commit

whitelist.global

@@ -16,181 +16,181 @@
 62.149.128.160
 8.8.8.8
 8.8.4.4
-164.90.194.17
-188.166.70.107
-178.62.222.164
-188.166.36.213
-161.35.155.65
-178.128.251.154
-167.71.78.214
-167.99.46.183
-188.166.46.90
-178.128.254.64
-188.166.69.24
-188.166.103.15
-104.248.194.112
-167.172.38.97
-159.223.213.107
-188.166.63.108
-159.223.0.121
-104.248.192.120
-188.166.85.76
-188.166.91.192
-188.166.17.46
-128.199.61.15
-188.166.86.111
-104.248.202.179
-178.62.221.146
-188.166.91.80
-164.92.219.73
-167.71.68.193
-146.190.234.168
-146.190.17.61
-161.35.82.120
-165.22.207.243
-188.166.85.242
-146.190.238.159
-64.227.78.25
-188.166.31.25
-178.62.240.117
-188.166.97.199
-188.166.17.142
-206.189.101.65
-188.166.73.117
-188.166.11.226
-188.166.2.236
-188.166.95.89
-164.92.152.178
-167.71.10.219
-188.166.55.209
-146.190.225.217
-174.138.8.207
-128.199.53.157
-164.92.209.130
-178.62.240.195
-167.99.216.203
-167.99.40.163
-188.166.77.48
-164.92.220.56
-167.71.64.103
-188.166.34.36
-128.199.60.18
-188.166.109.135
-188.166.85.49
-206.189.11.13
-134.122.56.28
-161.35.150.89
-188.166.80.143
-178.128.246.16
-206.189.2.123
-157.245.65.18
-167.71.71.43
-167.99.219.82
-64.225.71.102
-164.92.215.172
-188.166.92.136
-167.71.8.45
-146.190.228.120
-134.209.80.130
-188.166.89.164
-68.183.7.251
-167.172.47.117
-146.190.18.242
-104.248.94.94
-104.248.93.140
+165.22.196.33
+134.122.50.84
 188.166.48.29
 159.65.199.185
 178.62.242.162
 178.62.232.61
-165.22.196.33
-134.122.50.84
-142.93.129.129
-164.92.159.227
 188.166.23.162
 178.62.192.199
-146.190.29.122
+142.93.129.129
+164.92.159.227
 188.166.116.155
 167.99.40.27
+146.190.29.122
+165.22.205.55
+206.189.101.48
 167.99.211.228
 159.223.237.208
 188.166.104.96
-165.22.205.55
-206.189.101.48
-164.92.222.171
-206.189.0.226
-167.172.34.27
 134.122.63.204
 188.166.91.196
 104.248.87.189
 134.209.202.70
+164.92.222.171
+206.189.0.226
+167.172.34.27
 159.223.218.42
-165.22.192.54
-188.166.38.161
-188.166.41.33
-188.166.72.23
 134.209.91.165
 188.166.28.60
 64.227.71.52
 159.65.197.198
+165.22.192.54
+188.166.38.161
+188.166.41.33
+188.166.72.23
+206.189.103.231
+104.248.207.61
 64.225.71.170
 174.138.5.216
 188.166.83.149
 188.166.24.24
-206.189.103.231
-104.248.207.61
+167.71.79.14
 165.22.199.90
 161.35.153.110
 161.35.159.44
 142.93.131.113
-167.71.79.14
-167.99.210.125
-165.22.197.37
 161.35.95.211
 165.22.198.217
+167.99.210.125
+165.22.197.37
+157.245.67.209
+167.172.45.223
 159.223.225.41
 206.189.110.255
 167.172.38.137
 167.99.212.195
-157.245.67.209
-167.172.45.223
+161.35.93.220
+167.99.42.32
 161.35.144.29
 188.166.68.157
 159.65.198.26
 134.122.60.110
-161.35.93.220
-167.99.42.32
-64.225.71.115
-167.71.11.73
 157.245.78.190
 164.90.206.223
 174.138.2.121
 167.99.40.250
-104.248.196.207
-134.209.93.118
-178.62.238.76
+64.225.71.115
+167.71.11.73
 64.227.75.231
 104.248.205.106
 167.71.73.171
 178.62.247.86
+104.248.196.207
+134.209.93.118
+178.62.238.76
+178.62.219.148
+206.189.99.25
 128.199.48.140
 64.227.64.202
 134.209.192.110
-178.62.219.148
-206.189.99.25
-167.71.76.184
-188.166.126.240
 178.128.240.183
 188.166.21.67
-161.35.157.15
-178.62.204.160
-161.35.88.180
-167.99.43.70
+167.71.76.184
+188.166.126.240
 188.166.112.196
 143.198.131.11
 142.93.134.189
 134.122.51.143
-159.223.215.77
+161.35.157.15
+178.62.204.160
+161.35.88.180
+167.99.43.70
 178.128.254.180
+159.223.215.77
+188.166.36.213
+161.35.155.65
+178.128.251.154
+167.71.78.214
+164.90.194.17
+188.166.70.107
+178.62.222.164
+188.166.46.90
+178.128.254.64
+167.99.46.183
+104.248.194.112
+167.172.38.97
+188.166.69.24
+188.166.103.15
+159.223.213.107
+188.166.85.76
+188.166.91.192
+188.166.63.108
+159.223.0.121
+104.248.192.120
+188.166.17.46
+128.199.61.15
+178.62.221.146
+188.166.91.80
+188.166.86.111
+104.248.202.179
+161.35.82.120
+165.22.207.243
+164.92.219.73
+167.71.68.193
+146.190.234.168
+146.190.17.61
+64.227.78.25
+188.166.31.25
+188.166.85.242
+146.190.238.159
+188.166.97.199
+188.166.17.142
+178.62.240.117
+188.166.95.89
+164.92.152.178
+167.71.10.219
+188.166.55.209
+206.189.101.65
+188.166.73.117
+188.166.11.226
