CLEAN MX realtime database    
public access query for virus URL statistics
Totally watched: 3518176 As of 2014-04-16 12:07:44 CEST
Subscribe to the VirusWatch Mailing list, updated hourly

This database consists of Virus URI, collected and verified since Feb 2006
Tweet
If you detect URI'S concerning your netblock, already closed... you have made a good job, otherwise please close them as soon as possible.

to look at some nice charts, there are complete statisticsstatistics for this database
Attention: all URI'S are manually verified, but not cross-checked for real viruses function in this moment you make this query.(Sites may have been closed already..)
Our automatic Viruswalker process is scheduled every hour, so you may see now a incident and this one will be resolved later on.
So please keep on sending close-feedbacks to us...

if you have questions, criticism, wishes or ... do not hesitate to contact us at abuse@clean-mx.de
Our PBX is down you may reach us by cell phone +49 171 4802507 ...
Query as xml: Same query as xml output
TIMERS: Runtime Query: 0.0792 Seconds 10 hits
helpLine help#descendigascending helpDatedescendigascending helpCloseddescendigascending helphours helpcontributordescendigascending helpvirusnamedescendigascending helpURLdescendigascending helpip state helpresponsedescendigascending helpIp initialdescendigascending helpAS#descendigascending helpip reviewdescendigascending helpURLdescendigascending helpDomaindescendigascending helpcountrydescendigascending helpsourcedescendigascending helpemaildescendigascending helpinetnumdescendigascending helpnetnamedescendigascending helpdescrdescendigascending helpns1descendigascending helpns2descendigascending helpns3descendigascending helpns4descendigascending helpns5descendigascending helpURLdescendigascending
1 follow up this item(25115626) 25115626 Report false positive Report closed case make a suggestion 2014-04-16 09:00:32     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
7/48 (14.6%) 
 
(Suspicious)
-
DNAScan
W32/FakeAlert.5!Maximus
W32/FakeAlert.5!Maximus
Trojan.Win32.OnlineGames.dxgin
PAK_Generic.005
TROJ_GE.A20295AD
suspected
of
ZIP.MailBomb 
 lookup in virustotal.com (624e2e81319ec63c53a01facd2788a5e)-->[http://www.virustotal.com/latest-report.html?resource=624e2e81319ec63c53a01facd2788a5e]lookup in threatexpert.comlookup the sha256(d5bcbaecce3e947cf8e48e5e3b6fa5a9d246eb4a783e1f95e1a4b50be6f05a05) in comodo.comfollow up this md5sum(624e2e81319ec63c53a01facd2788a5e)follow up this itemfollow up this virusname (%28Suspicious%29+-+DNAScan) as RSS-Feedfollow up this malware(%28Suspicious%29+-+DNAScan) for scanner (CAT_QuickHeal) in md5 table7/48 (14.6%) (Suspicious) - DNAScan
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://skylink.dl.sourceforge.net/projec ...  up No previous evidence recordedSaved evidence (18735104 Bytes) of last contact as txt April 16 2014 09:46:36 CEST. aliveSaved log of last contact as txt April 16 2014 09:46:36 CEST. follow up this ip (ip=109.230.212.53) as RSS-FeedSenderBaselookup 109.230.212.53 at virustotallookup 109.230.212.53 at Rus CERT university stuttgart germanylookup 109.230.212.53 at Ripefollow up this item(ip) in same window 109.230.212.53 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS197043) in networks tablefollow up this itemfollow up this AS (AS197043) as RSS-Feed AS197043 follow up this ip (review=109.230.212.53) as RSS-FeedSenderBaselookup 109.230.212.53 at virustotallookup 109.230.212.53 at Rus CERT university stuttgart germanylookup 109.230.212.53 at Ripefollow up this item(review) in same window 109.230.212.53 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://skylink.dl.sourceforge.net/projec ... follow up this domain (sourceforge.net) as RSS-Feedlookup sourceforge.net at virustotalfollow up this domain(sourceforge.net) sourceforge.net follow up this itemfollow up this country (DE) as RSS-Feed DE follow up this itemfollow up this region (RIPE) as RSS-Feed RIPE follow up this itemfollow up this enail (abuse@optimate-server.de) as RSS-Feed abuse@optimate-server.de follow up this itemfollow up this item 109.230.212.0 - 109.230.212.127 follow up this item VIRTUELL-HOST-WEB follow up this item virtuell-host.de follow up this item ns2.p03.dynect.net follow up this item ns4.p03.dynect.net follow up this item ns3.p03.dynect.net follow up this item ns1.p03.dynect.net follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://skylink.dl.sourceforge.net/projec ...
