CLEAN MX realtime database    
public access query for virus URL statistics
Totally watched: 4753338 As of 2014-07-13 17:58:47 CEST
Subscribe to the VirusWatch Mailing list, updated hourly

This database consists of Virus URI, collected and verified since Feb 2006
Tweet
Recently we pushed out notifications with "unrated site" these are totally clean sites, we apologize this!

If you detect URI'S concerning your netblock, already closed... you have made a good job, otherwise please close them as soon as possible.

to look at some nice charts, there are complete statisticsstatistics for this database
Attention: all URI'S are manually verified, but not cross-checked for real viruses function in this moment you make this query.(Sites may have been closed already..)
Our automatic Viruswalker process is scheduled every hour, so you may see now a incident and this one will be resolved later on.
So please keep on sending close-feedbacks to us...

if you have questions, criticism, wishes or ... do not hesitate to contact us at abuse@clean-mx.de
Our PBX is down you may reach us by cell phone +49 171 4802507 ...
Query as xml: Same query as xml output
helpLine help#descendigascending helpDatedescendigascending helpCloseddescendigascending helphours helpcontributordescendigascending helpvirusnamedescendigascending helpURLdescendigascending helpip state helpresponsedescendigascending helpIp initialdescendigascending helpAS#descendigascending helpip reviewdescendigascending helpURLdescendigascending helpDomaindescendigascending helpcountrydescendigascending helpsourcedescendigascending helpemaildescendigascending helpinetnumdescendigascending helpnetnamedescendigascending helpdescrdescendigascending helpns1descendigascending helpns2descendigascending helpns3descendigascending helpns4descendigascending helpns5descendigascending helpURLdescendigascending
1 follow up this item(33930927) 33930927 Report false positive Report closed case make a suggestion 2014-07-13 12:21:07     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (292e1af46951bf5cb55bd7d3e80a9088)follow up this md5sum(292e1af46951bf5cb55bd7d3e80a9088)follow up this malware() for scanner () in md5 table0/43 (0.0%) 
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://192.254.236.110/%7Exerge/login.ph ...  up alive follow up this ip (ip=192.254.236.110) as RSS-FeedSenderBaselookup 192.254.236.110 at virustotallookup 192.254.236.110 at Rus CERT university stuttgart germanylookup 192.254.236.110 at ARINfollow up this item(ip) in same window 192.254.236.110 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS46606) in networks tablefollow up this itemfollow up this AS (AS46606) as RSS-Feed AS46606 follow up this ip (review=192.254.236.110) as RSS-FeedSenderBaselookup 192.254.236.110 at virustotallookup 192.254.236.110 at Rus CERT university stuttgart germanylookup 192.254.236.110 at ARINfollow up this item(review) in same window 192.254.236.110 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://192.254.236.110/%7Exerge/login.ph ... follow up this domain (192.254.236.110) as RSS-Feedlookup 192.254.236.110 at virustotalfollow up this domain(192.254.236.110) 192.254.236.110 follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (ipadmin@websitewelcome.com) as RSS-Feed ipadmin@websitewelcome.com follow up this itemfollow up this item 192.254.128.0 - 192.254.255.255 follow up this item HGBLOCK-9 follow up this item WEBSITEWELCOME.COM BO 5005 Mitchelldale Suite #100 Houston TX 77092 follow up this item  follow up this item  follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://192.254.236.110/%7Exerge/login.ph ...
2 follow up this item(33930926) 33930926 Report false positive Report closed case make a suggestion 2014-07-13 12:21:07     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (292e1af46951bf5cb55bd7d3e80a9088)follow up this md5sum(292e1af46951bf5cb55bd7d3e80a9088)follow up this malware() for scanner () in md5 table0/43 (0.0%) 
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://192.254.236.110/%7Exerge/c6c86099 ...  up alive follow up this ip (ip=192.254.236.110) as RSS-FeedSenderBaselookup 192.254.236.110 at virustotallookup 192.254.236.110 at Rus CERT university stuttgart germanylookup 192.254.236.110 at ARINfollow up this item(ip) in same window 192.254.236.110 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS46606) in networks tablefollow up this itemfollow up this AS (AS46606) as RSS-Feed AS46606 follow up this ip (review=192.254.236.110) as RSS-FeedSenderBaselookup 192.254.236.110 at virustotallookup 192.254.236.110 at Rus CERT university stuttgart germanylookup 192.254.236.110 at ARINfollow up this item(review) in same window 192.254.236.110 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://192.254.236.110/%7Exerge/c6c86099 ... follow up this domain (192.254.236.110) as RSS-Feedlookup 192.254.236.110 at virustotalfollow up this domain(192.254.236.110) 192.254.236.110 follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (ipadmin@websitewelcome.com) as RSS-Feed ipadmin@websitewelcome.com follow up this itemfollow up this item 192.254.128.0 - 192.254.255.255 follow up this item HGBLOCK-9 follow up this item WEBSITEWELCOME.COM BO 5005 Mitchelldale Suite #100 Houston TX 77092 follow up this item  follow up this item  follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://192.254.236.110/%7Exerge/c6c86099 ...
3 follow up this item(33930925) 33930925 Report false positive Report closed case make a suggestion 2014-07-13 12:21:07     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (292e1af46951bf5cb55bd7d3e80a9088)follow up this md5sum(292e1af46951bf5cb55bd7d3e80a9088)follow up this malware() for scanner () in md5 table0/43 (0.0%) 
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://192.254.236.110/%7Exerge/1ac35522 ...  up alive follow up this ip (ip=192.254.236.110) as RSS-FeedSenderBaselookup 192.254.236.110 at virustotallookup 192.254.236.110 at Rus CERT university stuttgart germanylookup 192.254.236.110 at ARINfollow up this item(ip) in same window 192.254.236.110 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS46606) in networks tablefollow up this itemfollow up this AS (AS46606) as RSS-Feed AS46606 follow up this ip (review=192.254.236.110) as RSS-FeedSenderBaselookup 192.254.236.110 at virustotallookup 192.254.236.110 at Rus CERT university stuttgart germanylookup 192.254.236.110 at ARINfollow up this item(review) in same window 192.254.236.110 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://192.254.236.110/%7Exerge/1ac35522 ... follow up this domain (192.254.236.110) as RSS-Feedlookup 192.254.236.110 at virustotalfollow up this domain(192.254.236.110) 192.254.236.110 follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (ipadmin@websitewelcome.com) as RSS-Feed ipadmin@websitewelcome.com follow up this itemfollow up this item 192.254.128.0 - 192.254.255.255 follow up this item HGBLOCK-9 follow up this item WEBSITEWELCOME.COM BO 5005 Mitchelldale Suite #100 Houston TX 77092 follow up this item  follow up this item  follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://192.254.236.110/%7Exerge/1ac35522 ...
4 follow up this item(33930924) 33930924 Report false positive Report closed case make a suggestion 2014-07-13 12:21:07     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (292e1af46951bf5cb55bd7d3e80a9088)follow up this md5sum(292e1af46951bf5cb55bd7d3e80a9088)follow up this malware() for scanner () in md5 table0/43 (0.0%) 
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://192.254.235.99/%7Exerge/f2874f3e7 ...  up alive follow up this ip (ip=192.254.235.99) as RSS-FeedSenderBaselookup 192.254.235.99 at virustotallookup 192.254.235.99 at Rus CERT university stuttgart germanylookup 192.254.235.99 at ARINfollow up this item(ip) in same window 192.254.235.99 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS46606) in networks tablefollow up this itemfollow up this AS (AS46606) as RSS-Feed AS46606 follow up this ip (review=192.254.235.99) as RSS-FeedSenderBaselookup 192.254.235.99 at virustotallookup 192.254.235.99 at Rus CERT university stuttgart germanylookup 192.254.235.99 at ARINfollow up this item(review) in same window 192.254.235.99 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://192.254.235.99/%7Exerge/f2874f3e7 ... follow up this domain (192.254.235.99) as RSS-Feedlookup 192.254.235.99 at virustotalfollow up this domain(192.254.235.99) 192.254.235.99 follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (ipadmin@websitewelcome.com) as RSS-Feed ipadmin@websitewelcome.com follow up this itemfollow up this item 192.254.128.0 - 192.254.255.255 follow up this item HGBLOCK-9 follow up this item WEBSITEWELCOME.COM BO 5005 Mitchelldale Suite #100 Houston TX 77092 follow up this item  follow up this item  follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://192.254.235.99/%7Exerge/f2874f3e7 ...
5 follow up this item(33930923) 33930923 Report false positive Report closed case make a suggestion 2014-07-13 12:21:07     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (292e1af46951bf5cb55bd7d3e80a9088)follow up this md5sum(292e1af46951bf5cb55bd7d3e80a9088)follow up this malware() for scanner () in md5 table0/43 (0.0%) 
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://192.254.235.99/%7Exerge/8e999f3d7 ...  up alive follow up this ip (ip=192.254.235.99) as RSS-FeedSenderBaselookup 192.254.235.99 at virustotallookup 192.254.235.99 at Rus CERT university stuttgart germanylookup 192.254.235.99 at ARINfollow up this item(ip) in same window 192.254.235.99 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS46606) in networks tablefollow up this itemfollow up this AS (AS46606) as RSS-Feed AS46606 follow up this ip (review=192.254.235.99) as RSS-FeedSenderBaselookup 192.254.235.99 at virustotallookup 192.254.235.99 at Rus CERT university stuttgart germanylookup 192.254.235.99 at ARINfollow up this item(review) in same window 192.254.235.99 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://192.254.235.99/%7Exerge/8e999f3d7 ... follow up this domain (192.254.235.99) as RSS-Feedlookup 192.254.235.99 at virustotalfollow up this domain(192.254.235.99) 192.254.235.99 follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (ipadmin@websitewelcome.com) as RSS-Feed ipadmin@websitewelcome.com follow up this itemfollow up this item 192.254.128.0 - 192.254.255.255 follow up this item HGBLOCK-9 follow up this item WEBSITEWELCOME.COM BO 5005 Mitchelldale Suite #100 Houston TX 77092 follow up this item  follow up this item  follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://192.254.235.99/%7Exerge/8e999f3d7 ...
6 follow up this item(33930922) 33930922 Report false positive Report closed case make a suggestion 2014-07-13 12:21:07     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (292e1af46951bf5cb55bd7d3e80a9088)follow up this md5sum(292e1af46951bf5cb55bd7d3e80a9088)follow up this itemfollow up this virusname (Win32%2FRiskWare.Chindo.A) as RSS-Feedfollow up this malware(Win32%2FRiskWare.Chindo.A) for scanner () in md5 table0/43 (0.0%) Win32/RiskWare.Chindo.A
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://192.254.235.99/%7Exerge/5717e34d9 ...  up alive follow up this ip (ip=192.254.235.99) as RSS-FeedSenderBaselookup 192.254.235.99 at virustotallookup 192.254.235.99 at Rus CERT university stuttgart germanylookup 192.254.235.99 at ARINfollow up this item(ip) in same window 192.254.235.99 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS46606) in networks tablefollow up this itemfollow up this AS (AS46606) as RSS-Feed AS46606 follow up this ip (review=192.254.235.99) as RSS-FeedSenderBaselookup 192.254.235.99 at virustotallookup 192.254.235.99 at Rus CERT university stuttgart germanylookup 192.254.235.99 at ARINfollow up this item(review) in same window 192.254.235.99 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://192.254.235.99/%7Exerge/5717e34d9 ... follow up this domain (192.254.235.99) as RSS-Feedlookup 192.254.235.99 at virustotalfollow up this domain(192.254.235.99) 192.254.235.99 follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (ipadmin@websitewelcome.com) as RSS-Feed ipadmin@websitewelcome.com follow up this itemfollow up this item 192.254.128.0 - 192.254.255.255 follow up this item HGBLOCK-9 follow up this item WEBSITEWELCOME.COM BO 5005 Mitchelldale Suite #100 Houston TX 77092 follow up this item  follow up this item  follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://192.254.235.99/%7Exerge/5717e34d9 ...
7 follow up this item(33930918) 33930918 Report false positive Report closed case make a suggestion 2014-07-13 12:21:05     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
22/52 (42.3%) 
 W32.Clodd39.Trojan.0110
Artemis!8CB9645F47C5
PUP.Optional.Casino
Trojan.Win32.Buzus
Trojan/Buzus.ktlq
W32/Buzus.J.gen!Eldorado
Suspicious_Gen2.QKQNR
Win32/Gambler.B
Trojan.Buzus-9397
TrojWare.Win32.Buzus.jgfr
Trojan.AntiAV.Win32.4015
GAME/Casino.Gen2
Heu 
 lookup in virustotal.com (8cb9645f47c5995d1f0e2d6b25d7d456)-->[http://www.virustotal.com/latest-report.html?resource=8cb9645f47c5995d1f0e2d6b25d7d456]follow up this md5sum(8cb9645f47c5995d1f0e2d6b25d7d456)follow up this itemfollow up this virusname (Win32%2FRiskWare.Chindo.A) as RSS-Feedfollow up this malware(Win32%2FRiskWare.Chindo.A) for scanner (undef) in md5 table22/52 (42.3%) Win32/RiskWare.Chindo.A
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zresurdzsp.chips-profit.biz/Fr-Wi ...  up alive follow up this ip (ip=67.111.244.101) as RSS-FeedSenderBaselookup 67.111.244.101 at virustotallookup 67.111.244.101 at Rus CERT university stuttgart germanylookup 67.111.244.101 at ARINfollow up this item(ip) in same window 67.111.244.101 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS2828) in networks tablefollow up this itemfollow up this AS (AS2828) as RSS-Feed AS2828 follow up this ip (review=67.111.244.101) as RSS-FeedSenderBaselookup 67.111.244.101 at virustotallookup 67.111.244.101 at Rus CERT university stuttgart germanylookup 67.111.244.101 at ARINfollow up this item(review) in same window 67.111.244.101 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zresurdzsp.chips-profit.biz/Fr-Wi ... follow up this domain (chips-profit.biz) as RSS-Feedlookup chips-profit.biz at virustotalfollow up this domain(chips-profit.biz) chips-profit.biz follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (abuse@xo.net) as RSS-Feed abuse@xo.net follow up this itemfollow up this item 67.104.0.0 - 67.111.255.255 follow up this item XOXO-BLK-17 follow up this item XO Communications XOXO 13865 Sunrise Valley Drive Herdon VA 20171 follow up this item ns1.regnames2.com follow up this item ns2.regnames2.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zresurdzsp.chips-profit.biz/Fr-Wi ...
8 follow up this item(33930917) 33930917 Report false positive Report closed case make a suggestion 2014-07-13 12:21:04     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (fe0afaf62536c6be758b8c77cd4d75f4)follow up this md5sum(fe0afaf62536c6be758b8c77cd4d75f4)follow up this malware() for scanner () in md5 table0/43 (0.0%) 
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zn.tybests.com/down/zhainan/%F6%E ...  up alive follow up this ip (ip=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(ip) in same window 118.122.37.107 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4134) in networks tablefollow up this itemfollow up this AS (AS4134) as RSS-Feed AS4134 follow up this ip (review=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(review) in same window 118.122.37.107 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zn.tybests.com/down/zhainan/%F6%E ... follow up this domain (tybests.com) as RSS-Feedlookup tybests.com at virustotalfollow up this domain(tybests.com) tybests.com follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (anti-spam@ns.chinanet.cn.net) as RSS-Feed anti-spam@ns.chinanet.cn.net follow up this itemfollow up this item 118.120.0.0 - 118.123.255.255 follow up this item CHINANET-SC follow up this item CHINANET Sichuan province networkChina TelecomA12,Xin-Jie-Kou-Wai StreetBeijing 100088 follow up this item f1g1ns2.dnspod.net follow up this item f1g1ns1.dnspod.net follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zn.tybests.com/down/zhainan/%F6%E ...
