CLEAN MX realtime database    
public access query for virus URL statistics
Totally watched: 3591619 As of 2014-04-19 12:20:28 CEST
Subscribe to the VirusWatch Mailing list, updated hourly

This database consists of Virus URI, collected and verified since Feb 2006
Tweet
If you detect URI'S concerning your netblock, already closed... you have made a good job, otherwise please close them as soon as possible.

to look at some nice charts, there are complete statisticsstatistics for this database
Attention: all URI'S are manually verified, but not cross-checked for real viruses function in this moment you make this query.(Sites may have been closed already..)
Our automatic Viruswalker process is scheduled every hour, so you may see now a incident and this one will be resolved later on.
So please keep on sending close-feedbacks to us...

if you have questions, criticism, wishes or ... do not hesitate to contact us at abuse@clean-mx.de
Our PBX is down you may reach us by cell phone +49 171 4802507 ...
Query as xml: Same query as xml output
TIMERS: Runtime Query: 0.1247 Seconds 10 hits
helpLine help#descendigascending helpDatedescendigascending helpCloseddescendigascending helphours helpcontributordescendigascending helpvirusnamedescendigascending helpURLdescendigascending helpip state helpresponsedescendigascending helpIp initialdescendigascending helpAS#descendigascending helpip reviewdescendigascending helpURLdescendigascending helpDomaindescendigascending helpcountrydescendigascending helpsourcedescendigascending helpemaildescendigascending helpinetnumdescendigascending helpnetnamedescendigascending helpdescrdescendigascending helpns1descendigascending helpns2descendigascending helpns3descendigascending helpns4descendigascending helpns5descendigascending helpURLdescendigascending
1 follow up this item(15998464) 15998464 Report false positive Report closed case make a suggestion 2013-10-11 16:42:34 OVERDUE! Overdue!4556 follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
0/42 (0.0%) 
  
 lookup in virustotal.com (417e9bc84cd14b0d7d9c05dd5e869bbe)-->[http://www.virustotal.com/latest-report.html?resource=417e9bc84cd14b0d7d9c05dd5e869bbe]lookup in threatexpert.comlookup the sha256(2874e2e77ee36df45b8b42fb78dd264e96e1c311919d5e13d47475b9bffa242c) in comodo.comfollow up this md5sum(417e9bc84cd14b0d7d9c05dd5e869bbe)follow up this itemfollow up this virusname (PUA.Win32.Packer.Upx-28) as RSS-Feedlookup Virusname at viruspoolfollow up this malware(PUA.Win32.Packer.Upx-28) for scanner (clamav) in md5 table0/42 (0.0%) PUA.Win32.Packer.Upx-28
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://x25.net/%7Esupport/afk/Firefox.ex ...  up No previous evidence recordedSaved evidence (12580112 Bytes) of last contact as txt March 28 2011 17:40:11 CEST. aliveSaved log of last contact as txt October 11 2013 17:57:01 CEST. follow up this ip (ip=204.57.81.3) as RSS-FeedSenderBaselookup 204.57.81.3 at virustotallookup 204.57.81.3 at Rus CERT university stuttgart germanylookup 204.57.81.3 at ARINfollow up this item(ip) in same window 204.57.81.3 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS22218) in networks tablefollow up this itemfollow up this AS (AS22218) as RSS-Feed AS22218 follow up this ip (review=204.57.81.3) as RSS-FeedSenderBaselookup 204.57.81.3 at virustotallookup 204.57.81.3 at Rus CERT university stuttgart germanylookup 204.57.81.3 at ARINfollow up this item(review) in same window 204.57.81.3 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://x25.net/%7Esupport/afk/Firefox.ex ... follow up this domain (x25.net) as RSS-Feedlookup x25.net at virustotalfollow up this domain(x25.net) x25.net follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (abuse@twtelecom.net) as RSS-Feed abuse@twtelecom.net follow up this itemfollow up this item 204.57.64.0 - 204.57.127.255 follow up this item TWTC-NETBLK-15 follow up this item tw telecom holdings, inc. TWTC 10475 Park Meadows Drive Littleton CO 80124 follow up this item ai.x25.net follow up this item tron.telenetwork.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://x25.net/%7Esupport/afk/Firefox.ex ...
