CrimeBoss Exploit-Kit Landing/Stats URLs 2013.01.22 - 2013.01.29 CrimeBoss Exploit-Kit Java URLs 2013.01 NOTE: Contains malicious URL which may harm your system. Use with caution. Compiled by @Set_Abominae ------------------------------------------------------------- hxxp://3dvision.com/js/index.php?setup=d - hxxp://50.87.25.110/cb.php - 50.87.25.110 hxxp://61.19.251.27/web/cb.php - 61.19.251.27 hxxp://abovetideinn.com/cb.php - 98.129.229.188 hxxp://abrahamspath.org.uk:3128/cb.php - hxxp://abrahamspath.org.uk/cb.php - hxxp://abrahamspath.org.uk/cb.php - - hxxp://abrahamspath.org.uk/cb.php - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=1048356750 - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=1051380704 - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=1091533740 - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=1144655811 - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=1169482633 - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=123519884 - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=1279232999 - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=1303905428 - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=1519911834 - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=1545895461 - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=1596280139 - hxxp://abrahamspath.org.uk//cb.php?action=jv&h=1596280139 - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=1622879403 - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=163334827 - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=16853233 - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=1736860167 - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=1757049194 - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=1768026977 - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=1855105308 - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=1898203451 - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=1985526682 - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=2115145660 - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=430400368 - - hxxp://abrahamspath.org.uk//cb.php?action=jv&h=430400368 - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=45899262 - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=571249396 - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=643467330 - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=776259118 - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=812138216 - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=844836138 - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=853969747 - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=855924416 - 50.87.25.110 hxxp://abrahamspath.org.uk//cb.php?action=jv&h=977141600 - 50.87.25.110 hxxp://amnd.org:8080/cb.php - hxxp://amnd.org/cb.php - 173.254.16.206 hxxp://argoauto.net//tmp/index-bkp.php?action=jv&h=1139494297 - 206.126.23.100 hxxp://argoauto.net//tmp/index-bkp.php?action=jv&h=1208211359 - 206.126.23.100 hxxp://argoauto.net//tmp/index-bkp.php?action=jv&h=125773864 - 206.126.23.100 hxxp://asaunirg.com.br/js/0day.php - 200.98.196.73 hxxp://asaunirg.com.br/js/0day.php?action=jv - 200.98.196.73 hxxp://bhanusri.com/cb.php - 174.120.129.34 hxxp://boyssuitsonline.com/jex/index.php?action=stats_access - hxxp://boyssuitsonline.com/jex/index.php?action=stats_javaon - hxxp://boyssuitsonline.com/jex/index.php?setup=d - hxxp://boyssuitsonline.com/jex/index.php?setup=d - 199.124.61.230 hxxp://cantinacastro.com.br/jex/index.php?setup=d - 200.98.246.208 hxxp://caragabriel.com/cb.php - hxxp://climalise.fr/jex/cb.php - hxxp://climalise.fr/jex/cb.php - 82.165.114.32 hxxp://climalise.fr/jex/cb.php?action=jv - hxxp://climalise.fr/jex/cb.php?action=jv - 82.165.114.32 hxxp://contadores.cnt.br//ga.php?action=jv&h=1184067557 - 186.202.136.155 hxxp://contadores.cnt.br//ga.php?action=jv&h=2005986438 - 186.202.136.155 hxxp://contadores.cnt.br//ga.php?action=jv&h=670601825 - 186.202.136.155 hxxp://dontsmoke.com.ar/.b/index.php?setup=d - 67.19.197.226 hxxp://madskill.com/jex/cb.php - hxxp://madskill.com//jex/cb.php?action=jv&h=1341680472 - 50.115.112.230 hxxp://madskill.com//jex/cb.php?action=jv&h=1406565207 - 50.115.112.230 Jar exploits (2013.01) ---------------------- hxxp://369solutions.com/phedex/java7.jar?r=1014784 - hxxp://369solutions.com/phedex/java7.jar?r=3D%3D - hxxp://369solutions.com/phedex/pia0.jar - hxxp://50.57.174.76/jmx.jar - hxxp://50.57.174.76/jmx.jar - 50.57.174.76 hxxp://62.129.195.109/jmx.jar - hxxp://62.129.195.109/jmx.jar - 10.5.17.10 hxxp://62.129.195.109/jmx.jar - - hxxp://62.129.195.109/jmx.jar - 62.129.195.109 hxxp://62.129.195.109/jmx.jar - 62.129.195.109 hxxp://asaunirg.com.br/js/pka1.jar - hxxp://bcozindia.com/css/jar/amor1.jar - hxxp://bostondefender.org/jex/java7.jar - hxxp://boyssuitsonline.com/jex/java7.jar - hxxp://boyssuitsonline.com/jex/java7.jar - 199.124.61.230 hxxp://caragabriel.com/jex/amor1.jar - hxxp://caragabriel.com/jex/amor1.jar - 210.8.75.29 hxxp://caragabriel.com/jex.java7.jar - hxxp://caragabriel.com/jex/java7.jar - 210.8.75.29 hxxp://caragabriel.com/jex/java7.jar?r=438401 - 210.8.75.29 hxxp://caragabriel.com/jex/java7.jar?r=967471 - hxxp://ccesavannah.org/app/amor1.jar - hxxp://ccesavannah.org/app/java7.jar?r=181886 - 72.167.232.11 hxxp://ccesavannah.org/app/jmx.jar?r=394555 - hxxp://danieldelaney.com/jex/amor1.jar - hxxp://danieldelaney.com/jex/amor1.jar - hxxp://danieldelaney.com/jex/amor1.jar - 173.236.175.34 hxxp://danieldelaney.com/jex/java7.jar - 173.236.175.34 hxxp://danieldelaney.com/jex/java7.jar?r=1030509 - 173.236.175.34 hxxp://danieldelaney.com/jex/java7.jar?r=121239 - 173.236.175.34 hxxp://danieldelaney.com/jex/java7.jar?r=277953 - 173.236.175.34 hxxp://danieldelaney.com/jex/java7.jar?r=293598 - 173.236.175.34 hxxp://danieldelaney.com/jex/java7.jar?r=311704 - hxxp://danieldelaney.com/jex/java7.jar?r=331451 - 173.236.175.34 hxxp://danieldelaney.com/jex/java7.jar?r=337933 - 173.236.175.34 hxxp://danieldelaney.com/jex/java7.jar?r=352690 - hxxp://danieldelaney.com/jex/java7.jar?r=366700 - hxxp://danieldelaney.com/jex/java7.jar?r=420588 - 173.236.175.34 hxxp://danieldelaney.com/jex/java7.jar?r=460094 - 173.236.175.34 hxxp://danieldelaney.com/jex/java7.jar?r=464281 - 173.236.175.34 hxxp://danieldelaney.com/jex/java7.jar?r=495945 - hxxp://danieldelaney.com/jex/java7.jar?r=507561 - 173.236.175.34 hxxp://danieldelaney.com/jex/java7.jar?r=536697 - hxxp://danieldelaney.com/jex/java7.jar?r=586578 - 173.236.175.34 hxxp://danieldelaney.com/jex/java7.jar?r=592034 - hxxp://danieldelaney.com/jex/java7.jar?r=626015 - 173.236.175.34 hxxp://danieldelaney.com/jex/java7.jar?r=626925 - hxxp://danieldelaney.com/jex/java7.jar?r=686007 - 173.236.175.34 hxxp://danieldelaney.com/jex/java7.jar?r=700404 - 173.236.175.34 hxxp://danieldelaney.com/jex/java7.jar?r=883160 - hxxp://danieldelaney.com/jex/java7.jar?r=979443 - hxxp://danieldelaney.com/jex/javab.jar?r=132103 - hxxp://danieldelaney.com/jex/javab.jar?r=142579 - 173.236.175.34 hxxp://danieldelaney.com/jex/javab.jar?r=287092 - 173.236.175.34 hxxp://danieldelaney.com/jex/javab.jar?r=413396 - hxxp://danieldelaney.com/jex/javab.jar?r=546281 - hxxp://danieldelaney.com/jex/javab.jar?r=750394 - 173.236.175.34 hxxp://danieldelaney.com/jex/javab.jar?r=754887 - hxxp://danieldelaney.com/jex/javab.jar?r=786885 - 173.236.175.34 hxxp://danieldelaney.com/jex/javab.jar?r=927846 - hxxp://danieldelaney.com/jex/javab.jar?r=970457 - 173.236.175.34 hxxp://jennifersjazzitup.com/app/amor1.jar - hxxp://jennifersjazzitup.com/app/amor1.jar - 69.89.31.191 hxxp://jennifersjazzitup.com/app/java7.jar?r=1030358 - hxxp://jennifersjazzitup.com/app/java7.jar?r=139698 - hxxp://jennifersjazzitup.com/app/java7.jar?r=189114 - hxxp://jennifersjazzitup.com/app/java7.jar?r=192540 - hxxp://jennifersjazzitup.com/app/java7.jar?r=303385 - 69.89.31.191 hxxp://jennifersjazzitup.com/app/java7.jar?r=356150 - hxxp://jennifersjazzitup.com/app/java7.jar?r=366948 - hxxp://jennifersjazzitup.com/app/java7.jar?r=413862 - 69.89.31.191 hxxp://jennifersjazzitup.com/app/java7.jar?r=459795 - 69.89.31.191 hxxp://jennifersjazzitup.com/app/java7.jar?r=623160 - 69.89.31.191 hxxp://jennifersjazzitup.com/app/java7.jar?r=688750 - 69.89.31.191 hxxp://jennifersjazzitup.com/app/java7.jar?r=824922 - 69.89.31.191 hxxp://jennifersjazzitup.com/app/java7.jar?r=872140 - 69.89.31.191 hxxp://jennifersjazzitup.com/app/jmx.jar?r=1002373 - hxxp://jennifersjazzitup.com/app/jmx.jar?r=101033 - 69.89.31.191 hxxp://jennifersjazzitup.com/app/jmx.jar?r=1041087 - hxxp://jennifersjazzitup.com/app/jmx.jar?r=125234 - hxxp://jennifersjazzitup.com/app/jmx.jar?r=149616 - hxxp://jennifersjazzitup.com/app/jmx.jar?r=353943 - 69.89.31.191 hxxp://jennifersjazzitup.com/app/jmx.jar?r=402091 - 69.89.31.191 hxxp://jennifersjazzitup.com/app/jmx.jar?r=414321 - hxxp://jennifersjazzitup.com/app/jmx.jar?r=695418 - 69.89.31.191 hxxp://jennifersjazzitup.com/app/jmx.jar?r=701797 - hxxp://jennifersjazzitup.com/app/jmx.jar?r=753040 - hxxp://jennifersjazzitup.com/app/jmx.jar?r=847209 - 69.89.31.191 hxxp://jennifersjazzitup.com/app/jmx.jar?r=917086 - 69.89.31.191 hxxp://kimpaland.net/app/amor1.jar - hxxp://kimpaland.net/app/java7.jar?r=297788 - hxxp://kimpaland.net/app/java7.jar?r=793600 - hxxp://kimpaland.net/app/jmx.jar?r=513215 - hxxp://kimpaland.net/app/jmx.jar?r=777295 - 210.172.144.10 hxxp://launafauna.com/app/amor1.jar - hxxp://launafauna.com/app/amor1.jar - hxxp://launafauna.com/app/java7.jar?r=1021146 - 69.163.180.191 hxxp://launafauna.com/app/java7.jar?r=105590 - 69.163.180.191 hxxp://launafauna.com/app/java7.jar?r=1092899 - hxxp://launafauna.com/app/java7.jar?r=184347 - 69.163.180.191 hxxp://launafauna.com/app/java7.jar?r=199481 - 69.163.180.191 hxxp://launafauna.com/app/java7.jar?r=252907 - hxxp://launafauna.com/app/java7.jar?r=339971 - 69.163.180.191 