CLEAN MX realtime database    
public access query for virus URL statistics
Totally watched: Walker is running: 562(592) http://nortiniolosto.com/nhjzph?rmlfldnsigum=stxcniojgqfqe&vxlftfgqpdnyk=tqoprgrxvluglosqh&lyqnvlegpveygp=xgpxtefgvocef
Subscribe to the VirusWatch Mailing list, updated hourly

This database consists of Virus URI, collected and verified since Feb 2006
Tweet
If you detect URI'S concerning your netblock, already closed... you have made a good job, otherwise please close them as soon as possible.

to look at some nice charts, there are complete statisticsstatistics for this database
Attention: all URI'S are manually verified, but not cross-checked for real viruses function in this moment you make this query.(Sites may have been closed already..)
Our automatic Viruswalker process is scheduled every hour, so you may see now a incident and this one will be resolved later on.
So please keep on sending close-feedbacks to us...

if you have questions, criticism, wishes or ... do not hesitate to contact us at abuse@clean-mx.de
Our PBX is down you may reach us by cell phone +49 171 4802507 ...
Query as xml: Same query as xml output
TIMERS: Runtime Query: 0.0040 Seconds 10 hits
helpLine help#descendigascending helpDatedescendigascending helpCloseddescendigascending helphours helpcontributordescendigascending helpvirusnamedescendigascending helpURLdescendigascending helpip state helpresponsedescendigascending helpIp initialdescendigascending helpAS#descendigascending helpip reviewdescendigascending helpURLdescendigascending helpDomaindescendigascending helpcountrydescendigascending helpsourcedescendigascending helpemaildescendigascending helpinetnumdescendigascending helpnetnamedescendigascending helpdescrdescendigascending helpns1descendigascending helpns2descendigascending helpns3descendigascending helpns4descendigascending helpns5descendigascending helpURLdescendigascending
1 follow up this item(11105557) 11105557 Report false positive Report closed case make a suggestion 2013-05-17 20:20:05     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
31/36 (86.1%) Win32.Jadtre.B HTML/Iframe.EW W32/Fujacks.a!htm Trojan HTML/Linker.AB W32.Fujacks.CE!html Exploit.LW HTML_DOWN.A JS:Agent-AOH Trj JS.Agent-156 Trojan.JS.Agent.btr Win32.Jadtre.B Troj/Badsrc-M TrojWare.JS.Agent.SCW Win32.Jadtre.B JS.Siggen.210 HTML/Jadtr lookup in virustotal.com (9512cb0e9a464c5d13183bb58e06ccf4)-->[http://www.virustotal.com/latest-report.html?resource=9512cb0e9a464c5d13183bb58e06ccf4]follow up this md5sum(9512cb0e9a464c5d13183bb58e06ccf4)follow up this itemfollow up this virusname (HTML_DOWN.A) as RSS-Feedlookup Virusname at trendmicrofollow up this malware(HTML_DOWN.A) for scanner (trendmicro) in md5 table31/36 (86.1%) HTML_DOWN.A
 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://huarichina.com/about.htm  up No previous evidence recordedSaved evidence (13746 Bytes) of last contact as txt April 11 2012 09:35:18 CEST. aliveSaved log of last contact as txt May 17 2013 20:56:12 CEST. SenderBaselookup 175.100.206.164 at virustotallookup 175.100.206.164 at Rus CERT university stuttgart germanylookup 175.100.206.164 at apnicfollow up this item(ip) in same window 175.100.206.164 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS9304) in networks tablefollow up this itemfollow up this AS (AS9304) as RSS-Feed AS9304 SenderBaselookup 175.100.206.164 at virustotallookup 175.100.206.164 at Rus CERT university stuttgart germanylookup 175.100.206.164 at apnicfollow up this item(review) in same window 175.100.206.164 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://huarichina.com/about.htm lookup huarichina.com at virustotalfollow up this domain(huarichina.com) huarichina.com follow up this itemfollow up this country (HK) as RSS-Feed HK follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (alancyw@hgc.com.hk) as RSS-Feed alancyw@hgc.com.hk follow up this itemfollow up this item 175.100.192.0 - 175.100.207.255 follow up this item HGC-ITL-AS-AP follow up this item Hutchison Global Communications Limited17/F Hutchison Telecom Tower99 Cheung Fai Road, Tsing YiNT follow up this item ns1.dns.com.cn follow up this item ns2.dns.com.cn follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://huarichina.com/about.htm