2 follow up this item(25028533) 25028533 Report false positive Report closed case make a suggestion 2014-04-15 00:25:08     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
4/49 (8.2%) 
 Trojan.Win32.Monder.2!O
(Suspicious)
-
DNAScan
WS.Reputation.1
TScope.Trojan.VB 
 lookup in virustotal.com (22fcf3bf2050be9c8d9792c1f3422ce2)-->[http://www.virustotal.com/latest-report.html?resource=22fcf3bf2050be9c8d9792c1f3422ce2]lookup in threatexpert.comlookup the sha256(abba6ff88ba0362616a528a053787049019eac18fa20e86d8ddce911f372df56) in comodo.comfollow up this md5sum(22fcf3bf2050be9c8d9792c1f3422ce2)follow up this itemfollow up this virusname (%28Suspicious%29+-+DNAScan) as RSS-Feedfollow up this malware(%28Suspicious%29+-+DNAScan) for scanner (CAT_QuickHeal) in md5 table4/49 (8.2%) (Suspicious) - DNAScan
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://s5.sfcdn.in/OWVjMThkOTQzYzU4YjRiM ...  up Saved evidence (822573 Bytes) of first contact as txt December 14 2013 01:07:44 CET.Saved evidence (822573 Bytes) of last contact as txt December 14 2013 01:07:44 CET. aliveSaved log of last contact as txt April 15 2014 07:40:32 CEST. follow up this ip (ip=37.221.171.34) as RSS-FeedSenderBaselookup 37.221.171.34 at virustotallookup 37.221.171.34 at Rus CERT university stuttgart germanylookup 37.221.171.34 at Ripefollow up this item(ip) in same window 37.221.171.34 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS39743) in networks tablefollow up this itemfollow up this AS (AS39743) as RSS-Feed AS39743 follow up this ip (review=37.221.171.34) as RSS-FeedSenderBaselookup 37.221.171.34 at virustotallookup 37.221.171.34 at Rus CERT university stuttgart germanylookup 37.221.171.34 at Ripefollow up this item(review) in same window 37.221.171.34 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://s5.sfcdn.in/OWVjMThkOTQzYzU4YjRiM ... follow up this domain (sfcdn.in) as RSS-Feedlookup sfcdn.in at virustotalfollow up this domain(sfcdn.in) sfcdn.in follow up this itemfollow up this country (RO) as RSS-Feed RO follow up this itemfollow up this region (RIPE) as RSS-Feed RIPE follow up this itemfollow up this enail (noc@voxility.com) as RSS-Feed noc@voxility.com follow up this itemfollow up this item 37.221.160.0 - 37.221.175.255 follow up this item RO-VOXILITY-20120405 follow up this item Voxility S.R.L. follow up this item ns-842.awsdns-41.net follow up this item ns-1204.awsdns-22.org follow up this item ns-1946.awsdns-51.co.uk follow up this item ns-29.awsdns-03.com follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://s5.sfcdn.in/OWVjMThkOTQzYzU4YjRiM ...