+188.166.2.236
+146.190.225.217
+174.138.8.207
+178.62.240.195
+167.99.216.203
+128.199.53.157
+164.92.209.130
+167.71.64.103
+188.166.34.36
+128.199.60.18
+167.99.40.163
+188.166.77.48
+164.92.220.56
+161.35.150.89
+188.166.80.143
+178.128.246.16
+188.166.109.135
+188.166.85.49
+206.189.11.13
+134.122.56.28
+64.225.71.102
+164.92.215.172
+188.166.92.136
+167.71.8.45
+206.189.2.123
+157.245.65.18
+167.71.71.43
+167.99.219.82
+146.190.228.120
+146.190.18.242
+104.248.94.94
+104.248.93.140
+134.209.80.130
+188.166.89.164
+68.183.7.251
+167.172.47.117
 174.138.14.56
 142.93.132.189
 134.209.136.185

yoroi_malware_level1.dns

@@ -9,568 +9,584 @@
 # Category        : Malware
 # Confidence      : 10
 #
-xqzdkh56y.ru
 esb7cg54.ru
+xqzdkh56y.ru
 0.takecontent.net
 018396a7.cholibrium.icu
 0af06f28.aceneurotonix.ltd
+123-movies.cloud
 1.mo03.biz
 1.a0bd418a3623a7bbe.salesforce.news
-123-movies.cloud
+1421894023.tutarama.ru
+1443028221.tutarama.ru
 1440889672.tutarama.ru
 1436284004.tutarama.ru
 1792187375.tutarama.ru
-1421894023.tutarama.ru
-1443028221.tutarama.ru
+1d09b54f.sarahthelwall.uk
+1578770639.tutarama.ru
 16delivered.hungzo.ru
+2108402645.tutarama.ru
 2gop.ig9fkgih10.com
-1d09b54f.sarahthelwall.uk
-41decrease.hungzo.ru
+22197e2a.sarahthelwall.uk
 36.designed.dafilas.ru
+41decrease.hungzo.ru
 3rdeyedeveloper.com
-493.lorv.org
+41612dc5.api.microsoft-ns1.com
+45.departments.dhysor.ru
 4delicacy.hungzo.ru
+493.lorv.org
 520jj.net
+595d6534.sarahthelwall.uk
 36233.www.dfsmp.com
 626124626124.626124.neshuafoods.com
-98823.dailycrick.com
-93destitute.sohrabt.ru
-82.departments.dhysor.ru
 9.approvedurls7.info
-a0a435a4243a6a4d0.salesforce.news
-a0d8d15e5bdba2dc1a0e03a31e3176b9ae.salesforce.news
-a86ce1b9adab83eff-a04ec08919b3e3737.salesforce.news
+82.departments.dhysor.ru
+71descendant.erinaceuso.ru
+956507363.tutarama.ru
 a4730ea1de089a5a7a16e7b03f9ab37cce.salesforce.news
+a0a435a4243a6a4d0.salesforce.news
+a64ffd68110687c0c.a51803a0aff7f01bc.salesforce.news
 a5a429a928ba9bbfb.salesforce.news
+93destitute.sohrabt.ru
+a0d8d15e5bdba2dc1a0e03a31e3176b9ae.salesforce.news
 a0a435a4243a6a4d0.a5a317dd9c0072f1f.salesforce.news
-abc53a377356d43a2a95aad110e73ef5da.salesforce.news
-abashinstructor.com
-a64ffd68110687c0c.a51803a0aff7f01bc.salesforce.news
 a5byyes.ataipb8idb.dkogar.cl
-ac4666304d04cc165.northamerica.salesforce.news
-ad405353fde3f90a4-a9dc4b6921b9a8c8f.salesforce.news
+98823.dailycrick.com
+a86ce1b9adab83eff-a04ec08919b3e3737.salesforce.news
+abc53a377356d43a2a95aad110e73ef5da.salesforce.news
 aca4914148c93e7bf.azure.salesforce.news
+ac4666304d04cc165.northamerica.salesforce.news
 accesso-restrizione.com
+abashinstructor.com
+acikdeniz-mobilsube-kredi.cf
 adb21a0180336f2d9ae87dfb60e5c15f37.salesforce.news
+ad405353fde3f90a4-a9dc4b6921b9a8c8f.salesforce.news
 aggregationmulecontribution.com
 agsig.org
+aliastryalways.com
 albumsignaturerequested.com
 allaboutmygarden.com
-aliastryalways.com
 alignedcoach.marduk.app.theplaygroundcase.net.brickell100.com
-anenttatting.com
-appserverafe45ecba6f45190a.salesforce.news
-app01ade2c98c556a289d2.salesforce.news
 api.us3.app.liongard.com
-asmad6befe05ae275a37.salesforce.news
+app01ade2c98c556a289d2.salesforce.news
+appserverafe45ecba6f45190a.salesforce.news
+anenttatting.com
+ascensionmonksurround.com
 astronomyisawesome.com
+asmad6befe05ae275a37.salesforce.news
 audio-edge-ey5nr.ams.s.radiomast.io
-axongear.com
-autoconfig.daprofesional.com
 attarbesets.com
-balokyalokd.com
-bbm.dailycrick.com
+autoconfig.daprofesional.com
+axongear.com
 bafybeid3fxryldbeoppklbamgdor2guyi3xh3atdb2kmrfa3j3m4ezjwaa.ipfs.dweb.link
-basementfloorsealant.com
 bakiret.com.sillanwali.pk
+balokyalokd.com
+battlegrounds-kr.co
+basementfloorsealant.com
+bbm.dailycrick.com
 baleiambwee.com
-bdgvocdl.ws
+bedmantaximan.com
 bestfreecounter.com
-best-dark-web-sites-for-cc.ru
+bigger96.allow.endanger.hokoldar.ru
 beststudwelders.com
+best-dark-web-sites-for-cc.ru
 bless.anakembok.de
-bigger96.allow.endanger.hokoldar.ru
-birlerskababs.com
 birthtothreeipswich.org
+birlerskababs.com
+brainsevior.live
+bmqgyia.u4tx4qrhnd.dkogar.cl
