CLEAN MX realtime database    
public access query for virus URL statistics
Totally watched: Walker is running: 57(243) http://c3.cr173.com/soft3/WinXMenuEditor.zip
Subscribe to the VirusWatch Mailing list, updated hourly

This database consists of Virus URI, collected and verified since Feb 2006
Tweet
If you detect URI'S concerning your netblock, already closed... you have made a good job, otherwise please close them as soon as possible.

to look at some nice charts, there are complete statisticsstatistics for this database
Attention: all URI'S are manually verified, but not cross-checked for real viruses function in this moment you make this query.(Sites may have been closed already..)
Our automatic Viruswalker process is scheduled every hour, so you may see now a incident and this one will be resolved later on.
So please keep on sending close-feedbacks to us...

if you have questions, criticism, wishes or ... do not hesitate to contact us at abuse@clean-mx.de
Our PBX is down you may reach us by cell phone +49 171 4802507 ...
Query as xml: Same query as xml output
TIMERS: Runtime Query: 1.7547 Seconds 10 hits
helpLine help#descendigascending helpDatedescendigascending helpCloseddescendigascending helphours helpcontributordescendigascending helpvirusnamedescendigascending helpURLdescendigascending helpip state helpresponsedescendigascending helpIp initialdescendigascending helpAS#descendigascending helpip reviewdescendigascending helpURLdescendigascending helpDomaindescendigascending helpcountrydescendigascending helpsourcedescendigascending helpemaildescendigascending helpinetnumdescendigascending helpnetnamedescendigascending helpdescrdescendigascending helpns1descendigascending helpns2descendigascending helpns3descendigascending helpns4descendigascending helpns5descendigascending helpURLdescendigascending
1 follow up this item(8931002) 8931002 Report false positive Report closed case make a suggestion 2013-01-02 09:22:16 OVERDUE! Overdue!3320.2 follow up this itemfollow up this contributor (commodo results) as RSS-Feed sub20possible lookup Evidence at malwaredomainlist.com
1/28 (3.6%) Redir.IG lookup in virustotal.com (67e408c9f0bf37111d8de82de2ea69d3)-->[http://www.virustotal.com/latest-report.html?resource=67e408c9f0bf37111d8de82de2ea69d3]follow up this md5sum(67e408c9f0bf37111d8de82de2ea69d3)follow up this itemfollow up this virusname (Redir.IG) as RSS-Feedfollow up this malware(Redir.IG) for scanner (Norman) in md5 table1/28 (3.6%) Redir.IG
 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.3lsoft.com/help1.html?xhei1xl ...  up Saved evidence (1299 Bytes) of first contact as txt December 24 2012 10:19:25 CET.Saved evidence (1231 Bytes) of last contact as txt January 21 2013 03:19:14 CET. alive-68Saved log of last contact as txt May 06 2013 01:10:03 CEST. SenderBaselookup 118.244.234.175 at virustotallookup 118.244.234.175 at Rus CERT university stuttgart germanylookup 118.244.234.175 at apnicfollow up this item(ip) in same window 118.244.234.175 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4837) in networks tablefollow up this itemfollow up this AS (AS4837) as RSS-Feed AS4837 SenderBaselookup 118.123.7.148 at virustotallookup 118.123.7.148 at Rus CERT university stuttgart germanylookup 118.123.7.148 at apnicfollow up this item(review) in same window 118.123.7.148 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.3lsoft.com/help1.html?xhei1xl ... lookup 3lsoft.com at virustotalfollow up this domain(3lsoft.com) 3lsoft.com follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (anti-spam@ns.chinanet.cn.net) as RSS-Feed anti-spam@ns.chinanet.cn.net follow up this itemfollow up this item 118.244.0.0 - 118.247.255.255 follow up this item CHINANET-SC follow up this item CHINANET Sichuan province networkChina TelecomA12,Xin-Jie-Kou-Wai StreetBeijing 100088 follow up this item f1g1ns2.dnspod.net follow up this item f1g1ns1.dnspod.net follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.3lsoft.com/help1.html?xhei1xl ...