3 follow up this item(24994596) 24994596 Report false positive Report closed case make a suggestion 2014-04-14 23:33:57     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
6/50 (12%) 
 
(Suspicious)
-
DNAScan
W32/Injector.A.gen!Eldorado
W32/Injector.A.gen!Eldorado
Trojan/Buzus.wto
Riskware
(
eca15ce20
)
TROJ_GEN.F47V0414 
 lookup in virustotal.com (611436b086913eb585d3ef61ed25578d)-->[http://www.virustotal.com/latest-report.html?resource=611436b086913eb585d3ef61ed25578d]lookup in threatexpert.comlookup the sha256(436d46a06c60afd02e564c05e83a1f8f2fcc90c8497e0d2164394bf4007badbe) in comodo.comfollow up this md5sum(611436b086913eb585d3ef61ed25578d)follow up this itemfollow up this virusname (%28Suspicious%29+-+DNAScan) as RSS-Feedfollow up this malware(%28Suspicious%29+-+DNAScan) for scanner (CAT_QuickHeal) in md5 table6/50 (12%) (Suspicious) - DNAScan
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://ckpn.cachefly.net/ClientRelease/Y ...  up Saved evidence (16716392 Bytes) of first contact as txt February 05 2014 11:15:34 CET.Saved evidence (16716392 Bytes) of last contact as txt February 05 2014 11:15:34 CET. aliveSaved log of last contact as txt April 15 2014 13:44:53 CEST. follow up this ip (ip=205.234.175.175) as RSS-FeedSenderBaselookup 205.234.175.175 at virustotallookup 205.234.175.175 at Rus CERT university stuttgart germanylookup 205.234.175.175 at ARINfollow up this item(ip) in same window 205.234.175.175 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS23352) in networks tablefollow up this itemfollow up this AS (AS23352) as RSS-Feed AS23352 follow up this ip (review=205.234.175.175) as RSS-FeedSenderBaselookup 205.234.175.175 at virustotallookup 205.234.175.175 at Rus CERT university stuttgart germanylookup 205.234.175.175 at ARINfollow up this item(review) in same window 205.234.175.175 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://ckpn.cachefly.net/ClientRelease/Y ... follow up this domain (cachefly.net) as RSS-Feedlookup cachefly.net at virustotalfollow up this domain(cachefly.net) cachefly.net follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (support@servercentral.net) as RSS-Feed support@servercentral.net follow up this itemfollow up this item 205.234.128.0 - 205.234.255.255 follow up this item SCN-4 follow up this item Server Central Network SCN-18 209 W. Jackson Blvd. Suite 700 Chicago IL 60606 follow up this item ns2.adns.cachefly.net follow up this item ns1.adns.cachefly.net follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://ckpn.cachefly.net/ClientRelease/Y ...
4 follow up this item(24942230) 24942230 Report false positive Report closed case make a suggestion 2014-04-14 05:55:51     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
1/51 (2%) 
 (Suspicious)
-
DNAScan 
 lookup in virustotal.com (0cbda620bb1a2f9ed4a2faeb55c3adcb)-->[http://www.virustotal.com/latest-report.html?resource=0cbda620bb1a2f9ed4a2faeb55c3adcb]follow up this md5sum(0cbda620bb1a2f9ed4a2faeb55c3adcb)follow up this itemfollow up this virusname (%28Suspicious%29+-+DNAScan) as RSS-Feedfollow up this malware(%28Suspicious%29+-+DNAScan) for scanner () in md5 table1/51 (2%) (Suspicious) - DNAScan
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://softlayer-ams.dl.sourceforge.net/ ...  up No previous evidence recordedSaved evidence (1983995 Bytes) of last contact as txt April 08 2014 21:42:42 CEST. aliveSaved log of last contact as txt April 14 2014 07:04:11 CEST. follow up this ip (ip=37.58.69.140) as RSS-FeedSenderBaselookup 37.58.69.140 at virustotallookup 37.58.69.140 at Rus CERT university stuttgart germanylookup 37.58.69.140 at Ripefollow up this item(ip) in same window 37.58.69.140 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS36351) in networks tablefollow up this itemfollow up this AS (AS36351) as RSS-Feed AS36351 follow up this ip (review=37.58.69.140) as RSS-FeedSenderBaselookup 37.58.69.140 at virustotallookup 37.58.69.140 at Rus CERT university stuttgart germanylookup 37.58.69.140 at Ripefollow up this item(review) in same window 37.58.69.140 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://softlayer-ams.dl.sourceforge.net/ ... follow up this domain (sourceforge.net) as RSS-Feedlookup sourceforge.net at virustotalfollow up this domain(sourceforge.net) sourceforge.net follow up this itemfollow up this country (NL) as RSS-Feed NL follow up this itemfollow up this region (RIPE) as RSS-Feed RIPE follow up this itemfollow up this enail (abuse@softlayer.com) as RSS-Feed abuse@softlayer.com follow up this itemfollow up this item 37.58.64.0 - 37.58.127.255 follow up this item NL-SOFTLAYER-EU-20120116 follow up this item  follow up this item ns2.p03.dynect.net follow up this item ns4.p03.dynect.net follow up this item ns3.p03.dynect.net follow up this item ns1.p03.dynect.net follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://softlayer-ams.dl.sourceforge.net/ ...