9 follow up this item(33930916) 33930916 Report false positive Report closed case make a suggestion 2014-07-13 12:21:04     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
22/52 (42.3%) 
 W32.Clodd39.Trojan.0110
Artemis!8CB9645F47C5
PUP.Optional.Casino
Trojan.Win32.Buzus
Trojan/Buzus.ktlq
W32/Buzus.J.gen!Eldorado
Suspicious_Gen2.QKQNR
Win32/Gambler.B
Trojan.Buzus-9397
TrojWare.Win32.Buzus.jgfr
Trojan.AntiAV.Win32.4015
GAME/Casino.Gen2
Heu 
 lookup in virustotal.com (8cb9645f47c5995d1f0e2d6b25d7d456)-->[http://www.virustotal.com/latest-report.html?resource=8cb9645f47c5995d1f0e2d6b25d7d456]follow up this md5sum(8cb9645f47c5995d1f0e2d6b25d7d456)follow up this itemfollow up this virusname (Win32%2FRiskWare.Chindo.A) as RSS-Feedfollow up this malware(Win32%2FRiskWare.Chindo.A) for scanner () in md5 table22/52 (42.3%) Win32/RiskWare.Chindo.A
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zizilxafua.chips-profit.biz/Fr-Wi ...  up alive follow up this ip (ip=67.111.244.101) as RSS-FeedSenderBaselookup 67.111.244.101 at virustotallookup 67.111.244.101 at Rus CERT university stuttgart germanylookup 67.111.244.101 at ARINfollow up this item(ip) in same window 67.111.244.101 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS2828) in networks tablefollow up this itemfollow up this AS (AS2828) as RSS-Feed AS2828 follow up this ip (review=67.111.244.101) as RSS-FeedSenderBaselookup 67.111.244.101 at virustotallookup 67.111.244.101 at Rus CERT university stuttgart germanylookup 67.111.244.101 at ARINfollow up this item(review) in same window 67.111.244.101 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zizilxafua.chips-profit.biz/Fr-Wi ... follow up this domain (chips-profit.biz) as RSS-Feedlookup chips-profit.biz at virustotalfollow up this domain(chips-profit.biz) chips-profit.biz follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (abuse@xo.net) as RSS-Feed abuse@xo.net follow up this itemfollow up this item 67.104.0.0 - 67.111.255.255 follow up this item XOXO-BLK-17 follow up this item XO Communications XOXO 13865 Sunrise Valley Drive Herdon VA 20171 follow up this item ns2.regnames2.com follow up this item ns1.regnames2.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zizilxafua.chips-profit.biz/Fr-Wi ...
10 follow up this item(33930915) 33930915 Report false positive Report closed case make a suggestion 2014-07-13 12:21:04     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
16/52 (30.8%) 
 
Generic.5FB
ADWARE/Adware.Gen7
Win32:InstalleRex-CG
PUP
Gen:Variant.Adware.Graftor.145817
a
variant
of
Win32/AdWare.MultiPlug.AJ
Gen:Variant.Adware.Graftor.145817
(B)
Gen:Variant.Adware.Graftor.145817
(B)
Gen:Variant.Adware.Graftor.145817
Gen:Variant.Ad 
 lookup in virustotal.com (22107760a5cad2141bdf8726db174705)-->[http://www.virustotal.com/latest-report.html?resource=22107760a5cad2141bdf8726db174705]lookup in threatexpert.comlookup the sha256(dfb168619186792316e206c86006faa68cbd585b4d8b39d01f3abf1f3d99c516) in comodo.comfollow up this md5sum(22107760a5cad2141bdf8726db174705)follow up this itemfollow up this virusname (ADWARE%2FAdware.Gen7) as RSS-Feedfollow up this malware(ADWARE%2FAdware.Gen7) for scanner (AntiVir) in md5 table16/52 (30.8%) ADWARE/Adware.Gen7
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zilliontoolkitusa.info/v233?files ...  up alive follow up this ip (ip=54.191.92.197) as RSS-FeedSenderBaselookup 54.191.92.197 at virustotallookup 54.191.92.197 at Rus CERT university stuttgart germanylookup 54.191.92.197 at ARINfollow up this item(ip) in same window 54.191.92.197 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (ASNA.54.0.0.0 - 54.223.255.255) in networks tablefollow up this itemfollow up this AS (ASNA.54.0.0.0 - 54.223.255.255) as RSS-Feed ASNA.54.0.0.0 - 54.223.255.255 follow up this ip (review=54.191.92.197) as RSS-FeedSenderBaselookup 54.191.92.197 at virustotallookup 54.191.92.197 at Rus CERT university stuttgart germanylookup 54.191.92.197 at ARINfollow up this item(review) in same window 54.191.92.197 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zilliontoolkitusa.info/v233?files ... follow up this domain (zilliontoolkitusa.info) as RSS-Feedlookup zilliontoolkitusa.info at virustotalfollow up this domain(zilliontoolkitusa.info) zilliontoolkitusa.info follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (whitehouse_telecom@merck.com) as RSS-Feed whitehouse_telecom@merck.com follow up this itemfollow up this item 54.0.0.0 - 54.223.255.255 follow up this item MERCK2 follow up this item Merck and Co., Inc. MERCKA 126 East Lincoln Avenue Rahway NJ 07095 follow up this item lara.ns.cloudflare.com follow up this item pete.ns.cloudflare.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zilliontoolkitusa.info/v233?files ...
11 follow up this item(33930914) 33930914 Report false positive Report closed case make a suggestion 2014-07-13 12:21:04     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
16/51 (31.4%) 
 
Generic.5FB
ADWARE/Adware.Gen7
Win32:InstalleRex-CG
PUP
Gen:Variant.Adware.Graftor.145817
a
variant
of
Win32/AdWare.MultiPlug.AJ
Gen:Variant.Adware.Graftor.145817
(B)
Gen:Variant.Adware.Graftor.145817
(B)
Gen:Variant.Adware.Graftor.145817
Gen:Variant.Ad 
 lookup in virustotal.com (fb3b6d394a1dd455156aae56f4c23d8d)-->[http://www.virustotal.com/latest-report.html?resource=fb3b6d394a1dd455156aae56f4c23d8d]lookup in threatexpert.comlookup the sha256(de47af3a28d906910c4c586e8de28b1d8961b35e6db1645c787cc5a968eb98c0) in comodo.comfollow up this md5sum(fb3b6d394a1dd455156aae56f4c23d8d)follow up this itemfollow up this virusname (ADWARE%2FAdware.Gen7) as RSS-Feedfollow up this malware(ADWARE%2FAdware.Gen7) for scanner (AntiVir) in md5 table16/51 (31.4%) ADWARE/Adware.Gen7
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zilliontoolkitusa.info/v233?files ...  up alive follow up this ip (ip=54.191.42.81) as RSS-FeedSenderBaselookup 54.191.42.81 at virustotallookup 54.191.42.81 at Rus CERT university stuttgart germanylookup 54.191.42.81 at ARINfollow up this item(ip) in same window 54.191.42.81 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (ASNA.54.0.0.0 - 54.223.255.255) in networks tablefollow up this itemfollow up this AS (ASNA.54.0.0.0 - 54.223.255.255) as RSS-Feed ASNA.54.0.0.0 - 54.223.255.255 follow up this ip (review=54.191.42.81) as RSS-FeedSenderBaselookup 54.191.42.81 at virustotallookup 54.191.42.81 at Rus CERT university stuttgart germanylookup 54.191.42.81 at ARINfollow up this item(review) in same window 54.191.42.81 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zilliontoolkitusa.info/v233?files ... follow up this domain (zilliontoolkitusa.info) as RSS-Feedlookup zilliontoolkitusa.info at virustotalfollow up this domain(zilliontoolkitusa.info) zilliontoolkitusa.info follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (whitehouse_telecom@merck.com) as RSS-Feed whitehouse_telecom@merck.com follow up this itemfollow up this item 54.0.0.0 - 54.223.255.255 follow up this item MERCK2 follow up this item Merck and Co., Inc. MERCKA 126 East Lincoln Avenue Rahway NJ 07095 follow up this item lara.ns.cloudflare.com follow up this item pete.ns.cloudflare.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zilliontoolkitusa.info/v233?files ...
12 follow up this item(33930913) 33930913 Report false positive Report closed case make a suggestion 2014-07-13 12:21:04     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (1582c3d1ed8de04e19552a373ace90e7)follow up this md5sum(1582c3d1ed8de04e19552a373ace90e7)follow up this malware() for scanner () in md5 table0/43 (0.0%) 
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhuomian ...  up alive follow up this ip (ip=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(ip) in same window 118.122.37.107 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4134) in networks tablefollow up this itemfollow up this AS (AS4134) as RSS-Feed AS4134 follow up this ip (review=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(review) in same window 118.122.37.107 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhuomian ... follow up this domain (xzzxjly.com) as RSS-Feedlookup xzzxjly.com at virustotalfollow up this domain(xzzxjly.com) xzzxjly.com follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (anti-spam@ns.chinanet.cn.net) as RSS-Feed anti-spam@ns.chinanet.cn.net follow up this itemfollow up this item 118.120.0.0 - 118.123.255.255 follow up this item CHINANET-SC follow up this item CHINANET Sichuan province networkChina TelecomA12,Xin-Jie-Kou-Wai StreetBeijing 100088 follow up this item f1g1ns2.dnspod.net follow up this item f1g1ns1.dnspod.net follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhuomian ...
13 follow up this item(33930912) 33930912 Report false positive Report closed case make a suggestion 2014-07-13 12:21:04     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (1582c3d1ed8de04e19552a373ace90e7)follow up this md5sum(1582c3d1ed8de04e19552a373ace90e7)follow up this malware() for scanner () in md5 table0/43 (0.0%) 
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhuomian ...  up alive follow up this ip (ip=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(ip) in same window 118.122.37.107 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4134) in networks tablefollow up this itemfollow up this AS (AS4134) as RSS-Feed AS4134 follow up this ip (review=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(review) in same window 118.122.37.107 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhuomian ... follow up this domain (xzzxjly.com) as RSS-Feedlookup xzzxjly.com at virustotalfollow up this domain(xzzxjly.com) xzzxjly.com follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (anti-spam@ns.chinanet.cn.net) as RSS-Feed anti-spam@ns.chinanet.cn.net follow up this itemfollow up this item 118.120.0.0 - 118.123.255.255 follow up this item CHINANET-SC follow up this item CHINANET Sichuan province networkChina TelecomA12,Xin-Jie-Kou-Wai StreetBeijing 100088 follow up this item f1g1ns2.dnspod.net follow up this item f1g1ns1.dnspod.net follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhuomian ...
14 follow up this item(33930911) 33930911 Report false positive Report closed case make a suggestion 2014-07-13 12:21:04     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
11/53 (20.8%) 
 Artemis!1582C3D1ED8D
WS.Reputation.1
Suspicious_GEN.F47V0707
Win32:Malware-gen
Win32.Trojan.Falsesign.Dxws
Trojan.Win32.Generic!BT
Artemis!1582C3D1ED8D
Win32.Trojan.Agent.B6W2CM
Trojan.Win32.RSoftware.BA
a
variant
of
Win32/RSoftware.A
Generic.47C 
 lookup in virustotal.com (1582c3d1ed8de04e19552a373ace90e7)-->[http://www.virustotal.com/latest-report.html?resource=1582c3d1ed8de04e19552a373ace90e7]follow up this md5sum(1582c3d1ed8de04e19552a373ace90e7)follow up this itemfollow up this virusname (Win32%2FRiskWare.Chindo.A) as RSS-Feedfollow up this malware(Win32%2FRiskWare.Chindo.A) for scanner () in md5 table11/53 (20.8%) Win32/RiskWare.Chindo.A
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhuomian ...  up alive follow up this ip (ip=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(ip) in same window 118.122.37.107 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4134) in networks tablefollow up this itemfollow up this AS (AS4134) as RSS-Feed AS4134 follow up this ip (review=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(review) in same window 118.122.37.107 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhuomian ... follow up this domain (xzzxjly.com) as RSS-Feedlookup xzzxjly.com at virustotalfollow up this domain(xzzxjly.com) xzzxjly.com follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (anti-spam@ns.chinanet.cn.net) as RSS-Feed anti-spam@ns.chinanet.cn.net follow up this itemfollow up this item 118.120.0.0 - 118.123.255.255 follow up this item CHINANET-SC follow up this item CHINANET Sichuan province networkChina TelecomA12,Xin-Jie-Kou-Wai StreetBeijing 100088 follow up this item f1g1ns2.dnspod.net follow up this item f1g1ns1.dnspod.net follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhuomian ...
15 follow up this item(33930910) 33930910 Report false positive Report closed case make a suggestion 2014-07-13 12:21:04     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
11/53 (20.8%) 
 Artemis!1582C3D1ED8D
WS.Reputation.1
Suspicious_GEN.F47V0707
Win32:Malware-gen
Win32.Trojan.Falsesign.Dxws
Trojan.Win32.Generic!BT
Artemis!1582C3D1ED8D
Win32.Trojan.Agent.B6W2CM
Trojan.Win32.RSoftware.BA
a
variant
of
Win32/RSoftware.A
Generic.47C 
 lookup in virustotal.com (1582c3d1ed8de04e19552a373ace90e7)-->[http://www.virustotal.com/latest-report.html?resource=1582c3d1ed8de04e19552a373ace90e7]follow up this md5sum(1582c3d1ed8de04e19552a373ace90e7)follow up this itemfollow up this virusname (Win32%2FRiskWare.Chindo.A) as RSS-Feedfollow up this malware(Win32%2FRiskWare.Chindo.A) for scanner () in md5 table11/53 (20.8%) Win32/RiskWare.Chindo.A
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhuomian ...  up alive follow up this ip (ip=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(ip) in same window 118.122.37.107 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4134) in networks tablefollow up this itemfollow up this AS (AS4134) as RSS-Feed AS4134 follow up this ip (review=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(review) in same window 118.122.37.107 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhuomian ... follow up this domain (xzzxjly.com) as RSS-Feedlookup xzzxjly.com at virustotalfollow up this domain(xzzxjly.com) xzzxjly.com follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (anti-spam@ns.chinanet.cn.net) as RSS-Feed anti-spam@ns.chinanet.cn.net follow up this itemfollow up this item 118.120.0.0 - 118.123.255.255 follow up this item CHINANET-SC follow up this item CHINANET Sichuan province networkChina TelecomA12,Xin-Jie-Kou-Wai StreetBeijing 100088 follow up this item f1g1ns2.dnspod.net follow up this item f1g1ns1.dnspod.net follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhuomian ...
16 follow up this item(33930909) 33930909 Report false positive Report closed case make a suggestion 2014-07-13 12:21:04     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (1582c3d1ed8de04e19552a373ace90e7)follow up this md5sum(1582c3d1ed8de04e19552a373ace90e7)follow up this malware() for scanner () in md5 table0/43 (0.0%) 
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhuomian ...  up alive follow up this ip (ip=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(ip) in same window 118.122.37.107 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4134) in networks tablefollow up this itemfollow up this AS (AS4134) as RSS-Feed AS4134 follow up this ip (review=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(review) in same window 118.122.37.107 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhuomian ... follow up this domain (xzzxjly.com) as RSS-Feedlookup xzzxjly.com at virustotalfollow up this domain(xzzxjly.com) xzzxjly.com follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (anti-spam@ns.chinanet.cn.net) as RSS-Feed anti-spam@ns.chinanet.cn.net follow up this itemfollow up this item 118.120.0.0 - 118.123.255.255 follow up this item CHINANET-SC follow up this item CHINANET Sichuan province networkChina TelecomA12,Xin-Jie-Kou-Wai StreetBeijing 100088 follow up this item f1g1ns2.dnspod.net follow up this item f1g1ns1.dnspod.net follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhuomian ...