2 follow up this item(15949018) 15949018 Report false positive Report closed case make a suggestion 2013-10-10 13:43:20 OVERDUE! Overdue!4583 follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
24/36 (66.7%) 
 
Trojan/W32.Agent.364032.DP
Trojan
W32/Trojan2.NSFG
W32/Adware.ADQ
TROJ_SPNR.08G712
Win32:PUP-gen
PUP
not-a-virus:AdWare.Win32.ForceStartPage.a
Trojan.Generic.KD.653825
Trojan.Agent/Gen-StartPage
TrojWare.Win32.Agent.RKD
Trojan.Generic.KD.653825
Adware.D 
 lookup in virustotal.com (ffb82488eb3b5f23caa914bf906da3a7)-->[http://www.virustotal.com/latest-report.html?resource=ffb82488eb3b5f23caa914bf906da3a7]lookup in threatexpert.comlookup the sha256(24662e1a21230256d9ab220920468c942a5e5bb9d142b982b7be8daeb656d903) in comodo.comfollow up this md5sum(ffb82488eb3b5f23caa914bf906da3a7)follow up this itemfollow up this virusname (PUA.Win32.Packer.Upx-28) as RSS-Feedlookup Virusname at viruspoolfollow up this malware(PUA.Win32.Packer.Upx-28) for scanner (clamav) in md5 table24/36 (66.7%) PUA.Win32.Packer.Upx-28
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://ld2.download-guru.com/index.php?s ...  up No previous evidence recordedSaved evidence (364032 Bytes) of last contact as txt October 10 2013 18:53:10 CEST. aliveSaved log of last contact as txt October 10 2013 18:53:10 CEST. follow up this ip (ip=95.211.162.230) as RSS-FeedSenderBaselookup 95.211.162.230 at virustotallookup 95.211.162.230 at Rus CERT university stuttgart germanylookup 95.211.162.230 at Ripefollow up this item(ip) in same window 95.211.162.230 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS16265) in networks tablefollow up this itemfollow up this AS (AS16265) as RSS-Feed AS16265 follow up this ip (review=95.211.162.230) as RSS-FeedSenderBaselookup 95.211.162.230 at virustotallookup 95.211.162.230 at Rus CERT university stuttgart germanylookup 95.211.162.230 at Ripefollow up this item(review) in same window 95.211.162.230 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://ld2.download-guru.com/index.php?s ... follow up this domain (download-guru.com) as RSS-Feedlookup download-guru.com at virustotalfollow up this domain(download-guru.com) download-guru.com follow up this itemfollow up this country (NL) as RSS-Feed NL follow up this itemfollow up this region (RIPE) as RSS-Feed RIPE follow up this itemfollow up this enail (abuse@leaseweb.com) as RSS-Feed abuse@leaseweb.com follow up this itemfollow up this item 95.211.0.0 - 95.211.255.255 follow up this item NL-LEASEWEB-20080724 follow up this item LeaseWeb B.V. follow up this item ns2.download-guru.com follow up this item ns1.download-guru.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://ld2.download-guru.com/index.php?s ...
3 follow up this item(15924011) 15924011 Report false positive Report closed case make a suggestion 2013-10-09 23:00:34 OVERDUE! Overdue!4597.7 follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
4/45 (8.9%) 
 Trojan/Dropper.Agent.ejd
WS.Reputation.1
W32/Agent.UHHJ
TROJ_GEN.R47H1A7 
 lookup in virustotal.com (a10a6a823d513de954235932a413f4f0)-->[http://www.virustotal.com/latest-report.html?resource=a10a6a823d513de954235932a413f4f0]lookup in threatexpert.comlookup the sha256(622e669ad179d4d74bd0fec6b466b08f1a2826aed21232137d94530b12049bdb) in comodo.comfollow up this md5sum(a10a6a823d513de954235932a413f4f0)follow up this itemfollow up this virusname (PUA.Win32.Packer.Upx-28) as RSS-Feedlookup Virusname at viruspoolfollow up this malware(PUA.Win32.Packer.Upx-28) for scanner (clamav) in md5 table4/45 (8.9%) PUA.Win32.Packer.Upx-28
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://freeroulettegames.org.uk/freeroul ...  up No previous evidence recordedSaved evidence (531022 Bytes) of last contact as txt March 12 2010 19:41:33 CET. aliveSaved log of last contact as txt October 09 2013 23:19:43 CEST. follow up this ip (ip=85.92.82.178) as RSS-FeedSenderBaselookup 85.92.82.178 at virustotallookup 85.92.82.178 at Rus CERT university stuttgart germanylookup 85.92.82.178 at Ripefollow up this item(ip) in same window 85.92.82.178 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS34282) in networks tablefollow up this itemfollow up this AS (AS34282) as RSS-Feed AS34282 follow up this ip (review=85.92.82.178) as RSS-FeedSenderBaselookup 85.92.82.178 at virustotallookup 85.92.82.178 at Rus CERT university stuttgart germanylookup 85.92.82.178 at Ripefollow up this item(review) in same window 85.92.82.178 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://freeroulettegames.org.uk/freeroul ... follow up this domain (freeroulettegames.org.uk) as RSS-Feedlookup freeroulettegames.org.uk at virustotalfollow up this domain(freeroulettegames.org.uk) freeroulettegames.org.uk follow up this itemfollow up this country (GB) as RSS-Feed GB follow up this itemfollow up this region (RIPE) as RSS-Feed RIPE follow up this itemfollow up this enail (abuse@uknoc.co.uk) as RSS-Feed abuse@uknoc.co.uk follow up this itemfollow up this item 85.92.82.0 - 85.92.83.255 follow up this item UKNOC-CTO-1-1 follow up this item UKNOC - CTO-1 POP CUST follow up this item ns2.speedydns.net follow up this item ns1.speedydns.net follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://freeroulettegames.org.uk/freeroul ...