hxxp://launafauna.com/app/java7.jar?r=373226 - hxxp://launafauna.com/app/java7.jar?r=394581 - 69.163.180.191 hxxp://launafauna.com/app/java7.jar?r=483932 - hxxp://launafauna.com/app/java7.jar?r=483932 - 69.163.180.191 hxxp://launafauna.com/app/java7.jar?r=492866 - hxxp://launafauna.com/app/java7.jar?r=499777 - hxxp://launafauna.com/app/java7.jar?r=552927 - 69.163.180.191 hxxp://launafauna.com/app/java7.jar?r=689490 - 69.163.180.191 hxxp://launafauna.com/app/java7.jar?r=707681 - 69.163.180.191 hxxp://launafauna.com/app/java7.jar?r=722837 - 69.163.180.191 hxxp://launafauna.com/app/java7.jar?r=753318 - hxxp://launafauna.com/app/java7.jar?r=910324 - hxxp://launafauna.com/app/java7.jar?r=911319 - hxxp://launafauna.com/app/java7.jar?r=965477 - hxxp://launafauna.com/app/java7.jar?r=987965 - 69.163.180.191 hxxp://launafauna.com/app/jmx.jar?r=1019545 - hxxp://launafauna.com/app/jmx.jar?r=1046945 - hxxp://launafauna.com/app/jmx.jar?r=1046945 - 69.163.180.191 hxxp://launafauna.com/app/jmx.jar?r=1056425 - hxxp://launafauna.com/app/jmx.jar?r=1063899 - 69.163.180.191 hxxp://launafauna.com/app/jmx.jar?r=1082691 - hxxp://launafauna.com/app/jmx.jar?r=148948 - hxxp://launafauna.com/app/jmx.jar?r=154238 - hxxp://launafauna.com/app/jmx.jar?r=258218 - 69.163.180.191 hxxp://launafauna.com/app/jmx.jar?r=272383 - 69.163.180.191 hxxp://launafauna.com/app/jmx.jar?r=308555 - hxxp://launafauna.com/app/jmx.jar?r=308555 - 69.163.180.191 hxxp://launafauna.com/app/jmx.jar?r=315648 - 69.163.180.191 hxxp://launafauna.com/app/jmx.jar?r=351501 - 69.163.180.191 hxxp://launafauna.com/app/jmx.jar?r=431569 - hxxp://launafauna.com/app/jmx.jar?r=452749 - hxxp://launafauna.com/app/jmx.jar?r=494218 - hxxp://launafauna.com/app/jmx.jar?r=627960 - hxxp://launafauna.com/app/jmx.jar?r=649600 - hxxp://launafauna.com/app/jmx.jar?r=744585 - hxxp://launafauna.com/app/jmx.jar?r=789614 - hxxp://launafauna.com/app/jmx.jar?r=805383 - 69.163.180.191 hxxp://launafauna.com/app/jmx.jar?r=820154 - hxxp://launafauna.com/app/jmx.jar?r=858825 - hxxp://launafauna.com/app/jmx.jar?r=884944 - 69.163.180.191 hxxp://launafauna.com/app/jmx.jar?r=893785 - hxxp://launafauna.com/app/jmx.jar?r=950173 - hxxp://subzero.co.uk/get/amor1.jar - hxxp://subzero.co.uk/get/amor1.jar - hxxp://subzero.co.uk/get/amor1.jar - 94.136.34.148 hxxp://subzero.co.uk/get/app/amor1.jar - hxxp://subzero.co.uk/get/app/jmx.jar?r=245558 - 94.136.34.148 hxxp://subzero.co.uk/get/app/jmx.jar?r=368450 - 94.136.34.148 hxxp://subzero.co.uk/get/app/jmx.jar?r=466526 - 94.136.34.148 hxxp://subzero.co.uk/get/app/jmx.jar?r=649439 - 94.136.34.148 hxxp://subzero.co.uk/get/app/jmx.jar?r=649503 - 94.136.34.148 hxxp://subzero.co.uk/get/app/jmx.jar?r=831396 - hxxp://subzero.co.uk/get/app/jmx.jar?r=842391 - hxxp://subzero.co.uk/get/app/jmx.jar?r=879716 - hxxp://subzero.co.uk/get/app/jmx.jar?r=930468 - hxxp://subzero.co.uk/get/jmx.jar?r=1010536 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=1022737 - hxxp://subzero.co.uk/get/jmx.jar?r=1032544 - hxxp://subzero.co.uk/get/jmx.jar?r=1038585 - hxxp://subzero.co.uk/get/jmx.jar?r=1051783 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=1068777 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=1078085 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=1081248 