2 follow up this item(11098220) 11098220 Report false positive Report closed case make a suggestion 2013-05-17 15:41:06     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (b38ba5726a37815a32b4077cf2e4b434)follow up this md5sum(b38ba5726a37815a32b4077cf2e4b434)follow up this itemfollow up this virusname (unknown_html) as RSS-Feedfollow up this malware(unknown_html) for scanner (undef) in md5 table unknown_html
 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.dgzhaorui.com/  up No previous evidence recordedSaved evidence (102563 Bytes) of last contact as txt May 17 2013 16:53:58 CEST. aliveSaved log of last contact as txt May 17 2013 16:53:58 CEST. SenderBaselookup 108.171.243.111 at virustotallookup 108.171.243.111 at Rus CERT university stuttgart germanylookup 108.171.243.111 at ARINfollow up this item(ip) in same window 108.171.243.111 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS40676) in networks tablefollow up this itemfollow up this AS (AS40676) as RSS-Feed AS40676 SenderBaselookup 108.171.243.111 at virustotallookup 108.171.243.111 at Rus CERT university stuttgart germanylookup 108.171.243.111 at ARINfollow up this item(review) in same window 108.171.243.111 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.dgzhaorui.com/ lookup dgzhaorui.com at virustotalfollow up this domain(dgzhaorui.com) dgzhaorui.com follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (noc@psychz.net) as RSS-Feed noc@psychz.net follow up this itemfollow up this item 108.171.240.0 - 108.171.255.255 follow up this item PSYCHZ-NETWORKS follow up this item Psychz Networks PSL-86 20687-2 Amar Rd. #312 Walnut CA 91789 follow up this item ns1.dns.com.cn follow up this item ns2.dns.com.cn follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.dgzhaorui.com/
3 follow up this item(11075613) 11075613 Report false positive Report closed case make a suggestion 2013-05-17 02:01:33     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
38/46 (82.6%) HTML/Emerleox.IL Win32.Jadtre.B Win32.Jadtre.B HTML/Iframe.EW JS/Redirector Trojan Trojan.Url.Katusha.otlj HTML/Linker.AB W32.Fujacks.CE!html Jadtre.DD HTML_DOWN.A JS:Agent-AOH [Trj] JS.Agent-156 Trojan.JS.Agent.btr Win32.Jadtre.B HTML.Malurl.J HTML.Down lookup in virustotal.com (f23eb9d2020ee6fbe24bd44c537e9f71)-->[http://www.virustotal.com/latest-report.html?resource=f23eb9d2020ee6fbe24bd44c537e9f71]follow up this md5sum(f23eb9d2020ee6fbe24bd44c537e9f71)follow up this itemfollow up this virusname (HTML_DOWN.A) as RSS-Feedlookup Virusname at trendmicrofollow up this malware(HTML_DOWN.A) for scanner (trendmicro) in md5 table38/46 (82.6%) HTML_DOWN.A
 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.xkhtz.com/news/news_detail.as ...  up No previous evidence recordedSaved evidence (2845 Bytes) of last contact as txt May 17 2013 06:27:05 CEST. aliveSaved log of last contact as txt May 17 2013 06:27:05 CEST. SenderBaselookup 61.157.217.206 at virustotallookup 61.157.217.206 at Rus CERT university stuttgart germanylookup 61.157.217.206 at apnicfollow up this item(ip) in same window 61.157.217.206 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4134) in networks tablefollow up this itemfollow up this AS (AS4134) as RSS-Feed AS4134 SenderBaselookup 61.157.217.206 at virustotallookup 61.157.217.206 at Rus CERT university stuttgart germanylookup 61.157.217.206 at apnicfollow up this item(review) in same window 61.157.217.206 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.xkhtz.com/news/news_detail.as ... lookup xkhtz.com at virustotalfollow up this domain(xkhtz.com) xkhtz.com follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (anti-spam@ns.chinanet.cn.net) as RSS-Feed anti-spam@ns.chinanet.cn.net follow up this itemfollow up this item 61.157.0.0 - 61.157.255.255 follow up this item CHINANET-SC follow up this item CHINANET Sichuan province networkData Communication DivisionChina Telecom follow up this item ns1.dns.com.cn follow up this item ns2.dns.com.cn follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.xkhtz.com/news/news_detail.as ...