4 follow up this item(15837239) 15837239 Report false positive Report closed case make a suggestion 2013-10-08 09:40:08 OVERDUE! Overdue!4635 follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
3/50 (6%) 
 
Trojan.Packed.194
Adware/EShoper.y
Dropper.A.Dapato.2090144 
 lookup in virustotal.com (ba7d7bbd304ab067b2b567bd5c290117)-->[http://www.virustotal.com/latest-report.html?resource=ba7d7bbd304ab067b2b567bd5c290117]lookup in threatexpert.comlookup the sha256(0667970504f9c21fef54029a105cafb85293b572b90b0d30c61daa9bb2467d1d) in comodo.comfollow up this md5sum(ba7d7bbd304ab067b2b567bd5c290117)follow up this itemfollow up this virusname (PUA.Win32.Packer.Upx-28) as RSS-Feedlookup Virusname at viruspoolfollow up this malware(PUA.Win32.Packer.Upx-28) for scanner (clamav) in md5 table3/50 (6%) PUA.Win32.Packer.Upx-28
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://csswizard.net/download/cssinstall ...  up Saved evidence (2090144 Bytes) of first contact as txt November 10 2008 22:50:40 CET.Saved evidence (2090144 Bytes) of last contact as txt November 10 2008 22:50:40 CET. aliveSaved log of last contact as txt April 06 2014 05:45:20 CEST. follow up this ip (ip=212.227.211.220) as RSS-FeedSenderBaselookup 212.227.211.220 at virustotallookup 212.227.211.220 at Rus CERT university stuttgart germanylookup 212.227.211.220 at Ripefollow up this item(ip) in same window 212.227.211.220 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS8560) in networks tablefollow up this itemfollow up this AS (AS8560) as RSS-Feed AS8560 follow up this ip (review=212.227.211.220) as RSS-FeedSenderBaselookup 212.227.211.220 at virustotallookup 212.227.211.220 at Rus CERT university stuttgart germanylookup 212.227.211.220 at Ripefollow up this item(review) in same window 212.227.211.220 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://csswizard.net/download/cssinstall ... follow up this domain (csswizard.net) as RSS-Feedlookup csswizard.net at virustotalfollow up this domain(csswizard.net) csswizard.net follow up this itemfollow up this country (DE) as RSS-Feed DE follow up this itemfollow up this region (RIPE) as RSS-Feed RIPE follow up this itemfollow up this enail (abuse@1and1.com) as RSS-Feed abuse@1and1.com follow up this itemfollow up this item 212.227.0.0 - 212.227.255.255 follow up this item DE-SCHLUND-980910 follow up this item 1&1 Internet AGSCHLUND-PA-2 follow up this item ns34.1and1.co.uk follow up this item ns33.1and1.co.uk follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://csswizard.net/download/cssinstall ...