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=108149 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=1083726 - hxxp://subzero.co.uk/get/jmx.jar?r=1088178 - hxxp://subzero.co.uk/get/jmx.jar?r=1092455 - hxxp://subzero.co.uk/get/jmx.jar?r=1095701 - hxxp://subzero.co.uk/get/jmx.jar?r=112824 - hxxp://subzero.co.uk/get/jmx.jar?r=135417 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=154321 - hxxp://subzero.co.uk/get/jmx.jar?r=212020 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=231235 - hxxp://subzero.co.uk/get/jmx.jar?r=248275 - hxxp://subzero.co.uk/get/jmx.jar?r=258042 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=263636 - hxxp://subzero.co.uk/get/jmx.jar?r=263636 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=278009 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=306652 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=329450 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=332812 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=362140 - hxxp://subzero.co.uk/get/jmx.jar?r=362447 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=363954 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=408471 - hxxp://subzero.co.uk/get/jmx.jar?r=409892 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=431612 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=440306 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=458071 - hxxp://subzero.co.uk/get/jmx.jar?r=458775 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=471671 - hxxp://subzero.co.uk/get/jmx.jar?r=473489 - hxxp://subzero.co.uk/get/jmx.jar?r=475759 - hxxp://subzero.co.uk/get/jmx.jar?r=476838 - hxxp://subzero.co.uk/get/jmx.jar?r=492814 - hxxp://subzero.co.uk/get/jmx.jar?r=496351 - hxxp://subzero.co.uk/get/jmx.jar?r=498601 - hxxp://subzero.co.uk/get/jmx.jar?r=511447 - hxxp://subzero.co.uk/get/jmx.jar?r=545980 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=546137 - hxxp://subzero.co.uk/get/jmx.jar?r=546610 - hxxp://subzero.co.uk/get/jmx.jar?r=555162 - hxxp://subzero.co.uk/get/jmx.jar?r=593149 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=625982 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=651428 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=654721 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=686525 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=701540 - hxxp://subzero.co.uk/get/jmx.jar?r=730882 - hxxp://subzero.co.uk/get/jmx.jar?r=740412 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=769418 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=773223 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=802132 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=805696 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=838814 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=865427 - hxxp://subzero.co.uk/get/jmx.jar?r=872467 - hxxp://subzero.co.uk/get/jmx.jar?r=889696 - hxxp://subzero.co.uk/get/jmx.jar?r=898142 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=933714 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=956959 - hxxp://subzero.co.uk/get/jmx.jar?r=962418 - hxxp://subzero.co.uk/get/jmx.jar?r=965076 - hxxp://subzero.co.uk/get/jmx.jar?r=974930 - 94.136.34.148 hxxp://subzero.co.uk/get/jmx.jar?r=975957 - ---- #malwareMustDie Compiled by @Set_Abominae