http://support.clean-mx.de/clean-mx/rss?scope=viruses http://support.clean-mx.de/clean-mx/viruses?id=11102972 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=11102972 2013-05-17T19:40:03+02:00 first: 1368812403
last: 0
md5: 398fad94657bdf663c58e82855939a2d
virustotal: http://www.virustotal.com/latest-report.html?resource=398fad94657bdf663c58e82855939a2d
vt_score: 5/47 (10.6%)
scanner: avira
virusname: TR/Crypt.ZPACK.Gen2
url: http://audpuu5b.zeqromoj.ru/rasta01.exe
recent: up
response: alive
ip: 89.28.117.143
as: AS31252
review: 31.63.185.80
domain: zeqromoj.ru
country: PL
source: RIPE
email: abuse@centertel.pl
inetnum: 89.28.0.0 - 89.28.127.255
netname: PL-IDEA-DSL
descr: PTK CENTERTEL mobile data services
ns1: ns5.zeqromoj.ru
ns2: ns4.zeqromoj.ru
ns3: ns3.zeqromoj.ru
ns4: ns6.zeqromoj.ru
ns5: ns2.zeqromoj.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=11102970 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=11102970 2013-05-17T19:40:02+02:00 first: 1368812402
last: 0
md5: 0256065b55d537283e6f9246abb80b51
virustotal: http://www.virustotal.com/latest-report.html?resource=0256065b55d537283e6f9246abb80b51
vt_score: 2/35 (5.7%)
scanner: Ikarus
virusname: Trojan.Win32.Madon
url: http://94.242.198.64/4/hh.exe
recent: up
response: alive
ip: 94.242.198.64
as: AS5577
review: 94.242.198.64
domain: 94.242.198.64
country: LU
source: RIPE
email: abuse@as5577.net
inetnum: 94.242.192.0 - 94.242.223.255
netname: ROOT-NETWORK
descr: root SA
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=11102143 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=11102143 2013-05-17T19:00:11+02:00 first: 1368810011
last: 0
md5: 84103fd3c2de2fc3224404cc11192313
virustotal: http://www.virustotal.com/latest-report.html?resource=84103fd3c2de2fc3224404cc11192313
vt_score: 11/36 (30.6%)
scanner: avira
virusname: TR/Dropper.Gen
url: http://46.118.212.108/traff01.exe
recent: up
response: alive
ip: 46.118.212.108
as: AS12530
review: 46.118.212.108
domain: 46.118.212.108
country: UA
source: RIPE
email: security@svitonline.com
inetnum: 46.118.0.0 - 46.119.255.255
netname: UA-SVITONLINE-20100517
descr: GoldenTelecom LLC
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=11089578 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=11089578 2013-05-17T09:40:43+02:00 first: 1368776443
last: 0
md5: 442797fe7ddeb9e2e2e1457845cba395
virustotal: http://www.virustotal.com/latest-report.html?resource=442797fe7ddeb9e2e2e1457845cba395
vt_score: 16/36 (44.4%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Scar
url: http://filesx.hi2.ro/uploads/geloyun.exe
recent: up
response: alive
ip: 89.40.156.12
as: AS9050
review: 89.40.156.12
domain: hi2.ro
country: ro
source: RIPE
email: Honoriu.Lazar@telemobil.ro
inetnum: 89.40.128.0 - 89.40.191.255
netname: TELEMOBIL-SA
descr: Telemobil S.A.Calea Bucuresti, nr. 2B bis,Balotesti, Jud Ilfov, RomaniaTELEMOBIL S.A.Calea Bucuresti, nr. 2B bis, Balotesti, Ilfov, Romania
ns1: ns2.hi2.ro
ns2: ns3.hi2.ro
ns3: ns4.hi2.ro
ns4: ns1.hi2.ro
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=11058971 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=11058971 2013-05-16T18:00:05+02:00 first: 1368720005
last: 0
md5: f1f2d871dc81312c5bb017561a52e8cc
virustotal: http://www.virustotal.com/latest-report.html?resource=f1f2d871dc81312c5bb017561a52e8cc
vt_score: 11/46 (23.9%)
scanner: undef
virusname: Suspicious file
url: http://vlcplayer.info/t/pri_s10_UPX.exe
recent: up
response: alive
ip: 141.101.117.179
as: AS13335
review: 141.101.117.179
domain: vlcplayer.info
country: EU
source: RIPE
email:
inetnum: 141.101.64.0 - 141.101.127.255
netname:
descr:
ns1: cody.ns.cloudflare.com
ns2: lisa.ns.cloudflare.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=11042135 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=11042135 2013-05-16T09:40:06+02:00 first: 1368690006
last: 0
md5: cdc2cb572de7982395d22e4449d2b281
virustotal: http://www.virustotal.com/latest-report.html?resource=cdc2cb572de7982395d22e4449d2b281
vt_score: 8/45 (17.8%)
scanner: undef
virusname: W32/Kryptik.AXUE!tr
url: http://sapobxap.ru/rasta01.exe
recent: up
response: alive
ip: 176.103.208.136
as: AS44884
review: 175.182.70.33
domain: sapobxap.ru
country: TW
source: APNIC
email: jonaschou@fareastone.com.tw
inetnum: 176.103.208.0 - 176.103.215.255
netname: NCICNET-NET
descr: New Century InfoComm Tech. Co., Ltd.1F~11F, No. 218, Rueiguang RoadTaipei Taiwan 114
ns1: ns3.sapobxap.ru
ns2: ns4.sapobxap.ru
ns3: ns6.sapobxap.ru
ns4: ns5.sapobxap.ru
ns5: ns1.sapobxap.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=10965594 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10965594 2013-05-14T18:40:02+02:00 first: 1368549602
last: 0
md5: e4993d4fef2255e742301640f9f51574
virustotal: http://www.virustotal.com/latest-report.html?resource=e4993d4fef2255e742301640f9f51574
vt_score: 14/46 (30.4%)
scanner: undef
virusname: Hosts.dropper
url: http://fff.gsgsfs.cn/play.exe
recent: up
response: alive
ip: 199.193.67.243
as: AS53935
review: 199.193.67.243
domain: gsgsfs.cn
country: US
source: ARIN
email: zoujinhe@ehostingusa.com
inetnum: 199.193.64.0 - 199.193.71.255
netname: VPS21004
descr: VPS21 LTD VL-11 38958 S FREMONT BLVD FREMONT CA 94536
ns1: f1g1ns1.dnspod.net
ns2: f1g1ns2.dnspod.net
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10919078 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10919078 2013-05-13T21:40:02+02:00 first: 1368474002
last: 0
md5: b0ef2ab86f160aa416184c09df8388fe
virustotal:
vt_score: 24/46 (52.2%)
scanner: avira
virusname: TR/Dropper.Gen
url: http://hk.sz181.com/images/c4a.jpg
recent: up
response: alive
ip: 202.155.223.21
as: AS9381
review: 202.155.223.21
domain: sz181.com
country: HK
source: APNIC
email: abuse@wharftt.com
inetnum: 202.155.192.0 - 202.155.223.255
netname: IPC-NEWTT
descr: Wharf T&T LimitedHarbour City, Hong Kong SAR
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10896608 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10896608 2013-05-13T12:30:37+02:00 first: 1368441037
last: 0
md5: 24e708128b5bc22ee0a494017a5bc5ab
virustotal: http://www.virustotal.com/latest-report.html?resource=24e708128b5bc22ee0a494017a5bc5ab
vt_score: 14/46 (30.4%)
scanner: avira
virusname: BAT/Dldr.Agent.D
url: http://kachsurf.servepics.com/wmiupd.exe
recent: up
response: alive
ip: 94.228.201.117
as: AS48293
review: 94.228.201.117
domain: servepics.com
country: RU
source: RIPE
email: ncc@union-tel.ru
inetnum: 94.228.192.0 - 94.228.207.255
netname: RU-UNION-TEL-20081105
descr: Uniontel ZAOKalininec-net
ns1: nf3.no-ip.com
ns2: nf5.no-ip.com
ns3: nf2.no-ip.com
ns4: nf1.no-ip.com
ns5: nf4.no-ip.com
]]> http://support.clean-mx.de/clean-mx/viruses?id=10896606 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10896606 2013-05-13T12:30:37+02:00 first: 1368441037
last: 0
md5: e69cbe453b1c10651161e9e38c568167
virustotal: http://www.virustotal.com/latest-report.html?resource=e69cbe453b1c10651161e9e38c568167
vt_score: 7/46 (15.2%)
scanner: avira
virusname: TR/Dropper.Gen
url: http://kachsurf.servepics.com/ifupd.exe
recent: up
response: alive
ip: 94.228.201.117
as: AS48293
review: 94.228.201.117
domain: servepics.com
country: RU
source: RIPE
email: ncc@union-tel.ru
inetnum: 94.228.192.0 - 94.228.207.255
netname: RU-UNION-TEL-20081105
descr: Uniontel ZAOKalininec-net
ns1: nf3.no-ip.com
ns2: nf5.no-ip.com
ns3: nf2.no-ip.com
ns4: nf1.no-ip.com
ns5: nf4.no-ip.com
]]> http://support.clean-mx.de/clean-mx/viruses?id=10842303 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10842303 2013-05-11T11:01:13+02:00 first: 1368262873
last: 0
md5: df8471168ca8b86df77cf569626ba0bf
virustotal: http://www.virustotal.com/latest-report.html?resource=df8471168ca8b86df77cf569626ba0bf
vt_score: 6/46 (13%)
scanner: undef
virusname: Suspicious file
url: http://182.18.128.254:8090/get/b2f7e9141eb124ce3152352c5df520f7.exe
recent: up
response: alive
ip: 182.18.128.254
as: AS18229
review: 182.18.128.254
domain: 182.18.128.254
country: IN
source: APNIC
email: psridharreddy@hotmail.com
inetnum: 182.18.128.0 - 182.18.191.255
netname: PIONEER_ELABS
descr: Pioneer Elabs Ltd.7th Floor, Pioneer Towers,Plot No.16, APIIC Software Units Layout,Madhapur,CtrlSCtrlS IP Pools
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10813508 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10813508 2013-05-10T16:00:05+02:00 first: 1368194405
last: 0
md5: ea21c9b116abac680064c09a1e849fd1
virustotal: http://www.virustotal.com/latest-report.html?resource=ea21c9b116abac680064c09a1e849fd1
vt_score: 10/44 (22.7%)
scanner: avira
virusname: TR/Dropper.Gen
url: http://irojtumy.ru/traff01.exe
recent: up
response: alive
ip: 178.150.178.48
as: AS13188
review: 210.203.202.190
domain: irojtumy.ru
country: JP
source: APNIC
email: hm-changed@apnic.net
inetnum: 178.150.0.0 - 178.151.255.255
netname: QTNet
descr: Kyushu Telecommunication Network Co.,Inc.1-12-20, Tenjin, Chuo-ku, Fukuoka-shi,810-0001, JapanKyushu Telecommunication Network Co.,Inc.
ns1: ns1.irojtumy.ru
ns2: ns5.irojtumy.ru
ns3: ns6.irojtumy.ru
ns4: ns4.irojtumy.ru
ns5: ns3.irojtumy.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=10811481 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10811481 2013-05-10T15:40:16+02:00 first: 1368193216
last: 0
md5: 922c8f1110304f68469d3575131b8f13
virustotal: http://www.virustotal.com/latest-report.html?resource=922c8f1110304f68469d3575131b8f13
vt_score: 10/46 (21.7%)
scanner: undef
virusname: W32/Kryptik.X!tr
url: http://irojtumy.ru/shem001.exe
recent: up
response: alive
ip: 46.118.239.52
as: AS12530
review: 178.151.45.128
domain: irojtumy.ru
country: UA
source: RIPE
email: lir@triolan.kiev.ua
inetnum: 46.118.0.0 - 46.119.255.255
netname: UA-EDUNETWORKS-20100415
descr: DC&BITRIOLANTriple Play ServicesUkraine
ns1: ns1.irojtumy.ru
ns2: ns4.irojtumy.ru
ns3: ns5.irojtumy.ru
ns4: ns2.irojtumy.ru
ns5: ns6.irojtumy.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=10774251 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10774251 2013-05-09T16:00:03+02:00 first: 1368108003
last: 0
md5: afe39019be4bb13bc854668f03a48780
virustotal: http://www.virustotal.com/latest-report.html?resource=afe39019be4bb13bc854668f03a48780
vt_score: 4/31 (12.9%)
scanner: avira
virusname: TR/Crypt.ZPACK.Gen
url: http://yxwnst.best.lt.ua/dlimage11.php
recent: up
response: alive
ip: 188.190.124.151
as: AS197145
review: 188.190.124.151
domain: lt.ua
country: UA
source: RIPE
email: abusemail@infiumhost.com
inetnum: 188.190.96.0 - 188.190.127.255
netname: INFIUM
descr: Infium LTD
ns1: nix.ns.ua
ns2: ns.vizor.lutsk.ua
ns3: ns.cv.ua
ns4: ns2.4grad.in.ua
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10774250 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10774250 2013-05-09T16:00:02+02:00 first: 1368108002
last: 0
md5: f9c5d63b4f9943f39427dda5bbfa96c9
virustotal: http://www.virustotal.com/latest-report.html?resource=f9c5d63b4f9943f39427dda5bbfa96c9
vt_score: 3/46 (6.5%)
scanner: avira
virusname: TR/Crypt.ZPACK.Gen
url: http://yxwnst.best.lt.ua/dlimage4.php
recent: up
response: alive
ip: 188.190.124.151
as: AS197145
review: 188.190.124.151
domain: lt.ua
country: UA
source: RIPE
email: abusemail@infiumhost.com
inetnum: 188.190.96.0 - 188.190.127.255
netname: INFIUM
descr: Infium LTD
ns1: nix.ns.ua
ns2: ns.vizor.lutsk.ua
ns3: ns.cv.ua
ns4: ns2.4grad.in.ua
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10772641 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10772641 2013-05-09T15:00:02+02:00 first: 1368104402
last: 0
md5: 402dc9182f03889ceb74e4f1b55fc314
virustotal: http://www.virustotal.com/latest-report.html?resource=402dc9182f03889ceb74e4f1b55fc314
vt_score: 12/46 (26.1%)
scanner: avira
virusname: TR/Dropper.Gen
url: http://najobbar.ru/traff01.exe
recent: up
response: alive
ip: 195.128.231.18
as: AS33657
review: 188.231.172.95
domain: najobbar.ru
country: UA
source: RIPE
email: ripe@o3.ua
inetnum: 195.128.230.0 - 195.128.231.255
netname: FREENET
descr: Fiber Optic IP NetworkFREENETFREENETFREENET
ns1: ns3.najobbar.ru
ns2: ns1.najobbar.ru
ns3: ns6.najobbar.ru
ns4: ns2.najobbar.ru
ns5: ns5.najobbar.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=10746634 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10746634 2013-05-08T17:40:11+02:00 first: 1368027611
last: 0
md5: f223fa2b03a1815719767d5a42e06373
virustotal: http://www.virustotal.com/latest-report.html?resource=f223fa2b03a1815719767d5a42e06373
vt_score: 9/46 (19.6%)
scanner: avira
virusname: TR/Dropper.Gen
url: http://yhbixpub.ru/traff01.exe
recent: up
response: alive
ip: 109.254.51.237
as: AS20590
review: 77.121.78.151
domain: yhbixpub.ru
country: UA
source: RIPE
email: abuse@volia.net
inetnum: 109.254.0.0 - 109.254.255.255
netname: VOLIA
descr: Volia SubnetVolia Network primary routeVolia more specific route
ns1: ns5.yhbixpub.ru
ns2: ns2.yhbixpub.ru
ns3: ns3.yhbixpub.ru
ns4: ns4.yhbixpub.ru
ns5: ns1.yhbixpub.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=10734758 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10734758 2013-05-08T12:00:05+02:00 first: 1368007205
last: 0
md5: ae8461594610add30a947dbff6c6952b
virustotal:
vt_score: 23/46 (50%)
scanner: undef
virusname: Trj/CI.A
url: http://be-created.com/img/Pony.exe
recent: up
response: alive
ip: 94.23.45.68
as: AS16276
review: 94.23.45.68
domain: be-created.com
country: FR
source: RIPE
email: abuse@ovh.net
inetnum: 94.23.0.0 - 94.23.63.255
netname: OVH
descr: OVH SASDedicated Servershttp
ns1: dns1.e-clicking.in
ns2: dns2.e-clicking.in
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10734757 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10734757 2013-05-08T12:00:03+02:00 first: 1368007203
last: 0
md5: 020dfb3861516fbe2819c39f1b18919d
virustotal: http://www.virustotal.com/latest-report.html?resource=020dfb3861516fbe2819c39f1b18919d
vt_score: 12/45 (26.7%)
scanner: BitDefender
virusname: Gen:Variant.Symmi.18614
url: http://svses.cz/prenos/second.exe
recent: up
response: alive
ip: 83.136.204.202
as: AS39408
review: 83.136.204.202
domain: svses.cz
country: CZ
source: RIPE
email: register@avi.cz
inetnum: 83.136.200.0 - 83.136.207.255
netname: CZ-ETHERNET-20040402
descr: AVI druzstvoProvider Local RegistryAVI
ns1: dns.ethernet.cz
ns2: ns.ethernet.cz
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10734192 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10734192 2013-05-08T11:00:04+02:00 first: 1368003604
last: 0
md5: 946718d1dbd4f80af0d55153889bb1d7
virustotal: http://www.virustotal.com/latest-report.html?resource=946718d1dbd4f80af0d55153889bb1d7
vt_score: 26/35 (74.3%)
scanner: AhnLab_V3
virusname: Trojan/Win32.FakeAV
url: http://209.190.56.26/41/movie1080p.mkv.exe
recent: up
response: alive
ip: 209.190.56.26
as: AS10297
review: 209.190.56.26
domain: 209.190.56.26
country: US
source: ARIN
email: abuse@ee.net
inetnum: 209.190.0.0 - 209.190.127.255
netname: ENET-XLHOST
descr: eNET Inc. ENET 3000 East Dublin Granville Rd. Columbus OH 43231
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10734191 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10734191 2013-05-08T11:00:04+02:00 first: 1368003604
last: 0
md5: df9a6f131f652174f55ccfd9e38ec105
virustotal: http://www.virustotal.com/latest-report.html?resource=df9a6f131f652174f55ccfd9e38ec105
vt_score: 6/46 (13%)
scanner: undef
virusname: Trojan.Agent/Gen-MalPE
url: http://209.190.56.26/40/movie1080p.mkv.exe
recent: up
response: alive
ip: 209.190.56.26
as: AS10297
review: 209.190.56.26
domain: 209.190.56.26
country: US
source: ARIN
email: abuse@ee.net
inetnum: 209.190.0.0 - 209.190.127.255
netname: ENET-XLHOST
descr: eNET Inc. ENET 3000 East Dublin Granville Rd. Columbus OH 43231
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10734035 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10734035 2013-05-08T10:40:04+02:00 first: 1368002404
last: 0
md5: c7abe30931d7f2bb4f46952ebda516b3
virustotal:
vt_score: 3/46 (6.5%)
scanner: avira
virusname: TR/Crypt.ZPACK.Gen
url: http://rashmm.best.volyn.ua/dlimage4.php
recent: up
response: alive
ip: 188.190.124.151
as: AS197145
review: 188.190.124.151
domain: volyn.ua
country: UA
source: RIPE
email: abusemail@infiumhost.com
inetnum: 188.190.96.0 - 188.190.127.255
netname: INFIUM
descr: Infium LTD
ns1: ns2.4grad.in.ua
ns2: ns.vizor.lutsk.ua
ns3: nix.ns.ua
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10733162 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10733162 2013-05-08T08:50:04+02:00 first: 1367995804
last: 0
md5: ae8461594610add30a947dbff6c6952b
virustotal:
vt_score: 23/46 (50%)
scanner: undef
virusname: Trj/CI.A
url: http://snakesforever.com/images/Pony.exe
recent: up
response: alive
ip: 94.23.45.68
as: AS16276
review: 94.23.45.68
domain: snakesforever.com
country: FR
source: RIPE
email: abuse@ovh.net
inetnum: 94.23.0.0 - 94.23.63.255
netname: OVH
descr: OVH SASDedicated Servershttp
ns1: dns2.e-clicking.in
ns2: dns1.e-clicking.in
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10733161 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10733161 2013-05-08T08:50:04+02:00 first: 1367995804
last: 0
md5: 7fae49d5fbfea54c3468b1f2caf72ea8
virustotal: http://www.virustotal.com/latest-report.html?resource=7fae49d5fbfea54c3468b1f2caf72ea8
vt_score: 9/39 (23.1%)
scanner: undef
virusname: W32/Kryptik.AGAJ!tr
url: http://www.asc-360.com/zt6a71HZ.exe
recent: up
response: alive
ip: 88.191.79.37
as: AS12322
review: 88.191.79.37
domain: asc-360.com
country: FR
source: RIPE
email: abuse@support.dedibox.fr
inetnum: 88.191.3.0 - 88.191.129.255
netname: FR-DEDIBOX
descr: Dedibox SASCustomersParis, FranceNCC#2007023902ProXad network / Free SASParis, France
ns1: ns2.directnom.com
ns2: ns.directnom.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10716575 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10716575 2013-05-07T15:40:21+02:00 first: 1367934021
last: 0
md5: 10a95ac129f619d858f419d670bc0bfe
virustotal:
vt_score: 13/46 (28.3%)
scanner: undef
virusname: Trj/Genetic.gen
url: http://www.vernaison.fr/media/media/images/Protesto.exe
recent: up
response: alive
ip: 46.105.38.50
as: AS16276
review: 46.105.38.50
domain: vernaison.fr
country: FR
source: RIPE
email: abuse@ovh.net
inetnum: 46.105.32.0 - 46.105.63.255
netname: OVH
descr: OVH SASdedicated servershttp
ns1: ns1.axs-fr.net
ns2: ns2.axs-fr.net
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10707858 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10707858 2013-05-06T23:40:55+02:00 first: 1367876455
last: 0
md5: 3cace8e57d25a6a0b01c7b619b334697
virustotal:
vt_score: 10/46 (21.7%)
scanner: avira
virusname: SPR/Tool.899839
url: http://virginx.free.fr/Money_Attractor_Ultrate_pywaie.exe
recent: up
response: alive
ip: 212.27.63.111
as: AS12322
review: 212.27.63.111
domain: free.fr
country: FR
source: RIPE
email: abuse@proxad.net
inetnum: 212.27.60.0 - 212.27.63.255
netname: FR-PROXAD
descr: Free SAS (ProXad)internal infrastructure (servers)Paris, FranceProXad network / Free SAParis, France
ns1: freens1-g20.free.fr
ns2: freens2-g20.free.fr
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10678068 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10678068 2013-05-05T17:00:03+02:00 first: 1367766003
last: 0
md5: 13b55725de38fbe6647077fb8db914bf
virustotal: http://www.virustotal.com/latest-report.html?resource=13b55725de38fbe6647077fb8db914bf
vt_score: 7/35 (20%)
scanner: BitDefender
virusname: Trojan.GenericKDZ.16544
url: http://betabros.com/c/Crypted.exe
recent: up
response: alive
ip: 146.0.78.4
as: AS57043
review: 146.0.78.4
domain: betabros.com
country: NL
source: RIPE
email:
inetnum: 146.0.72.0 - 146.0.79.255
netname:
descr:
ns1: ns1.ipchina163.com
ns2: ns2.ipchina163.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10678067 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10678067 2013-05-05T17:00:02+02:00 first: 1367766002
last: 0
md5: 265e19300f007215ffbdde0f8f2c7245
virustotal: http://www.virustotal.com/latest-report.html?resource=265e19300f007215ffbdde0f8f2c7245
vt_score: 12/46 (26.1%)
scanner: undef
virusname: Suspicious file
url: http://betabros.com/c/disfiguredslush.exe
recent: up
response: alive
ip: 146.0.78.4
as: AS57043
review: 146.0.78.4
domain: betabros.com
country: NL
source: RIPE
email:
inetnum: 146.0.72.0 - 146.0.79.255
netname:
descr:
ns1: ns1.ipchina163.com
ns2: ns2.ipchina163.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10622257 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10622257 2013-05-03T11:10:05+02:00 first: 1367572205
last: 0
md5: 11ecc19500e80623e948a803a97d0550
virustotal: http://www.virustotal.com/latest-report.html?resource=11ecc19500e80623e948a803a97d0550
vt_score: 5/46 (10.9%)
scanner: avira
virusname: TR/Crypt.ZPACK.Gen2
url: http://gvdlqk.best.lt.ua/dlimage4.php
recent: up
response: alive
ip: 188.190.124.151
as: AS197145
review: 188.190.124.151
domain: lt.ua
country: UA
source: RIPE
email: abusemail@infiumhost.com
inetnum: 188.190.96.0 - 188.190.127.255
netname: INFIUM
descr: Infium LTD
ns1: ns.vizor.lutsk.ua
ns2: nix.ns.ua
ns3: ns.cv.ua
ns4: ns2.4grad.in.ua
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10622256 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10622256 2013-05-03T11:10:05+02:00 first: 1367572205
last: 0
md5: 0fe4fa36e7ce25e9cb7c227cf02960f9
virustotal: http://www.virustotal.com/latest-report.html?resource=0fe4fa36e7ce25e9cb7c227cf02960f9
vt_score: 5/46 (10.9%)
scanner: avira
virusname: TR/Crypt.ZPACK.Gen2
url: http://gvdlqk.best.lt.ua/dlimage11.php
recent: up
response: alive
ip: 188.190.124.151
as: AS197145
review: 188.190.124.151
domain: lt.ua
country: UA
source: RIPE
email: abusemail@infiumhost.com
inetnum: 188.190.96.0 - 188.190.127.255
netname: INFIUM
descr: Infium LTD
ns1: ns.vizor.lutsk.ua
ns2: nix.ns.ua
ns3: ns.cv.ua
ns4: ns2.4grad.in.ua
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10622254 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10622254 2013-05-03T10:40:04+02:00 first: 1367570404
last: 0
md5: ff1317a44c9c3dd377c43dd47d300487
virustotal: http://www.virustotal.com/latest-report.html?resource=ff1317a44c9c3dd377c43dd47d300487
vt_score: 20/46 (43.5%)
scanner: undef
virusname: W32/Kryptik.AGAJ!tr
url: http://najobbar.ru/rasta01.exe
recent: up
response: alive
ip: 176.109.9.4
as: AS57847
review: 89.28.117.143
domain: najobbar.ru
country: MD
source: RIPE
email: abuse@starnet.md
inetnum: 176.109.8.0 - 176.109.15.255
netname: MD-STARNET-20060629
descr: STARNET S.R.L
ns1: ns5.najobbar.ru
ns2: ns1.najobbar.ru
ns3: ns4.najobbar.ru
ns4: ns6.najobbar.ru
ns5: ns2.najobbar.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=10622252 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10622252 2013-05-03T10:40:04+02:00 first: 1367570404
last: 0
md5: 597ed2eddf14045b343c74bb55bb299a
virustotal: http://www.virustotal.com/latest-report.html?resource=597ed2eddf14045b343c74bb55bb299a
vt_score: 14/35 (40%)
scanner: AhnLab_V3
virusname: Trojan/Win32.FakeAV
url: http://najobbar.ru/shem001.exe
recent: up
response: alive
ip: 81.21.14.61
as: AS24896
review: 178.137.182.204
domain: najobbar.ru
country: UA
source: RIPE
email: noc@kyivstar.net
inetnum: 81.21.8.0 - 81.21.15.255
netname: KYIVSTAR-NET-8
descr: Kyivstar GSMUkrainian mobile phone operatorKyivstar GSM, Kiev, UkraineKyivstar GSM, Kiev, Ukraine
ns1: ns5.najobbar.ru
ns2: ns1.najobbar.ru
ns3: ns4.najobbar.ru
ns4: ns6.najobbar.ru
ns5: ns2.najobbar.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=10617395 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10617395 2013-05-02T19:02:56+02:00 first: 1367514176
last: 0
md5: 3656ff526d8851810458271ee13ab990
virustotal: http://www.virustotal.com/latest-report.html?resource=3656ff526d8851810458271ee13ab990
vt_score: 7/46 (15.2%)
scanner: undef
virusname: Heur.Packed.Unknown
url: http://looserbalance.com/40/movie1080p.mkv.exe
recent: up
response: alive
ip: 209.190.56.26
as: AS10297
review: 209.190.56.26
domain: looserbalance.com
country: US
source: ARIN
email: abuse@ee.net
inetnum: 209.190.0.0 - 209.190.127.255
netname: ENET-XLHOST
descr: eNET Inc. ENET 3000 East Dublin Granville Rd. Columbus OH 43231
ns1: ns2.modesitsweets.com
ns2: ns1.modesitsweets.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10616674 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10616674 2013-05-02T18:05:02+02:00 first: 1367510702
last: 0
md5: 74cb3764a4cbf5da23e8fca6be6b6663
virustotal: http://www.virustotal.com/latest-report.html?resource=74cb3764a4cbf5da23e8fca6be6b6663
vt_score: 8/35 (22.9%)
scanner: AntiVir
virusname: TR/Spy.Banker.Gen
url: http://buyersindex.com/neting/wsnilyxs.gif
recent: up
response: alive
ip: 64.150.180.144
as: AS10316
review: 64.150.180.144
domain: buyersindex.com
country: US
source: ARIN
email: abuse@codero.com
inetnum: 64.150.176.0 - 64.150.191.255
netname: CODERO2008A
descr: Codero APHIN 7500 W 110th St., Suite 400 Overland Park KS 66210
ns1: ns51.1and1.com
ns2: ns52.1and1.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10604246 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10604246 2013-05-02T11:00:09+02:00 first: 1367485209
last: 0
md5: 77bd66cbeddc84bb9f6ef3f63244e865
virustotal: http://www.virustotal.com/latest-report.html?resource=77bd66cbeddc84bb9f6ef3f63244e865
vt_score: 30/45 (66.7%)
scanner: undef
virusname: Bck/IrcBrute.M
url: http://www.trucdefoupoto.com/AdobeFlashPlayer.exe
recent: up
response: alive
ip: 212.1.212.8
as: AS47583
review: 212.1.212.8
domain: trucdefoupoto.com
country: US
source: RIPE
email: abuse@main-hosting.com
inetnum: 212.1.212.0 - 212.1.215.255
netname: HOSTING24
descr: HOSTING24 Servers
ns1: ns112.hosting24.com
ns2: ns111.hosting24.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10604245 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10604245 2013-05-02T11:00:09+02:00 first: 1367485209
last: 0
md5: 77bd66cbeddc84bb9f6ef3f63244e865
virustotal: http://www.virustotal.com/latest-report.html?resource=77bd66cbeddc84bb9f6ef3f63244e865
vt_score: 30/45 (66.7%)
scanner: undef
virusname: Bck/IrcBrute.M
url: http://www.trucdefoupoto.com/cam.exe
recent: up
response: alive
ip: 212.1.212.8
as: AS47583
review: 212.1.212.8
domain: trucdefoupoto.com
country: US
source: RIPE
email: abuse@main-hosting.com
inetnum: 212.1.212.0 - 212.1.215.255
netname: HOSTING24
descr: HOSTING24 Servers
ns1: ns112.hosting24.com
ns2: ns111.hosting24.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10579105 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10579105 2013-05-01T14:40:10+02:00 first: 1367412010
last: 0
md5: 1c26f23584064927010c45860f5bafa4
virustotal: http://www.virustotal.com/latest-report.html?resource=1c26f23584064927010c45860f5bafa4
vt_score: 42/46 (91.3%)
scanner: avira
virusname: TR/Dldr.Smal.axb.14
url: http://jahbob3.free.fr/server.exe
recent: up
response: alive
ip: 212.27.63.171
as: AS12322
review: 212.27.63.171
domain: free.fr
country: FR
source: RIPE
email: abuse@proxad.net
inetnum: 212.27.60.0 - 212.27.63.255
netname: FR-PROXAD
descr: Free SAS (ProXad)internal infrastructure (servers)Paris, FranceProXad network / Free SAParis, France
ns1: freens1-g20.free.fr
ns2: freens2-g20.free.fr
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10576632 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10576632 2013-05-01T12:00:04+02:00 first: 1367402404
last: 0
md5: aa4006ea7e8806e659d7220051935117
virustotal: http://www.virustotal.com/latest-report.html?resource=aa4006ea7e8806e659d7220051935117
vt_score: 25/46 (54.3%)
scanner: undef
virusname: Trj/Tepfer.B
url: http://wienold.kilu.de/gXSXcV.exe
recent: up
response: alive
ip: 5.9.50.42
as: AS24940
review: 5.9.50.42
domain: kilu.de
country: DE
source: RIPE
email: abuse@hetzner.de
inetnum: 5.9.0.0 - 5.9.255.255
netname: DE-HETZNER-20120425
descr: Hetzner Online AG
ns1: ns2.subdomain.com
ns2: ns1.subdomain.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10576631 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10576631 2013-05-01T12:00:03+02:00 first: 1367402403
last: 0
md5: 5c0f6a64881669aa2278269c8fbeb4bf
virustotal:
vt_score: 5/45 (11.1%)
scanner: avira
virusname: TR/Crypt.ZPACK.Gen
url: http://mbcwtg.best.volyn.ua/dlimage11.php
recent: up
response: alive
ip: 94.242.250.151
as: AS5577
review: 94.242.250.151
domain: volyn.ua
country: LU
source: RIPE
email: abuse@as5577.net
inetnum: 94.242.224.0 - 94.242.255.255
netname: SERVER-NETWORK
descr: root SA
ns1: ns.vizor.lutsk.ua
ns2: ns2.4grad.in.ua
ns3: nix.ns.ua
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10576630 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10576630 2013-05-01T12:00:03+02:00 first: 1367402403
last: 0
md5: 66c100d465dc29d1ac99ee0637b4e764
virustotal: http://www.virustotal.com/latest-report.html?resource=66c100d465dc29d1ac99ee0637b4e764
vt_score: 16/46 (34.8%)
scanner: Kaspersky
virusname: Trojan-Dropper.Win32.Dorifel.adhf
url: http://mbcwtg.best.volyn.ua/dlimage4.php
recent: up
response: alive
ip: 94.242.250.151
as: AS5577
review: 94.242.250.151
domain: volyn.ua
country: LU
source: RIPE
email: abuse@as5577.net
inetnum: 94.242.224.0 - 94.242.255.255
netname: SERVER-NETWORK
descr: root SA
ns1: ns.vizor.lutsk.ua
ns2: ns2.4grad.in.ua
ns3: nix.ns.ua
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10573652 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10573652 2013-05-01T10:00:10+02:00 first: 1367395210
last: 0
md5: f81cc6c36c4336e3c8cccddb9bfec383
virustotal: http://www.virustotal.com/latest-report.html?resource=f81cc6c36c4336e3c8cccddb9bfec383
vt_score: 9/35 (25.7%)
scanner: BitDefender
virusname: Gen:Variant.Kazy.169324
url: http://yhbixpub.ru/shem001.exe
recent: up
response: alive
ip: 79.139.2.99
as: AS5617
review: 180.176.74.58
domain: yhbixpub.ru
country: TW
source: APNIC
email: ho.ch@kbro.com.tw
inetnum: 79.139.0.0 - 79.139.7.255
netname: TUNGHO-NET
descr: kbro CO. Ltd.Taipei City Taiwan
ns1: ns4.yhbixpub.ru
ns2: ns2.yhbixpub.ru
ns3: ns1.yhbixpub.ru
ns4: ns3.yhbixpub.ru
ns5: ns6.yhbixpub.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=10573361 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10573361 2013-05-01T09:40:07+02:00 first: 1367394007
last: 0
md5: ce82a65ee948a4d0edbadf178ef0b26f
virustotal: http://www.virustotal.com/latest-report.html?resource=ce82a65ee948a4d0edbadf178ef0b26f
vt_score: 24/45 (53.3%)
scanner: AntiVir
virusname: TR/Kazy.169324.104
url: http://yhbixpub.ru/rasta01.exe
recent: up
response: alive
ip: 109.87.28.162
as: AS13188
review: 46.118.42.228
domain: yhbixpub.ru
country: UA
source: RIPE
email: security@svitonline.com
inetnum: 109.86.0.0 - 109.87.255.255
netname: UA-SVITONLINE-20100517
descr: GoldenTelecom LLC
ns1: ns3.yhbixpub.ru
ns2: ns2.yhbixpub.ru
ns3: ns4.yhbixpub.ru
ns4: ns1.yhbixpub.ru
ns5: ns5.yhbixpub.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=10557712 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10557712 2013-04-30T20:00:24+02:00 first: 1367344824
last: 0
md5: 7df21215e49f638d90a53b84a2a670a3
virustotal: http://www.virustotal.com/latest-report.html?resource=7df21215e49f638d90a53b84a2a670a3
vt_score: 17/46 (37%)
scanner: undef
virusname: Suspicious file
url: http://200.98.200.112/Pluss/capst.png
recent: up
response: alive
ip: 200.98.200.112
as: AS15201
review: 200.98.200.112
domain: 200.98.200.112
country: BR
source: LACNIC
email: l-registrobr-uol@corp.uol.com.br
inetnum: 200.98.0.0 - 200.98.255.255
netname: 001.109.184/0001-95
descr: Universo Online S.A.
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10557711 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10557711 2013-04-30T20:00:23+02:00 first: 1367344823
last: 0
md5: 559ed2cbc8b196cf83cd041a8050e859
virustotal: http://www.virustotal.com/latest-report.html?resource=559ed2cbc8b196cf83cd041a8050e859
vt_score: 21/46 (45.7%)
scanner: undef
virusname: Trj/CI.A
url: http://200.98.200.112/Pluss/Plancton.png
recent: up
response: alive
ip: 200.98.200.112
as: AS15201
review: 200.98.200.112
domain: 200.98.200.112
country: BR
source: LACNIC
email: l-registrobr-uol@corp.uol.com.br
inetnum: 200.98.0.0 - 200.98.255.255
netname: 001.109.184/0001-95
descr: Universo Online S.A.
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10557367 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10557367 2013-04-30T19:40:05+02:00 first: 1367343605
last: 0
md5: f793e43be6e4226c8d6bd1c2a2abbf1f
virustotal: http://www.virustotal.com/latest-report.html?resource=f793e43be6e4226c8d6bd1c2a2abbf1f
vt_score: 11/35 (31.4%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen
url: http://94.242.198.64/sky.exe
recent: up
response: alive
ip: 94.242.198.64
as: AS5577
review: 94.242.198.64
domain: 94.242.198.64
country: LU
source: RIPE
email: abuse@as5577.net
inetnum: 94.242.192.0 - 94.242.223.255
netname: ROOT-NETWORK
descr: root SA
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10549921 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10549921 2013-04-30T15:40:13+02:00 first: 1367329213
last: 0
md5: cbd6f7307faf71e0cd63a1ed57f89db9
virustotal: http://www.virustotal.com/latest-report.html?resource=cbd6f7307faf71e0cd63a1ed57f89db9
vt_score: 15/46 (32.6%)
scanner: undef
virusname: Trojan.GenericKDZ.16085
url: http://s02.cba.pl/supermario.exe
recent: up
response: alive
ip: 95.211.144.87
as: AS16265
review: 95.211.144.87
domain: cba.pl
country: NL
source: RIPE
email: abuse@leaseweb.com
inetnum: 95.211.0.0 - 95.211.255.255
netname: NL-LEASEWEB-20080724
descr: LeaseWeb B.V.
ns1: ns1.cba.pl
ns2: ns2.cba.pl
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10548926 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10548926 2013-04-30T15:00:49+02:00 first: 1367326849
last: 0
md5: 5c0f6a64881669aa2278269c8fbeb4bf
virustotal: http://www.virustotal.com/latest-report.html?resource=5c0f6a64881669aa2278269c8fbeb4bf
vt_score: 5/45 (11.1%)
scanner: avira
virusname: TR/Crypt.ZPACK.Gen
url: http://txpdna.best.lt.ua/image.php
recent: up
response: alive
ip: 94.242.250.150
as: AS5577
review: 94.242.250.150
domain: lt.ua
country: LU
source: RIPE
email: abuse@as5577.net
inetnum: 94.242.224.0 - 94.242.255.255
netname: SERVER-NETWORK
descr: root SA
ns1: ns2.4grad.in.ua
ns2: nix.ns.ua
ns3: ns.vizor.lutsk.ua
ns4: ns.cv.ua
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10548925 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10548925 2013-04-30T15:00:49+02:00 first: 1367326849
last: 0
md5: 3a41d9f9b4e108ab6098fb45780dc7d6
virustotal: http://www.virustotal.com/latest-report.html?resource=3a41d9f9b4e108ab6098fb45780dc7d6
vt_score: 5/46 (10.9%)
scanner: avira
virusname: TR/Crypt.ZPACK.Gen
url: http://txpdna.best.lt.ua/com.php
recent: up
response: alive
ip: 94.242.250.150
as: AS5577
review: 94.242.250.150
domain: lt.ua
country: LU
source: RIPE
email: abuse@as5577.net
inetnum: 94.242.224.0 - 94.242.255.255
netname: SERVER-NETWORK
descr: root SA
ns1: ns2.4grad.in.ua
ns2: nix.ns.ua
ns3: ns.vizor.lutsk.ua
ns4: ns.cv.ua
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10548924 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10548924 2013-04-30T15:00:49+02:00 first: 1367326849
last: 0
md5: 5c0f6a64881669aa2278269c8fbeb4bf
virustotal:
vt_score: 5/45 (11.1%)
scanner: avira
virusname: TR/Crypt.ZPACK.Gen
url: http://txpdna.best.lt.ua/dlimage11.php
recent: up
response: alive
ip: 94.242.250.150
as: AS5577
review: 94.242.250.150
domain: lt.ua
country: LU
source: RIPE
email: abuse@as5577.net
inetnum: 94.242.224.0 - 94.242.255.255
netname: SERVER-NETWORK
descr: root SA
ns1: ns2.4grad.in.ua
ns2: nix.ns.ua
ns3: ns.vizor.lutsk.ua
ns4: ns.cv.ua
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10548819 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10548819 2013-04-30T14:40:44+02:00 first: 1367325644
last: 0
md5: 0f83ef1279a454272f17508f8f77ec5e
virustotal: http://www.virustotal.com/latest-report.html?resource=0f83ef1279a454272f17508f8f77ec5e
vt_score: 16/35 (45.7%)
scanner: AntiVir
virusname: TR/Dropper.VB.Gen8
url: http://zalil.ru/34419309/1bf9e2a4.51805a38/XboxLiveGTIP.exe
recent: up
response: alive
ip: 194.63.142.66
as: AS21011
review: 194.63.142.66
domain: zalil.ru
country: RU
source: RIPE
email: tech@mirotel.net
inetnum: 194.63.140.0 - 194.63.143.255
netname: MIROTEL2
descr: ITS Mirotel
ns1: ns8-l2.nic.ru
ns2: ns4-cloud.nic.ru
ns3: ns3-l2.nic.ru
ns4: ns8-cloud.nic.ru
ns5: ns4-l2.nic.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=10548818 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10548818 2013-04-30T14:40:44+02:00 first: 1367325644
last: 0
md5: 3a41d9f9b4e108ab6098fb45780dc7d6
virustotal: http://www.virustotal.com/latest-report.html?resource=3a41d9f9b4e108ab6098fb45780dc7d6
vt_score: 5/46 (10.9%)
scanner: avira
virusname: TR/Crypt.ZPACK.Gen
url: http://txpdna.best.lt.ua/dlimage4.php
recent: up
response: alive
ip: 94.242.250.150
as: AS5577
review: 94.242.250.150
domain: lt.ua
country: LU
source: RIPE
email: abuse@as5577.net
inetnum: 94.242.224.0 - 94.242.255.255
netname: SERVER-NETWORK
descr: root SA
ns1: nix.ns.ua
ns2: ns2.4grad.in.ua
ns3: ns.vizor.lutsk.ua
ns4: ns.cv.ua
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10540979 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10540979 2013-04-30T10:00:22+02:00 first: 1367308822
last: 0
md5: 317d5e35380f213fdee9c498dc1bff9f
virustotal: http://www.virustotal.com/latest-report.html?resource=317d5e35380f213fdee9c498dc1bff9f
vt_score: 14/45 (31.1%)
scanner: AntiVir
virusname: TR/Symmi.kioem
url: http://centroandino.edu.co/images/svcnss.exe
recent: up
response: alive
ip: 216.172.187.16
as: AS36351
review: 216.172.187.16
domain: centroandino.edu.co
country: US
source: ARIN
email: ipadmin@websitewelcome.com
inetnum: 216.172.160.0 - 216.172.191.255
netname: HGBLOCK-2
descr: WEBSITEWELCOME.COM BO 11251 Northwest Freeway Houston TX 77092
ns1: ns1519.websitewelcome.com
ns2: ns1520.websitewelcome.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10540978 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10540978 2013-04-30T10:00:22+02:00 first: 1367308822
last: 0
md5: 7d7091a13bac90f0e568e18898ebd462
virustotal: http://www.virustotal.com/latest-report.html?resource=7d7091a13bac90f0e568e18898ebd462
vt_score: 9/46 (19.6%)
scanner: CAT_QuickHeal
virusname: (Suspicious) - DNAScan
url: http://centroandino.edu.co/images/services.exe
recent: up
response: alive
ip: 216.172.187.16
as: AS36351
review: 216.172.187.16
domain: centroandino.edu.co
country: US
source: ARIN
email: ipadmin@websitewelcome.com
inetnum: 216.172.160.0 - 216.172.191.255
netname: HGBLOCK-2
descr: WEBSITEWELCOME.COM BO 11251 Northwest Freeway Houston TX 77092
ns1: ns1519.websitewelcome.com
ns2: ns1520.websitewelcome.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10540977 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10540977 2013-04-30T10:00:22+02:00 first: 1367308822
last: 0
md5: 58e60f18f9cc67586cd5231b8205cd8c
virustotal: http://www.virustotal.com/latest-report.html?resource=58e60f18f9cc67586cd5231b8205cd8c
vt_score: 7/46 (15.2%)
scanner: undef
virusname: W32/Injector.YFC!tr
url: http://centroandino.edu.co/images/realsched.exe
recent: up
response: alive
ip: 216.172.187.16
as: AS36351
review: 216.172.187.16
domain: centroandino.edu.co
country: US
source: ARIN
email: ipadmin@websitewelcome.com
inetnum: 216.172.160.0 - 216.172.191.255
netname: HGBLOCK-2
descr: WEBSITEWELCOME.COM BO 11251 Northwest Freeway Houston TX 77092
ns1: ns1519.websitewelcome.com
ns2: ns1520.websitewelcome.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10540976 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10540976 2013-04-30T10:00:22+02:00 first: 1367308822
last: 0
md5: 89dccf5500923adb3bf7841e6f0f42ee
virustotal: http://www.virustotal.com/latest-report.html?resource=89dccf5500923adb3bf7841e6f0f42ee
vt_score: 6/35 (17.1%)
scanner: CAT_QuickHeal
virusname: (Suspicious) - DNAScan
url: http://centroandino.edu.co/images/perfect.exe
recent: up
response: alive
ip: 216.172.187.16
as: AS36351
review: 216.172.187.16
domain: centroandino.edu.co
country: US
source: ARIN
email: ipadmin@websitewelcome.com
inetnum: 216.172.160.0 - 216.172.191.255
netname: HGBLOCK-2
descr: WEBSITEWELCOME.COM BO 11251 Northwest Freeway Houston TX 77092
ns1: ns1519.websitewelcome.com
ns2: ns1520.websitewelcome.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10540975 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10540975 2013-04-30T10:00:22+02:00 first: 1367308822
last: 0
md5: 80fc28c383ab7d021bd843064441f019
virustotal: http://www.virustotal.com/latest-report.html?resource=80fc28c383ab7d021bd843064441f019
vt_score: 9/46 (19.6%)
scanner: CAT_QuickHeal
virusname: (Suspicious) - DNAScan
url: http://centroandino.edu.co/images/iexplorer.exe
recent: up
response: alive
ip: 216.172.187.16
as: AS36351
review: 216.172.187.16
domain: centroandino.edu.co
country: US
source: ARIN
email: ipadmin@websitewelcome.com
inetnum: 216.172.160.0 - 216.172.191.255
netname: HGBLOCK-2
descr: WEBSITEWELCOME.COM BO 11251 Northwest Freeway Houston TX 77092
ns1: ns1519.websitewelcome.com
ns2: ns1520.websitewelcome.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10540974 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10540974 2013-04-30T10:00:22+02:00 first: 1367308822
last: 0
md5: f668516df4032f02ba2fe71b2643fd7a
virustotal: http://www.virustotal.com/latest-report.html?resource=f668516df4032f02ba2fe71b2643fd7a
vt_score: 9/45 (20%)
scanner: undef
virusname: Suspicious file
url: http://centroandino.edu.co/images/1resident.exe
recent: up
response: alive
ip: 216.172.187.16
as: AS36351
review: 216.172.187.16
domain: centroandino.edu.co
country: US
source: ARIN
email: ipadmin@websitewelcome.com
inetnum: 216.172.160.0 - 216.172.191.255
netname: HGBLOCK-2
descr: WEBSITEWELCOME.COM BO 11251 Northwest Freeway Houston TX 77092
ns1: ns1519.websitewelcome.com
ns2: ns1520.websitewelcome.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10540973 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10540973 2013-04-30T10:00:22+02:00 first: 1367308822
last: 0
md5: 5bc38a19d77294fffbd3f49228874f93
virustotal: http://www.virustotal.com/latest-report.html?resource=5bc38a19d77294fffbd3f49228874f93
vt_score: 36/46 (78.3%)
scanner: avira
virusname: TR/Dropper.Gen
url: http://www.naturacoiffure.com/images/mcces.exe
recent: up
response: alive
ip: 37.59.16.198
as: AS16276
review: 37.59.16.198
domain: naturacoiffure.com
country: FR
source: RIPE
email: abuse@ovh.net
inetnum: 37.59.0.0 - 37.59.63.255
netname: OVH
descr: OVH SASDedicated servershttp
ns1: sdns2.ovh.net
ns2: ns231403.ovh.net
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10519659 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10519659 2013-04-29T16:40:35+02:00 first: 1367246435
last: 0
md5: 3097f08b5b880d428e0948f7253e2d09
virustotal: http://www.virustotal.com/latest-report.html?resource=3097f08b5b880d428e0948f7253e2d09
vt_score: 12/46 (26.1%)
scanner: BitDefender
virusname: Gen:Variant.Strictor.27708
url: http://heuro-vacances.fr/5nW.exe
recent: up
response: alive
ip: 62.73.4.10
as: AS8999
review: 62.73.4.10
domain: heuro-vacances.fr
country: FR
source: RIPE
email: r.khadrouche@free.fr
inetnum: 62.73.4.0 - 62.73.5.255
netname: NET-WORK-COMMUNICATION-NET
descr: Net work CommunicationISP France, SwitzerlandNWC-BLK1NWC-Bv
ns1: ns1.axinet.fr
ns2: ns2.axinet.fr
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10399568 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10399568 2013-04-25T10:40:09+02:00 first: 1366879209
last: 0
md5: be8341c9a569991e218e77e507c6a032
virustotal: http://www.virustotal.com/latest-report.html?resource=be8341c9a569991e218e77e507c6a032
vt_score: 10/46 (21.7%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen
url: http://wknqba.best.volyn.ua/dlimage11.php
recent: up
response: alive
ip: 91.218.39.175
as: AS197145
review: 91.218.39.175
domain: volyn.ua
country: UA
source: RIPE
email: abusemail@infiumhost.com
inetnum: 91.218.36.0 - 91.218.39.255
netname: INFIUMHOST-NET
descr: Infium Ltd.
ns1: nix.ns.ua
ns2: ns.vizor.lutsk.ua
ns3: ns2.4grad.in.ua
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10399566 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10399566 2013-04-25T10:40:09+02:00 first: 1366879209
last: 0
md5: be8341c9a569991e218e77e507c6a032
virustotal: http://www.virustotal.com/latest-report.html?resource=be8341c9a569991e218e77e507c6a032
vt_score: 10/46 (21.7%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen
url: http://yyhflh.best.volyn.ua/dlimage11.php
recent: up
response: alive
ip: 91.218.39.175
as: AS197145
review: 91.218.39.175
domain: volyn.ua
country: UA
source: RIPE
email: abusemail@infiumhost.com
inetnum: 91.218.36.0 - 91.218.39.255
netname: INFIUMHOST-NET
descr: Infium Ltd.
ns1: ns2.4grad.in.ua
ns2: ns.vizor.lutsk.ua
ns3: nix.ns.ua
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10399565 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10399565 2013-04-25T10:40:09+02:00 first: 1366879209
last: 0
md5: 099365e00f7ebe5a0c51db3176368f16
virustotal: http://www.virustotal.com/latest-report.html?resource=099365e00f7ebe5a0c51db3176368f16
vt_score: 4/46 (8.7%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen
url: http://lwqxam.best.lt.ua/dlimage4.php
recent: up
response: alive
ip: 91.218.39.175
as: AS197145
review: 91.218.39.175
domain: lt.ua
country: UA
source: RIPE
email: abusemail@infiumhost.com
inetnum: 91.218.36.0 - 91.218.39.255
netname: INFIUMHOST-NET
descr: Infium Ltd.
ns1: ns2.4grad.in.ua
ns2: ns.cv.ua
ns3: ns.vizor.lutsk.ua
ns4: nix.ns.ua
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10399564 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10399564 2013-04-25T10:40:09+02:00 first: 1366879209
last: 0
md5: 099365e00f7ebe5a0c51db3176368f16
virustotal: http://www.virustotal.com/latest-report.html?resource=099365e00f7ebe5a0c51db3176368f16
vt_score: 4/46 (8.7%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen
url: http://91.218.39.175/com.php
recent: up
response: alive
ip: 91.218.39.175
as: AS197145
review: 91.218.39.175
domain: 91.218.39.175
country: UA
source: RIPE
email: abusemail@infiumhost.com
inetnum: 91.218.36.0 - 91.218.39.255
netname: INFIUMHOST-NET
descr: Infium Ltd.