5 follow up this item(24932687) 24932687 Report false positive Report closed case make a suggestion 2014-04-14 01:20:19     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
1/50 (2%) 
 
(Suspicious)
-
DNAScan 
 lookup in virustotal.com (c7ca110da9acc51acf6365641661870a)-->[http://www.virustotal.com/latest-report.html?resource=c7ca110da9acc51acf6365641661870a]lookup in threatexpert.comlookup the sha256(b1c00ddf2cae019d9d4fe0ff0b255498fbdc594b9f2ea1b6c767f0788b19ed33) in comodo.comfollow up this md5sum(c7ca110da9acc51acf6365641661870a)follow up this itemfollow up this virusname (%28Suspicious%29+-+DNAScan) as RSS-Feedfollow up this malware(%28Suspicious%29+-+DNAScan) for scanner (CAT_QuickHeal) in md5 table1/50 (2%) (Suspicious) - DNAScan
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://d110.cdn.m6web.fr/soft/logiciel/v ...  up No previous evidence recordedSaved evidence (8704738 Bytes) of last contact as txt April 14 2014 04:42:07 CEST. aliveSaved log of last contact as txt April 14 2014 04:42:07 CEST. follow up this ip (ip=141.138.88.61) as RSS-FeedSenderBaselookup 141.138.88.61 at virustotallookup 141.138.88.61 at Rus CERT university stuttgart germanylookup 141.138.88.61 at Ripefollow up this item(ip) in same window 141.138.88.61 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS30972) in networks tablefollow up this itemfollow up this AS (AS30972) as RSS-Feed AS30972 follow up this ip (review=141.138.88.61) as RSS-FeedSenderBaselookup 141.138.88.61 at virustotallookup 141.138.88.61 at Rus CERT university stuttgart germanylookup 141.138.88.61 at Ripefollow up this item(review) in same window 141.138.88.61 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://d110.cdn.m6web.fr/soft/logiciel/v ... follow up this domain (m6web.fr) as RSS-Feedlookup m6web.fr at virustotalfollow up this domain(m6web.fr) m6web.fr follow up this itemfollow up this country (FR) as RSS-Feed FR follow up this itemfollow up this region (RIPE) as RSS-Feed RIPE follow up this itemfollow up this enail (abuse@m6web.fr) as RSS-Feed abuse@m6web.fr follow up this itemfollow up this item 141.138.88.0 - 141.138.88.255 follow up this item M6-CDN-NETS follow up this item M6 WEB S.A.S.M6 WEBParis, France (see www.groupem6.fr) follow up this item ns2.m6web.fr follow up this item ns1b.m6web.fr follow up this item ns1.m6web.fr follow up this item ns4.m6web.fr follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://d110.cdn.m6web.fr/soft/logiciel/v ...