4 follow up this item(11063370) 11063370 Report false positive Report closed case make a suggestion 2013-05-16 19:16:54     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
30/35 (85.7%) Win32.Jadtre.B HTML/Iframe.EW JS/Redirector Trojan HTML/Linker.AB W32.Fujacks.CE!html Exploit.LW HTML_DOWN.A JS:Agent-AOH Trj JS.Agent-156 Trojan.JS.Agent.btr Win32.Jadtre.B HTML.Downloader_Geno_iframe Win32.Jadtre.B (B) TrojWare.JS.Agent.SCW Win32.Jadt lookup in virustotal.com (3d3c25601e5b24ce67fd965b01d55067)-->[http://www.virustotal.com/latest-report.html?resource=3d3c25601e5b24ce67fd965b01d55067]follow up this md5sum(3d3c25601e5b24ce67fd965b01d55067)follow up this itemfollow up this virusname (HTML_DOWN.A) as RSS-Feedlookup Virusname at trendmicrofollow up this malware(HTML_DOWN.A) for scanner (trendmicro) in md5 table30/35 (85.7%) HTML_DOWN.A
 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.hengtiancnc.com/  up No previous evidence recordedSaved evidence (13763 Bytes) of last contact as txt May 16 2013 20:53:44 CEST. aliveSaved log of last contact as txt May 16 2013 20:53:44 CEST. SenderBaselookup 61.152.169.201 at virustotallookup 61.152.169.201 at Rus CERT university stuttgart germanylookup 61.152.169.201 at apnicfollow up this item(ip) in same window 61.152.169.201 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4812) in networks tablefollow up this itemfollow up this AS (AS4812) as RSS-Feed AS4812 SenderBaselookup 61.152.169.201 at virustotallookup 61.152.169.201 at Rus CERT university stuttgart germanylookup 61.152.169.201 at apnicfollow up this item(review) in same window 61.152.169.201 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.hengtiancnc.com/ lookup hengtiancnc.com at virustotalfollow up this domain(hengtiancnc.com) hengtiancnc.com follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (anti-spam@ns.chinanet.cn.net) as RSS-Feed anti-spam@ns.chinanet.cn.net follow up this itemfollow up this item 61.152.0.0 - 61.152.255.255 follow up this item CHINANET-SH follow up this item CHINANET Shanghai province networkData Communication DivisionChina Telecom follow up this item ns1.dns.com.cn follow up this item ns2.dns.com.cn follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.hengtiancnc.com/
5 follow up this item(11030339) 11030339 Report false positive Report closed case make a suggestion 2013-05-16 02:10:37     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
17/46 (37%) JS/Redirector.AB Trojan.JS.QYR Trojan.JS.QYR HTML/Redirector.AA Trojan.Url.IframeB.lbbrm HTML:Script-inf Trojan.JS.QYR Troj/Badsrc-G Trojan.JS.QYR Trojan-Clicker.HTML.RemoteScript (v) HTML/Redirector.AA.2 Trojan.JS.QYR (B) Trojan:HTML/Redirector.AA Troja lookup in virustotal.com (abedf584a035901e508057d5b9fc0dcd)-->[http://www.virustotal.com/latest-report.html?resource=abedf584a035901e508057d5b9fc0dcd]follow up this md5sum(abedf584a035901e508057d5b9fc0dcd)follow up this itemfollow up this virusname (JS%2FRedir) as RSS-Feedfollow up this malware(JS%2FRedir) for scanner (undef) in md5 table17/46 (37%) JS/Redir
 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.pet126.net/chongwuxiangce/ind ...  up No previous evidence recordedSaved evidence (25021 Bytes) of last contact as txt January 19 2012 04:03:32 CET. aliveSaved log of last contact as txt May 16 2013 02:47:11 CEST. SenderBaselookup 119.254.3.146 at virustotallookup 119.254.3.146 at Rus CERT university stuttgart germanylookup 119.254.3.146 at apnicfollow up this item(ip) in same window 119.254.3.146 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS23844) in networks tablefollow up this itemfollow up this AS (AS23844) as RSS-Feed AS23844 SenderBaselookup 119.254.3.146 at virustotallookup 119.254.3.146 at Rus CERT university stuttgart germanylookup 119.254.3.146 at apnicfollow up this item(review) in same window 119.254.3.146 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.pet126.net/chongwuxiangce/ind ... lookup pet126.net at virustotalfollow up this domain(pet126.net) pet126.net follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (chenbincb@sinnet.com.cn) as RSS-Feed chenbincb@sinnet.com.cn follow up this itemfollow up this item 119.254.0.0 - 119.255.255.255 follow up this item HUARUI follow up this item Langfang Development Area Huarui Xintong Network Technology Co., Ltd.Langfang university Langfang Development Area follow up this item ns1.dns.com.cn follow up this item ns2.dns.com.cn follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.pet126.net/chongwuxiangce/ind ...