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10399563 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10399563 2013-04-25T10:40:09+02:00 first: 1366879209
last: 0
md5: be8341c9a569991e218e77e507c6a032
virustotal: http://www.virustotal.com/latest-report.html?resource=be8341c9a569991e218e77e507c6a032
vt_score: 10/46 (21.7%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen
url: http://91.218.39.175/image.php
recent: up
response: alive
ip: 91.218.39.175
as: AS197145
review: 91.218.39.175
domain: 91.218.39.175
country: UA
source: RIPE
email: abusemail@infiumhost.com
inetnum: 91.218.36.0 - 91.218.39.255
netname: INFIUMHOST-NET
descr: Infium Ltd.
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10333486 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10333486 2013-04-22T14:40:36+02:00 first: 1366634436
last: 0
md5: 5b3575f6d24fa9d4ac17540db9bd2762
virustotal: http://www.virustotal.com/latest-report.html?resource=5b3575f6d24fa9d4ac17540db9bd2762
vt_score: 8/35 (22.9%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Tepfer
url: http://sigkeqvi.ru/angrim2.exe
recent: up
response: alive
ip: 58.153.8.105
as: AS4760
review: 93.89.210.216
domain: sigkeqvi.ru
country: UA
source: RIPE
email: hostmaster@element.dn.ua
inetnum: 58.152.0.0 - 58.153.255.255
netname: EDN-INFRA-NET
descr: East Donbass NetworksSPD Chernyavskiy S.V.East Donbass NetworksEast Donbass Networks
ns1: ns1.sigkeqvi.ru
ns2: ns2.sigkeqvi.ru
ns3: ns4.sigkeqvi.ru
ns4: ns6.sigkeqvi.ru
ns5: ns5.sigkeqvi.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=10315993 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10315993 2013-04-21T15:40:09+02:00 first: 1366551609
last: 0
md5: 78caa5360d7971391f06509999236671
virustotal: http://www.virustotal.com/latest-report.html?resource=78caa5360d7971391f06509999236671
vt_score: 18/46 (39.1%)
scanner: AntiVir
virusname: TR/Kazy.166402
url: http://hotfile.com/dl/203841525/0d7fa04/f1897f4w8f4we1.html
recent: up
response: alive
ip: 199.7.177.226
as: AS7366
review: 199.7.177.216
domain: hotfile.com
country: US
source: ARIN
email: abuse@lemuriaco.com
inetnum: 199.7.176.0 - 199.7.183.255
netname: LEMURIA-COMMUNICATIONS
descr: Lemuria Communications Inc. LEMUR 110 E BROWARD BLVD STE 1736 FORT LAUDERDALE FL 33301
ns1: ns1.hotfile.com
ns2: ns2.easydns.com
ns3: ns1.easydns.com
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10282195 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10282195 2013-04-20T05:40:03+02:00 first: 1366429203
last: 0
md5: e418cc36b3c7a8ec5bd57fbc63cbecc2
virustotal: http://www.virustotal.com/latest-report.html?resource=e418cc36b3c7a8ec5bd57fbc63cbecc2
vt_score: 18/46 (39.1%)
scanner: AntiVir
virusname: TR/Spy.434688.35
url: http://thedogbowlmorecambe.co.uk/main.exe
recent: up
response: alive
ip: 46.30.211.55
as: AS51468
review: 46.30.211.55
domain: thedogbowlmorecambe.co.uk
country: DK
source: RIPE
email: abuse@one.com
inetnum: 46.30.211.32 - 46.30.211.63
netname: ONE-COM
descr: Webcluster services for One.com
ns1: ns01.one.com
ns2: ns02.one.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10281301 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10281301 2013-04-20T05:00:04+02:00 first: 1366426804
last: 0
md5: c2296f493fed89137e044db34807769d
virustotal: http://www.virustotal.com/latest-report.html?resource=c2296f493fed89137e044db34807769d
vt_score: 22/46 (47.8%)
scanner: avira
virusname: TR/Rogue.KD.740321
url: http://you-tube.de.pl/AdobeUpdate.exe
recent: up
response: alive
ip: 78.46.86.242
as: AS24940
review: 78.46.86.242
domain: you-tube.de.pl
country: DE
source: RIPE
email: abuse@hetzner.de
inetnum: 78.46.64.0 - 78.46.95.255
netname: HETZNER-RZ-NBG-NET
descr: Hetzner Online AG
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10260292 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10260292 2013-04-19T13:40:38+02:00 first: 1366371638
last: 0
md5: 78934c5d5a04f96dedff9c54d2fcf31f
virustotal: http://www.virustotal.com/latest-report.html?resource=78934c5d5a04f96dedff9c54d2fcf31f
vt_score: 20/46 (43.5%)
scanner: AntiVir
virusname: TR/Waledac.EB.2
url: http://dj0k.kolasoeg.ru/m.exe
recent: up
response: alive
ip: 159.224.226.211
as: AS13188
review: 93.79.118.22
domain: kolasoeg.ru
country: UA
source: RIPE
email: abuse@volia.net
inetnum: 159.224.0.0 - 159.224.255.255
netname: UA-VOLIA-20080404
descr: Kyivski Telekomunikatsiyni Merezhi LLC
ns1: ns6.kolasoeg.ru
ns2: ns2.kolasoeg.ru
ns3: ns4.kolasoeg.ru
ns4: ns5.kolasoeg.ru
ns5: ns1.kolasoeg.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=10260291 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10260291 2013-04-19T13:40:38+02:00 first: 1366371638
last: 0
md5: 49d4c5e3315b1cf3c939174f506bc54c
virustotal: http://www.virustotal.com/latest-report.html?resource=49d4c5e3315b1cf3c939174f506bc54c
vt_score: 7/35 (20%)
scanner: BitDefender
virusname: Gen:Variant.Kazy.165428
url: http://dj0k.kolasoeg.ru/ballsof.exe
recent: up
response: alive
ip: 37.57.104.182
as: AS13188
review: 189.53.42.157
domain: kolasoeg.ru
country: BR
source: LACNIC
email: abuse@embratel.net.br
inetnum: 37.57.104.0 - 37.57.104.255
netname: 033.530.486/0001-29
descr: EMBRATEL-EMPRESA BRASILEIRA DE TELECOMUNICAÇÕES SA (10525)
ns1: ns6.kolasoeg.ru
ns2: ns2.kolasoeg.ru
ns3: ns4.kolasoeg.ru
ns4: ns5.kolasoeg.ru
ns5: ns1.kolasoeg.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=10259666 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10259666 2013-04-19T13:00:03+02:00 first: 1366369203
last: 0
md5: e844d2c371c72bd0f4b2494aded264af
virustotal: http://www.virustotal.com/latest-report.html?resource=e844d2c371c72bd0f4b2494aded264af
vt_score: 11/44 (25%)
scanner: BitDefender
virusname: Gen:Variant.Kazy.165428
url: http://dj0k.kolasoeg.ru/keybex3.exe
recent: up
response: alive
ip: 31.133.60.219
as: AS52091
review: 46.119.167.149
domain: kolasoeg.ru
country: UA
source: RIPE
email: security@svitonline.com
inetnum: 31.133.32.0 - 31.133.63.255
netname: UA-SVITONLINE-20100517
descr: GoldenTelecom LLC
ns1: ns3.kolasoeg.ru
ns2: ns2.kolasoeg.ru
ns3: ns4.kolasoeg.ru
ns4: ns5.kolasoeg.ru
ns5: ns1.kolasoeg.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=10259489 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10259489 2013-04-19T12:40:13+02:00 first: 1366368013
last: 0
md5: 2b73a5500bfe8da61c23ed04c85a959a
virustotal: http://www.virustotal.com/latest-report.html?resource=2b73a5500bfe8da61c23ed04c85a959a
vt_score: 0/35 (0.0%)
scanner: undef
virusname: unknown_html
url: http://juqhasri.ru/angrim2.exe
recent: up
response: alive
ip: 91.149.167.38
as: AS50155
review: 109.200.253.77
domain: juqhasri.ru
country: UA
source: RIPE
email: abuse@arm.in.ua
inetnum: 91.149.167.0 - 91.149.167.255
netname: UA-BRIZ-20100210
descr: TOV TRK "Briz"
ns1: ns5.juqhasri.ru
ns2: ns6.juqhasri.ru
ns3: ns3.juqhasri.ru
ns4: ns1.juqhasri.ru
ns5: ns4.juqhasri.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=10258320 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10258320 2013-04-19T10:40:16+02:00 first: 1366360816
last: 0
md5: f8f70118d06834de3e561c475a21f64b
virustotal: http://www.virustotal.com/latest-report.html?resource=f8f70118d06834de3e561c475a21f64b
vt_score: 10/35 (28.6%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Foreign
url: http://dj0k.kolasoeg.ru/traff01.exe
recent: up
response: alive
ip: 98.156.69.198
as: AS20231
review: 93.79.247.31
domain: kolasoeg.ru
country: UA
source: RIPE
email: abuse@volia.net
inetnum: 98.144.0.0 - 98.157.255.255
netname: UA-VOLIA-20080404
descr: Kyivski Telekomunikatsiyni Merezhi LLC
ns1: ns1.kolasoeg.ru
ns2: ns2.kolasoeg.ru
ns3: ns3.kolasoeg.ru
ns4: ns5.kolasoeg.ru
ns5: ns4.kolasoeg.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=10257610 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10257610 2013-04-19T09:40:48+02:00 first: 1366357248
last: 0
md5: 2a12e503178bcfb7a299e19af89a8c64
virustotal: http://www.virustotal.com/latest-report.html?resource=2a12e503178bcfb7a299e19af89a8c64
vt_score: 10/46 (21.7%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Foreign
url: http://dj0k.kolasoeg.ru/rasta01.exe
recent: up
response: alive
ip: 77.122.159.162
as: AS25229
review: 46.150.69.173
domain: kolasoeg.ru
country: UA
source: RIPE
email: admin@melitopol.tv
inetnum: 77.122.128.0 - 77.122.207.255
netname: VIVANET-NET1
descr: Vivanet LtdVivanetVivanet Ltd
ns1: ns6.kolasoeg.ru
ns2: ns3.kolasoeg.ru
ns3: ns2.kolasoeg.ru
ns4: ns1.kolasoeg.ru
ns5: ns5.kolasoeg.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=10243754 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10243754 2013-04-18T14:40:03+02:00 first: 1366288803
last: 0
md5: fcabd806d83c4b79c85bd1e9a466fe4f
virustotal: http://www.virustotal.com/latest-report.html?resource=fcabd806d83c4b79c85bd1e9a466fe4f
vt_score: 7/34 (20.6%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Foreign
url: http://78.83.177.242/rasta01.exe
recent: up
response: alive
ip: 78.83.177.242
as: AS29580
review: 78.83.177.242
domain: 78.83.177.242
country: BG
source: RIPE
email: abuse@spnet.net
inetnum: 78.83.0.0 - 78.83.255.255
netname: BG-SPNET-20071416
descr: Spectrum NET Jsc
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10243753 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10243753 2013-04-18T14:40:03+02:00 first: 1366288803
last: 0
md5: 4637e85ee3430a74693753f4271e64f9
virustotal: http://www.virustotal.com/latest-report.html?resource=4637e85ee3430a74693753f4271e64f9
vt_score: 30/46 (65.2%)
scanner: avira
virusname: TR/Dropper.Gen
url: http://vins-vinhos-wines-portugal.com/pictures/images/be.exe
recent: up
response: alive
ip: 213.186.33.17
as: AS16276
review: 213.186.33.17
domain: vins-vinhos-wines-portugal.com
country: FR
source: RIPE
email: abuse@ovh.net
inetnum: 213.186.33.0 - 213.186.33.255
netname: OVH
descr: OVH SASShared Hosting ServershttpOVH ISPParis, France
ns1: dns101.ovh.net
ns2: ns101.ovh.net
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10243752 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10243752 2013-04-18T14:40:03+02:00 first: 1366288803
last: 0
md5: 72b94b74d92ed91540410e083c632e8b
virustotal: http://www.virustotal.com/latest-report.html?resource=72b94b74d92ed91540410e083c632e8b
vt_score: 26/46 (56.5%)
scanner: avira
virusname: TR/Spy.Gen
url: http://vins-vinhos-wines-portugal.com/pictures/img/Pony.exe
recent: up
response: alive
ip: 213.186.33.17
as: AS16276
review: 213.186.33.17
domain: vins-vinhos-wines-portugal.com
country: FR
source: RIPE
email: abuse@ovh.net
inetnum: 213.186.33.0 - 213.186.33.255
netname: OVH
descr: OVH SASShared Hosting ServershttpOVH ISPParis, France
ns1: dns101.ovh.net
ns2: ns101.ovh.net
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10243751 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10243751 2013-04-18T14:40:03+02:00 first: 1366288803
last: 0
md5: a487bf042ee4b00ebd3e8cc6aa0c19ea
virustotal: http://www.virustotal.com/latest-report.html?resource=a487bf042ee4b00ebd3e8cc6aa0c19ea
vt_score: 20/46 (43.5%)
scanner: avira
virusname: TR/Dropper.Gen
url: http://78.83.177.242/calc.exe
recent: up
response: alive
ip: 78.83.177.242
as: AS29580
review: 78.83.177.242
domain: 78.83.177.242
country: BG
source: RIPE
email: abuse@spnet.net
inetnum: 78.83.0.0 - 78.83.255.255
netname: BG-SPNET-20071416
descr: Spectrum NET Jsc
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10243750 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10243750 2013-04-18T14:40:03+02:00 first: 1366288803
last: 0
md5: 8417b517b46a3f3b7a5e5626f2aed3cd
virustotal: http://www.virustotal.com/latest-report.html?resource=8417b517b46a3f3b7a5e5626f2aed3cd
vt_score: 13/46 (28.3%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Foreign
url: http://78.83.177.242/shem001.exe
recent: up
response: alive
ip: 78.83.177.242
as: AS29580
review: 78.83.177.242
domain: 78.83.177.242
country: BG
source: RIPE
email: abuse@spnet.net
inetnum: 78.83.0.0 - 78.83.255.255
netname: BG-SPNET-20071416
descr: Spectrum NET Jsc
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10242689 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10242689 2013-04-18T13:41:13+02:00 first: 1366285273
last: 0
md5: 25521ef657d786265e7db9b2396b1013
virustotal: http://www.virustotal.com/latest-report.html?resource=25521ef657d786265e7db9b2396b1013
vt_score: 9/46 (19.6%)
scanner: BitDefender
virusname: Gen:Variant.Symmi.18711
url: http://deborahgladstein.com/DEB88/STD87YH66.zip
recent: up
response: alive
ip: 66.240.144.68
as: AS29925
review: 66.240.144.68
domain: deborahgladstein.com
country: US
source: ARIN
email: shu.lam@momentum.com
inetnum: 66.240.128.0 - 66.240.191.255
netname: MASMEDIA-NET
descr: Mas Media Inc. MASME 155 Commerce Valley Drive East Thornhill ON L3T-7T2
ns1: ns3.mdnsservice.com
ns2: ns1.mdnsservice.com
ns3: ns2.mdnsservice.com
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10239822 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10239822 2013-04-18T11:00:16+02:00 first: 1366275616
last: 0
md5: e97162613cfb8aa1ef7cc440adc67b0e
virustotal: http://www.virustotal.com/latest-report.html?resource=e97162613cfb8aa1ef7cc440adc67b0e
vt_score: 7/46 (15.2%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Foreign
url: http://ickyrjum.ru/traff01.exe
recent: up
response: alive
ip: 94.240.165.164
as: AS41232
review: 176.241.154.177
domain: ickyrjum.ru
country: UA
source: RIPE
email: abuse@ip.datagroup.ua
inetnum: 94.240.160.0 - 94.240.191.255
netname: UA-DATACOM-20111206
descr: PRIVATE JOINT STOCK COMPANY "DATAGROUP"
ns1: ns2.ickyrjum.ru
ns2: ns3.ickyrjum.ru
ns3: ns6.ickyrjum.ru
ns4: ns5.ickyrjum.ru
ns5: ns1.ickyrjum.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=10239412 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10239412 2013-04-18T10:40:03+02:00 first: 1366274403
last: 0
md5: dc4b789acb1bd89959837ce4134e0273
virustotal: http://www.virustotal.com/latest-report.html?resource=dc4b789acb1bd89959837ce4134e0273
vt_score: 12/46 (26.1%)
scanner: Avast
virusname: Win32:Kryptik-LKV [Trj]
url: http://kolasoeg.ru/newbos3.exe
recent: up
response: alive
ip: 77.122.232.137
as: AS25229
review: 31.192.175.6
domain: kolasoeg.ru
country: RU
source: RIPE
email: ripe@telenet.ru
inetnum: 77.122.128.0 - 77.122.255.255
netname: RU-TELESET-20110421
descr: Teleset-Servis Ltd.KABINET internet workspace
ns1: ns2.kolasoeg.ru
ns2: ns1.kolasoeg.ru
ns3: ns4.kolasoeg.ru
ns4: ns3.kolasoeg.ru
ns5: ns6.kolasoeg.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=10216147 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10216147 2013-04-17T14:40:08+02:00 first: 1366202408
last: 0
md5: 5506a72243dcfb29eea1dfd9096c9376
virustotal: http://www.virustotal.com/latest-report.html?resource=5506a72243dcfb29eea1dfd9096c9376
vt_score: 7/46 (15.2%)
scanner: avira
virusname: TR/Crypt.ZPACK.Gen2
url: http://fvdbzn.best.lt.ua/dlimage4.php
recent: up
response: alive
ip: 94.242.250.178
as: AS5577
review: 94.242.250.178
domain: lt.ua
country: LU
source: RIPE
email: abuse@as5577.net
inetnum: 94.242.224.0 - 94.242.255.255
netname: SERVER-NETWORK
descr: root SA
ns1: ns2.4grad.in.ua
ns2: ns.cv.ua
ns3: nix.ns.ua
ns4: ns.vizor.lutsk.ua
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10214303 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10214303 2013-04-17T12:40:18+02:00 first: 1366195218
last: 0
md5: 8d5b9d70bc98f36c85a82c774960ee6d
virustotal: http://www.virustotal.com/latest-report.html?resource=8d5b9d70bc98f36c85a82c774960ee6d
vt_score: 24/34 (70.6%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Gen
url: http://omi.org.br/flash_player.exe
recent: up
response: alive
ip: 187.45.240.50
as: AS27715
review: 187.45.240.50
domain: omi.org.br
country: BR
source: LACNIC
email: regcom@locaweb.com.br
inetnum: 187.45.224.0 - 187.45.255.255
netname: 002.351.877/0001-52
descr: Locaweb Serviços de Internet S/A
ns1: ns3.locaweb.com.br
ns2: ns1.locaweb.com.br
ns3: ns2.locaweb.com.br
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10214302 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10214302 2013-04-17T12:40:18+02:00 first: 1366195218
last: 0
md5: 81410cd9e0e68e1a299c50770a7e5e3d
virustotal: http://www.virustotal.com/latest-report.html?resource=81410cd9e0e68e1a299c50770a7e5e3d
vt_score: 4/35 (11.4%)
scanner: avira
virusname: TR/Crypt.ZPACK.Gen2
url: http://94.242.250.178:80/image.php
recent: up
response: alive
ip: 94.242.250.178
as: AS5577
review: 94.242.250.178
domain: 94.242.250.178
country: LU
source: RIPE
email: abuse@as5577.net
inetnum: 94.242.224.0 - 94.242.255.255
netname: SERVER-NETWORK
descr: root SA
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10214301 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10214301 2013-04-17T12:40:18+02:00 first: 1366195218
last: 0
md5: 5506a72243dcfb29eea1dfd9096c9376
virustotal: http://www.virustotal.com/latest-report.html?resource=5506a72243dcfb29eea1dfd9096c9376
vt_score: 7/46 (15.2%)
scanner: avira
virusname: TR/Crypt.ZPACK.Gen2
url: http://94.242.250.178:80/com.php
recent: up
response: alive
ip: 94.242.250.178
as: AS5577
review: 94.242.250.178
domain: 94.242.250.178
country: LU
source: RIPE
email: abuse@as5577.net
inetnum: 94.242.224.0 - 94.242.255.255
netname: SERVER-NETWORK
descr: root SA
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10214300 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10214300 2013-04-17T12:40:18+02:00 first: 1366195218
last: 0
md5: 8e9c17b94f1e8602355a6880a2661766
virustotal: http://www.virustotal.com/latest-report.html?resource=8e9c17b94f1e8602355a6880a2661766
vt_score: 23/44 (52.3%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Inject
url: http://www.niloblog.com/files/images/2jcyn4vdrr8yyyfh3z30.png
recent: up
response: alive
ip: 176.9.38.7
as: AS24940
review: 176.9.38.7
domain: niloblog.com
country: DE
source: RIPE
email: abuse@hetzner.de
inetnum: 176.9.0.0 - 176.9.255.255
netname: DE-HETZNER-20110517
descr: Hetzner Online AG
ns1: ns2.niloblog.com
ns2: ns1.niloblog.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10214299 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10214299 2013-04-17T12:40:17+02:00 first: 1366195217
last: 0
md5: 5fb8fe54ea814006ac7b3abd4541bb71
virustotal: http://www.virustotal.com/latest-report.html?resource=5fb8fe54ea814006ac7b3abd4541bb71
vt_score: 1/45 (2.2%)
scanner: Kaspersky
virusname: UDS:DangerousObject.Multi.Generic
url: http://faithbibleweb.org/MsJZeLv6.exe
recent: up
response: alive
ip: 67.210.111.20
as: AS15244
review: 67.210.111.20
domain: faithbibleweb.org
country: US
source: ARIN
email: hostmaster@lunarpages.com
inetnum: 67.210.96.0 - 67.210.111.255
netname: ADD2NET-DOT-COM
descr: ADDD2NET COM INC DBA LUNARPAGES ACIDL Add2Net, Inc. Lunarpages Division 100 East La Habra Blvd. La Habra CA 90631
ns1: ns1.lunarmania.com
ns2: ns2.lunarmania.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10171791 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10171791 2013-04-15T20:40:10+02:00 first: 1366051210
last: 0
md5: e6d75c4addfeb70c29934350b48957e1
virustotal: http://www.virustotal.com/latest-report.html?resource=e6d75c4addfeb70c29934350b48957e1
vt_score: 6/45 (13.3%)
scanner: AVG
virusname: Suspicion: unknown virus
url: http://dls.nicdls.com/p/151/flashplayer/1/1
recent: up
response: alive
ip: 178.33.233.113
as: AS16276
review: 178.33.233.113
domain: nicdls.com
country: FR
source: RIPE
email: abuse@ovh.net
inetnum: 178.32.0.0 - 178.33.255.255
netname: FR-OVH-20100119
descr: Ovh Systems
ns1: ns1.nicdls.com
ns2: ns2.nicdls.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10154524 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10154524 2013-04-15T10:40:52+02:00 first: 1366015252
last: 0
md5: eeff410a4bc62672f1163f0fd9bec3e5
virustotal: http://www.virustotal.com/latest-report.html?resource=eeff410a4bc62672f1163f0fd9bec3e5
vt_score: 26/45 (57.8%)
scanner: AntiVir
virusname: Worm/Dorkbot.AM.5
url: http://hotfile.com/dl/203006750/2822377/h98yoi.html
recent: up
response: alive
ip: 199.7.177.224
as: AS7366
review: 199.7.177.230
domain: hotfile.com
country: US
source: ARIN
email: abuse@lemuriaco.com
inetnum: 199.7.176.0 - 199.7.183.255
netname: LEMURIA-COMMUNICATIONS
descr: Lemuria Communications Inc. LEMUR 110 E BROWARD BLVD STE 1736 FORT LAUDERDALE FL 33301
ns1: ns2.easydns.com
ns2: ns1.easydns.com
ns3: ns1.hotfile.com
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=10074110 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=10074110 2013-04-12T22:40:13+02:00 first: 1365799213
last: 0
md5: faa74648bac7931d48ca1cd19b5362de
virustotal: http://www.virustotal.com/latest-report.html?resource=faa74648bac7931d48ca1cd19b5362de
vt_score: 36/46 (78.3%)
scanner: avira
virusname: TR/Dropper.Gen
url: http://dl.dropboxusercontent.com/s/km4sl43jvagiwqs/fifty.exe
recent: up
response: alive
ip: 54.225.136.76
as: AS16509
review: 50.17.230.108
domain: dropboxusercontent.com
country: US
source: ARIN
email: ec2-abuse@amazon.com
inetnum: 54.224.0.0 - 54.225.255.255
netname: AMAZON-EC2-8
descr: Amazon.com, Inc. AMAZO-4 Amazon Web Services, Elastic Compute Cloud, EC2 1200 12th Avenue South Seattle WA 98144
ns1: ns-1797.awsdns-32.co.uk
ns2: ns-1525.awsdns-62.org
ns3: ns-88.awsdns-11.com
ns4: ns-649.awsdns-17.net
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9965642 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9965642 2013-04-04T12:01:11+02:00 first: 1365069671
last: 0
md5: ed70e6d4ca5a1360b4917bc03153e5a3
virustotal: http://www.virustotal.com/latest-report.html?resource=ed70e6d4ca5a1360b4917bc03153e5a3
vt_score: 11/36 (30.6%)
scanner: BitDefender
virusname: Gen:Variant.Zusy.42478
url: http://bigdollarbills.com/sF2jEhs.exe
recent: up
response: alive
ip: 72.167.183.25
as: AS26496
review: 72.167.183.25
domain: bigdollarbills.com
country: US
source: ARIN
email: noc@godaddy.com
inetnum: 72.167.0.0 - 72.167.255.255
netname: GO-DADDY-COM-LLC
descr: GoDaddy.com, LLC GODAD 14455 N Hayden Road Suite 226 Scottsdale AZ 85260
ns1: ns76.domaincontrol.com
ns2: ns75.domaincontrol.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9965641 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9965641 2013-04-04T12:01:11+02:00 first: 1365069671
last: 0
md5: ed70e6d4ca5a1360b4917bc03153e5a3
virustotal: http://www.virustotal.com/latest-report.html?resource=ed70e6d4ca5a1360b4917bc03153e5a3
vt_score: 34/46 (73.9%)
scanner: BitDefender
virusname: Gen:Variant.Zusy.42478
url: http://flaglere.ipower.com/CBpDjd.exe
recent: up
response: alive
ip: 66.96.131.12
as: AS29873
review: 66.96.131.12
domain: ipower.com
country: US
source: ARIN
email: bnbrock@maileig.com
inetnum: 66.96.128.0 - 66.96.191.255
netname: BIZLAND-FC01
descr: The Endurance International Group, Inc. EIG-12 70 Blanchard Road Burlington MA 01803
ns1: ns2.ipowerweb.net
ns2: ns2.ipowerdns.com
ns3: ns1.ipowerweb.net
ns4: ns1.ipowerdns.com
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9965640 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9965640 2013-04-04T12:01:11+02:00 first: 1365069671
last: 0
md5: ed70e6d4ca5a1360b4917bc03153e5a3
virustotal: http://www.virustotal.com/latest-report.html?resource=ed70e6d4ca5a1360b4917bc03153e5a3
vt_score: 34/46 (73.9%)
scanner: BitDefender
virusname: Gen:Variant.Zusy.42478
url: http://www.fortalezapremium.com.br/JgN.exe
recent: up
response: alive
ip: 200.58.111.69
as: AS27823
review: 200.58.111.69
domain: fortalezapremium.com.br
country: AR
source: LACNIC
email: ipmaster@hostmar.com
inetnum: 200.58.96.0 - 200.58.111.255
netname: AR-DATT-LACNIC
descr: Dattatec.comCordoba, 3753,2000 - Rosario - SFCordoba, 3753,2000 - Rosario - SF
ns1: ns3.hostmar.com
ns2: ns4.hostmar.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9964431 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9964431 2013-04-04T10:00:09+02:00 first: 1365062409
last: 0
md5: 2c440d6809db65ff58bc0fe86300608a
virustotal: http://www.virustotal.com/latest-report.html?resource=2c440d6809db65ff58bc0fe86300608a
vt_score: 29/45 (64.4%)
scanner: avira
virusname: TR/Dropper.Gen
url: http://yobbk.lskrmms.ignorelist.com/1.exe?ts=db8ad130816342eec9ab7e4c567b9bbbffd4fdec&affid=31212
recent: up
response: alive
ip: 5.104.106.56
as: AS24961
review: 5.104.106.56
domain: ignorelist.com
country: DE
source: RIPE
email: abuse@fibre1.net
inetnum: 5.104.104.0 - 5.104.111.255
netname: DE-FASTIT-20120629
descr: myLoc managed IT AG
ns1: ns4.afraid.org
ns2: ns2.afraid.org
ns3: ns3.afraid.org
ns4: ns1.afraid.org
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9964430 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9964430 2013-04-04T10:00:09+02:00 first: 1365062409
last: 0
md5: 0cc4f5eacd1ab6ebd99855b7ed77c651
virustotal: http://www.virustotal.com/latest-report.html?resource=0cc4f5eacd1ab6ebd99855b7ed77c651
vt_score: 3/46 (6.5%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen2
url: http://yobbk.lskrmms.ignorelist.com/get_soft_demo.php?ts=db8ad130816342eec9ab7e4c567b9bbbffd4fdec&affid=31212
recent: up
response: alive
ip: 5.104.106.56
as: AS24961
review: 5.104.106.56
domain: ignorelist.com
country: DE
source: RIPE
email: abuse@fibre1.net
inetnum: 5.104.104.0 - 5.104.111.255
netname: DE-FASTIT-20120629
descr: myLoc managed IT AG
ns1: ns4.afraid.org
ns2: ns2.afraid.org
ns3: ns3.afraid.org
ns4: ns1.afraid.org
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9955554 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9955554 2013-04-03T11:40:39+02:00 first: 1364982039
last: 0
md5: e30dd76330ab2df795efb978ae0ec7bf
virustotal: http://www.virustotal.com/latest-report.html?resource=e30dd76330ab2df795efb978ae0ec7bf
vt_score: 7/36 (19.4%)
scanner: AVG
virusname: Win32/Cryptor
url: http://openminds.nazwa.pl/Y3EWoT.exe
recent: up
response: alive
ip: 85.128.198.179
as: AS15967
review: 85.128.198.179
domain: nazwa.pl
country: PL
source: RIPE
email: abuse@netart.pl
inetnum: 85.128.168.0 - 85.128.199.255
netname: NETART
descr: NetArt webhosting servers
ns1: ns1.netart.pl
ns2: ns2.netart.pl
ns3: ns3.netart.pl
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9955553 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9955553 2013-04-03T11:40:39+02:00 first: 1364982039
last: 0
md5: 24a2dbbcea4137e5a329c38cda32a07e
virustotal: http://www.virustotal.com/latest-report.html?resource=24a2dbbcea4137e5a329c38cda32a07e
vt_score: 5/36 (13.9%)
scanner: AVG
virusname: Suspicion: unknown virus
url: http://curtisgroup-inc.com/ZopzktR1.exe
recent: up
response: alive
ip: 74.208.19.185
as: AS8560
review: 74.208.19.185
domain: curtisgroup-inc.com
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.79.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1: ns58.1and1.com
ns2: ns57.1and1.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9954538 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9954538 2013-04-03T09:40:46+02:00 first: 1364974846
last: 0
md5: b876c7653dac3cc259875172c6bd18aa
virustotal: http://www.virustotal.com/latest-report.html?resource=b876c7653dac3cc259875172c6bd18aa
vt_score: 34/45 (75.6%)
scanner: avira
virusname: TR/Crypt.ZPACK.Gen
url: http://hotfile.com/dl/201095360/b8442e7/7f93h34t.html
recent: up
response: alive
ip: 199.7.177.232
as: AS7366
review: 199.7.177.230
domain: hotfile.com
country: US
source: ARIN
email: abuse@lemuriaco.com
inetnum: 199.7.176.0 - 199.7.183.255
netname: LEMURIA-COMMUNICATIONS
descr: Lemuria Communications Inc. LEMUR 110 E BROWARD BLVD STE 1736 FORT LAUDERDALE FL 33301
ns1: ns1.easydns.com
ns2: ns1.hotfile.com
ns3: ns2.easydns.com
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9938718 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9938718 2013-04-02T12:40:05+02:00 first: 1364899205
last: 0
md5: 8fcb723a091ade0f133aca882f5b8cf2
virustotal: http://www.virustotal.com/latest-report.html?resource=8fcb723a091ade0f133aca882f5b8cf2
vt_score: 29/46 (63%)
scanner: clamav
virusname: Win.Trojan.Spy-70
url: http://satisotomatlari.com/images/atualizacao/ISB31670327.rar
recent: up
response: alive
ip: 213.142.141.17
as: AS16265
review: 213.142.141.17
domain: satisotomatlari.com
country: TR
source: RIPE
email: ipabuse@adeox.com
inetnum: 213.142.136.0 - 213.142.143.255
netname: ADEOXNET
descr: Adeox Hosting Network
ns1: server-6e290821
ns2: ns.satisotomatlari.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9938717 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9938717 2013-04-02T12:40:05+02:00 first: 1364899205
last: 0
md5: 12b6c3aa5dab48afcdeb53a168d519ac
virustotal: http://www.virustotal.com/latest-report.html?resource=12b6c3aa5dab48afcdeb53a168d519ac
vt_score: 22/46 (47.8%)
scanner: Antiy_AVL
virusname: Trojan/Win32.Chifrax.gen
url: http://cristinaubatuba.com.br/images/stories/refce012/refce012_15.jpg
recent: up
response: alive
ip: 187.108.192.52
as: AS53107
review: 187.108.192.52
domain: cristinaubatuba.com.br
country: BR
source: LACNIC
email: l-registrobr-uol@corp.uol.com.br
inetnum: 187.108.192.0 - 187.108.195.255
netname: 001.109.184/0004-38
descr: Universo Online S.A.
