Add new entries

Including an update on blocklistproject/Lists#933 Fix brave/adblock-lists#1025, brave/adblock-lists#901
iam-py-test · Feb 17, 2023 · 3a7d6d6 · 3a7d6d6
1 parent 8f1e99f
commit 3a7d6d6
Show file tree

Hide file tree

Showing 3 changed files with 58 additions and 73 deletions.
diff --git a/anti-redirectors.txt b/anti-redirectors.txt
@@ -295,4 +295,10 @@
 ||eepurl.com^$document
 
 ! https://disq.us/url?url=https%3A%2F%2Fhaveibeenpwned.uservoice.com%2Fforums%2F275398-general%2Fsuggestions%2F6774229-enable-search-and-notifications-for-email-addresse%3A-QlNycBH52QjExviPImrJWl8-2Q&cuid=621325
-||disq.us/url$document
+||disq.us/url$document
+
+! https://github.com/brave/adblock-lists/issues/1025
+||adfoc.us/serve/sitelinks/$document
+
+! https://github.com/brave/adblock-lists/issues/901
+||tradedoubler.com/click$document
diff --git a/antimalware.txt b/antimalware.txt
@@ -2,8 +2,8 @@
 ! Title: The malicious website blocklist
 ! Homepage: https://github.com/iam-py-test/my_filters_001
 ! Expires: 1 day
-! Last updated: 15/2/2023
-! Version: 1522023-3
+! Last updated: 16/2/2023
+! Version: 1622023-1
 ! Description: This list aims to protect against scams, phishing, malware, and *some* cryptominers. This list also includes a version of vxvault.net's list, modified by me to work in adblockers
 ! Special thanks to all of the people who have helped me maintain this list! Check out https://github.com/iam-py-test/my_filters_001/blob/main/CONTRIBUTORS.md
 ! Issues url: https://github.com/iam-py-test/my_filters_001/issues
@@ -99,13 +99,6 @@
 ! https://sitecheck.sucuri.net/results/3overpar.com
 ||3overpar.com^$all
 
-! https://www.fortinet.com/blog/threat-research/another-bitcoin-exchange-scam-this-time-live-on-youtube
-! https://www.virustotal.com/gui/url/6fa027286c324e76d56a0144122699600f4c654870f1f6b6ee15b67d009ebda9/detection
-! https://safeweb.norton.com/report/show?url=cham-event.com
-! https://www.siteadvisor.com/sitereport.html?url=cham-event.com
-! https://github.com/VernonStow/Filterlist/issues/3
-||cham-event.com^$all
-
 ! https://www.siteadvisor.com/sitereport.html?url=microsoft.com-repair-windows.live
 ! https://www.fortiguard.com/webfilter?q=microsoft.com-repair-windows.live&version=8
 ! https://safeweb.norton.com/report/show_mobile?name=microsoft.com-repair-windows.live
@@ -202,13 +195,6 @@
 ! https://safeweb.norton.com/report/show?url=alertreceived.com
 ! https://sitecheck.sucuri.net/results/alertreceived.com
 ||alertreceived.com^$all
-! https://labs.sucuri.net/signatures/sitecheck/malware-mobile/
-! https://www.virustotal.com/gui/url/bf977a47c0d4dc1a4aab09b82c3fccafa2d40d4dd36589bc4769851e087df164/detection
-! https://www.fortiguard.com/webfilter?q=tizermedias.com
-! https://www.urlvoid.com/scan/tizermedias.com/
-! https://safeweb.norton.com/report/show?url=tizermedias.com
-! https://sitecheck.sucuri.net/results/tizermedias.com
-||tizermedias.com^$all
 