2 follow up this item(8920758) 8920758 Report false positive Report closed case make a suggestion 2013-01-01 12:42:51 OVERDUE! Overdue!3340.8 follow up this itemfollow up this contributor (commodo results) as RSS-Feed sub20possible lookup Evidence at malwaredomainlist.com
23/46 (50%) Artemis!B1B507CA4EBD Adware W32/Kraddare.A.gen!Eldorado WS.Reputation.1 TROJ_GEN.RFFH1LU Win32:Adware-gen [Adw] HEUR:Trojan-Downloader.Win32.Generic Trojan.Generic.KD.819882 Trojan.Win32.A.Downloader.303104.B Trojan.Generic.KD.819882 Trojan.DownLoader1.3 lookup in virustotal.com (b1b507ca4ebddddbacae4258223ceab4)-->[http://www.virustotal.com/latest-report.html?resource=b1b507ca4ebddddbacae4258223ceab4]lookup in threatexpert.comlookup the sha256(e80c2f7b5d4d29d5f3f85a28170e142ec997dcc85595a94b88a53c0eb2deb86b) in comodo.comfollow up this md5sum(b1b507ca4ebddddbacae4258223ceab4)follow up this itemfollow up this virusname (ADWARE%2FRogue.286720) as RSS-Feedlookup Virusname at avirafollow up this malware(ADWARE%2FRogue.286720) for scanner (avira) in md5 table23/46 (50%) ADWARE/Rogue.286720
 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://up1.free-sms.co.kr/upapp/home/fre ...  up Saved evidence (286720 Bytes) of first contact as txt October 14 2009 09:13:16 CEST.Saved evidence (286720 Bytes) of last contact as txt October 14 2009 09:13:16 CEST. aliveSaved log of last contact as txt May 05 2013 18:23:12 CEST. SenderBaselookup 211.215.18.236 at virustotallookup 211.215.18.236 at Rus CERT university stuttgart germanylookup 211.215.18.236 at apnicfollow up this item(ip) in same window 211.215.18.236 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS9318) in networks tablefollow up this itemfollow up this AS (AS9318) as RSS-Feed AS9318 SenderBaselookup 211.215.18.234 at virustotallookup 211.215.18.234 at Rus CERT university stuttgart germanylookup 211.215.18.234 at apnicfollow up this item(review) in same window 211.215.18.234 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://up1.free-sms.co.kr/upapp/home/fre ... lookup free-sms.co.kr at virustotalfollow up this domain(free-sms.co.kr) free-sms.co.kr follow up this itemfollow up this country (KR) as RSS-Feed KR follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (abuse@skbroadband.com) as RSS-Feed abuse@skbroadband.com follow up this itemfollow up this item 211.212.0.0 - 211.215.255.255 follow up this item broadNnet-KR follow up this item SK Broadband Co Ltd follow up this item ns259.dnsever.com follow up this item ns46.dnsever.com follow up this item ns64.dnsever.com follow up this item ns231.dnsever.com follow up this item ns35.dnsever.com Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://up1.free-sms.co.kr/upapp/home/fre ...
3 follow up this item(8903575) 8903575 Report false positive Report closed case make a suggestion 2012-12-31 04:21:09 OVERDUE! Overdue!3373.2 follow up this itemfollow up this contributor (commodo results) as RSS-Feed sub20possible lookup Evidence at malwaredomainlist.com
10/36 (27.8%) Artemis!B3FD7CE0D61C TROJ_GEN.RCBH1LK Suspicious File UnclassifiedMalware Trojan.Click2.45866 Heuristic.LooksLike.Win32.Suspicious.C Worm/Fipp.gkk PUP/Win32.WingGo AdWare.Win32.Wingo Suspicion: unknown virus lookup in virustotal.com (b3fd7ce0d61ce9c8187b3449d46fbb91)-->[http://www.virustotal.com/latest-report.html?resource=b3fd7ce0d61ce9c8187b3449d46fbb91]lookup in threatexpert.comlookup the sha256(c265dd9ab7e57343c0900e6f5fbd7a43ee0fe4ff0eafcefdbaabe7a7cb75107e) in comodo.comfollow up this md5sum(b3fd7ce0d61ce9c8187b3449d46fbb91)follow up this itemfollow up this virusname (PUA.Packed.PECompact-1) as RSS-Feedlookup Virusname at viruspoolfollow up this malware(PUA.Packed.PECompact-1) for scanner (clamav) in md5 table10/36 (27.8%) PUA.Packed.PECompact-1