ns1: ns2.dravos.com
ns2: ns1.dravos.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9938319 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9938319 2013-04-02T11:00:20+02:00 first: 1364893220
last: 0
md5: 86bdb5e4a27a2318ccc95595864d6a58
virustotal: http://www.virustotal.com/latest-report.html?resource=86bdb5e4a27a2318ccc95595864d6a58
vt_score: 9/36 (25%)
scanner: BitDefender
virusname: Trojan.Generic.KDZ.12764
url: http://f1axion.gr/LkEAg.exe
recent: up
response: alive
ip: 85.25.120.154
as: AS8972
review: 85.25.120.154
domain: f1axion.gr
country: DE
source: RIPE
email: abuse@server4you.de
inetnum: 85.25.112.0 - 85.25.127.255
netname: SERVER4YOU-DSL
descr: SERVER4YOU-DSL Broadband DialinhttpThese IPs are dynamic-assigned broadband IPsInternet-Hosterintergenia AG
ns1: ns1.winzone32.grserver.gr
ns2: ns2.winzone32.grserver.gr
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9938318 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9938318 2013-04-02T11:00:19+02:00 first: 1364893219
last: 0
md5: 5d2fe09941645450dbc034d23de61eaa
virustotal: http://www.virustotal.com/latest-report.html?resource=5d2fe09941645450dbc034d23de61eaa
vt_score: 34/46 (73.9%)
scanner: AhnLab_V3
virusname: Dropper/Win32.Injector
url: http://sebassmusic.com/favicon.ico
recent: up
response: alive
ip: 94.100.20.11
as: AS35017
review: 94.100.20.11
domain: sebassmusic.com
country: NL
source: RIPE
email: support@e-dentify.nl
inetnum: 94.100.20.0 - 94.100.20.255
netname: E-DENTIFY
descr: E-dentify.nlNL-AS35017
ns1: ns14.e-ns.nl
ns2: ns13.e-ns.nl
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9938288 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9938288 2013-04-02T10:40:04+02:00 first: 1364892004
last: 0
md5: 86bdb5e4a27a2318ccc95595864d6a58
virustotal: http://www.virustotal.com/latest-report.html?resource=86bdb5e4a27a2318ccc95595864d6a58
vt_score: 9/36 (25%)
scanner: BitDefender
virusname: Trojan.Generic.KDZ.12764
url: http://frecuencia1023.com/jRgkFG.exe
recent: up
response: alive
ip: 200.58.114.17
as: ASNA.200.58.112.0 - 200.58.127.255
review: 200.58.114.17
domain: frecuencia1023.com
country: AR
source: LACNIC
email: ipmaster@hostmar.com
inetnum: 200.58.112.0 - 200.58.127.255
netname: AR-DATT-LACNIC
descr: Dattatec.comCordoba, 3753,2000 - Rosario - SFCordoba, 3753,2000 - Rosario - SF
ns1: ns3.hostmar.com
ns2: ns4.hostmar.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9938053 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9938053 2013-04-02T09:41:06+02:00 first: 1364888466
last: 0
md5: 6461b8847870fb809c7bcd9d1f5b6c4d
virustotal: http://www.virustotal.com/latest-report.html?resource=6461b8847870fb809c7bcd9d1f5b6c4d
vt_score: 4/36 (11.1%)
scanner: BitDefender
virusname: Gen:Variant.Symmi.17074
url: http://hotfile.com/dl/201058396/97cebd1/c378goqw34ty7i4.html
recent: up
response: alive
ip: 199.7.177.244
as: AS7366
review: 199.7.177.236
domain: hotfile.com
country: US
source: ARIN
email: abuse@lemuriaco.com
inetnum: 199.7.176.0 - 199.7.183.255
netname: LEMURIA-COMMUNICATIONS
descr: Lemuria Communications Inc. LEMUR 110 E BROWARD BLVD STE 1736 FORT LAUDERDALE FL 33301
ns1: ns1.easydns.com
ns2: ns2.easydns.com
ns3: ns1.hotfile.com
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933659 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933659 2013-04-01T15:00:03+02:00 first: 1364821203
last: 0
md5: c9c6aeacee9f973ca0ca5da101a12a16
virustotal: http://www.virustotal.com/latest-report.html?resource=c9c6aeacee9f973ca0ca5da101a12a16
vt_score: 24/46 (52.2%)
scanner: avira
virusname: TR/ATRAPS.Gen
url: http://ergoholding.ru/rev/gate.php?cmd=getexe
recent: up
response: alive
ip: 62.109.5.151
as: AS29182
review: 62.109.5.151
domain: ergoholding.ru
country: RU
source: RIPE
email: abuse@ispsystem.net
inetnum: 62.109.0.0 - 62.109.7.255
netname: ISPSYSTEM
descr: ISPsystem at MSM
ns1: ns2.dollardns.net
ns2: ns1.dollardns.net
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933328 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933328 2013-04-01T14:00:09+02:00 first: 1364817609
last: 0
md5: 9ed393937fdde7c7d99238bcb5d47294
virustotal: http://www.virustotal.com/latest-report.html?resource=9ed393937fdde7c7d99238bcb5d47294
vt_score: 16/36 (44.4%)
scanner: avira
virusname: TR/Dldr.Delphi.Gen
url: http://SuperAdsDomain.ru/c/tui.exe
recent: up
response: alive
ip: 91.217.90.237
as: AS21098
review: 91.217.90.237
domain: SuperAdsDomain.ru
country: UA
source: RIPE
email: vitaliy@xserver.com.ua
inetnum: 91.217.90.0 - 91.217.91.255
netname: IVANOV-IP2
descr: PE Ivanov Vitaliy SergeevichMhost Data Center
ns1: ns1.freedns.ws
ns2: ns3.freedns.ws
ns3: ns2.freedns.ws
ns4: ns4.freedns.ws
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933206 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933206 2013-04-01T13:41:16+02:00 first: 1364816476
last: 0
md5: 09abf42bc0782621124c5f3b1fa3c694
virustotal: http://www.virustotal.com/latest-report.html?resource=09abf42bc0782621124c5f3b1fa3c694
vt_score: 6/36 (16.7%)
scanner: BitDefender
virusname: Trojan.Generic.KD.921379
url: http://SuperAdsDomain.ru/bl/1.exe
recent: up
response: alive
ip: 91.217.90.237
as: AS21098
review: 91.217.90.237
domain: SuperAdsDomain.ru
country: UA
source: RIPE
email: vitaliy@xserver.com.ua
inetnum: 91.217.90.0 - 91.217.91.255
netname: IVANOV-IP2
descr: PE Ivanov Vitaliy SergeevichMhost Data Center
ns1: ns2.freedns.ws
ns2: ns3.freedns.ws
ns3: ns4.freedns.ws
ns4: ns1.freedns.ws
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933205 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933205 2013-04-01T13:41:16+02:00 first: 1364816476
last: 0
md5: e60df17001a3cb3c309908ad992a4575
virustotal: http://www.virustotal.com/latest-report.html?resource=e60df17001a3cb3c309908ad992a4575
vt_score: 5/36 (13.9%)
scanner: eSafe
virusname: Suspicious File
url: http://SuperAdsDomain.ru/bl/mail.exe
recent: up
response: alive
ip: 91.217.90.237
as: AS21098
review: 91.217.90.237
domain: SuperAdsDomain.ru
country: UA
source: RIPE
email: vitaliy@xserver.com.ua
inetnum: 91.217.90.0 - 91.217.91.255
netname: IVANOV-IP2
descr: PE Ivanov Vitaliy SergeevichMhost Data Center
ns1: ns2.freedns.ws
ns2: ns3.freedns.ws
ns3: ns4.freedns.ws
ns4: ns1.freedns.ws
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933204 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933204 2013-04-01T13:41:16+02:00 first: 1364816476
last: 0
md5: f2fbef6378d7429fce3358b77892cfae
virustotal: http://www.virustotal.com/latest-report.html?resource=f2fbef6378d7429fce3358b77892cfae
vt_score: 24/46 (52.2%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen
url: http://SuperAdsDomain.ru/bl/111.exe
recent: up
response: alive
ip: 91.217.90.237
as: AS21098
review: 91.217.90.237
domain: SuperAdsDomain.ru
country: UA
source: RIPE
email: vitaliy@xserver.com.ua
inetnum: 91.217.90.0 - 91.217.91.255
netname: IVANOV-IP2
descr: PE Ivanov Vitaliy SergeevichMhost Data Center
ns1: ns2.freedns.ws
ns2: ns3.freedns.ws
ns3: ns4.freedns.ws
ns4: ns1.freedns.ws
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933203 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933203 2013-04-01T13:41:16+02:00 first: 1364816476
last: 0
md5: 26327ff85959d80cf6680e1e8f4f221b
virustotal: http://www.virustotal.com/latest-report.html?resource=26327ff85959d80cf6680e1e8f4f221b
vt_score: 24/46 (52.2%)
scanner: avira
virusname: TR/ATRAPS.Gen2
url: http://SuperAdsDomain.ru/bl/setup.exe
recent: up
response: alive
ip: 91.217.90.237
as: AS21098
review: 91.217.90.237
domain: SuperAdsDomain.ru
country: UA
source: RIPE
email: vitaliy@xserver.com.ua
inetnum: 91.217.90.0 - 91.217.91.255
netname: IVANOV-IP2
descr: PE Ivanov Vitaliy SergeevichMhost Data Center
ns1: ns2.freedns.ws
ns2: ns3.freedns.ws
ns3: ns4.freedns.ws
ns4: ns1.freedns.ws
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933202 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933202 2013-04-01T13:41:16+02:00 first: 1364816476
last: 0
md5: 9f4e6b59505df462af59b94b22354015
virustotal: http://www.virustotal.com/latest-report.html?resource=9f4e6b59505df462af59b94b22354015
vt_score: 15/36 (41.7%)
scanner: AntiVir
virusname: Worm/Gamarue.I.1066
url: http://SuperAdsDomain.ru/bl/mailer.exe
recent: up
response: alive
ip: 91.217.90.237
as: AS21098
review: 91.217.90.237
domain: SuperAdsDomain.ru
country: UA
source: RIPE
email: vitaliy@xserver.com.ua
inetnum: 91.217.90.0 - 91.217.91.255
netname: IVANOV-IP2
descr: PE Ivanov Vitaliy SergeevichMhost Data Center
ns1: ns2.freedns.ws
ns2: ns3.freedns.ws
ns3: ns4.freedns.ws
ns4: ns1.freedns.ws
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933201 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933201 2013-04-01T13:41:16+02:00 first: 1364816476
last: 0
md5: e071f310a1ee4b391d044e2aaf6ebb99
virustotal: http://www.virustotal.com/latest-report.html?resource=e071f310a1ee4b391d044e2aaf6ebb99
vt_score: 18/36 (50%)
scanner: AntiVir
virusname: TR/Rogue.kdz.12397.10
url: http://SuperAdsDomain.ru/bl/output.exe
recent: up
response: alive
ip: 91.217.90.237
as: AS21098
review: 91.217.90.237
domain: SuperAdsDomain.ru
country: UA
source: RIPE
email: vitaliy@xserver.com.ua
inetnum: 91.217.90.0 - 91.217.91.255
netname: IVANOV-IP2
descr: PE Ivanov Vitaliy SergeevichMhost Data Center
ns1: ns2.freedns.ws
ns2: ns3.freedns.ws
ns3: ns4.freedns.ws
ns4: ns1.freedns.ws
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933200 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933200 2013-04-01T13:41:16+02:00 first: 1364816476
last: 0
md5: 608e29ecb5fe90744886c9094ecc4aa7
virustotal: http://www.virustotal.com/latest-report.html?resource=608e29ecb5fe90744886c9094ecc4aa7
vt_score: 29/36 (80.6%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Inject
url: http://SuperAdsDomain.ru/bl/generator.exe
recent: up
response: alive
ip: 91.217.90.237
as: AS21098
review: 91.217.90.237
domain: SuperAdsDomain.ru
country: UA
source: RIPE
email: vitaliy@xserver.com.ua
inetnum: 91.217.90.0 - 91.217.91.255
netname: IVANOV-IP2
descr: PE Ivanov Vitaliy SergeevichMhost Data Center
ns1: ns2.freedns.ws
ns2: ns3.freedns.ws
ns3: ns4.freedns.ws
ns4: ns1.freedns.ws
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933199 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933199 2013-04-01T13:41:16+02:00 first: 1364816476
last: 0
md5: 63a0f2dd9a9841fa7710ea6d65b46377
virustotal: http://www.virustotal.com/latest-report.html?resource=63a0f2dd9a9841fa7710ea6d65b46377
vt_score: 21/36 (58.3%)
scanner: AhnLab_V3
virusname: Spyware/Win32.Zbot
url: http://SuperAdsDomain.ru/bl/firenze.exe
recent: up
response: alive
ip: 91.217.90.237
as: AS21098
review: 91.217.90.237
domain: SuperAdsDomain.ru
country: UA
source: RIPE
email: vitaliy@xserver.com.ua
inetnum: 91.217.90.0 - 91.217.91.255
netname: IVANOV-IP2
descr: PE Ivanov Vitaliy SergeevichMhost Data Center
ns1: ns2.freedns.ws
ns2: ns3.freedns.ws
ns3: ns4.freedns.ws
ns4: ns1.freedns.ws
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933198 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933198 2013-04-01T13:41:16+02:00 first: 1364816476
last: 0
md5: ea78eb273f0c633b8a0a86f386f2310b
virustotal: http://www.virustotal.com/latest-report.html?resource=ea78eb273f0c633b8a0a86f386f2310b
vt_score: 41/45 (91.1%)
scanner: avira
virusname: TR/ATRAPS.Gen
url: http://SuperAdsDomain.ru/bl/svchost.exe
recent: up
response: alive
ip: 91.217.90.237
as: AS21098
review: 91.217.90.237
domain: SuperAdsDomain.ru
country: UA
source: RIPE
email: vitaliy@xserver.com.ua
inetnum: 91.217.90.0 - 91.217.91.255
netname: IVANOV-IP2
descr: PE Ivanov Vitaliy SergeevichMhost Data Center
ns1: ns2.freedns.ws
ns2: ns3.freedns.ws
ns3: ns4.freedns.ws
ns4: ns1.freedns.ws
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933197 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933197 2013-04-01T13:41:16+02:00 first: 1364816476
last: 0
md5: 0a47ba384a192c635af8bbf7de806573
virustotal: http://www.virustotal.com/latest-report.html?resource=0a47ba384a192c635af8bbf7de806573
vt_score: 30/36 (83.3%)
scanner: avira
virusname: TR/Dldr.Delphi.Gen
url: http://SuperAdsDomain.ru/sv/bot.exe
recent: up
response: alive
ip: 91.217.90.237
as: AS21098
review: 91.217.90.237
domain: SuperAdsDomain.ru
country: UA
source: RIPE
email: vitaliy@xserver.com.ua
inetnum: 91.217.90.0 - 91.217.91.255
netname: IVANOV-IP2
descr: PE Ivanov Vitaliy SergeevichMhost Data Center
ns1: ns2.freedns.ws
ns2: ns3.freedns.ws
ns3: ns4.freedns.ws
ns4: ns1.freedns.ws
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933196 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933196 2013-04-01T13:41:15+02:00 first: 1364816475
last: 0
md5: 97fe565d2160dd4e834f897b77cabf8f
virustotal: http://www.virustotal.com/latest-report.html?resource=97fe565d2160dd4e834f897b77cabf8f
vt_score: 33/36 (91.7%)
scanner: avira
virusname: WORM/Rbot.Gen
url: http://SuperAdsDomain.ru/c/1.exe
recent: up
response: alive
ip: 91.217.90.237
as: AS21098
review: 91.217.90.237
domain: SuperAdsDomain.ru
country: UA
source: RIPE
email: vitaliy@xserver.com.ua
inetnum: 91.217.90.0 - 91.217.91.255
netname: IVANOV-IP2
descr: PE Ivanov Vitaliy SergeevichMhost Data Center
ns1: ns2.freedns.ws
ns2: ns3.freedns.ws
ns3: ns4.freedns.ws
ns4: ns1.freedns.ws
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933194 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933194 2013-04-01T13:41:15+02:00 first: 1364816475
last: 0
md5: 08054e3b719ea9cc24cf54bcd9ba5722
virustotal: http://www.virustotal.com/latest-report.html?resource=08054e3b719ea9cc24cf54bcd9ba5722
vt_score: 31/36 (86.1%)
scanner: avira
virusname: TR/Dldr.Delphi.Gen
url: http://SuperAdsDomain.ru/p/bin.exe
recent: up
response: alive
ip: 91.217.90.237
as: AS21098
review: 91.217.90.237
domain: SuperAdsDomain.ru
country: UA
source: RIPE
email: vitaliy@xserver.com.ua
inetnum: 91.217.90.0 - 91.217.91.255
netname: IVANOV-IP2
descr: PE Ivanov Vitaliy SergeevichMhost Data Center
ns1: ns2.freedns.ws
ns2: ns3.freedns.ws
ns3: ns4.freedns.ws
ns4: ns1.freedns.ws
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933193 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933193 2013-04-01T13:41:15+02:00 first: 1364816475
last: 0
md5: 5cd1807d8a2aa57058bd4d77988a6b5b
virustotal: http://www.virustotal.com/latest-report.html?resource=5cd1807d8a2aa57058bd4d77988a6b5b
vt_score: 25/36 (69.4%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Gen
url: http://SuperAdsDomain.ru/p/u.exe
recent: up
response: alive
ip: 91.217.90.237
as: AS21098
review: 91.217.90.237
domain: SuperAdsDomain.ru
country: UA
source: RIPE
email: vitaliy@xserver.com.ua
inetnum: 91.217.90.0 - 91.217.91.255
netname: IVANOV-IP2
descr: PE Ivanov Vitaliy SergeevichMhost Data Center
ns1: ns4.freedns.ws
ns2: ns2.freedns.ws
ns3: ns1.freedns.ws
ns4: ns3.freedns.ws
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933192 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933192 2013-04-01T13:41:15+02:00 first: 1364816475
last: 0
md5: 6ea245bcef11cd07b0bf8c68a1fc79ee
virustotal: http://www.virustotal.com/latest-report.html?resource=6ea245bcef11cd07b0bf8c68a1fc79ee
vt_score: 20/36 (55.6%)
scanner: AhnLab_V3
virusname: Trojan/Win32.VBKrypt
url: http://SuperAdsDomain.ru/p/test.exe
recent: up
response: alive
ip: 91.217.90.237
as: AS21098
review: 91.217.90.237
domain: SuperAdsDomain.ru
country: UA
source: RIPE
email: vitaliy@xserver.com.ua
inetnum: 91.217.90.0 - 91.217.91.255
netname: IVANOV-IP2
descr: PE Ivanov Vitaliy SergeevichMhost Data Center
ns1: ns4.freedns.ws
ns2: ns2.freedns.ws
ns3: ns1.freedns.ws
ns4: ns3.freedns.ws
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933191 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933191 2013-04-01T13:41:15+02:00 first: 1364816475
last: 0
md5: 9122cf2a819f037f679b1c43955bd3a7
virustotal: http://www.virustotal.com/latest-report.html?resource=9122cf2a819f037f679b1c43955bd3a7
vt_score: 33/36 (91.7%)
scanner: avira
virusname: TR/Downloader.Gen
url: http://SuperAdsDomain.ru/c/123.exe
recent: up
response: alive
ip: 91.217.90.237
as: AS21098
review: 91.217.90.237
domain: SuperAdsDomain.ru
country: UA
source: RIPE
email: vitaliy@xserver.com.ua
inetnum: 91.217.90.0 - 91.217.91.255
netname: IVANOV-IP2
descr: PE Ivanov Vitaliy SergeevichMhost Data Center
ns1: ns4.freedns.ws
ns2: ns2.freedns.ws
ns3: ns1.freedns.ws
ns4: ns3.freedns.ws
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933190 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933190 2013-04-01T13:41:15+02:00 first: 1364816475
last: 0
md5: bbeb7b39b45dfdf8261fce8900b7145f
virustotal: http://www.virustotal.com/latest-report.html?resource=bbeb7b39b45dfdf8261fce8900b7145f
vt_score: 27/36 (75%)
scanner: clamav
virusname: Win.Trojan.Agent-221710
url: http://SuperAdsDomain.ru/c/456.exe
recent: up
response: alive
ip: 91.217.90.237
as: AS21098
review: 91.217.90.237
domain: SuperAdsDomain.ru
country: UA
source: RIPE
email: vitaliy@xserver.com.ua
inetnum: 91.217.90.0 - 91.217.91.255
netname: IVANOV-IP2
descr: PE Ivanov Vitaliy SergeevichMhost Data Center
ns1: ns4.freedns.ws
ns2: ns2.freedns.ws
ns3: ns1.freedns.ws
ns4: ns3.freedns.ws
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933189 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933189 2013-04-01T13:41:15+02:00 first: 1364816475
last: 0
md5: 919a620511472063cb9d1383f8af839e
virustotal: http://www.virustotal.com/latest-report.html?resource=919a620511472063cb9d1383f8af839e
vt_score: 22/29 (75.9%)
scanner: AhnLab_V3
virusname: Trojan/Win32.VB
url: http://SuperAdsDomain.ru/p/bot.exe
recent: up
response: alive
ip: 91.217.90.237
as: AS21098
review: 91.217.90.237
domain: SuperAdsDomain.ru
country: UA
source: RIPE
email: vitaliy@xserver.com.ua
inetnum: 91.217.90.0 - 91.217.91.255
netname: IVANOV-IP2
descr: PE Ivanov Vitaliy SergeevichMhost Data Center
ns1: ns4.freedns.ws
ns2: ns2.freedns.ws
ns3: ns1.freedns.ws
ns4: ns3.freedns.ws
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933188 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933188 2013-04-01T13:41:15+02:00 first: 1364816475
last: 0
md5: ec0034740461f874f24959040e181875
virustotal: http://www.virustotal.com/latest-report.html?resource=ec0034740461f874f24959040e181875
vt_score: 23/36 (63.9%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen
url: http://SuperAdsDomain.ru/p/777.exe
recent: up
response: alive
ip: 91.217.90.237
as: AS21098
review: 91.217.90.237
domain: SuperAdsDomain.ru
country: UA
source: RIPE
email: vitaliy@xserver.com.ua
inetnum: 91.217.90.0 - 91.217.91.255
netname: IVANOV-IP2
descr: PE Ivanov Vitaliy SergeevichMhost Data Center
ns1: ns4.freedns.ws
ns2: ns2.freedns.ws
ns3: ns1.freedns.ws
ns4: ns3.freedns.ws
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933187 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933187 2013-04-01T13:41:14+02:00 first: 1364816474
last: 0
md5: 87c63eac1ec76a733141ff33b7d93af3
virustotal: http://www.virustotal.com/latest-report.html?resource=87c63eac1ec76a733141ff33b7d93af3
vt_score: 25/36 (69.4%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Gimemo
url: http://SuperAdsDomain.ru/p/still.exe
recent: up
response: alive
ip: 91.217.90.237
as: AS21098
review: 91.217.90.237
domain: SuperAdsDomain.ru
country: UA
source: RIPE
email: vitaliy@xserver.com.ua
inetnum: 91.217.90.0 - 91.217.91.255
netname: IVANOV-IP2
descr: PE Ivanov Vitaliy SergeevichMhost Data Center
ns1: ns4.freedns.ws
ns2: ns2.freedns.ws
ns3: ns1.freedns.ws
ns4: ns3.freedns.ws
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933186 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933186 2013-04-01T13:41:14+02:00 first: 1364816474
last: 0
md5: fc7ae14084c949ddbb858e1b411d9bab
virustotal: http://www.virustotal.com/latest-report.html?resource=fc7ae14084c949ddbb858e1b411d9bab
vt_score: 25/36 (69.4%)
scanner: avira
virusname: TR/Dldr.Delphi.Gen
url: http://SuperAdsDomain.ru/c/bot2.exe
recent: up
response: alive
ip: 91.217.90.237
as: AS21098
review: 91.217.90.237
domain: SuperAdsDomain.ru
country: UA
source: RIPE
email: vitaliy@xserver.com.ua
inetnum: 91.217.90.0 - 91.217.91.255
netname: IVANOV-IP2
descr: PE Ivanov Vitaliy SergeevichMhost Data Center
ns1: ns4.freedns.ws
ns2: ns2.freedns.ws
ns3: ns1.freedns.ws
ns4: ns3.freedns.ws
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933185 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933185 2013-04-01T13:41:13+02:00 first: 1364816473
last: 0
md5: 898a1f06085f1d1d3f0c50fa90aae3df
virustotal: http://www.virustotal.com/latest-report.html?resource=898a1f06085f1d1d3f0c50fa90aae3df
vt_score: 29/36 (80.6%)
scanner: clamav
virusname: WIN.Ransom.Blocker-4
url: http://SuperAdsDomain.ru/p/finished.exe
recent: up
response: alive
ip: 91.217.90.237
as: AS21098
review: 91.217.90.237
domain: SuperAdsDomain.ru
country: UA
source: RIPE
email: vitaliy@xserver.com.ua
inetnum: 91.217.90.0 - 91.217.91.255
netname: IVANOV-IP2
descr: PE Ivanov Vitaliy SergeevichMhost Data Center
ns1: ns4.freedns.ws
ns2: ns2.freedns.ws
ns3: ns1.freedns.ws
ns4: ns3.freedns.ws
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933184 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933184 2013-04-01T13:41:13+02:00 first: 1364816473
last: 0
md5: 876d5acc323a705597c58e520d3c5a53
virustotal: http://www.virustotal.com/latest-report.html?resource=876d5acc323a705597c58e520d3c5a53
vt_score: 23/36 (63.9%)
scanner: avira
virusname: TR/Dldr.Delphi.Gen
url: http://SuperAdsDomain.ru/c/bot1.exe
recent: up
response: alive
ip: 91.217.90.237
as: AS21098
review: 91.217.90.237
domain: SuperAdsDomain.ru
country: UA
source: RIPE
email: vitaliy@xserver.com.ua
inetnum: 91.217.90.0 - 91.217.91.255
netname: IVANOV-IP2
descr: PE Ivanov Vitaliy SergeevichMhost Data Center
ns1: ns4.freedns.ws
ns2: ns2.freedns.ws
ns3: ns1.freedns.ws
ns4: ns3.freedns.ws
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933183 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933183 2013-04-01T13:41:13+02:00 first: 1364816473
last: 0
md5: 79b21e07cf2bf741275f7191ec7f33f2
virustotal: http://www.virustotal.com/latest-report.html?resource=79b21e07cf2bf741275f7191ec7f33f2
vt_score: 26/36 (72.2%)
scanner: avira
virusname: TR/ATRAPS.Gen
url: http://SuperAdsDomain.ru/c/svchost.exe
recent: up
response: alive
ip: 91.217.90.237
as: AS21098
review: 91.217.90.237
domain: SuperAdsDomain.ru
country: UA
source: RIPE
email: vitaliy@xserver.com.ua
inetnum: 91.217.90.0 - 91.217.91.255
netname: IVANOV-IP2
descr: PE Ivanov Vitaliy SergeevichMhost Data Center
ns1: ns4.freedns.ws
ns2: ns2.freedns.ws
ns3: ns1.freedns.ws
ns4: ns3.freedns.ws
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933098 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933098 2013-04-01T12:40:03+02:00 first: 1364812803
last: 0
md5: f762a150b70cef908a0f411e2d8f817c
virustotal: http://www.virustotal.com/latest-report.html?resource=f762a150b70cef908a0f411e2d8f817c
vt_score: 43/46 (93.5%)
scanner: avira
virusname: TR/ATRAPS.Gen
url: http://zalil.ru/34400011/46b9426d.5159bf68/222.exe
recent: up
response: alive
ip: 194.63.142.66
as: AS21011
review: 194.63.142.66
domain: zalil.ru
country: RU
source: RIPE
email: tech@mirotel.net
inetnum: 194.63.140.0 - 194.63.143.255
netname: MIROTEL2
descr: ITS Mirotel
ns1: ns3-l2.nic.ru
ns2: ns4-l2.nic.ru
ns3: ns8-l2.nic.ru
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933097 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933097 2013-04-01T12:40:03+02:00 first: 1364812803
last: 0
md5: 23c04698f358e7883d74cbb3fe3dabed
virustotal: http://www.virustotal.com/latest-report.html?resource=23c04698f358e7883d74cbb3fe3dabed
vt_score: 8/36 (22.2%)
scanner: BitDefender
virusname: Trojan.Generic.KD.923455
url: http://SuperAdsDomain.ru/bl/soft262.exe
recent: up
response: alive
ip: 91.217.90.237
as: AS21098
review: 91.217.90.237
domain: SuperAdsDomain.ru
country: UA
source: RIPE
email: vitaliy@xserver.com.ua
inetnum: 91.217.90.0 - 91.217.91.255
netname: IVANOV-IP2
descr: PE Ivanov Vitaliy SergeevichMhost Data Center
ns1: ns2.freedns.ws
ns2: ns4.freedns.ws
ns3: ns1.freedns.ws
ns4: ns3.freedns.ws
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933096 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933096 2013-04-01T12:40:03+02:00 first: 1364812803
last: 0
md5: bfd802c3a484c8184ab437d10e9b0583
virustotal: http://www.virustotal.com/latest-report.html?resource=bfd802c3a484c8184ab437d10e9b0583
vt_score: 30/46 (65.2%)
scanner: AntiVir
virusname: TR/Rogue.kdz.12576.1
url: http://SuperAdsDomain.ru/bl/zcry.exe
recent: up
response: alive
ip: 91.217.90.237
as: AS21098
review: 91.217.90.237
domain: SuperAdsDomain.ru
country: UA
source: RIPE
email: vitaliy@xserver.com.ua
inetnum: 91.217.90.0 - 91.217.91.255
netname: IVANOV-IP2
descr: PE Ivanov Vitaliy SergeevichMhost Data Center
ns1: ns2.freedns.ws
ns2: ns4.freedns.ws
ns3: ns1.freedns.ws
ns4: ns3.freedns.ws
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933095 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933095 2013-04-01T12:40:03+02:00 first: 1364812803
last: 0
md5: 19ffd9ea2d42dfb75c6ef31d776cfd22
virustotal: http://www.virustotal.com/latest-report.html?resource=19ffd9ea2d42dfb75c6ef31d776cfd22
vt_score: 5/36 (13.9%)
scanner: CAT_QuickHeal
virusname: (Suspicious) - DNAScan
url: http://SuperAdsDomain.ru/bl/done.exe
recent: up
response: alive
ip: 91.217.90.237
as: AS21098
review: 91.217.90.237
domain: SuperAdsDomain.ru
country: UA
source: RIPE
email: vitaliy@xserver.com.ua
inetnum: 91.217.90.0 - 91.217.91.255
netname: IVANOV-IP2
descr: PE Ivanov Vitaliy SergeevichMhost Data Center
ns1: ns2.freedns.ws
ns2: ns4.freedns.ws
ns3: ns1.freedns.ws
ns4: ns3.freedns.ws
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933094 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933094 2013-04-01T12:40:03+02:00 first: 1364812803
last: 0
md5: dc77ce4eacaaafb2cb1711e9e6181325
virustotal: http://www.virustotal.com/latest-report.html?resource=dc77ce4eacaaafb2cb1711e9e6181325
vt_score: 33/36 (91.7%)
scanner: avira
virusname: TR/Dldr.Delphi.Gen
url: http://zalil.ru/34289404/16be599b.5159f230/bin.exe.exe
recent: up
response: alive
ip: 194.63.142.66
as: AS21011
review: 194.63.142.66
domain: zalil.ru
country: RU
source: RIPE
email: tech@mirotel.net
inetnum: 194.63.140.0 - 194.63.143.255
netname: MIROTEL2
descr: ITS Mirotel
ns1: ns8-l2.nic.ru
ns2: ns3-l2.nic.ru
ns3: ns4-l2.nic.ru
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9933093 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9933093 2013-04-01T12:40:03+02:00 first: 1364812803
last: 0
md5: 1dd5756ed018f341dbd970933e5eadd1
virustotal: http://www.virustotal.com/latest-report.html?resource=1dd5756ed018f341dbd970933e5eadd1
vt_score: 31/46 (67.4%)
scanner: avira
virusname: TR/Dldr.Delphi.Gen
url: http://SuperAdsDomain.ru/c/bot.exe
recent: up
response: alive
ip: 91.217.90.237
as: AS21098
review: 91.217.90.237
domain: SuperAdsDomain.ru
country: UA
source: RIPE
email: vitaliy@xserver.com.ua
inetnum: 91.217.90.0 - 91.217.91.255
netname: IVANOV-IP2
descr: PE Ivanov Vitaliy SergeevichMhost Data Center
ns1: ns2.freedns.ws
ns2: ns4.freedns.ws
ns3: ns1.freedns.ws
ns4: ns3.freedns.ws
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9932691 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9932691 2013-04-01T11:40:09+02:00 first: 1364809209
last: 0
md5: f0009b10c7f25818c16760f64c1ec13d
virustotal: http://www.virustotal.com/latest-report.html?resource=f0009b10c7f25818c16760f64c1ec13d
vt_score: 33/46 (71.7%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Blocker
url: http://SuperAdsDomain.ru/p/r.exe
recent: up
response: alive
ip: 91.217.90.237
as: AS21098
review: 91.217.90.237
domain: SuperAdsDomain.ru
country: UA
source: RIPE
email: vitaliy@xserver.com.ua
inetnum: 91.217.90.0 - 91.217.91.255
netname: IVANOV-IP2
descr: PE Ivanov Vitaliy SergeevichMhost Data Center
ns1: ns2.freedns.ws
ns2: ns3.freedns.ws
ns3: ns1.freedns.ws
ns4: ns4.freedns.ws
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9927278 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9927278 2013-03-31T16:40:20+02:00 first: 1364740820
last: 0
md5: 7b114dec4cdfaabb940551b6aa9ef992
virustotal: http://www.virustotal.com/latest-report.html?resource=7b114dec4cdfaabb940551b6aa9ef992
vt_score: 39/45 (86.7%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen
url: http://94.242.198.67/sget.exe
recent: up
response: alive
ip: 94.242.198.67
as: AS5577
review: 94.242.198.67
domain: 94.242.198.67
country: LU
source: RIPE
email: abuse@as5577.net
inetnum: 94.242.192.0 - 94.242.223.255
netname: ROOT-NETWORK
descr: root SA
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9921253 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9921253 2013-03-30T18:00:05+01:00 first: 1364662805
last: 0
md5: 306fbe600befa7f7852b01d1ae0c32c9
virustotal: http://www.virustotal.com/latest-report.html?resource=306fbe600befa7f7852b01d1ae0c32c9
vt_score: 9/36 (25%)
scanner: AhnLab_V3
virusname: Backdoor/Win32.Ruskill
url: http://hotfile.com/dl/200478058/ab1db01/flowerito.exe
recent: up
response: alive
ip: 199.7.177.226
as: AS7366
review: 199.7.177.224
domain: hotfile.com
country: US
source: ARIN
email: abuse@lemuriaco.com
inetnum: 199.7.176.0 - 199.7.183.255
netname: LEMURIA-COMMUNICATIONS
descr: Lemuria Communications Inc. LEMUR 110 E BROWARD BLVD STE 1736 FORT LAUDERDALE FL 33301
ns1: ns2.easydns.com
ns2: ns1.easydns.com
ns3: ns1.hotfile.com
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9921252 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9921252 2013-03-30T18:00:05+01:00 first: 1364662805
last: 0
md5: adfb4b5f4249a1881d6f431253260b90
virustotal: http://www.virustotal.com/latest-report.html?resource=adfb4b5f4249a1881d6f431253260b90
vt_score: 8/36 (22.2%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Xema
url: http://hotfile.com/dl/200478063/5870b38/ard.exe
recent: up
response: alive
ip: 199.7.177.228
as: AS7366
review: 199.7.177.218
domain: hotfile.com
country: US
source: ARIN
email: abuse@lemuriaco.com
inetnum: 199.7.176.0 - 199.7.183.255
netname: LEMURIA-COMMUNICATIONS
descr: Lemuria Communications Inc. LEMUR 110 E BROWARD BLVD STE 1736 FORT LAUDERDALE FL 33301
ns1: ns2.easydns.com
ns2: ns1.easydns.com
ns3: ns1.hotfile.com
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9921251 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9921251 2013-03-30T18:00:05+01:00 first: 1364662805
last: 0
md5: 6437dd923e3a4e514b3e5ffa930d7f7f
virustotal: http://www.virustotal.com/latest-report.html?resource=6437dd923e3a4e514b3e5ffa930d7f7f
vt_score: 9/35 (25.7%)
scanner: Avast
virusname: Win32:Malware-gen
url: http://hotfile.com/dl/200478072/ebdeb60/fgd.exe
recent: up
response: alive
ip: 199.7.177.230
as: AS7366
review: 199.7.177.242
domain: hotfile.com
country: US
source: ARIN
email: abuse@lemuriaco.com
inetnum: 199.7.176.0 - 199.7.183.255
netname: LEMURIA-COMMUNICATIONS
descr: Lemuria Communications Inc. LEMUR 110 E BROWARD BLVD STE 1736 FORT LAUDERDALE FL 33301
ns1: ns2.easydns.com
ns2: ns1.easydns.com
ns3: ns1.hotfile.com
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9920670 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9920670 2013-03-30T15:40:09+01:00 first: 1364654409
last: 0
md5: aec5644825a9442c5ab608fbf78b2565
virustotal: http://www.virustotal.com/latest-report.html?resource=aec5644825a9442c5ab608fbf78b2565
vt_score: 24/36 (66.7%)
scanner: AhnLab_V3
virusname: Trojan/Win32.SelfDel
url: http://pxedesign.com/9281.exe
recent: up
response: alive
ip: 65.98.87.114
as: AS25653
review: 65.98.87.114
domain: pxedesign.com
country: US
source: ARIN
email: abuse@fortressitx.com
inetnum: 65.98.0.0 - 65.98.127.255
netname: FORTRESSITX
descr: FortressITX FORTR-5 100 Delawanna Ave Clifton NJ 07014
ns1: ns2.kumcsfla.org
ns2: ns1.kumcsfla.org
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9915858 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9915858 2013-03-29T17:40:06+01:00 first: 1364575206
last: 0
md5: 77274d5d7878ed64a1d6c50191bd0544
virustotal: http://www.virustotal.com/latest-report.html?resource=77274d5d7878ed64a1d6c50191bd0544
vt_score: 36/46 (78.3%)
scanner: AntiVir
virusname: TR/Rogue.KD.917544
url: http://72.167.59.210/8ong.exe
recent: up
response: alive
ip: 72.167.59.210
as: AS26496
review: 72.167.59.210
domain: 72.167.59.210
country: US
source: ARIN
email: abuse@godaddy.com
inetnum: 72.167.0.0 - 72.167.127.255
netname: GO-DADDY-SOFTWARE-INC
descr: GoDaddy.com, Inc. GODAD 14455 N Hayden Road Suite 226 Scottsdale AZ 85260
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9915857 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9915857 2013-03-29T17:40:06+01:00 first: 1364575206
last: 0
md5: 77274d5d7878ed64a1d6c50191bd0544
virustotal: http://www.virustotal.com/latest-report.html?resource=77274d5d7878ed64a1d6c50191bd0544
vt_score: 36/46 (78.3%)
scanner: AntiVir
virusname: TR/Rogue.KD.917544
url: http://000023p.rcomhost.com/EJjgELq.exe
recent: up
response: alive
ip: 205.178.145.65
as: AS14441, AS19871, AS6245
review: 205.178.145.65
domain: rcomhost.com
country: US
source: ARIN
email: noc@networksolutions.com
inetnum: 205.178.128.0 - 205.178.191.255
netname: NTSL-01
descr: Network Solutions, LLC NETWO-59 13861 Sunrise Valley Dr Suite 300 Herndon VA 20171
ns1: ns45.worldnic.com
ns2: ns46.worldnic.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9915856 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9915856 2013-03-29T17:40:06+01:00 first: 1364575206
last: 0
md5: 77274d5d7878ed64a1d6c50191bd0544
virustotal: http://www.virustotal.com/latest-report.html?resource=77274d5d7878ed64a1d6c50191bd0544
vt_score: 15/36 (41.7%)
scanner: AntiVir
virusname: TR/Rogue.KD.917544
url: http://beauty-hair1.home.pl/fwANujLa.exe
recent: up
response: alive
ip: 79.96.177.244
as: AS12824
review: 79.96.177.244
domain: home.pl
country: PL
source: RIPE
email: abuse@home.pl
inetnum: 79.96.128.0 - 79.96.255.255
netname: HOMEPL
descr: home.pl webhosting farm - static allocation
ns1: dns2.home.pl
ns2: dns3.home.pl
ns3: dns.home.pl
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9915854 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9915854 2013-03-29T17:40:06+01:00 first: 1364575206
last: 0
md5: 77274d5d7878ed64a1d6c50191bd0544
virustotal: http://www.virustotal.com/latest-report.html?resource=77274d5d7878ed64a1d6c50191bd0544
vt_score: 36/46 (78.3%)
scanner: AntiVir
virusname: TR/Rogue.KD.917544
url: http://gvcustomsoftware.com.au/NXuoTn.exe
recent: up
response: alive
ip: 111.223.234.21
as: AS38880
review: 111.223.234.21
domain: gvcustomsoftware.com.au
country: AU
source: APNIC
email: abuse@micron21.com
inetnum: 111.223.224.0 - 111.223.239.254
netname: Micron21-Melbourne-Datacentre
descr: Micron21 Melbourne Datacentre Co-Location Dedicated Servers Web HostingColocation and Fully managed servicesColocation, Webhosting etc
ns1: ns2.gvcustomsoftware.com.au
ns2: ns1.gvcustomsoftware.com.au
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9903763 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9903763 2013-03-27T14:41:46+01:00 first: 1364391706
last: 0
md5: 14c7d45549321ffc0dcaf474c7025623
virustotal: http://www.virustotal.com/latest-report.html?resource=14c7d45549321ffc0dcaf474c7025623
vt_score: 33/46 (71.7%)
scanner: AhnLab_V3
virusname: Win-Trojan/Agent.43008.QN
url: http://192.211.54.156/Programs/Master/wmdc.exe
recent: up
response: alive
ip: 192.211.54.156
as: AS174, AS13354
review: 192.211.54.156
domain: 192.211.54.156
country: US
source: ARIN
email: arincontact@incero.com
inetnum: 192.211.48.0 - 192.211.63.255
netname: INCERO-LLC
descr: Incero LLC IL-38 5555 N LAMAR, STE L-121 AUSTIN TX 78751
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9842474 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9842474 2013-03-21T18:40:02+01:00 first: 1363887602
last: 0
md5: 53b2d4d0bd39805766dd10ac622078cf
virustotal: http://www.virustotal.com/latest-report.html?resource=53b2d4d0bd39805766dd10ac622078cf
vt_score: 36/46 (78.3%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Tepfer
url: http://vusypxaw.ru/newbos4.exe
recent: up
response: alive
ip: 93.79.247.31
as: AS25229
review: 93.95.189.176
domain: vusypxaw.ru
country: UA
source: RIPE
email: noc@triolan.com
inetnum: 93.72.0.0 - 93.79.255.255
netname: LAN_B77
descr: Kiev TroeshinaTriolan, Khakov
ns1: ns4.vusypxaw.ru
ns2: ns5.vusypxaw.ru
ns3: ns3.vusypxaw.ru
ns4: ns6.vusypxaw.ru
ns5: ns1.vusypxaw.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=9842473 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9842473 2013-03-21T18:40:02+01:00 first: 1363887602
last: 0
md5: 08bc0f08cbe773666ae684ed81c1763c
virustotal: http://www.virustotal.com/latest-report.html?resource=08bc0f08cbe773666ae684ed81c1763c
vt_score: 43/46 (93.5%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen
url: http://prix-comparateur.org/annuaire/licence/download/Setup.exe
recent: up
response: alive
ip: 213.186.33.87
as: AS16276
review: 213.186.33.87
domain: prix-comparateur.org
country: FR
source: RIPE
email: abuse@ovh.net
inetnum: 213.186.33.0 - 213.186.33.255
netname: OVH
descr: OVH SASShared Hosting ServershttpOVH ISPParis, France
ns1: dns13.ovh.net
ns2: ns13.ovh.net
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9842472 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9842472 2013-03-21T18:40:02+01:00 first: 1363887602
last: 0
md5: 12e1dacb0bcea447237fad65acb1e0cc
virustotal: http://www.virustotal.com/latest-report.html?resource=12e1dacb0bcea447237fad65acb1e0cc
vt_score: 5/35 (14.3%)
scanner: McAfee_GW_Editio
virusname: Heuristic.BehavesLike.Win32.ModifiedUPX.C
url: http://gettrial.store-apps.org/d/conh10.jpg
recent: up
response: alive
ip: 95.163.104.94
as: AS12695
review: 95.163.104.94
domain: store-apps.org
country: RU
source: RIPE
email: lir@di-net.ru
inetnum: 95.163.0.0 - 95.163.255.255
netname: RU-DINET-20081230
descr: Digital Networks CJSCDigital Network JSCMoscow, Russiahttpaggregate prefixDigital Network JSCMoscow, Russiahttpaggregate prefix
ns1: ns2.store-apps.org
ns2: ns1.store-apps.org
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9842471 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9842471 2013-03-21T18:40:02+01:00 first: 1363887602
last: 0
md5: e737d79910866ba025c8ce642e652ee6
virustotal: http://www.virustotal.com/latest-report.html?resource=e737d79910866ba025c8ce642e652ee6
vt_score: 19/35 (54.3%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Vague
url: http://us-marshals.org/123//download_file.php?e=JavaSignedApplet
recent: up
response: alive
ip: 82.146.60.121
as: AS29182
review: 82.146.60.121
domain: us-marshals.org
country: RU
source: RIPE
email: abuse@ispsystem.net
inetnum: 82.146.56.0 - 82.146.63.255
netname: ISPSYSTEM
descr: ISPsystem MSK
ns1: dns1.yandex.net
ns2: dns2.yandex.net
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9830963 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9830963 2013-03-20T10:20:04+01:00 first: 1363771204
last: 0
md5: d91954a5925485ac24c264e14306be5b
virustotal: http://www.virustotal.com/latest-report.html?resource=d91954a5925485ac24c264e14306be5b
vt_score: 6/35 (17.1%)
scanner: AntiVir
virusname: BDS/Androm.EB.66
url: http://fanwink.com/dutch/mi/svv.exe
recent: up
response: alive
ip: 178.18.85.175
as: AS35470
review: 178.18.85.175
domain: fanwink.com
country: NL
source: RIPE
email: abuse@xl-is.net
inetnum: 178.18.80.0 - 178.18.95.255
netname: NL-XLIS-20100412
descr: XL Internet Services B.V.
ns1: ns2.trimp.nl
ns2: ns1.trimp.nl
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9830962 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9830962 2013-03-20T10:20:03+01:00 first: 1363771203
last: 0
md5: 1ad543ade32cfdb90bc8868871bebe8c
virustotal: http://www.virustotal.com/latest-report.html?resource=1ad543ade32cfdb90bc8868871bebe8c
vt_score: 20/35 (57.1%)
scanner: AhnLab_V3
virusname: Trojan/Win32.ShipUp
url: http://myplanet.su/favicon.ico
recent: up
response: alive
ip: 217.29.51.172
as: AS29053
review: 217.29.51.172
domain: myplanet.su
country: RU
source: RIPE
email:
inetnum: 217.29.51.168 - 217.29.51.175
netname: TREVEL-NET
descr: Moscow, Russian FederationTelenet Route
ns1: ns1.lightsoft.ru
ns2: ns2.lightsoft.ru
ns3: ns3.lightsoft.ru
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9830961 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9830961 2013-03-20T10:20:03+01:00 first: 1363771203
last: 0
md5: c9caffb84b6b00cb150d09e6f448f6a6
virustotal: http://www.virustotal.com/latest-report.html?resource=c9caffb84b6b00cb150d09e6f448f6a6
vt_score: 22/36 (61.1%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Banker
url: http://yurtdisirehber.com/Sinops/tudo.rar
recent: up
response: alive
ip: 159.253.37.220
as: AS51559
review: 159.253.37.220
domain: yurtdisirehber.com
country: TR
source: RIPE
email: abuse@ni.net.tr
inetnum: 159.253.37.0 - 159.253.37.255
netname: NETINTERNET
descr: Netinternet Bilgisayar Telekomunikasyon San. ve Tic. Ltd. Sti.Netinternet Datacenter
ns1: ns1.onaranbilisim.com
ns2: ns2.onaranbilisim.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9828310 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9828310 2013-03-19T18:40:18+01:00 first: 1363714818
last: 0
md5: a372939c7134e95f39566dabaede4204
virustotal: http://www.virustotal.com/latest-report.html?resource=a372939c7134e95f39566dabaede4204
vt_score: 5/35 (14.3%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Jorik
url: http://picturesofdeath.net/kill/long_fills.php?rsbyo=30:2v:1f:1j:30&lvb=1g:1k:2v:1n:32:1o:1i:1i:32:31&yvehhvt=1i&qabyk=rarokeg&pxrq=xgzaazv
recent: up
response: alive
ip: 109.74.61.59
as: AS50261
review: 24.111.157.113
domain: picturesofdeath.net
country: US
source: ARIN
email: abuse@midco.net
inetnum: 109.74.48.0 - 109.74.63.255
netname: MIDCO
descr: Midcontinent Media, Inc. MIDC 410 S Phillips Ave Sioux Falls SD 57104
ns1: ns1.streetcry.net
ns2: ns2.streetcry.net
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9823922 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9823922 2013-03-19T04:28:54+01:00 first: 1363663734
last: 0
md5: 7ab1e9953686027fefe5361ac3bde65e
virustotal: http://www.virustotal.com/latest-report.html?resource=7ab1e9953686027fefe5361ac3bde65e
vt_score: 12/45 (26.7%)
scanner: BitDefender
virusname: Trojan.Generic.KD.904587
url: http://raufdn.able.yt/dlimage4.php
recent: up
response: alive
ip: 91.218.39.245
as: AS197145
review: 91.218.39.245
domain: able.yt
country: UA
source: RIPE
email: abusemail@infiumhost.com
inetnum: 91.218.36.0 - 91.218.39.255
netname: INFIUMHOST-NET
descr: Infium Ltd.