6 follow up this item(24921405) 24921405 Report false positive Report closed case make a suggestion 2014-04-13 20:20:59     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
7/50 (14%) 
 
Adware.Win32.Ask.D
(Suspicious)
-
DNAScan
a
variant
of
Win32/Hao123.A
Unwanted-File
(
6b49d2001
)
Artemis!3480F450CB5F
Artemis!3480F450CB5F
Address
Tool
Bar 
 lookup in virustotal.com (3480f450cb5f147281b1a1bb387f2584)-->[http://www.virustotal.com/latest-report.html?resource=3480f450cb5f147281b1a1bb387f2584]follow up this md5sum(3480f450cb5f147281b1a1bb387f2584)follow up this itemfollow up this virusname (%28Suspicious%29+-+DNAScan) as RSS-Feedfollow up this malware(%28Suspicious%29+-+DNAScan) for scanner (CAT_QuickHeal) in md5 table7/50 (14%) (Suspicious) - DNAScan
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.storage.programosy.pl/FFSetup ...  up No previous evidence recordedNo evidence recorded aliveNo log recorded follow up this ip (ip=5.39.73.182) as RSS-FeedSenderBaselookup 5.39.73.182 at virustotallookup 5.39.73.182 at Rus CERT university stuttgart germanylookup 5.39.73.182 at Ripefollow up this item(ip) in same window 5.39.73.182 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS16276) in networks tablefollow up this itemfollow up this AS (AS16276) as RSS-Feed AS16276 follow up this ip (review=5.39.73.182) as RSS-FeedSenderBaselookup 5.39.73.182 at virustotallookup 5.39.73.182 at Rus CERT university stuttgart germanylookup 5.39.73.182 at Ripefollow up this item(review) in same window 5.39.73.182 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.storage.programosy.pl/FFSetup ... follow up this domain (programosy.pl) as RSS-Feedlookup programosy.pl at virustotalfollow up this domain(programosy.pl) programosy.pl follow up this itemfollow up this country (FR) as RSS-Feed FR follow up this itemfollow up this region (RIPE) as RSS-Feed RIPE follow up this itemfollow up this enail (abuse@ovh.net) as RSS-Feed abuse@ovh.net follow up this itemfollow up this item 5.39.64.0 - 5.39.79.255 follow up this item OVH follow up this item OVH SASDedicated servershttp follow up this item ns1.hostingosy.pl follow up this item ns2.hostingosy.pl follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.storage.programosy.pl/FFSetup ...
7 follow up this item(24911071) 24911071 Report false positive Report closed case make a suggestion 2014-04-13 17:31:09     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (0cbda620bb1a2f9ed4a2faeb55c3adcb)follow up this md5sum(0cbda620bb1a2f9ed4a2faeb55c3adcb)follow up this itemfollow up this virusname (%28Suspicious%29+-+DNAScan) as RSS-Feedfollow up this malware(%28Suspicious%29+-+DNAScan) for scanner () in md5 table0/43 (0.0%) (Suspicious) - DNAScan
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://hivelocity.dl.sourceforge.net/pro ...  up No previous evidence recordedSaved evidence (1983995 Bytes) of last contact as txt April 08 2014 21:42:42 CEST. aliveSaved log of last contact as txt April 13 2014 18:39:51 CEST. follow up this ip (ip=74.50.101.106) as RSS-FeedSenderBaselookup 74.50.101.106 at virustotallookup 74.50.101.106 at Rus CERT university stuttgart germanylookup 74.50.101.106 at ARINfollow up this item(ip) in same window 74.50.101.106 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS29802) in networks tablefollow up this itemfollow up this AS (AS29802) as RSS-Feed AS29802 follow up this ip (review=74.50.101.106) as RSS-FeedSenderBaselookup 74.50.101.106 at virustotallookup 74.50.101.106 at Rus CERT university stuttgart germanylookup 74.50.101.106 at ARINfollow up this item(review) in same window 74.50.101.106 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://hivelocity.dl.sourceforge.net/pro ... follow up this domain (sourceforge.net) as RSS-Feedlookup sourceforge.net at virustotalfollow up this domain(sourceforge.net) sourceforge.net follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (abuse@noc4hosts.com) as RSS-Feed abuse@noc4hosts.com follow up this itemfollow up this item 74.50.96.0 - 74.50.111.255 follow up this item NOC4HOSTS2 follow up this item NOC4Hosts Inc. NOC4H 400 N Tampa St #1025 Tampa FL 33602 follow up this item ns4.p03.dynect.net follow up this item ns2.p03.dynect.net follow up this item ns1.p03.dynect.net follow up this item ns3.p03.dynect.net follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://hivelocity.dl.sourceforge.net/pro ...