17 follow up this item(33930908) 33930908 Report false positive Report closed case make a suggestion 2014-07-13 12:21:04     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (1582c3d1ed8de04e19552a373ace90e7)follow up this md5sum(1582c3d1ed8de04e19552a373ace90e7)follow up this malware() for scanner () in md5 table0/43 (0.0%) 
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhuomian ...  up alive follow up this ip (ip=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(ip) in same window 118.122.37.107 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4134) in networks tablefollow up this itemfollow up this AS (AS4134) as RSS-Feed AS4134 follow up this ip (review=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(review) in same window 118.122.37.107 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhuomian ... follow up this domain (xzzxjly.com) as RSS-Feedlookup xzzxjly.com at virustotalfollow up this domain(xzzxjly.com) xzzxjly.com follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (anti-spam@ns.chinanet.cn.net) as RSS-Feed anti-spam@ns.chinanet.cn.net follow up this itemfollow up this item 118.120.0.0 - 118.123.255.255 follow up this item CHINANET-SC follow up this item CHINANET Sichuan province networkChina TelecomA12,Xin-Jie-Kou-Wai StreetBeijing 100088 follow up this item f1g1ns2.dnspod.net follow up this item f1g1ns1.dnspod.net follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhuomian ...
18 follow up this item(33930907) 33930907 Report false positive Report closed case make a suggestion 2014-07-13 12:21:04     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
10/51 (19.6%) 
 Artemis!1582C3D1ED8D
WS.Reputation.1
Suspicious_GEN.F47V0707
Win32:Malware-gen
Artemis!1582C3D1ED8D
Win32.Trojan.Agent.B6W2CM
Trojan.Win32.RSoftware.BA
a
variant
of
Win32/RSoftware.A
Win32.Trojan.Falsesign.Dxws
Generic.47C 
 lookup in virustotal.com (1582c3d1ed8de04e19552a373ace90e7)-->[http://www.virustotal.com/latest-report.html?resource=1582c3d1ed8de04e19552a373ace90e7]follow up this md5sum(1582c3d1ed8de04e19552a373ace90e7)follow up this itemfollow up this virusname (Win32%2FRiskWare.Chindo.A) as RSS-Feedfollow up this malware(Win32%2FRiskWare.Chindo.A) for scanner (undef) in md5 table10/51 (19.6%) Win32/RiskWare.Chindo.A
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhuomian ...  up alive follow up this ip (ip=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(ip) in same window 118.122.37.107 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4134) in networks tablefollow up this itemfollow up this AS (AS4134) as RSS-Feed AS4134 follow up this ip (review=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(review) in same window 118.122.37.107 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhuomian ... follow up this domain (xzzxjly.com) as RSS-Feedlookup xzzxjly.com at virustotalfollow up this domain(xzzxjly.com) xzzxjly.com follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (anti-spam@ns.chinanet.cn.net) as RSS-Feed anti-spam@ns.chinanet.cn.net follow up this itemfollow up this item 118.120.0.0 - 118.123.255.255 follow up this item CHINANET-SC follow up this item CHINANET Sichuan province networkChina TelecomA12,Xin-Jie-Kou-Wai StreetBeijing 100088 follow up this item f1g1ns2.dnspod.net follow up this item f1g1ns1.dnspod.net follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhuomian ...
19 follow up this item(33930906) 33930906 Report false positive Report closed case make a suggestion 2014-07-13 12:21:04     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (fe0afaf62536c6be758b8c77cd4d75f4)follow up this md5sum(fe0afaf62536c6be758b8c77cd4d75f4)follow up this malware() for scanner () in md5 table0/43 (0.0%) 
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhainan/ ...  up alive follow up this ip (ip=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(ip) in same window 118.122.37.107 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4134) in networks tablefollow up this itemfollow up this AS (AS4134) as RSS-Feed AS4134 follow up this ip (review=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(review) in same window 118.122.37.107 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhainan/ ... follow up this domain (xzzxjly.com) as RSS-Feedlookup xzzxjly.com at virustotalfollow up this domain(xzzxjly.com) xzzxjly.com follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (anti-spam@ns.chinanet.cn.net) as RSS-Feed anti-spam@ns.chinanet.cn.net follow up this itemfollow up this item 118.120.0.0 - 118.123.255.255 follow up this item CHINANET-SC follow up this item CHINANET Sichuan province networkChina TelecomA12,Xin-Jie-Kou-Wai StreetBeijing 100088 follow up this item f1g1ns2.dnspod.net follow up this item f1g1ns1.dnspod.net follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhainan/ ...
20 follow up this item(33930905) 33930905 Report false positive Report closed case make a suggestion 2014-07-13 12:21:04     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
17/53 (32.1%) 
 Gen:Variant.Graftor.55465
Artemis!FE0AFAF62536
Trojan
(
0049aac41
)
Suspicious_GEN.F47V0709
Win32:Malware-gen
Gen:Variant.Graftor.55465
Gen:Variant.Graftor.55465
Gen:Variant.Graftor.55465
(B)
Gen:Variant.Graftor.55465
Trojan.Win32.Generic!BT
TR/Graftor.5 
 lookup in virustotal.com (fe0afaf62536c6be758b8c77cd4d75f4)-->[http://www.virustotal.com/latest-report.html?resource=fe0afaf62536c6be758b8c77cd4d75f4]follow up this md5sum(fe0afaf62536c6be758b8c77cd4d75f4)follow up this itemfollow up this virusname (Win32%2FRiskWare.Chindo.A) as RSS-Feedfollow up this malware(Win32%2FRiskWare.Chindo.A) for scanner (undef) in md5 table17/53 (32.1%) Win32/RiskWare.Chindo.A
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhainan/ ...  up alive follow up this ip (ip=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(ip) in same window 118.122.37.107 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4134) in networks tablefollow up this itemfollow up this AS (AS4134) as RSS-Feed AS4134 follow up this ip (review=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(review) in same window 118.122.37.107 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhainan/ ... follow up this domain (xzzxjly.com) as RSS-Feedlookup xzzxjly.com at virustotalfollow up this domain(xzzxjly.com) xzzxjly.com follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (anti-spam@ns.chinanet.cn.net) as RSS-Feed anti-spam@ns.chinanet.cn.net follow up this itemfollow up this item 118.120.0.0 - 118.123.255.255 follow up this item CHINANET-SC follow up this item CHINANET Sichuan province networkChina TelecomA12,Xin-Jie-Kou-Wai StreetBeijing 100088 follow up this item f1g1ns2.dnspod.net follow up this item f1g1ns1.dnspod.net follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhainan/ ...
21 follow up this item(33930904) 33930904 Report false positive Report closed case make a suggestion 2014-07-13 12:21:04     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (fe0afaf62536c6be758b8c77cd4d75f4)follow up this md5sum(fe0afaf62536c6be758b8c77cd4d75f4)follow up this malware() for scanner () in md5 table0/43 (0.0%) 
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhainan/ ...  up alive follow up this ip (ip=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(ip) in same window 118.122.37.107 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4134) in networks tablefollow up this itemfollow up this AS (AS4134) as RSS-Feed AS4134 follow up this ip (review=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(review) in same window 118.122.37.107 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhainan/ ... follow up this domain (xzzxjly.com) as RSS-Feedlookup xzzxjly.com at virustotalfollow up this domain(xzzxjly.com) xzzxjly.com follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (anti-spam@ns.chinanet.cn.net) as RSS-Feed anti-spam@ns.chinanet.cn.net follow up this itemfollow up this item 118.120.0.0 - 118.123.255.255 follow up this item CHINANET-SC follow up this item CHINANET Sichuan province networkChina TelecomA12,Xin-Jie-Kou-Wai StreetBeijing 100088 follow up this item f1g1ns2.dnspod.net follow up this item f1g1ns1.dnspod.net follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhainan/ ...
22 follow up this item(33930903) 33930903 Report false positive Report closed case make a suggestion 2014-07-13 12:21:04     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (fe0afaf62536c6be758b8c77cd4d75f4)follow up this md5sum(fe0afaf62536c6be758b8c77cd4d75f4)follow up this malware() for scanner () in md5 table0/43 (0.0%) 
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhainan/ ...  up alive follow up this ip (ip=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(ip) in same window 118.122.37.107 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4134) in networks tablefollow up this itemfollow up this AS (AS4134) as RSS-Feed AS4134 follow up this ip (review=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(review) in same window 118.122.37.107 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhainan/ ... follow up this domain (xzzxjly.com) as RSS-Feedlookup xzzxjly.com at virustotalfollow up this domain(xzzxjly.com) xzzxjly.com follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (anti-spam@ns.chinanet.cn.net) as RSS-Feed anti-spam@ns.chinanet.cn.net follow up this itemfollow up this item 118.120.0.0 - 118.123.255.255 follow up this item CHINANET-SC follow up this item CHINANET Sichuan province networkChina TelecomA12,Xin-Jie-Kou-Wai StreetBeijing 100088 follow up this item f1g1ns2.dnspod.net follow up this item f1g1ns1.dnspod.net follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/zhainan/ ...
23 follow up this item(33930902) 33930902 Report false positive Report closed case make a suggestion 2014-07-13 12:21:04     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (4a2c108456a7c4b4c1bbe1a3326950a2)follow up this md5sum(4a2c108456a7c4b4c1bbe1a3326950a2)follow up this malware() for scanner () in md5 table0/43 (0.0%) 
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/xiaozhi/ ...  up alive follow up this ip (ip=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(ip) in same window 118.122.37.107 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4134) in networks tablefollow up this itemfollow up this AS (AS4134) as RSS-Feed AS4134 follow up this ip (review=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(review) in same window 118.122.37.107 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/xiaozhi/ ... follow up this domain (xzzxjly.com) as RSS-Feedlookup xzzxjly.com at virustotalfollow up this domain(xzzxjly.com) xzzxjly.com follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (anti-spam@ns.chinanet.cn.net) as RSS-Feed anti-spam@ns.chinanet.cn.net follow up this itemfollow up this item 118.120.0.0 - 118.123.255.255 follow up this item CHINANET-SC follow up this item CHINANET Sichuan province networkChina TelecomA12,Xin-Jie-Kou-Wai StreetBeijing 100088 follow up this item f1g1ns2.dnspod.net follow up this item f1g1ns1.dnspod.net follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/xiaozhi/ ...
24 follow up this item(33930901) 33930901 Report false positive Report closed case make a suggestion 2014-07-13 12:21:04     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (4a2c108456a7c4b4c1bbe1a3326950a2)follow up this md5sum(4a2c108456a7c4b4c1bbe1a3326950a2)follow up this malware() for scanner () in md5 table0/43 (0.0%) 
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/xiaozhi/ ...  up alive follow up this ip (ip=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(ip) in same window 118.122.37.107 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4134) in networks tablefollow up this itemfollow up this AS (AS4134) as RSS-Feed AS4134 follow up this ip (review=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(review) in same window 118.122.37.107 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/xiaozhi/ ... follow up this domain (xzzxjly.com) as RSS-Feedlookup xzzxjly.com at virustotalfollow up this domain(xzzxjly.com) xzzxjly.com follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (anti-spam@ns.chinanet.cn.net) as RSS-Feed anti-spam@ns.chinanet.cn.net follow up this itemfollow up this item 118.120.0.0 - 118.123.255.255 follow up this item CHINANET-SC follow up this item CHINANET Sichuan province networkChina TelecomA12,Xin-Jie-Kou-Wai StreetBeijing 100088 follow up this item f1g1ns2.dnspod.net follow up this item f1g1ns1.dnspod.net follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/xiaozhi/ ...
25 follow up this item(33930900) 33930900 Report false positive Report closed case make a suggestion 2014-07-13 12:21:04     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (4a2c108456a7c4b4c1bbe1a3326950a2)follow up this md5sum(4a2c108456a7c4b4c1bbe1a3326950a2)follow up this malware() for scanner () in md5 table0/43 (0.0%) 
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/xiaozhi/ ...  up alive follow up this ip (ip=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(ip) in same window 118.122.37.107 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4134) in networks tablefollow up this itemfollow up this AS (AS4134) as RSS-Feed AS4134 follow up this ip (review=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(review) in same window 118.122.37.107 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/xiaozhi/ ... follow up this domain (xzzxjly.com) as RSS-Feedlookup xzzxjly.com at virustotalfollow up this domain(xzzxjly.com) xzzxjly.com follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (anti-spam@ns.chinanet.cn.net) as RSS-Feed anti-spam@ns.chinanet.cn.net follow up this itemfollow up this item 118.120.0.0 - 118.123.255.255 follow up this item CHINANET-SC follow up this item CHINANET Sichuan province networkChina TelecomA12,Xin-Jie-Kou-Wai StreetBeijing 100088 follow up this item f1g1ns2.dnspod.net follow up this item f1g1ns1.dnspod.net follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/xiaozhi/ ...
helpLine help#descendigascending helpDatedescendigascending helpCloseddescendigascending helphours helpcontributordescendigascending helpvirusnamedescendigascending helpURLdescendigascending helpip state helpresponsedescendigascending helpIp initialdescendigascending helpAS#descendigascending helpip reviewdescendigascending helpURLdescendigascending helpDomaindescendigascending helpcountrydescendigascending helpsourcedescendigascending helpemaildescendigascending helpinetnumdescendigascending helpnetnamedescendigascending helpdescrdescendigascending helpns1descendigascending helpns2descendigascending helpns3descendigascending helpns4descendigascending helpns5descendigascending helpURLdescendigascending
26 follow up this item(33930899) 33930899 Report false positive Report closed case make a suggestion 2014-07-13 12:21:03     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
follow up this itemfollow up this virusname (Generic.47C) as RSS-Feedfollow up this malware(Generic.47C) for scanner (undef) in md5 table14/54 (25.9%) Generic.47C
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/xiaozhi/ ...  up alive follow up this ip (ip=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(ip) in same window 118.122.37.107 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4134) in networks tablefollow up this itemfollow up this AS (AS4134) as RSS-Feed AS4134 follow up this ip (review=118.122.37.107) as RSS-FeedSenderBaselookup 118.122.37.107 at virustotallookup 118.122.37.107 at Rus CERT university stuttgart germanylookup 118.122.37.107 at apnicfollow up this item(review) in same window 118.122.37.107 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/xiaozhi/ ... follow up this domain (xzzxjly.com) as RSS-Feedlookup xzzxjly.com at virustotalfollow up this domain(xzzxjly.com) xzzxjly.com follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (anti-spam@ns.chinanet.cn.net) as RSS-Feed anti-spam@ns.chinanet.cn.net follow up this itemfollow up this item 118.120.0.0 - 118.123.255.255 follow up this item CHINANET-SC follow up this item CHINANET Sichuan province networkChina TelecomA12,Xin-Jie-Kou-Wai StreetBeijing 100088 follow up this item f1g1ns2.dnspod.net follow up this item f1g1ns1.dnspod.net follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://zhainan.xzzxjly.com/down/xiaozhi/ ...