ns1: ns-usa.topdns.com
ns2: ns-canada.topdns.com
ns3: ns-uk.topdns.com
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9817003 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9817003 2013-03-18T14:00:05+01:00 first: 1363611605
last: 0
md5: 096358e65c2a411e89020b7ad1eda2bc
virustotal: http://www.virustotal.com/latest-report.html?resource=096358e65c2a411e89020b7ad1eda2bc
vt_score: 38/44 (86.4%)
scanner: AntiVir
virusname: TR/Spy.ZBot.ald
url: http://justfruit.gr/KRUbYMps/pXAY7Ja.exe
recent: up
response: alive
ip: 85.25.147.8
as: AS8972
review: 85.25.147.8
domain: justfruit.gr
country: DE
source: RIPE
email: abuse@server4you.de
inetnum: 85.25.129.0 - 85.25.148.255
netname: SERVER4YOU-1
descr: SERVER4YOU Dedicated Server HostinghttpInternet-Hosterintergenia AG
ns1: ns1.nameserverservice.de
ns2: ns2.nameserverservice.de
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9817002 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9817002 2013-03-18T14:00:05+01:00 first: 1363611605
last: 0
md5: d3839f02fcc434180d6db875e8f875bc
virustotal: http://www.virustotal.com/latest-report.html?resource=d3839f02fcc434180d6db875e8f875bc
vt_score: 35/46 (76.1%)
scanner: AhnLab_V3
virusname: Spyware/Win32.Zbot
url: http://bazeley-architects.co.uk/D2rfJsLM.exe
recent: up
response: alive
ip: 212.227.159.88
as: AS8560
review: 212.227.159.88
domain: bazeley-architects.co.uk
country: DE
source: RIPE
email: abuse@1and1.com
inetnum: 212.227.144.0 - 212.227.159.255
netname: SCHLUND-CUSTOMERS
descr: 1&1 Internet AGNCC#1999110113
ns1: ns3.orakle.co.uk
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9814705 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9814705 2013-03-18T11:41:05+01:00 first: 1363603265
last: 0
md5: e4cee6b8bdc9b87b5eee1aabb02f44f9
virustotal: http://www.virustotal.com/latest-report.html?resource=e4cee6b8bdc9b87b5eee1aabb02f44f9
vt_score: 33/46 (71.7%)
scanner: AhnLab_V3
virusname: Win-Trojan/Blocker.151552
url: http://www.tw4r.com/data/thecoon/b.exe
recent: up
response: alive
ip: 37.59.13.112
as: AS16276
review: 37.59.13.112
domain: tw4r.com
country: FR
source: RIPE
email: abuse@ovh.net
inetnum: 37.59.0.0 - 37.59.63.255
netname: OVH
descr: OVH SASDedicated servershttp
ns1: ns1.hostmonster.com
ns2: ns2.hostmonster.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9814704 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9814704 2013-03-18T11:41:05+01:00 first: 1363603265
last: 0
md5: cccef14296890550891084e3c1577a3b
virustotal: http://www.virustotal.com/latest-report.html?resource=cccef14296890550891084e3c1577a3b
vt_score: 35/46 (76.1%)
scanner: avira
virusname: TR/Crypt.FKM.Gen
url: http://twilighteclipse.us/download/sharp/svchost.exe
recent: up
response: alive
ip: 94.102.48.101
as: AS29073
review: 94.102.48.101
domain: twilighteclipse.us
country: NL
source: RIPE
email: abuse@ecatel.net
inetnum: 94.102.48.0 - 94.102.48.255
netname: NL-ECATEL
descr: ECATEL LTDDedicated servershttp
ns1: ns2.offshore-dns.net
ns2: ns1.offshore-dns.net
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9814703 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9814703 2013-03-18T11:41:04+01:00 first: 1363603264
last: 0
md5: 7d5edc07877b3654390632c60720762f
virustotal: http://www.virustotal.com/latest-report.html?resource=7d5edc07877b3654390632c60720762f
vt_score: 32/35 (91.4%)
scanner: avira
virusname: TR/Kazy.MK
url: http://turbo-tax.org/sharpjacker/bot.exe
recent: up
response: alive
ip: 94.102.48.101
as: AS29073
review: 94.102.48.101
domain: turbo-tax.org
country: NL
source: RIPE
email: abuse@ecatel.net
inetnum: 94.102.48.0 - 94.102.48.255
netname: NL-ECATEL
descr: ECATEL LTDDedicated servershttp
ns1: ns2.offshore-dns.net
ns2: ns1.offshore-dns.net
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9773806 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9773806 2013-03-15T18:20:12+01:00 first: 1363368012
last: 0
md5: a372939c7134e95f39566dabaede4204
virustotal: http://www.virustotal.com/latest-report.html?resource=a372939c7134e95f39566dabaede4204
vt_score: 5/35 (14.3%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Jorik
url: http://picturesofdeath.net/kill/long_fills.php?hkezfs=1n:2w:2w:31:2v&pvgssu=1g:1k:2v:1n:32:1o:1i:1i:32:31&ukz=1i&mhjrkco=hbwqnvv&ztmtkihp=gspls
recent: up
response: alive
ip: 155.239.247.247
as: AS5713
review: 58.26.233.175
domain: picturesofdeath.net
country: MY
source: APNIC
email: pieter@saix.net
inetnum: 155.239.0.0 - 155.239.255.255
netname: TELKOM
descr: 7500
ns1: ns1.streetcry.net
ns2: ns2.streetcry.net
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9770117 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9770117 2013-03-15T11:40:11+01:00 first: 1363344011
last: 0
md5: b29921383a05c43fcb685f592e55af7a
virustotal: http://www.virustotal.com/latest-report.html?resource=b29921383a05c43fcb685f592e55af7a
vt_score: 6/35 (17.1%)
scanner: Comodo
virusname: UnclassifiedMalware
url: http://hotfile.com/dl/198303412/e054426/cx.exe.html
recent: up
response: alive
ip: 199.7.177.236
as: AS7366
review: 199.7.177.234
domain: hotfile.com
country: US
source: ARIN
email: abuse@lemuriaco.com
inetnum: 199.7.176.0 - 199.7.183.255
netname: LEMURIA-COMMUNICATIONS
descr: Lemuria Communications Inc. LEMUR 110 E BROWARD BLVD STE 1736 FORT LAUDERDALE FL 33301
ns1: ns2.easydns.com
ns2: ns1.hotfile.com
ns3: ns1.easydns.com
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9768897 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9768897 2013-03-15T10:00:03+01:00 first: 1363338003
last: 0
md5: 10a9b08640b2019f11b83e4fb8a2478a
virustotal: http://www.virustotal.com/latest-report.html?resource=10a9b08640b2019f11b83e4fb8a2478a
vt_score: 36/46 (78.3%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Bublik
url: http://176.31.53.137/updt/nfs.exe
recent: up
response: alive
ip: 176.31.53.137
as: AS16276
review: 176.31.53.137
domain: 176.31.53.137
country: FR
source: RIPE
email: abuse@ovh.net
inetnum: 176.31.0.0 - 176.31.255.255
netname: FR-OVH-20110520
descr: Ovh Systems
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9757421 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9757421 2013-03-14T13:40:05+01:00 first: 1363264805
last: 0
md5: 2fbe95e22614d8f9e5e1c0545ec780de
virustotal: http://www.virustotal.com/latest-report.html?resource=2fbe95e22614d8f9e5e1c0545ec780de
vt_score: 6/35 (17.1%)
scanner: avira
virusname: TR/Dropper.Gen2
url: http://max.ick.su/about/library/movie.php?id=3D126793214
recent: up
response: alive
ip: 92.53.106.185
as: AS20597
review: 92.53.106.185
domain: ick.su
country: RU
source: RIPE
email: noc@twnet.ru
inetnum: 92.53.104.0 - 92.53.107.255
netname: RZT-TWNetSol
descr: TW Network SolutionRZT-TIMEWEB
ns1: ns3.timeweb.org
ns2: ns1.timeweb.ru
ns3: ns2.timeweb.ru
ns4: ns4.timeweb.org
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9755758 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9755758 2013-03-14T10:40:13+01:00 first: 1363254013
last: 0
md5: b558616dfa40cae7e6b7b17057203495
virustotal: http://www.virustotal.com/latest-report.html?resource=b558616dfa40cae7e6b7b17057203495
vt_score: 33/46 (71.7%)
scanner: AhnLab_V3
virusname: Win-Trojan/Siggen.1916928
url: http://iramaferreira.hospedagemdesites.ws/dllgood.pdf
recent: up
response: alive
ip: 186.202.153.105
as: AS27715
review: 186.202.153.105
domain: hospedagemdesites.ws
country: BR
source: LACNIC
email: regcom@locaweb.com.br
inetnum: 186.202.0.0 - 186.202.255.255
netname: 002.351.877/0001-52
descr: Locaweb Serviços de Internet S/A
ns1: ns1.hospedagemdesites.ws
ns2: ns2.hospedagemdesites.ws
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9742080 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9742080 2013-03-13T14:40:16+01:00 first: 1363182016
last: 0
md5: df9dd1ce6ed8bda05ac723fe8c71bf87
virustotal: http://www.virustotal.com/latest-report.html?resource=df9dd1ce6ed8bda05ac723fe8c71bf87
vt_score: 33/46 (71.7%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Scarsi
url: http://hotfile.com/dl/198093236/e93b3de/tet.exe.html
recent: up
response: alive
ip: 199.7.177.232
as: AS7366
review: 199.7.177.230
domain: hotfile.com
country: US
source: ARIN
email: abuse@lemuriaco.com
inetnum: 199.7.176.0 - 199.7.183.255
netname: LEMURIA-COMMUNICATIONS
descr: Lemuria Communications Inc. LEMUR 110 E BROWARD BLVD STE 1736 FORT LAUDERDALE FL 33301
ns1: ns1.easydns.com
ns2: ns2.easydns.com
ns3: ns1.hotfile.com
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9724574 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9724574 2013-03-12T12:40:03+01:00 first: 1363088403
last: 0
md5: 01ec03319966ca96eee4ce20485a48b2
virustotal: http://www.virustotal.com/latest-report.html?resource=01ec03319966ca96eee4ce20485a48b2
vt_score: 17/36 (47.2%)
scanner: AhnLab_V3
virusname: Backdoor/Win32.DarkKomet
url: http://lachimieszd.com/colischronoposthtmlcolischronoposthtmlcolischronoposthtmlcolischronoposthtml
recent: up
response: alive
ip: 213.186.33.3
as: AS16276
review: 213.186.33.3
domain: lachimieszd.com
country: FR
source: RIPE
email: abuse@ovh.net
inetnum: 213.186.33.0 - 213.186.33.255
netname: OVH
descr: OVH SASShared Hosting ServershttpOVH ISPParis, France
ns1: ns104.ovh.net
ns2: dns104.ovh.net
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9724573 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9724573 2013-03-12T12:40:03+01:00 first: 1363088403
last: 0
md5: 2a384e16a39dd0b3d0596f6deb9cf3d1
virustotal: http://www.virustotal.com/latest-report.html?resource=2a384e16a39dd0b3d0596f6deb9cf3d1
vt_score: 29/36 (80.6%)
scanner: AhnLab_V3
virusname: Spyware/Win32.Zbot
url: http://museum-synt-isap.gr/ZkN.exe
recent: up
response: alive
ip: 188.165.252.160
as: AS16276
review: 188.165.252.160
domain: museum-synt-isap.gr
country: FR
source: RIPE
email: abuse@ovh.net
inetnum: 188.165.192.0 - 188.165.255.255
netname: OVH
descr: OVH SASDedicated Servershttp
ns1: ns2.artime-adv.com
ns2: ns1.artime-adv.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9724570 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9724570 2013-03-12T12:40:03+01:00 first: 1363088403
last: 0
md5: 887af94471e793e9cf741c320b4ff087
virustotal: http://www.virustotal.com/latest-report.html?resource=887af94471e793e9cf741c320b4ff087
vt_score: 26/36 (72.2%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Scarsi
url: http://hotfile.com/dl/197958699/2ea412a/po.exe.html
recent: up
response: alive
ip: 199.7.177.240
as: AS7366
review: 199.7.177.238
domain: hotfile.com
country: US
source: ARIN
email: abuse@lemuriaco.com
inetnum: 199.7.176.0 - 199.7.183.255
netname: LEMURIA-COMMUNICATIONS
descr: Lemuria Communications Inc. LEMUR 110 E BROWARD BLVD STE 1736 FORT LAUDERDALE FL 33301
ns1: ns1.easydns.com
ns2: ns2.easydns.com
ns3: ns1.hotfile.com
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9724272 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9724272 2013-03-12T12:00:11+01:00 first: 1363086011
last: 0
md5: 8192e93545fbedf5df21b8cf589e5946
virustotal: http://www.virustotal.com/latest-report.html?resource=8192e93545fbedf5df21b8cf589e5946
vt_score: 29/36 (80.6%)
scanner: AhnLab_V3
virusname: Backdoor/Win32.Cidox
url: http://bvyus.badauyeu.tk/plugin.php?fname=flashplayer
recent: up
response: alive
ip: 46.4.194.146
as: AS24940
review: 46.4.194.146
domain: badauyeu.tk
country: DE
source: RIPE
email: abuse@hetzner.de
inetnum: 46.4.0.0 - 46.4.255.255
netname: DE-HETZNER-20100819
descr: Hetzner Online AG
ns1: ns4.afraid.org
ns2: ns3.afraid.org
ns3: ns2.afraid.org
ns4: ns1.afraid.org
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9724271 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9724271 2013-03-12T12:00:11+01:00 first: 1363086011
last: 0
md5: 3e54d11b94d7fe4f9c53cc3b71a9693d
virustotal: http://www.virustotal.com/latest-report.html?resource=3e54d11b94d7fe4f9c53cc3b71a9693d
vt_score: 35/46 (76.1%)
scanner: clamav
virusname: Win.Trojan.Zbot-10645
url: http://palmaturismo.com/templates/herbstv1/lo.exe
recent: up
response: alive
ip: 87.106.193.179
as: AS8560
review: 87.106.193.179
domain: palmaturismo.com
country: ES
source: RIPE
email: abuse@1and1.com
inetnum: 87.106.192.0 - 87.106.195.255
netname: SCHLUND-SHARED
descr: 1&1 Internet AGSCHLUND-PA-5
ns1: ns63.1and1.es
ns2: ns64.1and1.es
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9724270 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9724270 2013-03-12T12:00:10+01:00 first: 1363086010
last: 0
md5: a9a14b8e3b5adbfd5738906bba087a67
virustotal: http://www.virustotal.com/latest-report.html?resource=a9a14b8e3b5adbfd5738906bba087a67
vt_score: 35/46 (76.1%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Scarsi
url: http://simplysuperbiketickets.com/sp0n.exe
recent: up
response: alive
ip: 82.165.140.9
as: AS8560
review: 82.165.140.9
domain: simplysuperbiketickets.com
country: DE
source: RIPE
email: abuse@1and1.com
inetnum: 82.165.128.0 - 82.165.143.255
netname: SCHLUND-CUSTOMERS
descr: 1&1 Internet AG
ns1: ns67.1and1.co.uk
ns2: ns68.1and1.co.uk
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9714611 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9714611 2013-03-11T22:40:23+01:00 first: 1363038023
last: 0
md5: 7f00e5a36b363af36b187fdd5beb981f
virustotal: http://www.virustotal.com/latest-report.html?resource=7f00e5a36b363af36b187fdd5beb981f
vt_score: 31/45 (68.9%)
scanner: avira
virusname: BDS/Backdoor.Gen
url: http://www.neyrou.fr/xwc/upload/g.exe
recent: up
response: alive
ip: 109.234.161.32
as: AS50474
review: 109.234.161.32
domain: neyrou.fr
country: FR
source: RIPE
email: ripe@o2switch.fr
inetnum: 109.234.161.0 - 109.234.161.255
netname: O2SWITCH
descr: o2switch Datacenter Ip-Range-2
ns1: ns1.o2switch.net
ns2: ns2.o2switch.net
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9712514 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9712514 2013-03-11T17:00:07+01:00 first: 1363017607
last: 0
md5: 9e1125979be7ec801afab6ee356adba8
virustotal: http://www.virustotal.com/latest-report.html?resource=9e1125979be7ec801afab6ee356adba8
vt_score: 29/46 (63%)
scanner: AhnLab_V3
virusname: Win-Adware/Urelas.107041
url: http://kanmay.cafe24.com/xxx.exe
recent: up
response: alive
ip: 112.175.50.185
as: AS132524
review: 112.175.50.185
domain: cafe24.com
country: KR
source: APNIC
email:
inetnum: 112.160.0.0 - 112.175.255.255
netname:
descr:
ns1: nc4.cafe24.com
ns2: nc3.cafe24.com
ns3: ns3.cafe24.com
ns4: ns4.cafe24.com
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9712513 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9712513 2013-03-11T17:00:07+01:00 first: 1363017607
last: 0
md5: beadf499343a0aa53fbe5a129d449373
virustotal: http://www.virustotal.com/latest-report.html?resource=beadf499343a0aa53fbe5a129d449373
vt_score: 34/46 (73.9%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Scarsi
url: http://217.160.213.35/pula.exe
recent: up
response: alive
ip: 217.160.213.35
as: AS209
review: 217.160.213.35
domain: 217.160.213.35
country: DE
source: RIPE
email: abuse@1and1.com
inetnum: 217.160.208.0 - 217.160.223.255
netname: SCHLUND-CUSTOMERS
descr: 1&1 Internet AGNCC#1999110113
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9712512 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9712512 2013-03-11T17:00:07+01:00 first: 1363017607
last: 0
md5: cebd54146d22f5f88e09c40e61808e50
virustotal: http://www.virustotal.com/latest-report.html?resource=cebd54146d22f5f88e09c40e61808e50
vt_score: 6/35 (17.1%)
scanner: AhnLab_V3
virusname: Spyware/Win32.Zbot
url: http://salmonesriopuelo.cl/PGg.exe
recent: up
response: alive
ip: 184.173.197.198
as: AS36420, AS30315, AS13749, AS21844
review: 184.173.197.198
domain: salmonesriopuelo.cl
country: US
source: ARIN
email: noc@theplanet.com
inetnum: 184.172.0.0 - 184.173.255.255
netname: NETBLK-THEPLANET-BLK-17
descr: ThePlanet.com Internet Services, Inc. TPCM 315 Capitol Suite 205 Houston TX 77002
ns1: ns401.hostgator.com
ns2: ns402.hostgator.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9712511 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9712511 2013-03-11T17:00:07+01:00 first: 1363017607
last: 0
md5: 6254a1d9b7c80fba0d48744cca9f65fa
virustotal: http://www.virustotal.com/latest-report.html?resource=6254a1d9b7c80fba0d48744cca9f65fa
vt_score: 36/46 (78.3%)
scanner: AhnLab_V3
virusname: Spyware/Win32.Zbot
url: http://giftmarketing.net/qAuX3EL.exe
recent: up
response: alive
ip: 64.29.145.9
as: AS30447
review: 64.29.145.9
domain: giftmarketing.net
country: US
source: ARIN
email: admin@internetnamesforbusiness.com
inetnum: 64.29.144.0 - 64.29.159.255
netname: MEGA-2
descr: InternetNamesForBusiness.com INFB 500 East Broward Boulevard Suite 1700 Fort Lauderdale FL 33394
ns1: ns1.carrierzone.com
ns2: ns3.carrierzone.com
ns3: ns2.carrierzone.com
ns4: ns4.carrierzone.com
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9712510 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9712510 2013-03-11T17:00:07+01:00 first: 1363017607
last: 0
md5: 6254a1d9b7c80fba0d48744cca9f65fa
virustotal: http://www.virustotal.com/latest-report.html?resource=6254a1d9b7c80fba0d48744cca9f65fa
vt_score: 36/46 (78.3%)
scanner: AhnLab_V3
virusname: Spyware/Win32.Zbot
url: http://www.lypto.ch/K2d98Z.exe
recent: up
response: alive
ip: 194.124.233.172
as: AS3303
review: 194.124.233.172
domain: lypto.ch
country: CH
source: RIPE
email: mzuercher@epc.ch
inetnum: 194.124.233.0 - 194.124.233.255
netname: EDVPC
descr: EDV-Perform ConsultingNetwork Consulting and SupportKirchbergUitikon GIB Solution
ns1: specter.mva-n.net
ns2: web01.opentag.ch
ns3: ns.lypto.ch
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9712463 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9712463 2013-03-11T16:10:04+01:00 first: 1363014604
last: 0
md5: 23ae2559fb71dacd7e6d63b6183ffaaf
virustotal: http://www.virustotal.com/latest-report.html?resource=23ae2559fb71dacd7e6d63b6183ffaaf
vt_score: 8/32 (25%)
scanner: Comodo
virusname: UnclassifiedMalware
url: http://hotfile.com/dl/197865129/fc04997/truck.exe.html
recent: up
response: alive
ip: 199.7.177.240
as: AS7366
review: 199.7.177.238
domain: hotfile.com
country: US
source: ARIN
email: abuse@lemuriaco.com
inetnum: 199.7.176.0 - 199.7.183.255
netname: LEMURIA-COMMUNICATIONS
descr: Lemuria Communications Inc. LEMUR 110 E BROWARD BLVD STE 1736 FORT LAUDERDALE FL 33301
ns1: ns2.easydns.com
ns2: ns1.easydns.com
ns3: ns1.hotfile.com
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9712233 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9712233 2013-03-11T12:10:05+01:00 first: 1363000205
last: 0
md5: 02e2db1413f738a4d65047e60ba6cca0
virustotal: http://www.virustotal.com/latest-report.html?resource=02e2db1413f738a4d65047e60ba6cca0
vt_score: 33/46 (71.7%)
scanner: AntiVir
virusname: TR/Agent.585728.266
url: http://217.160.213.35/upppa.exe
recent: up
response: alive
ip: 217.160.213.35
as: AS209
review: 217.160.213.35
domain: 217.160.213.35
country: DE
source: RIPE
email: abuse@1and1.com
inetnum: 217.160.208.0 - 217.160.223.255
netname: SCHLUND-CUSTOMERS
descr: 1&1 Internet AGNCC#1999110113
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9712232 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9712232 2013-03-11T12:10:05+01:00 first: 1363000205
last: 0
md5: 02e2db1413f738a4d65047e60ba6cca0
virustotal: http://www.virustotal.com/latest-report.html?resource=02e2db1413f738a4d65047e60ba6cca0
vt_score: 11/32 (34.4%)
scanner: AntiVir
virusname: TR/Agent.585728.266
url: http://uploaded.net/file/b43z440t
recent: up
response: alive
ip: 95.211.143.200
as: AS16265
review: 95.211.143.200
domain: uploaded.net
country: NL
source: RIPE
email: abuse@leaseweb.com
inetnum: 95.211.0.0 - 95.211.255.255
netname: NL-LEASEWEB-20080724
descr: LeaseWeb B.V.
ns1: ns1.uploaded.net
ns2: ns3.uploaded.net
ns3: ns4.uploaded.net
ns4: ns2.uploaded.net
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9712175 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9712175 2013-03-11T11:10:02+01:00 first: 1362996602
last: 0
md5: cc0be13e7bb53dd4b18e8656532c8862
virustotal: http://www.virustotal.com/latest-report.html?resource=cc0be13e7bb53dd4b18e8656532c8862
vt_score: 39/46 (84.8%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Tepfer
url: http://royclub.fr/51dvPk.exe
recent: up
response: alive
ip: 82.165.218.118
as: AS8560
review: 82.165.218.118
domain: royclub.fr
country: DE
source: RIPE
email: abuse@1and1.com
inetnum: 82.165.0.0 - 82.165.255.255
netname: DE-SCHLUND-20030806
descr: 1&1 Internet AGSCHLUND-PA-4
ns1: ns62.1and1.fr
ns2: ns61.1and1.fr
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9712139 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9712139 2013-03-11T09:10:04+01:00 first: 1362989404
last: 0
md5: 630daae93fb3e8b7bc13e0aa3e8f7963
virustotal: http://www.virustotal.com/latest-report.html?resource=630daae93fb3e8b7bc13e0aa3e8f7963
vt_score: 6/17 (35.3%)
scanner: BitDefender
virusname: Trojan.Generic.KD.892516
url: http://hotfile.com/dl/197728243/0d80b65/ObgFMxy.exe.html
recent: up
response: alive
ip: 199.7.177.242
as: AS7366
review: 199.7.177.232
domain: hotfile.com
country: US
source: ARIN
email: abuse@lemuriaco.com
inetnum: 199.7.176.0 - 199.7.183.255
netname: LEMURIA-COMMUNICATIONS
descr: Lemuria Communications Inc. LEMUR 110 E BROWARD BLVD STE 1736 FORT LAUDERDALE FL 33301
ns1: ns1.hotfile.com
ns2: ns2.easydns.com
ns3: ns1.easydns.com
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9626652 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9626652 2013-03-01T14:50:01+01:00 first: 1362145801
last: 0
md5: 10337ebf7f457fb73685426dd3c18e61
virustotal: http://www.virustotal.com/latest-report.html?resource=10337ebf7f457fb73685426dd3c18e61
vt_score: 36/45 (80%)
scanner: AntiVir
virusname: TR/Crypt.ZPACK.Gen8
url: http://fotografiewilcodevilee.nl/wp-content/plugins/Radar-Earth-Fungus/form_2012_9534259207.pdf.exe
recent: up
response: alive
ip: 81.169.145.147
as: AS6724
review: 81.169.145.147
domain: fotografiewilcodevilee.nl
country: DE
source: RIPE
email: abuse@strato.de
inetnum: 81.169.144.0 - 81.169.156.255
netname: STRATO-RZG-KA
descr: Strato Rechenzentrum, BerlinStrato Rechenzentrum
ns1: shades12.rzone.de
ns2: docks19.rzone.de
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9613749 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9613749 2013-02-27T20:50:02+01:00 first: 1361994602
last: 0
md5: 26be87936563ca147a47a5eb087d1908
virustotal: http://www.virustotal.com/latest-report.html?resource=26be87936563ca147a47a5eb087d1908
vt_score: 15/36 (41.7%)
scanner: AntiVir
virusname: TR/Crypt.XPACK.Gen8
url: http://78.83.177.250/m.exe
recent: up
response: alive
ip: 78.83.177.250
as: AS29580
review: 78.83.177.250
domain: 78.83.177.250
country: BG
source: RIPE
email: abuse@spnet.net
inetnum: 78.83.0.0 - 78.83.255.255
netname: BG-SPNET-20071416
descr: Spectrum NET Jsc
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9606344 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9606344 2013-02-26T17:00:06+01:00 first: 1361894406
last: 0
md5: 23c160500d0e456655b2ec0615fed0ff
virustotal: http://www.virustotal.com/latest-report.html?resource=23c160500d0e456655b2ec0615fed0ff
vt_score: 17/35 (48.6%)
scanner: Avast
virusname: Win32:Malware-gen
url: http://serumx.com.tr/g3Asmrw.exe
recent: up
response: alive
ip: 85.153.46.40
as: AS31365
review: 85.153.46.40
domain: serumx.com.tr
country: TR
source: RIPE
email: ripe@sgstelecom.com
inetnum: 85.153.32.0 - 85.153.47.255
netname: MECIDIYEKOY-POP3
descr: Profilo Telekom A.S.Profilo Telekom # 1
ns1: win8.turkishost.com
ns2: win7.turkishost.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9603872 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9603872 2013-02-26T10:40:03+01:00 first: 1361871603
last: 0
md5: ac3129819faa20a776239f48e57d2b35
virustotal: http://www.virustotal.com/latest-report.html?resource=6dc142083bb58cb8219b92fc6dbb7336
vt_score: 1/38 (2.6%)
scanner: Jiangmin
virusname: Trojan/Agent.giuu
url: http://onlinestreams.zapto.org/videos/skydl2.php?cid=b265d7ad427bcccd&id=B265D7AD427BCCCD%21107&file=Setup.exe
recent: up
response: alive
ip: 188.120.254.152
as: AS29182
review: 188.120.254.152
domain: zapto.org
country: US
source: RIPE
email: abuse@ispserver.com
inetnum: 188.120.254.0 - 188.120.255.255
netname: CLOUD-NET
descr: CLOUD NAC collocationCLOUD, NAC site allocation
ns1: nf5.no-ip.com
ns2: nf2.no-ip.com
ns3: nf1.no-ip.com
ns4: nf3.no-ip.com
ns5: nf4.no-ip.com
]]> http://support.clean-mx.de/clean-mx/viruses?id=9539639 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9539639 2013-02-20T14:40:09+01:00 first: 1361367609
last: 0
md5: af9488c667c91eb894df1681e4d4d9f7
virustotal: http://www.virustotal.com/latest-report.html?resource=af9488c667c91eb894df1681e4d4d9f7
vt_score: 24/35 (68.6%)
scanner: clamav
virusname: Win.Trojan.8145
url: http://igallery.php-dev.in/hW4e.exe
recent: up
response: alive
ip: 180.149.243.31
as: AS33480
review: 180.149.243.31
domain: php-dev.in
country: IN
source: APNIC
email: abuse@webwerks.com
inetnum: 180.149.240.0 - 180.149.245.255
netname: WEBWERKS1-AP
descr: Web Werks India Pvt. Ltd.
ns1: ns1.rapidns.com
ns2: ns2.rapidns.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9537698 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9537698 2013-02-20T09:00:06+01:00 first: 1361347206
last: 0
md5: 69276ede41fd243dba3bcaa86fd8f5d8
virustotal: http://www.virustotal.com/latest-report.html?resource=69276ede41fd243dba3bcaa86fd8f5d8
vt_score: 34/46 (73.9%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Dropper
url: http://elmascarodelmundo.com/wpe.exe
recent: up
response: alive
ip: 54.245.224.72
as: AS16509
review: 54.245.224.72
domain: elmascarodelmundo.com
country: US
source: ARIN
email: aes-noc@amazon.com
inetnum: 54.245.0.0 - 54.245.255.255
netname: AMAZO-ZPDX1
descr: Amazon.com, Inc. AMAZO-47 EC2, EC2 1200 12th Ave South Seattle WA 98144
ns1: ns2.slicehost.net
ns2: ns1.slicehost.net
ns3: ns3.slicehost.net
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9537667 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9537667 2013-02-20T08:40:03+01:00 first: 1361346003
last: 0
md5: 682828b7f449584edcaba14d3875144a
virustotal: http://www.virustotal.com/latest-report.html?resource=682828b7f449584edcaba14d3875144a
vt_score: 36/46 (78.3%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen3
url: http://193.105.134.189/newbos3.exe
recent: up
response: alive
ip: 193.105.134.189
as: AS42708
review: 193.105.134.189
domain: 193.105.134.189
country: SE
source: RIPE
email: info@swedendedicated.com
inetnum: 193.105.134.0 - 193.105.134.255
netname: SWEDENDEDICATED-NET
descr: Christian Maurice Sebastiaan Hein
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9537666 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9537666 2013-02-20T08:40:03+01:00 first: 1361346003
last: 0
md5: 5003285cd373fbeafdc675327e61f3c4
virustotal: http://www.virustotal.com/latest-report.html?resource=5003285cd373fbeafdc675327e61f3c4
vt_score: 27/37 (73%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen3
url: http://193.105.134.189/newbos1.exe
recent: up
response: alive
ip: 193.105.134.189
as: AS42708
review: 193.105.134.189
domain: 193.105.134.189
country: SE
source: RIPE
email: info@swedendedicated.com
inetnum: 193.105.134.0 - 193.105.134.255
netname: SWEDENDEDICATED-NET
descr: Christian Maurice Sebastiaan Hein
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9537665 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9537665 2013-02-20T08:40:03+01:00 first: 1361346003
last: 0
md5: dea2ed6b8fa67121668335c54307c5b3
virustotal: http://www.virustotal.com/latest-report.html?resource=dea2ed6b8fa67121668335c54307c5b3
vt_score: 7/35 (20%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen
url: http://193.105.134.189/calc.exe
recent: up
response: alive
ip: 193.105.134.189
as: AS42708
review: 193.105.134.189
domain: 193.105.134.189
country: SE
source: RIPE
email: info@swedendedicated.com
inetnum: 193.105.134.0 - 193.105.134.255
netname: SWEDENDEDICATED-NET
descr: Christian Maurice Sebastiaan Hein
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9537664 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9537664 2013-02-20T08:40:03+01:00 first: 1361346003
last: 0
md5: 5b56714c939319d851af781a753be529
virustotal: http://www.virustotal.com/latest-report.html?resource=5b56714c939319d851af781a753be529
vt_score: 36/46 (78.3%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen3
url: http://193.105.134.189/rasta01.exe
recent: up
response: alive
ip: 193.105.134.189
as: AS42708
review: 193.105.134.189
domain: 193.105.134.189
country: SE
source: RIPE
email: info@swedendedicated.com
inetnum: 193.105.134.0 - 193.105.134.255
netname: SWEDENDEDICATED-NET
descr: Christian Maurice Sebastiaan Hein
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9537663 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9537663 2013-02-20T08:40:03+01:00 first: 1361346003
last: 0
md5: a917db7312de4a2edc823ab9873199f8
virustotal: http://www.virustotal.com/latest-report.html?resource=a917db7312de4a2edc823ab9873199f8
vt_score: 8/36 (22.2%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen3
url: http://193.105.134.189/instcod.exe
recent: up
response: alive
ip: 193.105.134.189
as: AS42708
review: 193.105.134.189
domain: 193.105.134.189
country: SE
source: RIPE
email: info@swedendedicated.com
inetnum: 193.105.134.0 - 193.105.134.255
netname: SWEDENDEDICATED-NET
descr: Christian Maurice Sebastiaan Hein
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9537662 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9537662 2013-02-20T08:40:03+01:00 first: 1361346003
last: 0
md5: 6a636f6ea2ea48376f99d962abdb74f2
virustotal: http://www.virustotal.com/latest-report.html?resource=6a636f6ea2ea48376f99d962abdb74f2
vt_score: 8/36 (22.2%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen3
url: http://193.105.134.189/madload.exe
recent: up
response: alive
ip: 193.105.134.189
as: AS42708
review: 193.105.134.189
domain: 193.105.134.189
country: SE
source: RIPE
email: info@swedendedicated.com
inetnum: 193.105.134.0 - 193.105.134.255
netname: SWEDENDEDICATED-NET
descr: Christian Maurice Sebastiaan Hein
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9537661 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9537661 2013-02-20T08:40:03+01:00 first: 1361346003
last: 0
md5: 428580c7ad6620c884121738e4b453f1
virustotal: http://www.virustotal.com/latest-report.html?resource=428580c7ad6620c884121738e4b453f1
vt_score: 13/36 (36.1%)
scanner: avira
virusname: TR/Dropper.Gen
url: http://cuatrofm.es/img/load50.exe
recent: up
response: alive
ip: 85.214.110.148
as: AS6724
review: 85.214.110.148
domain: cuatrofm.es
country: DE
source: RIPE
email: abuse-server@strato.de
inetnum: 85.214.16.0 - 85.214.139.255
netname: STRATO-RZG-DED2
descr: Strato Rechenzentrum, Berlin
ns1: ns9.piensasolutions.com
ns2: ns10.piensasolutions.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9537660 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9537660 2013-02-20T08:40:03+01:00 first: 1361346003
last: 0
md5: 428580c7ad6620c884121738e4b453f1
virustotal: http://www.virustotal.com/latest-report.html?resource=428580c7ad6620c884121738e4b453f1
vt_score: 13/36 (36.1%)
scanner: avira
virusname: TR/Dropper.Gen
url: http://ceregypt.com/images/load50.exe
recent: up
response: alive
ip: 174.36.114.32
as: AS36351
review: 174.36.114.32
domain: ceregypt.com
country: US
source: ARIN
email: abuse@softlayer.com
inetnum: 174.36.0.0 - 174.37.255.255
netname: SOFTLAYER-4-7
descr: SoftLayer Technologies Inc. SOFTL 1950 N Stemmons Freeway Dallas TX 75207
ns1: ns2.echomicrosystems.com
ns2: ns1.echomicrosystems.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9537659 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9537659 2013-02-20T08:40:03+01:00 first: 1361346003
last: 0
md5: c7b985b2b178407d99e148fc3408f150
virustotal: http://www.virustotal.com/latest-report.html?resource=c7b985b2b178407d99e148fc3408f150
vt_score: 14/36 (38.9%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen
url: http://ceregypt.com/images/load57.exe
recent: up
response: alive
ip: 174.36.114.32
as: AS36351
review: 174.36.114.32
domain: ceregypt.com
country: US
source: ARIN
email: abuse@softlayer.com
inetnum: 174.36.0.0 - 174.37.255.255
netname: SOFTLAYER-4-7
descr: SoftLayer Technologies Inc. SOFTL 1950 N Stemmons Freeway Dallas TX 75207
ns1: ns2.echomicrosystems.com
ns2: ns1.echomicrosystems.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9537658 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9537658 2013-02-20T08:40:03+01:00 first: 1361346003
last: 0
md5: 9fa3b642e665eadc7de46c6ad00d88b9
virustotal: http://www.virustotal.com/latest-report.html?resource=9fa3b642e665eadc7de46c6ad00d88b9
vt_score: 4/36 (11.1%)
scanner: Comodo
virusname: UnclassifiedMalware
url: http://ceregypt.com/images/load2008.exe
recent: up
response: alive
ip: 174.36.114.32
as: AS36351
review: 174.36.114.32
domain: ceregypt.com
country: US
source: ARIN
email: abuse@softlayer.com
inetnum: 174.36.0.0 - 174.37.255.255
netname: SOFTLAYER-4-7
descr: SoftLayer Technologies Inc. SOFTL 1950 N Stemmons Freeway Dallas TX 75207
ns1: ns2.echomicrosystems.com
ns2: ns1.echomicrosystems.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9535483 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9535483 2013-02-20T00:00:05+01:00 first: 1361314805
last: 0
md5: a4777e8e9b10493ee486667e39f1be47
virustotal: http://www.virustotal.com/latest-report.html?resource=a4777e8e9b10493ee486667e39f1be47
vt_score: 10/46 (21.7%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen3
url: http://incumzyr.ru/rasta01.exe
recent: up
response: alive
ip: 46.109.168.3
as: AS12578
review: 79.135.211.227
domain: incumzyr.ru
country: UA
source: RIPE
email: rias@skyline.od.ua
inetnum: 46.109.0.0 - 46.109.255.255
netname: ICN-IP-ADDRESSING
descr: ICN Ltd.ICN Ltd.
ns1: ns6.incumzyr.ru
ns2: ns1.incumzyr.ru
ns3: ns2.incumzyr.ru
ns4: ns4.incumzyr.ru
ns5: ns3.incumzyr.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=9531105 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9531105 2013-02-19T17:40:08+01:00 first: 1361292008
last: 0
md5: dbb6a761b670a25175870cc4b29e2c25
virustotal: http://www.virustotal.com/latest-report.html?resource=dbb6a761b670a25175870cc4b29e2c25
vt_score: 35/46 (76.1%)
scanner: AhnLab_V3
virusname: Trojan/Win32.VBKrypt
url: http://hotfile.com/dl/195157652/7a6c311/ckAw8xV.exe.html
recent: up
response: alive
ip: 199.7.177.236
as: AS7366
review: 199.7.177.234
domain: hotfile.com
country: US
source: ARIN
email: abuse@lemuriaco.com
inetnum: 199.7.176.0 - 199.7.183.255
netname: LEMURIA-COMMUNICATIONS
descr: Lemuria Communications Inc. LEMUR 110 E BROWARD BLVD STE 1736 FORT LAUDERDALE FL 33301
ns1: ns2.easydns.com
ns2: ns1.hotfile.com
ns3: ns1.easydns.com
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9529446 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9529446 2013-02-19T11:00:04+01:00 first: 1361268004
last: 0
md5: 046c70a6583d4218e2d677abf5fb30f5
virustotal: http://www.virustotal.com/latest-report.html?resource=046c70a6583d4218e2d677abf5fb30f5
vt_score: 36/42 (85.7%)
scanner: avira
virusname: TR/Dropper.Gen
url: http://130.0.238.184/file.exe
recent: up
response: alive
ip: 130.0.238.184
as: AS15626
review: 130.0.238.184
domain: 130.0.238.184
country: UA
source: RIPE
email: info@3nt.com
inetnum: 130.0.238.0 - 130.0.239.255
netname: UK-3NT-NET2
descr: VPS/VDS servicesUK-3NT-NET
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9529445 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9529445 2013-02-19T11:00:04+01:00 first: 1361268004
last: 0
md5: 0af577450d03e90d4886006e3492def3
virustotal: http://www.virustotal.com/latest-report.html?resource=0af577450d03e90d4886006e3492def3
vt_score: 33/46 (71.7%)
scanner: AntiVir
virusname: TR/Agent.117248.56
url: http://130.0.238.184/file1.exe
recent: up
response: alive
ip: 130.0.238.184
as: AS15626
review: 130.0.238.184
domain: 130.0.238.184
country: UA
source: RIPE
email: info@3nt.com
inetnum: 130.0.238.0 - 130.0.239.255
netname: UK-3NT-NET2
descr: VPS/VDS servicesUK-3NT-NET
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9529444 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9529444 2013-02-19T11:00:04+01:00 first: 1361268004
last: 0
md5: 72db7ec179ec0d5785f20abc3fad8b45
virustotal: http://www.virustotal.com/latest-report.html?resource=72db7ec179ec0d5785f20abc3fad8b45
vt_score: 32/46 (69.6%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Agent
url: http://bluegrassornamentaliron.com/5AUPnx.exe
recent: up
response: alive
ip: 66.147.240.153
as: AS11798
review: 66.147.240.153
domain: bluegrassornamentaliron.com
country: US
source: ARIN
email: abuse@bluehost.com
inetnum: 66.147.240.0 - 66.147.255.255
netname: BLUEHOST-NETWORK-4
descr: Bluehost Inc. BLUEH-2 1958 South 950 East Provo UT 84606
ns1: ns2.hostmonster.com
ns2: ns1.hostmonster.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9529443 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9529443 2013-02-19T11:00:03+01:00 first: 1361268003
last: 0
md5: 72db7ec179ec0d5785f20abc3fad8b45
virustotal: http://www.virustotal.com/latest-report.html?resource=72db7ec179ec0d5785f20abc3fad8b45
vt_score: 32/46 (69.6%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Agent
url: http://mariefredbk.se/TE2ECpWp.exe
recent: up
response: alive
ip: 91.201.60.24
as: AS44136
review: 91.201.60.24
domain: mariefredbk.se
country: SE
source: RIPE
email: abuse@oderland.se
inetnum: 91.201.60.0 - 91.201.63.255
netname: ODERLAND-NET
descr: ODERLAND Webbhotell AB
ns1: dns2.oderland.com
ns2: dns1.oderland.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9529442 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9529442 2013-02-19T11:00:03+01:00 first: 1361268003
last: 0
md5: 72db7ec179ec0d5785f20abc3fad8b45
virustotal: http://www.virustotal.com/latest-report.html?resource=72db7ec179ec0d5785f20abc3fad8b45
vt_score: 6/36 (16.7%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Agent
url: http://stefan-auerswald.de/jPA.exe
recent: up
response: alive
ip: 80.67.28.170
as: AS34011
review: 80.67.28.170
domain: stefan-auerswald.de
country: DE
source: RIPE
email: abuse@ispgateway.de
inetnum: 80.67.28.0 - 80.67.28.255
netname: DOMAINFACTORY-20070518
descr: SHARED WEBHOSTINGDOMAINFACTORY
ns1: ns.namespace4you.de
ns2: ns2.namespace4you.de
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9528546 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9528546 2013-02-19T08:00:03+01:00 first: 1361257203
last: 0
md5: ada8d1204a74b9889052e8c9bdfa4b1c
virustotal: http://www.virustotal.com/latest-report.html?resource=ada8d1204a74b9889052e8c9bdfa4b1c
vt_score: 5/34 (14.7%)
scanner: AntiVir
virusname: TR/PSW.Fareit.IJ.1
url: http://19.danielherr.org/adobe/update_flash_player.exe
recent: up
response: alive
ip: 173.246.103.232
as: AS29169
review: 173.246.103.232
domain: danielherr.org
country: US
source: ARIN
email: noc@gandi.net
inetnum: 173.246.96.0 - 173.246.111.255
netname: GANDI-NET-DC1-1
descr: Gandi US Inc. GANDI-2 Gandi US Inc. PO Box 32863 Baltimore MD 21282
ns1: ns19.domaincontrol.com
ns2: ns20.domaincontrol.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9521080 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9521080 2013-02-18T14:00:23+01:00 first: 1361192423
last: 0
md5: 9adc33f72643f961c15cdb71a0e9892a
virustotal: http://www.virustotal.com/latest-report.html?resource=9adc33f72643f961c15cdb71a0e9892a
vt_score: 36/46 (78.3%)
scanner: avira
virusname: TR/Graftor.CE
url: http://industriac5.dominiotemporario.com/17-02/Xp/aples.exe
recent: up
response: alive
ip: 200.98.196.10
as: AS15201
review: 200.98.196.10
domain: dominiotemporario.com
country: BR
source: LACNIC
email: l-registrobr-uol@corp.uol.com.br
inetnum: 200.98.0.0 - 200.98.255.255
netname: 001.109.184/0001-95
descr: Universo Online S.A.
ns1: ns1.host.uol.com.br
ns2: ns3.host.uol.com.br
ns3: ns2.host.uol.com.br
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9521079 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9521079 2013-02-18T14:00:23+01:00 first: 1361192423
last: 0
md5: cd4c476f88176b958a10b218f01616a0
virustotal: http://www.virustotal.com/latest-report.html?resource=cd4c476f88176b958a10b218f01616a0
vt_score: 31/45 (68.9%)
scanner: avira
virusname: TR/Spy.Banker.Gen
url: http://industriac5.dominiotemporario.com/17-02/Xp/gerente.exe
recent: up
response: alive
ip: 200.98.196.10
as: AS15201
review: 200.98.196.10
domain: dominiotemporario.com
country: BR
source: LACNIC
email: l-registrobr-uol@corp.uol.com.br
inetnum: 200.98.0.0 - 200.98.255.255
netname: 001.109.184/0001-95
descr: Universo Online S.A.
ns1: ns1.host.uol.com.br
ns2: ns3.host.uol.com.br
ns3: ns2.host.uol.com.br
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9520975 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9520975 2013-02-18T13:40:06+01:00 first: 1361191206
last: 0
md5: 158ee1b9a3edca9e1392de9c8097e0c3
virustotal: http://www.virustotal.com/latest-report.html?resource=158ee1b9a3edca9e1392de9c8097e0c3
vt_score: 31/46 (67.4%)
scanner: avira
virusname: TR/Crypt.CFI.Gen
url: http://industriac5.dominiotemporario.com/17-02/Xp/service.exe
recent: up
response: alive
ip: 200.98.196.10
as: AS15201
review: 200.98.196.10
domain: dominiotemporario.com
country: BR
source: LACNIC
email: l-registrobr-uol@corp.uol.com.br
inetnum: 200.98.0.0 - 200.98.255.255
netname: 001.109.184/0001-95
descr: Universo Online S.A.
ns1: ns2.host.uol.com.br
ns2: ns1.host.uol.com.br
ns3: ns3.host.uol.com.br
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9485829 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9485829 2013-02-15T23:42:53+01:00 first: 1360968173
last: 0
md5: f57ea9cf86020c86e95be4fd7403e0ef
virustotal: http://www.virustotal.com/latest-report.html?resource=f57ea9cf86020c86e95be4fd7403e0ef
vt_score: 36/46 (78.3%)
scanner: AhnLab_V3
virusname: Trojan/Win32.FakeAV
url: http://95.140.203.241:8080/get/67ad970fbbc4f9b29bfeca40b0b4a54f.exe
recent: up
response: alive
ip: 95.140.203.241
as: AS42109
review: 95.140.203.241
domain: 95.140.203.241
country: AM
source: RIPE
email: abuse@adc.am
inetnum: 95.140.192.0 - 95.140.207.255
netname: AM-ADC-20090320
descr: Armenian Datacom Company
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9485827 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9485827 2013-02-15T23:42:53+01:00 first: 1360968173
last: 0
md5: f57ea9cf86020c86e95be4fd7403e0ef
virustotal: http://www.virustotal.com/latest-report.html?resource=f57ea9cf86020c86e95be4fd7403e0ef
vt_score: 36/46 (78.3%)
scanner: AhnLab_V3
virusname: Trojan/Win32.FakeAV
url: http://94.23.193.229:8080/get/67ad970fbbc4f9b29bfeca40b0b4a54f.exe
recent: up
response: alive
ip: 94.23.193.229
as: AS16276
review: 94.23.193.229
domain: 94.23.193.229
country: FR
source: RIPE
email: abuse@ovh.net
inetnum: 94.23.192.0 - 94.23.255.255
netname: OVH
descr: OVH SASDedicated Servershttp
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9485826 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9485826 2013-02-15T23:42:53+01:00 first: 1360968173
last: 0
md5: f57ea9cf86020c86e95be4fd7403e0ef
virustotal: http://www.virustotal.com/latest-report.html?resource=f57ea9cf86020c86e95be4fd7403e0ef
vt_score: 36/46 (78.3%)
scanner: AhnLab_V3
virusname: Trojan/Win32.FakeAV
url: http://87.118.122.19:8080/get/67ad970fbbc4f9b29bfeca40b0b4a54f.exe
recent: up
response: alive
ip: 87.118.122.19
as: AS31103
review: 87.118.122.19
domain: 87.118.122.19
country: DE
source: RIPE
email: abuse@keyweb.de
inetnum: 87.118.96.0 - 87.118.127.255
netname: DE-KEYWEB-III
descr: Keyweb AG IP Network
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9485825 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9485825 2013-02-15T23:42:53+01:00 first: 1360968173
last: 0
md5: f57ea9cf86020c86e95be4fd7403e0ef
virustotal: http://www.virustotal.com/latest-report.html?resource=f57ea9cf86020c86e95be4fd7403e0ef
vt_score: 36/46 (78.3%)
scanner: AhnLab_V3
virusname: Trojan/Win32.FakeAV
url: http://213.229.106.32:8088/get/67ad970fbbc4f9b29bfeca40b0b4a54f.exe
recent: up
response: alive
ip: 213.229.106.32
as: AS29550
review: 213.229.106.32
domain: 213.229.106.32
country: NL
source: RIPE
email: n_alblas@saturnus.nl
inetnum: 213.229.88.0 - 213.229.119.255
netname: DEKOOI
descr: Kooi SysteemHuis B.V.Provider Local Registry
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9485824 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9485824 2013-02-15T23:42:53+01:00 first: 1360968173
last: 0
md5: f57ea9cf86020c86e95be4fd7403e0ef
virustotal: http://www.virustotal.com/latest-report.html?resource=f57ea9cf86020c86e95be4fd7403e0ef
vt_score: 36/46 (78.3%)
scanner: AhnLab_V3
virusname: Trojan/Win32.FakeAV
url: http://91.121.28.146:8080/get/67ad970fbbc4f9b29bfeca40b0b4a54f.exe
recent: up
response: alive
ip: 91.121.28.146
as: AS16276
review: 91.121.28.146
domain: 91.121.28.146
country: FR
source: RIPE
email: abuse@ovh.net
inetnum: 91.121.0.0 - 91.121.31.255
netname: OVH
descr: OVH SASDedicated Servershttp
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9485823 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9485823 2013-02-15T23:42:53+01:00 first: 1360968173
last: 0
md5: f57ea9cf86020c86e95be4fd7403e0ef
virustotal: http://www.virustotal.com/latest-report.html?resource=f57ea9cf86020c86e95be4fd7403e0ef
vt_score: 36/46 (78.3%)
scanner: AhnLab_V3
virusname: Trojan/Win32.FakeAV
url: http://149.62.168.76:8080/get/67ad970fbbc4f9b29bfeca40b0b4a54f.exe
recent: up
response: alive
ip: 149.62.168.76
as: AS3356
review: 149.62.168.76
domain: 149.62.168.76
country: ES
source: RIPE
email:
inetnum: 149.62.168.0 - 149.62.175.255
netname:
descr:
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9485821 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9485821 2013-02-15T23:42:53+01:00 first: 1360968173
last: 0
md5: f57ea9cf86020c86e95be4fd7403e0ef
virustotal: http://www.virustotal.com/latest-report.html?resource=f57ea9cf86020c86e95be4fd7403e0ef
vt_score: 36/46 (78.3%)
scanner: AhnLab_V3
virusname: Trojan/Win32.FakeAV
url: http://50.115.116.201:8088/get/67ad970fbbc4f9b29bfeca40b0b4a54f.exe
recent: up
response: alive
ip: 50.115.116.201
as: AS29854, AS32780
review: 50.115.116.201
domain: 50.115.116.201
country: US
source: ARIN
email: abuse@hostingservicesinc.net
inetnum: 50.115.112.0 - 50.115.127.255
netname: HOSTINGSERVICES-INC
descr: Hosting Services, Inc. HOSTI-20 164 N Gateway Drive Providence UT 84332
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9480837 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9480837 2013-02-15T14:00:10+01:00 first: 1360933210
last: 0
md5: de676198f8d7025e915b08042a977291
virustotal: http://www.virustotal.com/latest-report.html?resource=de676198f8d7025e915b08042a977291
vt_score: 14/36 (38.9%)
scanner: AhnLab_V3
virusname: Spyware/Win32.Zbot
url: http://tspcncmachinetools.com/aiXJ8.exe
recent: up
response: alive
ip: 64.130.220.90
as: AS23136
review: 64.130.220.90
domain: tspcncmachinetools.com
country: CA
source: ARIN
email: roozbeh@ravand.com
inetnum: 64.130.208.0 - 64.130.223.255
netname: ONX-BLK2
descr: OnX Enterprise Solutions Inc. OES-15 155 Commerce Valley Drive East Thornhill ON L3T-7T2Ravand Cybertech Inc. RAVAN 255 Duncan Mill Rd. Suite 205 Toronto ON M3B-3H9
ns1: ns1.nedahosting.com
ns2: ns2.nedahosting.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9480836 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9480836 2013-02-15T14:00:09+01:00 first: 1360933209
last: 0
md5: af43b86ce00115630eb766ca908037fa
virustotal: http://www.virustotal.com/latest-report.html?resource=af43b86ce00115630eb766ca908037fa
vt_score: 35/46 (76.1%)
scanner: clamav
virusname: WIN.Spy.Zbot-2928
url: http://itforever.hu/FBo8creG.exe
recent: up
response: alive
ip: 195.228.86.48
as: AS5483
review: 195.228.86.48
domain: itforever.hu
country: HU
source: RIPE
email: abuse@t-online.hu
inetnum: 195.228.86.0 - 195.228.87.255
netname: ADATPARK
descr: Magyar Telekom, GyorHungarian Telecom, AxeleroPublic Internet Access ProviderBudapest, HungaryHU
ns1: ns2.webtar.hu
ns2: ns1.webtar.hu
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9480834 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9480834 2013-02-15T14:00:09+01:00 first: 1360933209
last: 0
md5: de676198f8d7025e915b08042a977291
virustotal: http://www.virustotal.com/latest-report.html?resource=de676198f8d7025e915b08042a977291
vt_score: 14/36 (38.9%)
scanner: AhnLab_V3
virusname: Spyware/Win32.Zbot
url: http://www.northerncyprusweddings.com/FKsyKnXA.exe
recent: up
response: alive
ip: 212.85.249.130
as: AS8401
review: 212.85.249.130
domain: northerncyprusweddings.com
country: GB
source: RIPE
email: abuse@minx.net.uk
inetnum: 212.85.224.0 - 212.85.249.255
netname: EliteISP
descr: Internet service provider==========================================================To report abuse and spam send email to==========================================================
ns1: d.ns.as8401.net
ns2: c.ns.as8401.net
ns3: b.ns.186k.co.uk
ns4: a.ns.186k.co.uk
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9480833 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9480833 2013-02-15T14:00:09+01:00 first: 1360933209
last: 0
md5: 3e31f575b2a5a722eb2d1f2a06ac12c5
virustotal: http://www.virustotal.com/latest-report.html?resource=3e31f575b2a5a722eb2d1f2a06ac12c5
vt_score: 18/36 (50%)
scanner: AntiVir
virusname: TR/Rogue.KD.859964
url: http://speedpoker1.info/antivirusblock.exe
recent: up
response: alive
ip: 213.5.176.20
as: as33970
review: 213.5.176.20
domain: speedpoker1.info
country: GB
source: RIPE
email: abuse@racksrv.com
inetnum: 213.5.176.0 - 213.5.183.255
netname: Racksrv
descr: RackSRV Communications Ltd
ns1: ns1.thewebhostserver.com
ns2: ns4.thewebhostserver.com
ns3: ns2.thewebhostserver.com
ns4: ns3.thewebhostserver.com
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9480832 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9480832 2013-02-15T14:00:09+01:00 first: 1360933209
last: 0
md5: 7c97e5ecfbb3f5805552cfb11f864341
virustotal: http://www.virustotal.com/latest-report.html?resource=7c97e5ecfbb3f5805552cfb11f864341
vt_score: 30/46 (65.2%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen2
url: http://www.ipu-ce.com/admin/pics/emoticons/Gbplugin.exe
recent: up
response: alive
ip: 187.17.98.44
as: AS15201
review: 187.17.98.44
domain: ipu-ce.com
country: BR
source: LACNIC
email: l-registrobr-uol@corp.uol.com.br
inetnum: 187.17.64.0 - 187.17.127.255
netname: 001.109.184/0001-95
descr: Universo Online S.A.