 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://s.winggo.co.kr/tabchoice/tabchoic ...  up Saved evidence (289968 Bytes) of first contact as txt December 12 2012 19:53:51 CET.Saved evidence (289968 Bytes) of last contact as txt December 12 2012 19:53:51 CET. aliveSaved log of last contact as txt May 05 2013 08:44:09 CEST. SenderBaselookup 121.78.93.135 at virustotallookup 121.78.93.135 at Rus CERT university stuttgart germanylookup 121.78.93.135 at apnicfollow up this item(ip) in same window 121.78.93.135 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS9286) in networks tablefollow up this itemfollow up this AS (AS9286) as RSS-Feed AS9286 SenderBaselookup 121.78.93.135 at virustotallookup 121.78.93.135 at Rus CERT university stuttgart germanylookup 121.78.93.135 at apnicfollow up this item(review) in same window 121.78.93.135 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://s.winggo.co.kr/tabchoice/tabchoic ... lookup winggo.co.kr at virustotalfollow up this domain(winggo.co.kr) winggo.co.kr follow up this itemfollow up this country (KR) as RSS-Feed KR follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (kwlee@actela.com) as RSS-Feed kwlee@actela.com follow up this itemfollow up this item 121.78.0.0 - 121.78.255.255 follow up this item KINXINC-KR follow up this item KINX follow up this item ns.gabia.net follow up this item ns1.gabia.co.kr follow up this item ns.gabia.co.kr follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://s.winggo.co.kr/tabchoice/tabchoic ...
4 follow up this item(8897827) 8897827 Report false positive Report closed case make a suggestion 2012-12-30 12:24:33 OVERDUE! Overdue!3389.1 follow up this itemfollow up this contributor (commodo results) as RSS-Feed sub20possible lookup Evidence at malwaredomainlist.com
4/46 (8.7%) Exploit HTML/IFRAME.gen Heuristic.LooksLike.HTML.Infected.N HTML/IFRAME.gen lookup in virustotal.com (e023d4d509b62b472be87793cafe109d)-->[http://www.virustotal.com/latest-report.html?resource=e023d4d509b62b472be87793cafe109d]follow up this md5sum(e023d4d509b62b472be87793cafe109d)follow up this itemfollow up this virusname (Heuristic.LooksLike.HTML.Infected.N) as RSS-Feedfollow up this malware(Heuristic.LooksLike.HTML.Infected.N) for scanner (undef) in md5 table4/46 (8.7%) Heuristic.LooksLike.HTML.Infected.N
 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.7korea.net/index.php?mode=ins ...  up Saved evidence (132661 Bytes) of first contact as txt December 30 2012 20:53:17 CET.Saved evidence (138346 Bytes) of last contact as txt April 04 2013 02:12:12 CEST. alive5685Saved log of last contact as txt May 05 2013 05:44:26 CEST. SenderBaselookup 112.175.184.41 at virustotallookup 112.175.184.41 at Rus CERT university stuttgart germanylookup 112.175.184.41 at apnicfollow up this item(ip) in same window 112.175.184.41 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS132524) in networks tablefollow up this itemfollow up this AS (AS132524) as RSS-Feed AS132524 SenderBaselookup 112.175.184.90 at virustotallookup 112.175.184.90 at Rus CERT university stuttgart germanylookup 112.175.184.90 at apnicfollow up this item(review) in same window 112.175.184.90 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.7korea.net/index.php?mode=ins ... lookup 7korea.net at virustotalfollow up this domain(7korea.net) 7korea.net follow up this itemfollow up this country (KR) as RSS-Feed KR follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC   follow up this itemfollow up this item 112.160.0.0 - 112.175.255.255 follow up this item  follow up this item  follow up this item ns2.dothome.co.kr follow up this item ns1.dothome.co.kr follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.7korea.net/index.php?mode=ins ...