27 follow up this item(33930897) 33930897 Report false positive Report closed case make a suggestion 2014-07-13 12:21:03     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
6/53 (11.3%) 
 Artemis!74F16AE6CE22
HEUR:Trojan.Win32.Generic
Win32.Adware.Malplayer.Auto
Heuristic.BehavesLike.Win32.Suspicious-PKR.O
suspected
of
Trojan.Downloader.gen.h
Win32/RiskWare.Chindo.B 
 lookup in virustotal.com (74f16ae6ce22eb0ec7c59dfa3f6750ee)-->[http://www.virustotal.com/latest-report.html?resource=74f16ae6ce22eb0ec7c59dfa3f6750ee]follow up this md5sum(74f16ae6ce22eb0ec7c59dfa3f6750ee)follow up this itemfollow up this virusname (Win32%2FRiskWare.Chindo.A) as RSS-Feedfollow up this malware(Win32%2FRiskWare.Chindo.A) for scanner (undef) in md5 table6/53 (11.3%) Win32/RiskWare.Chindo.A
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://yunbo.rmsh.cn/ceaT_1002_1699.exe  up alive follow up this ip (ip=61.147.113.69) as RSS-FeedSenderBaselookup 61.147.113.69 at virustotallookup 61.147.113.69 at Rus CERT university stuttgart germanylookup 61.147.113.69 at apnicfollow up this item(ip) in same window 61.147.113.69 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS23650) in networks tablefollow up this itemfollow up this AS (AS23650) as RSS-Feed AS23650 follow up this ip (review=61.147.113.69) as RSS-FeedSenderBaselookup 61.147.113.69 at virustotallookup 61.147.113.69 at Rus CERT university stuttgart germanylookup 61.147.113.69 at apnicfollow up this item(review) in same window 61.147.113.69 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://yunbo.rmsh.cn/ceaT_1002_1699.exe follow up this domain (rmsh.cn) as RSS-Feedlookup rmsh.cn at virustotalfollow up this domain(rmsh.cn) rmsh.cn follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (abuse@jsinfo.net) as RSS-Feed abuse@jsinfo.net follow up this itemfollow up this item 61.147.0.0 - 61.147.255.255 follow up this item CHINANET-JS follow up this item CHINANET jiangsu province networkChina TelecomA12,Xin-Jie-Kou-Wai StreetBeijing 100088CHINANET jiangsu province network follow up this item f1g1ns1.dnspod.net follow up this item f1g1ns2.dnspod.net follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://yunbo.rmsh.cn/ceaT_1002_1699.exe
28 follow up this item(33930894) 33930894 Report false positive Report closed case make a suggestion 2014-07-13 12:21:01     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
22/52 (42.3%) 
 W32.Clodd39.Trojan.0110
Artemis!8CB9645F47C5
PUP.Optional.Casino
Trojan.Win32.Buzus
Trojan/Buzus.ktlq
W32/Buzus.J.gen!Eldorado
Suspicious_Gen2.QKQNR
Win32/Gambler.B
Trojan.Buzus-9397
TrojWare.Win32.Buzus.jgfr
Trojan.AntiAV.Win32.4015
GAME/Casino.Gen2
Heu 
 lookup in virustotal.com (8cb9645f47c5995d1f0e2d6b25d7d456)-->[http://www.virustotal.com/latest-report.html?resource=8cb9645f47c5995d1f0e2d6b25d7d456]follow up this md5sum(8cb9645f47c5995d1f0e2d6b25d7d456)follow up this itemfollow up this virusname (Win32%2FRiskWare.Chindo.A) as RSS-Feedfollow up this malware(Win32%2FRiskWare.Chindo.A) for scanner (undef) in md5 table22/52 (42.3%) Win32/RiskWare.Chindo.A
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://xsbitmtdrt.chips-profit.biz/Fr-Wi ...  up alive follow up this ip (ip=67.111.244.101) as RSS-FeedSenderBaselookup 67.111.244.101 at virustotallookup 67.111.244.101 at Rus CERT university stuttgart germanylookup 67.111.244.101 at ARINfollow up this item(ip) in same window 67.111.244.101 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS2828) in networks tablefollow up this itemfollow up this AS (AS2828) as RSS-Feed AS2828 follow up this ip (review=67.111.244.101) as RSS-FeedSenderBaselookup 67.111.244.101 at virustotallookup 67.111.244.101 at Rus CERT university stuttgart germanylookup 67.111.244.101 at ARINfollow up this item(review) in same window 67.111.244.101 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://xsbitmtdrt.chips-profit.biz/Fr-Wi ... follow up this domain (chips-profit.biz) as RSS-Feedlookup chips-profit.biz at virustotalfollow up this domain(chips-profit.biz) chips-profit.biz follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (abuse@xo.net) as RSS-Feed abuse@xo.net follow up this itemfollow up this item 67.104.0.0 - 67.111.255.255 follow up this item XOXO-BLK-17 follow up this item XO Communications XOXO 13865 Sunrise Valley Drive Herdon VA 20171 follow up this item ns2.regnames2.com follow up this item ns1.regnames2.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://xsbitmtdrt.chips-profit.biz/Fr-Wi ...
29 follow up this item(33930892) 33930892 Report false positive Report closed case make a suggestion 2014-07-13 12:21:01     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
30/51 (58.8%) 
 Trojan.Generic.8972172
Trojan.Generic.8972172
Trojan
(
0042e5231
)
Trojan
(
0042e5231
)
Trojan.Packed!EgxY9uvKZu0
Packed.Vmpbad!gen4
Troj_Generic.KLWJX
TROJ_GEN.R47CEDI
Win32:Trainer-F
[PUP]
Trojan.Generic.8972172
Trojan.Win32.Black.bxobhg
Trojan.Generic 
 lookup in virustotal.com (971db1dc32990d72c49039ef70cd08ce)-->[http://www.virustotal.com/latest-report.html?resource=971db1dc32990d72c49039ef70cd08ce]follow up this md5sum(971db1dc32990d72c49039ef70cd08ce)follow up this itemfollow up this virusname (Win32%2FRiskWare.Chindo.A) as RSS-Feedfollow up this malware(Win32%2FRiskWare.Chindo.A) for scanner (undef) in md5 table30/51 (58.8%) Win32/RiskWare.Chindo.A
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://xiazai.wanyx.com/buding/xrv1.3esx ...  up alive follow up this ip (ip=122.226.120.3) as RSS-FeedSenderBaselookup 122.226.120.3 at virustotallookup 122.226.120.3 at Rus CERT university stuttgart germanylookup 122.226.120.3 at apnicfollow up this item(ip) in same window 122.226.120.3 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4134) in networks tablefollow up this itemfollow up this AS (AS4134) as RSS-Feed AS4134 follow up this ip (review=122.226.120.3) as RSS-FeedSenderBaselookup 122.226.120.3 at virustotallookup 122.226.120.3 at Rus CERT university stuttgart germanylookup 122.226.120.3 at apnicfollow up this item(review) in same window 122.226.120.3 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://xiazai.wanyx.com/buding/xrv1.3esx ... follow up this domain (wanyx.com) as RSS-Feedlookup wanyx.com at virustotalfollow up this domain(wanyx.com) wanyx.com follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (anti-spam@ns.chinanet.cn.net) as RSS-Feed anti-spam@ns.chinanet.cn.net follow up this itemfollow up this item 122.224.0.0 - 122.239.255.255 follow up this item CHINANET-ZJ follow up this item CHINANET Zhejiang province networkChina TelecomNo.31,jingrong streetBeijing 100032China Telecom Zhejiang Province follow up this item ns1.dnsv2.com follow up this item ns2.dnsv2.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://xiazai.wanyx.com/buding/xrv1.3esx ...
30 follow up this item(33930891) 33930891 Report false positive Report closed case make a suggestion 2014-07-13 12:21:00     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
22/52 (42.3%) 
 W32.Clodd39.Trojan.0110
Artemis!8CB9645F47C5
PUP.Optional.Casino
Trojan.Win32.Buzus
Trojan/Buzus.ktlq
W32/Buzus.J.gen!Eldorado
Suspicious_Gen2.QKQNR
Win32/Gambler.B
Trojan.Buzus-9397
TrojWare.Win32.Buzus.jgfr
Trojan.AntiAV.Win32.4015
GAME/Casino.Gen2
Heu 
 lookup in virustotal.com (8cb9645f47c5995d1f0e2d6b25d7d456)-->[http://www.virustotal.com/latest-report.html?resource=8cb9645f47c5995d1f0e2d6b25d7d456]follow up this md5sum(8cb9645f47c5995d1f0e2d6b25d7d456)follow up this itemfollow up this virusname (Win32%2FRiskWare.Chindo.A) as RSS-Feedfollow up this malware(Win32%2FRiskWare.Chindo.A) for scanner (undef) in md5 table22/52 (42.3%) Win32/RiskWare.Chindo.A
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://xddcjkugtw.chips-profit.biz/Fr-Wi ...  up alive follow up this ip (ip=67.111.244.101) as RSS-FeedSenderBaselookup 67.111.244.101 at virustotallookup 67.111.244.101 at Rus CERT university stuttgart germanylookup 67.111.244.101 at ARINfollow up this item(ip) in same window 67.111.244.101 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS2828) in networks tablefollow up this itemfollow up this AS (AS2828) as RSS-Feed AS2828 follow up this ip (review=67.111.244.101) as RSS-FeedSenderBaselookup 67.111.244.101 at virustotallookup 67.111.244.101 at Rus CERT university stuttgart germanylookup 67.111.244.101 at ARINfollow up this item(review) in same window 67.111.244.101 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://xddcjkugtw.chips-profit.biz/Fr-Wi ... follow up this domain (chips-profit.biz) as RSS-Feedlookup chips-profit.biz at virustotalfollow up this domain(chips-profit.biz) chips-profit.biz follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (abuse@xo.net) as RSS-Feed abuse@xo.net follow up this itemfollow up this item 67.104.0.0 - 67.111.255.255 follow up this item XOXO-BLK-17 follow up this item XO Communications XOXO 13865 Sunrise Valley Drive Herdon VA 20171 follow up this item ns2.regnames2.com follow up this item ns1.regnames2.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://xddcjkugtw.chips-profit.biz/Fr-Wi ...
31 follow up this item(33930890) 33930890 Report false positive Report closed case make a suggestion 2014-07-13 12:21:00     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
17/53 (32.1%) 
 
Generic.5FB
ADWARE/Adware.Gen7
Win32:InstalleRex-CG
PUP
Gen:Variant.Adware.Graftor.145817
a
variant
of
Win32/AdWare.MultiPlug.AJ
Gen:Variant.Adware.Graftor.145817
(B)
Gen:Variant.Adware.Graftor.145817
(B)
Gen:Variant.Adware.Graftor.145817
Gen:Variant.Ad 
 lookup in virustotal.com (0e51d5f3eecce6ca5520823e85a402e3)-->[http://www.virustotal.com/latest-report.html?resource=0e51d5f3eecce6ca5520823e85a402e3]lookup in threatexpert.comlookup the sha256(581358a93e5d7de26f5224e83dab26fff863d3578f6d173badaba777348b15cd) in comodo.comfollow up this md5sum(0e51d5f3eecce6ca5520823e85a402e3)follow up this itemfollow up this virusname (ADWARE%2FAdware.Gen7) as RSS-Feedfollow up this malware(ADWARE%2FAdware.Gen7) for scanner (AntiVir) in md5 table17/53 (32.1%) ADWARE/Adware.Gen7
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.zilliontoolkitusa.info/v377?p ...  up alive follow up this ip (ip=54.191.92.197) as RSS-FeedSenderBaselookup 54.191.92.197 at virustotallookup 54.191.92.197 at Rus CERT university stuttgart germanylookup 54.191.92.197 at ARINfollow up this item(ip) in same window 54.191.92.197 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (ASNA.54.0.0.0 - 54.223.255.255) in networks tablefollow up this itemfollow up this AS (ASNA.54.0.0.0 - 54.223.255.255) as RSS-Feed ASNA.54.0.0.0 - 54.223.255.255 follow up this ip (review=54.191.83.149) as RSS-FeedSenderBaselookup 54.191.83.149 at virustotallookup 54.191.83.149 at Rus CERT university stuttgart germanylookup 54.191.83.149 at ARINfollow up this item(review) in same window 54.191.83.149 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.zilliontoolkitusa.info/v377?p ... follow up this domain (zilliontoolkitusa.info) as RSS-Feedlookup zilliontoolkitusa.info at virustotalfollow up this domain(zilliontoolkitusa.info) zilliontoolkitusa.info follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (whitehouse_telecom@merck.com) as RSS-Feed whitehouse_telecom@merck.com follow up this itemfollow up this item 54.0.0.0 - 54.223.255.255 follow up this item MERCK2 follow up this item Merck and Co., Inc. MERCKA 126 East Lincoln Avenue Rahway NJ 07095 follow up this item lara.ns.cloudflare.com follow up this item pete.ns.cloudflare.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.zilliontoolkitusa.info/v377?p ...
32 follow up this item(33930889) 33930889 Report false positive Report closed case make a suggestion 2014-07-13 12:21:00     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
5/52 (9.6%) 
 WS.Reputation.1
Suspicious_GEN.F47V0712
Trojan.Nsis.Downloader.dbtvju
Win32.Adware.Malplayer.Odsg
Hacktool.Win32.Chindo.BA 
 lookup in virustotal.com (dd5106fa502bae636f5eacb7303c008f)-->[http://www.virustotal.com/latest-report.html?resource=82b35ec1e887063564bfb098a1c0e823]follow up this md5sum(dd5106fa502bae636f5eacb7303c008f)follow up this itemfollow up this virusname (Win32%2FRiskWare.Chindo.A) as RSS-Feedfollow up this malware(Win32%2FRiskWare.Chindo.A) for scanner () in md5 table5/52 (9.6%) Win32/RiskWare.Chindo.A
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.yyleixin.com/bBKP_380_2228.ex ...  up alive follow up this ip (ip=42.121.253.211) as RSS-FeedSenderBaselookup 42.121.253.211 at virustotallookup 42.121.253.211 at Rus CERT university stuttgart germanylookup 42.121.253.211 at apnicfollow up this item(ip) in same window 42.121.253.211 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS37963) in networks tablefollow up this itemfollow up this AS (AS37963) as RSS-Feed AS37963 follow up this ip (review=42.121.253.211) as RSS-FeedSenderBaselookup 42.121.253.211 at virustotallookup 42.121.253.211 at Rus CERT university stuttgart germanylookup 42.121.253.211 at apnicfollow up this item(review) in same window 42.121.253.211 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.yyleixin.com/bBKP_380_2228.ex ... follow up this domain (yyleixin.com) as RSS-Feedlookup yyleixin.com at virustotalfollow up this domain(yyleixin.com) yyleixin.com follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (xianlong.zeng@aliyun-inc.com) as RSS-Feed xianlong.zeng@aliyun-inc.com follow up this itemfollow up this item 42.120.0.0 - 42.121.255.255 follow up this item ALISOFT follow up this item Aliyun Computing Co., LTD5F, Builing D, the West Lake International Plaza of S&TNo.391 Wen'er Road, Hangzhou, Zhejiang, China, 310099 follow up this item f1g1ns1.dnspod.net follow up this item f1g1ns2.dnspod.net follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.yyleixin.com/bBKP_380_2228.ex ...