ns1: ns2.dominios.uol.com.br
ns2: ns1.dominios.uol.com.br
ns3: ns3.dominios.uol.com.br
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9479050 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9479050 2013-02-15T11:00:06+01:00 first: 1360922406
last: 0
md5: 89f55866ce438720f6b62e9ffc6e2da5
virustotal: http://www.virustotal.com/latest-report.html?resource=89f55866ce438720f6b62e9ffc6e2da5
vt_score: 20/36 (55.6%)
scanner: avira
virusname: TR/Dropper.Gen
url: http://izolenta.info/tmp/xx.exe
recent: up
response: alive
ip: 178.91.94.6
as: AS9198
review: 178.91.94.6
domain: izolenta.info
country: KZ
source: RIPE
email: nic@online.kz
inetnum: 178.88.0.0 - 178.91.255.255
netname: KZ-KAZAKTELECOM-20091126
descr: JSC KazakhtelecomKazakhtelecom Data Network AdministrationKazakhtelecom Data Network AdministrationKazakhtelecom Data Network Administration
ns1: ns2.hosthouse.kz
ns2: ns1.hosthouse.kz
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9479049 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9479049 2013-02-15T11:00:06+01:00 first: 1360922406
last: 0
md5: aad8918fa8cfb520c29c1c0e72839626
virustotal: http://www.virustotal.com/latest-report.html?resource=aad8918fa8cfb520c29c1c0e72839626
vt_score: 10/32 (31.3%)
scanner: AntiVir
virusname: TR/PSW.Zbot.5123
url: http://izolenta.info/tmp/z.exe
recent: up
response: alive
ip: 178.91.94.6
as: AS9198
review: 178.91.94.6
domain: izolenta.info
country: KZ
source: RIPE
email: nic@online.kz
inetnum: 178.88.0.0 - 178.91.255.255
netname: KZ-KAZAKTELECOM-20091126
descr: JSC KazakhtelecomKazakhtelecom Data Network AdministrationKazakhtelecom Data Network AdministrationKazakhtelecom Data Network Administration
ns1: ns2.hosthouse.kz
ns2: ns1.hosthouse.kz
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9478478 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9478478 2013-02-15T10:40:03+01:00 first: 1360921203
last: 0
md5: 531f3f0d6d2d474a36ff185942998cab
virustotal: http://www.virustotal.com/latest-report.html?resource=531f3f0d6d2d474a36ff185942998cab
vt_score: 4/36 (11.1%)
scanner: avira
virusname: TR/Dropper.Gen
url: http://brimka.ru/download/?id=913
recent: up
response: alive
ip: 88.198.206.120
as: AS24940
review: 88.198.206.120
domain: brimka.ru
country: DE
source: RIPE
email: abuse@hetzner.de
inetnum: 88.198.0.0 - 88.198.255.255
netname: DE-HETZNER-20051227
descr: Hetzner Online AG
ns1: ns1.brimka.ru
ns2: ns2.brimka.ru
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9477872 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9477872 2013-02-15T09:40:06+01:00 first: 1360917606
last: 0
md5: 709bc9fe8418590315500b36800e50d8
virustotal: http://www.virustotal.com/latest-report.html?resource=709bc9fe8418590315500b36800e50d8
vt_score: 2/36 (5.6%)
scanner: Fortinet
virusname: W32/Caphaw.I!tr
url: http://astexisnew.net/ngen/controlling/doddresc.php?jbbyrark=2w:32:32:2v:1k&jhr=1i:2v:1l:1n:1m:1f:33:1m:1g:1n&oud=1i&qjnwi=ezttvwl&ply=reczxk
recent: up
response: alive
ip: 63.90.228.36
as: AS46940
review: 63.90.228.36
domain: astexisnew.net
country: US
source: ARIN
email: abuse-mail@verizonbusiness.com
inetnum: 63.64.0.0 - 63.127.255.255
netname: UUNET63
descr: MCI Communications Services, Inc. d/b/a Verizon Business MCICS 22001 Loudoun County Pkwy Ashburn VA 20147
ns1: ns3.cnmsn.com
ns2: ns4.cnmsn.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9468796 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9468796 2013-02-14T15:50:04+01:00 first: 1360853404
last: 0
md5: 06fc381df0d167a389c8607c926c5b80
virustotal: http://www.virustotal.com/latest-report.html?resource=06fc381df0d167a389c8607c926c5b80
vt_score: 37/46 (80.4%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Zbot
url: http://194.242.59.32/instcod.exe
recent: up
response: alive
ip: 194.242.59.32
as: AS20785
review: 194.242.59.32
domain: 194.242.59.32
country: UA
source: RIPE
email: abuse@uct.ua
inetnum: 194.242.59.0 - 194.242.59.255
netname: UCT-NET
descr: ISP UCT
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9468795 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9468795 2013-02-14T15:50:04+01:00 first: 1360853404
last: 0
md5: 272052e02e57cd6eebca51e7a68e4189
virustotal: http://www.virustotal.com/latest-report.html?resource=272052e02e57cd6eebca51e7a68e4189
vt_score: 37/46 (80.4%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Zbot
url: http://194.242.59.34/newbos3.exe
recent: up
response: alive
ip: 194.242.59.34
as: AS20785
review: 194.242.59.34
domain: 194.242.59.34
country: UA
source: RIPE
email: abuse@uct.ua
inetnum: 194.242.59.0 - 194.242.59.255
netname: UCT-NET
descr: ISP UCT
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9468794 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9468794 2013-02-14T15:50:04+01:00 first: 1360853404
last: 0
md5: 3dff532cbfa42fb2173e9cf3cf98923d
virustotal: http://www.virustotal.com/latest-report.html?resource=3dff532cbfa42fb2173e9cf3cf98923d
vt_score: 21/35 (60%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Agent
url: http://217.11.63.194:8080/get/b2f7e9141eb124ce3152352c5df520f7.exe
recent: up
response: alive
ip: 217.11.63.194
as: AS9063
review: 217.11.63.194
domain: 217.11.63.194
country: DE
source: RIPE
email: og@goekal-it.de
inetnum: 217.11.63.0 - 217.11.63.255
netname: GOEKAL-IT
descr: Goekal-IT NetworkKilianstraße 10433098 PaderbornmanituWelvertstrasse 266606 St. WendelGermany
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9468793 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9468793 2013-02-14T15:50:04+01:00 first: 1360853404
last: 0
md5: 961b30fd067a6fd6e71d6cdb0ba16d20
virustotal: http://www.virustotal.com/latest-report.html?resource=961b30fd067a6fd6e71d6cdb0ba16d20
vt_score: 32/43 (74.4%)
scanner: AntiVir
virusname: TR/Winwebsec.401926
url: http://193.105.134.89/madload.exe
recent: up
response: alive
ip: 193.105.134.89
as: AS42708
review: 193.105.134.89
domain: 193.105.134.89
country: SE
source: RIPE
email: info@swedendedicated.com
inetnum: 193.105.134.0 - 193.105.134.255
netname: SWEDENDEDICATED-NET
descr: Christian Maurice Sebastiaan Hein
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9468558 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9468558 2013-02-14T14:50:05+01:00 first: 1360849805
last: 0
md5: 9ebdf532a1f95fd37fa3b4b3a099539d
virustotal: http://www.virustotal.com/latest-report.html?resource=9ebdf532a1f95fd37fa3b4b3a099539d
vt_score: 24/35 (68.6%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Zbot
url: http://188.190.98.74/madload.exe
recent: up
response: alive
ip: 188.190.98.74
as: AS197145
review: 188.190.98.74
domain: 188.190.98.74
country: UA
source: RIPE
email: abusemail@infiumhost.com
inetnum: 188.190.96.0 - 188.190.127.255
netname: INFIUM
descr: Infium LTD
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9468557 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9468557 2013-02-14T14:50:05+01:00 first: 1360849805
last: 0
md5: ac7293642a7afba68429257b05d4d5e1
virustotal: http://www.virustotal.com/latest-report.html?resource=ac7293642a7afba68429257b05d4d5e1
vt_score: 11/36 (30.6%)
scanner: AVG
virusname: Crypt_s.AJO
url: http://188.190.98.74/newbos3.exe
recent: up
response: alive
ip: 188.190.98.74
as: AS197145
review: 188.190.98.74
domain: 188.190.98.74
country: UA
source: RIPE
email: abusemail@infiumhost.com
inetnum: 188.190.96.0 - 188.190.127.255
netname: INFIUM
descr: Infium LTD
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9468408 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9468408 2013-02-14T13:40:08+01:00 first: 1360845608
last: 0
md5: 3ef56e3e99bc9780bdc33242716cf141
virustotal: http://www.virustotal.com/latest-report.html?resource=3ef56e3e99bc9780bdc33242716cf141
vt_score: 10/36 (27.8%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen
url: http://194.242.59.34/calc.exe
recent: up
response: alive
ip: 194.242.59.34
as: AS20785
review: 194.242.59.34
domain: 194.242.59.34
country: UA
source: RIPE
email: abuse@uct.ua
inetnum: 194.242.59.0 - 194.242.59.255
netname: UCT-NET
descr: ISP UCT
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9468308 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9468308 2013-02-14T13:00:11+01:00 first: 1360843211
last: 0
md5: 5683d35b6e26f98654b28d8830285a69
virustotal: http://www.virustotal.com/latest-report.html?resource=5683d35b6e26f98654b28d8830285a69
vt_score: 12/36 (33.3%)
scanner: AVG
virusname: Crypt_s.AJO
url: http://194.242.59.34/madload.exe
recent: up
response: alive
ip: 194.242.59.34
as: AS20785
review: 194.242.59.34
domain: 194.242.59.34
country: UA
source: RIPE
email: abuse@uct.ua
inetnum: 194.242.59.0 - 194.242.59.255
netname: UCT-NET
descr: ISP UCT
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9468307 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9468307 2013-02-14T13:00:11+01:00 first: 1360843211
last: 0
md5: 2c0dcedefcd94d0bb7e71605347f7e6a
virustotal: http://www.virustotal.com/latest-report.html?resource=2c0dcedefcd94d0bb7e71605347f7e6a
vt_score: 6/19 (31.6%)
scanner: AVG
virusname: Crypt_s.AJO
url: http://194.242.59.34/newbos2.exe
recent: up
response: alive
ip: 194.242.59.34
as: AS20785
review: 194.242.59.34
domain: 194.242.59.34
country: UA
source: RIPE
email: abuse@uct.ua
inetnum: 194.242.59.0 - 194.242.59.255
netname: UCT-NET
descr: ISP UCT
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9468306 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9468306 2013-02-14T13:00:11+01:00 first: 1360843211
last: 0
md5: 04e9d4167c9a1b82e622e04ad85f8e99
virustotal: http://www.virustotal.com/latest-report.html?resource=04e9d4167c9a1b82e622e04ad85f8e99
vt_score: 23/35 (65.7%)
scanner: AntiVir
virusname: TR/Rogue.kdz.7940.1
url: http://91.121.57.231:8080/forum/links/column.php?zyz=1k:33:1m:1m:1n&cljoq=1j:33:32:1l:1g:1i:1o:1n:1o:1i&voow=1i&zdaji=zzjnh&tgibgll=jlv
recent: up
response: alive
ip: 91.121.57.231
as: AS16276
review: 91.121.57.231
domain: 91.121.57.231
country: FR
source: RIPE
email: abuse@ovh.net
inetnum: 91.121.32.0 - 91.121.63.255
netname: OVH
descr: OVH SASDedicated Servershttp
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9468305 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9468305 2013-02-14T13:00:11+01:00 first: 1360843211
last: 0
md5: 3ea1dce36633f8623a64bcbe12f11929
virustotal: http://www.virustotal.com/latest-report.html?resource=3ea1dce36633f8623a64bcbe12f11929
vt_score: 11/35 (31.4%)
scanner: AVG
virusname: Crypt_s.AJO
url: http://194.242.59.34/m.exe
recent: up
response: alive
ip: 194.242.59.34
as: AS20785
review: 194.242.59.34
domain: 194.242.59.34
country: UA
source: RIPE
email: abuse@uct.ua
inetnum: 194.242.59.0 - 194.242.59.255
netname: UCT-NET
descr: ISP UCT
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9468171 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9468171 2013-02-14T12:00:11+01:00 first: 1360839611
last: 0
md5: 32f7e7d8bba6e5a64bb8644f2ee58462
virustotal: http://www.virustotal.com/latest-report.html?resource=32f7e7d8bba6e5a64bb8644f2ee58462
vt_score: 35/46 (76.1%)
scanner: AhnLab_V3
virusname: Spyware/Win32.Zbot
url: http://cuxystaf.ru/status/electronics-emphasis_significantly.php?ffxymafx=1k:33:1m:1m:1n&cged=1j:1n:1m:1l:1m:2w:31:1j:1m:1g&fgpqvbd=1i&rmlyon=wgkp&aiggtnlz=rweyvnr
recent: up
response: alive
ip: 142.0.45.27
as: AS46664
review: 142.0.45.27
domain: cuxystaf.ru
country: US
source: ARIN
email: info@volumedrive.com
inetnum: 142.0.32.0 - 142.0.47.255
netname: VOLUM-ARIN
descr: VolumeDrive VOLUM-2 1143 Northern Blvd Clarks Summit PA 18411
ns1: ns2.cuxystaf.ru
ns2: ns6.cuxystaf.ru
ns3: ns4.cuxystaf.ru
ns4: ns3.cuxystaf.ru
ns5: ns1.cuxystaf.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=9464246 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9464246 2013-02-13T17:40:03+01:00 first: 1360773603
last: 0
md5: f05bf3edb697f5f3fde30f2502789c60
virustotal: http://www.virustotal.com/latest-report.html?resource=f05bf3edb697f5f3fde30f2502789c60
vt_score: 12/35 (34.3%)
scanner: AhnLab_V3
virusname: Worm/Win32.Palevo
url: http://mypicture.de-info.de/DCIM_2112-004.exe
recent: up
response: alive
ip: 88.198.21.241
as: AS24940
review: 88.198.21.241
domain: de-info.de
country: DE
source: RIPE
email: abuse@hetzner.de
inetnum: 88.198.16.0 - 88.198.31.255
netname: HETZNER-RZ-NBG-NET
descr: Hetzner Online AGDatacenter NuernbergHETZNER-RZ-NBG-BLK4
ns1: ns1.subdomain.com
ns2: ns2.subdomain.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9464245 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9464245 2013-02-13T17:40:02+01:00 first: 1360773602
last: 0
md5: a2fab835c7d050030e9f241913fb6c28
virustotal: http://www.virustotal.com/latest-report.html?resource=a2fab835c7d050030e9f241913fb6c28
vt_score: 25/46 (54.3%)
scanner: AhnLab_V3
virusname: Trojan/Win32.FakeAV
url: http://wir-in-moers.de/sj4wF5oH.exe
recent: up
response: alive
ip: 82.165.84.183
as: AS8560
review: 82.165.84.183
domain: wir-in-moers.de
country: DE
source: RIPE
email: abuse@1and1.com
inetnum: 82.165.64.0 - 82.165.127.255
netname: SCHLUND-SHARED
descr: 1&1 Internet AGNCC#2004115007SCHLUND-PA-4
ns1: ns65.1und1.de
ns2: ns66.1und1.de
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9452856 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9452856 2013-02-12T17:40:05+01:00 first: 1360687205
last: 0
md5: 01c0a2a73af6df556ddb616dae708ed0
virustotal: http://www.virustotal.com/latest-report.html?resource=01c0a2a73af6df556ddb616dae708ed0
vt_score: 3/35 (8.6%)
scanner: Fortinet
virusname: W32/Yakes.B!tr
url: http://rolex30.serverthuis.nl/file/1.exe
recent: up
response: alive
ip: 31.148.219.6
as: AS44546
review: 31.148.219.6
domain: serverthuis.nl
country: GB
source: RIPE
email: abuse@alfatelecom.cz
inetnum: 31.148.219.0 - 31.148.219.255
netname: SVSERVERS-NET
descr: INTERNET IT TECHNOLOGY LTD
ns1: ns4.serverthuis.com
ns2: ns2.serverthuis.com
ns3: ns1.serverthuis.com
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9452855 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9452855 2013-02-12T17:40:04+01:00 first: 1360687204
last: 0
md5: 3ac6c5f9e686e04bf5a6ac212cd18f41
virustotal: http://www.virustotal.com/latest-report.html?resource=3ac6c5f9e686e04bf5a6ac212cd18f41
vt_score: 14/45 (31.1%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen
url: http://rolex30.serverthuis.nl/file/2.exe
recent: up
response: alive
ip: 31.148.219.6
as: AS44546
review: 31.148.219.6
domain: serverthuis.nl
country: GB
source: RIPE
email: abuse@alfatelecom.cz
inetnum: 31.148.219.0 - 31.148.219.255
netname: SVSERVERS-NET
descr: INTERNET IT TECHNOLOGY LTD
ns1: ns4.serverthuis.com
ns2: ns2.serverthuis.com
ns3: ns1.serverthuis.com
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9452182 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9452182 2013-02-12T15:40:24+01:00 first: 1360680024
last: 0
md5: 11d7125355766144527db272c584714b
virustotal: http://www.virustotal.com/latest-report.html?resource=11d7125355766144527db272c584714b
vt_score: 6/35 (17.1%)
scanner: BitDefender
virusname: Gen:Variant.Graftor.68095
url: http://seunig.de/L5Fvb.exe
recent: up
response: alive
ip: 81.169.145.162
as: AS6724
review: 81.169.145.162
domain: seunig.de
country: DE
source: RIPE
email: abuse@strato.de
inetnum: 81.169.144.0 - 81.169.156.255
netname: STRATO-RZG-KA
descr: Strato Rechenzentrum, BerlinStrato Rechenzentrum
ns1: shades06.rzone.de
ns2: docks11.rzone.de
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9452181 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9452181 2013-02-12T15:40:24+01:00 first: 1360680024
last: 0
md5: 11d7125355766144527db272c584714b
virustotal: http://www.virustotal.com/latest-report.html?resource=11d7125355766144527db272c584714b
vt_score: 8/45 (17.8%)
scanner: BitDefender
virusname: Gen:Variant.Graftor.68095
url: http://limitedltd.be/CtSfQca3.exe
recent: up
response: alive
ip: 81.95.123.12
as: AS42160
review: 81.95.123.12
domain: limitedltd.be
country: BE
source: RIPE
email:
inetnum: 81.95.112.0 - 81.95.127.255
netname:
descr:
ns1: ns1.belgon-dns05.be
ns2: ns2.belgon-dns05.be
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9452180 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9452180 2013-02-12T15:40:24+01:00 first: 1360680024
last: 0
md5: 11d7125355766144527db272c584714b
virustotal: http://www.virustotal.com/latest-report.html?resource=11d7125355766144527db272c584714b
vt_score: 6/35 (17.1%)
scanner: BitDefender
virusname: Gen:Variant.Graftor.68095
url: http://visiterlareunion.fr/3gyrJ8B8.exe
recent: up
response: alive
ip: 174.142.212.165
as: AS32613
review: 174.142.212.165
domain: visiterlareunion.fr
country: CA
source: ARIN
email: abuse@noc.privatedns.com
inetnum: 174.142.0.0 - 174.142.255.255
netname: IWEB-BLK-06
descr: iWeb Technologies Inc. GIT-20 20, place du Commerce Montreal QC H3E-1Z6
ns1: ns2.capigroupe7.net
ns2: ns4.capigroupe7.net
ns3: ns3.capigroupe7.net
ns4: ns1.capigroupe7.net
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9452179 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9452179 2013-02-12T15:40:24+01:00 first: 1360680024
last: 0
md5: 2943a9569a77c97641b0ab7129496736
virustotal: http://www.virustotal.com/latest-report.html?resource=2943a9569a77c97641b0ab7129496736
vt_score: 16/44 (36.4%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen2
url: http://amxylkap.ru/calc.exe
recent: up
response: alive
ip: 14.99.100.119
as: AS55740
review: 95.104.85.31
domain: amxylkap.ru
country: GE
source: RIPE
email: ib@caucasus.net
inetnum: 14.96.0.0 - 14.99.255.255
netname: CAUCASUS-BROADBAND-4
descr: Caucasus Online Broadband networkCaucasus OnlineCAUCASUS-BROADBAND-4
ns1: ns5.amxylkap.ru
ns2: ns6.amxylkap.ru
ns3: ns4.amxylkap.ru
ns4: ns2.amxylkap.ru
ns5: ns1.amxylkap.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=9448459 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9448459 2013-02-12T10:00:04+01:00 first: 1360659604
last: 0
md5: 702ebc67e49c160b37376bc15f42efed
virustotal: http://www.virustotal.com/latest-report.html?resource=702ebc67e49c160b37376bc15f42efed
vt_score: 4/35 (11.4%)
scanner: Fortinet
virusname: W32/VBKrypt.DAB!tr
url: http://hotfile.com/dl/193972185/c755590/uozUt9K.html
recent: up
response: alive
ip: 199.7.177.218
as: AS7366
review: 199.7.177.216
domain: hotfile.com
country: US
source: ARIN
email: abuse@lemuriaco.com
inetnum: 199.7.176.0 - 199.7.183.255
netname: LEMURIA-COMMUNICATIONS
descr: Lemuria Communications Inc. LEMUR 110 E BROWARD BLVD STE 1736 FORT LAUDERDALE FL 33301
ns1: ns2.easydns.com
ns2: ns1.hotfile.com
ns3: ns1.easydns.com
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9437822 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9437822 2013-02-11T18:00:11+01:00 first: 1360602011
last: 0
md5: 36588c8f29e23f645cde30187432ae6d
virustotal: http://www.virustotal.com/latest-report.html?resource=36588c8f29e23f645cde30187432ae6d
vt_score: 39/45 (86.7%)
scanner: AntiVir
virusname: TR/Agent.90112.366
url: http://hotfile.com/dl/193931805/fcb69f8/PnsaXgc.exe.html
recent: up
response: alive
ip: 199.7.177.226
as: AS7366
review: 199.7.177.224
domain: hotfile.com
country: US
source: ARIN
email: abuse@lemuriaco.com
inetnum: 199.7.176.0 - 199.7.183.255
netname: LEMURIA-COMMUNICATIONS
descr: Lemuria Communications Inc. LEMUR 110 E BROWARD BLVD STE 1736 FORT LAUDERDALE FL 33301
ns1: ns1.hotfile.com
ns2: ns1.easydns.com
ns3: ns2.easydns.com
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9437821 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9437821 2013-02-11T18:00:11+01:00 first: 1360602011
last: 0
md5: beb3b506e1384f9196564adf94745b97
virustotal: http://www.virustotal.com/latest-report.html?resource=beb3b506e1384f9196564adf94745b97
vt_score: 40/46 (87%)
scanner: AhnLab_V3
virusname: Win-Trojan/Vbcrypt.86016
url: http://hotfile.com/dl/193930317/46b1b0d/2doiO9k.html
recent: up
response: alive
ip: 199.7.177.228
as: AS7366
review: 199.7.177.220
domain: hotfile.com
country: US
source: ARIN
email: abuse@lemuriaco.com
inetnum: 199.7.176.0 - 199.7.183.255
netname: LEMURIA-COMMUNICATIONS
descr: Lemuria Communications Inc. LEMUR 110 E BROWARD BLVD STE 1736 FORT LAUDERDALE FL 33301
ns1: ns1.hotfile.com
ns2: ns1.easydns.com
ns3: ns2.easydns.com
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9436549 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9436549 2013-02-11T14:00:33+01:00 first: 1360587633
last: 0
md5: dd485bac9d16f2162b9a3e611761d0ce
virustotal: http://www.virustotal.com/latest-report.html?resource=dd485bac9d16f2162b9a3e611761d0ce
vt_score: 4/46 (8.7%)
scanner: Fortinet
virusname: W32/VBKrypt.DAB!tr
url: http://hotfile.com/dl/193879235/2d844bf/wtYSllF.html
recent: up
response: alive
ip: 199.7.177.234
as: AS7366
review: 199.7.177.232
domain: hotfile.com
country: US
source: ARIN
email: abuse@lemuriaco.com
inetnum: 199.7.176.0 - 199.7.183.255
netname: LEMURIA-COMMUNICATIONS
descr: Lemuria Communications Inc. LEMUR 110 E BROWARD BLVD STE 1736 FORT LAUDERDALE FL 33301
ns1: ns2.easydns.com
ns2: ns1.hotfile.com
ns3: ns1.easydns.com
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9424736 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9424736 2013-02-10T13:50:03+01:00 first: 1360500603
last: 0
md5: 85c58237735fb92dfb174e56bc05f12e
virustotal: http://www.virustotal.com/latest-report.html?resource=85c58237735fb92dfb174e56bc05f12e
vt_score: 7/35 (20%)
scanner: BitDefender
virusname: Trojan.Generic.KDZ.7696
url: http://lisybsij.ru/status/electronics-emphasis_significantly.php?ffxymafx=1k:33:1m:1m:1n&cged=1j:1n:1m:1l:1m:2w:31:1j:1m:1g&fgpqvbd=1i&rmlyon=wgkp&aiggtnlz=rweyvnr
recent: up
response: alive
ip: 192.210.142.237
as: AS36352
review: 192.210.142.237
domain: lisybsij.ru
country: BG
source: ARIN
email: abarakov94@gmail.com
inetnum: 192.210.142.192 - 192.210.142.255
netname: CC-192-210-142-192-26
descr: LiquidSolutions LIQUI-52 Mladost, block.3, vhod B, ap.10 Troyan NA 5600
ns1: ns4.lisybsij.ru
ns2: ns1.lisybsij.ru
ns3: ns3.lisybsij.ru
ns4: ns6.lisybsij.ru
ns5: ns2.lisybsij.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=9423777 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9423777 2013-02-10T11:00:13+01:00 first: 1360490413
last: 0
md5: 34d386e6be8d11ecd09aa507c824a368
virustotal: http://www.virustotal.com/latest-report.html?resource=34d386e6be8d11ecd09aa507c824a368
vt_score: 14/34 (41.2%)
scanner: avira
virusname: TR/Dropper.Gen
url: http://www.kamizoku.com/foto43.exe
recent: up
response: alive
ip: 69.89.31.70
as: AS11798
review: 69.89.31.70
domain: kamizoku.com
country: US
source: ARIN
email: abuse@bluehost.com
inetnum: 69.89.16.0 - 69.89.31.255
netname: BLUEHOST-NETWORK-1
descr: Bluehost Inc. BLUEH-2 1958 South 950 East Provo UT 84606
ns1: ns1.bluehost.com
ns2: ns2.bluehost.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9416612 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9416612 2013-02-09T20:50:10+01:00 first: 1360439410
last: 0
md5: 58fff1751a0d362b777ad15464f08c69
virustotal: http://www.virustotal.com/latest-report.html?resource=58fff1751a0d362b777ad15464f08c69
vt_score: 6/35 (17.1%)
scanner: BitDefender
virusname: Trojan.Generic.KD.854227
url: http://sspmrwli.jkub.com/xlawr/next/acquires-board.php?dwwsvqih=1k:33:1m:1m:1n&plsmltdq=1f:30:2w:1k:31:1i:2v:1f:2v:32&zrbup=1i&gmfbj=wcvevwn&axvmdmns=ncbchrha
recent: up
response: alive
ip: 92.63.105.23
as: AS29182
review: 92.63.105.23
domain: jkub.com
country: RU
source: RIPE
email: abuse@ispsystem.net
inetnum: 92.63.104.0 - 92.63.107.255
netname: ISPSYSTEM
descr: ISPsystem MSK
ns1: ns2.changeip.org
ns2: ns3.changeip.org
ns3: ns1.changeip.org
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9406548 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9406548 2013-02-08T22:40:09+01:00 first: 1360359609
last: 0
md5: c8eade12c00203451f485d12259ab93e
virustotal: http://www.virustotal.com/latest-report.html?resource=c8eade12c00203451f485d12259ab93e
vt_score: 1/36 (2.8%)
scanner: Fortinet
virusname: W32/Injector.YMS!tr
url: http://ul.to/t1dk6o7l
recent: up
response: alive
ip: 95.211.143.200
as: AS16265
review: 95.211.143.200
domain: ul.to
country: NL
source: RIPE
email: abuse@leaseweb.com
inetnum: 95.211.0.0 - 95.211.255.255
netname: NL-LEASEWEB-20080724
descr: LeaseWeb B.V.
ns1: ns1.ul.to
ns2: ns3.ul.to
ns3: ns4.ul.to
ns4: ns2.ul.to
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9406547 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9406547 2013-02-08T22:40:09+01:00 first: 1360359609
last: 0
md5: 5d7ac5e2662513c8a93ca5fceac73e12
virustotal: http://www.virustotal.com/latest-report.html?resource=5d7ac5e2662513c8a93ca5fceac73e12
vt_score: 2/35 (5.7%)
scanner: Fortinet
virusname: W32/Zbot.ANM!tr
url: http://www.gebiet-nord.de/pics/coconutsp2.exe
recent: up
response: alive
ip: 81.169.145.156
as: AS6724
review: 81.169.145.156
domain: gebiet-nord.de
country: DE
source: RIPE
email: abuse@strato.de
inetnum: 81.169.144.0 - 81.169.156.255
netname: STRATO-RZG-KA
descr: Strato Rechenzentrum, BerlinStrato Rechenzentrum
ns1: docks13.rzone.de
ns2: shades01.rzone.de
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9397841 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9397841 2013-02-08T10:40:28+01:00 first: 1360316428
last: 0
md5: b610a6a02b51c0b37bbb0b62752594c5
virustotal: http://www.virustotal.com/latest-report.html?resource=b610a6a02b51c0b37bbb0b62752594c5
vt_score: 23/45 (51.1%)
scanner: avira
virusname: TR/Dropper.Gen
url: http://ul.to/5qs9kvxe
recent: up
response: alive
ip: 95.211.143.200
as: AS16265
review: 95.211.143.200
domain: ul.to
country: NL
source: RIPE
email: abuse@leaseweb.com
inetnum: 95.211.0.0 - 95.211.255.255
netname: NL-LEASEWEB-20080724
descr: LeaseWeb B.V.
ns1: ns2.ul.to
ns2: ns4.ul.to
ns3: ns3.ul.to
ns4: ns1.ul.to
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9396923 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9396923 2013-02-08T09:40:15+01:00 first: 1360312815
last: 0
md5: 9420fa6921691a2735d1e180328f13e1
virustotal: http://www.virustotal.com/latest-report.html?resource=9420fa6921691a2735d1e180328f13e1
vt_score: 2/36 (5.6%)
scanner: Fortinet
virusname: W32/Injector.YMS!tr
url: http://ul.to/j6hmerd3
recent: up
response: alive
ip: 95.211.143.200
as: AS16265
review: 95.211.143.200
domain: ul.to
country: NL
source: RIPE
email: abuse@leaseweb.com
inetnum: 95.211.0.0 - 95.211.255.255
netname: NL-LEASEWEB-20080724
descr: LeaseWeb B.V.
ns1: ns4.ul.to
ns2: ns3.ul.to
ns3: ns2.ul.to
ns4: ns1.ul.to
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9395635 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9395635 2013-02-08T08:00:11+01:00 first: 1360306811
last: 0
md5: 18585dfc6c5c3a1cfda4e9d390df3fd7
virustotal: http://www.virustotal.com/latest-report.html?resource=18585dfc6c5c3a1cfda4e9d390df3fd7
vt_score: 11/46 (23.9%)
scanner: AVG
virusname: Generic_s.ALE
url: http://egygumlo.ru/madload.exe
recent: up
response: alive
ip: 62.84.44.120
as: AS39824
review: 90.130.146.98
domain: egygumlo.ru
country: LT
source: RIPE
email: abuse@swip.net
inetnum: 62.84.40.0 - 62.84.47.255
netname: BALTICS-MBB
descr: Tele2 Internet ProviderMobile InternetLithuania####################################
ns1: ns3.egygumlo.ru
ns2: ns4.egygumlo.ru
ns3: ns5.egygumlo.ru
ns4: ns1.egygumlo.ru
ns5: ns6.egygumlo.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=9395149 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9395149 2013-02-08T07:40:02+01:00 first: 1360305602
last: 0
md5: 5a515092f8685ba95869a519eea9fbcf
virustotal: http://www.virustotal.com/latest-report.html?resource=5a515092f8685ba95869a519eea9fbcf
vt_score: 15/45 (33.3%)
scanner: avira
virusname: TR/Dropper.Gen
url: http://egygumlo.ru/calc.exe
recent: up
response: alive
ip: 81.30.190.24
as: AS24955
review: 93.116.247.79
domain: egygumlo.ru
country: md
source: RIPE
email: suprunov@moldtelecom.md
inetnum: 81.30.184.0 - 81.30.191.255
netname: JSC-MOLDTELECOM-SA
descr: JSC MOLDTELECOM SAB-ul Stefan cel Mare si Sfant 10Chisinau, Republica Moldova MD-2001JSC MOLDTELECOM SAJSC MOLDTELECOM SA
ns1: ns5.egygumlo.ru
ns2: ns2.egygumlo.ru
ns3: ns6.egygumlo.ru
ns4: ns1.egygumlo.ru
ns5: ns4.egygumlo.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=9394063 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9394063 2013-02-08T06:00:18+01:00 first: 1360299618
last: 0
md5: 8a599b62dcf63789e554e1b4a93a1a2e
virustotal: http://www.virustotal.com/latest-report.html?resource=8a599b62dcf63789e554e1b4a93a1a2e
vt_score: 9/36 (25%)
scanner: AntiVir
virusname: BDS/Kelihos.MI
url: http://ylgoaxle.ru/status/electronics-emphasis_significantly.php?ffxymafx=1k:33:1m:1m:1n&cged=1j:1n:1m:1l:1m:2w:31:1j:1m:1g&fgpqvbd=1i&rmlyon=wgkp&aiggtnlz=rweyvnr
recent: up
response: alive
ip: 69.197.177.14
as: AS32097
review: 69.197.177.14
domain: ylgoaxle.ru
country: US
source: ARIN
email: abuse@wholesaleinternet.net
inetnum: 69.197.128.0 - 69.197.191.255
netname: WHOLESALEINTERNET-2
descr: WholeSale Internet, Inc. WHOLE-125 324 E. 11th St. Suite 1000 Kansas City MO 64106
ns1: ns2.ylgoaxle.ru
ns2: ns3.ylgoaxle.ru
ns3: ns1.ylgoaxle.ru
ns4: ns6.ylgoaxle.ru
ns5: ns4.ylgoaxle.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=9386140 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9386140 2013-02-07T19:00:16+01:00 first: 1360260016
last: 0
md5: 1ea59c237ff7aa80513f5798d91cc358
virustotal: http://www.virustotal.com/latest-report.html?resource=1ea59c237ff7aa80513f5798d91cc358
vt_score: 11/46 (23.9%)
scanner: DrWeb
virusname: Trojan.Spambot.11176
url: http://heartbeat.scoundrelly.eu/load/dlimage4.php
recent: up
response: alive
ip: 188.190.99.252
as: AS197145
review: 188.190.99.252
domain: scoundrelly.eu
country: UA
source: RIPE
email: abusemail@infiumhost.com
inetnum: 188.190.96.0 - 188.190.127.255
netname: INFIUM
descr: Infium LTD
ns1: ns-canada.topdns.com
ns2: ns-uk.topdns.com
ns3: ns-usa.topdns.com
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9385628 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9385628 2013-02-07T17:40:11+01:00 first: 1360255211
last: 0
md5: 3079427e1b2dca78b6e7447e00015a7e
virustotal: http://www.virustotal.com/latest-report.html?resource=3079427e1b2dca78b6e7447e00015a7e
vt_score: 10/46 (21.7%)
scanner: AVG
virusname: Generic_s.ALD
url: http://ykmeffyw.ru/status/electronics-emphasis_significantly.php?glozmr=1k:33:1m:1m:1n&cfwln=1j:1n:1m:1l:1m:2w:31:1j:1m:1g&vjaazu=1i&idski=mkbrav&dyesynr=cpowz
recent: up
response: alive
ip: 69.197.177.14
as: AS32097
review: 69.197.177.14
domain: ykmeffyw.ru
country: US
source: ARIN
email: abuse@wholesaleinternet.net
inetnum: 69.197.128.0 - 69.197.191.255
netname: WHOLESALEINTERNET-2
descr: WholeSale Internet, Inc. WHOLE-125 324 E. 11th St. Suite 1000 Kansas City MO 64106
ns1: ns6.ykmeffyw.ru
ns2: ns4.ykmeffyw.ru
ns3: ns1.ykmeffyw.ru
ns4: ns5.ykmeffyw.ru
ns5: ns2.ykmeffyw.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=9379918 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9379918 2013-02-07T03:00:07+01:00 first: 1360202407
last: 0
md5: 872789b19b28a0983cb2a87d6767c229
virustotal: http://www.virustotal.com/latest-report.html?resource=872789b19b28a0983cb2a87d6767c229
vt_score: 11/36 (30.6%)
scanner: AVG
virusname: Generic_s.ALD
url: http://wevwubhy.ru/links/1.php?ldxiuu=33:32:2w:32:1k&uuvmia=1j:1n:1m:1l:1m:2w:31:1j:1m:1g&urmqzgod=1i&wtwnibft=abmp&oqscdel=xyboqm
recent: up
response: alive
ip: 199.188.102.62
as: AS393253
review: 199.188.102.62
domain: wevwubhy.ru
country: US
source: ARIN
email:
inetnum: 199.188.100.0 - 199.188.103.255
netname:
descr:
ns1: ns2.wevwubhy.ru
ns2: ns5.wevwubhy.ru
ns3: ns4.wevwubhy.ru
ns4: ns1.wevwubhy.ru
ns5: ns3.wevwubhy.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=9376328 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9376328 2013-02-06T17:40:28+01:00 first: 1360168828
last: 0
md5: 242e7e8ee6970b73169a64d687fb1d61
virustotal: http://www.virustotal.com/latest-report.html?resource=242e7e8ee6970b73169a64d687fb1d61
vt_score: 3/46 (6.5%)
scanner: Kaspersky
virusname: UDS:DangerousObject.Multi.Generic
url: http://goldcoin.su/b.exe
recent: up
response: alive
ip: 92.114.82.140
as: AS39758
review: 92.114.82.140
domain: goldcoin.su
country: ro
source: RIPE
email: 9e52afcbaeed67d5b08c2d0809e1e15a@protected-email.eu
inetnum: 92.114.82.0 - 92.114.82.255
netname: SC-TATAL-DOMINATION-SRL
descr: SC Tatal Domination SRLBld. Republici Nr. 26alba-iulia albaSC Tatal Domination SRL
ns1: ns1.freedns.ws
ns2: ns2.freedns.ws
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9375739 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9375739 2013-02-06T15:40:28+01:00 first: 1360161628
last: 0
md5: 3b88f1150828dc477353d415db5bdd3a
virustotal: http://www.virustotal.com/latest-report.html?resource=3b88f1150828dc477353d415db5bdd3a
vt_score: 6/35 (17.1%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Jorik
url: http://bkua.su/l/3580c.exe
recent: up
response: alive
ip: 5.187.4.204
as: AS44066
review: 5.187.4.204
domain: bkua.su
country: ES
source: RIPE
email:
inetnum: 5.187.0.0 - 5.187.7.255
netname:
descr:
ns1: ns2.cloudns.net
ns2: ns3.cloudns.net
ns3: pns3.cloudns.net
ns4: pns2.cloudns.net
ns5: ns4.cloudns.net
]]> http://support.clean-mx.de/clean-mx/viruses?id=9375525 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9375525 2013-02-06T15:00:14+01:00 first: 1360159214
last: 0
md5: 71ed487f4c1ffc051cb115118f743f2a
virustotal: http://www.virustotal.com/latest-report.html?resource=71ed487f4c1ffc051cb115118f743f2a
vt_score: 13/36 (36.1%)
scanner: AhnLab_V3
virusname: Win-Trojan/Zbot.306176.E
url: http://touchthesky.net.in/88u5a6.exe
recent: up
response: alive
ip: 69.167.154.157
as: AS32244
review: 69.167.154.157
domain: touchthesky.net.in
country: US
source: ARIN
email: abuse@liquidweb.com
inetnum: 69.167.128.0 - 69.167.191.255
netname: LIQUIDWEB-9
descr: Liquid Web, Inc. LQWB 4210 Creyts Rd. Lansing MI 48917
ns1: ns1-alaknanda.ewebguru.com
ns2: ns2-alaknanda.ewebguru.com
ns3: ns.touchthesky.net.in
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9372931 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9372931 2013-02-06T09:00:15+01:00 first: 1360137615
last: 0
md5: 70f0784b4c1d3a3d8d09fce3ab11c48d
virustotal: http://www.virustotal.com/latest-report.html?resource=70f0784b4c1d3a3d8d09fce3ab11c48d
vt_score: 4/46 (8.7%)
scanner: DrWeb
virusname: Trojan.PWS.Stealer.1932
url: http://ul.to/f93juw8u/images.php?image=
recent: up
response: alive
ip: 95.211.143.200
as: AS16265
review: 95.211.143.200
domain: ul.to
country: NL
source: RIPE
email: abuse@leaseweb.com
inetnum: 95.211.0.0 - 95.211.255.255
netname: NL-LEASEWEB-20080724
descr: LeaseWeb B.V.
ns1: ns3.ul.to
ns2: ns4.ul.to
ns3: ns1.ul.to
ns4: ns2.ul.to
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9372930 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9372930 2013-02-06T09:00:15+01:00 first: 1360137615
last: 0
md5: 1ceed94af1b12adec55c376b84300988
virustotal: http://www.virustotal.com/latest-report.html?resource=1ceed94af1b12adec55c376b84300988
vt_score: 15/46 (32.6%)
scanner: AntiVir
virusname: TR/ZAccess.EB.22
url: http://uploaded.net/file/r28gfu3p
recent: up
response: alive
ip: 95.211.143.200
as: AS16265
review: 95.211.143.200
domain: uploaded.net
country: NL
source: RIPE
email: abuse@leaseweb.com
inetnum: 95.211.0.0 - 95.211.255.255
netname: NL-LEASEWEB-20080724
descr: LeaseWeb B.V.