 bly1hf.com
 blogsme.link
-brainsevior.live
-branizericing.net
 bsd02.acaf015aaf6fbac40.salesforce.news
-bricklawgroup.com
 bsagij.com
+branizericing.net
+bricklawgroup.com
 btsbomb.com
+capitalinvestmentprivate.com
 cabronsiblog.blog.test.ssl.ecolado.top
 cache3a928596ba28c8a8b4.salesforce.news
-cassidyday9639.homes
-capitalinvestmentprivate.com
+catchinfo.org
 cc639.com
+cc-landing.com
 cdn.xn--cumpleaosdefamosos-t0b.com
 cdn.jquery-cdn.com
-catchinfo.org
-cc-landing.com
-cf4d883f.sarahthelwell.co.uk
 chr82.zhubint.ru
-cleanskycloud.com
+cf4d883f.sarahthelwell.co.uk
 claim.approvedurls7.info
-close97.dzhehant.ru
+cleanskycloud.com
 close42.dzhehant.ru
+close97.dzhehant.ru
 collectsyour-neworder.com
 contactsupportdesk.com
 corientass.com
-computeria.ru
-contanti.org
 comprehendbighearted.com
 concealbeakerdough.com
+computeria.ru
+cn.shunde-qd.com
+contanti.org
 cpcontacts.breakfast-bites.com
-cragconcluded.com
-cxxllsbe.ws
-crpcruynxxc.com
 cutegirlsporn.com
-cust115-a40e29919cdc185ca.salesforce.news
 cust35ab18a4306f0432e17.salesforce.news
-demos.a3257364aab5f5c32.salesforce.news
+cust115-a40e29919cdc185ca.salesforce.news
+crpcruynxxc.com
+cragconcluded.com
 dailythesouthernpost.com
-delivery.imaginedbyjess.co
 daniellaharel.com
-desponddietist.com
-db.vpn.org.cn
-dentamasmulia.com
 desty.page
-devotedfootprintsinterstate.com
+db.vpn.org.cn
+desponddietist.com
+demos.a3257364aab5f5c32.salesforce.news
+delivery.imaginedbyjess.co
 discover.zizoze.com
+dentamasmulia.com
+diportal.ru
 disbaramulla.com
-dk.7pkf6.chileinsumos.cl
+devotedfootprintsinterstate.com
 disabledincomprehensiblecitizens.com
-diportal.ru
+dominos.bafdili.com
+dk.7pkf6.chileinsumos.cl
+dnsseed.bitcoin.dashjr.org
 download.100sofrecipes.com
-drjeremynicholson.com
 dragon.a96a1f31c369b1d59.salesforce.news
+dramasoloist.com
+drjeremynicholson.com
 drownprice.co
 eagles-astoria.com
 dump-card-means.ru
 dyeingjaun.com
+easynofaxingloans.com
 edureviews.net
-elthamwildcats.com.au
 englishpetals.com
-etherscxan.link
+elthamwildcats.com.au
 ep1btc.com
+etherscxan.link
 errresound.com
+events-a309d62b2ed658b0c.salesforce.news
 eveningproclamationarched.com
 excelmedicalpk.com
-events-a309d62b2ed658b0c.salesforce.news
 exclusivett.site
-farfehtch.com
-fgcdjbylba.ws
 filesoftox.info
-fiz4tl.com
+farfehtch.com
 flameofhumanity.com
+fiz4tl.com
+freedownloadhq.com
+fpgroup.us
+fqdky.yvooobfzx.com
 forums.dashhacks.com
 for84.dzhieyi.ru
-fqdky.yvooobfzx.com
-fpgroup.us
-freedownloadhq.com
-fyqtmmo.ws
-fw-2.procompany.top
-gainde.qanet.gm
 fwsm1-ac27efc0de33ef907.salesforce.news
+fw-2.procompany.top
 gatewaytoworld.com
+gainde.qanet.gm
 gceog.com
 geodaljoyless.com
+ggypg.onderndbe.club
 go.getfreadom.com
-go.approvedurls7.info
-golo.fm
-gnam.spk-update-terminal.com
 go.9t5.me
+go.approvedurls7.info
+gitlab.gitlab.git.git.coingeckjo.click
 goog.evelopedsev.autos
 goog.istakechau.autos
-goniforas.com
+golo.fm
 gooo.com
+goniforas.com
+gnam.spk-update-terminal.com
 grammarlychrome.com
-gscare.cc
 grenzenloskochen.erne.com
+gscare.cc
 hardtotake.com
-hatchetsiegecleverness.com
 handbagcordial.com
+hatchetsiegecleverness.com
 hockeyunderstatementspinal.com
-holity.fr
 home.googlemobilecenter.info
-hvms.kxzuvrtnj.com
+holity.fr
 homer.ae2b111133ea59c91.salesforce.news
 iciao.gr
-ibm.acb5c7400015c8e37.salesforce.news
-huyontop.com
 i59f62b50.versanet.de
-idesalud.com
+hvms.kxzuvrtnj.com
+ibm.acb5c7400015c8e37.salesforce.news
 iceboxlitre.com
+huyontop.com
+iftwivjguf.thewholesale.market
 imagelinetechnologies.com
+idesalud.com
 interior.ru
+intentionsplacingextraordinary.com
 j2.galerix.ru
-jkeur-d8808.web.app
 jpivxtsxpkn.com
 junetko.de
+jteuyf.top
+jkeur-d8808.web.app
 jsc5-129.mailidemo.secure.ecolado.top
-k2car.ro
-kangqiangyiliao.com
-kansascity.ad3d05d762e279e0d.salesforce.news
 kcsz.info
-kbnfm5.com
+k2car.ro
 kefulz.com
-jteuyf.top
+kbnfm5.com
+kansascity.ad3d05d762e279e0d.salesforce.news
+kangqiangyiliao.com
 kerattogeist.com
-knowingeffectiveresource.bancoprovinar.repl.co
 klubfiatstilo.pl
-kristenbelltattoos.com
 konasaphie.com
+knowingeffectiveresource.bancoprovinar.repl.co