 ! https://labs.sucuri.net/signatures/sitecheck/malware-redkit/
 ! https://www.virustotal.com/gui/url/26a7a5909ca372bc57d68df966fc03b887451a7cf8ae58c5cea92639b4ce2594/detection
@@ -656,13 +642,6 @@
 ! https://www.fortiguard.com/webfilter?q=caution-verification.com
 ||security.hsbc.caution-verification.com^$all
 ||caution-verification.com^$all
-! https://www.virustotal.com/gui/url/f666769f89fd7da923815dd4d19825096ff0791e464a769802fc057002f565e1/detection
-! https://transparencyreport.google.com/safe-browsing/search?url=pendinghmrc-uk-taxrebate.com
-! https://www.siteadvisor.com/sitereport.html?url=pendinghmrc-uk-taxrebate.com
-! https://www.fortiguard.com/webfilter?q=pendinghmrc-uk-taxrebate.com
-! https://safeweb.norton.com/report/show?url=pendinghmrc-uk-taxrebate.com
-! https://sitecheck.sucuri.net/results/pendinghmrc-uk-taxrebate.com
-||pendinghmrc-uk-taxrebate.com^$all
 ! https://www.virustotal.com/gui/url/f25e5122f4425bfc759c1400ecd02d43b9fea93284b418eb82cfd5be230aabab/detection
 ! https://www.fortiguard.com/webfilter?q=lloydsbank.online-login-personal-validation.com
 ! https://safeweb.norton.com/report/show?url=lloydsbank.online-login-personal-validation.com
@@ -671,10 +650,6 @@
 ! https://www.fortiguard.com/webfilter?q=online-login-personal-validation.com
 ! https://safeweb.norton.com/report/show?url=online-login-personal-validation.com
 ||online-login-personal-validation.com^$all
-! https://www.virustotal.com/gui/url/a8ba52a7b7aedf4a7ae4ae18a181dc35faefc09313ef0385e169bb194dbb05f0/detection
-! https://safeweb.norton.com/report/show?url=ru.cam.exposed
-||ru.cam.exposed^$document
-!||cam.exposed^$document
 ! https://www.fortiguard.com/webfilter?q=ibijbdtajblkrwhlzxrttmsmwxxikhjudpty-dot-cryptic-now-290917.ey.r.appspot.com
 ! https://safeweb.norton.com/report/show?url=ibijbdtajblkrwhlzxrttmsmwxxikhjudpty-dot-cryptic-now-290917.ey.r.appspot.com
 ! https://www.virustotal.com/gui/url/4680926546c96d50bbacf5da0bcc44d988b9a44ce2fa4633f15ce1012df39aef/detection
@@ -726,20 +701,8 @@
 ! https://www.phishtank.com/phish_detail.php?phish_id=7185178&frame=details
 ! https://www.virustotal.com/gui/url/77bc5e232026a48aacfb3da894d8f2109c3bd4fa1cab6033065da2dcdf66ceb2/detection
 ||myparcel-uk.com^$all
-! https://twitter.com/PhishStats/status/1405997606048776200
-! https://www.virustotal.com/gui/url/c393404139a6a1f3b01c2c0c01e5379e416e30026b5b89c00c031d40dada25b6/detection
-! https://www.phishtank.com/phish_detail.php?phish_id=7184519
-! https://www.siteadvisor.com/sitereport.html?url=robloxaaa1.000webhostapp.com
-! https://www.fortiguard.com/webfilter?q=robloxaaa1.000webhostapp.com
-! https://safeweb.norton.com/report/show?url=robloxaaa1.000webhostapp.com
-! https://sitecheck.sucuri.net/results/robloxaaa1.000webhostapp.com
-||robloxaaa1.000webhostapp.com^$all
 ! https://www.siteadvisor.com/sitereport.html?url=145.14.144.143
 ||145.14.144.143^$all
-! https://www.virustotal.com/gui/ip-address/145.14.144.143/relations
-! https://www.virustotal.com/gui/url/0b19917061092ed66e7566f9b3896951d38567225a26900b2a53ee767d8256c0/detection
-! https://www.siteadvisor.com/sitereport.html?url=siteseguriry899912.000webhostapp.com
-||siteseguriry899912.000webhostapp.com^$all
 ! https://twitter.com/PhishStats/status/1405952013272338437
 ! https://www.virustotal.com/gui/url/54453ba9b9804aa096ed962037276fc8629c1324891988e30b1221ef62f5b333/detection
 ! https://www.siteadvisor.com/sitereport.html?url=bancaporintrnetibk.com
@@ -892,17 +855,6 @@
 ||trafficads10.com^$all
 