8 follow up this item(24871879) 24871879 Report false positive Report closed case make a suggestion 2014-04-12 23:50:35     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (0cbda620bb1a2f9ed4a2faeb55c3adcb)follow up this md5sum(0cbda620bb1a2f9ed4a2faeb55c3adcb)follow up this itemfollow up this virusname (%28Suspicious%29+-+DNAScan) as RSS-Feedfollow up this malware(%28Suspicious%29+-+DNAScan) for scanner () in md5 table0/43 (0.0%) (Suspicious) - DNAScan
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://sunet.dl.sourceforge.net/project/ ...  up No previous evidence recordedSaved evidence (1983995 Bytes) of last contact as txt April 08 2014 21:42:42 CEST. aliveSaved log of last contact as txt April 13 2014 00:02:06 CEST. follow up this ip (ip=194.71.11.73) as RSS-FeedSenderBaselookup 194.71.11.73 at virustotallookup 194.71.11.73 at Rus CERT university stuttgart germanylookup 194.71.11.73 at Ripefollow up this item(ip) in same window 194.71.11.73 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS15980) in networks tablefollow up this itemfollow up this AS (AS15980) as RSS-Feed AS15980 follow up this ip (review=194.71.11.73) as RSS-FeedSenderBaselookup 194.71.11.73 at virustotallookup 194.71.11.73 at Rus CERT university stuttgart germanylookup 194.71.11.73 at Ripefollow up this item(review) in same window 194.71.11.73 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://sunet.dl.sourceforge.net/project/ ... follow up this domain (sourceforge.net) as RSS-Feedlookup sourceforge.net at virustotalfollow up this domain(sourceforge.net) sourceforge.net follow up this itemfollow up this country (SE) as RSS-Feed SE follow up this itemfollow up this region (RIPE) as RSS-Feed RIPE follow up this itemfollow up this enail (abuse@uu.se) as RSS-Feed abuse@uu.se follow up this itemfollow up this item 194.71.11.0 - 194.71.11.255 follow up this item UU-FTP follow up this item ftp-archive on SUNET follow up this item ns1.p03.dynect.net follow up this item ns2.p03.dynect.net follow up this item ns3.p03.dynect.net follow up this item ns4.p03.dynect.net follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://sunet.dl.sourceforge.net/project/ ...