6 follow up this item(11026211) 11026211 Report false positive Report closed case make a suggestion 2013-05-15 22:42:52     follow up this itemfollow up this contributor (csirt) as RSS-Feed sub31possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (73de304f0fb4ef56564ea275369872c4)follow up this md5sum(73de304f0fb4ef56564ea275369872c4)follow up this itemfollow up this virusname (HTML_DOWN.A) as RSS-Feedlookup Virusname at trendmicrofollow up this malware(HTML_DOWN.A) for scanner (trendmicro) in md5 table HTML_DOWN.A
 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.guantaoauto.com/ProductShow.a ...  up No previous evidence recordedSaved evidence (25501 Bytes) of last contact as txt May 16 2013 01:32:33 CEST. aliveSaved log of last contact as txt May 16 2013 01:32:33 CEST. SenderBaselookup 61.152.169.201 at virustotallookup 61.152.169.201 at Rus CERT university stuttgart germanylookup 61.152.169.201 at apnicfollow up this item(ip) in same window 61.152.169.201 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4812) in networks tablefollow up this itemfollow up this AS (AS4812) as RSS-Feed AS4812 SenderBaselookup 61.152.169.201 at virustotallookup 61.152.169.201 at Rus CERT university stuttgart germanylookup 61.152.169.201 at apnicfollow up this item(review) in same window 61.152.169.201 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.guantaoauto.com/ProductShow.a ... lookup guantaoauto.com at virustotalfollow up this domain(guantaoauto.com) guantaoauto.com follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (anti-spam@ns.chinanet.cn.net) as RSS-Feed anti-spam@ns.chinanet.cn.net follow up this itemfollow up this item 61.152.0.0 - 61.152.255.255 follow up this item CHINANET-SH follow up this item CHINANET Shanghai province networkData Communication DivisionChina Telecom follow up this item ns1.dns.com.cn follow up this item ns2.dns.com.cn follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.guantaoauto.com/ProductShow.a ...
7 follow up this item(11023672) 11023672 Report false positive Report closed case make a suggestion 2013-05-15 21:43:37     follow up this itemfollow up this contributor (csirt) as RSS-Feed sub31possible lookup Evidence at malwaredomainlist.com
19/46 (41.3%) Trojan.JS.Agent.HIU Trojan.JS.Agent.HIU Trojan Trojan.Url.IframeB.bjqbko JS/Redir.EP Iframe.RO HTML:Script-inf Trojan.JS.Agent.HIU Mal/Badsrc-C TrojWare.JS.Agent.HI Trojan.JS.Agent.HIU Malware.JS.Generic (JS) JS/Agent.hiu Trojan.JS.Agent.HIU (B) Trojan.J lookup in virustotal.com (da19aa1ee98d2b93923dbb2bde6f1a82)-->[http://www.virustotal.com/latest-report.html?resource=da19aa1ee98d2b93923dbb2bde6f1a82]follow up this md5sum(da19aa1ee98d2b93923dbb2bde6f1a82)follow up this itemfollow up this virusname (JS%2FRedir.EP+%28exact%29) as RSS-Feedfollow up this malware(JS%2FRedir.EP+%28exact%29) for scanner (undef) in md5 table19/46 (41.3%) JS/Redir.EP (exact)