5 follow up this item(8683262) 8683262 Report false positive Report closed case make a suggestion 2012-12-16 12:31:38 OVERDUE! Overdue!3725 follow up this itemfollow up this contributor (commodo results) as RSS-Feed sub20possible lookup Evidence at malwaredomainlist.com
5/35 (14.3%) Keylog-LightLogger WS.Reputation.1 TROJ_GEN.RCBH1B2 Trojan.Win32.KeyLogger.LightLogger.AMN (A) Riskware/LightLogger lookup in virustotal.com (f78101dae2fb48886cca43fe556ea148)-->[http://www.virustotal.com/latest-report.html?resource=f78101dae2fb48886cca43fe556ea148]lookup in threatexpert.comlookup the sha256(b6bd66bb8644b3c335efa66f59c3bed156dbcf29114a5cf42ff785af7454591c) in comodo.comfollow up this md5sum(f78101dae2fb48886cca43fe556ea148)follow up this itemfollow up this virusname (Keylog-LightLogger) as RSS-Feedfollow up this malware(Keylog-LightLogger) for scanner (McAfee) in md5 table5/35 (14.3%) Keylog-LightLogger
 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://heavenward.ru/files/lightloggerse ...  up Saved evidence (1959296 Bytes) of first contact as txt November 11 2012 14:11:54 CET.Saved evidence (1985160 Bytes) of last contact as txt January 26 2013 17:18:08 CET. alive25864Saved log of last contact as txt May 04 2013 05:45:20 CEST. SenderBaselookup 93.125.99.19 at virustotallookup 93.125.99.19 at Rus CERT university stuttgart germanylookup 93.125.99.19 at Ripefollow up this item(ip) in same window 93.125.99.19 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS6697) in networks tablefollow up this itemfollow up this AS (AS6697) as RSS-Feed AS6697 SenderBaselookup 93.125.99.19 at virustotallookup 93.125.99.19 at Rus CERT university stuttgart germanylookup 93.125.99.19 at Ripefollow up this item(review) in same window 93.125.99.19 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://heavenward.ru/files/lightloggerse ... lookup heavenward.ru at virustotalfollow up this domain(heavenward.ru) heavenward.ru follow up this itemfollow up this country (BY) as RSS-Feed BY follow up this itemfollow up this region (RIPE) as RSS-Feed RIPE follow up this itemfollow up this enail (dis@tutby.com) as RSS-Feed dis@tutby.com follow up this itemfollow up this item 93.125.99.0 - 93.125.99.255 follow up this item TUTBY follow up this item HOSTER.BYReliable Software, Inc.DELEGATED FROM BELPAK follow up this item ns1.tutby.com follow up this item ns2.tutby.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://heavenward.ru/files/lightloggerse ...
6 follow up this item(8681820) 8681820 Report false positive Report closed case make a suggestion 2012-12-16 00:20:04 OVERDUE! Overdue!3737.2 follow up this itemfollow up this contributor (commodo results) as RSS-Feed sub20possible lookup Evidence at malwaredomainlist.com
1/46 (2.2%) Redir.IG lookup in virustotal.com (f06182066ea2e8fa1f1ed4d9ece7cd1a)-->[http://www.virustotal.com/latest-report.html?resource=f06182066ea2e8fa1f1ed4d9ece7cd1a]follow up this md5sum(f06182066ea2e8fa1f1ed4d9ece7cd1a)follow up this itemfollow up this virusname (Redir.IG) as RSS-Feedfollow up this malware(Redir.IG) for scanner (Norman) in md5 table1/46 (2.2%) Redir.IG
 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://nfsq.2680.com/qqnongchang/qqkj.ht ...  up Saved evidence (1054 Bytes) of first contact as txt April 25 2011 06:08:58 CEST.Saved evidence (1054 Bytes) of last contact as txt April 25 2011 06:08:58 CEST. aliveSaved log of last contact as txt May 04 2013 05:25:31 CEST. SenderBaselookup 115.238.251.239 at virustotallookup 115.238.251.239 at Rus CERT university stuttgart germanylookup 115.238.251.239 at apnicfollow up this item(ip) in same window 115.238.251.239 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4134) in networks tablefollow up this itemfollow up this AS (AS4134) as RSS-Feed AS4134 SenderBaselookup 115.238.251.239 at virustotallookup 115.238.251.239 at Rus CERT university stuttgart germanylookup 115.238.251.239 at apnicfollow up this item(review) in same window 115.238.251.239 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://nfsq.2680.com/qqnongchang/qqkj.ht ... lookup 2680.com at virustotalfollow up this domain(2680.com) 2680.com follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (anti-spam@ns.chinanet.cn.net) as RSS-Feed anti-spam@ns.chinanet.cn.net follow up this itemfollow up this item 115.224.0.0 - 115.239.255.255 follow up this item CHINANET-ZJ follow up this item CHINANET Zhejiang province networkChina TelecomNo.31,jingrong streetBeijing 100032 follow up this item f1g1ns2.dnspod.net follow up this item f1g1ns1.dnspod.net follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://nfsq.2680.com/qqnongchang/qqkj.ht ...