33 follow up this item(33930888) 33930888 Report false positive Report closed case make a suggestion 2014-07-13 12:21:00     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
37/54 (68.5%) 
 HW32.Inectrj.locs
Gen:Variant.Zusy.97793
Artemis!2F2741BD2431
Trojan.Win32.Generic!BT
Trojan
(
0049cc571
)
Trojan
(
0049cc571
)
Trojan.Win32.Agent.dcafkv
W32/Heuristic-KPP!Eldorado
WS.Reputation.1
Suspicious_Gen5.ASDOL
Win32/FakeIE_i
Suspici.B21A095B
Win 
 lookup in virustotal.com (4d6b4ce5387908cc0d202b376ffe547c)-->[http://www.virustotal.com/latest-report.html?resource=4d6b4ce5387908cc0d202b376ffe547c]follow up this md5sum(4d6b4ce5387908cc0d202b376ffe547c)follow up this itemfollow up this virusname (Win32%2FRiskWare.Chindo.A) as RSS-Feedfollow up this malware(Win32%2FRiskWare.Chindo.A) for scanner (undef) in md5 table37/54 (68.5%) Win32/RiskWare.Chindo.A
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.yhyiqi.com/888888/HiJack.zip? ...  up alive follow up this ip (ip=101.226.200.183) as RSS-FeedSenderBaselookup 101.226.200.183 at virustotallookup 101.226.200.183 at Rus CERT university stuttgart germanylookup 101.226.200.183 at apnicfollow up this item(ip) in same window 101.226.200.183 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4812) in networks tablefollow up this itemfollow up this AS (AS4812) as RSS-Feed AS4812 follow up this ip (review=101.226.200.183) as RSS-FeedSenderBaselookup 101.226.200.183 at virustotallookup 101.226.200.183 at Rus CERT university stuttgart germanylookup 101.226.200.183 at apnicfollow up this item(review) in same window 101.226.200.183 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.yhyiqi.com/888888/HiJack.zip? ... follow up this domain (yhyiqi.com) as RSS-Feedlookup yhyiqi.com at virustotalfollow up this domain(yhyiqi.com) yhyiqi.com follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (wengwq@online.sh.cn) as RSS-Feed wengwq@online.sh.cn follow up this itemfollow up this item 101.224.0.0 - 101.231.255.255 follow up this item CHINANET-SH follow up this item CHINANET SHANGHAI PROVINCE NETWORKChina TelecomNo.31,jingrong streetBeijing 100032 follow up this item f1g1ns1.dnspod.net follow up this item f1g1ns2.dnspod.net follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.yhyiqi.com/888888/HiJack.zip? ...
34 follow up this item(33930884) 33930884 Report false positive Report closed case make a suggestion 2014-07-13 12:21:00     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (c6f522b63efa0bbc4caccda7b052e251)follow up this md5sum(c6f522b63efa0bbc4caccda7b052e251)follow up this malware() for scanner () in md5 table0/43 (0.0%) 
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.wmyycm.net/sjzc.exe  up alive follow up this ip (ip=116.255.213.234) as RSS-FeedSenderBaselookup 116.255.213.234 at virustotallookup 116.255.213.234 at Rus CERT university stuttgart germanylookup 116.255.213.234 at apnicfollow up this item(ip) in same window 116.255.213.234 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4837) in networks tablefollow up this itemfollow up this AS (AS4837) as RSS-Feed AS4837 follow up this ip (review=116.255.213.234) as RSS-FeedSenderBaselookup 116.255.213.234 at virustotallookup 116.255.213.234 at Rus CERT university stuttgart germanylookup 116.255.213.234 at apnicfollow up this item(review) in same window 116.255.213.234 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.wmyycm.net/sjzc.exe follow up this domain (wmyycm.net) as RSS-Feedlookup wmyycm.net at virustotalfollow up this domain(wmyycm.net) wmyycm.net follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (abuse@cnc-noc.net) as RSS-Feed abuse@cnc-noc.net follow up this itemfollow up this item 116.255.128.0 - 116.255.255.255 follow up this item GIANT follow up this item ZhengZhou GIANT Computer Network Technology Co., LtdRoom 701 Information Building NO.144 Garden Road, ZhenzhouHenan, P.R.ChinaCNC Group CHINA169 Henan Province NetworkAddresses from CNNIC(GIANT) follow up this item ns1.360wzb.com follow up this item ns2.360wzb.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.wmyycm.net/sjzc.exe
35 follow up this item(33930880) 33930880 Report false positive Report closed case make a suggestion 2014-07-13 12:21:00     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
13/54 (24.1%) 
 Application.Bundler.Somoto.J
Somoto-BetterInstaller
PUP.Optional.Somoto.A
Suspicious.Cloud.5
Win.Adware.Somoto
not-a-virus:AdWare.Win32.Agent.allm
Application.Bundler.Somoto.J
Application.Bundler.Somoto.J
Application.Bundler.Somoto.J
Trojan.Packed.26824
 
 lookup in virustotal.com (214d0c4ea4f5baec705675465a02f742)-->[http://www.virustotal.com/latest-report.html?resource=214d0c4ea4f5baec705675465a02f742]follow up this md5sum(214d0c4ea4f5baec705675465a02f742)follow up this itemfollow up this virusname (Win32%2FRiskWare.Chindo.A) as RSS-Feedfollow up this malware(Win32%2FRiskWare.Chindo.A) for scanner () in md5 table13/54 (24.1%) Win32/RiskWare.Chindo.A
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.wazzasoft.info/installers/cli ...  up alive follow up this ip (ip=54.240.162.142) as RSS-FeedSenderBaselookup 54.240.162.142 at virustotallookup 54.240.162.142 at Rus CERT university stuttgart germanylookup 54.240.162.142 at ARINfollow up this item(ip) in same window 54.240.162.142 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS16509) in networks tablefollow up this itemfollow up this AS (AS16509) as RSS-Feed AS16509 follow up this ip (review=54.230.47.212) as RSS-FeedSenderBaselookup 54.230.47.212 at virustotallookup 54.230.47.212 at Rus CERT university stuttgart germanylookup 54.230.47.212 at ARINfollow up this item(review) in same window 54.230.47.212 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.wazzasoft.info/installers/cli ... follow up this domain (wazzasoft.info) as RSS-Feedlookup wazzasoft.info at virustotalfollow up this domain(wazzasoft.info) wazzasoft.info follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (aes-noc@amazon.com) as RSS-Feed aes-noc@amazon.com follow up this itemfollow up this item 54.240.128.0 - 54.240.191.255 follow up this item AMAZON-2011L follow up this item Amazon Technologies Inc. AT-88-Z 410 Terry Ave N. Seattle WA 98109 follow up this item ns15.domaincontrol.com follow up this item ns16.domaincontrol.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.wazzasoft.info/installers/cli ...
36 follow up this item(33930871) 33930871 Report false positive Report closed case make a suggestion 2014-07-13 12:20:59     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
30/53 (56.6%) 
 
TR/Rogue.11026943.1
Win32:Malware-gen
Trojan.Generic.11026943
W32/Agent.EW.gen!Eldorado
Worm.Win32.Dropper.RA
a
variant
of
Win32/FlyStudio
Trojan.Generic.11026943
(B)
Trojan.Generic.11026943
(B)
W32/Agent.EW.gen!Eldorado
Trojan.Generic.11026943
Riskware 
 lookup in virustotal.com (1de3e89d942c3ca109e97c7cfaba826e)-->[http://www.virustotal.com/latest-report.html?resource=1de3e89d942c3ca109e97c7cfaba826e]lookup in threatexpert.comlookup the sha256(ce90e8c57a05e4ced8b090f482d24b5be15f5d1d5e744eecdcabc2fab83c7b6b) in comodo.comfollow up this md5sum(1de3e89d942c3ca109e97c7cfaba826e)follow up this itemfollow up this virusname (TR%2FRogue.11026943.1) as RSS-Feedfollow up this malware(TR%2FRogue.11026943.1) for scanner (AntiVir) in md5 table30/53 (56.6%) TR/Rogue.11026943.1
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.ucbug.com/uploads/soft/linshi ...  up alive follow up this ip (ip=61.160.224.152) as RSS-FeedSenderBaselookup 61.160.224.152 at virustotallookup 61.160.224.152 at Rus CERT university stuttgart germanylookup 61.160.224.152 at apnicfollow up this item(ip) in same window 61.160.224.152 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS23650) in networks tablefollow up this itemfollow up this AS (AS23650) as RSS-Feed AS23650 follow up this ip (review=61.160.224.152) as RSS-FeedSenderBaselookup 61.160.224.152 at virustotallookup 61.160.224.152 at Rus CERT university stuttgart germanylookup 61.160.224.152 at apnicfollow up this item(review) in same window 61.160.224.152 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.ucbug.com/uploads/soft/linshi ... follow up this domain (ucbug.com) as RSS-Feedlookup ucbug.com at virustotalfollow up this domain(ucbug.com) ucbug.com follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (anti-spam@ns.chinanet.cn.net) as RSS-Feed anti-spam@ns.chinanet.cn.net follow up this itemfollow up this item 61.160.0.0 - 61.160.255.255 follow up this item CHINANET-JS follow up this item CHINANET jiangsu province networkChina TelecomA12,Xin-Jie-Kou-Wai StreetBeijing 100088CHINANET jiangsu province network follow up this item ns2.360wzb.com follow up this item ns1.360wzb.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.ucbug.com/uploads/soft/linshi ...
37 follow up this item(33930870) 33930870 Report false positive Report closed case make a suggestion 2014-07-13 12:20:59     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (02d632256e1b7c445c936ba44ca3e00b)follow up this md5sum(02d632256e1b7c445c936ba44ca3e00b)follow up this malware() for scanner () in md5 table0/43 (0.0%) 
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.tvizleyin.com/ctv/Zoo_Tycoon_ ...  up alive follow up this ip (ip=46.45.171.77) as RSS-FeedSenderBaselookup 46.45.171.77 at virustotallookup 46.45.171.77 at Rus CERT university stuttgart germanylookup 46.45.171.77 at Ripefollow up this item(ip) in same window 46.45.171.77 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS42926) in networks tablefollow up this itemfollow up this AS (AS42926) as RSS-Feed AS42926 follow up this ip (review=46.45.171.77) as RSS-FeedSenderBaselookup 46.45.171.77 at virustotallookup 46.45.171.77 at Rus CERT university stuttgart germanylookup 46.45.171.77 at Ripefollow up this item(review) in same window 46.45.171.77 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.tvizleyin.com/ctv/Zoo_Tycoon_ ... follow up this domain (tvizleyin.com) as RSS-Feedlookup tvizleyin.com at virustotalfollow up this domain(tvizleyin.com) tvizleyin.com follow up this itemfollow up this country (TR) as RSS-Feed TR follow up this itemfollow up this region (RIPE) as RSS-Feed RIPE follow up this itemfollow up this enail (abuse@as42926.net) as RSS-Feed abuse@as42926.net follow up this itemfollow up this item 46.45.128.0 - 46.45.191.255 follow up this item TR-RADORE-20100916 follow up this item Radore Hosting Telekomunikasyon Hizmetleri San. ve Tic. Ltd. Sti. follow up this item frm1.megabithost.com follow up this item frm2.megabithost.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.tvizleyin.com/ctv/Zoo_Tycoon_ ...
38 follow up this item(33930869) 33930869 Report false positive Report closed case make a suggestion 2014-07-13 12:20:59     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
follow up this itemfollow up this virusname (Salih.AB9) as RSS-Feedfollow up this malware(Salih.AB9) for scanner (undef) in md5 table22/53 (41.5%) Salih.AB9
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.tvizleyin.com/ctv/Shameless_2 ...  up alive follow up this ip (ip=46.45.171.77) as RSS-FeedSenderBaselookup 46.45.171.77 at virustotallookup 46.45.171.77 at Rus CERT university stuttgart germanylookup 46.45.171.77 at Ripefollow up this item(ip) in same window 46.45.171.77 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS42926) in networks tablefollow up this itemfollow up this AS (AS42926) as RSS-Feed AS42926 follow up this ip (review=46.45.171.77) as RSS-FeedSenderBaselookup 46.45.171.77 at virustotallookup 46.45.171.77 at Rus CERT university stuttgart germanylookup 46.45.171.77 at Ripefollow up this item(review) in same window 46.45.171.77 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.tvizleyin.com/ctv/Shameless_2 ... follow up this domain (tvizleyin.com) as RSS-Feedlookup tvizleyin.com at virustotalfollow up this domain(tvizleyin.com) tvizleyin.com follow up this itemfollow up this country (TR) as RSS-Feed TR follow up this itemfollow up this region (RIPE) as RSS-Feed RIPE follow up this itemfollow up this enail (abuse@as42926.net) as RSS-Feed abuse@as42926.net follow up this itemfollow up this item 46.45.128.0 - 46.45.191.255 follow up this item TR-RADORE-20100916 follow up this item Radore Hosting Telekomunikasyon Hizmetleri San. ve Tic. Ltd. Sti. follow up this item frm1.megabithost.com follow up this item frm2.megabithost.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.tvizleyin.com/ctv/Shameless_2 ...
39 follow up this item(33930868) 33930868 Report false positive Report closed case make a suggestion 2014-07-13 12:20:59     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
follow up this itemfollow up this virusname (Salih.AB9) as RSS-Feedfollow up this malware(Salih.AB9) for scanner (undef) in md5 table22/53 (41.5%) Salih.AB9
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.tvizleyin.com/ctv/Eta_v7.7.0_ ...  up alive follow up this ip (ip=46.45.171.77) as RSS-FeedSenderBaselookup 46.45.171.77 at virustotallookup 46.45.171.77 at Rus CERT university stuttgart germanylookup 46.45.171.77 at Ripefollow up this item(ip) in same window 46.45.171.77 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS42926) in networks tablefollow up this itemfollow up this AS (AS42926) as RSS-Feed AS42926 follow up this ip (review=46.45.171.77) as RSS-FeedSenderBaselookup 46.45.171.77 at virustotallookup 46.45.171.77 at Rus CERT university stuttgart germanylookup 46.45.171.77 at Ripefollow up this item(review) in same window 46.45.171.77 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.tvizleyin.com/ctv/Eta_v7.7.0_ ... follow up this domain (tvizleyin.com) as RSS-Feedlookup tvizleyin.com at virustotalfollow up this domain(tvizleyin.com) tvizleyin.com follow up this itemfollow up this country (TR) as RSS-Feed TR follow up this itemfollow up this region (RIPE) as RSS-Feed RIPE follow up this itemfollow up this enail (abuse@as42926.net) as RSS-Feed abuse@as42926.net follow up this itemfollow up this item 46.45.128.0 - 46.45.191.255 follow up this item TR-RADORE-20100916 follow up this item Radore Hosting Telekomunikasyon Hizmetleri San. ve Tic. Ltd. Sti. follow up this item frm1.megabithost.com follow up this item frm2.megabithost.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.tvizleyin.com/ctv/Eta_v7.7.0_ ...
40 follow up this item(33930866) 33930866 Report false positive Report closed case make a suggestion 2014-07-13 12:20:59     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
4/52 (7.7%) 
 
Trojan.Fakealert.39137
WS.Reputation.1
Suspicious_GEN.F47V0710
suspected
of
Unknown.Win32Virus 
 lookup in virustotal.com (a5c59516f90373633bbe37734e8e6294)-->[http://www.virustotal.com/latest-report.html?resource=a5c59516f90373633bbe37734e8e6294]lookup in threatexpert.comlookup the sha256(dc7d8ce1b8a48d3b3616f8102529f4bfba09df17cf626dedf594d115fc82699e) in comodo.comfollow up this md5sum(a5c59516f90373633bbe37734e8e6294)follow up this itemfollow up this virusname (Trojan.Fakealert.39137) as RSS-Feedfollow up this malware(Trojan.Fakealert.39137) for scanner (DrWeb) in md5 table4/52 (7.7%) Trojan.Fakealert.39137
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.tradingpredictor.com/download ...  up alive follow up this ip (ip=92.28.118.89) as RSS-FeedSenderBaselookup 92.28.118.89 at virustotallookup 92.28.118.89 at Rus CERT university stuttgart germanylookup 92.28.118.89 at Ripefollow up this item(ip) in same window 92.28.118.89 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS13285) in networks tablefollow up this itemfollow up this AS (AS13285) as RSS-Feed AS13285 follow up this ip (review=92.28.118.89) as RSS-FeedSenderBaselookup 92.28.118.89 at virustotallookup 92.28.118.89 at Rus CERT university stuttgart germanylookup 92.28.118.89 at Ripefollow up this item(review) in same window 92.28.118.89 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.tradingpredictor.com/download ... follow up this domain (tradingpredictor.com) as RSS-Feedlookup tradingpredictor.com at virustotalfollow up this domain(tradingpredictor.com) tradingpredictor.com follow up this itemfollow up this country (GB) as RSS-Feed GB follow up this itemfollow up this region (RIPE) as RSS-Feed RIPE follow up this itemfollow up this enail (abuse@opaltelecom.net) as RSS-Feed abuse@opaltelecom.net follow up this itemfollow up this item 92.24.0.0 - 92.29.255.255 follow up this item OPAL-DSL follow up this item Opal Telecom DSLOpal-Net Autonomous System follow up this item ns1.directnic.com follow up this item ns0.directnic.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.tradingpredictor.com/download ...
