Malware - Clean MX

CLEAN MX realtime database
public access query for virus URL Totally watched: 690288 As of 2013-05-24 05:32:03 CEST

Subscribe to the VirusWatch Mailing list, updated hourly

This database consists of Virus URI, collected and verified since Feb 2006

If you detect URI'S concerning your netblock, already closed... you have made a good job, otherwise please close them as soon as possible.

to look at some nice charts, there are complete

statistics for this database
Attention: all URI'S are manually verified, but not cross-checked for real viruses function in this moment you make this query.(Sites may have been closed already..)
Our automatic Viruswalker process is scheduled every hour, so you may see now a incident and this one will be resolved later on.
So please keep on sending close-feedbacks to us...

if you have questions, criticism, wishes or ... do not hesitate to contact us at abuse@clean-mx.de
Our PBX is down you may reach us by cell phone +49 171 4802507 ...
Query as xml: Same query as xml output
TIMERS: Runtime Query: 9.1539 Seconds 10 hits

Line	#	Date	contributor	virusname	URL	ip state	response	Ip initial	AS#	ip review	URL	Domain	country	source	email	inetnum	netname	descr	ns1	ns2	ns3	ns4	ns5	URL
1	11394768	2013-05-24 05:00:55	sub16	0/43 (0.0%) unknown_html	http://ziphost.org/download/1e6cf5b5-bc7 ...	up	alive	5.149.248.134	AS59711	5.149.248.134	http://ziphost.org/download/1e6cf5b5-bc7 ...	ziphost.org	NL	RIPE		5.149.248.0 - 5.149.249.255	FN-NA1	FORTUNIX NETWORKS L.P.FortunixNetworks.NL	ns1.kind-dns.com	ns2.kind-dns.com				http://ziphost.org/download/1e6cf5b5-bc7 ...
2	11394767	2013-05-24 05:00:55	sub16	40/45 (88.9%) W32/Delf.I	http://zalil.ru/34474617/7513c159.519f0d ...	up	alive	194.63.142.66	AS21011	194.63.142.66	http://zalil.ru/34474617/7513c159.519f0d ...	zalil.ru	RU	RIPE	tech@mirotel.net	194.63.140.0 - 194.63.143.255	MIROTEL2	ITS Mirotel	ns8-cloud.nic.ru	ns3-l2.nic.ru	ns4-cloud.nic.ru	ns8-l2.nic.ru	ns4-l2.nic.ru	http://zalil.ru/34474617/7513c159.519f0d ...
3	11394765	2013-05-24 05:00:55	sub16	18/35 (51.4%) TR/Rogue.kdv.629834	http://www.un-jeu-par-jour.com/toolbar/t ...	up	alive	212.23.46.135	AS8928	212.23.46.135	http://www.un-jeu-par-jour.com/toolbar/t ...	un-jeu-par-jour.com	FR	RIPE	obouillaud@microapp.com	212.23.46.128 - 212.23.46.159	MICROAPPLICATION-NETS	MICRO APPLICATIONInteroute Telecommunications (UK) Ltd	a.ns.zerigo.net	e.ns.zerigo.net	c.ns.zerigo.net	d.ns.zerigo.net	b.ns.zerigo.net	http://www.un-jeu-par-jour.com/toolbar/t ...
4	11394764	2013-05-24 05:00:55	sub16	18/35 (51.4%) TR/Rogue.kdv.629834	http://www.un-jeu-par-jour.com/toolbar/t ...	up	alive	212.23.46.135	AS8928	212.23.46.135	http://www.un-jeu-par-jour.com/toolbar/t ...	un-jeu-par-jour.com	FR	RIPE	obouillaud@microapp.com	212.23.46.128 - 212.23.46.159	MICROAPPLICATION-NETS	MICRO APPLICATIONInteroute Telecommunications (UK) Ltd	a.ns.zerigo.net	e.ns.zerigo.net	c.ns.zerigo.net	d.ns.zerigo.net	b.ns.zerigo.net	http://www.un-jeu-par-jour.com/toolbar/t ...