 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.lfshuangwei.com/guest  up No previous evidence recordedSaved evidence (27196 Bytes) of last contact as txt May 15 2013 23:44:32 CEST. aliveSaved log of last contact as txt May 15 2013 23:44:32 CEST. SenderBaselookup 118.244.172.111 at virustotallookup 118.244.172.111 at Rus CERT university stuttgart germanylookup 118.244.172.111 at apnicfollow up this item(ip) in same window 118.244.172.111 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4837) in networks tablefollow up this itemfollow up this AS (AS4837) as RSS-Feed AS4837 SenderBaselookup 118.244.172.111 at virustotallookup 118.244.172.111 at Rus CERT university stuttgart germanylookup 118.244.172.111 at apnicfollow up this item(review) in same window 118.244.172.111 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.lfshuangwei.com/guest lookup lfshuangwei.com at virustotalfollow up this domain(lfshuangwei.com) lfshuangwei.com follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (abuse@cnc-noc.net) as RSS-Feed abuse@cnc-noc.net follow up this itemfollow up this item 118.244.0.0 - 118.247.255.255 follow up this item WSNET follow up this item HongMao JiaYuan technical Co. Ltd16/F Tengda Building,168 Xizhimenwai Str.,Haidian District,Beijing,P.R.CCNC Group CHINA169 Sichuan Province networkAddresses from CNNIC(BBnet)Beijing Weishichuangjie Technical Development Co.,Ltd16/F Tengda Building,168 X follow up this item ns1.dns.com.cn follow up this item ns2.dns.com.cn follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.lfshuangwei.com/guest
8 follow up this item(11016281) 11016281 Report false positive Report closed case make a suggestion 2013-05-15 19:40:36     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
28/46 (60.9%) HTML/Emerleox.IJ Trojan.Agent.JS.T Trojan.Agent.JS.T HTML/Iframe.FZ Trojan JS/ScrScr.B Redirector.GH JS_IFRAME.SMA HTML:Script-inf Trojan.JS-47 Trojan.JS.Iframe.fz Trojan.Agent.JS.T HTML.Downloader_Geno_iframe Mal/Badsrc-C TrojWare.JS.Redirector.PS Troja lookup in virustotal.com (f8682403c212d72dd07719b27b82d3aa)-->[http://www.virustotal.com/latest-report.html?resource=f8682403c212d72dd07719b27b82d3aa]follow up this md5sum(f8682403c212d72dd07719b27b82d3aa)follow up this itemfollow up this virusname (JS_IFRAME.SMA) as RSS-Feedlookup Virusname at trendmicrofollow up this malware(JS_IFRAME.SMA) for scanner (trendmicro) in md5 table28/46 (60.9%) JS_IFRAME.SMA
 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://jianengzs.com/jpShownews2.asp?ID= ...  up No previous evidence recordedSaved evidence (18529 Bytes) of last contact as txt May 15 2013 20:30:30 CEST. aliveSaved log of last contact as txt May 15 2013 20:30:30 CEST. SenderBaselookup 218.61.7.118 at virustotallookup 218.61.7.118 at Rus CERT university stuttgart germanylookup 218.61.7.118 at apnicfollow up this item(ip) in same window 218.61.7.118 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4837) in networks tablefollow up this itemfollow up this AS (AS4837) as RSS-Feed AS4837 SenderBaselookup 218.61.7.118 at virustotallookup 218.61.7.118 at Rus CERT university stuttgart germanylookup 218.61.7.118 at apnicfollow up this item(review) in same window 218.61.7.118 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://jianengzs.com/jpShownews2.asp?ID= ... lookup jianengzs.com at virustotalfollow up this domain(jianengzs.com) jianengzs.com follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (abuse@online.ln.cn) as RSS-Feed abuse@online.ln.cn follow up this itemfollow up this item 218.60.0.0 - 218.61.255.255 follow up this item UNICOM-LN follow up this item China Unicom Liaoning province networkChina UnicomCNC Group CHINA169 Liaoning Province Network follow up this item ns1.dns.com.cn follow up this item ns2.dns.com.cn follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://jianengzs.com/jpShownews2.asp?ID= ...