ns1: ns1.uploaded.net
ns2: ns3.uploaded.net
ns3: ns2.uploaded.net
ns4: ns4.uploaded.net
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9365948 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9365948 2013-02-05T18:00:21+01:00 first: 1360083621
last: 0
md5: 56419bfceab588eb762c49f7abf6239e
virustotal: http://www.virustotal.com/latest-report.html?resource=56419bfceab588eb762c49f7abf6239e
vt_score: 21/46 (45.7%)
scanner: AntiVir
virusname: TR/Kazy.140145
url: http://bl4kjj.zapto.org/dj.exe
recent: up
response: alive
ip: 188.138.0.169
as: AS8972
review: 188.138.0.169
domain: zapto.org
country: DE
source: RIPE
email: abuse@plusserver.de
inetnum: 188.138.0.0 - 188.138.3.255
netname: SERVERLOFT-1
descr: BSB-Service GmbHhttp
ns1: nf3.no-ip.com
ns2: nf4.no-ip.com
ns3: nf2.no-ip.com
ns4: nf5.no-ip.com
ns5: nf1.no-ip.com
]]> http://support.clean-mx.de/clean-mx/viruses?id=9365947 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9365947 2013-02-05T18:00:21+01:00 first: 1360083621
last: 0
md5: 56419bfceab588eb762c49f7abf6239e
virustotal: http://www.virustotal.com/latest-report.html?resource=56419bfceab588eb762c49f7abf6239e
vt_score: 17/36 (47.2%)
scanner: AntiVir
virusname: TR/Kazy.140145
url: http://bl4kjj.zapto.org/d/dj.exe
recent: up
response: alive
ip: 188.138.0.169
as: AS8972
review: 188.138.0.169
domain: zapto.org
country: DE
source: RIPE
email: abuse@plusserver.de
inetnum: 188.138.0.0 - 188.138.3.255
netname: SERVERLOFT-1
descr: BSB-Service GmbHhttp
ns1: nf3.no-ip.com
ns2: nf4.no-ip.com
ns3: nf2.no-ip.com
ns4: nf5.no-ip.com
ns5: nf1.no-ip.com
]]> http://support.clean-mx.de/clean-mx/viruses?id=9365946 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9365946 2013-02-05T18:00:21+01:00 first: 1360083621
last: 0
md5: 56419bfceab588eb762c49f7abf6239e
virustotal: http://www.virustotal.com/latest-report.html?resource=56419bfceab588eb762c49f7abf6239e
vt_score: 42/46 (91.3%)
scanner: AntiVir
virusname: TR/Kazy.140145
url: http://loft3066.serverloft.eu/dj.exe
recent: up
response: alive
ip: 188.138.0.169
as: AS8972
review: 188.138.0.169
domain: serverloft.eu
country: DE
source: RIPE
email: abuse@plusserver.de
inetnum: 188.138.0.0 - 188.138.3.255
netname: SERVERLOFT-1
descr: BSB-Service GmbHhttp
ns1: ns10.nameserverservice.de
ns2: ns9.nameserverservice.de
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9365264 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9365264 2013-02-05T16:00:31+01:00 first: 1360076431
last: 0
md5: b52c70f8cbfec87ef09b7880de9e84d1
virustotal: http://www.virustotal.com/latest-report.html?resource=b52c70f8cbfec87ef09b7880de9e84d1
vt_score: 18/35 (51.4%)
scanner: clamav
virusname: Win.Trojan.Agent-158384
url: http://109.163.233.44/video_syria.exe
recent: up
response: alive
ip: 109.163.233.44
as: AS39743
review: 109.163.233.44
domain: 109.163.233.44
country: RO
source: RIPE
email: abuse@srsvps.com
inetnum: 109.163.233.0 - 109.163.233.63
netname: SrsVPS1
descr: SrsVPS
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9364714 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9364714 2013-02-05T14:40:22+01:00 first: 1360071622
last: 0
md5: cbcbe447db4684791abb206dba0555c4
virustotal: http://www.virustotal.com/latest-report.html?resource=cbcbe447db4684791abb206dba0555c4
vt_score: 19/45 (42.2%)
scanner: clamav
virusname: Trojan.Banload-1361
url: http://dl-b.uni.me/i_FR
recent: up
response: alive
ip: 198.23.141.103
as: AS36352
review: 198.23.141.103
domain: uni.me
country: US
source: ARIN
email: abuse@colocrossing.com
inetnum: 198.23.128.0 - 198.23.255.255
netname: CC-10
descr: ColoCrossing VGS-9 8469 Sheridan Drive ATTN Williamsville NY 14221
ns1: ns2.dns-domainserver.com
ns2: ns1.dns-domainserver.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9364522 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9364522 2013-02-05T14:00:25+01:00 first: 1360069225
last: 0
md5: 0a61a16f8725e34328f10fbf54835790
virustotal: http://www.virustotal.com/latest-report.html?resource=0a61a16f8725e34328f10fbf54835790
vt_score: 35/46 (76.1%)
scanner: avira
virusname: TR/Malex.E.1453
url: http://q.45rwf24r.ru/Rabies6%281%29_crypt_qr30Y50d9fd13abaa9.exe
recent: up
response: alive
ip: 193.169.188.27
as: AS21219
review: 193.169.188.27
domain: 45rwf24r.ru
country: UA
source: RIPE
email: abuse@hostpro.ua
inetnum: 193.169.188.0 - 193.169.189.255
netname: HOSTPRO-NET2
descr: HostPro
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9362010 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9362010 2013-02-05T10:00:15+01:00 first: 1360054815
last: 0
md5: f69f3ea44f4120d22636d5e42d16db19
virustotal: http://www.virustotal.com/latest-report.html?resource=f69f3ea44f4120d22636d5e42d16db19
vt_score: 22/36 (61.1%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen
url: http://64.85.233.8/smokeldr/sellers/bl4kj.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9362009 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9362009 2013-02-05T10:00:15+01:00 first: 1360054815
last: 0
md5: e76814e104ac157ebfffde5c6982cb7d
virustotal: http://www.virustotal.com/latest-report.html?resource=e76814e104ac157ebfffde5c6982cb7d
vt_score: 22/36 (61.1%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen
url: http://64.85.233.8/smokeldr/sellers/boo.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9362008 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9362008 2013-02-05T10:00:15+01:00 first: 1360054815
last: 0
md5: bdcceabcfbef06df669774e7a4c1d801
virustotal: http://www.virustotal.com/latest-report.html?resource=bdcceabcfbef06df669774e7a4c1d801
vt_score: 22/36 (61.1%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen
url: http://64.85.233.8/smokeldr/sellers/poop.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9362007 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9362007 2013-02-05T10:00:14+01:00 first: 1360054814
last: 0
md5: 231c019cb04275828a48d348121b17eb
virustotal: http://www.virustotal.com/latest-report.html?resource=231c019cb04275828a48d348121b17eb
vt_score: 22/36 (61.1%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen
url: http://64.85.233.8/smokeldr/sellers/sel1.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9362006 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9362006 2013-02-05T10:00:14+01:00 first: 1360054814
last: 0
md5: 472c51ab55aaeac6e1b7cbfebe49aeda
virustotal: http://www.virustotal.com/latest-report.html?resource=472c51ab55aaeac6e1b7cbfebe49aeda
vt_score: 23/43 (53.5%)
scanner: AntiVir
virusname: TR/Dldr.Dofoil.R.403
url: http://64.85.233.8/smokeldr/sellers/t0h.bak
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9346026 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9346026 2013-02-04T20:43:18+01:00 first: 1360006998
last: 0
md5: d74df528f5cbc07f1e73ae99e6991291
virustotal: http://www.virustotal.com/latest-report.html?resource=d74df528f5cbc07f1e73ae99e6991291
vt_score: 5/45 (11.1%)
scanner: CAT_QuickHeal
virusname: (Suspicious) - DNAScan
url: http://hotfile.com/dl/192581454/012c2e7/go.exe.html
recent: up
response: alive
ip: 199.7.177.216
as: AS7366
review: 199.7.177.244
domain: hotfile.com
country: US
source: ARIN
email: abuse@lemuriaco.com
inetnum: 199.7.176.0 - 199.7.183.255
netname: LEMURIA-COMMUNICATIONS
descr: Lemuria Communications Inc. LEMUR 110 E BROWARD BLVD STE 1736 FORT LAUDERDALE FL 33301
ns1: ns1.easydns.com
ns2: ns1.hotfile.com
ns3: ns2.easydns.com
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9346025 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9346025 2013-02-04T20:43:17+01:00 first: 1360006997
last: 0
md5: 48c81d978db164f0db68cd6f6c28c673
virustotal: http://www.virustotal.com/latest-report.html?resource=48c81d978db164f0db68cd6f6c28c673
vt_score: 5/46 (10.9%)
scanner: CAT_QuickHeal
virusname: (Suspicious) - DNAScan
url: http://hotfile.com/dl/192572400/5dc1a80/4.exe.html
recent: up
response: alive
ip: 199.7.177.218
as: AS7366
review: 199.7.177.238
domain: hotfile.com
country: US
source: ARIN
email: abuse@lemuriaco.com
inetnum: 199.7.176.0 - 199.7.183.255
netname: LEMURIA-COMMUNICATIONS
descr: Lemuria Communications Inc. LEMUR 110 E BROWARD BLVD STE 1736 FORT LAUDERDALE FL 33301
ns1: ns1.easydns.com
ns2: ns1.hotfile.com
ns3: ns2.easydns.com
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9346024 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9346024 2013-02-04T20:43:17+01:00 first: 1360006997
last: 0
md5: 0e2ed8e3910b2f644668ae38382728ed
virustotal: http://www.virustotal.com/latest-report.html?resource=0e2ed8e3910b2f644668ae38382728ed
vt_score: 6/46 (13%)
scanner: AhnLab_V3
virusname: Trojan/Win32.PornoAsset
url: http://hotfile.com/dl/192563295/26e3025/lol.exe.html
recent: up
response: alive
ip: 199.7.177.220
as: AS7366
review: 199.7.177.232
domain: hotfile.com
country: US
source: ARIN
email: abuse@lemuriaco.com
inetnum: 199.7.176.0 - 199.7.183.255
netname: LEMURIA-COMMUNICATIONS
descr: Lemuria Communications Inc. LEMUR 110 E BROWARD BLVD STE 1736 FORT LAUDERDALE FL 33301
ns1: ns1.easydns.com
ns2: ns1.hotfile.com
ns3: ns2.easydns.com
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9343179 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9343179 2013-02-04T18:40:02+01:00 first: 1359999602
last: 0
md5: 7c215df4e7718aefa2210825eee95144
virustotal: http://www.virustotal.com/latest-report.html?resource=7c215df4e7718aefa2210825eee95144
vt_score: 2/46 (4.3%)
scanner: Panda
virusname: Suspicious file
url: http://hotfile.com/dl/192562755/1d80e0a/IMG0530250.JPG
recent: up
response: alive
ip: 199.7.177.234
as: AS7366
review: 199.7.177.232
domain: hotfile.com
country: US
source: ARIN
email: abuse@lemuriaco.com
inetnum: 199.7.176.0 - 199.7.183.255
netname: LEMURIA-COMMUNICATIONS
descr: Lemuria Communications Inc. LEMUR 110 E BROWARD BLVD STE 1736 FORT LAUDERDALE FL 33301
ns1: ns2.easydns.com
ns2: ns1.hotfile.com
ns3: ns1.easydns.com
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9343178 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9343178 2013-02-04T18:40:02+01:00 first: 1359999602
last: 0
md5: 4d75cf82f4e1c4de23ce59a2fbd4e629
virustotal: http://www.virustotal.com/latest-report.html?resource=4d75cf82f4e1c4de23ce59a2fbd4e629
vt_score: 9/36 (25%)
scanner: BitDefender
virusname: Trojan.Generic.KDZ.7027
url: http://hotfile.com/dl/192563628/4e7a427/st.exe.html
recent: up
response: alive
ip: 199.7.177.236
as: AS7366
review: 199.7.177.226
domain: hotfile.com
country: US
source: ARIN
email: abuse@lemuriaco.com
inetnum: 199.7.176.0 - 199.7.183.255
netname: LEMURIA-COMMUNICATIONS
descr: Lemuria Communications Inc. LEMUR 110 E BROWARD BLVD STE 1736 FORT LAUDERDALE FL 33301
ns1: ns2.easydns.com
ns2: ns1.hotfile.com
ns3: ns1.easydns.com
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9342646 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9342646 2013-02-04T17:40:03+01:00 first: 1359996003
last: 0
md5: dbe45c0e9b2412cc17116c667809895e
virustotal: http://www.virustotal.com/latest-report.html?resource=dbe45c0e9b2412cc17116c667809895e
vt_score: 13/46 (28.3%)
scanner: CAT_QuickHeal
virusname: (Suspicious) - DNAScan
url: http://track.www-myups.net/WebTracking/hi.exe
recent: up
response: alive
ip: 122.155.13.130
as: AS9931
review: 122.155.13.130
domain: www-myups.net
country: TH
source: APNIC
email: support@idc.cattelecom.com
inetnum: 122.155.0.0 - 122.155.15.255
netname: CAT-IDC-Service
descr: CAT TELECOM Data Comm. Dept, IDC Office***send spam abuse to support@idc.cattelecom.com***
ns1: ns13.dns.com.cn
ns2: ns14.dns.com.cn
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9342645 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9342645 2013-02-04T17:40:03+01:00 first: 1359996003
last: 0
md5: dbe45c0e9b2412cc17116c667809895e
virustotal: http://www.virustotal.com/latest-report.html?resource=dbe45c0e9b2412cc17116c667809895e
vt_score: 13/46 (28.3%)
scanner: CAT_QuickHeal
virusname: (Suspicious) - DNAScan
url: http://track.www-myups.net/WebTracking/javaupdate.exe
recent: up
response: alive
ip: 122.155.13.130
as: AS9931
review: 122.155.13.130
domain: www-myups.net
country: TH
source: APNIC
email: support@idc.cattelecom.com
inetnum: 122.155.0.0 - 122.155.15.255
netname: CAT-IDC-Service
descr: CAT TELECOM Data Comm. Dept, IDC Office***send spam abuse to support@idc.cattelecom.com***
ns1: ns13.dns.com.cn
ns2: ns14.dns.com.cn
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9342644 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9342644 2013-02-04T17:40:03+01:00 first: 1359996003
last: 0
md5: dbe45c0e9b2412cc17116c667809895e
virustotal: http://www.virustotal.com/latest-report.html?resource=dbe45c0e9b2412cc17116c667809895e
vt_score: 12/36 (33.3%)
scanner: CAT_QuickHeal
virusname: (Suspicious) - DNAScan
url: http://track.www-myups.net/WebTracking/JavaJREInstaller.exe
recent: up
response: alive
ip: 122.155.13.130
as: AS9931
review: 122.155.13.130
domain: www-myups.net
country: TH
source: APNIC
email: support@idc.cattelecom.com
inetnum: 122.155.0.0 - 122.155.15.255
netname: CAT-IDC-Service
descr: CAT TELECOM Data Comm. Dept, IDC Office***send spam abuse to support@idc.cattelecom.com***
ns1: ns13.dns.com.cn
ns2: ns14.dns.com.cn
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9342643 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9342643 2013-02-04T17:40:03+01:00 first: 1359996003
last: 0
md5: dbe45c0e9b2412cc17116c667809895e
virustotal: http://www.virustotal.com/latest-report.html?resource=dbe45c0e9b2412cc17116c667809895e
vt_score: 12/36 (33.3%)
scanner: CAT_QuickHeal
virusname: (Suspicious) - DNAScan
url: http://advert.www-myups.net/brackets/advert01.php?smk=30:2v:1f:1j:30&hqnp=30:1m:30:32:1g:1o:31:1l:33:1o&xxepo=1i&reotkodm=kkeuon&dfag=klticin
recent: up
response: alive
ip: 192.210.134.213
as: AS36352
review: 192.210.134.213
domain: www-myups.net
country: US
source: ARIN
email:
inetnum: 192.210.128.0 - 192.210.255.255
netname:
descr:
ns1: ns13.dns.com.cn
ns2: ns14.dns.com.cn
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9341422 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9341422 2013-02-04T16:40:32+01:00 first: 1359992432
last: 0
md5: ed693494bf143bb7f13c6e812d393dd0
virustotal: http://www.virustotal.com/latest-report.html?resource=ed693494bf143bb7f13c6e812d393dd0
vt_score: 10/36 (27.8%)
scanner: avira
virusname: TR/Dropper.Gen
url: http://74.208.195.229/r55.exe
recent: up
response: alive
ip: 74.208.195.229
as: AS8560
review: 74.208.195.229
domain: 74.208.195.229
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9341421 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9341421 2013-02-04T16:40:32+01:00 first: 1359992432
last: 0
md5: 55152cb9c7a924e04a0e26546a6faf18
virustotal: http://www.virustotal.com/latest-report.html?resource=55152cb9c7a924e04a0e26546a6faf18
vt_score: 16/46 (34.8%)
scanner: AVG
virusname: Suspicion: unknown virus
url: http://ul.to/1zs3acqr/IMG0539204492.JPG
recent: up
response: alive
ip: 95.211.143.200
as: AS16265
review: 95.211.143.200
domain: ul.to
country: NL
source: RIPE
email: abuse@leaseweb.com
inetnum: 95.211.0.0 - 95.211.255.255
netname: NL-LEASEWEB-20080724
descr: LeaseWeb B.V.
ns1: ns1.ul.to
ns2: ns4.ul.to
ns3: ns3.ul.to
ns4: ns2.ul.to
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9337314 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9337314 2013-02-04T12:40:16+01:00 first: 1359978016
last: 0
md5: 3cf756a86657de51d9dc7b9a99665ecf
virustotal: http://www.virustotal.com/latest-report.html?resource=3cf756a86657de51d9dc7b9a99665ecf
vt_score: 11/35 (31.4%)
scanner: BitDefender
virusname: Trojan.Generic.KDZ.7043
url: http://74.208.195.229/bget.exe
recent: up
response: alive
ip: 74.208.195.229
as: AS8560
review: 74.208.195.229
domain: 74.208.195.229
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9337054 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9337054 2013-02-04T11:40:31+01:00 first: 1359974431
last: 0
md5: 8f2dd905f108760bf57c03a4f2f4aeb2
virustotal: http://www.virustotal.com/latest-report.html?resource=8f2dd905f108760bf57c03a4f2f4aeb2
vt_score: 14/36 (38.9%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen
url: http://74.208.195.229/dun.exe
recent: up
response: alive
ip: 74.208.195.229
as: AS8560
review: 74.208.195.229
domain: 74.208.195.229
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9336776 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9336776 2013-02-04T11:00:11+01:00 first: 1359972011
last: 0
md5: 617850e63ab6ee8b94c479ed44b087b3
virustotal: http://www.virustotal.com/latest-report.html?resource=617850e63ab6ee8b94c479ed44b087b3
vt_score: 42/45 (93.3%)
scanner: avira
virusname: BDS/Bifrose.aec.1
url: http://74.208.195.229/server.exe
recent: up
response: alive
ip: 74.208.195.229
as: AS8560
review: 74.208.195.229
domain: 74.208.195.229
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9336775 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9336775 2013-02-04T11:00:11+01:00 first: 1359972011
last: 0
md5: 749996f4f59cd46d535a47c5b725facc
virustotal: http://www.virustotal.com/latest-report.html?resource=749996f4f59cd46d535a47c5b725facc
vt_score: 9/36 (25%)
scanner: BitDefender
virusname: Trojan.Generic.KD.847463
url: http://74.208.195.229:80/22.exe
recent: up
response: alive
ip: 74.208.195.229
as: AS8560
review: 74.208.195.229
domain: 74.208.195.229
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9336774 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9336774 2013-02-04T11:00:11+01:00 first: 1359972011
last: 0
md5: 4196afe96f5ba774a0a207b099c3436e
virustotal: http://www.virustotal.com/latest-report.html?resource=4196afe96f5ba774a0a207b099c3436e
vt_score: 3/46 (6.5%)
scanner: Fortinet
virusname: W32/Zbot.ANQ!tr
url: http://74.208.195.229/zy.exe
recent: up
response: alive
ip: 74.208.195.229
as: AS8560
review: 74.208.195.229
domain: 74.208.195.229
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9336582 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9336582 2013-02-04T10:00:26+01:00 first: 1359968426
last: 0
md5: c09ae408db653ba612ac7e8d3055c52b
virustotal: http://www.virustotal.com/latest-report.html?resource=c09ae408db653ba612ac7e8d3055c52b
vt_score: 11/46 (23.9%)
scanner: AntiVir
virusname: TR/Locotout.A.26
url: http://royjamesinsurance.com/images/TcpAdaptorService_b3.exe
recent: up
response: alive
ip: 66.59.64.114
as: AS11551
review: 66.59.64.114
domain: royjamesinsurance.com
country: US
source: ARIN
email: abuse@frontline.net
inetnum: 66.59.64.0 - 66.59.95.255
netname: SINEP-BLOCK-2
descr: Sinep Corporation SINEP-1 PO Box 98 Orangeburg NY 10962
ns1: dns01.frontline.net
ns2: dns02.frontline.net
ns3: dns03.frontline.net
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9336514 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9336514 2013-02-04T09:40:03+01:00 first: 1359967203
last: 0
md5: 812353ba068edd07469ac41710aac1c7
virustotal: http://www.virustotal.com/latest-report.html?resource=812353ba068edd07469ac41710aac1c7
vt_score: 11/36 (30.6%)
scanner: BitDefender
virusname: Trojan.Generic.KDZ.7043
url: http://74.208.195.229/upi.exe
recent: up
response: alive
ip: 74.208.195.229
as: AS8560
review: 74.208.195.229
domain: 74.208.195.229
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9334472 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9334472 2013-02-04T02:40:04+01:00 first: 1359942004
last: 0
md5: a41f5b63d0c23c77810e731b2e707478
virustotal: http://www.virustotal.com/latest-report.html?resource=a41f5b63d0c23c77810e731b2e707478
vt_score: 41/45 (91.1%)
scanner: avira
virusname: TR/Downloader.Gen
url: http://62.2.109.236/server.exe
recent: up
response: alive
ip: 62.2.109.236
as: AS8404
review: 62.2.109.236
domain: 62.2.109.236
country: CH
source: RIPE
email: abuse@cablecom.ch
inetnum: 62.2.0.0 - 62.2.255.255
netname: CH-CABLECOM-981211
descr: Cablecom GmbH
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9333255 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9333255 2013-02-03T21:50:04+01:00 first: 1359924604
last: 0
md5: 5d5795d0149d0cfc1b6aab7f09d8e953
virustotal: http://www.virustotal.com/latest-report.html?resource=5d5795d0149d0cfc1b6aab7f09d8e953
vt_score: 22/45 (48.9%)
scanner: AntiVir
virusname: TR/Rogue.kdz.6893.18
url: http://74.208.195.229/boss.exe
recent: up
response: alive
ip: 74.208.195.229
as: AS8560
review: 74.208.195.229
domain: 74.208.195.229
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9333254 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9333254 2013-02-03T21:50:04+01:00 first: 1359924604
last: 0
md5: 91a87e9b26c68d37b2327c8963f8cd14
virustotal: http://www.virustotal.com/latest-report.html?resource=91a87e9b26c68d37b2327c8963f8cd14
vt_score: 13/36 (36.1%)
scanner: AntiVir
virusname: TR/Rogue.KD.848159.1
url: http://74.208.195.229/stget.exe
recent: up
response: alive
ip: 74.208.195.229
as: AS8560
review: 74.208.195.229
domain: 74.208.195.229
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9331530 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9331530 2013-02-03T20:00:09+01:00 first: 1359918009
last: 0
md5: de5697ed5bff38c98f3ae7b80a8e3387
virustotal: http://www.virustotal.com/latest-report.html?resource=de5697ed5bff38c98f3ae7b80a8e3387
vt_score: 3/46 (6.5%)
scanner: Fortinet
virusname: W32/Zbot.ANQ!tr
url: http://74.208.195.229/bat.exe
recent: up
response: alive
ip: 74.208.195.229
as: AS8560
review: 74.208.195.229
domain: 74.208.195.229
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9331500 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9331500 2013-02-03T19:40:06+01:00 first: 1359916806
last: 0
md5: c01c0c6d26eb003b4410f11adb95abfa
virustotal: http://www.virustotal.com/latest-report.html?resource=c01c0c6d26eb003b4410f11adb95abfa
vt_score: 8/45 (17.8%)
scanner: BitDefender
virusname: Trojan.Generic.KDZ.6945
url: http://www.silviasgalerie.com/b.exe
recent: up
response: alive
ip: 212.227.92.29
as: AS8560
review: 212.227.92.29
domain: silviasgalerie.com
country: DE
source: RIPE
email: abuse@1and1.com
inetnum: 212.227.68.0 - 212.227.108.255
netname: SCHLUND-CUSTOMERS
descr: 1&1 Internet AGNCC#1999110113
ns1: dns122.b.register.com
ns2: dns174.a.register.com
ns3: dns016.c.register.com
ns4: dns010.d.register.com
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9331499 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9331499 2013-02-03T19:40:06+01:00 first: 1359916806
last: 0
md5: 90a61c26183fcc3f3806fff96fbf8a36
virustotal:
vt_score: 4/46 (8.7%)
scanner: CAT_QuickHeal
virusname: (Suspicious) - DNAScan
url: http://74.208.195.229/skaa.exe
recent: up
response: alive
ip: 74.208.195.229
as: AS8560
review: 74.208.195.229
domain: 74.208.195.229
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9331498 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9331498 2013-02-03T19:40:06+01:00 first: 1359916806
last: 0
md5: de5697ed5bff38c98f3ae7b80a8e3387
virustotal: http://www.virustotal.com/latest-report.html?resource=de5697ed5bff38c98f3ae7b80a8e3387
vt_score: 3/36 (8.3%)
scanner: Fortinet
virusname: W32/Zbot.ANQ!tr
url: http://www.gssmail.net/images.php
recent: up
response: alive
ip: 212.227.92.29
as: AS8560
review: 212.227.92.29
domain: gssmail.net
country: DE
source: RIPE
email: abuse@1and1.com
inetnum: 212.227.68.0 - 212.227.108.255
netname: SCHLUND-CUSTOMERS
descr: 1&1 Internet AGNCC#1999110113
ns1: dns023.c.register.com
ns2: dns085.a.register.com
ns3: dns010.d.register.com
ns4: dns046.b.register.com
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9331497 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9331497 2013-02-03T19:40:05+01:00 first: 1359916805
last: 0
md5: 4196afe96f5ba774a0a207b099c3436e
virustotal: http://www.virustotal.com/latest-report.html?resource=4196afe96f5ba774a0a207b099c3436e
vt_score: 3/36 (8.3%)
scanner: Fortinet
virusname: W32/Zbot.ANQ!tr
url: http://www.gssmail.net/b.exe
recent: up
response: alive
ip: 212.227.92.29
as: AS8560
review: 212.227.92.29
domain: gssmail.net
country: DE
source: RIPE
email: abuse@1and1.com
inetnum: 212.227.68.0 - 212.227.108.255
netname: SCHLUND-CUSTOMERS
descr: 1&1 Internet AGNCC#1999110113
ns1: dns023.c.register.com
ns2: dns085.a.register.com
ns3: dns010.d.register.com
ns4: dns046.b.register.com
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9331259 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9331259 2013-02-03T19:00:16+01:00 first: 1359914416
last: 0
md5: c8e11e3fa99b1535eab473c3ea53adf3
virustotal: http://www.virustotal.com/latest-report.html?resource=c8e11e3fa99b1535eab473c3ea53adf3
vt_score: 4/46 (8.7%)
scanner: Fortinet
virusname: W32/Zbot.ANQ!tr
url: http://www.silviasgalerie.com/images.php
recent: up
response: alive
ip: 212.227.92.29
as: AS8560
review: 212.227.92.29
domain: silviasgalerie.com
country: DE
source: RIPE
email: abuse@1and1.com
inetnum: 212.227.68.0 - 212.227.108.255
netname: SCHLUND-CUSTOMERS
descr: 1&1 Internet AGNCC#1999110113
ns1: dns016.c.register.com
ns2: dns174.a.register.com
ns3: dns010.d.register.com
ns4: dns122.b.register.com
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9330061 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9330061 2013-02-03T15:00:23+01:00 first: 1359900023
last: 0
md5: 48c9b2233aeff848a157ce9123f2a457
virustotal: http://www.virustotal.com/latest-report.html?resource=48c9b2233aeff848a157ce9123f2a457
vt_score: 8/36 (22.2%)
scanner: BitDefender
virusname: Trojan.Generic.KDZ.6930
url: http://74.208.195.229/get.exe
recent: up
response: alive
ip: 74.208.195.229
as: AS8560
review: 74.208.195.229
domain: 74.208.195.229
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9330002 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9330002 2013-02-03T14:40:21+01:00 first: 1359898821
last: 0
md5: c01c0c6d26eb003b4410f11adb95abfa
virustotal: http://www.virustotal.com/latest-report.html?resource=c01c0c6d26eb003b4410f11adb95abfa
vt_score: 17/46 (37%)
scanner: BitDefender
virusname: Trojan.Generic.KDZ.6945
url: http://74.208.195.229/a.exe
recent: up
response: alive
ip: 74.208.195.229
as: AS8560
review: 74.208.195.229
domain: 74.208.195.229
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9330001 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9330001 2013-02-03T14:40:21+01:00 first: 1359898821
last: 0
md5: c8e11e3fa99b1535eab473c3ea53adf3
virustotal: http://www.virustotal.com/latest-report.html?resource=c8e11e3fa99b1535eab473c3ea53adf3
vt_score: 4/46 (8.7%)
scanner: Fortinet
virusname: W32/Zbot.ANQ!tr
url: http://74.208.195.229/aa.exe
recent: up
response: alive
ip: 74.208.195.229
as: AS8560
review: 74.208.195.229
domain: 74.208.195.229
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9330000 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9330000 2013-02-03T14:40:20+01:00 first: 1359898820
last: 0
md5: cccb9e29c396a0fb6487efd07c384493
virustotal: http://www.virustotal.com/latest-report.html?resource=cccb9e29c396a0fb6487efd07c384493
vt_score: 10/36 (27.8%)
scanner: Avast
virusname: Win32:VBInject-M [Trj]
url: http://74.208.195.229/fr.exe
recent: up
response: alive
ip: 74.208.195.229
as: AS8560
review: 74.208.195.229
domain: 74.208.195.229
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9329999 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9329999 2013-02-03T14:40:20+01:00 first: 1359898820
last: 0
md5: 5b4d54ae95a8d71728fd51a39e7c5cc1
virustotal: http://www.virustotal.com/latest-report.html?resource=5b4d54ae95a8d71728fd51a39e7c5cc1
vt_score: 13/35 (37.1%)
scanner: AntiVir
virusname: TR/Rogue.kdz.6852.2
url: http://74.208.195.229/sk.exe
recent: up
response: alive
ip: 74.208.195.229
as: AS8560
review: 74.208.195.229
domain: 74.208.195.229
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9329998 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9329998 2013-02-03T14:40:20+01:00 first: 1359898820
last: 0
md5: 6060c8e04411d6f61395cc3e4a3bfda5
virustotal: http://www.virustotal.com/latest-report.html?resource=6060c8e04411d6f61395cc3e4a3bfda5
vt_score: 6/36 (16.7%)
scanner: Fortinet
virusname: W32/Zbot.ANQ!tr
url: http://74.208.195.229/rew.exe
recent: up
response: alive
ip: 74.208.195.229
as: AS8560
review: 74.208.195.229
domain: 74.208.195.229
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9329997 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9329997 2013-02-03T14:40:20+01:00 first: 1359898820
last: 0
md5: 360d976d6508fadd4585dcc5f48a2786
virustotal:
vt_score: 8/46 (17.4%)
scanner: BitDefender
virusname: Trojan.Generic.KDZ.6930
url: http://74.208.195.229/21.exe
recent: up
response: alive
ip: 74.208.195.229
as: AS8560
review: 74.208.195.229
domain: 74.208.195.229
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9329996 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9329996 2013-02-03T14:40:20+01:00 first: 1359898820
last: 0
md5: 749996f4f59cd46d535a47c5b725facc
virustotal: http://www.virustotal.com/latest-report.html?resource=749996f4f59cd46d535a47c5b725facc
vt_score: 9/36 (25%)
scanner: BitDefender
virusname: Trojan.Generic.KD.847463
url: http://74.208.195.229/22.exe
recent: up
response: alive
ip: 74.208.195.229
as: AS8560
review: 74.208.195.229
domain: 74.208.195.229
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9329681 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9329681 2013-02-03T13:50:07+01:00 first: 1359895807
last: 0
md5: c8e11e3fa99b1535eab473c3ea53adf3
virustotal: http://www.virustotal.com/latest-report.html?resource=c8e11e3fa99b1535eab473c3ea53adf3
vt_score: 4/46 (8.7%)
scanner: Fortinet
virusname: W32/Zbot.ANQ!tr
url: http://www.silviasgalerie.com/images.php?img=IMG0540255.JPG
recent: up
response: alive
ip: 212.227.92.29
as: AS8560
review: 212.227.92.29
domain: silviasgalerie.com
country: DE
source: RIPE
email: abuse@1and1.com
inetnum: 212.227.68.0 - 212.227.108.255
netname: SCHLUND-CUSTOMERS
descr: 1&1 Internet AGNCC#1999110113
ns1: dns010.d.register.com
ns2: dns174.a.register.com
ns3: dns016.c.register.com
ns4: dns122.b.register.com
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9328822 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9328822 2013-02-03T11:50:03+01:00 first: 1359888603
last: 0
md5: 3db47e913d48330150eefea639b422ce
virustotal: http://www.virustotal.com/latest-report.html?resource=3db47e913d48330150eefea639b422ce
vt_score: 9/36 (25%)
scanner: BitDefender
virusname: Trojan.Generic.KDZ.6930
url: http://74.208.195.229/23.exe
recent: up
response: alive
ip: 74.208.195.229
as: AS8560
review: 74.208.195.229
domain: 74.208.195.229
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9325108 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9325108 2013-02-03T02:40:04+01:00 first: 1359855604
last: 0
md5: 6726109db64f743d56801cc06a71fb03
virustotal: http://www.virustotal.com/latest-report.html?resource=6726109db64f743d56801cc06a71fb03
vt_score: 5/46 (10.9%)
scanner: BitDefender
virusname: Gen:Variant.Kazy.140468
url: http://74.208.195.229/vv.exe
recent: up
response: alive
ip: 74.208.195.229
as: AS8560
review: 74.208.195.229
domain: 74.208.195.229
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9324341 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9324341 2013-02-03T01:50:03+01:00 first: 1359852603
last: 0
md5: d0954a2da4f94ed2fda0abd8caf87140
virustotal:
vt_score: 22/46 (47.8%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen
url: http://74.208.195.229/r.exe
recent: up
response: alive
ip: 74.208.195.229
as: AS8560
review: 74.208.195.229
domain: 74.208.195.229
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9324340 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9324340 2013-02-03T01:50:03+01:00 first: 1359852603
last: 0
md5: eb92b538a25c13cec6374f7c02415201
virustotal: http://www.virustotal.com/latest-report.html?resource=eb92b538a25c13cec6374f7c02415201
vt_score: 21/46 (45.7%)
scanner: AntiVir
virusname: TR/Rogue.kdz.6852.1
url: http://74.208.195.229/4.exe
recent: up
response: alive
ip: 74.208.195.229
as: AS8560
review: 74.208.195.229
domain: 74.208.195.229
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9323517 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9323517 2013-02-03T00:19:38+01:00 first: 1359847178
last: 0
md5: 881cd0118e63c983ed19283ec308264c
virustotal: http://www.virustotal.com/latest-report.html?resource=881cd0118e63c983ed19283ec308264c
vt_score: 10/46 (21.7%)
scanner: BitDefender
virusname: Trojan.Generic.KD.846374
url: http://74.208.195.229/g.exe
recent: up
response: alive
ip: 74.208.195.229
as: AS8560
review: 74.208.195.229
domain: 74.208.195.229
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9323451 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9323451 2013-02-02T23:40:07+01:00 first: 1359844807
last: 0
md5: d9bbbbf6f5190d8760fa64c0960b4e62
virustotal: http://www.virustotal.com/latest-report.html?resource=d9bbbbf6f5190d8760fa64c0960b4e62
vt_score: 13/36 (36.1%)
scanner: avira
virusname: TR/Dropper.Gen
url: http://192.34.58.99/WinDefender.exe
recent: up
response: alive
ip: 192.34.58.99
as: AS14061
review: 192.34.58.99
domain: 192.34.58.99
country: US
source: ARIN
email: abuse@digitalocean.com
inetnum: 192.34.56.0 - 192.34.63.255
netname: DIGITALOCEAN-2
descr: Digital Ocean, Inc. DO-13 270 Lafayette St Suite 1206 New York NY 10012
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9322377 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9322377 2013-02-02T20:41:25+01:00 first: 1359834085
last: 0
md5: 5db858b8f4e7798d86a8cadc3a5f836d
virustotal: http://www.virustotal.com/latest-report.html?resource=5db858b8f4e7798d86a8cadc3a5f836d
vt_score: 9/36 (25%)
scanner: AVG
virusname: Generic_s.AKA
url: http://egygumlo.ru/newbos2.exe
recent: up
response: alive
ip: 31.185.119.205
as: AS197687
review: 24.211.130.19
domain: egygumlo.ru
country: US
source: ARIN
email: abuse@rr.com
inetnum: 31.185.112.0 - 31.185.119.255
netname: RR-CENTRAL-3BLK
descr: Road Runner HoldCo LLC RRMA 13241 Woodland Park Road Herndon VA 20171
ns1: ns3.egygumlo.ru
ns2: ns4.egygumlo.ru
ns3: ns1.egygumlo.ru
ns4: ns6.egygumlo.ru
ns5: ns2.egygumlo.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=9321120 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9321120 2013-02-02T19:40:07+01:00 first: 1359830407
last: 0
md5: bc2b1e85e21703e62110950816659714
virustotal: http://www.virustotal.com/latest-report.html?resource=bc2b1e85e21703e62110950816659714
vt_score: 9/36 (25%)
scanner: AntiVir
virusname: TR/Ransom.Blocker.btbw.1
url: http://goldcoin.so/prime/connect-vary-conventions_upper.php?fbw=1k:33:1m:1m:1n&ilammsg=32:33:33:1h:1i:1n:30:2w:33:1j&ldd=1i&dwcdyt=oudbp&kjxidf=gzlzi
recent: up
response: alive
ip: 198.23.248.138
as: AS36352
review: 198.23.248.138
domain: goldcoin.so
country: US
source: ARIN
email: abuse@colocrossing.com
inetnum: 198.23.128.0 - 198.23.255.255
netname: CC-10
descr: ColoCrossing VGS-9 8469 Sheridan Drive ATTN Williamsville NY 14221
ns1: ns2.freedns.ws
ns2: ns1.freedns.ws
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9319453 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9319453 2013-02-02T13:40:04+01:00 first: 1359808804
last: 0
md5: 3666d06de6e83129ce802facb8bf872f
virustotal: http://www.virustotal.com/latest-report.html?resource=3666d06de6e83129ce802facb8bf872f
vt_score: 11/36 (30.6%)
scanner: BitDefender
virusname: Trojan.Generic.KDZ.6591
url: http://74.208.195.229/st.exe
recent: up
response: alive
ip: 74.208.195.229
as: AS8560
review: 74.208.195.229
domain: 74.208.195.229
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9311725 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9311725 2013-02-01T19:40:46+01:00 first: 1359744046
last: 0
md5: 96c9051e4a221f7edc217f7bb644770f
virustotal: http://www.virustotal.com/latest-report.html?resource=96c9051e4a221f7edc217f7bb644770f
vt_score: 11/36 (30.6%)
scanner: Avast
virusname: Win32:VBInject-L [Trj]
url: http://74.208.195.229/l.exe
recent: up
response: alive
ip: 74.208.195.229
as: AS8560
review: 74.208.195.229
domain: 74.208.195.229
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9311724 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9311724 2013-02-01T19:40:46+01:00 first: 1359744046
last: 0
md5: 4d3d99f4941a3f2ce648ee382253c58c
virustotal: http://www.virustotal.com/latest-report.html?resource=4d3d99f4941a3f2ce648ee382253c58c
vt_score: 28/35 (80%)
scanner: avira
virusname: WORM/Gamarue.itza
url: http://74.208.195.229/b.exe
recent: up
response: alive
ip: 74.208.195.229
as: AS8560
review: 74.208.195.229
domain: 74.208.195.229
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9311723 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9311723 2013-02-01T19:40:12+01:00 first: 1359744012
last: 0
md5: c0e875c05dbb018cc0342c6899e4510c
virustotal: http://www.virustotal.com/latest-report.html?resource=c0e875c05dbb018cc0342c6899e4510c
vt_score: 5/36 (13.9%)
scanner: Comodo
virusname: Heur.Packed.Unknown
url: http://pusycqyz.ru/links/1.php?ldxiuu=35:32:2w:32:1k&uuvmia=1j:1n:1m:1l:1m:2w:31:1j:1m:1g&urmqzgod=1i&wtwnibft=abmp&oqscdel=xyboqm
recent: up
response: alive
ip: 198.23.248.138
as: AS36352
review: 198.23.248.138
domain: pusycqyz.ru
country: US
source: ARIN
email: abuse@colocrossing.com
inetnum: 198.23.128.0 - 198.23.255.255
netname: CC-10
descr: ColoCrossing VGS-9 8469 Sheridan Drive ATTN Williamsville NY 14221
ns1: ns5.pusycqyz.ru
ns2: ns6.pusycqyz.ru
ns3: ns3.pusycqyz.ru
ns4: ns4.pusycqyz.ru
ns5: ns1.pusycqyz.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=9311143 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9311143 2013-02-01T17:40:18+01:00 first: 1359736818
last: 0
md5: 50a59e805eeb228d44f6c08e4b786d1e
virustotal: http://www.virustotal.com/latest-report.html?resource=50a59e805eeb228d44f6c08e4b786d1e
vt_score: 22/46 (47.8%)
scanner: trendmicro
virusname: Cryp_Xin1
url: http://37.221.170.244/cbcs.exe
recent: up
response: alive
ip: 37.221.170.244
as: AS39743
review: 37.221.170.244
domain: 37.221.170.244
country: RO
source: RIPE
email: noc@voxility.com
inetnum: 37.221.160.0 - 37.221.175.255
netname: RO-VOXILITY-20120405
descr: Voxility S.R.L.
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9311038 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9311038 2013-02-01T17:20:17+01:00 first: 1359735617
last: 0
md5: f342d3c772186ec7bea986f67abc09a8
virustotal: http://www.virustotal.com/latest-report.html?resource=f342d3c772186ec7bea986f67abc09a8
vt_score: 6/46 (13%)
scanner: Comodo
virusname: Heur.Packed.Unknown
url: http://vybakcov.ru/links/1.php?ldxiuu=33:32:2w:32:1k&uuvmia=1j:1n:1m:1l:1m:2w:31:1j:1m:1g&urmqzgod=1i&wtwnibft=abmp&oqscdel=xyboqm
recent: up
response: alive
ip: 198.23.248.138
as: AS36352
review: 198.23.248.138
domain: vybakcov.ru
country: US
source: ARIN
email: abuse@colocrossing.com
inetnum: 198.23.128.0 - 198.23.255.255
netname: CC-10
descr: ColoCrossing VGS-9 8469 Sheridan Drive ATTN Williamsville NY 14221
ns1: ns6.vybakcov.ru
ns2: ns2.vybakcov.ru
ns3: ns3.vybakcov.ru
ns4: ns4.vybakcov.ru
ns5: ns1.vybakcov.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=9307560 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9307560 2013-02-01T11:42:28+01:00 first: 1359715348
last: 0
md5: d40f65bf66b840f3672a062e1c0edfc3
virustotal: http://www.virustotal.com/latest-report.html?resource=d40f65bf66b840f3672a062e1c0edfc3
vt_score: 28/45 (62.2%)
scanner: avira
virusname: TR/Kazy.64267.16
url: http://astound-64-85-233-8.ca.astound.net/bleed/rrt.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: astound.net
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1: ns1.wavecable.com
ns2: ns2.wavecable.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9307559 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9307559 2013-02-01T11:42:28+01:00 first: 1359715348
last: 0
md5: 2a9797c722fe6678a721d89ccd469c85
virustotal: http://www.virustotal.com/latest-report.html?resource=2a9797c722fe6678a721d89ccd469c85
vt_score: 29/36 (80.6%)
scanner: avira
virusname: TR/Downloader.Gen
url: http://astound-64-85-233-8.ca.astound.net/eliteloader/Binary/result.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: astound.net
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1: ns1.wavecable.com
ns2: ns2.wavecable.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9306500 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9306500 2013-02-01T09:50:04+01:00 first: 1359708604
last: 0
md5: d6f4f3915cb93e628e36f8cdc53c870e
virustotal: http://www.virustotal.com/latest-report.html?resource=d6f4f3915cb93e628e36f8cdc53c870e
vt_score: 11/36 (30.6%)
scanner: BitDefender
virusname: Gen:Variant.Symmi.10241
url: http://89.249.55.163/g.exe
recent: up
response: alive
ip: 89.249.55.163
as: AS41310
review: 89.249.55.163
domain: 89.249.55.163
country: RU
source: RIPE
email: krem@ipct.ru
inetnum: 89.249.48.0 - 89.249.55.255
netname: IPCT
descr: ISP Komputer technology Ltd.Bryansk citySofya Perovskoy st. 83(4832)674-674Ltd "Kompyuternie Tehnologii".
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9306499 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9306499 2013-02-01T09:50:04+01:00 first: 1359708604
last: 0
md5: 8469641a51159f7986b297652a2290c3
virustotal: http://www.virustotal.com/latest-report.html?resource=8469641a51159f7986b297652a2290c3
vt_score: 6/36 (16.7%)
scanner: DrWeb
virusname: Win32.HLLW.Phorpiex.54
url: http://89.249.55.163/b.exe
recent: up
response: alive
ip: 89.249.55.163
as: AS41310
review: 89.249.55.163
domain: 89.249.55.163
country: RU
source: RIPE
email: krem@ipct.ru
inetnum: 89.249.48.0 - 89.249.55.255
netname: IPCT
descr: ISP Komputer technology Ltd.Bryansk citySofya Perovskoy st. 83(4832)674-674Ltd "Kompyuternie Tehnologii".
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9306498 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9306498 2013-02-01T09:50:04+01:00 first: 1359708604
last: 0
md5: 4efac350da363727994646cbe530ed54
virustotal:
vt_score: 20/46 (43.5%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen
url: http://89.249.55.163/l.exe
recent: up
response: alive
ip: 89.249.55.163
as: AS41310
review: 89.249.55.163
domain: 89.249.55.163
country: RU
source: RIPE
email: krem@ipct.ru
inetnum: 89.249.48.0 - 89.249.55.255
netname: IPCT
descr: ISP Komputer technology Ltd.Bryansk citySofya Perovskoy st. 83(4832)674-674Ltd "Kompyuternie Tehnologii".