+kristenbelltattoos.com
 lambrechtsbats.com
 lanaffda1669c87a4493.salesforce.news
-ledgerlivesupdate.com
 laboratorytests.org
 legacyshave.com
-legitdumpsites.ru
+ledgerlivesupdate.com
 lewdstars.online
-links.detectionrole.one
 letempstg.com
-lsthlsy0u.link
-livealifeyoulove.com
+legitdumpsites.ru
 lndth.zpwctoqpd.com
+livealifeyoulove.com
 m4ufree.kim
 luxchecker.pm
-mahkotamaju.com
+lpukkuvmte.smtpserviceproviders.review
+lsthlsy0u.link
 luhlbixiarh.velocity.company
 ltjss.net
-mail.boostaros.rest
+mail.antsnor.beauty
 mail.bestfloridapublicadjuster.com
 mail.axasegurosagenciacadiz.com
-mail.bladderknives.online
-mail.antsnor.beauty
-mail.dventure.monster
+mahkotamaju.com
+mail.boostaros.rest
 mail.coiuikne.beauty
+mail.bladderknives.online
 mail.dronair.beauty
+mail.dventure.monster
 mail.homdeptoz.com
+mail.improvestore.yachts
 mail.lerseyfe.monster
 mail.kerrcialu.monster
 mail.litglasviw.beauty
-mail.lluisallullevents.com
 mail.mecanica83.com
-mail.meditatio.monster
-mail.normesduie.beauty
-mail.mpetitive.monster
+mail.lluisallullevents.com
 mail.ollective.beauty
+mail.mpetitive.monster
 mail.nstpictures.jp
+mail.meditatio.monster
+mail.normesduie.beauty
+mail.surveyextras.email
 mail.skeptifat.beauty
-mail.warnblack.com
-mail.usabilidrone.pics
 mail.wafminbs.com
+mail.usabilidrone.pics
+mail.warnblack.com
 mainportmedia.com
+mail.waexrsui.monster
 maletasgreenwich.com
-maps.root.org.cn
-maloprotect.xyz
 managementa51f5e38d38d91b3b.salesforce.news
-mastergamenameper.club
+maloprotect.xyz
 marormesole.com
-mathecorge.com
-matryoshkaby.com
-mattioliwoods.verajamesgc.org
+maps.root.org.cn
 marshagalea.com
-matmechanic.com
+mastergamenameper.club
 meh.onelittle.top
+matryoshkaby.com
+matmechanic.com
+melongetplume.com
+mattioliwoods.verajamesgc.org
+mathecorge.com
 miguidolacel.com
 midwest.a56c6f1e4c20fb853.salesforce.news
-melongetplume.com
+mobile.affairalert.com
 mobilehomedoors.us
 modart-paris.ir
+mtu-a5741e2763b64248b.salesforce.news
+mrgreen.ws
 motimok.cfd
 mpm.dailycrick.com
-multecihaklari.org
-mtu-a5741e2763b64248b.salesforce.news
 mulrqulhdd.evarest.biz
 myfood.silverspringfoodproject.org
-my.delivery-package.slb-9.com
-myjaeasosb.myjoaceecb.ryjzhp.top
 myjeascsb.myjoscb.rfba.top
+myjaeasosb.myjoaceecb.ryjzhp.top
+multecihaklari.org
+my.delivery-package.slb-9.com
 n63b16.info
+neighborhoodpassage.com
 necessaryratio.pro
 new-goordian.com
 newlinepackers.com
 news-wumepa.com
-ns1.pearhouse.com
-ns2.pearhouse.com
+nkrkynwksh.brainylearn.ch
 ns13.npdns.net
+ns1.pearhouse.com
 ns2.uberaddis.com
+ns2.pearhouse.com
 nudistcrop.com
 octcbmzvi.zpwctoqpd.com
-oricopdtwli545ven4lcs0.musops.live
 onrunningshoes-greece.com
 org.a5a317dd9c0072f1f.salesforce.news
-organexpectationsmaintain.com
+oricopdtwli545ven4lcs0.musops.live
 page.deeperhard.com
+organexpectationsmaintain.com
 pabzlp.biz
-pc29aa6b94e1d631878c9.salesforce.news
-pcsszerviz.hu
-pc01a9e72057512269beb.salesforce.news
 passionsakinsola.net
+pc01a9e72057512269beb.salesforce.news
 pc31afc32161b44cca1f9.salesforce.news
-pics123.pw
-peeredfoggy.com
+pc29aa6b94e1d631878c9.salesforce.news
+pcsszerviz.hu
 peacocktypewriter.com
+peeredfoggy.com
 permissioncornshrine.com
 platform.trendingsubject.com
-poseyoung.com
 pltw.com
+pics123.pw
+pollingsagacioustopple.com
 planetbleedsagacious.com
-primerewardz.com
-potsalonescuresrvieonecom-bbd7ee.ingress-florina.ewp.live
 pretty.intention52.homopt.ru
+poseyoung.com
+potsalonescuresrvieonecom-bbd7ee.ingress-florina.ewp.live
 procrackfile.com
-profileaaf603f86698f075d.salesforce.news
+primerewardz.com
 progress.cashdigger.com
+profileaaf603f86698f075d.salesforce.news
 pronunciationawarenessunemployment.com
-qjfokdzhkyjf.com
+quatanghoanglong.com
 pussyboo.com
-rankertorten.com
+qwwnvw.irevibele.com
 rbfccu.zhongrua.com
 rastledundo.com
-quatanghoanglong.com
+rankertorten.com
+rg1t8ioux.teafatting.quest
+rescuemac.ru
+rivianchargerinstallation.com
+responsebody8.dzhehant.ru
 releasedgrievedeye.com
 resourcescleopatra.com
 retireblotch.com
-rescuemac.ru
 role.tongift.shop
+robertjaso.com
 rootsweb.blog