41 follow up this item(33930864) 33930864 Report false positive Report closed case make a suggestion 2014-07-13 12:20:59     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (6322b9205167ba845015c1103e993915)follow up this md5sum(6322b9205167ba845015c1103e993915)follow up this malware() for scanner () in md5 table0/43 (0.0%) 
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.swoquix.info/installers/cli/1 ...  up alive follow up this ip (ip=54.230.45.78) as RSS-FeedSenderBaselookup 54.230.45.78 at virustotallookup 54.230.45.78 at Rus CERT university stuttgart germanylookup 54.230.45.78 at ARINfollow up this item(ip) in same window 54.230.45.78 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS16509) in networks tablefollow up this itemfollow up this AS (AS16509) as RSS-Feed AS16509 follow up this ip (review=54.230.44.25) as RSS-FeedSenderBaselookup 54.230.44.25 at virustotallookup 54.230.44.25 at Rus CERT university stuttgart germanylookup 54.230.44.25 at ARINfollow up this item(review) in same window 54.230.44.25 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.swoquix.info/installers/cli/1 ... follow up this domain (swoquix.info) as RSS-Feedlookup swoquix.info at virustotalfollow up this domain(swoquix.info) swoquix.info follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (aes-noc@amazon.com) as RSS-Feed aes-noc@amazon.com follow up this itemfollow up this item 54.224.0.0 - 54.239.255.255 follow up this item AMAZON-2011L follow up this item Amazon Technologies Inc. AT-88-Z 410 Terry Ave N. Seattle WA 98109 follow up this item ns16.domaincontrol.com follow up this item ns15.domaincontrol.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.swoquix.info/installers/cli/1 ...
42 follow up this item(33930849) 33930849 Report false positive Report closed case make a suggestion 2014-07-13 12:20:58     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
22/54 (40.7%) 
 Application.Bundler.Somoto.I
PUP.Optional.Somoto.A
BetterInstaller
(fs)
Trojan.Win32.Agent.cruvdt
W32/SomotoBetterInstaller.A!Eldorado
Win32:PUP-gen
[PUP]
NSIS.Adware.Somoto-1
not-a-virus:Downloader.NSIS.Agent.go
Application.Bundler.Somoto.I
PUA.Somoto!
 
 lookup in virustotal.com (0f6192ce43b3f6e156c754913ee8da3a)-->[http://www.virustotal.com/latest-report.html?resource=0f6192ce43b3f6e156c754913ee8da3a]follow up this md5sum(0f6192ce43b3f6e156c754913ee8da3a)follow up this itemfollow up this virusname (Win32%2FRiskWare.Chindo.A) as RSS-Feedfollow up this malware(Win32%2FRiskWare.Chindo.A) for scanner () in md5 table22/54 (40.7%) Win32/RiskWare.Chindo.A
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.skeelduck.info/installers/b/4 ...  up alive follow up this ip (ip=54.230.47.58) as RSS-FeedSenderBaselookup 54.230.47.58 at virustotallookup 54.230.47.58 at Rus CERT university stuttgart germanylookup 54.230.47.58 at ARINfollow up this item(ip) in same window 54.230.47.58 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS16509) in networks tablefollow up this itemfollow up this AS (AS16509) as RSS-Feed AS16509 follow up this ip (review=54.230.45.88) as RSS-FeedSenderBaselookup 54.230.45.88 at virustotallookup 54.230.45.88 at Rus CERT university stuttgart germanylookup 54.230.45.88 at ARINfollow up this item(review) in same window 54.230.45.88 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.skeelduck.info/installers/b/4 ... follow up this domain (skeelduck.info) as RSS-Feedlookup skeelduck.info at virustotalfollow up this domain(skeelduck.info) skeelduck.info follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (aes-noc@amazon.com) as RSS-Feed aes-noc@amazon.com follow up this itemfollow up this item 54.224.0.0 - 54.239.255.255 follow up this item AMAZON-2011L follow up this item Amazon Technologies Inc. AT-88-Z 410 Terry Ave N. Seattle WA 98109 follow up this item ns16.domaincontrol.com follow up this item ns15.domaincontrol.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.skeelduck.info/installers/b/4 ...
43 follow up this item(33930848) 33930848 Report false positive Report closed case make a suggestion 2014-07-13 12:20:58     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
14/54 (25.9%) 
 Application.Bundler.Somoto.J
Somoto-BetterInstaller
PUP.Optional.Somoto.A
BetterInstaller
(fs)
Win.Adware.Somoto
not-a-virus:AdWare.Win32.Agent.allm
Application.Bundler.Somoto.J
Application.Bundler.Somoto.J
Somoto
BetterInstaller
Application.Bundler.Somo 
 lookup in virustotal.com (12bfd6bb66f357e785b0f75215b57de6)-->[http://www.virustotal.com/latest-report.html?resource=12bfd6bb66f357e785b0f75215b57de6]follow up this md5sum(12bfd6bb66f357e785b0f75215b57de6)follow up this itemfollow up this virusname (Win32%2FRiskWare.Chindo.A) as RSS-Feedfollow up this malware(Win32%2FRiskWare.Chindo.A) for scanner (undef) in md5 table14/54 (25.9%) Win32/RiskWare.Chindo.A
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.skaxis.info/installers/cli/14 ...  up alive follow up this ip (ip=54.230.44.12) as RSS-FeedSenderBaselookup 54.230.44.12 at virustotallookup 54.230.44.12 at Rus CERT university stuttgart germanylookup 54.230.44.12 at ARINfollow up this item(ip) in same window 54.230.44.12 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS16509) in networks tablefollow up this itemfollow up this AS (AS16509) as RSS-Feed AS16509 follow up this ip (review=54.230.46.129) as RSS-FeedSenderBaselookup 54.230.46.129 at virustotallookup 54.230.46.129 at Rus CERT university stuttgart germanylookup 54.230.46.129 at ARINfollow up this item(review) in same window 54.230.46.129 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.skaxis.info/installers/cli/14 ... follow up this domain (skaxis.info) as RSS-Feedlookup skaxis.info at virustotalfollow up this domain(skaxis.info) skaxis.info follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (aes-noc@amazon.com) as RSS-Feed aes-noc@amazon.com follow up this itemfollow up this item 54.224.0.0 - 54.239.255.255 follow up this item AMAZON-2011L follow up this item Amazon Technologies Inc. AT-88-Z 410 Terry Ave N. Seattle WA 98109 follow up this item ns16.domaincontrol.com follow up this item ns15.domaincontrol.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.skaxis.info/installers/cli/14 ...
44 follow up this item(33930842) 33930842 Report false positive Report closed case make a suggestion 2014-07-13 12:20:57     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
17/53 (32.1%) 
 RDN/Generic
PUP.x!cgh
PUP.Optional.Linkular
W32/A-951144e2!Eldorado
TROJ_GE.595AEB66
Win32:Adware-gen
[Adw]
Win.Adware.Linkular
Riskware.Win32.Linkular.dbpxeq
Adware.BrowseFox/Variant
ApplicUnwnt
Adware.Downware.2116
Adware/Linkular.AJ.1
Linkular
Win32.T 
 lookup in virustotal.com (3c0aaa6d29c8c7fd273c1ba4b538646b)-->[http://www.virustotal.com/latest-report.html?resource=3c0aaa6d29c8c7fd273c1ba4b538646b]follow up this md5sum(3c0aaa6d29c8c7fd273c1ba4b538646b)follow up this itemfollow up this virusname (Win32%2FRiskWare.Chindo.A) as RSS-Feedfollow up this malware(Win32%2FRiskWare.Chindo.A) for scanner (undef) in md5 table17/53 (32.1%) Win32/RiskWare.Chindo.A
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.powerpackmm.com/ds-exe/647/36 ...  up alive follow up this ip (ip=107.23.134.151) as RSS-FeedSenderBaselookup 107.23.134.151 at virustotallookup 107.23.134.151 at Rus CERT university stuttgart germanylookup 107.23.134.151 at ARINfollow up this item(ip) in same window 107.23.134.151 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS14618) in networks tablefollow up this itemfollow up this AS (AS14618) as RSS-Feed AS14618 follow up this ip (review=107.23.134.151) as RSS-FeedSenderBaselookup 107.23.134.151 at virustotallookup 107.23.134.151 at Rus CERT university stuttgart germanylookup 107.23.134.151 at ARINfollow up this item(review) in same window 107.23.134.151 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.powerpackmm.com/ds-exe/647/36 ... follow up this domain (powerpackmm.com) as RSS-Feedlookup powerpackmm.com at virustotalfollow up this domain(powerpackmm.com) powerpackmm.com follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (ec2-abuse@amazon.com) as RSS-Feed ec2-abuse@amazon.com follow up this itemfollow up this item 107.20.0.0 - 107.23.255.255 follow up this item AMAZON-EC2-8 follow up this item Amazon.com, Inc. AMAZO-4 Amazon Web Services, Elastic Compute Cloud, EC2 1200 12th Avenue South Seattle WA 98144 follow up this item ns18.domaincontrol.com follow up this item ns17.domaincontrol.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.powerpackmm.com/ds-exe/647/36 ...
45 follow up this item(33930841) 33930841 Report false positive Report closed case make a suggestion 2014-07-13 12:20:57     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
25/54 (46.3%) 
 Trojan.Generic.11142337
Trojan.Generic.11142337
RDN/Generic.bfr!ft
Posible_Worm32
Riskware
(
0040eff71
)
Riskware
(
0040eff71
)
Trojan.Gen.2
Troj_Generic.SLKRB
TROJ_GEN.F47V0317
Win32:Dropper-gen
[Drp]
Trojan.Generic.11142337
Trojan.Generic.11142337
Mal/ 
 lookup in virustotal.com (0f55762593fe1164445abfb19360b3f6)-->[http://www.virustotal.com/latest-report.html?resource=0f55762593fe1164445abfb19360b3f6]follow up this md5sum(0f55762593fe1164445abfb19360b3f6)follow up this itemfollow up this virusname (Win32%2FRiskWare.Chindo.A) as RSS-Feedfollow up this malware(Win32%2FRiskWare.Chindo.A) for scanner () in md5 table25/54 (46.3%) Win32/RiskWare.Chindo.A
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.pf11.com/xunlei_842296.exe  up alive follow up this ip (ip=123.108.111.171) as RSS-FeedSenderBaselookup 123.108.111.171 at virustotallookup 123.108.111.171 at Rus CERT university stuttgart germanylookup 123.108.111.171 at apnicfollow up this item(ip) in same window 123.108.111.171 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS24544) in networks tablefollow up this itemfollow up this AS (AS24544) as RSS-Feed AS24544 follow up this ip (review=123.108.111.171) as RSS-FeedSenderBaselookup 123.108.111.171 at virustotallookup 123.108.111.171 at Rus CERT university stuttgart germanylookup 123.108.111.171 at apnicfollow up this item(review) in same window 123.108.111.171 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.pf11.com/xunlei_842296.exe follow up this domain (pf11.com) as RSS-Feedlookup pf11.com at virustotalfollow up this domain(pf11.com) pf11.com follow up this itemfollow up this country (HK) as RSS-Feed HK follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (admin@pangintl.com) as RSS-Feed admin@pangintl.com follow up this itemfollow up this item 123.108.111.0 - 123.108.111.255 follow up this item PANGNET follow up this item Pang International LimitedPangNET follow up this item f1g1ns1.dnspod.net follow up this item f1g1ns2.dnspod.net follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.pf11.com/xunlei_842296.exe
46 follow up this item(33930839) 33930839 Report false positive Report closed case make a suggestion 2014-07-13 12:20:57     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
23/53 (43.4%) 
 Application.Bundler.Somoto.J
Trojan-Clicker/W32.Agent.222952
AdWare.Agent.r7
(Not
a
Virus)
Artemis!F5CBA589A158
PUP.Optional.Somoto.A
Trojan.Win32.Generic!BT
Unwanted-Program
(
00454f261
)
Unwanted-Program
(
00454f261
)
Riskware.Nsis.Adware.dbnhrj
Trojan 
 lookup in virustotal.com (f5cba589a1582a88301e47b05b287bb5)-->[http://www.virustotal.com/latest-report.html?resource=f5cba589a1582a88301e47b05b287bb5]follow up this md5sum(f5cba589a1582a88301e47b05b287bb5)follow up this itemfollow up this virusname (Win32%2FRiskWare.Chindo.A) as RSS-Feedfollow up this malware(Win32%2FRiskWare.Chindo.A) for scanner () in md5 table23/53 (43.4%) Win32/RiskWare.Chindo.A
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.noelind.info/installers/cli/1 ...  up alive follow up this ip (ip=54.230.47.184) as RSS-FeedSenderBaselookup 54.230.47.184 at virustotallookup 54.230.47.184 at Rus CERT university stuttgart germanylookup 54.230.47.184 at ARINfollow up this item(ip) in same window 54.230.47.184 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS16509) in networks tablefollow up this itemfollow up this AS (AS16509) as RSS-Feed AS16509 follow up this ip (review=54.230.44.18) as RSS-FeedSenderBaselookup 54.230.44.18 at virustotallookup 54.230.44.18 at Rus CERT university stuttgart germanylookup 54.230.44.18 at ARINfollow up this item(review) in same window 54.230.44.18 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.noelind.info/installers/cli/1 ... follow up this domain (noelind.info) as RSS-Feedlookup noelind.info at virustotalfollow up this domain(noelind.info) noelind.info follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (aes-noc@amazon.com) as RSS-Feed aes-noc@amazon.com follow up this itemfollow up this item 54.224.0.0 - 54.239.255.255 follow up this item AMAZON-2011L follow up this item Amazon Technologies Inc. AT-88-Z 410 Terry Ave N. Seattle WA 98109 follow up this item ns15.domaincontrol.com follow up this item ns16.domaincontrol.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.noelind.info/installers/cli/1 ...
47 follow up this item(33930838) 33930838 Report false positive Report closed case make a suggestion 2014-07-13 12:20:57     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
10/53 (18.9%) 
 Artemis!4EDD34066D09
Suspicious.Cloud.5
Suspicious_GEN.F47V0610
Win.Adware.Somoto
not-a-virus:AdWare.Win32.Agent.allm
Generic
PUA
AA
Trojan.Win32.Generic!BT
Artemis!4EDD34066D09
Win32/Somoto.G
Trj/Genetic.gen 
 lookup in virustotal.com (4edd34066d096ebe14b33252ac0b8712)-->[http://www.virustotal.com/latest-report.html?resource=4edd34066d096ebe14b33252ac0b8712]follow up this md5sum(4edd34066d096ebe14b33252ac0b8712)follow up this itemfollow up this virusname (Win32%2FRiskWare.Chindo.A) as RSS-Feedfollow up this malware(Win32%2FRiskWare.Chindo.A) for scanner () in md5 table10/53 (18.9%) Win32/RiskWare.Chindo.A
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.noelind.info/installers/cli/1 ...  up alive follow up this ip (ip=54.240.162.252) as RSS-FeedSenderBaselookup 54.240.162.252 at virustotallookup 54.240.162.252 at Rus CERT university stuttgart germanylookup 54.240.162.252 at ARINfollow up this item(ip) in same window 54.240.162.252 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS16509) in networks tablefollow up this itemfollow up this AS (AS16509) as RSS-Feed AS16509 follow up this ip (review=54.230.47.104) as RSS-FeedSenderBaselookup 54.230.47.104 at virustotallookup 54.230.47.104 at Rus CERT university stuttgart germanylookup 54.230.47.104 at ARINfollow up this item(review) in same window 54.230.47.104 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.noelind.info/installers/cli/1 ... follow up this domain (noelind.info) as RSS-Feedlookup noelind.info at virustotalfollow up this domain(noelind.info) noelind.info follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (aes-noc@amazon.com) as RSS-Feed aes-noc@amazon.com follow up this itemfollow up this item 54.240.128.0 - 54.240.191.255 follow up this item AMAZON-2011L follow up this item Amazon Technologies Inc. AT-88-Z 410 Terry Ave N. Seattle WA 98109 follow up this item ns15.domaincontrol.com follow up this item ns16.domaincontrol.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.noelind.info/installers/cli/1 ...
