	http://js.tauris29.site88.net/redirect1.htm	N/A	ishing-"United Services Automobile Association"