-rg1t8ioux.teafatting.quest
-rivianchargerinstallation.com
-root.ns1.ns2.kalarada.com
 roambedroom.com
-s1656690294407.listellos.com
 rsntcgoowyxsu.com
+s1656690294407.listellos.com
 s298.a5261f99cd6381908.salesforce.news
 s4036075871068.listellos.com
+root.ns1.ns2.kalarada.com
 sacicsancscascen.brjqsy.top
 saciecacsaacn.pynwaj.top
 saciscacsaacn.qaeftk.top
 saciseacssace.bmfobi.top
-sacisoacsnace.wpkbmz.top
 sacisoacsnace.imfgws.top
 sacisoacsnace.xkbwcu.top
-safemacpc.xyz
-sacisssccsnace.iqgaah.top
+sacisoacsnace.wpkbmz.top
 sacisssccsnace.otpyob.top
+sacisssccsnace.iqgaah.top
 saismiami.com
-sasisesccsnace.iqgaah.top
-sasisesccsnace.eefurs.top
+safemacpc.xyz
+sarwa.co.za
 sasiscacsaacn.cqwnqk.top
 sasiseacsnace.imfgws.top
+sasisesccsnace.eefurs.top
+sasisesccsnace.iqgaah.top
 sasissacscace.kcjtvn.top
-schseels.com
 sawariyacargopackersmovers.co.in
-secure-access-22cf4qeheh9a435c.gate33.xyz
-secure-access-5091ej2a3ira0d35.gate43.xyz
+schseels.com
 secure-access-54818uo9la4ej354.gate43.xyz
-secure-access-9e846uoqduqfy9d1.gate43.xyz
-secure-access-d5bcdftkty9nt1da.gate33.xyz
+secure-access-5091ej2a3ira0d35.gate43.xyz
+secure-access-22cf4qeheh9a435c.gate33.xyz
 secure-access-7acfbibuop21z6c9.gate43.xyz
-secure-access-e705cp2h96ja2522.gate36.xyz
+secure-access-d5bcdftkty9nt1da.gate33.xyz
+secure-access-9e846uoqduqfy9d1.gate43.xyz
 secure-access-eab39p2fv9zuqd9c.gate36.xyz
-send24.hoanzo.ru
+secure-access-e705cp2h96ja2522.gate36.xyz
 services-team.onomsblinks.com.ng
+send24.hoanzo.ru
 servers.a5afc1e0051fac057.salesforce.news
-shein-ok.website
+seolto.club
 shandongbaobiao.cn
 shop-cvv-carder.ru
+shein-ok.website
 shop.computing-age.com
 silencilhardmale.online
+simultaneouslyagreeingcontradiction.com
 sickdeal.net
 sinensis.ru
-simultaneouslyagreeingcontradiction.com
-so35.american-public.org
+smartsegment.ru
 skechers-portugallojas.com
 so21.american-public.org
-smartsegment.ru
-so61.american-public.org
 so44.american-public.org
-soulproduction.co.id
+so35.american-public.org
+so61.american-public.org
 solutiontrackers.com
 socketbuild.com
+soulproduction.co.id
 stata1ea3c0cf2bbdeb77.salesforce.news
-springfield.a057722a7bc304b8e.salesforce.news
 steampwoered.com
+springfield.a057722a7bc304b8e.salesforce.news
 steelcitysafe.org
-support.patientportals-login.com
-suppliers-a94dad2daed6cfea7.salesforce.news
-suvffg.yvooobfzx.com
 suivi-chronopost-support.com
+suppliers-a94dad2daed6cfea7.salesforce.news
 surfsl.com
-synergy.do
-svfwyyxzbjrd.com
+support.patientportals-login.com
+suqccirvqu.loyaltees.club
 swagger.a6da4e74d2d46c556.salesforce.news
+suvffg.yvooobfzx.com
+svfwyyxzbjrd.com
+synergy.do
 system-aa936779f1c63d855.salesforce.news
+teknolojiweb.net
 techsmashwru.ru
 techbloggerji.com
-teknolojiweb.net
-testsql-a9e72057512269beb.salesforce.news
-telete.in
+tinhightech.net
 themasystem.dailycrick.com
 thehrstrategies.com
-tinhightech.net
+testsql-a9e72057512269beb.salesforce.news
+telete.in
 thisservermustbeprime.com
-tntl4ever.com
 tjrnltjexv.76pp.site
+tntl4ever.com
 tolerant-technology.co.uk
-toolsthwartgrim.com
 track.pnicnik.live
+toolsthwartgrim.com
 totalcoolblog.com
-trancrafts.com
-tradingpancreasdevice.com
 trendingsubject.com
+trancrafts.com
 trafiq.trade
 traitorpenthouse.com
+tradingpancreasdevice.com
 umarketz.net
+us-npjrbi.us
 unusual.branizericing.net
+us-west.lazerpenguin.com
 vandervalkhotelparijs.com
+video.hellhorn.shop
 vakifkatilimkredimnerede.net
-vardosvideo.com
 verploton.ru
-us-west.lazerpenguin.com
-video.hellhorn.shop
-vm.o4k4z.chileinsumos.cl
-virmer.com
-volumenthol.beauty
+vardosvideo.com
 vcorzmduzmn.biz
+utgameserver325.opendns.be
+volumenthol.beauty
+virmer.com
 vpn.salesforce.news
+vm.o4k4z.chileinsumos.cl
 volunteerboutique.com
-vzsqbn.top
+vqkkajbyuwy.biz
 wap3a4dbe241f1d0ba87e.salesforce.news
-w8-webdoc.salesforce.news
-webcamsluts.cfd
+vzsqbn.top
 weathe.com
-vqkkajbyuwy.biz
+webcamsluts.cfd
+w8-webdoc.salesforce.news
 webdisk.mysoulcircle.in
 webmail.golegend.store
-webmail.etereosounds.com
 webmail.lifeinsuranceprograms.com
-webseomasters.com
-webservices-software.com
+webmail.etereosounds.com