7 follow up this item(8660148) 8660148 Report false positive Report closed case make a suggestion 2012-12-13 20:50:08 OVERDUE! Overdue!3788.7 follow up this itemfollow up this contributor (commodo results) as RSS-Feed sub20possible lookup Evidence at malwaredomainlist.com
24/35 (68.6%) Trojan-Clicker/W32.Agent.793600.B Generic PUP.z!pi Riskware W32/Banker.X.gen!Eldorado WS.Reputation.1 W32/Suspicious_Gen4.BPPPJ TROJ_GEN.R47H1KQ not-a-virus:AdWare.Win32.Agent.zdn Trojan.Generic.8226252 UnclassifiedMalware Trojan.Generic.8226252 Trojan. lookup in virustotal.com (b95990418580e27653bb92d15e403fcf)-->[http://www.virustotal.com/latest-report.html?resource=b95990418580e27653bb92d15e403fcf]lookup in threatexpert.comlookup the sha256(e9611b007e90b70cce23f3b63930e99e8a2e15c855e7d28e98b46222080ca61a) in comodo.comfollow up this md5sum(b95990418580e27653bb92d15e403fcf)follow up this itemfollow up this virusname (DR%2FDelphi.Gen) as RSS-Feedlookup Virusname at avirafollow up this malware(DR%2FDelphi.Gen) for scanner (avira) in md5 table24/35 (68.6%) DR/Delphi.Gen
 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://clickpang.co.kr/pgm/clickpang.exe ...  up Saved evidence (793600 Bytes) of first contact as txt November 26 2012 08:27:13 CET.Saved evidence (793600 Bytes) of last contact as txt November 26 2012 08:27:13 CET. aliveSaved log of last contact as txt May 03 2013 14:27:08 CEST. SenderBaselookup 211.224.128.210 at virustotallookup 211.224.128.210 at Rus CERT university stuttgart germanylookup 211.224.128.210 at apnicfollow up this item(ip) in same window 211.224.128.210 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4766) in networks tablefollow up this itemfollow up this AS (AS4766) as RSS-Feed AS4766 SenderBaselookup 211.224.128.211 at virustotallookup 211.224.128.211 at Rus CERT university stuttgart germanylookup 211.224.128.211 at apnicfollow up this item(review) in same window 211.224.128.211 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://clickpang.co.kr/pgm/clickpang.exe ... lookup clickpang.co.kr at virustotalfollow up this domain(clickpang.co.kr) clickpang.co.kr follow up this itemfollow up this country (KR) as RSS-Feed KR follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (abuse@kornet.net) as RSS-Feed abuse@kornet.net follow up this itemfollow up this item 211.216.0.0 - 211.225.255.255 follow up this item KORNET-KR follow up this item Korea Telecom follow up this item ns.secuidc.com follow up this item  follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://clickpang.co.kr/pgm/clickpang.exe ...