 ! https://blog.sucuri.net/2020/11/css-js-steganography-in-fake-flash-player-update-malware.html
-! TODO: Add all the remaining domains
-! https://www.virustotal.com/gui/url/e3835e03fc73fa04435c889eabc638a1f0246c1f4e526b8dacef60be6f5bfdcf/detection
-! https://www.siteadvisor.com/sitereport.html?url=polobear.shop
-! https://safeweb.norton.com/report/show?url=polobear.shop
-! https://sitecheck.sucuri.net/results/polobear.shop
-||polobear.shop^$all
-! https://www.virustotal.com/gui/url/2c7a40ad0605895f582c89fe7e961838bdb7e86a5c8fbdbfe2a8bab73bbe77eb/detection
-! https://www.siteadvisor.com/sitereport.html?url=Techvita.biz
-! https://www.fortiguard.com/webfilter?q=Techvita.biz
-! https://safeweb.norton.com/report/show?url=Techvita.biz
-||techvita.biz^$all
 ! https://www.virustotal.com/gui/url/f699dcdeb08beed19ad901b4e1701c6e4715e5951131091be36baaede64c0567/detection
 ! https://www.fortiguard.com/webfilter?q=priangan.com
 ! https://safeweb.norton.com/report/show?url=priangan.com
@@ -1177,8 +1129,6 @@
 ||sxamp.uno^$all
 ! https://www.virustotal.com/gui/url/d3ddac0ecdfe8b9dd18930728246c4fdbfb069a72c62aa768faf0e0acfcdf43b/detection
 ||sxdmp.uno^$all
-! https://www.virustotal.com/gui/url/0bbea5497118ba82554e4b22abb48d64b50082ed7db6e3d51512328e246eaab0/detection
-||sxcad.uno^$all
 ! https://www.virustotal.com/gui/url/9bf8ecb1ca2774844e52f27dd8e8b6eec55830a0d0a36eefa15b6d23379a16b1/detection
 ||shopstatanalytics.store^$all
 ! https://www.virustotal.com/gui/url/5c8e526ababc2b81d9eff504c74a331bf722fae49b5fd26be45dfe3522f99806/detection
@@ -1213,16 +1163,6 @@
 ! https://sitecheck.sucuri.net/results/fly-analytics.com
 ||fly-analytics.com^$all
 
-! https://blog.quttera.com/post/malware-analysis-of-the-infection-injected-via-security-vulnerability-of-tagdiv-themes-and-ultimate-member-plugins/
-! https://www.virustotal.com/gui/url/4df31a15f0a3f4634be6012942aa0ff8ae483188241eaf06286aae486cb526db/detection
-! https://www.fortiguard.com/webfilter?q=murieh.space
-! https://safeweb.norton.com/report/show?url=murieh.space
-! https://sitecheck.sucuri.net/results/murieh.space
-||murieh.space^$all
-! https://www.virustotal.com/gui/url/bd31ce03ad12818ec71d76eb570e6fc97850726502be00cd2b419cf8edd1bc6e/detection
-! https://sitecheck.sucuri.net/results/polonofiex.ga
-||polonofiex.ga/sim.js$all
-
 ! https://www.virustotal.com/gui/user/Placebo
 ! https://www.virustotal.com/gui/file/3ff26dfe049d6ea2d608eaf0914e527a798ae018e3918b9d1f025ca47700cb6f/community
 ! https://www.virustotal.com/gui/domain/thoughtplus.in/community
@@ -1299,13 +1239,6 @@
 ! https://www.mywot.com/scorecard/private-message.live
 ||private-message.live^$document
 
-! https://www.bleepingcomputer.com/virus-removal/remove-annual-visitor-survey
-! https://www.siteadvisor.com/sitereport.html?url=sayhitome10.live
-! https://safeweb.norton.com/report/show?url=sayhitome10.live
-! https://www.virustotal.com/gui/url/5ee345db5ee6ba868a62cae23025a6efcf3d41d5214627ddcd4b86be7fae7b49/detection
-! https://www.bleepingcomputer.com/virus-removal/remove-chrome-search-contest-2020-scam
-||sayhitome10.live^$all
-
 ! https://blog.malwarebytes.com/a-week-in-security/2021/06/a-week-in-security-june-21-2021-june-27-2021/
 ! https://www.virustotal.com/gui/url/d668d18f1cd3b32eea6d717af4655a7e511d5b92403ed71a66d366a4c971c826/detection
 ! https://www.siteadvisor.com/sitereport.html?url=desktop-signal.digital
@@ -1344,8 +1277,6 @@
 ! https://www.fortiguard.com/webfilter?q=raw.githack.xyz
 ! https://safeweb.norton.com/report/show?url=raw.githack.xyz
 ||raw.githack.xyz^$all
-! https://www.virustotal.com/gui/url/aa8a6f8ddccd64d15b3e1a23c74271515af0d38b8c0fc130345464812439240d/detection
-||rawcdn.githack.com/yfaOp/BEFzQ/7d0f5914392dc9688c67a2118aefafc958cb53b2/1505164.jpg$all
 
 ! https://blog.malwarebytes.com/a-week-in-security/2021/06/a-week-in-security-june-21-2021-june-27-2021/
 ! https://blogs.blackberry.com/en/2021/06/pysa-loves-chachi-a-new-golang-rat
@@ -10851,7 +10782,7 @@
 ! https://twitter.com/malwrhunterteam/status/1579793270959636480
 ||micrsoft-covid-19-login.web.app^$all
 