48 follow up this item(33930837) 33930837 Report false positive Report closed case make a suggestion 2014-07-13 12:20:57     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
follow up this itemfollow up this virusname (Generic+Trojan) as RSS-Feedfollow up this malware(Generic+Trojan) for scanner (undef) in md5 table22/53 (41.5%) Generic Trojan
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.nfscars.net/storage/games/und ...  up alive follow up this ip (ip=198.50.27.2) as RSS-FeedSenderBaselookup 198.50.27.2 at virustotallookup 198.50.27.2 at Rus CERT university stuttgart germanylookup 198.50.27.2 at ARINfollow up this item(ip) in same window 198.50.27.2 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS53264) in networks tablefollow up this itemfollow up this AS (AS53264) as RSS-Feed AS53264 follow up this ip (review=198.50.27.2) as RSS-FeedSenderBaselookup 198.50.27.2 at virustotallookup 198.50.27.2 at Rus CERT university stuttgart germanylookup 198.50.27.2 at ARINfollow up this item(review) in same window 198.50.27.2 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.nfscars.net/storage/games/und ... follow up this domain (nfscars.net) as RSS-Feedlookup nfscars.net at virustotalfollow up this domain(nfscars.net) nfscars.net follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (abusenoc@continuumdatacenters.com) as RSS-Feed abusenoc@continuumdatacenters.com follow up this itemfollow up this item 198.50.24.0 - 198.50.31.255 follow up this item CDC-CUST-BLK follow up this item Continuum Data Centers, LLC. CONTI-81 835 Oak Creek Dr. Lombard IL 60148 follow up this item ns38.domaincontrol.com follow up this item ns37.domaincontrol.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.nfscars.net/storage/games/und ...
49 follow up this item(33930836) 33930836 Report false positive Report closed case make a suggestion 2014-07-13 12:20:56     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
follow up this itemfollow up this virusname (HEUR%2FMalware.QVM06.Gen) as RSS-Feedfollow up this malware(HEUR%2FMalware.QVM06.Gen) for scanner (undef) in md5 table22/54 (40.7%) HEUR/Malware.QVM06.Gen
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.nedril.info/installers/cli/14 ...  up alive follow up this ip (ip=54.230.46.46) as RSS-FeedSenderBaselookup 54.230.46.46 at virustotallookup 54.230.46.46 at Rus CERT university stuttgart germanylookup 54.230.46.46 at ARINfollow up this item(ip) in same window 54.230.46.46 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS16509) in networks tablefollow up this itemfollow up this AS (AS16509) as RSS-Feed AS16509 follow up this ip (review=54.230.45.108) as RSS-FeedSenderBaselookup 54.230.45.108 at virustotallookup 54.230.45.108 at Rus CERT university stuttgart germanylookup 54.230.45.108 at ARINfollow up this item(review) in same window 54.230.45.108 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.nedril.info/installers/cli/14 ... follow up this domain (nedril.info) as RSS-Feedlookup nedril.info at virustotalfollow up this domain(nedril.info) nedril.info follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (aes-noc@amazon.com) as RSS-Feed aes-noc@amazon.com follow up this itemfollow up this item 54.224.0.0 - 54.239.255.255 follow up this item AMAZON-2011L follow up this item Amazon Technologies Inc. AT-88-Z 410 Terry Ave N. Seattle WA 98109 follow up this item ns15.domaincontrol.com follow up this item ns16.domaincontrol.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.nedril.info/installers/cli/14 ...
50 follow up this item(33930835) 33930835 Report false positive Report closed case make a suggestion 2014-07-13 12:20:55     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
follow up this itemfollow up this virusname (Win32%2FOutBrowse.AA) as RSS-Feedfollow up this malware(Win32%2FOutBrowse.AA) for scanner (undef) in md5 table4/53 (7.5%) Win32/OutBrowse.AA
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.mediafreeware.com/download/we ...  up alive follow up this ip (ip=199.30.50.228) as RSS-FeedSenderBaselookup 199.30.50.228 at virustotallookup 199.30.50.228 at Rus CERT university stuttgart germanylookup 199.30.50.228 at ARINfollow up this item(ip) in same window 199.30.50.228 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS6939, AS3257) in networks tablefollow up this itemfollow up this AS (AS6939, AS3257) as RSS-Feed AS6939, AS3257 follow up this ip (review=199.30.50.228) as RSS-FeedSenderBaselookup 199.30.50.228 at virustotallookup 199.30.50.228 at Rus CERT university stuttgart germanylookup 199.30.50.228 at ARINfollow up this item(review) in same window 199.30.50.228 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.mediafreeware.com/download/we ... follow up this domain (mediafreeware.com) as RSS-Feedlookup mediafreeware.com at virustotalfollow up this domain(mediafreeware.com) mediafreeware.com follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (gabe@ioflood.com) as RSS-Feed gabe@ioflood.com follow up this itemfollow up this item 199.30.48.0 - 199.30.55.255 follow up this item IOFL follow up this item Input Output Flood LLC IOFL 3120 Autumn Leaf Ct Las Vegas NV 89108 follow up this item ns1.sc320.ioflood.com follow up this item ns2.sc320.ioflood.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.mediafreeware.com/download/we ...
helpLine help#descendigascending helpDatedescendigascending helpCloseddescendigascending helphours helpcontributordescendigascending helpvirusnamedescendigascending helpURLdescendigascending helpip state helpresponsedescendigascending helpIp initialdescendigascending helpAS#descendigascending helpip reviewdescendigascending helpURLdescendigascending helpDomaindescendigascending helpcountrydescendigascending helpsourcedescendigascending helpemaildescendigascending helpinetnumdescendigascending helpnetnamedescendigascending helpdescrdescendigascending helpns1descendigascending helpns2descendigascending helpns3descendigascending helpns4descendigascending helpns5descendigascending helpURLdescendigascending
51 follow up this item(33930568) 33930568 Report false positive Report closed case make a suggestion 2014-07-13 12:20:45     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
follow up this itemfollow up this virusname (HEUR%2FMalware.QVM06.Gen) as RSS-Feedfollow up this malware(HEUR%2FMalware.QVM06.Gen) for scanner (undef) in md5 table22/53 (41.5%) HEUR/Malware.QVM06.Gen
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.kizerain.info/installers/cli/ ...  up alive follow up this ip (ip=54.230.45.49) as RSS-FeedSenderBaselookup 54.230.45.49 at virustotallookup 54.230.45.49 at Rus CERT university stuttgart germanylookup 54.230.45.49 at ARINfollow up this item(ip) in same window 54.230.45.49 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS16509) in networks tablefollow up this itemfollow up this AS (AS16509) as RSS-Feed AS16509 follow up this ip (review=54.230.46.105) as RSS-FeedSenderBaselookup 54.230.46.105 at virustotallookup 54.230.46.105 at Rus CERT university stuttgart germanylookup 54.230.46.105 at ARINfollow up this item(review) in same window 54.230.46.105 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.kizerain.info/installers/cli/ ... follow up this domain (kizerain.info) as RSS-Feedlookup kizerain.info at virustotalfollow up this domain(kizerain.info) kizerain.info follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (aes-noc@amazon.com) as RSS-Feed aes-noc@amazon.com follow up this itemfollow up this item 54.224.0.0 - 54.239.255.255 follow up this item AMAZON-2011L follow up this item Amazon Technologies Inc. AT-88-Z 410 Terry Ave N. Seattle WA 98109 follow up this item ns15.domaincontrol.com follow up this item ns16.domaincontrol.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.kizerain.info/installers/cli/ ...
52 follow up this item(33930567) 33930567 Report false positive Report closed case make a suggestion 2014-07-13 12:20:45     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
follow up this malware() for scanner (undef) in md5 table 
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.es/wi/xwB5z5FVdsq ...  up alive follow up this ip (ip=107.22.195.231) as RSS-FeedSenderBaselookup 107.22.195.231 at virustotallookup 107.22.195.231 at Rus CERT university stuttgart germanylookup 107.22.195.231 at ARINfollow up this item(ip) in same window 107.22.195.231 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS14618) in networks tablefollow up this itemfollow up this AS (AS14618) as RSS-Feed AS14618 follow up this ip (review=107.22.195.231) as RSS-FeedSenderBaselookup 107.22.195.231 at virustotallookup 107.22.195.231 at Rus CERT university stuttgart germanylookup 107.22.195.231 at ARINfollow up this item(review) in same window 107.22.195.231 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.es/wi/xwB5z5FVdsq ... follow up this domain (joydownload.es) as RSS-Feedlookup joydownload.es at virustotalfollow up this domain(joydownload.es) joydownload.es follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (ec2-abuse@amazon.com) as RSS-Feed ec2-abuse@amazon.com follow up this itemfollow up this item 107.20.0.0 - 107.23.255.255 follow up this item AMAZON-EC2-8 follow up this item Amazon.com, Inc. AMAZO-4 Amazon Web Services, Elastic Compute Cloud, EC2 1200 12th Avenue South Seattle WA 98144 follow up this item ns-500.awsdns-62.com follow up this item ns-1211.awsdns-23.org follow up this item ns-1593.awsdns-07.co.uk follow up this item ns-772.awsdns-32.net follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.es/wi/xwB5z5FVdsq ...
53 follow up this item(33930566) 33930566 Report false positive Report closed case make a suggestion 2014-07-13 12:20:45     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (28037f75229495a968dfc78e8ae8d2b1)follow up this md5sum(28037f75229495a968dfc78e8ae8d2b1)follow up this malware() for scanner () in md5 table0/43 (0.0%) 
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.es/wi/W7l4C4vgxap ...  up alive follow up this ip (ip=23.23.108.120) as RSS-FeedSenderBaselookup 23.23.108.120 at virustotallookup 23.23.108.120 at Rus CERT university stuttgart germanylookup 23.23.108.120 at ARINfollow up this item(ip) in same window 23.23.108.120 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS16509) in networks tablefollow up this itemfollow up this AS (AS16509) as RSS-Feed AS16509 follow up this ip (review=23.23.108.120) as RSS-FeedSenderBaselookup 23.23.108.120 at virustotallookup 23.23.108.120 at Rus CERT university stuttgart germanylookup 23.23.108.120 at ARINfollow up this item(review) in same window 23.23.108.120 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.es/wi/W7l4C4vgxap ... follow up this domain (joydownload.es) as RSS-Feedlookup joydownload.es at virustotalfollow up this domain(joydownload.es) joydownload.es follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (ec2-abuse@amazon.com) as RSS-Feed ec2-abuse@amazon.com follow up this itemfollow up this item 23.20.0.0 - 23.23.255.255 follow up this item AMAZON-EC2-USEAST-10 follow up this item Amazon.com, Inc. AMAZO-4 Amazon Web Services, Elastic Compute Cloud, EC2 1200 12th Avenue South Seattle WA 98144 follow up this item ns-500.awsdns-62.com follow up this item ns-1211.awsdns-23.org follow up this item ns-1593.awsdns-07.co.uk follow up this item ns-772.awsdns-32.net follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.es/wi/W7l4C4vgxap ...
54 follow up this item(33930565) 33930565 Report false positive Report closed case make a suggestion 2014-07-13 12:20:45     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (28037f75229495a968dfc78e8ae8d2b1)follow up this md5sum(28037f75229495a968dfc78e8ae8d2b1)follow up this malware() for scanner () in md5 table0/43 (0.0%) 
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.es/wi/q9JUxUmJQLX ...  up alive follow up this ip (ip=107.22.195.231) as RSS-FeedSenderBaselookup 107.22.195.231 at virustotallookup 107.22.195.231 at Rus CERT university stuttgart germanylookup 107.22.195.231 at ARINfollow up this item(ip) in same window 107.22.195.231 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS14618) in networks tablefollow up this itemfollow up this AS (AS14618) as RSS-Feed AS14618 follow up this ip (review=107.22.195.231) as RSS-FeedSenderBaselookup 107.22.195.231 at virustotallookup 107.22.195.231 at Rus CERT university stuttgart germanylookup 107.22.195.231 at ARINfollow up this item(review) in same window 107.22.195.231 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.es/wi/q9JUxUmJQLX ... follow up this domain (joydownload.es) as RSS-Feedlookup joydownload.es at virustotalfollow up this domain(joydownload.es) joydownload.es follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (ec2-abuse@amazon.com) as RSS-Feed ec2-abuse@amazon.com follow up this itemfollow up this item 107.20.0.0 - 107.23.255.255 follow up this item AMAZON-EC2-8 follow up this item Amazon.com, Inc. AMAZO-4 Amazon Web Services, Elastic Compute Cloud, EC2 1200 12th Avenue South Seattle WA 98144 follow up this item ns-500.awsdns-62.com follow up this item ns-1211.awsdns-23.org follow up this item ns-1593.awsdns-07.co.uk follow up this item ns-772.awsdns-32.net follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.es/wi/q9JUxUmJQLX ...
55 follow up this item(33930564) 33930564 Report false positive Report closed case make a suggestion 2014-07-13 12:20:45     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (28037f75229495a968dfc78e8ae8d2b1)follow up this md5sum(28037f75229495a968dfc78e8ae8d2b1)follow up this malware() for scanner () in md5 table0/43 (0.0%) 
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.es/wi/DQrZHLykGbP ...  up alive follow up this ip (ip=23.23.108.120) as RSS-FeedSenderBaselookup 23.23.108.120 at virustotallookup 23.23.108.120 at Rus CERT university stuttgart germanylookup 23.23.108.120 at ARINfollow up this item(ip) in same window 23.23.108.120 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS16509) in networks tablefollow up this itemfollow up this AS (AS16509) as RSS-Feed AS16509 follow up this ip (review=23.23.108.120) as RSS-FeedSenderBaselookup 23.23.108.120 at virustotallookup 23.23.108.120 at Rus CERT university stuttgart germanylookup 23.23.108.120 at ARINfollow up this item(review) in same window 23.23.108.120 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.es/wi/DQrZHLykGbP ... follow up this domain (joydownload.es) as RSS-Feedlookup joydownload.es at virustotalfollow up this domain(joydownload.es) joydownload.es follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (ec2-abuse@amazon.com) as RSS-Feed ec2-abuse@amazon.com follow up this itemfollow up this item 23.20.0.0 - 23.23.255.255 follow up this item AMAZON-EC2-USEAST-10 follow up this item Amazon.com, Inc. AMAZO-4 Amazon Web Services, Elastic Compute Cloud, EC2 1200 12th Avenue South Seattle WA 98144 follow up this item ns-500.awsdns-62.com follow up this item ns-1211.awsdns-23.org follow up this item ns-1593.awsdns-07.co.uk follow up this item ns-772.awsdns-32.net follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.es/wi/DQrZHLykGbP ...