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9304763 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9304763 2013-02-01T06:41:30+01:00 first: 1359697290
last: 0
md5: dffcdbe44ebfe40064e4f035579ddfba
virustotal: http://www.virustotal.com/latest-report.html?resource=dffcdbe44ebfe40064e4f035579ddfba
vt_score: 23/46 (50%)
scanner: AhnLab_V3
virusname: Backdoor/Win32.DarkKomet
url: http://46.38.63.119/bck/udateq.exe
recent: up
response: alive
ip: 46.38.63.119
as: AS52201
review: 46.38.63.119
domain: 46.38.63.119
country: RU
source: RIPE
email: alexander.kondrat@tel.ru
inetnum: 46.38.56.0 - 46.38.63.255
netname: TCTEL
descr: TC TEL hostingTCTEL-NET
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9304762 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9304762 2013-02-01T06:41:30+01:00 first: 1359697290
last: 0
md5: 098e6f0259e9d8428b29337de5879d3b
virustotal: http://www.virustotal.com/latest-report.html?resource=098e6f0259e9d8428b29337de5879d3b
vt_score: 32/46 (69.6%)
scanner: AhnLab_V3
virusname: Win-Trojan/Downloader.239104.AG
url: http://200.170.219.25/v2/kkras/up.jpg
recent: up
response: alive
ip: 200.170.219.25
as: AS11432
review: 200.170.219.25
domain: 200.170.219.25
country: BR
source: LACNIC
email: goldsuporte@telium.com.br
inetnum: 200.170.192.0 - 200.170.255.255
netname: 007.272.054/0001-55
descr: Telium Telecomunicações Ltda
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9304761 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9304761 2013-02-01T06:41:30+01:00 first: 1359697290
last: 0
md5: 098e6f0259e9d8428b29337de5879d3b
virustotal: http://www.virustotal.com/latest-report.html?resource=098e6f0259e9d8428b29337de5879d3b
vt_score: 32/46 (69.6%)
scanner: AhnLab_V3
virusname: Win-Trojan/Downloader.239104.AG
url: http://200.170.219.25/v2/negao/up.jpg
recent: up
response: alive
ip: 200.170.219.25
as: AS11432
review: 200.170.219.25
domain: 200.170.219.25
country: BR
source: LACNIC
email: goldsuporte@telium.com.br
inetnum: 200.170.192.0 - 200.170.255.255
netname: 007.272.054/0001-55
descr: Telium Telecomunicações Ltda
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9304759 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9304759 2013-02-01T06:41:30+01:00 first: 1359697290
last: 0
md5: e18fd6d7241b0d693f04481c91701a39
virustotal: http://www.virustotal.com/latest-report.html?resource=e18fd6d7241b0d693f04481c91701a39
vt_score: 7/46 (15.2%)
scanner: AVG
virusname: PSW.Banker6.APFI
url: http://200.170.219.25/v2/negao/evx.jpg
recent: up
response: alive
ip: 200.170.219.25
as: AS11432
review: 200.170.219.25
domain: 200.170.219.25
country: BR
source: LACNIC
email: goldsuporte@telium.com.br
inetnum: 200.170.192.0 - 200.170.255.255
netname: 007.272.054/0001-55
descr: Telium Telecomunicações Ltda
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9304757 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9304757 2013-02-01T06:41:30+01:00 first: 1359697290
last: 0
md5: 7d58eaa00f5615b784b67647e5b613ae
virustotal: http://www.virustotal.com/latest-report.html?resource=c497d0c2f9942819038a84cef50a3221
vt_score: 8/36 (22.2%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Tepfer
url: http://xizzawvu.ru/links/1.php?ayq=32:2v:1h:2w:1m&mntt=1j:1n:1m:1l:1m:2w:31:1j:1m:1g&eghf=1i&uodoskx=padzflh&knrezehi=vkyuabri
recent: up
response: alive
ip: 198.23.248.138
as: AS36352
review: 198.23.248.138
domain: xizzawvu.ru
country: US
source: ARIN
email: abuse@colocrossing.com
inetnum: 198.23.128.0 - 198.23.255.255
netname: CC-10
descr: ColoCrossing VGS-9 8469 Sheridan Drive ATTN Williamsville NY 14221
ns1: ns4.xizzawvu.ru
ns2: ns5.xizzawvu.ru
ns3: ns1.xizzawvu.ru
ns4: ns3.xizzawvu.ru
ns5: ns2.xizzawvu.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=9303584 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9303584 2013-02-01T03:40:20+01:00 first: 1359686420
last: 0
md5: 2a4419024f501d168864771a38f85b8d
virustotal: http://www.virustotal.com/latest-report.html?resource=2a4419024f501d168864771a38f85b8d
vt_score: 42/46 (91.3%)
scanner: avira
virusname: TR/ATRAPS.Gen
url: http://64.85.233.8/dj.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9303330 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9303330 2013-02-01T03:01:31+01:00 first: 1359684091
last: 0
md5: eb61239931f7158d7e814e270406ba6e
virustotal: http://www.virustotal.com/latest-report.html?resource=eb61239931f7158d7e814e270406ba6e
vt_score: 7/36 (19.4%)
scanner: avira
virusname: TR/Dropper.MSIL.Gen
url: http://64.85.233.8/c22.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9303329 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9303329 2013-02-01T03:01:31+01:00 first: 1359684091
last: 0
md5: 7fdbf6b561f69dd9ed3be3269100af78
virustotal: http://www.virustotal.com/latest-report.html?resource=7fdbf6b561f69dd9ed3be3269100af78
vt_score: 21/46 (45.7%)
scanner: avira
virusname: BDS/Backdoor.Gen
url: http://64.85.233.8/Bot_Builder_-_cracked!.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9303328 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9303328 2013-02-01T03:01:31+01:00 first: 1359684091
last: 0
md5: 60252b0565a60abfef9dec2e20dd9629
virustotal: http://www.virustotal.com/latest-report.html?resource=60252b0565a60abfef9dec2e20dd9629
vt_score: 22/44 (50%)
scanner: avira
virusname: TR/Drop.Agent.46592.2
url: http://64.85.233.8/CythBuilder.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9303327 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9303327 2013-02-01T03:01:31+01:00 first: 1359684091
last: 0
md5: 9afe25e93d9118975fb849864b13b332
virustotal: http://www.virustotal.com/latest-report.html?resource=9afe25e93d9118975fb849864b13b332
vt_score: 29/46 (63%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen
url: http://64.85.233.8/Loader.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9303326 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9303326 2013-02-01T03:01:31+01:00 first: 1359684091
last: 0
md5: beec20b0093e341b12889ebfe06c6c30
virustotal:
vt_score: 41/46 (89.1%)
scanner: avira
virusname: WORM/Gamarue.itza
url: http://64.85.233.8/androbot.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9303325 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9303325 2013-02-01T03:01:31+01:00 first: 1359684091
last: 0
md5: 8da240f8b9ae8f85913d31027afa5b2c
virustotal: http://www.virustotal.com/latest-report.html?resource=8da240f8b9ae8f85913d31027afa5b2c
vt_score: 29/36 (80.6%)
scanner: avira
virusname: WORM/Gamarue.itza
url: http://64.85.233.8/andronew.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9303324 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9303324 2013-02-01T03:01:31+01:00 first: 1359684091
last: 0
md5: 2fb74a511bdd6bb4c18a9c340f52785e
virustotal: http://www.virustotal.com/latest-report.html?resource=2fb74a511bdd6bb4c18a9c340f52785e
vt_score: 24/36 (66.7%)
scanner: avira
virusname: SPR/Tool.NetCat.B
url: http://64.85.233.8/mocat_win.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9303323 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9303323 2013-02-01T03:01:31+01:00 first: 1359684091
last: 0
md5: d2061c62e21dda589996355825f03f89
virustotal: http://www.virustotal.com/latest-report.html?resource=d2061c62e21dda589996355825f03f89
vt_score: 36/46 (78.3%)
scanner: avira
virusname: WORM/Autorun.hum.1
url: http://64.85.233.8/x2ImSD03.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9303322 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9303322 2013-02-01T03:01:31+01:00 first: 1359684091
last: 0
md5: e5d076d725476014c2e6d1fde6c904e7
virustotal: http://www.virustotal.com/latest-report.html?resource=e5d076d725476014c2e6d1fde6c904e7
vt_score: 29/46 (63%)
scanner: avira
virusname: TR/Barys.2217.148
url: http://64.85.233.8/adobe-v10_08.20.2_2012_3.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9303321 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9303321 2013-02-01T03:01:02+01:00 first: 1359684062
last: 0
md5: 36042088f59bd84cd4e29e2bd17efd5a
virustotal: http://www.virustotal.com/latest-report.html?resource=36042088f59bd84cd4e29e2bd17efd5a
vt_score: 26/44 (59.1%)
scanner: avira
virusname: TR/Kazy.78275.1
url: http://64.85.233.8/dhell.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9303038 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9303038 2013-02-01T02:43:12+01:00 first: 1359682992
last: 0
md5: 8506f62ffe4a7bb780f9a0c127f97f80
virustotal: http://www.virustotal.com/latest-report.html?resource=8506f62ffe4a7bb780f9a0c127f97f80
vt_score: 32/35 (91.4%)
scanner: avira
virusname: BDS/Backdoor.Gen
url: http://64.85.233.8/setup.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9303037 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9303037 2013-02-01T02:43:12+01:00 first: 1359682992
last: 0
md5: 2f1c92f53575a1e43b5fb7f58778dc85
virustotal:
vt_score: 36/46 (78.3%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen
url: http://64.85.233.8/server.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9303035 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9303035 2013-02-01T02:43:12+01:00 first: 1359682992
last: 0
md5: d40f65bf66b840f3672a062e1c0edfc3
virustotal: http://www.virustotal.com/latest-report.html?resource=d40f65bf66b840f3672a062e1c0edfc3
vt_score: 23/36 (63.9%)
scanner: avira
virusname: TR/Kazy.64267.16
url: http://64.85.233.8/rrt.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9303034 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9303034 2013-02-01T02:43:12+01:00 first: 1359682992
last: 0
md5: 168730e13b3689c926761e37fb39424c
virustotal: http://www.virustotal.com/latest-report.html?resource=168730e13b3689c926761e37fb39424c
vt_score: 2/46 (4.3%)
scanner: AntiVir
virusname: TR/Crypt.ZPACK.Gen7
url: http://64.85.233.8/priv.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9303031 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9303031 2013-02-01T02:43:12+01:00 first: 1359682992
last: 0
md5: f255b0f0605dc1fe5103bcff911f9851
virustotal: http://www.virustotal.com/latest-report.html?resource=f255b0f0605dc1fe5103bcff911f9851
vt_score: 40/46 (87%)
scanner: avira
virusname: TR/ATRAPS.Gen
url: http://64.85.233.8/dual.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9303029 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9303029 2013-02-01T02:43:12+01:00 first: 1359682992
last: 0
md5: 5a8e905adcbb49bfa8f7f141371199b5
virustotal: http://www.virustotal.com/latest-report.html?resource=5a8e905adcbb49bfa8f7f141371199b5
vt_score: 9/36 (25%)
scanner: AVG
virusname: ILCrypt
url: http://64.85.233.8/combo.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9303019 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9303019 2013-02-01T02:40:54+01:00 first: 1359682854
last: 0
md5: ff089fe65535dbde885dc67b0148c5cc
virustotal: http://www.virustotal.com/latest-report.html?resource=ff089fe65535dbde885dc67b0148c5cc
vt_score: 37/45 (82.2%)
scanner: avira
virusname: BDS/Backdoor.Gen
url: http://64.85.233.8/QP69IUGD7Y.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9302656 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9302656 2013-02-01T02:00:21+01:00 first: 1359680421
last: 0
md5: 9e2951861c6b6b7e2d318c8d5f314de5
virustotal: http://www.virustotal.com/latest-report.html?resource=9e2951861c6b6b7e2d318c8d5f314de5
vt_score: 18/45 (40%)
scanner: avira
virusname: TR/Crypt.EPACK.Gen2
url: http://64.85.233.8/go2.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9302402 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9302402 2013-02-01T01:40:06+01:00 first: 1359679206
last: 0
md5: b3a29aed50df89d306f751e697b1318e
virustotal: http://www.virustotal.com/latest-report.html?resource=b3a29aed50df89d306f751e697b1318e
vt_score: 36/46 (78.3%)
scanner: avira
virusname: TR/Downloader.Gen
url: http://64.85.233.8/result.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9302401 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9302401 2013-02-01T01:40:06+01:00 first: 1359679206
last: 0
md5: 0001ef634043fe2347fa6314bff903ef
virustotal: http://www.virustotal.com/latest-report.html?resource=0001ef634043fe2347fa6314bff903ef
vt_score: 27/46 (58.7%)
scanner: avira
virusname: TR/Dropper.Gen
url: http://64.85.233.8/out.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9302400 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9302400 2013-02-01T01:40:06+01:00 first: 1359679206
last: 0
md5: 2c810db5062de9956fef88b88e11ed27
virustotal: http://www.virustotal.com/latest-report.html?resource=2c810db5062de9956fef88b88e11ed27
vt_score: 27/36 (75%)
scanner: avira
virusname: TR/ATRAPS.Gen
url: http://64.85.233.8/evil.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9302399 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9302399 2013-02-01T01:40:06+01:00 first: 1359679206
last: 0
md5: 2a4419024f501d168864771a38f85b8d
virustotal: http://www.virustotal.com/latest-report.html?resource=2a4419024f501d168864771a38f85b8d
vt_score: 42/46 (91.3%)
scanner: avira
virusname: TR/ATRAPS.Gen
url: http://64.85.233.8/build.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9302184 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9302184 2013-02-01T00:40:25+01:00 first: 1359675625
last: 0
md5: beec20b0093e341b12889ebfe06c6c30
virustotal:
vt_score: 41/46 (89.1%)
scanner: avira
virusname: WORM/Gamarue.itza
url: http://64.85.233.8/update.zip
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9302183 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9302183 2013-02-01T00:40:25+01:00 first: 1359675625
last: 0
md5: 8c90a114fb10e44c36c8734a815c2503
virustotal: http://www.virustotal.com/latest-report.html?resource=8c90a114fb10e44c36c8734a815c2503
vt_score: 2/46 (4.3%)
scanner: AntiVir
virusname: TR/Crypt.ZPACK.Gen7
url: http://64.85.233.8/as.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9302182 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9302182 2013-02-01T00:40:25+01:00 first: 1359675625
last: 0
md5: d24ab17f5a7e4c0d622666039592da46
virustotal: http://www.virustotal.com/latest-report.html?resource=d24ab17f5a7e4c0d622666039592da46
vt_score: 27/46 (58.7%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen3
url: http://64.85.233.8/po.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9301915 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9301915 2013-02-01T00:29:33+01:00 first: 1359674973
last: 0
md5: 6284c548cd67533d96576f390de28a89
virustotal: http://www.virustotal.com/latest-report.html?resource=6284c548cd67533d96576f390de28a89
vt_score: 35/45 (77.8%)
scanner: avira
virusname: TR/Crypt.EPACK.Gen2
url: http://64.85.233.8/msf.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9301914 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9301914 2013-02-01T00:29:32+01:00 first: 1359674972
last: 0
md5: 3f5aa952d29326268f6985cd9734a128
virustotal: http://www.virustotal.com/latest-report.html?resource=3f5aa952d29326268f6985cd9734a128
vt_score: 2/44 (4.5%)
scanner: avira
virusname: TR/Dropper.Gen
url: http://64.85.233.8/backdoor.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9301913 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9301913 2013-02-01T00:29:32+01:00 first: 1359674972
last: 0
md5: c56ca809052066dcb6ad08ff491e2b7c
virustotal: http://www.virustotal.com/latest-report.html?resource=c56ca809052066dcb6ad08ff491e2b7c
vt_score: 22/36 (61.1%)
scanner: avira
virusname: TR/Barys.2831.130
url: http://64.85.233.8/dl.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9301912 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9301912 2013-02-01T00:29:32+01:00 first: 1359674972
last: 0
md5: 2f1c92f53575a1e43b5fb7f58778dc85
virustotal: http://www.virustotal.com/latest-report.html?resource=2f1c92f53575a1e43b5fb7f58778dc85
vt_score: 37/46 (80.4%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen
url: http://64.85.233.8/red/update.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9301711 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9301711 2013-01-31T23:40:21+01:00 first: 1359672021
last: 0
md5: a1b69b95c093115b81e79d0f04d84085
virustotal: http://www.virustotal.com/latest-report.html?resource=a1b69b95c093115b81e79d0f04d84085
vt_score: 24/46 (52.2%)
scanner: avira
virusname: TR/Kazy.mkc.1
url: http://64.85.233.8/p2/exe.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9301708 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9301708 2013-01-31T23:40:21+01:00 first: 1359672021
last: 0
md5: 4efac350da363727994646cbe530ed54
virustotal:
vt_score: 20/46 (43.5%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen
url: http://212.227.141.241/l.exe
recent: up
response: alive
ip: 212.227.141.241
as: AS8560
review: 212.227.141.241
domain: 212.227.141.241
country: DE
source: RIPE
email: abuse@1and1.com
inetnum: 212.227.134.0 - 212.227.143.255
netname: SCHLUND-CUSTOMERS
descr: 1&1 InternetSCHLUND-PA-2
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9301706 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9301706 2013-01-31T23:40:21+01:00 first: 1359672021
last: 0
md5: 472c51ab55aaeac6e1b7cbfebe49aeda
virustotal: http://www.virustotal.com/latest-report.html?resource=472c51ab55aaeac6e1b7cbfebe49aeda
vt_score: 23/43 (53.5%)
scanner: AntiVir
virusname: TR/Dldr.Dofoil.R.403
url: http://64.85.233.8/h.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9301704 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9301704 2013-01-31T23:40:21+01:00 first: 1359672021
last: 0
md5: 69bd6213a093db08e77e2990537fd022
virustotal: http://www.virustotal.com/latest-report.html?resource=69bd6213a093db08e77e2990537fd022
vt_score: 22/36 (61.1%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Blocker
url: http://64.85.233.8/i.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9301701 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9301701 2013-01-31T23:40:20+01:00 first: 1359672020
last: 0
md5: 1a43cf22b43d2801ca6a2f51ac8ef1cf
virustotal: http://www.virustotal.com/latest-report.html?resource=1a43cf22b43d2801ca6a2f51ac8ef1cf
vt_score: 24/46 (52.2%)
scanner: AhnLab_V3
virusname: Dropper/Win32.Agent
url: http://64.85.233.8/j.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9301699 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9301699 2013-01-31T23:40:20+01:00 first: 1359672020
last: 0
md5: 36042088f59bd84cd4e29e2bd17efd5a
virustotal: http://www.virustotal.com/latest-report.html?resource=36042088f59bd84cd4e29e2bd17efd5a
vt_score: 22/36 (61.1%)
scanner: avira
virusname: TR/Kazy.78275.1
url: http://64.85.233.8/m.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9301696 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9301696 2013-01-31T23:40:20+01:00 first: 1359672020
last: 0
md5: 36042088f59bd84cd4e29e2bd17efd5a
virustotal: http://www.virustotal.com/latest-report.html?resource=36042088f59bd84cd4e29e2bd17efd5a
vt_score: 26/44 (59.1%)
scanner: avira
virusname: TR/Kazy.78275.1
url: http://64.85.233.8/t.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9301695 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9301695 2013-01-31T23:40:20+01:00 first: 1359672020
last: 0
md5: 2f1c92f53575a1e43b5fb7f58778dc85
virustotal:
vt_score: 36/46 (78.3%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen
url: http://64.85.233.8/u.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9301693 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9301693 2013-01-31T23:40:20+01:00 first: 1359672020
last: 0
md5: fff700002c3e2b11ed62ad89c1f6739c
virustotal: http://www.virustotal.com/latest-report.html?resource=fff700002c3e2b11ed62ad89c1f6739c
vt_score: 28/35 (80%)
scanner: avira
virusname: TR/Crypt.EPACK.Gen2
url: http://64.85.233.8/x.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9301691 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9301691 2013-01-31T23:40:20+01:00 first: 1359672020
last: 0
md5: 6dd7804597d6d37123448cd64381b4b0
virustotal: http://www.virustotal.com/latest-report.html?resource=6dd7804597d6d37123448cd64381b4b0
vt_score: 9/46 (19.6%)
scanner: AntiVir
virusname: TR/Rogue.KD.843772.1
url: http://64.85.233.8/x
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9301689 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9301689 2013-01-31T23:40:20+01:00 first: 1359672020
last: 0
md5: da1aba4a05e4045f3cfe1bdd26fafe85
virustotal: http://www.virustotal.com/latest-report.html?resource=da1aba4a05e4045f3cfe1bdd26fafe85
vt_score: 22/42 (52.4%)
scanner: avira
virusname: KIT/Buildy.57
url: http://64.85.233.8/wa
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9301687 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9301687 2013-01-31T23:40:20+01:00 first: 1359672020
last: 0
md5: a1b69b95c093115b81e79d0f04d84085
virustotal: http://www.virustotal.com/latest-report.html?resource=a1b69b95c093115b81e79d0f04d84085
vt_score: 24/46 (52.2%)
scanner: avira
virusname: TR/Kazy.mkc.1
url: http://64.85.233.8/up.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9301686 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9301686 2013-01-31T23:40:20+01:00 first: 1359672020
last: 0
md5: 9ac3b1df5a64c6fb3c92e8826d8b0cf6
virustotal: http://www.virustotal.com/latest-report.html?resource=9ac3b1df5a64c6fb3c92e8826d8b0cf6
vt_score: 3/36 (8.3%)
scanner: AntiVir
virusname: TR/Crypt.ZPACK.Gen7
url: http://64.85.233.8/win.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9301636 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9301636 2013-01-31T23:00:24+01:00 first: 1359669624
last: 0
md5: e5d076d725476014c2e6d1fde6c904e7
virustotal: http://www.virustotal.com/latest-report.html?resource=e5d076d725476014c2e6d1fde6c904e7
vt_score: 29/46 (63%)
scanner: avira
virusname: TR/Barys.2217.148
url: http://64.85.233.8/bot.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9301635 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9301635 2013-01-31T23:00:24+01:00 first: 1359669624
last: 0
md5: 472c51ab55aaeac6e1b7cbfebe49aeda
virustotal: http://www.virustotal.com/latest-report.html?resource=472c51ab55aaeac6e1b7cbfebe49aeda
vt_score: 23/43 (53.5%)
scanner: AntiVir
virusname: TR/Dldr.Dofoil.R.403
url: http://64.85.233.8/xxx/x-pack/load/load.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9301634 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9301634 2013-01-31T23:00:24+01:00 first: 1359669624
last: 0
md5: 0001ef634043fe2347fa6314bff903ef
virustotal: http://www.virustotal.com/latest-report.html?resource=0001ef634043fe2347fa6314bff903ef
vt_score: 27/46 (58.7%)
scanner: avira
virusname: TR/Dropper.Gen
url: http://64.85.233.8/xxx/x-pack/load/server.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9301633 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9301633 2013-01-31T23:00:24+01:00 first: 1359669624
last: 0
md5: f255b0f0605dc1fe5103bcff911f9851
virustotal: http://www.virustotal.com/latest-report.html?resource=f255b0f0605dc1fe5103bcff911f9851
vt_score: 33/36 (91.7%)
scanner: avira
virusname: TR/ATRAPS.Gen
url: http://64.85.233.8/xxx/x-pack/load/UpdateAdobe.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9301632 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9301632 2013-01-31T23:00:24+01:00 first: 1359669624
last: 0
md5: 472c51ab55aaeac6e1b7cbfebe49aeda
virustotal: http://www.virustotal.com/latest-report.html?resource=472c51ab55aaeac6e1b7cbfebe49aeda
vt_score: 23/43 (53.5%)
scanner: AntiVir
virusname: TR/Dldr.Dofoil.R.403
url: http://64.85.233.8/smokeldr/update.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9301631 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9301631 2013-01-31T23:00:22+01:00 first: 1359669622
last: 0
md5: beec20b0093e341b12889ebfe06c6c30
virustotal: http://www.virustotal.com/latest-report.html?resource=beec20b0093e341b12889ebfe06c6c30
vt_score: 33/36 (91.7%)
scanner: avira
virusname: WORM/Gamarue.itza
url: http://64.85.233.8/uniq/1.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9299746 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9299746 2013-01-31T21:00:19+01:00 first: 1359662419
last: 0
md5: 64fc45d06a6f7e6004c6252b28925bb8
virustotal: http://www.virustotal.com/latest-report.html?resource=64fc45d06a6f7e6004c6252b28925bb8
vt_score: 10/46 (21.7%)
scanner: AntiVir
virusname: TR/Crypt.ZPACK.Gen6
url: http://copapjid.ru/newbos2.exe
recent: up
response: alive
ip: 109.185.226.78
as: AS8926
review: 62.221.136.215
domain: copapjid.ru
country: BG
source: RIPE
email: hostmaster@interbgc.com
inetnum: 109.185.0.0 - 109.185.255.255
netname: BG-IBGC-20081010
descr: Eurocom Cable Management Bulgaria LtdCableTEL AD Bulgaria Address Space 2008
ns1: ns2.copapjid.ru
ns2: ns5.copapjid.ru
ns3: ns3.copapjid.ru
ns4: ns4.copapjid.ru
ns5: ns6.copapjid.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=9299745 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9299745 2013-01-31T21:00:18+01:00 first: 1359662418
last: 0
md5: 472c51ab55aaeac6e1b7cbfebe49aeda
virustotal: http://www.virustotal.com/latest-report.html?resource=472c51ab55aaeac6e1b7cbfebe49aeda
vt_score: 23/43 (53.5%)
scanner: AntiVir
virusname: TR/Dldr.Dofoil.R.403
url: http://64.85.233.8/index.htm.exe
recent: up
response: alive
ip: 64.85.233.8
as: AS22759
review: 64.85.233.8
domain: 64.85.233.8
country: US
source: ARIN
email: wavecable@wavecable.com
inetnum: 64.85.224.0 - 64.85.255.255
netname: WAVE-ASTOUND-1
descr: Private Residence Concord CA 94520
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9297670 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9297670 2013-01-31T19:43:01+01:00 first: 1359657781
last: 0
md5: 901fe4766ecd49c718869b621bf4aa08
virustotal: http://www.virustotal.com/latest-report.html?resource=901fe4766ecd49c718869b621bf4aa08
vt_score: 12/46 (26.1%)
scanner: avira
virusname: TR/Dropper.Gen
url: http://vacrajak.ru/calc.exe
recent: up
response: alive
ip: 76.126.100.34
as: AS33651
review: 37.229.47.218
domain: vacrajak.ru
country: UA
source: RIPE
email: abuse@colocall.net
inetnum: 76.126.0.0 - 76.126.255.255
netname: KYIVSTAR-NET-15
descr: Kyivstar GSMUkrainian mobile phone operatorKyivstar GSM, Kiev, Ukraine
ns1: ns6.vacrajak.ru
ns2: ns5.vacrajak.ru
ns3: ns4.vacrajak.ru
ns4: ns1.vacrajak.ru
ns5: ns2.vacrajak.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=9297669 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9297669 2013-01-31T19:43:01+01:00 first: 1359657781
last: 0
md5: fee2e9671fdf861958596e5197ad8fba
virustotal: http://www.virustotal.com/latest-report.html?resource=fee2e9671fdf861958596e5197ad8fba
vt_score: 8/36 (22.2%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Tepfer
url: http://vybakcov.ru/links/1.php?ayq=33:2v:1h:2w:1m&mntt=1j:1n:1m:1l:1m:2w:31:1j:1m:1g&eghf=1i&uodoskx=padzflh&knrezehi=vkyuabri
recent: up
response: alive
ip: 198.23.248.138
as: AS36352
review: 198.23.248.138
domain: vybakcov.ru
country: US
source: ARIN
email: abuse@colocrossing.com
inetnum: 198.23.128.0 - 198.23.255.255
netname: CC-10
descr: ColoCrossing VGS-9 8469 Sheridan Drive ATTN Williamsville NY 14221
ns1: ns4.vybakcov.ru
ns2: ns1.vybakcov.ru
ns3: ns3.vybakcov.ru
ns4: ns5.vybakcov.ru
ns5: ns2.vybakcov.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=9297174 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9297174 2013-01-31T18:40:02+01:00 first: 1359654002
last: 0
md5: 61b0c810ee8ba4b5ad1d98f65fb8f907
virustotal: http://www.virustotal.com/latest-report.html?resource=61b0c810ee8ba4b5ad1d98f65fb8f907
vt_score: 12/45 (26.7%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Tepfer
url: http://shayankarimi.com/media/nnsdiew.exe
recent: up
response: alive
ip: 174.133.83.82
as: AS36420, AS30315, AS13749, AS21844
review: 174.133.83.82
domain: shayankarimi.com
country: US
source: ARIN
email: abuse@theplanet.com
inetnum: 174.132.0.0 - 174.133.255.255
netname: NETBLK-THEPLANET-BLK-15
descr: ThePlanet.com Internet Services, Inc. TPCM 315 Capitol Suite 205 Houston TX 77002
ns1: ns5.mehravaran.net
ns2: ns6.mehravaran.net
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9297173 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9297173 2013-01-31T18:40:02+01:00 first: 1359654002
last: 0
md5: 59ca9e956c004fe63ded1a1489741d1b
virustotal: http://www.virustotal.com/latest-report.html?resource=59ca9e956c004fe63ded1a1489741d1b
vt_score: 13/36 (36.1%)
scanner: avira
virusname: TR/Dropper.Gen
url: http://vacrajak.ru/madload.exe
recent: up
response: alive
ip: 77.122.164.175
as: AS25229
review: 5.105.62.233
domain: vacrajak.ru
country: UA
source: RIPE
email: abuse@volia.net
inetnum: 77.122.128.0 - 77.122.207.255
netname: UA-CDS-UA-RIPE-20120628
descr: Cifrovye Dispetcherskie SistemyUA-CDS-UA-RIPE-20120628
ns1: ns1.vacrajak.ru
ns2: ns5.vacrajak.ru
ns3: ns2.vacrajak.ru
ns4: ns6.vacrajak.ru
ns5: ns3.vacrajak.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=9295218 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9295218 2013-01-31T15:40:11+01:00 first: 1359643211
last: 0
md5: 24260d5f3d75cc9491afa794102627f6
virustotal: http://www.virustotal.com/latest-report.html?resource=24260d5f3d75cc9491afa794102627f6
vt_score: 26/46 (56.5%)
scanner: AntiVir
virusname: TR/VB.Inject.JD.515
url: http://74.208.185.227/nn.exe
recent: up
response: alive
ip: 74.208.185.227
as: AS8560
review: 74.208.185.227
domain: 74.208.185.227
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9295217 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9295217 2013-01-31T15:40:11+01:00 first: 1359643211
last: 0
md5: 0cf44976e8f749941cfcef8be0239e54
virustotal: http://www.virustotal.com/latest-report.html?resource=0cf44976e8f749941cfcef8be0239e54
vt_score: 10/46 (21.7%)
scanner: AVG
virusname: Suspicion: unknown virus
url: http://atlantacatering.us/images.php?image=IMG0540255.JPG
recent: up
response: alive
ip: 74.208.185.227
as: AS8560
review: 74.208.185.227
domain: atlantacatering.us
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1: ns51.1and1.com
ns2: ns52.1and1.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9294494 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9294494 2013-01-31T14:00:14+01:00 first: 1359637214
last: 0
md5: 78f94cab5598dc7bbbfb97b1722928aa
virustotal: http://www.virustotal.com/latest-report.html?resource=78f94cab5598dc7bbbfb97b1722928aa
vt_score: 4/36 (11.1%)
scanner: Fortinet
virusname: W32/Injector.YMS!tr
url: http://74.208.185.227/5.exe
recent: up
response: alive
ip: 74.208.185.227
as: AS8560
review: 74.208.185.227
domain: 74.208.185.227
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9293693 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9293693 2013-01-31T12:50:06+01:00 first: 1359633006
last: 0
md5: 75fed216c551543b8ba2e49f0d5b6468
virustotal: http://www.virustotal.com/latest-report.html?resource=75fed216c551543b8ba2e49f0d5b6468
vt_score: 7/36 (19.4%)
scanner: clamav
virusname: Trojan.Banload-1361
url: http://fr-dl.uni.me/i_FR
recent: up
response: alive
ip: 199.231.227.149
as: AS3800
review: 199.231.227.149
domain: uni.me
country: US
source: ARIN
email: network.tech@ionity.com
inetnum: 199.231.224.0 - 199.231.227.255
netname: ION-DAL01
descr: Ionity Corporation IC-47 13505 S. Mur-Len Suite 105-202 Olathe KS 66062
ns1: ns1.dns-domainserver.com
ns2: ns2.dns-domainserver.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9292327 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9292327 2013-01-31T10:00:18+01:00 first: 1359622818
last: 0
md5: d00e455b65975ab903d7ecfcaecb8c3f
virustotal: http://www.virustotal.com/latest-report.html?resource=d00e455b65975ab903d7ecfcaecb8c3f
vt_score: 7/46 (15.2%)
scanner: CAT_QuickHeal
virusname: (Suspicious) - DNAScan
url: http://46.38.63.119/bck/iexplored.exe
recent: up
response: alive
ip: 46.38.63.119
as: AS52201
review: 46.38.63.119
domain: 46.38.63.119
country: RU
source: RIPE
email: alexander.kondrat@tel.ru
inetnum: 46.38.56.0 - 46.38.63.255
netname: TCTEL
descr: TC TEL hostingTCTEL-NET
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9288238 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9288238 2013-01-31T02:01:21+01:00 first: 1359594081
last: 0
md5: f7de8002f5ed377afe891fd03c41483b
virustotal: http://www.virustotal.com/latest-report.html?resource=f7de8002f5ed377afe891fd03c41483b
vt_score: 12/36 (33.3%)
scanner: avira
virusname: TR/Dropper.Gen
url: http://soduvnec.ru/shem001.exe
recent: up
response: alive
ip: 195.222.83.66
as: AS12358
review: 66.168.236.219
domain: soduvnec.ru
country: US
source: ARIN
email: abuse@charter.net
inetnum: 195.222.64.0 - 195.222.87.255
netname: ALCBN-66-168-232-0-21
descr: 12405 Powerscourt Dr. Use as many Customer Address lines as needed to specify St. Louis MO 63122
ns1: ns5.soduvnec.ru
ns2: ns2.soduvnec.ru
ns3: ns4.soduvnec.ru
ns4: ns6.soduvnec.ru
ns5: ns3.soduvnec.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=9288026 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9288026 2013-01-31T01:40:01+01:00 first: 1359592801
last: 0
md5: cb8c53a0d3f68100674cdd0dfd0fa122
virustotal: http://www.virustotal.com/latest-report.html?resource=cb8c53a0d3f68100674cdd0dfd0fa122
vt_score: 5/46 (10.9%)
scanner: Fortinet
virusname: W32/Yakes.B!tr
url: http://img.pa-bandung.go.id/inc/1.exe
recent: up
response: alive
ip: 207.45.187.10
as: AS36444, AS2828
review: 207.45.187.10
domain: go.id
country: US
source: ARIN
email: abuse@acenet-inc.net
inetnum: 207.45.176.0 - 207.45.191.255
netname: ACENETMI
descr: ACENET, INC. ACENE 22005 Outer Drive Dearborn MI 48124
ns1: e.dns.id
ns2: d.dns.id
ns3: b.dns.id
ns4: f.dns.id
ns5: a.dns.id
]]> http://support.clean-mx.de/clean-mx/viruses?id=9288025 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9288025 2013-01-31T01:40:01+01:00 first: 1359592801
last: 0
md5: 9ff48a1523a0e0e5f9d7f355e7058e7e
virustotal: http://www.virustotal.com/latest-report.html?resource=9ff48a1523a0e0e5f9d7f355e7058e7e
vt_score: 16/36 (44.4%)
scanner: Avast
virusname: Win32:Rootkit-gen [Rtk]
url: http://img.pa-bandung.go.id/inc/2.exe
recent: up
response: alive
ip: 207.45.187.10
as: AS36444, AS2828
review: 207.45.187.10
domain: go.id
country: US
source: ARIN
email: abuse@acenet-inc.net
inetnum: 207.45.176.0 - 207.45.191.255
netname: ACENETMI
descr: ACENET, INC. ACENE 22005 Outer Drive Dearborn MI 48124
ns1: e.dns.id
ns2: d.dns.id
ns3: b.dns.id
ns4: f.dns.id
ns5: a.dns.id
]]> http://support.clean-mx.de/clean-mx/viruses?id=9286225 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9286225 2013-01-30T22:40:05+01:00 first: 1359582005
last: 0
md5: 669afcf28dbc3097ccd3f35b70df243f
virustotal: http://www.virustotal.com/latest-report.html?resource=669afcf28dbc3097ccd3f35b70df243f
vt_score: 3/35 (8.6%)
scanner: Fortinet
virusname: W32/Injector.YMS!tr
url: http://74.208.185.227/ev.exe
recent: up
response: alive
ip: 74.208.185.227
as: AS8560
review: 74.208.185.227
domain: 74.208.185.227
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9286224 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9286224 2013-01-30T22:40:05+01:00 first: 1359582005
last: 0
md5: 36638585a0844fd7bbb0ef08436aa499
virustotal: http://www.virustotal.com/latest-report.html?resource=36638585a0844fd7bbb0ef08436aa499
vt_score: 5/36 (13.9%)
scanner: AVG
virusname: Suspicion: unknown virus
url: http://cateringatlanta.org/images.php?image=IMG0540255.JPG
recent: up
response: alive
ip: 74.208.185.227
as: AS8560
review: 74.208.185.227
domain: cateringatlanta.org
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1: ns51.1and1.com
ns2: ns52.1and1.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9286223 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9286223 2013-01-30T22:40:05+01:00 first: 1359582005
last: 0
md5: e72381515f60d9a50682daf717c6c096
virustotal: http://www.virustotal.com/latest-report.html?resource=e72381515f60d9a50682daf717c6c096
vt_score: 3/36 (8.3%)
scanner: avira
virusname: TR/Dropper.Gen
url: http://cateringatlanta.org/b.exe
recent: up
response: alive
ip: 74.208.185.227
as: AS8560
review: 74.208.185.227
domain: cateringatlanta.org
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1: ns51.1and1.com
ns2: ns52.1and1.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9278883 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9278883 2013-01-30T13:40:14+01:00 first: 1359549614
last: 0
md5: 212ed115e3880dd24329894e9829547b
virustotal: http://www.virustotal.com/latest-report.html?resource=212ed115e3880dd24329894e9829547b
vt_score: 3/46 (6.5%)
scanner: Fortinet
virusname: W32/Zbot.ANQ!tr
url: http://www.fancy-dress-party.co.uk/b.exe
recent: up
response: alive
ip: 212.227.158.179
as: AS8560
review: 212.227.158.179
domain: fancy-dress-party.co.uk
country: DE
source: RIPE
email: abuse@1and1.com
inetnum: 212.227.144.0 - 212.227.159.255
netname: SCHLUND-CUSTOMERS
descr: 1&1 Internet AGNCC#1999110113
ns1: ns67.1and1.co.uk
ns2: ns68.1and1.co.uk
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9278882 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9278882 2013-01-30T13:40:14+01:00 first: 1359549614
last: 0
md5: 46395459a99bdaa95d69761f5d131ca8
virustotal: http://www.virustotal.com/latest-report.html?resource=46395459a99bdaa95d69761f5d131ca8
vt_score: 2/36 (5.6%)
scanner: Fortinet
virusname: W32/Zbot.ANQ!tr
url: http://www.fancy-dress-party.co.uk/IMG0540255-JPG.scr
recent: up
response: alive
ip: 212.227.158.179
as: AS8560
review: 212.227.158.179
domain: fancy-dress-party.co.uk
country: DE
source: RIPE
email: abuse@1and1.com
inetnum: 212.227.144.0 - 212.227.159.255
netname: SCHLUND-CUSTOMERS
descr: 1&1 Internet AGNCC#1999110113
ns1: ns67.1and1.co.uk
ns2: ns68.1and1.co.uk
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9278881 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9278881 2013-01-30T13:40:14+01:00 first: 1359549614
last: 0
md5: 15349a4988b35130b2e7ee711c2da87a
virustotal: http://www.virustotal.com/latest-report.html?resource=15349a4988b35130b2e7ee711c2da87a
vt_score: 2/36 (5.6%)
scanner: Fortinet
virusname: W32/Zbot.ANQ!tr
url: http://www.fancy-dress-party.co.uk/s.exe
recent: up
response: alive
ip: 212.227.158.179
as: AS8560
review: 212.227.158.179
domain: fancy-dress-party.co.uk
country: DE
source: RIPE
email: abuse@1and1.com
inetnum: 212.227.144.0 - 212.227.159.255
netname: SCHLUND-CUSTOMERS
descr: 1&1 Internet AGNCC#1999110113
ns1: ns67.1and1.co.uk
ns2: ns68.1and1.co.uk
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9278801 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9278801 2013-01-30T09:43:11+01:00 first: 1359535391
last: 0
md5: 357a498235180ff5edadff2cfc645328
virustotal: http://www.virustotal.com/latest-report.html?resource=357a498235180ff5edadff2cfc645328
vt_score: 33/46 (71.7%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Lyposit
url: http://dawkins.sexyi.am/xxxx.exe
recent: up
response: alive
ip: 31.170.166.183
as: AS47583
review: 31.170.166.183
domain: sexyi.am
country: US
source: RIPE
email: abuse@main-hosting.com
inetnum: 31.170.166.0 - 31.170.167.255
netname: MAIN-HOSTING-SERVERS
descr: Main Hosting ServersMAIN HOSTING US
ns1: ns4.1freehosting.com
ns2: ns1.1freehosting.com
ns3: ns2.1freehosting.com
ns4: ns3.1freehosting.com
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9274083 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9274083 2013-01-30T01:40:08+01:00 first: 1359506408
last: 0
md5: aced22676098abac610167a543bf5369
virustotal: http://www.virustotal.com/latest-report.html?resource=aced22676098abac610167a543bf5369
vt_score: 7/46 (15.2%)
scanner: AntiVir
virusname: TR/Downloader.Gen8
url: http://aggeymin.ru/links/1.php?ayq=33:2v:1h:2w:1m&mntt=1j:1n:1m:1l:1m:2w:31:1j:1m:1g&eghf=1i&uodoskx=padzflh&knrezehi=vkyuabri
recent: up
response: alive
ip: 82.221.96.225
as: AS30818
review: 82.221.96.225
domain: aggeymin.ru
country: IS
source: RIPE
email: abuse@skyrr.is
inetnum: 82.221.0.0 - 82.221.255.255
netname: IS-SKYRR-20031211
descr: PROVIDER Local RegistrySkyrr hfIS-SKYRR-NET
ns1: ns1.aggeymin.ru
ns2: ns4.aggeymin.ru
ns3: ns5.aggeymin.ru
ns4: ns6.aggeymin.ru
ns5: ns3.aggeymin.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=9273223 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9273223 2013-01-30T00:40:25+01:00 first: 1359502825
last: 0
md5: df1c359c9e1e578a0c924cc3718f4de2
virustotal: http://www.virustotal.com/latest-report.html?resource=df1c359c9e1e578a0c924cc3718f4de2
vt_score: 13/46 (28.3%)
scanner: avira
virusname: TR/Dropper.Gen
url: http://soduvnec.ru/madload.exe
recent: up
response: alive
ip: 31.223.211.119
as: AS21107
review: 89.176.152.165
domain: soduvnec.ru
country: CZ
source: RIPE
email: abuse@mistral.cz
inetnum: 31.223.208.0 - 31.223.223.255
netname: UPC-BRNO-XI
descr: UPC Ceska republika, a.s.
ns1: ns1.soduvnec.ru
ns2: ns4.soduvnec.ru
ns3: ns2.soduvnec.ru
ns4: ns6.soduvnec.ru
ns5: ns5.soduvnec.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=9273222 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9273222 2013-01-30T00:40:25+01:00 first: 1359502825
last: 0
md5: e7baa39d480a2859ca6257a09fce23ab
virustotal: http://www.virustotal.com/latest-report.html?resource=e7baa39d480a2859ca6257a09fce23ab
vt_score: 11/46 (23.9%)
scanner: avira
virusname: TR/Crypt.XPACK.Gen
url: http://ziarul-obiectiv.ro/idfsuwer.exe
recent: up
response: alive
ip: 89.42.217.243
as: AS5606
review: 89.42.217.243
domain: ziarul-obiectiv.ro
country: ro
source: RIPE
email: abuse@romarg.com
inetnum: 89.42.216.0 - 89.42.223.255
netname: SC-ROMARG-SRL
descr: ROMARG SRL-----------------------------ROMARG | The Hosting Provider-----------------------------Str. Transilvaniei, nr. 28Brasov Brasov Romania
ns1: ns3.whmpanels.ro
ns2: ns2.whmpanels.ro
ns3: ns1.whmpanels.ro
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9272187 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9272187 2013-01-29T23:40:13+01:00 first: 1359499213
last: 0
md5: 88cf8e9c36ea8fcb3eb9c1fb76f87cdc
virustotal: http://www.virustotal.com/latest-report.html?resource=88cf8e9c36ea8fcb3eb9c1fb76f87cdc
vt_score: 21/36 (58.3%)
scanner: clamav
virusname: Win.Trojan.5600
url: http://img.pa-bandung.go.id/inc/22.exe
recent: up
response: alive
ip: 207.45.187.10
as: AS36444, AS2828
review: 207.45.187.10
domain: go.id
country: US
source: ARIN
email: abuse@acenet-inc.net
inetnum: 207.45.176.0 - 207.45.191.255
netname: ACENETMI
descr: ACENET, INC. ACENE 22005 Outer Drive Dearborn MI 48124
ns1: b.dns.id
ns2: f.dns.id
ns3: d.dns.id
ns4: g.dns.id
ns5: c.dns.id
]]> http://support.clean-mx.de/clean-mx/viruses?id=9272186 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9272186 2013-01-29T23:40:13+01:00 first: 1359499213
last: 0
md5: 05a698a5f1c865619538fdc4e6e53852
virustotal: http://www.virustotal.com/latest-report.html?resource=05a698a5f1c865619538fdc4e6e53852
vt_score: 16/36 (44.4%)
scanner: AVG
virusname: BackDoor.Generic16.BDRE
url: http://img.pa-bandung.go.id/inc/33.exe
recent: up
response: alive
ip: 207.45.187.10
as: AS36444, AS2828
review: 207.45.187.10
domain: go.id
country: US
source: ARIN
email: abuse@acenet-inc.net
inetnum: 207.45.176.0 - 207.45.191.255
netname: ACENETMI
descr: ACENET, INC. ACENE 22005 Outer Drive Dearborn MI 48124
ns1: b.dns.id
ns2: f.dns.id
ns3: d.dns.id
ns4: g.dns.id
ns5: c.dns.id
]]> http://support.clean-mx.de/clean-mx/viruses?id=9265405 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9265405 2013-01-29T16:40:08+01:00 first: 1359474008
last: 0
md5: 840c55a041c7f5abbf26925d72144060
virustotal: http://www.virustotal.com/latest-report.html?resource=840c55a041c7f5abbf26925d72144060
vt_score: 6/45 (13.3%)
scanner: Fortinet
virusname: W32/Zbot.ANQ!tr
url: http://205.196.120.91/b5vf53qq95sg/ekl6ol34qwym3km/s.exe
recent: up
response: alive
ip: 205.196.120.91
as: AS174
review: 205.196.120.91
domain: 205.196.120.91
country: US
source: ARIN
email: derek@linkrightllc.com
inetnum: 205.196.120.0 - 205.196.123.255
netname: LINKRIGHT-HOU-1
descr: Link Right, LLC LINKR-7 21175 State Highway 249 Suite 199 Houston TX 77070
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9264258 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9264258 2013-01-29T16:00:06+01:00 first: 1359471606
last: 0
md5: b993c2f150e23e83fe73412a465146a2
virustotal: http://www.virustotal.com/latest-report.html?resource=b993c2f150e23e83fe73412a465146a2
vt_score: 6/46 (13%)
scanner: Fortinet
virusname: W32/Clicker.LOL!tr
url: http://myfantasyroom.gr/4Uam7t.exe
recent: up
response: alive
ip: 209.172.50.105
as: AS32613
review: 209.172.50.105
domain: myfantasyroom.gr
country: CA
source: ARIN
email: abuse@noc.privatedns.com
inetnum: 209.172.32.0 - 209.172.63.255
netname: IWEB-BLK-01
descr: iWeb Technologies Inc. GIT-20 20, place du Commerce Montreal QC H3E-1Z6
ns1: ns305.superweb.gr
ns2: ns304.superweb.gr
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9264141 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9264141 2013-01-29T15:40:03+01:00 first: 1359470403
last: 0
md5: ab87c5a22a237f25038cd3eb2f503976
virustotal: http://www.virustotal.com/latest-report.html?resource=ab87c5a22a237f25038cd3eb2f503976
vt_score: 14/46 (30.4%)
scanner: AntiVir
virusname: TR/Spy.Banker.1952256.2
url: http://213.251.187.162/~kift/gbss.jpg
recent: up
response: alive
ip: 213.251.187.162
as: AS16276
review: 213.251.187.162
domain: 213.251.187.162
country: FR
source: RIPE
email: abuse@ovh.net
inetnum: 213.251.184.0 - 213.251.187.255
netname: OVH
descr: OVH SASDedicated Servers (2006)http
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9264140 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9264140 2013-01-29T15:40:03+01:00 first: 1359470403
last: 0
md5: fe446c3364c6708c3301a97a08bc9356
virustotal:
vt_score: 18/46 (39.1%)
scanner: AntiVir
virusname: PCK/UltraProt
url: http://213.251.187.162/~kift/neo.jpg
recent: up
response: alive
ip: 213.251.187.162
as: AS16276
review: 213.251.187.162
domain: 213.251.187.162
country: FR
source: RIPE
email: abuse@ovh.net
inetnum: 213.251.184.0 - 213.251.187.255
netname: OVH
descr: OVH SASDedicated Servers (2006)http
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9263913 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9263913 2013-01-29T14:50:15+01:00 first: 1359467415
last: 0
md5: 9b7428713d01d3bdecf2dc4a127745fa
virustotal: http://www.virustotal.com/latest-report.html?resource=9b7428713d01d3bdecf2dc4a127745fa
vt_score: 20/45 (44.4%)
scanner: avira
virusname: TR/Dldr.Delphi.Gen
url: http://213.251.187.162/~kift/Comprovante_Do_Deposito.cpl
recent: up
response: alive
ip: 213.251.187.162
as: AS16276
review: 213.251.187.162
domain: 213.251.187.162
country: FR
source: RIPE
email: abuse@ovh.net
inetnum: 213.251.184.0 - 213.251.187.255
netname: OVH
descr: OVH SASDedicated Servers (2006)http
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9263912 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9263912 2013-01-29T14:50:14+01:00 first: 1359467414
last: 0
md5: 9b7428713d01d3bdecf2dc4a127745fa
virustotal: http://www.virustotal.com/latest-report.html?resource=9b7428713d01d3bdecf2dc4a127745fa
vt_score: 39/46 (84.8%)
scanner: avira
virusname: TR/Dldr.Delphi.Gen
url: http://213.251.187.162/~kift/Instalador_Modulo_de_seguranca_BB.cpl
recent: up
response: alive
ip: 213.251.187.162
as: AS16276
review: 213.251.187.162
domain: 213.251.187.162
country: FR
source: RIPE
email: abuse@ovh.net
inetnum: 213.251.184.0 - 213.251.187.255
netname: OVH
descr: OVH SASDedicated Servers (2006)http
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9260794 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9260794 2013-01-29T11:00:12+01:00 first: 1359453612
last: 0
md5: 969c3997f40eb5fe6c4c0fb65dfabaef
virustotal: http://www.virustotal.com/latest-report.html?resource=969c3997f40eb5fe6c4c0fb65dfabaef
vt_score: 4/45 (8.9%)
scanner: Ikarus
virusname: Trojan.Win32.Locotout
url: http://royjamesinsurance.com/images/TcpAdaptorService_b2.exe
recent: up
response: alive
ip: 66.59.64.114
as: AS11551
review: 66.59.64.114
domain: royjamesinsurance.com
country: US
source: ARIN
email: abuse@frontline.net
inetnum: 66.59.64.0 - 66.59.95.255
netname: SINEP-BLOCK-2
descr: Sinep Corporation SINEP-1 PO Box 98 Orangeburg NY 10962
ns1: dns02.frontline.net
ns2: dns03.frontline.net
ns3: dns01.frontline.net
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9257125 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9257125 2013-01-29T01:40:04+01:00 first: 1359420004
last: 0
md5: d41d8cd98f00b204e9800998ecf8427e
virustotal: http://www.virustotal.com/latest-report.html?resource=bb89f0c48c36d04380c9c3ba24efd285
vt_score: 26/36 (72.2%)
scanner: avira
virusname: JS/RunForest.C.1
url: http://84.32.116.143/mag
recent: up
response: alive
ip: 84.32.116.143
as: AS33922
review: 84.32.116.143
domain: 84.32.116.143
country: LT
source: RIPE
email: admin@ntt.lt
inetnum: 84.32.116.0 - 84.32.119.255
netname: NTT_DATA_ROVENTA_NET
descr: NTT DATA Service for Roventa partner
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9257124 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9257124 2013-01-29T01:40:04+01:00 first: 1359420004
last: 0
md5: 0bf2101859e0d4e58383850f7d4149a7
virustotal:
vt_score: 12/45 (26.7%)
scanner: AVG
virusname: BackDoor.Generic16.BDIP
url: http://84.32.116.144/mag
recent: up
response: alive
ip: 84.32.116.144
as: AS33922
review: 84.32.116.144
domain: 84.32.116.144
country: LT
source: RIPE
email: admin@ntt.lt
inetnum: 84.32.116.0 - 84.32.119.255
netname: NTT_DATA_ROVENTA_NET
descr: NTT DATA Service for Roventa partner
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9254858 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9254858 2013-01-28T23:40:18+01:00 first: 1359412818
last: 0
md5: 309884d6d51f4f9c6c48cb95d5538db1
virustotal: http://www.virustotal.com/latest-report.html?resource=309884d6d51f4f9c6c48cb95d5538db1
vt_score: 12/36 (33.3%)
scanner: AVG
virusname: Crypt_s.AFQ
url: http://abacaboffice.com/de.exe
recent: up
response: alive
ip: 203.170.82.97
as: AS38719
review: 203.170.82.97
domain: abacaboffice.com
country: AU
source: APNIC
email: admin@syra.com.au
inetnum: 203.170.80.0 - 203.170.87.255
netname: Syra Networks
descr: Internet Services NetworkGlobal Telecommunications
ns1: ns4.syra.net.au
ns2: ns5.syra.net.au
ns3: ns6.syra.net.au
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9244278 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9244278 2013-01-28T12:40:03+01:00 first: 1359373203
last: 0
md5: eb9d8f7574b70c208ac285e9012c7f27
virustotal: http://www.virustotal.com/latest-report.html?resource=eb9d8f7574b70c208ac285e9012c7f27
vt_score: 10/36 (27.8%)
scanner: eSafe
virusname: Suspicious File
url: http://help-mastera.ru/wp-content/themes/delicate/cache/VideoXXXKarinaB.exe
recent: up
response: alive
ip: 94.75.212.209
as: AS16265
review: 94.75.212.209
domain: help-mastera.ru
country: NL
source: RIPE
email: abuse@leaseweb.com
inetnum: 94.75.192.0 - 94.75.255.255
netname: NL-LEASEWEB-20080724
descr: LeaseWeb B.V.