-! https://forums.malwarebytes.com/topic/291124-annouing-message-every-30-sec-potential-threat-blocked-plz-help/
+! https://forums.malwarebytes.com/topic/291124-annouing-message-every-30-sec-potential-threat-blocked-plz-help/ (and many others)
 ||34.80.59.191^$all
 
 ! https://twitter.com/GossiTheDog/status/1582690317886578688
@@ -13260,6 +13191,48 @@
 ||v1asy4ncr.click^$all
 ||p5tvhrlw30h.click^$all
 ||8narwi309.click^$all
+||sbjjzdwqg41ps.click^$all
+
+! https://www.virustotal.com/gui/url/90ec9d3b01d045ba7917ba09722d9063803cf318d08de907e77d421800ed1cc4/community
+! (my analysis) https://app.any.run/tasks/f14b7082-e3b1-4a98-84fc-e3c5e3d3b35c
+||s44-fhvb.web.app^$all
+
+! https://app.any.run/tasks/77b6a223-4c81-4798-9dc0-a747de6e0f6d
+||crackshash.com^$document
+||shgsdhfsdfbbe5.monster^$document
+||czgovd.com^$all
+||pufgilsofp.sbs^$all
+||bstnwswrld.com^$document
+||news-wobuda.com^$all
+||ztzguv.com^$all
+||thbstvd.com^$all
+||notyfrom.info^$document
+||flymylife.info^$all
+||ms-82.flymylife.info^$all
+||ms-52.flymylife.info^$all
+||54trck.xyz^$all
+||cxvfh.gesgloven.com^$all
+||jorjfordmust.sbs^$all
+
+! https://app.any.run/tasks/f03aaba8-7c21-4316-a6db-cbb9bdbb1db6
+! https://app.any.run/tasks/d142bf7d-0363-4bf2-9795-66423bbc9eac
+||origincrack.com^$all
+||uerqelim91ut.click^$all
+||klwukospapf.click^$all
+||9bghqk3avg2gnh.click^$all
+||6t09fag307ep.click^$all
+||bit.ly/3S7o1VK^$all
+||mega.nz/file/5w4QWZCR#pYyDSqxzjS4LzhLW9ZYvAWzxhuM3rPGh0wl7r64tDLs^$all
+! https://tria.ge/230216-sgsz3shg3w/behavioral2
+! https://threatfox.abuse.ch/ioc/1077934/
+||83.217.11.27^$all
+! https://threatfox.abuse.ch/ioc/847757/
+||77.73.134.24^$all
+! https://www.virustotal.com/gui/ip-address/77.73.134.35/relations
+||77.73.134.35^$all
+! https://twitter.com/TrackerC2Bot/status/1620944031030075392
+! https://threatfox.abuse.ch/ioc/1077935/
+||83.217.11.28^$all
 
 ! ----- Scams -----
 

diff --git a/personal/iam-py-test.txt b/personal/iam-py-test.txt
@@ -4,6 +4,8 @@
 
 ! copied/stole from uBlock Origin Annoyances to get rid of the annoying "add redirect on right click" thing
 www.google.*##+js(set-constant, rwt, noopFunc)
+! https://github.com/easylist/easylist/issues/14891
+||google.*/url?*source=$ping
 
 ! created by DandelionSprout to make browsing Legit URL easier
 github.com##html:has(meta[content$="/DandelionSprout/adfilt/discussions/163"]) .js-timeline-item > .TimelineItem > div[id^=discussioncomment-]:has-text(/I have fixed it in |This has been fixed in /) .timeline-comment:style(background-color: #cee4c5 !important)
@@ -38,6 +40,9 @@ ipvoid.com###sticky-banner
 ! reddit
 reddit.com##span:has(#COIN_PURCHASE_DROPDOWN_ID)
 
+! https://github.com/uBlockOrigin/uAssets/issues/16689
+virustotal.com##.alert-info
+
 ! ---- cookie banners ----
 sitecheck.sucuri.net##.p-0.hide.cookie-policy-banner.container-fluid
 mywot.com##[class*="StyledCookiesConsent__CookiesConsentContainer-"]
@@ -55,6 +60,7 @@ mywot.com##[class*="StyledCookiesConsent__CookiesConsentContainer-"]
 ||stopify.co^$all
 ||grabify.world^$all
 ||adf.ly^$all
+||taboola.com^$all
 
 ! ---- suspected malware ----
 ||inghesatin.com^$all