9 follow up this item(24866628) 24866628 Report false positive Report closed case make a suggestion 2014-04-12 21:21:04     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
2/50 (4%) 
 
(Suspicious)
-
DNAScan
Unwanted-File
(
6b49d2001
) 
 lookup in virustotal.com (66cc04d82785855b2d8b1d6c3e1b90d7)-->[http://www.virustotal.com/latest-report.html?resource=66cc04d82785855b2d8b1d6c3e1b90d7]lookup in threatexpert.comlookup the sha256(74723655310b057bca3962e1c81e24c85c5da77d3d3b9ca3bb58cb69e1dacb79) in comodo.comfollow up this md5sum(66cc04d82785855b2d8b1d6c3e1b90d7)follow up this itemfollow up this virusname (%28Suspicious%29+-+DNAScan) as RSS-Feedfollow up this malware(%28Suspicious%29+-+DNAScan) for scanner (CAT_QuickHeal) in md5 table2/50 (4%) (Suspicious) - DNAScan
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://dqshared.com/ftp/Install-Euchre.e ...  up No previous evidence recordedSaved evidence (6753376 Bytes) of last contact as txt April 12 2014 22:04:04 CEST. aliveSaved log of last contact as txt April 12 2014 22:04:04 CEST. follow up this ip (ip=96.30.4.175) as RSS-FeedSenderBaselookup 96.30.4.175 at virustotallookup 96.30.4.175 at Rus CERT university stuttgart germanylookup 96.30.4.175 at ARINfollow up this item(ip) in same window 96.30.4.175 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS19066) in networks tablefollow up this itemfollow up this AS (AS19066) as RSS-Feed AS19066 follow up this ip (review=96.30.4.175) as RSS-FeedSenderBaselookup 96.30.4.175 at virustotallookup 96.30.4.175 at Rus CERT university stuttgart germanylookup 96.30.4.175 at ARINfollow up this item(review) in same window 96.30.4.175 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://dqshared.com/ftp/Install-Euchre.e ... follow up this domain (dqshared.com) as RSS-Feedlookup dqshared.com at virustotalfollow up this domain(dqshared.com) dqshared.com follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (abuse@wiredtree.com) as RSS-Feed abuse@wiredtree.com follow up this itemfollow up this item 96.30.0.0 - 96.30.31.255 follow up this item WIREDTREE follow up this item Cogswell Enterprises Inc. COGSW 53 W Jackson Blvd. Suite 635 Chicago IL 60604 follow up this item ns1.hover.com follow up this item ns2.hover.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://dqshared.com/ftp/Install-Euchre.e ...
10 follow up this item(24858984) 24858984 Report false positive Report closed case make a suggestion 2014-04-12 18:10:18     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (0cbda620bb1a2f9ed4a2faeb55c3adcb)follow up this md5sum(0cbda620bb1a2f9ed4a2faeb55c3adcb)follow up this itemfollow up this virusname (%28Suspicious%29+-+DNAScan) as RSS-Feedfollow up this malware(%28Suspicious%29+-+DNAScan) for scanner () in md5 table0/43 (0.0%) (Suspicious) - DNAScan
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://cznic.dl.sourceforge.net/project/ ...  up No previous evidence recordedSaved evidence (1983995 Bytes) of last contact as txt April 08 2014 21:42:42 CEST. aliveSaved log of last contact as txt April 12 2014 18:58:51 CEST. follow up this ip (ip=217.31.202.30) as RSS-FeedSenderBaselookup 217.31.202.30 at virustotallookup 217.31.202.30 at Rus CERT university stuttgart germanylookup 217.31.202.30 at Ripefollow up this item(ip) in same window 217.31.202.30 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS25192) in networks tablefollow up this itemfollow up this AS (AS25192) as RSS-Feed AS25192 follow up this ip (review=217.31.202.30) as RSS-FeedSenderBaselookup 217.31.202.30 at virustotallookup 217.31.202.30 at Rus CERT university stuttgart germanylookup 217.31.202.30 at Ripefollow up this item(review) in same window 217.31.202.30 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://cznic.dl.sourceforge.net/project/ ... follow up this domain (sourceforge.net) as RSS-Feedlookup sourceforge.net at virustotalfollow up this domain(sourceforge.net) sourceforge.net follow up this itemfollow up this country (CZ) as RSS-Feed CZ follow up this itemfollow up this region (RIPE) as RSS-Feed RIPE   follow up this itemfollow up this item 217.31.192.0 - 217.31.207.255 follow up this item  follow up this item  follow up this item ns2.p03.dynect.net follow up this item ns1.p03.dynect.net follow up this item ns3.p03.dynect.net follow up this item ns4.p03.dynect.net follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://cznic.dl.sourceforge.net/project/ ...
Click here for other vital incidents



Protected by clean MX [Valid RSS] Valid HTML 4.01 Transitional CSS ist valide!
Access is provided for free and subject to these Terms and Conditions.