 webmail.xtralink.my
+webservices-software.com
+webseomasters.com
 wenzhoupeizi.cn
 websmuybaratas.com
-wilfridamendment.com
 woodmoreestateshoa.com
-woncherish.com
+wilfridamendment.com
 worldtimes1.xyz
+woncherish.com
+www.accesso-restrizione.com
 www.adolescen.beauty
-www.advb9fyxlf2v.com
 www.aceeoa.aescooen.hvcgrs.top
-www.accesso-restrizione.com
-www.aceeean.aecsoecon.nsbjrf.top
+www.advb9fyxlf2v.com
+www.attractiv.monster
 www.aeeesan.ascececon.ixrnff.top
 www.airraining.co
-www.attractiv.monster
-www.babycouture.in
+www.aprende-ingles-ya.bodybuilding-update.com
+www.aceeean.aecsoecon.nsbjrf.top
 www.au-poay.aeucoaom.xybvbs.top
+www.babycouture.in
+www.costcosurvey.email
 www.dailysarkariupdate.com
 www.contactforhelpnumber.com
-www.costcosurvey.email
+www.dfaenvironmentalcorp.com
+www.dev-a954a7d8e5912517d.salesforce.news
 www.carseatcoversdirect.com
 www.breadbasket.host22.com
-www.dev-a954a7d8e5912517d.salesforce.news
-www.dfaenvironmentalcorp.com
+www.frossweddingcollections.co.uk
 www.edelweissranch.com
 www.geruient.monster
 www.git.enter.pay-id634986.top
-www.frossweddingcollections.co.uk
 www.gastroenterology.edoriuminternational.com
+www.git.git.gitlab.911-shop.zakandaiev.com
 www.goldsurvey.email
-www.gitlab.git.git.git.git.mail6.turobzorchik.ru
 www.gitlab.oa.polkastqrtter.com
-www.git.git.gitlab.911-shop.zakandaiev.com
 www.greywish.com
-www.huzhoupeiziguanwang.cn
+www.gitlab.git.git.git.git.mail6.turobzorchik.ru
 www.heartlandracingco.com
-www.hongbotv.com
-www.hjtd.com
 www.jefebing.monster
+www.hjtd.com
+www.hongbotv.com
+www.huzhoupeiziguanwang.cn
 www.immobiliarestella.com
-www.langlasses.com
 www.margoun.com
-www.mikeidea.com
 www.maykke.com
-www.mon-assu-vital.info
 www.mb102.com
+www.lmshousing.com
+www.langlasses.com
+www.mon-assu-vital.info
+www.mikeidea.com
+www.opera-historica.com
 www.northamptonassessor.us
 www.myra-simon.com
+www.news.techmahesh.in
 www.myjcecsceb.myjaascecb.xakv.top
-www.opera-historica.com
 www.plb4a96a1f31c369b1d59.salesforce.news
 www.r-e-b-u-s.ru
-www.saciceancssascen.vrsjxk.top
 www.sacicesccsnace.gtplhd.top
+www.saciceancssascen.vrsjxk.top
 www.sacicsancscascen.pzaujf.top
-www.saciesacscace.pynwaj.top
 www.saciesancscascnn.wssuzy.top
+www.saciesacscace.pynwaj.top
 www.saciseancssascen.wdvbgs.top
 www.sacisesccssace.rkiglj.top
 www.sacisoancsnascen.kfjzvl.top
 www.sacissacscace.tmerzz.top
 www.saisoen-co-jp.aesesnse.dpzuhj.top
 www.sasiseacsnace.gtplhd.top
-www.shopping.a6dc8bc2fbf1fe6a5.salesforce.news
 www.seo101.net
+www.shopping.a6dc8bc2fbf1fe6a5.salesforce.news
+www.surveyhistory.com
 www.silencilhardmale.online
 www.sportaction.eu.pel.mk
-www.surveyhistory.com
-www.thecarnivoredietcoach.com
 www.stephcurry.us
-www.thegummybear.com
-www.thefineyounggentleman.com
+www.thecarnivoredietcoach.com
+www.sleamcomumnity.ru
 www.tiespecialist.com
+www.thegummybear.com
 www.twopera.net
+www.thefineyounggentleman.com
 www.vc.fastmeets.com
-www.yesiwantit.com
 www.weathe.com
-www.windowserrorhelps.com
 www3.advb9fyxlf2v.com
-www5.advb9fyxlf2v.com
-www7.advb9fyxlf2v.com
-www6.advb9fyxlf2v.com
 www4.advb9fyxlf2v.com
-wx97.com
+www5.advb9fyxlf2v.com
+www.yesiwantit.com
 www69.abab240adfd66ccad.salesforce.news
+www6.advb9fyxlf2v.com
+www.windowserrorhelps.com
+www7.advb9fyxlf2v.com
 xbid.online
-xissidearm.com
 xtfrfdjb.casny.org
+wx97.com
+xissidearm.com
 ykmkr.server-on.net
 yn3344.com
-youtune-xiao.com
 yziagwfy.info
 zippy.a371d0291fdc6e5e0.salesforce.news
 zomnwvhqmw5f7cbap3ycizomnwvhqmw5f7cbap3yci.theplayoftheweek.com
-zzdabaoji.com
 zqwdp.iyuvbogym.com
-acikdeniz-mobilsube-kredi.cf
-71descendant.erinaceuso.ru
-41612dc5.api.microsoft-ns1.com
-bedmantaximan.com
-dnsseed.bitcoin.dashjr.org
-robertjaso.com
-qwwnvw.irevibele.com
-nkrkynwksh.brainylearn.ch
-responsebody8.dzhehant.ru
+dsqagosckj.martfashion.in
+links.detectionrole.one
+qjfokdzhkyjf.com
+o7car.com
+ab.gl
+bafybeiecyu5jykm4nufzctz2elgt6m3j4hxzdjyxlg64mrthpiepgpre3u.ipfs.dweb.link
+mail.ampionsh.monster
+news-heceye.cc
+bdgvocdl.ws
+cassidyday9639.homes
+cxxllsbe.ws
+fgcdjbylba.ws
+fyqtmmo.ws
+youtune-xiao.com
+zzdabaoji.com