56 follow up this item(33930563) 33930563 Report false positive Report closed case make a suggestion 2014-07-13 12:20:45     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (0df67d74bf70185e24cd16c0eddb9c01)follow up this md5sum(0df67d74bf70185e24cd16c0eddb9c01)follow up this malware() for scanner () in md5 table0/43 (0.0%) 
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.com.br/wi/zULygx0 ...  up alive follow up this ip (ip=107.22.195.231) as RSS-FeedSenderBaselookup 107.22.195.231 at virustotallookup 107.22.195.231 at Rus CERT university stuttgart germanylookup 107.22.195.231 at ARINfollow up this item(ip) in same window 107.22.195.231 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS14618) in networks tablefollow up this itemfollow up this AS (AS14618) as RSS-Feed AS14618 follow up this ip (review=107.22.195.231) as RSS-FeedSenderBaselookup 107.22.195.231 at virustotallookup 107.22.195.231 at Rus CERT university stuttgart germanylookup 107.22.195.231 at ARINfollow up this item(review) in same window 107.22.195.231 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.com.br/wi/zULygx0 ... follow up this domain (joydownload.com.br) as RSS-Feedlookup joydownload.com.br at virustotalfollow up this domain(joydownload.com.br) joydownload.com.br follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (ec2-abuse@amazon.com) as RSS-Feed ec2-abuse@amazon.com follow up this itemfollow up this item 107.20.0.0 - 107.23.255.255 follow up this item AMAZON-EC2-8 follow up this item Amazon.com, Inc. AMAZO-4 Amazon Web Services, Elastic Compute Cloud, EC2 1200 12th Avenue South Seattle WA 98144 follow up this item ns-1817.awsdns-35.co.uk follow up this item ns-627.awsdns-14.net follow up this item ns-1237.awsdns-26.org follow up this item ns-442.awsdns-55.com follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.com.br/wi/zULygx0 ...
57 follow up this item(33930562) 33930562 Report false positive Report closed case make a suggestion 2014-07-13 12:20:45     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
3/53 (5.7%) 
 
Win32/DH{gROBD1gSICQiJU4}
NSIS:Adware-OO
Adw
Win32.Trojan.Agent.MLXN3K 
 lookup in virustotal.com (be89ba271bfb743b209e90b59989c0f1)-->[http://www.virustotal.com/latest-report.html?resource=be89ba271bfb743b209e90b59989c0f1]lookup in threatexpert.comlookup the sha256(97ed3856d6961cea615633ed206c12959aead4871c7e48aea1866780c5adcb0d) in comodo.comfollow up this md5sum(be89ba271bfb743b209e90b59989c0f1)follow up this itemfollow up this virusname (NSIS%3AAdware-OO+Adw) as RSS-Feedfollow up this malware(NSIS%3AAdware-OO+Adw) for scanner (Avast) in md5 table3/53 (5.7%) NSIS:Adware-OO Adw
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.com.br/wi/z63Gapb ...  up alive follow up this ip (ip=23.23.108.120) as RSS-FeedSenderBaselookup 23.23.108.120 at virustotallookup 23.23.108.120 at Rus CERT university stuttgart germanylookup 23.23.108.120 at ARINfollow up this item(ip) in same window 23.23.108.120 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS16509) in networks tablefollow up this itemfollow up this AS (AS16509) as RSS-Feed AS16509 follow up this ip (review=23.23.108.120) as RSS-FeedSenderBaselookup 23.23.108.120 at virustotallookup 23.23.108.120 at Rus CERT university stuttgart germanylookup 23.23.108.120 at ARINfollow up this item(review) in same window 23.23.108.120 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.com.br/wi/z63Gapb ... follow up this domain (joydownload.com.br) as RSS-Feedlookup joydownload.com.br at virustotalfollow up this domain(joydownload.com.br) joydownload.com.br follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (ec2-abuse@amazon.com) as RSS-Feed ec2-abuse@amazon.com follow up this itemfollow up this item 23.20.0.0 - 23.23.255.255 follow up this item AMAZON-EC2-USEAST-10 follow up this item Amazon.com, Inc. AMAZO-4 Amazon Web Services, Elastic Compute Cloud, EC2 1200 12th Avenue South Seattle WA 98144 follow up this item ns-1817.awsdns-35.co.uk follow up this item ns-627.awsdns-14.net follow up this item ns-1237.awsdns-26.org follow up this item ns-442.awsdns-55.com follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.com.br/wi/z63Gapb ...
58 follow up this item(33930561) 33930561 Report false positive Report closed case make a suggestion 2014-07-13 12:20:45     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (b8c0da8d1d4160f1fee8b366fdfe2472)follow up this md5sum(b8c0da8d1d4160f1fee8b366fdfe2472)follow up this malware() for scanner () in md5 table0/43 (0.0%) 
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.com.br/wi/YJ0I40x ...  up alive follow up this ip (ip=107.22.195.231) as RSS-FeedSenderBaselookup 107.22.195.231 at virustotallookup 107.22.195.231 at Rus CERT university stuttgart germanylookup 107.22.195.231 at ARINfollow up this item(ip) in same window 107.22.195.231 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS14618) in networks tablefollow up this itemfollow up this AS (AS14618) as RSS-Feed AS14618 follow up this ip (review=107.22.195.231) as RSS-FeedSenderBaselookup 107.22.195.231 at virustotallookup 107.22.195.231 at Rus CERT university stuttgart germanylookup 107.22.195.231 at ARINfollow up this item(review) in same window 107.22.195.231 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.com.br/wi/YJ0I40x ... follow up this domain (joydownload.com.br) as RSS-Feedlookup joydownload.com.br at virustotalfollow up this domain(joydownload.com.br) joydownload.com.br follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (ec2-abuse@amazon.com) as RSS-Feed ec2-abuse@amazon.com follow up this itemfollow up this item 107.20.0.0 - 107.23.255.255 follow up this item AMAZON-EC2-8 follow up this item Amazon.com, Inc. AMAZO-4 Amazon Web Services, Elastic Compute Cloud, EC2 1200 12th Avenue South Seattle WA 98144 follow up this item ns-1817.awsdns-35.co.uk follow up this item ns-627.awsdns-14.net follow up this item ns-1237.awsdns-26.org follow up this item ns-442.awsdns-55.com follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.com.br/wi/YJ0I40x ...
59 follow up this item(33930560) 33930560 Report false positive Report closed case make a suggestion 2014-07-13 12:20:45     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
2/53 (3.8%) 
 
Win32/DH{gROBD1gSICQiJU4}
NSIS:Adware-OO
Adw 
 lookup in virustotal.com (5bdbcda6f7055cc4dfa0982423b53b23)-->[http://www.virustotal.com/latest-report.html?resource=5bdbcda6f7055cc4dfa0982423b53b23]lookup in threatexpert.comlookup the sha256(ff01ee4f9f556acea910b8686cd8f82eb14f4d124fe8db8bee06d5f3956861b6) in comodo.comfollow up this md5sum(5bdbcda6f7055cc4dfa0982423b53b23)follow up this itemfollow up this virusname (NSIS%3AAdware-OO+Adw) as RSS-Feedfollow up this malware(NSIS%3AAdware-OO+Adw) for scanner (Avast) in md5 table2/53 (3.8%) NSIS:Adware-OO Adw
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.com.br/wi/yBlvpzm ...  up alive follow up this ip (ip=23.23.108.120) as RSS-FeedSenderBaselookup 23.23.108.120 at virustotallookup 23.23.108.120 at Rus CERT university stuttgart germanylookup 23.23.108.120 at ARINfollow up this item(ip) in same window 23.23.108.120 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS16509) in networks tablefollow up this itemfollow up this AS (AS16509) as RSS-Feed AS16509 follow up this ip (review=23.23.108.120) as RSS-FeedSenderBaselookup 23.23.108.120 at virustotallookup 23.23.108.120 at Rus CERT university stuttgart germanylookup 23.23.108.120 at ARINfollow up this item(review) in same window 23.23.108.120 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.com.br/wi/yBlvpzm ... follow up this domain (joydownload.com.br) as RSS-Feedlookup joydownload.com.br at virustotalfollow up this domain(joydownload.com.br) joydownload.com.br follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (ec2-abuse@amazon.com) as RSS-Feed ec2-abuse@amazon.com follow up this itemfollow up this item 23.20.0.0 - 23.23.255.255 follow up this item AMAZON-EC2-USEAST-10 follow up this item Amazon.com, Inc. AMAZO-4 Amazon Web Services, Elastic Compute Cloud, EC2 1200 12th Avenue South Seattle WA 98144 follow up this item ns-1817.awsdns-35.co.uk follow up this item ns-627.awsdns-14.net follow up this item ns-1237.awsdns-26.org follow up this item ns-442.awsdns-55.com follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.com.br/wi/yBlvpzm ...
60 follow up this item(33930559) 33930559 Report false positive Report closed case make a suggestion 2014-07-13 12:20:45     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (e7e391bb817deb49ea72c852d2037b12)follow up this md5sum(e7e391bb817deb49ea72c852d2037b12)follow up this malware() for scanner () in md5 table0/43 (0.0%) 
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.com.br/wi/X07jg0c ...  up alive follow up this ip (ip=107.22.195.231) as RSS-FeedSenderBaselookup 107.22.195.231 at virustotallookup 107.22.195.231 at Rus CERT university stuttgart germanylookup 107.22.195.231 at ARINfollow up this item(ip) in same window 107.22.195.231 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS14618) in networks tablefollow up this itemfollow up this AS (AS14618) as RSS-Feed AS14618 follow up this ip (review=107.22.195.231) as RSS-FeedSenderBaselookup 107.22.195.231 at virustotallookup 107.22.195.231 at Rus CERT university stuttgart germanylookup 107.22.195.231 at ARINfollow up this item(review) in same window 107.22.195.231 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.com.br/wi/X07jg0c ... follow up this domain (joydownload.com.br) as RSS-Feedlookup joydownload.com.br at virustotalfollow up this domain(joydownload.com.br) joydownload.com.br follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (ec2-abuse@amazon.com) as RSS-Feed ec2-abuse@amazon.com follow up this itemfollow up this item 107.20.0.0 - 107.23.255.255 follow up this item AMAZON-EC2-8 follow up this item Amazon.com, Inc. AMAZO-4 Amazon Web Services, Elastic Compute Cloud, EC2 1200 12th Avenue South Seattle WA 98144 follow up this item ns-1817.awsdns-35.co.uk follow up this item ns-627.awsdns-14.net follow up this item ns-1237.awsdns-26.org follow up this item ns-442.awsdns-55.com follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.com.br/wi/X07jg0c ...
61 follow up this item(33930558) 33930558 Report false positive Report closed case make a suggestion 2014-07-13 12:20:45     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
follow up this itemfollow up this virusname (Win32%2FDH%7BgROBD1gSICQiJU4%7D) as RSS-Feedfollow up this malware(Win32%2FDH%7BgROBD1gSICQiJU4%7D) for scanner (undef) in md5 table1/54 (1.9%) Win32/DH{gROBD1gSICQiJU4}
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.com.br/wi/W8DNXU2 ...  up alive follow up this ip (ip=23.23.108.120) as RSS-FeedSenderBaselookup 23.23.108.120 at virustotallookup 23.23.108.120 at Rus CERT university stuttgart germanylookup 23.23.108.120 at ARINfollow up this item(ip) in same window 23.23.108.120 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS16509) in networks tablefollow up this itemfollow up this AS (AS16509) as RSS-Feed AS16509 follow up this ip (review=23.23.108.120) as RSS-FeedSenderBaselookup 23.23.108.120 at virustotallookup 23.23.108.120 at Rus CERT university stuttgart germanylookup 23.23.108.120 at ARINfollow up this item(review) in same window 23.23.108.120 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.com.br/wi/W8DNXU2 ... follow up this domain (joydownload.com.br) as RSS-Feedlookup joydownload.com.br at virustotalfollow up this domain(joydownload.com.br) joydownload.com.br follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (ec2-abuse@amazon.com) as RSS-Feed ec2-abuse@amazon.com follow up this itemfollow up this item 23.20.0.0 - 23.23.255.255 follow up this item AMAZON-EC2-USEAST-10 follow up this item Amazon.com, Inc. AMAZO-4 Amazon Web Services, Elastic Compute Cloud, EC2 1200 12th Avenue South Seattle WA 98144 follow up this item ns-1817.awsdns-35.co.uk follow up this item ns-627.awsdns-14.net follow up this item ns-1237.awsdns-26.org follow up this item ns-442.awsdns-55.com follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.com.br/wi/W8DNXU2 ...
62 follow up this item(33930557) 33930557 Report false positive Report closed case make a suggestion 2014-07-13 12:20:45     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
1/54 (1.9%) 
 Win32/DH{gROBD1gSICQiJU4} 
 lookup in virustotal.com (0df67d74bf70185e24cd16c0eddb9c01)-->[http://www.virustotal.com/latest-report.html?resource=0df67d74bf70185e24cd16c0eddb9c01]follow up this md5sum(0df67d74bf70185e24cd16c0eddb9c01)follow up this itemfollow up this virusname (Win32%2FRiskWare.Chindo.A) as RSS-Feedfollow up this malware(Win32%2FRiskWare.Chindo.A) for scanner (undef) in md5 table1/54 (1.9%) Win32/RiskWare.Chindo.A
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.com.br/wi/w16jkKD ...  up alive follow up this ip (ip=107.22.195.231) as RSS-FeedSenderBaselookup 107.22.195.231 at virustotallookup 107.22.195.231 at Rus CERT university stuttgart germanylookup 107.22.195.231 at ARINfollow up this item(ip) in same window 107.22.195.231 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS14618) in networks tablefollow up this itemfollow up this AS (AS14618) as RSS-Feed AS14618 follow up this ip (review=107.22.195.231) as RSS-FeedSenderBaselookup 107.22.195.231 at virustotallookup 107.22.195.231 at Rus CERT university stuttgart germanylookup 107.22.195.231 at ARINfollow up this item(review) in same window 107.22.195.231 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.com.br/wi/w16jkKD ... follow up this domain (joydownload.com.br) as RSS-Feedlookup joydownload.com.br at virustotalfollow up this domain(joydownload.com.br) joydownload.com.br follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (ec2-abuse@amazon.com) as RSS-Feed ec2-abuse@amazon.com follow up this itemfollow up this item 107.20.0.0 - 107.23.255.255 follow up this item AMAZON-EC2-8 follow up this item Amazon.com, Inc. AMAZO-4 Amazon Web Services, Elastic Compute Cloud, EC2 1200 12th Avenue South Seattle WA 98144 follow up this item ns-1817.awsdns-35.co.uk follow up this item ns-627.awsdns-14.net follow up this item ns-1237.awsdns-26.org follow up this item ns-442.awsdns-55.com follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.com.br/wi/w16jkKD ...
63 follow up this item(33930556) 33930556 Report false positive Report closed case make a suggestion 2014-07-13 12:20:45     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
1/54 (1.9%) 
 Win32/DH{gROBD1gSICQiJU4} 
 lookup in virustotal.com (419b77a6b10220ced25c0b46286bd533)-->[http://www.virustotal.com/latest-report.html?resource=419b77a6b10220ced25c0b46286bd533]follow up this md5sum(419b77a6b10220ced25c0b46286bd533)follow up this itemfollow up this virusname (Win32%2FRiskWare.Chindo.A) as RSS-Feedfollow up this malware(Win32%2FRiskWare.Chindo.A) for scanner (undef) in md5 table1/54 (1.9%) Win32/RiskWare.Chindo.A
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.joydownload.com.br/wi/tkavSTF ...  up alive follow up this ip (ip=23.23.108.120) as RSS-FeedSenderBase