9 follow up this item(11015833) 11015833 Report false positive Report closed case make a suggestion 2013-05-15 19:40:21     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
1/46 (2.2%) Worm.Win32.Mefir lookup in virustotal.com (a3b826f40fa2c702f574501f73db6377)-->[http://www.virustotal.com/latest-report.html?resource=a3b826f40fa2c702f574501f73db6377]follow up this md5sum(a3b826f40fa2c702f574501f73db6377)follow up this itemfollow up this virusname (Worm.Win32.Mefir) as RSS-Feedfollow up this malware(Worm.Win32.Mefir) for scanner (undef) in md5 table1/46 (2.2%) Worm.Win32.Mefir
 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://a7b7.com/  up No previous evidence recordedSaved evidence (50376 Bytes) of last contact as txt May 15 2013 20:25:44 CEST. aliveSaved log of last contact as txt May 15 2013 20:25:44 CEST. SenderBaselookup 222.77.182.143 at virustotallookup 222.77.182.143 at Rus CERT university stuttgart germanylookup 222.77.182.143 at apnicfollow up this item(ip) in same window 222.77.182.143 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4134) in networks tablefollow up this itemfollow up this AS (AS4134) as RSS-Feed AS4134 SenderBaselookup 222.77.182.143 at virustotallookup 222.77.182.143 at Rus CERT university stuttgart germanylookup 222.77.182.143 at apnicfollow up this item(review) in same window 222.77.182.143 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://a7b7.com/ lookup a7b7.com at virustotalfollow up this domain(a7b7.com) a7b7.com follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (anti-spam@ns.chinanet.cn.net) as RSS-Feed anti-spam@ns.chinanet.cn.net follow up this itemfollow up this item 222.76.0.0 - 222.79.255.255 follow up this item CHINANET-FJ follow up this item CHINANET fujian province networkChina TelecomNo1,jin-rong StreetBeijing 100032 follow up this item ns1.dns.com.cn follow up this item ns2.dns.com.cn follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://a7b7.com/
10 follow up this item(10940098) 10940098 Report false positive Report closed case make a suggestion 2013-05-14 05:45:54     follow up this itemfollow up this contributor (csirt) as RSS-Feed sub31possible lookup Evidence at malwaredomainlist.com
33/46 (71.7%) JS/IFrame.HF Trojan.Iframe.VD Trojan.Iframe.VD HTML/IframeRef.CT JS/IFrame.gen Trojan Trojan Trojan.Url.Iframe.trneu IFrame.gen Trojan.Maliframe!html Clicker.NS HTML_IFRAME.SMDA HTML:Iframe-gen Exploit.Iframe-1 Trojan-Clicker.HTML.IFrame.ann Trojan.Ifram lookup in virustotal.com (f177acd4d3a03fa2e2036f09e4b53bd6)-->[http://www.virustotal.com/latest-report.html?resource=f177acd4d3a03fa2e2036f09e4b53bd6]follow up this md5sum(f177acd4d3a03fa2e2036f09e4b53bd6)follow up this itemfollow up this virusname (HTML%2FIFrame.ers) as RSS-Feedlookup Virusname at avirafollow up this malware(HTML%2FIFrame.ers) for scanner (avira) in md5 table33/46 (71.7%) HTML/IFrame.ers
 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://86gce.com/newsclass.asp?bigclass= ...  up No previous evidence recordedSaved evidence (17840 Bytes) of last contact as txt May 14 2013 07:24:36 CEST. aliveSaved log of last contact as txt May 14 2013 07:24:36 CEST. SenderBaselookup 122.224.9.185 at virustotallookup 122.224.9.185 at Rus CERT university stuttgart germanylookup 122.224.9.185 at apnicfollow up this item(ip) in same window 122.224.9.185 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4134) in networks tablefollow up this itemfollow up this AS (AS4134) as RSS-Feed AS4134 SenderBaselookup 122.224.9.185 at virustotallookup 122.224.9.185 at Rus CERT university stuttgart germanylookup 122.224.9.185 at apnicfollow up this item(review) in same window 122.224.9.185 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://86gce.com/newsclass.asp?bigclass= ... lookup 86gce.com at virustotalfollow up this domain(86gce.com) 86gce.com follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (anti-spam@mail.sxptt.zj.cn) as RSS-Feed anti-spam@mail.sxptt.zj.cn follow up this itemfollow up this item 122.224.9.0 - 122.224.9.255 follow up this item NINBO-LANZHONG-LTD follow up this item Ninbo Lanzhong Network Ltd follow up this item ns1.dns.com.cn follow up this item ns2.dns.com.cn follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://86gce.com/newsclass.asp?bigclass= ...
Click here for other vital incidents


for query you may use wildcard=% or placeholder=_
response
domain
url
virusname
md5
ip
review
score
as
id
scanner
recent
descr
email
netname
inetnum
source
country
nsx
ns1
ns2
ns3
ns4
ns5
sub
sort
# of items to display

Protected by clean MX [Valid RSS] Valid HTML 4.01 Transitional CSS ist valide!
Access is provided for free and subject to these Terms and Conditions.