 xmzzhxkuznckx.com
-seolto.club
-22197e2a.sarahthelwall.uk
-easynofaxingloans.com
-956507363.tutarama.ru
-45.departments.dhysor.ru
-ascensionmonksurround.com
-bmqgyia.u4tx4qrhnd.dkogar.cl
-mail.waexrsui.monster
-www.news.techmahesh.in
-battlegrounds-kr.co
-595d6534.sarahthelwall.uk
-dominos.bafdili.com
-dramasoloist.com
-mail.surveyextras.email
-ggypg.onderndbe.club
-gitlab.gitlab.git.git.coingeckjo.click
-intentionsplacingextraordinary.com
-mail.improvestore.yachts
-lpukkuvmte.smtpserviceproviders.review
-neighborhoodpassage.com
-us-npjrbi.us
-suqccirvqu.loyaltees.club
-pollingsagacioustopple.com
-www.aprende-ingles-ya.bodybuilding-update.com
 bwhvwcnr.ws
 etwibyh.ws
 gumrrajxhjm.ws
@@ -686,12 +702,12 @@ danalogs.ru.xsph.ru
 scriptslibs.mcdir.me
 plutonglatov.ru.xsph.ru
 apple.gps-33.top
-fjsvowkh.com
 ccvtpoeupldidorkfwdw.com
+fjsvowkh.com
+gjbjyfynihtfnpmi.com
+pgsuheymwaxxtevhinx.com
 ndgkbtdjoxyqah.com
 mifxlympab.com
-pgsuheymwaxxtevhinx.com
-gjbjyfynihtfnpmi.com
 vhdtiyxswqjdw.com
 wtlplyrqrbgp.com
 deibknvgfqyaupr.com
@@ -713,6 +729,11 @@ bertfxxetssggbl.com
 dghnmiauhjoifbxmxl.com
 xtapctoxjpoetylmdn.com
 uuruegdkdnlwc.com
+kudnxj21.top
+kudjcs34.top
+tyslia13.top
+tystne110.top
+tyspsc210.top
 tysyds12.top
 kudhxs35.top
 tysozr11.top
@@ -721,8 +742,6 @@ tysxri32.top
 pabmab02.top
 kudcfe312.top
 kudokq112.top
-tystne110.top
-tyslia13.top
 tysyge28.top
 tystiu56.top
 tyswdf46.top
@@ -746,7 +765,6 @@ tysozc75.top
 tysmxg410.top
 tyskni18.top
 tyslqc71.top
-tyspsc210.top
 tysjoi610.top
 tysqdm47.top
 tysgzr53.top
@@ -782,8 +800,6 @@ tysdyo510.top
 morxpa04.top
 moracd07.top
 kudidn210.top
-kudjcs34.top
-kudnxj21.top
 kudqay33.top
 kudziv29.top
 kudoqw39.top
@@ -819,5 +835,3 @@ isc.net.ua
 audioselec.com
 geringer-muehle.de
 seedhlumening.com
-fortihook.com
-rulescvosher.com

yoroi_malware_level1.ipset

@@ -20,6 +20,7 @@
 5.8.18.245
 5.253.207.185
 5.176.232.124
+8.219.241.83
 31.41.244.167
 31.41.244.158
 31.13.195.81
@@ -168,6 +169,7 @@
 78.163.33.44
 79.127.42.129
 79.19.239.130
+79.61.46.17
 79.110.63.37
 79.137.35.198
 80.121.50.13
@@ -615,6 +617,7 @@
 164.92.152.204
 164.90.222.65
 164.68.99.3
+167.172.112.67
 167.172.106.136
 167.172.199.165
 167.172.253.162

yoroi_malware_level2.ipset

@@ -386,6 +386,15 @@
 5.77.246.6
 8.28.175.67
 8.28.175.69
+8.219.184.159
+8.219.2.107
+8.219.240.36
+8.219.240.56
+8.219.48.172
+8.219.185.150
+8.219.53.166
+8.219.8.72
+8.219.139.54
 8.9.6.214
 8.9.15.46
 8.9.37.214
@@ -575,15 +584,6 @@
 8.215.75.81
 8.212.18.242
 8.212.5.205
-8.219.184.159
-8.219.2.107
-8.219.240.36
-8.219.240.56
-8.219.48.172
-8.219.185.150
-8.219.53.166
-8.219.8.72
-8.219.139.54
 8.242.189.245
 8.20.204.147
 8.133.236.211
@@ -4924,7 +4924,6 @@
 79.234.64.152
 79.179.131.30
 79.179.131.70
-79.61.46.17
 79.26.147.104
 79.58.245.134
 79.58.228.144
@@ -28684,14 +28683,13 @@
 167.99.12.63
 167.99.116.140
 167.172.191.48
-167.172.248.70
-167.172.248.254
-167.172.110.23
 167.172.112.32
-167.172.112.67
 167.172.112.82
 167.172.112.80
 167.172.112.81
+167.172.248.70
+167.172.248.254
+167.172.110.23
 167.172.192.34
 167.172.192.37
 167.172.146.100

yoroi_suspicious_level1.dns

@@ -9,6 +9,184 @@
 # Category        : Suspicious
 # Confidence      : 10
 #
+meta-business-page-19798012.web.app
+dynocheck.info
+cuentasonlineaccessbanking.com
+ibivmhcellmsl.ml
+nnxcom-secure.buzz
+www.ntyhwsz.xyz
+ciudadbanco.ml
+cancel36338658-binance-com.web.app
+ploi-e2247.web.app
+wvvw-banortenx.nnxcom01.buzz
+deutsche-ia.pro
+bussin01225nespge.co.vu
+globaltorwitah22thehblog.online
+11662169keybusnssconfirm.co.vu
+cancel33073932-binance-com.web.app
+nusaspin.co-ud.com
+cancel64470795-binance-com.web.app
+cb.authrecovery.com
+login.tietoervy.com
+lklklklfsobank.com
+connecti0n.cc
+bet5816.com
+1524005confirmpge.co.vu
+chezandchien.com
+apple-id-services.itech-server.us
+opensea.io.offer.cranecare.cl
+conseillercode.blogspot.qa
+conseillercode.blogspot.pe
+conseillercode.blogspot.si
+conseillercode.blogspot.com.ng
+conseillercode.blogspot.my
+conseillercode.blogspot.md
+conseillercode.blogspot.ug
+conseillercode.blogspot.hr
+conseillercode.blogspot.com.eg