8 follow up this item(8648677) 8648677 Report false positive Report closed case make a suggestion 2012-12-12 18:13:23 OVERDUE! Overdue!3815.3 follow up this itemfollow up this contributor (commodo results) as RSS-Feed sub20possible lookup Evidence at malwaredomainlist.com
31/36 (86.1%) Trojan/W32.Agent.1047552.O Artemis!44AB7103E31A Riskware Trojan/CoinMiner.aj W32/BitCoinMiner.A Trojan.Gen W32/BitCoinMiner.HI TROJ_SPNR.11HI12 Win32:Malware-gen Trojan.Win32.Miner.no MemScan:Application.CoinMiner.A Bitcoin Miner MemScan:Application.Coi lookup in virustotal.com (44ab7103e31a41b53401cedcabf9de6f)-->[http://www.virustotal.com/latest-report.html?resource=44ab7103e31a41b53401cedcabf9de6f]lookup in threatexpert.comlookup the sha256(7619b0df8ea96fdf687a000cc8e1411883690be55dd38998bdf719b6bb55cb3f) in comodo.comfollow up this md5sum(44ab7103e31a41b53401cedcabf9de6f)follow up this itemfollow up this virusname (TR%2FBitCoin.B) as RSS-Feedlookup Virusname at avirafollow up this malware(TR%2FBitCoin.B) for scanner (avira) in md5 table31/36 (86.1%) TR/BitCoin.B
 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://ge.tt/api/1/files/9dMi6OQ/0/blob? ...  up Saved evidence (1047552 Bytes) of first contact as txt October 28 2012 09:43:40 CET.Saved evidence (1047552 Bytes) of last contact as txt October 28 2012 09:43:40 CET. aliveSaved log of last contact as txt May 03 2013 11:07:06 CEST. SenderBaselookup 79.125.123.149 at virustotallookup 79.125.123.149 at Rus CERT university stuttgart germanylookup 79.125.123.149 at Ripefollow up this item(ip) in same window 79.125.123.149 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS39111) in networks tablefollow up this itemfollow up this AS (AS39111) as RSS-Feed AS39111 SenderBaselookup 79.125.123.149 at virustotallookup 79.125.123.149 at Rus CERT university stuttgart germanylookup 79.125.123.149 at Ripefollow up this item(review) in same window 79.125.123.149 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://ge.tt/api/1/files/9dMi6OQ/0/blob? ... lookup ge.tt at virustotalfollow up this domain(ge.tt) ge.tt follow up this itemfollow up this country (IE) as RSS-Feed IE follow up this itemfollow up this region (RIPE) as RSS-Feed RIPE follow up this itemfollow up this enail (ec2-abuse@amazon.com) as RSS-Feed ec2-abuse@amazon.com follow up this itemfollow up this item 79.125.64.0 - 79.125.127.255 follow up this item AMAZON-EU-AWS follow up this item Amazon Web Services, Elastic Compute Cloud, EC2, EU follow up this item ns-39.awsdns-04.com follow up this item ns-766.awsdns-31.net follow up this item ns-1403.awsdns-47.org follow up this item ns-1939.awsdns-50.co.uk follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://ge.tt/api/1/files/9dMi6OQ/0/blob? ...
9 follow up this item(8555117) 8555117 Report false positive Report closed case make a suggestion 2012-12-03 23:50:46 OVERDUE! Overdue!4025.7 follow up this itemfollow up this contributor (commodo results) as RSS-Feed sub20possible lookup Evidence at malwaredomainlist.com
1/45 (2.2%) lookup in virustotal.com (755b96cdc603973c41ed6117f9d1efe2)-->[http://www.virustotal.com/latest-report.html?resource=755b96cdc603973c41ed6117f9d1efe2]lookup in threatexpert.comlookup the sha256(787624d76f62fef8a1b3e4e10836fd4a51c82cfbec26d5ec308d060f762e81b0) in comodo.comfollow up this md5sum(755b96cdc603973c41ed6117f9d1efe2)follow up this itemfollow up this virusname (PUA.Win32.Packer.Winzip) as RSS-Feedlookup Virusname at viruspoolfollow up this malware(PUA.Win32.Packer.Winzip) for scanner (clamav) in md5 table1/45 (2.2%) PUA.Win32.Packer.Winzip
 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://software.canon-europe.com/files/s ...  up Saved evidence (1620480 Bytes) of first contact as txt March 13 2007 00:00:17 CET.Saved evidence (1620480 Bytes) of last contact as txt March 12 2007 23:00:17 CET. aliveSaved log of last contact as txt May 01 2013 01:22:58 CEST. SenderBaselookup 82.112.117.82 at virustotallookup 82.112.117.82 at Rus CERT university stuttgart germanylookup 82.112.117.82 at Ripefollow up this item(ip) in same window 82.112.117.82 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS2914) in networks tablefollow up this itemfollow up this AS (AS2914) as RSS-Feed AS2914 SenderBaselookup 82.112.117.82 at virustotallookup 82.112.117.82 at Rus CERT university stuttgart germanylookup 82.112.117.82 at Ripefollow up this item(review) in same window 82.112.117.82 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://software.canon-europe.com/files/s ... lookup canon-europe.com at virustotalfollow up this domain(canon-europe.com) canon-europe.com follow up this itemfollow up this country (GB) as RSS-Feed GB follow up this itemfollow up this region (RIPE) as RSS-Feed RIPE follow up this itemfollow up this enail (abuse@us.ntt.net) as RSS-Feed abuse@us.ntt.net follow up this itemfollow up this item 82.112.117.0 - 82.112.117.255 follow up this item CANONEUROPE-NET follow up this item Canon Europe follow up this item ns3.canon-europa.com follow up this item ns.canon-europa.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://software.canon-europe.com/files/s ...