ns1: ns2.m-hoster-4.ru
ns2: ns1.m-hoster-4.ru
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9243312 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9243312 2013-01-28T10:50:04+01:00 first: 1359366604
last: 0
md5: 5f0a638f69bb9b5b0d7010d2e1a3bf1e
virustotal: http://www.virustotal.com/latest-report.html?resource=5f0a638f69bb9b5b0d7010d2e1a3bf1e
vt_score: 2/36 (5.6%)
scanner: Fortinet
virusname: W32/Zbot.ANQ!tr
url: http://205.196.121.197/98zy56a6qzlg/kf2lhk53bpfem63/go.exe
recent: up
response: alive
ip: 205.196.121.197
as: AS174
review: 205.196.121.197
domain: 205.196.121.197
country: US
source: ARIN
email: derek@linkrightllc.com
inetnum: 205.196.120.0 - 205.196.123.255
netname: LINKRIGHT-HOU-1
descr: Link Right, LLC LINKR-7 21175 State Highway 249 Suite 199 Houston TX 77070
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9226985 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9226985 2013-01-27T13:00:08+01:00 first: 1359288008
last: 0
md5: 0c959e946329574b1aa256d773a1164d
virustotal: http://www.virustotal.com/latest-report.html?resource=b19f4261eb8ac80b3fa30545da134ef8
vt_score: 10/46 (21.7%)
scanner: undef
virusname: unknown_html
url: http://205.196.123.64/ky3v1afdsftg/cnxj7rnqzz6ljhk/go.exe
recent: up
response: alive
ip: 205.196.123.64
as: AS174
review: 205.196.123.64
domain: 205.196.123.64
country: US
source: ARIN
email: derek@linkrightllc.com
inetnum: 205.196.120.0 - 205.196.123.255
netname: LINKRIGHT-HOU-1
descr: Link Right, LLC LINKR-7 21175 State Highway 249 Suite 199 Houston TX 77070
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9226658 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9226658 2013-01-27T12:40:55+01:00 first: 1359286855
last: 0
md5: 281f822210e49ffb1bcd30f48f34812f
virustotal: http://www.virustotal.com/latest-report.html?resource=b0bcd05455b7f331ad2e9a6855aad7fe
vt_score: 6/36 (16.7%)
scanner: undef
virusname: unknown_html
url: http://205.196.121.6/d1tyzieqk6vg/grtxads9xsopnx2/ff.exe
recent: up
response: alive
ip: 205.196.121.6
as: AS174
review: 205.196.121.6
domain: 205.196.121.6
country: US
source: ARIN
email: derek@linkrightllc.com
inetnum: 205.196.120.0 - 205.196.123.255
netname: LINKRIGHT-HOU-1
descr: Link Right, LLC LINKR-7 21175 State Highway 249 Suite 199 Houston TX 77070
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9224337 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9224337 2013-01-27T09:40:03+01:00 first: 1359276003
last: 0
md5: 9769de70ffa1a8eafef224b1ac3e41c8
virustotal: http://www.virustotal.com/latest-report.html?resource=a3cea3392b8b5c8cc664f740494a7321
vt_score: 6/35 (17.1%)
scanner: undef
virusname: unknown_html
url: http://webcombo.ru/wp-content/uploads/soft.exe
recent: up
response: alive
ip: 5.9.112.221
as: AS24940
review: 5.9.112.221
domain: webcombo.ru
country: DE
source: RIPE
email: abuse@hetzner.de
inetnum: 5.9.0.0 - 5.9.255.255
netname: DE-HETZNER-20120425
descr: Hetzner Online AG
ns1: ns3.fastvps.ru
ns2: ns4.fastvps.ru
ns3: ns1.fastvps.ru
ns4: ns2.fastvps.ru
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9218721 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9218721 2013-01-27T03:00:03+01:00 first: 1359252003
last: 0
md5: 2e05f8e6819ec3376c3569cd6f8fec5c
virustotal: http://www.virustotal.com/latest-report.html?resource=b19f4261eb8ac80b3fa30545da134ef8
vt_score: 10/36 (27.8%)
scanner: undef
virusname: unknown_html
url: http://199.91.152.190/bl7gg3829gdg/cnxj7rnqzz6ljhk/go.exe
recent: up
response: alive
ip: 199.91.152.190
as: AS46179
review: 199.91.152.190
domain: 199.91.152.190
country: US
source: ARIN
email: noc@mediafire.com
inetnum: 199.91.152.0 - 199.91.159.255
netname: MEDIAFIRE-IP-DFW-01
descr: MediaFire, LLC ML-4 330 Rayford Rd. #157 Spring TX 77386
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9217893 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9217893 2013-01-27T01:40:02+01:00 first: 1359247202
last: 0
md5: d41d8cd98f00b204e9800998ecf8427e
virustotal: http://www.virustotal.com/latest-report.html?resource=bb89f0c48c36d04380c9c3ba24efd285
vt_score: 26/36 (72.2%)
scanner: avira
virusname: JS/RunForest.C.1
url: http://84.32.116.144/gig
recent: up
response: alive
ip: 84.32.116.144
as: AS33922
review: 84.32.116.144
domain: 84.32.116.144
country: LT
source: RIPE
email: admin@ntt.lt
inetnum: 84.32.116.0 - 84.32.119.255
netname: NTT_DATA_ROVENTA_NET
descr: NTT DATA Service for Roventa partner
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9217892 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9217892 2013-01-27T01:40:02+01:00 first: 1359247202
last: 0
md5: d41d8cd98f00b204e9800998ecf8427e
virustotal: http://www.virustotal.com/latest-report.html?resource=bb89f0c48c36d04380c9c3ba24efd285
vt_score: 26/36 (72.2%)
scanner: avira
virusname: JS/RunForest.C.1
url: http://84.32.116.144/sma
recent: up
response: alive
ip: 84.32.116.144
as: AS33922
review: 84.32.116.144
domain: 84.32.116.144
country: LT
source: RIPE
email: admin@ntt.lt
inetnum: 84.32.116.0 - 84.32.119.255
netname: NTT_DATA_ROVENTA_NET
descr: NTT DATA Service for Roventa partner
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9216476 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9216476 2013-01-26T23:40:06+01:00 first: 1359240006
last: 0
md5: d6d0c73d619af7b8cd3590cc84933592
virustotal: http://www.virustotal.com/latest-report.html?resource=22541fb5cf79c2dd7cbbdc90b82a25d7
vt_score: 5/36 (13.9%)
scanner: undef
virusname: unknown_html
url: http://199.91.154.82/rk5hhtdop6wg/klg5k1gp9v7sdsc/b.exe
recent: up
response: alive
ip: 199.91.154.82
as: AS46179
review: 199.91.154.82
domain: 199.91.154.82
country: US
source: ARIN
email: noc@mediafire.com
inetnum: 199.91.152.0 - 199.91.159.255
netname: MEDIAFIRE-IP-DFW-01
descr: MediaFire, LLC ML-4 330 Rayford Rd. #157 Spring TX 77386
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9213002 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9213002 2013-01-26T19:40:06+01:00 first: 1359225606
last: 0
md5: d41d8cd98f00b204e9800998ecf8427e
virustotal: http://www.virustotal.com/latest-report.html?resource=bb89f0c48c36d04380c9c3ba24efd285
vt_score: 26/36 (72.2%)
scanner: avira
virusname: JS/RunForest.C.1
url: http://wowrizep.ru/shem001.exe
recent: up
response: alive
ip: 212.28.83.102
as: AS15836
review: undef
domain: wowrizep.ru
country: MD
source: ARIN
email: cert.mtc@moldtelecom.md
inetnum: 212.28.64.0 - 212.28.95.255
netname: MOLDTELECOM-NET
descr: JSC "Moldtelecom" S.A.Chisinau, Moldova
ns1: ns2.wowrizep.ru
ns2: ns1.wowrizep.ru
ns3: ns4.wowrizep.ru
ns4: ns5.wowrizep.ru
ns5: ns6.wowrizep.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=9209092 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9209092 2013-01-26T14:40:02+01:00 first: 1359207602
last: 0
md5: c3b15db374d0fd41adbbc9c8137d5168
virustotal: http://www.virustotal.com/latest-report.html?resource=55f1a33b5115c07f77155fbc3650d29a
vt_score: 5/42 (11.9%)
scanner: Jiangmin
virusname: Trojan/StartPage.bim
url: http://tsunami-rt.com/images/stories/backup.php?ncrnd=EyTKTQgHDc
recent: up
response: alive
ip: 91.200.112.85
as: AS43864
review: 91.200.112.85
domain: tsunami-rt.com
country: UA
source: RIPE
email: contact@integra-media.com
inetnum: 91.200.112.0 - 91.200.115.255
netname: INTEGRA-MEDIA-NET
descr: Integra-Media LtdIntegra-Media LtdIntegra-Media LtdIntegra-Media Ltd
ns1: ns1.h07.hvosting.ua
ns2: ns2.h07.hvosting.ua
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9206735 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9206735 2013-01-25T19:50:03+01:00 first: 1359139803
last: 0
md5: d41d8cd98f00b204e9800998ecf8427e
virustotal: http://www.virustotal.com/latest-report.html?resource=bb89f0c48c36d04380c9c3ba24efd285
vt_score: 26/36 (72.2%)
scanner: avira
virusname: JS/RunForest.C.1
url: http://bbs.xiaojuren.net/source/language/chess.exe
recent: up
response: alive
ip: 210.51.161.165
as: AS9929
review: undef
domain: xiaojuren.net
country: CN
source: ARIN
email: abuse@cnc-noc.net
inetnum: 210.51.160.0 - 210.51.175.255
netname: CNC-BJ-IDC2
descr: Beijing YiZhuang IDC of China NetcomCNC Group CncNet
ns1: dns1.iidns.com
ns2: dns5.iidns.com
ns3: dns6.iidns.com
ns4: dns2.iidns.com
ns5: dns3.iidns.com
]]> http://support.clean-mx.de/clean-mx/viruses?id=9198706 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9198706 2013-01-24T18:40:18+01:00 first: 1359049218
last: 0
md5:
virustotal: http://www.virustotal.com/latest-report.html?resource=626aaedb2fd3cbeabfdc5b8f7a6855c5
vt_score: 17/40 (42.5%)
scanner: avira
virusname: TR/PSW.37888.A
url: http://www.lytess.com/nnn.exe
recent: up
response: alive
ip: 212.227.134.53
as: AS8560
review: 82.165.162.55
domain: lytess.com
country: DE
source: RIPE
email: abuse@1and1.com
inetnum: 212.227.134.0 - 212.227.143.255
netname: DE-SCHLUND-20030806
descr: 1&1 Internet AGSCHLUND-PA-4
ns1: ns62.1and1.fr
ns2: ns61.1and1.fr
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9186142 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9186142 2013-01-23T10:40:18+01:00 first: 1358934018
last: 0
md5: d41d8cd98f00b204e9800998ecf8427e
virustotal: http://www.virustotal.com/latest-report.html?resource=bb89f0c48c36d04380c9c3ba24efd285
vt_score: 26/36 (72.2%)
scanner: avira
virusname: JS/RunForest.C.1
url: http://sonhodoseu.dominiotemporario.com/ze/Instal.teaz
recent: up
response: alive
ip: 187.17.98.153
as: AS15201
review: undef
domain: dominiotemporario.com
country: BR
source: ARIN
email: l-registrobr-uol@corp.uol.com.br
inetnum: 187.17.64.0 - 187.17.127.255
netname: 001.109.184/0001-95
descr: Universo Online S.A.
ns1: ns2.host.uol.com.br
ns2: ns1.host.uol.com.br
ns3: ns3.host.uol.com.br
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9186141 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9186141 2013-01-23T10:40:18+01:00 first: 1358934018
last: 0
md5: d41d8cd98f00b204e9800998ecf8427e
virustotal: http://www.virustotal.com/latest-report.html?resource=bb89f0c48c36d04380c9c3ba24efd285
vt_score: 26/36 (72.2%)
scanner: avira
virusname: JS/RunForest.C.1
url: http://ablap.com.br/wp-content/uploads/2011/03/mensagem.com
recent: up
response: alive
ip: 187.45.241.55
as: AS27715
review: 187.45.241.55
domain: ablap.com.br
country: BR
source: LACNIC
email: regcom@locaweb.com.br
inetnum: 187.45.224.0 - 187.45.255.255
netname: 002.351.877/0001-52
descr: Locaweb Serviços de Internet S/A
ns1: ns3.locaweb.com.br
ns2: ns2.locaweb.com.br
ns3: ns1.locaweb.com.br
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9159702 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9159702 2013-01-21T14:40:06+01:00 first: 1358775606
last: 0
md5: c52a073c01299e4cef0e641959360224
virustotal:
vt_score: 9/36 (25%)
scanner: undef
virusname: unknown_exe
url: http://cheapsunday.ru/wp-content/plugins/akismet/soft.exe
recent: up
response: alive
ip: 37.140.192.17
as: AS39134
review: 37.140.192.17
domain: cheapsunday.ru
country: RU
source: RIPE
email: abuse@reg.ru
inetnum: 37.140.192.0 - 37.140.195.255
netname: REGRU-NETWORK
descr: Reg.Ru Hosting
ns1: ns1.hosting.reg.ru
ns2: ns2.hosting.reg.ru
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9157982 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9157982 2013-01-21T12:00:12+01:00 first: 1358766012
last: 0
md5: d41d8cd98f00b204e9800998ecf8427e
virustotal: http://www.virustotal.com/latest-report.html?resource=bb89f0c48c36d04380c9c3ba24efd285
vt_score: 26/36 (72.2%)
scanner: avira
virusname: JS/RunForest.C.1
url: http://208.131.138.133/links/came_broadcasting_taking-various.php?zrlqf=1k:33:1m:1m:1n&jnk=1m:2w:1n:1k:1l:1n:33:1g:1m:1o&uhbrip=1i&illk=saoiw&xocxbwqv=rhx
recent: up
response: alive
ip: 208.131.138.133
as: AS29854
review: 208.131.138.133
domain: 208.131.138.133
country: US
source: ARIN
email: noc@westhost.com
inetnum: 208.131.128.0 - 208.131.159.255
netname: WESTHOST-NOC
descr: WestHost, Inc. WESTHO 164 N Spring Creek Pkwy Providence UT 84332
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9157981 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9157981 2013-01-21T12:00:11+01:00 first: 1358766011
last: 0
md5: d41d8cd98f00b204e9800998ecf8427e
virustotal: http://www.virustotal.com/latest-report.html?resource=bb89f0c48c36d04380c9c3ba24efd285
vt_score: 26/36 (72.2%)
scanner: avira
virusname: JS/RunForest.C.1
url: http://208.131.138.133/links/came_broadcasting_taking-various.php?zfsrkp=1k:33:1m:1m:1n&bjtzmb=33:1n:1h:1f:1j:1h:1i:1n:1j:1h&rgpevb=1i&jgp=ljaof&soloi=siwlg
recent: up
response: alive
ip: 208.131.138.133
as: AS29854
review: 208.131.138.133
domain: 208.131.138.133
country: US
source: ARIN
email: noc@westhost.com
inetnum: 208.131.128.0 - 208.131.159.255
netname: WESTHOST-NOC
descr: WestHost, Inc. WESTHO 164 N Spring Creek Pkwy Providence UT 84332
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9157435 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9157435 2013-01-21T10:40:09+01:00 first: 1358761209
last: 0
md5: d41d8cd98f00b204e9800998ecf8427e
virustotal: http://www.virustotal.com/latest-report.html?resource=bb89f0c48c36d04380c9c3ba24efd285
vt_score: 26/36 (72.2%)
scanner: avira
virusname: JS/RunForest.C.1
url: http://ald-facebook.co.uk/operations/outer_band_remote.php?ahsnjiy=33:2v:1h:2w:1m&fimh=2v:1h:1m:1g:1o:32:1i:30:2w:30&mztqf=1i&ito=ptk&umih=twljw
recent: up
response: alive
ip: 192.210.142.20
as: AS36352
review: undef
domain: ald-facebook.co.uk
country: BG
source: ARIN
email: abarakov94@gmail.com
inetnum: 192.210.142.0 - 192.210.142.63
netname: CC-192-210-142-0-26
descr: LiquidSolutions LIQUI-50 Mladost, block.3, vhod B, ap.10 Troyan NA 5600
ns1: ns0.lcn.com
ns2: ns1.lcn.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9154735 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9154735 2013-01-21T00:40:03+01:00 first: 1358725203
last: 0
md5: 890be8c33498693e813285dc063df399
virustotal: http://www.virustotal.com/latest-report.html?resource=fabfcd33ffc4ab7ce6e50ed7e3aa504f
vt_score: 26/36 (72.2%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Qhost
url: http://cheapsunday.ru/wp-content/plugins/akismet/akismeet.php
recent: up
response: alive
ip: 37.140.192.17
as: AS39134
review: 37.140.192.17
domain: cheapsunday.ru
country: RU
source: RIPE
email: abuse@reg.ru
inetnum: 37.140.192.0 - 37.140.195.255
netname: REGRU-NETWORK
descr: Reg.Ru Hosting
ns1: ns2.hosting.reg.ru
ns2: ns1.hosting.reg.ru
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9149891 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9149891 2013-01-20T12:40:09+01:00 first: 1358682009
last: 0
md5: d41d8cd98f00b204e9800998ecf8427e
virustotal: http://www.virustotal.com/latest-report.html?resource=bb89f0c48c36d04380c9c3ba24efd285
vt_score: 26/36 (72.2%)
scanner: avira
virusname: JS/RunForest.C.1
url: http://connecttome1.sytes.net/zpanel/bot.exe
recent: up
response: alive
ip: 5.135.179.88
as: AS16276
review: 195.22.26.231
domain: sytes.net
country: PT
source: RIPE
email: abuse@pt.clara.net
inetnum: 5.135.0.0 - 5.135.255.255
netname: ESOTERICA
descr: VIA NET.WORKS Portugal - Tecnologias de Informa,cao, SA(formerly Esoterica, SA)Lisboa, Portugal
ns1: nf1.no-ip.com
ns2: nf3.no-ip.com
ns3: nf2.no-ip.com
ns4: nf4.no-ip.com
ns5: nf5.no-ip.com
]]> http://support.clean-mx.de/clean-mx/viruses?id=9149890 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9149890 2013-01-20T12:40:09+01:00 first: 1358682009
last: 0
md5: d41d8cd98f00b204e9800998ecf8427e
virustotal: http://www.virustotal.com/latest-report.html?resource=bb89f0c48c36d04380c9c3ba24efd285
vt_score: 26/36 (72.2%)
scanner: avira
virusname: JS/RunForest.C.1
url: http://javadownload.sytes.net/new/bot.exe
recent: up
response: alive
ip: 5.135.179.88
as: AS16276
review: undef
domain: sytes.net
country: FR
source: ARIN
email: abuse@ovh.net
inetnum: 5.135.0.0 - 5.135.255.255
netname: FR-OVH-20120706
descr: Ovh Systems
ns1: nf1.no-ip.com
ns2: nf3.no-ip.com
ns3: nf2.no-ip.com
ns4: nf4.no-ip.com
ns5: nf5.no-ip.com
]]> http://support.clean-mx.de/clean-mx/viruses?id=9149358 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9149358 2013-01-20T11:40:06+01:00 first: 1358678406
last: 0
md5: d41d8cd98f00b204e9800998ecf8427e
virustotal: http://www.virustotal.com/latest-report.html?resource=bb89f0c48c36d04380c9c3ba24efd285
vt_score: 26/36 (72.2%)
scanner: avira
virusname: JS/RunForest.C.1
url: http://testpanel.sytes.net/scanner/uploads/3460.exe
recent: up
response: alive
ip: 5.135.179.88
as: AS16276
review: 195.22.26.231
domain: sytes.net
country: PT
source: RIPE
email: abuse@pt.clara.net
inetnum: 5.135.0.0 - 5.135.255.255
netname: ESOTERICA
descr: VIA NET.WORKS Portugal - Tecnologias de Informa,cao, SA(formerly Esoterica, SA)Lisboa, Portugal
ns1: nf2.no-ip.com
ns2: nf4.no-ip.com
ns3: nf3.no-ip.com
ns4: nf1.no-ip.com
ns5: nf5.no-ip.com
]]> http://support.clean-mx.de/clean-mx/viruses?id=9149357 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9149357 2013-01-20T11:40:05+01:00 first: 1358678405
last: 0
md5: d41d8cd98f00b204e9800998ecf8427e
virustotal: http://www.virustotal.com/latest-report.html?resource=bb89f0c48c36d04380c9c3ba24efd285
vt_score: 26/36 (72.2%)
scanner: avira
virusname: JS/RunForest.C.1
url: http://testpanel.sytes.net/scanner/uploads/Stub.exe
recent: up
response: alive
ip: 5.135.179.88
as: AS16276
review: 195.22.26.231
domain: sytes.net
country: PT
source: RIPE
email: abuse@pt.clara.net
inetnum: 5.135.0.0 - 5.135.255.255
netname: ESOTERICA
descr: VIA NET.WORKS Portugal - Tecnologias de Informa,cao, SA(formerly Esoterica, SA)Lisboa, Portugal
ns1: nf2.no-ip.com
ns2: nf4.no-ip.com
ns3: nf3.no-ip.com
ns4: nf1.no-ip.com
ns5: nf5.no-ip.com
]]> http://support.clean-mx.de/clean-mx/viruses?id=9149356 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9149356 2013-01-20T11:40:05+01:00 first: 1358678405
last: 0
md5: d41d8cd98f00b204e9800998ecf8427e
virustotal: http://www.virustotal.com/latest-report.html?resource=bb89f0c48c36d04380c9c3ba24efd285
vt_score: 26/36 (72.2%)
scanner: avira
virusname: JS/RunForest.C.1
url: http://testpanel.sytes.net/a.exe
recent: up
response: alive
ip: 5.135.179.88
as: AS16276
review: 195.22.26.231
domain: sytes.net
country: PT
source: RIPE
email: abuse@pt.clara.net
inetnum: 5.135.0.0 - 5.135.255.255
netname: ESOTERICA
descr: VIA NET.WORKS Portugal - Tecnologias de Informa,cao, SA(formerly Esoterica, SA)Lisboa, Portugal
ns1: nf2.no-ip.com
ns2: nf4.no-ip.com
ns3: nf3.no-ip.com
ns4: nf1.no-ip.com
ns5: nf5.no-ip.com
]]> http://support.clean-mx.de/clean-mx/viruses?id=9149355 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9149355 2013-01-20T11:40:05+01:00 first: 1358678405
last: 0
md5: d41d8cd98f00b204e9800998ecf8427e
virustotal: http://www.virustotal.com/latest-report.html?resource=bb89f0c48c36d04380c9c3ba24efd285
vt_score: 26/36 (72.2%)
scanner: avira
virusname: JS/RunForest.C.1
url: http://testpanel.sytes.net/pi.exe
recent: up
response: alive
ip: 5.135.179.88
as: AS16276
review: 195.22.26.231
domain: sytes.net
country: PT
source: RIPE
email: abuse@pt.clara.net
inetnum: 5.135.0.0 - 5.135.255.255
netname: ESOTERICA
descr: VIA NET.WORKS Portugal - Tecnologias de Informa,cao, SA(formerly Esoterica, SA)Lisboa, Portugal
ns1: nf2.no-ip.com
ns2: nf4.no-ip.com
ns3: nf3.no-ip.com
ns4: nf1.no-ip.com
ns5: nf5.no-ip.com
]]> http://support.clean-mx.de/clean-mx/viruses?id=9149354 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9149354 2013-01-20T11:40:05+01:00 first: 1358678405
last: 0
md5: d41d8cd98f00b204e9800998ecf8427e
virustotal: http://www.virustotal.com/latest-report.html?resource=bb89f0c48c36d04380c9c3ba24efd285
vt_score: 26/36 (72.2%)
scanner: avira
virusname: JS/RunForest.C.1
url: http://testpanel.sytes.net/v.exe
recent: up
response: alive
ip: 5.135.179.88
as: AS16276
review: 195.22.26.231
domain: sytes.net
country: PT
source: RIPE
email: abuse@pt.clara.net
inetnum: 5.135.0.0 - 5.135.255.255
netname: ESOTERICA
descr: VIA NET.WORKS Portugal - Tecnologias de Informa,cao, SA(formerly Esoterica, SA)Lisboa, Portugal
ns1: nf2.no-ip.com
ns2: nf4.no-ip.com
ns3: nf3.no-ip.com
ns4: nf1.no-ip.com
ns5: nf5.no-ip.com
]]> http://support.clean-mx.de/clean-mx/viruses?id=9149353 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9149353 2013-01-20T11:40:05+01:00 first: 1358678405
last: 0
md5: d41d8cd98f00b204e9800998ecf8427e
virustotal: http://www.virustotal.com/latest-report.html?resource=bb89f0c48c36d04380c9c3ba24efd285
vt_score: 26/36 (72.2%)
scanner: avira
virusname: JS/RunForest.C.1
url: http://testpanel.sytes.net/xxx.exe
recent: up
response: alive
ip: 5.135.179.88
as: AS16276
review: 195.22.26.231
domain: sytes.net
country: PT
source: RIPE
email: abuse@pt.clara.net
inetnum: 5.135.0.0 - 5.135.255.255
netname: ESOTERICA
descr: VIA NET.WORKS Portugal - Tecnologias de Informa,cao, SA(formerly Esoterica, SA)Lisboa, Portugal
ns1: nf2.no-ip.com
ns2: nf4.no-ip.com
ns3: nf3.no-ip.com
ns4: nf1.no-ip.com
ns5: nf5.no-ip.com
]]> http://support.clean-mx.de/clean-mx/viruses?id=9146038 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9146038 2013-01-19T22:50:02+01:00 first: 1358632202
last: 0
md5: d41d8cd98f00b204e9800998ecf8427e
virustotal: http://www.virustotal.com/latest-report.html?resource=bb89f0c48c36d04380c9c3ba24efd285
vt_score: 26/36 (72.2%)
scanner: avira
virusname: JS/RunForest.C.1
url: http://rolex1.serverthuis.nl/file/files/1.exe
recent: up
response: alive
ip: 178.63.123.217
as: AS24940
review: undef
domain: serverthuis.nl
country: DE
source: ARIN
email: abuse@hetzner.de
inetnum: 178.63.0.0 - 178.63.255.255
netname: DE-HETZNER-20100302
descr: Hetzner Online AG
ns1: ns1.serverthuis.com
ns2: ns4.serverthuis.com
ns3: ns2.serverthuis.com
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9146037 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9146037 2013-01-19T22:50:02+01:00 first: 1358632202
last: 0
md5: d41d8cd98f00b204e9800998ecf8427e
virustotal: http://www.virustotal.com/latest-report.html?resource=bb89f0c48c36d04380c9c3ba24efd285
vt_score: 26/36 (72.2%)
scanner: avira
virusname: JS/RunForest.C.1
url: http://rolex1.serverthuis.nl/file/files/2.exe
recent: up
response: alive
ip: 178.63.123.217
as: AS24940
review: undef
domain: serverthuis.nl
country: DE
source: ARIN
email: abuse@hetzner.de
inetnum: 178.63.0.0 - 178.63.255.255
netname: DE-HETZNER-20100302
descr: Hetzner Online AG
ns1: ns1.serverthuis.com
ns2: ns4.serverthuis.com
ns3: ns2.serverthuis.com
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9144605 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9144605 2013-01-19T18:40:03+01:00 first: 1358617203
last: 0
md5: d41d8cd98f00b204e9800998ecf8427e
virustotal: http://www.virustotal.com/latest-report.html?resource=bb89f0c48c36d04380c9c3ba24efd285
vt_score: 26/36 (72.2%)
scanner: avira
virusname: JS/RunForest.C.1
url: http://fetolbus.ru/calc.exe
recent: up
response: alive
ip: 76.85.185.136
as: AS7757
review: undef
domain: fetolbus.ru
country: BY
source: ARIN
email: head@belsonet.net
inetnum: 76.80.0.0 - 76.89.63.255
netname: SOLO-BY
descr: JSC Solo, Belarus
ns1: ns3.fetolbus.ru
ns2: ns2.fetolbus.ru
ns3: ns5.fetolbus.ru
ns4: ns1.fetolbus.ru
ns5: ns6.fetolbus.ru
]]> http://support.clean-mx.de/clean-mx/viruses?id=9144201 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9144201 2013-01-19T17:40:05+01:00 first: 1358613605
last: 0
md5: 588022e5be1c6fad7e4492529dc4b95b
virustotal: http://www.virustotal.com/latest-report.html?resource=5fc8f7ce54fd74e0a6ee092771fb482f
vt_score: 11/39 (28.2%)
scanner: clamav
virusname: PUA.Win32.Packer.SetupExeSection
url: http://data.filehouse.biz/download3.php?n=Window_7_Flash.exe
recent: up
response: alive
ip: 211.115.80.56
as: AS3786
review: 211.115.80.56
domain: filehouse.biz
country: KR
source: APNIC
email: ip@kidc.net
inetnum: 211.115.64.0 - 211.115.127.255
netname: KIDC-KR
descr: LG DACOM KIDC
ns1: ns1.smartlist.co.kr
ns2: ns2.smartlist.co.kr
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9143874 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9143874 2013-01-19T15:00:07+01:00 first: 1358604007
last: 0
md5:
virustotal: http://www.virustotal.com/latest-report.html?resource=626aaedb2fd3cbeabfdc5b8f7a6855c5
vt_score: 17/40 (42.5%)
scanner: avira
virusname: TR/PSW.37888.A
url: http://qualidade-developerxe2.com/DA-16/Xp/service.exe
recent: up
response: alive
ip: 200.98.255.186
as: AS15201
review: 109.123.82.172
domain: qualidade-developerxe2.com
country: GB
source: RIPE
email: ripe@uk2.net
inetnum: 200.98.0.0 - 200.98.255.255
netname: UK-UK2NET-20091012
descr: UK2 - LtdUK2.NET announcement
ns1: ns1.dominios.uol.com.br
ns2: ns3.dominios.uol.com.br
ns3: ns2.dominios.uol.com.br
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9142986 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9142986 2013-01-19T11:00:06+01:00 first: 1358589606
last: 0
md5:
virustotal: http://www.virustotal.com/latest-report.html?resource=626aaedb2fd3cbeabfdc5b8f7a6855c5
vt_score: 17/40 (42.5%)
scanner: avira
virusname: TR/PSW.37888.A
url: http://agixo.com/wp-content/plugins/zexiouiamuu/dir/Core999.exe
recent: up
response: alive
ip: 198.136.48.142
as: AS33182
review: 198.136.48.142
domain: agixo.com
country: US
source: ARIN
email: abuse@dimenoc.com
inetnum: 198.136.48.0 - 198.136.63.255
netname: DIMENOC
descr: HostDime.com, Inc. DIMEN-6 189 South Orange Avenue Suite 1500S Orlando FL 32801
ns1: ns2.whois.com
ns2: ns4.whois.com
ns3: ns3.whois.com
ns4: ns1.whois.com
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9142726 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9142726 2013-01-19T10:40:03+01:00 first: 1358588403
last: 0
md5: d41d8cd98f00b204e9800998ecf8427e
virustotal: http://www.virustotal.com/latest-report.html?resource=bb89f0c48c36d04380c9c3ba24efd285
vt_score: 26/36 (72.2%)
scanner: avira
virusname: JS/RunForest.C.1
url: http://www.habbio.es/java.exe
recent: up
response: alive
ip: 37.152.88.18
as: AS57910
review: undef
domain: habbio.es
country: ES
source: ARIN
email: abuse@scip.es
inetnum: 37.152.88.0 - 37.152.88.255
netname: DONDOMINIO-HOSTING
descr: DonDominio.com / MrDomain.comShared Hosting ServicesSoluciones Corporativas IP (SCIP)
ns1: ns3.dondominio.com
ns2: ns2.dondominio.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9142516 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9142516 2013-01-19T10:00:07+01:00 first: 1358586007
last: 0
md5:
virustotal: http://www.virustotal.com/latest-report.html?resource=626aaedb2fd3cbeabfdc5b8f7a6855c5
vt_score: 17/40 (42.5%)
scanner: avira
virusname: TR/PSW.37888.A
url: http://strotegartners.com/ngen/controlling/topgearspecial.php?vdp=1k:33:1m:1m:1n&aidzlds=1g:32:1j:31:1k:2w:32:1h:31:1k&nazxcs=1i&qbj=sufqfyap&adyogup=blods
recent: up
response: alive
ip: 63.90.228.36
as: AS46940
review: 63.90.228.36
domain: strotegartners.com
country: US
source: ARIN
email: abuse-mail@verizonbusiness.com
inetnum: 63.64.0.0 - 63.127.255.255
netname: UUNET63
descr: MCI Communications Services, Inc. d/b/a Verizon Business MCICS 22001 Loudoun County Pkwy Ashburn VA 20147
ns1: ns4.cnmsn.com
ns2: ns3.cnmsn.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9142515 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9142515 2013-01-19T10:00:07+01:00 first: 1358586007
last: 0
md5:
virustotal: http://www.virustotal.com/latest-report.html?resource=626aaedb2fd3cbeabfdc5b8f7a6855c5
vt_score: 17/40 (42.5%)
scanner: avira
virusname: TR/PSW.37888.A
url: http://strotegartners.com/ngen/controlling/topgearspecial.php?iqjh=1k:33:1m:1m:1n&otjxbo=31:1o:32:1h:1n:1o:2v:1o:2v:1i&tqatfqe=1i&beqfinr=clgubiim&utezzsw=uwkigrz
recent: up
response: alive
ip: 63.90.228.36
as: AS46940
review: 63.90.228.36
domain: strotegartners.com
country: US
source: ARIN
email: abuse-mail@verizonbusiness.com
inetnum: 63.64.0.0 - 63.127.255.255
netname: UUNET63
descr: MCI Communications Services, Inc. d/b/a Verizon Business MCICS 22001 Loudoun County Pkwy Ashburn VA 20147
ns1: ns4.cnmsn.com
ns2: ns3.cnmsn.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9142508 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9142508 2013-01-19T09:50:03+01:00 first: 1358585403
last: 0
md5:
virustotal: http://www.virustotal.com/latest-report.html?resource=626aaedb2fd3cbeabfdc5b8f7a6855c5
vt_score: 17/40 (42.5%)
scanner: avira
virusname: TR/PSW.37888.A
url: http://soberthingingmonrom.com/ngen/controlling/thirdpartyone.php?vdp=1k:33:1m:1m:1n&aidzlds=1g:32:1j:31:1k:2w:32:1h:31:1k&nazxcs=1i&qbj=sufqfyap&adyogup=blods
recent: up
response: alive
ip: 63.90.228.36
as: AS46940
review: 63.90.228.36
domain: soberthingingmonrom.com
country: US
source: ARIN
email: abuse-mail@verizonbusiness.com
inetnum: 63.64.0.0 - 63.127.255.255
netname: UUNET63
descr: MCI Communications Services, Inc. d/b/a Verizon Business MCICS 22001 Loudoun County Pkwy Ashburn VA 20147
ns1: ns3.cnmsn.com
ns2: ns4.cnmsn.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9142507 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9142507 2013-01-19T09:50:02+01:00 first: 1358585402
last: 0
md5:
virustotal: http://www.virustotal.com/latest-report.html?resource=626aaedb2fd3cbeabfdc5b8f7a6855c5
vt_score: 17/40 (42.5%)
scanner: avira
virusname: TR/PSW.37888.A
url: http://soberthingingmonrom.com/ngen/controlling/thirdpartyone.php?iqjh=1k:33:1m:1m:1n&otjxbo=31:1o:32:1h:1n:1o:2v:1o:2v:1i&tqatfqe=1i&beqfinr=clgubiim&utezzsw=uwkigrz
recent: up
response: alive
ip: 63.90.228.36
as: AS46940
review: 63.90.228.36
domain: soberthingingmonrom.com
country: US
source: ARIN
email: abuse-mail@verizonbusiness.com
inetnum: 63.64.0.0 - 63.127.255.255
netname: UUNET63
descr: MCI Communications Services, Inc. d/b/a Verizon Business MCICS 22001 Loudoun County Pkwy Ashburn VA 20147
ns1: ns3.cnmsn.com
ns2: ns4.cnmsn.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9142375 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9142375 2013-01-19T08:40:02+01:00 first: 1358581202
last: 0
md5: 890be8c33498693e813285dc063df399
virustotal: http://www.virustotal.com/latest-report.html?resource=fabfcd33ffc4ab7ce6e50ed7e3aa504f
vt_score: 26/36 (72.2%)
scanner: AhnLab_V3
virusname: Trojan/Win32.Qhost
url: http://cheapsunday.ru/wp-content/plugins/akismet/update.php
recent: up
response: alive
ip: 37.140.192.17
as: AS39134
review: 37.140.192.17
domain: cheapsunday.ru
country: RU
source: RIPE
email: abuse@reg.ru
inetnum: 37.140.192.0 - 37.140.195.255
netname: REGRU-NETWORK
descr: Reg.Ru Hosting
ns1: ns2.hosting.reg.ru
ns2: ns1.hosting.reg.ru
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9139976 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9139976 2013-01-19T02:40:03+01:00 first: 1358559603
last: 0
md5:
virustotal: http://www.virustotal.com/latest-report.html?resource=626aaedb2fd3cbeabfdc5b8f7a6855c5
vt_score: 17/40 (42.5%)
scanner: avira
virusname: TR/PSW.37888.A
url: http://192.155.83.208/read/intention_same.php?rut=1k:33:1m:1m:1n&pzqgsql=32:1n:2v:1i:1h:1h:1o:1l:1m:1m&jfuikd=1i&xawb=fkz&nvsuncck=equ
recent: up
response: alive
ip: 192.155.83.208
as: AS6939
review: 192.155.83.208
domain: 192.155.83.208
country: US
source: ARIN
email: abuse@linode.com
inetnum: 192.155.80.0 - 192.155.95.255
netname: LINODE-US
descr: Linode LINOD 329 E. Jimmie Leeds Road Suite A Galloway NJ 08205
ns1:
ns2:
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9132359 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9132359 2013-01-18T09:40:02+01:00 first: 1358498402
last: 0
md5: d41d8cd98f00b204e9800998ecf8427e
virustotal: http://www.virustotal.com/latest-report.html?resource=bb89f0c48c36d04380c9c3ba24efd285
vt_score: 26/36 (72.2%)
scanner: avira
virusname: JS/RunForest.C.1
url: http://usethenews.com/b.exe
recent: up
response: alive
ip: 74.208.223.26
as: AS8560
review: undef
domain: usethenews.com
country: US
source: ARIN
email: abuse@1and1.com
inetnum: 74.208.0.0 - 74.208.255.255
netname: 1AN1-NETWORK
descr: 1&1 Internet Inc. 11INT 701 Lee Rd Suite 300 Chesterbrook PA 19087
ns1: ns58.1and1.com
ns2: ns57.1and1.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9130114 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9130114 2013-01-18T02:40:02+01:00 first: 1358473202
last: 0
md5: 1c319fd8154cdef04ddc22e16aaf7601
virustotal: http://www.virustotal.com/latest-report.html?resource=9d9f17c80ec377609caa08e85c4b7a44
vt_score: 18/36 (50%)
scanner: undef
virusname: cleanmx_generic
url: http://ritus.by/outputs.exe
recent: up
response: alive
ip: 93.125.99.16
as: AS6697
review: 93.125.99.16
domain: ritus.by
country: BY
source: RIPE
email: dis@tutby.com
inetnum: 93.125.99.0 - 93.125.99.255
netname: TUTBY
descr: HOSTER.BYReliable Software, Inc.DELEGATED FROM BELPAK
ns1: ns1.tutby.com
ns2: ns2.tutby.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9130113 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9130113 2013-01-18T02:40:02+01:00 first: 1358473202
last: 0
md5: 1c319fd8154cdef04ddc22e16aaf7601
virustotal: http://www.virustotal.com/latest-report.html?resource=8acbac046a1965551604274ca41e6fff
vt_score: 24/46 (52.2%)
scanner: undef
virusname: cleanmx_generic
url: http://ritus.by/564.exe
recent: up
response: alive
ip: 93.125.99.16
as: AS6697
review: 93.125.99.16
domain: ritus.by
country: BY
source: RIPE
email: dis@tutby.com
inetnum: 93.125.99.0 - 93.125.99.255
netname: TUTBY
descr: HOSTER.BYReliable Software, Inc.DELEGATED FROM BELPAK
ns1: ns1.tutby.com
ns2: ns2.tutby.com
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=9127801 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9127801 2013-01-17T21:50:04+01:00 first: 1358455804
last: 0
md5: d41d8cd98f00b204e9800998ecf8427e
virustotal: http://www.virustotal.com/latest-report.html?resource=bb89f0c48c36d04380c9c3ba24efd285
vt_score: 26/36 (72.2%)
scanner: avira
virusname: JS/RunForest.C.1
url: http://ald-facebook.me.uk/operations/lead-achieves-fishes.php?ahsnjiy=33:2v:1h:2w:1m&fimh=2v:1h:1m:1g:1o:32:1i:30:2w:30&mztqf=1i&ito=ptk&umih=twljw
recent: up
response: alive
ip: 75.127.0.27
as: AS36352
review: undef
domain: me.uk
country: US
source: ARIN
email: abuse@colocrossing.com
inetnum: 75.127.0.0 - 75.127.15.255
netname: CC-07
descr: ColoCrossing VGS-9 8469 Sheridan Drive ATTN Williamsville NY 14221
ns1: ns2.nic.uk
ns2: nsc.nic.uk
ns3: nsa.nic.uk
ns4: nsd.nic.uk
ns5: ns1.nic.uk
]]> http://support.clean-mx.de/clean-mx/viruses?id=9018227 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=9018227 2013-01-09T14:40:05+01:00 first: 1357738805
last: 0
md5:
virustotal: http://www.virustotal.com/latest-report.html?resource=626aaedb2fd3cbeabfdc5b8f7a6855c5
vt_score: 17/40 (42.5%)
scanner: avira
virusname: TR/PSW.37888.A
url: http://boti.astria-serv.com/network.exe
recent: up
response: alive
ip: 82.165.157.212
as: AS8560
review: 82.165.157.212
domain: astria-serv.com
country: DE
source: RIPE
email: abuse@1and1.com
inetnum: 82.165.144.0 - 82.165.159.255
netname: SCHLUND-CUSTOMERS
descr: 1&1 Internet AG
ns1: ns61.1and1.fr
ns2: ns62.1and1.fr
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=8910245 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=8910245 2012-12-31T12:00:07+01:00 first: 1356951607
last: 0
md5: 588022e5be1c6fad7e4492529dc4b95b
virustotal: http://www.virustotal.com/latest-report.html?resource=5fc8f7ce54fd74e0a6ee092771fb482f
vt_score: 11/39 (28.2%)
scanner: clamav
virusname: PUA.Win32.Packer.SetupExeSection
url: http://alyackorea.com/download3.php?n=window_7_keygen.exe
recent: up
response: alive
ip: 211.115.80.56
as: AS3786
review: 211.115.80.56
domain: alyackorea.com
country: KR
source: APNIC
email: ip@kidc.net
inetnum: 211.115.64.0 - 211.115.127.255
netname: KIDC-KR
descr: LG DACOM KIDC
ns1: ns2.smartlist.co.kr
ns2: ns1.smartlist.co.kr
ns3:
ns4:
ns5:
]]> http://support.clean-mx.de/clean-mx/viruses?id=8910243 abuse@clean-mx.de http://support.clean-mx.de/clean-mx/viruses?id=8910243 2012-12-31T12:00:07+01:00 first: 1356951607
last: 0
md5: 5d659605263259615e05313c7551f7ac
virustotal: http://www.virustotal.com/latest-report.html?resource=5d659605263259615e05313c7551f7ac
vt_score: 6/35 (17.1%)
scanner: AVG
virusname: Suspicion: unknown virus
url: http://setup.lnimarketing.co.kr/WkipSetup_203_Hide.exe
recent: up
response: alive
ip: 114.203.87.199
as: AS9318
review: 114.203.87.199
domain: lnimarketing.co.kr
country: KR
source: APNIC
email: abuse@skbroadband.com
inetnum: 114.200.0.0 - 114.207.255.255
netname: broadNnet-KR
descr: SK Broadband Co Ltd
ns1: ns1.kshosting.co.kr
ns2: ns2.kshosting.co.kr
ns3:
ns4:
ns5:
]]>