5	11394763	2013-05-24 05:00:55	sub16	18/35 (51.4%) TR/Rogue.kdv.629834	http://www.un-jeu-par-jour.com/toolbar/t ...	up	alive	212.23.46.135	AS8928	212.23.46.135	http://www.un-jeu-par-jour.com/toolbar/t ...	un-jeu-par-jour.com	FR	RIPE	obouillaud@microapp.com	212.23.46.128 - 212.23.46.159	MICROAPPLICATION-NETS	MICRO APPLICATIONInteroute Telecommunications (UK) Ltd	a.ns.zerigo.net	e.ns.zerigo.net	c.ns.zerigo.net	d.ns.zerigo.net	b.ns.zerigo.net	http://www.un-jeu-par-jour.com/toolbar/t ...
6	11394761	2013-05-24 05:00:55	sub16	18/35 (51.4%) TR/Rogue.kdv.629834	http://www.un-jeu-par-jour.com/toolbar/t ...	up	alive	212.23.46.135	AS8928	212.23.46.135	http://www.un-jeu-par-jour.com/toolbar/t ...	un-jeu-par-jour.com	FR	RIPE	obouillaud@microapp.com	212.23.46.128 - 212.23.46.159	MICROAPPLICATION-NETS	MICRO APPLICATIONInteroute Telecommunications (UK) Ltd	a.ns.zerigo.net	e.ns.zerigo.net	c.ns.zerigo.net	d.ns.zerigo.net	b.ns.zerigo.net	http://www.un-jeu-par-jour.com/toolbar/t ...
7	11394753	2013-05-24 05:00:54	sub16	0/43 (0.0%) unknown_exe	http://www.startmenu8.com/StartMenu8_Set ...	up	alive	70.86.134.123	AS36420, AS30315, AS13749, AS21844	70.86.134.123	http://www.startmenu8.com/StartMenu8_Set ...	startmenu8.com	US	ARIN	abuse@theplanet.com	70.84.0.0 - 70.87.255.255	NETBLK-THEPLANET-BLK-13	ThePlanet.com Internet Services, Inc. TPCM 315 Capitol Suite 205 Houston TX 77002	dns2.registrar-servers.com	dns3.registrar-servers.com	dns4.registrar-servers.com	dns1.registrar-servers.com	dns5.registrar-servers.com	http://www.startmenu8.com/StartMenu8_Set ...
8	11394749	2013-05-24 05:00:54	sub16	31/45 (68.9%) Trj/Genetic.gen	http://www.leccrin.com/hermes/wp-content ...	up	alive	142.0.129.25	AS54600	142.0.129.25	http://www.leccrin.com/hermes/wp-content ...	leccrin.com	US	ARIN	abuse@petaexpress.com	142.0.128.0 - 142.0.143.255	PT-82-3	PEG TECH INC PT-82 440 North Wolfe Road Sunnyvalle CA 94085	ns29.domaincontrol.com	ns30.domaincontrol.com				http://www.leccrin.com/hermes/wp-content ...
9	11394748	2013-05-24 05:00:54	sub16	6/45 (13.3%) Artemis!11E3901E7E57	http://www.igetmyexboyfriendback.com/chm ...	up	alive	8.29.158.48	AS14112	8.29.158.48	http://www.igetmyexboyfriendback.com/chm ...	igetmyexboyfriendback.com	US	ARIN	abuse@level3.com	8.0.0.0 - 8.255.255.255	LVLT-ORG-8-8	Level 3 Communications, Inc. LVLT 1025 Eldorado Blvd. Broomfield CO 80021	hns2.beyondhosting.net	hns1.beyondhosting.net				http://www.igetmyexboyfriendback.com/chm ...
10	11394745	2013-05-24 05:00:54	sub16	21/46 (45.7%) ADSPY/NaviPromo.J	http://wrapapp.net/Temp/TriviaSetup_9861 ...	up	alive	209.135.141.122	AS32468	209.135.141.122	http://wrapapp.net/Temp/TriviaSetup_9861 ...	wrapapp.net	US	ARIN	ipadmin@primary.net	209.135.128.0 - 209.135.159.255	INLINK97	InLink Communications Company INLK P.O. Box 410890 St. Louis MO 63141	ns73.domaincontrol.com	ns74.domaincontrol.com				http://wrapapp.net/Temp/TriviaSetup_9861 ...

Click here for other vital incidents

Access is provided for free and subject to these Terms and Conditions.

for query you may use wildcard=% or placeholder=_
response
domain
url
virusname
md5
ip
review
score
as
id
scanner
recent
descr
email
netname
inetnum
source
country
nsx
ns1
ns2
ns3
ns4
ns5
sub
sort
# of items to display