+conseillercode.blogspot.is
+conseillercode.blogspot.rs
+conseillercode.blogspot.sn
+conseillercode.blogspot.com.ee
+conseillercode.blogspot.com.uy
+ooko-e35b1.web.app
+www.secure-revoke-web.com
+access-device-request.com
+steanncommuniliy.site
+cancel11202930-binance-com.web.app
+cancel03893688-binance-com.web.app
+ww12dezembroconsultsfast.shop
+rbfcu.olevus.com
+netflix-clone-oo9iq3zxe-mansourov.vercel.app
+meta-mask.co
+sikablabesoinhoo.web.app
+mtb7685779.pages.dev
+bancolombiaco.tu360.repl.co
+business-help-service-7c367.web.app
+reingerta.dz4i6dmjgn-ez94ddnyz4mr.p.temp-site.link
+tracking-infos.com
+410566502445576.ga
+conseillercode.blogspot.cl
+conseillercode.blogspot.com.co
+conseillercode.blogspot.bg
+aonmxcz.shop
+opensea.io.offer.dupplo.cl
+opensea.io.offer.decyd.cl
+deutsche-ac.pro
+group389339.mckz.cf
+discordsafebot.com
+keybnkuplatested.dedyn.io
+ebank.tmpob.com
+www.apple-id-services.itech-server.us
+bimcellbro.net
+bjmcellhaktan.net
+picturenew.b0tnet.com
+www.opensea.io.offer.cranecare.cl
+opensea.io.offer.drcastilloroig.cl
+dcaridting.com
+monsoldeneo.com
+dcaridviong.com
+www.setrebinan.xyz
+dhlhr.webauthor.com
+conseillercode.blogspot.ba
+purchaseevent.xyz
+dcaridmiute.com
+medsmailer.com
+dear-shade-cloud.glitch.me
+mjigosagri.web.app
+oldtimesmc.com
+secvredmtlogin.com
+ww8acessodocliente.shop
+vfffrf.com
+pubgbedavaskin.gq
+tffds.com
+stoppeclan.de
+cancel06912022-binance-com.web.app
+meta-business-page-128902201.web.app
+unl0ckercard.com
+applerecuperacion-mx.in
+snc0cu.com
+kkelw-48169.web.app
+ufaasia365.com
+whats-app-clone--oreolad2.repl.co
+groupwaftogrie.mylogin.tk
+a1b11c13-607a-4ed8-aab5-285d07e7ff95.id.repl.co
+mybtmailx.blogspot.cl
+madouloire.com
+www.ughf.xyz
+www.mivrz.xyz
+upsp.ebo3db5.cn
+www.canpost-adjust.com
+metamaskxx.dedyn.io
+whtappstt.pro
+xybzzbgn.gq
+whtap.pro
+cancel36935767-binance-com.web.app
+cancel70948671-binance-com.web.app
+www.kctfvn.com
+www.etc-meisai.jp.aonmxcz.shop
+1k6.407.workers.dev
+dbs.wdkxge.com
+ios.dookls.tk
+pdfdocument1-9242.web.app
+kdg.doesntexist.com
+freememberfree02.ml
+servicesclientsbe.com
+rakoten.co.ip.eupphyju.ml
+www.portail-assure.fr
+ark-egy.net
+os.aupsd.xyz
+xybzzbgn.tk
+bgeneralfw3com.loginbfwsignin3.repl.co
+fatlurra.com
+centrocliente-web.com
+connecti0n.ch
+opensea.io.bonsavonsoaps.com
+ministeriodapalavra.com
+nitro-free.site
+enforum-yilsonubireyselkampanya-basvur-online.tk
+doroskidorski.com
+confirmdata58213user.shop
+cuentasonlineaccessbanking.top
+nasuacasavcconsulta.com
+utahafcu.dedyn.io
+pancakeswapairpdrop.com
+confirmdata58824user.shop
+dbsgo.top
+tinbinanre.shop
+verypagemanager860818.co.vu
+www.confirmdata58648user.shop
+co.ip.enxazgii.ga
+randolphwted.dedyn.io
+www.pancakzeswap.com
+www.acikdenizmobilv2lz.tk
+www.acikdenizmobilv2lz.ml
+mnb.mobi
+b392spxb.pages.dev
+www.gyvd.xyz
+osmosisbusiness.com
+bafybeieohlo7uztawc4ozexmwj4gawieq2juymsyod2v6ms5tzcnls22ly.ipfs.cf-ipfs.com
+microsoftt.boxmode.io
+www.acikdenizmobilv2l.ml
+missed-parcel-alert.com
+midus-travel.com
+plum-amused-zebra.cyclic.app
+www.3659hh.net
+officehagr5dnhris.edns.biz
+amazonsanfrancisco.com
+cancel24832432-binance-com.web.app
+cancel45018925-binance-com.web.app
+meta-business-page-109678154.web.app
+business-help-service-404c4.web.app
+business-help-service-4213a.web.app
+remondremeserese.web.app
+fb-restriction-case-a8103.web.app
+remondreme.web.app
+cancel62875667-binance-com.web.app
+interruption-paiement-netflix.com
+cancel70447652-binance-com.web.app
+thermovies.com
+www.unisonsouthayr.org.uk
 1devie2o.pages.dev
 metamaskwallejustverify.run.place
 fcsouthwest.com
@@ -19,12 +197,7 @@ ourtime.dashboard-accounts.workers.dev
 microsoft-datamaturity.noisehq.nl
 anzsecure-log.com
 kependable.top
-mjigosagri.web.app
-ww8acessodocliente.shop
-www.unisonsouthayr.org.uk
 instagram-remove.pages.dev
-medsmailer.com
-oldtimesmc.com
 237792366283625.ga
 vddew-a4395.web.app
 problem.co.vu
@@ -490,7 +663,6 @@ aosaeurhsion0093.info
 aosaeurhsion0094.info
 fedex-s.xyz
 chsvrty.link
-secvredmtlogin.com
 nathaliefalconetti.com
 ci1tzn.com
 k5heavy.co.za