10 follow up this item(8533165) 8533165 Report false positive Report closed case make a suggestion 2012-12-01 03:20:38 OVERDUE! Overdue!4094.2 follow up this itemfollow up this contributor (commodo results) as RSS-Feed sub20possible lookup Evidence at malwaredomainlist.com
31/36 (86.1%) FakeAlert-Kraddare.h Trojan/Downloader.Adload.afsx Adware Trojan.Malcol W32/Kraddare.DC TROJ_GEN.RCBC7J1 NSIS:Downloader-DJ Trj Adware.Kraddare-1 not-a-virus:AdWare.Win32.Krdr.c Gen:Variant.Adware.Buzy.2698 Adware.Agent.561152.AI Adware.Win32.Krdr.AMN ( lookup in virustotal.com (5241fb97fdb7b4cc8f139540706b1d81)-->[http://www.virustotal.com/latest-report.html?resource=5241fb97fdb7b4cc8f139540706b1d81]lookup in threatexpert.comlookup the sha256(d31754226c2847301bb1bb21324a866d6b904d673dcee1450ca9d43cbec19059) in comodo.comfollow up this md5sum(5241fb97fdb7b4cc8f139540706b1d81)follow up this itemfollow up this virusname (TR%2FKryptik.KX) as RSS-Feedlookup Virusname at avirafollow up this malware(TR%2FKryptik.KX) for scanner (avira) in md5 table31/36 (86.1%) TR/Kryptik.KX
 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://down.feel2day.com/newmain/cup_hdd ...  up Saved evidence (561152 Bytes) of first contact as txt January 27 2012 05:16:15 CET.Saved evidence (561152 Bytes) of last contact as txt January 27 2012 05:16:15 CET. aliveSaved log of last contact as txt April 30 2013 04:00:55 CEST. SenderBaselookup 211.215.18.240 at virustotallookup 211.215.18.240 at Rus CERT university stuttgart germanylookup 211.215.18.240 at apnicfollow up this item(ip) in same window 211.215.18.240 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS9318) in networks tablefollow up this itemfollow up this AS (AS9318) as RSS-Feed AS9318 SenderBaselookup 211.215.18.238 at virustotallookup 211.215.18.238 at Rus CERT university stuttgart germanylookup 211.215.18.238 at apnicfollow up this item(review) in same window 211.215.18.238 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://down.feel2day.com/newmain/cup_hdd ... lookup feel2day.com at virustotalfollow up this domain(feel2day.com) feel2day.com follow up this itemfollow up this country (KR) as RSS-Feed KR follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (abuse@skbroadband.com) as RSS-Feed abuse@skbroadband.com follow up this itemfollow up this item 211.212.0.0 - 211.215.255.255 follow up this item broadNnet-KR follow up this item SK Broadband Co Ltd follow up this item ns231.dnsever.com follow up this item ns65.dnsever.com follow up this item ns259.dnsever.com follow up this item ns67.dnsever.com follow up this item ns46.dnsever.com Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://down.feel2day.com/newmain/cup_hdd ...
Click here for other vital incidents


for query you may use wildcard=% or placeholder=_
response
domain
url
virusname
md5
ip
review
score
as
id
scanner
recent
descr
email
netname
inetnum
source
country
nsx
ns1
ns2
ns3
ns4
ns5
sub
sort
# of items to display

Protected by clean MX [Valid RSS] Valid HTML 4.01 Transitional CSS ist valide!
Access is provided for free and subject to these Terms and Conditions.