5 follow up this item(15631943) 15631943 Report false positive Report closed case make a suggestion 2013-10-02 05:01:38 OVERDUE! Overdue!4783.7 follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
4/45 (8.9%) 
 Trojan/Dropper.Agent.ejd
WS.Reputation.1
W32/Agent.UHHJ
TROJ_GEN.R47H1A7 
 lookup in virustotal.com (a10a6a823d513de954235932a413f4f0)-->[http://www.virustotal.com/latest-report.html?resource=a10a6a823d513de954235932a413f4f0]lookup in threatexpert.comlookup the sha256(622e669ad179d4d74bd0fec6b466b08f1a2826aed21232137d94530b12049bdb) in comodo.comfollow up this md5sum(a10a6a823d513de954235932a413f4f0)follow up this itemfollow up this virusname (PUA.Win32.Packer.Upx-28) as RSS-Feedlookup Virusname at viruspoolfollow up this malware(PUA.Win32.Packer.Upx-28) for scanner (clamav) in md5 table4/45 (8.9%) PUA.Win32.Packer.Upx-28
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://roulettestrategyx.org.uk/roulette ...  up No previous evidence recordedSaved evidence (531022 Bytes) of last contact as txt March 11 2010 05:05:33 CET. aliveSaved log of last contact as txt October 02 2013 05:21:40 CEST. follow up this ip (ip=81.19.186.158) as RSS-FeedSenderBaselookup 81.19.186.158 at virustotallookup 81.19.186.158 at Rus CERT university stuttgart germanylookup 81.19.186.158 at Ripefollow up this item(ip) in same window 81.19.186.158 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS34282) in networks tablefollow up this itemfollow up this AS (AS34282) as RSS-Feed AS34282 follow up this ip (review=81.19.186.158) as RSS-FeedSenderBaselookup 81.19.186.158 at virustotallookup 81.19.186.158 at Rus CERT university stuttgart germanylookup 81.19.186.158 at Ripefollow up this item(review) in same window 81.19.186.158 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://roulettestrategyx.org.uk/roulette ... follow up this domain (roulettestrategyx.org.uk) as RSS-Feedlookup roulettestrategyx.org.uk at virustotalfollow up this domain(roulettestrategyx.org.uk) roulettestrategyx.org.uk follow up this itemfollow up this country (GB) as RSS-Feed GB follow up this itemfollow up this region (RIPE) as RSS-Feed RIPE follow up this itemfollow up this enail (abuse@uknoc.co.uk) as RSS-Feed abuse@uknoc.co.uk follow up this itemfollow up this item 81.19.176.0 - 81.19.191.255 follow up this item UK-UKNOC-20060103 follow up this item  follow up this item ns2.speedydns.net follow up this item ns1.speedydns.net follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://roulettestrategyx.org.uk/roulette ...
6 follow up this item(15599020) 15599020 Report false positive Report closed case make a suggestion 2013-09-29 21:10:09 OVERDUE! Overdue!4839.5 follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
4/32 (12.5%) 
 Trojan/Dropper.Agent.ejd
Agent.UHHJ
TROJ_GEN.R47H1A7
Trojan.Win32.A.Carberp.531022 
 lookup in virustotal.com (a10a6a823d513de954235932a413f4f0)-->[http://www.virustotal.com/latest-report.html?resource=a10a6a823d513de954235932a413f4f0]lookup in threatexpert.comlookup the sha256(622e669ad179d4d74bd0fec6b466b08f1a2826aed21232137d94530b12049bdb) in comodo.comfollow up this md5sum(a10a6a823d513de954235932a413f4f0)follow up this itemfollow up this virusname (PUA.Win32.Packer.Upx-28) as RSS-Feedlookup Virusname at viruspoolfollow up this malware(PUA.Win32.Packer.Upx-28) for scanner (clamav) in md5 table4/32 (12.5%) PUA.Win32.Packer.Upx-28
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://roulette-tips.org.uk/roulettetips ...  up No previous evidence recordedSaved evidence (531022 Bytes) of last contact as txt March 12 2010 19:46:38 CET. aliveSaved log of last contact as txt October 22 2013 03:46:13 CEST. follow up this ip (ip=85.92.82.100) as RSS-FeedSenderBaselookup 85.92.82.100 at virustotallookup 85.92.82.100 at Rus CERT university stuttgart germanylookup 85.92.82.100 at Ripefollow up this item(ip) in same window 85.92.82.100 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS34282) in networks tablefollow up this itemfollow up this AS (AS34282) as RSS-Feed AS34282 follow up this ip (review=81.19.186.160) as RSS-FeedSenderBaselookup 81.19.186.160 at virustotallookup 81.19.186.160 at Rus CERT university stuttgart germanylookup 81.19.186.160 at Ripefollow up this item(review) in same window 81.19.186.160 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://roulette-tips.org.uk/roulettetips ... follow up this domain (roulette-tips.org.uk) as RSS-Feedlookup roulette-tips.org.uk at virustotalfollow up this domain(roulette-tips.org.uk) roulette-tips.org.uk follow up this itemfollow up this country (GB) as RSS-Feed GB follow up this itemfollow up this region (RIPE) as RSS-Feed RIPE follow up this itemfollow up this enail (abuse@uknoc.co.uk) as RSS-Feed abuse@uknoc.co.uk follow up this itemfollow up this item 85.92.82.0 - 85.92.83.255 follow up this item UK-UKNOC-20060103 follow up this item UKNOC - CTO-1 POP CUST follow up this item ns1.speedydns.net follow up this item ns2.speedydns.net follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://roulette-tips.org.uk/roulettetips ...
7 follow up this item(13553215) 13553215 Report false positive Report closed case make a suggestion 2013-07-29 15:40:29 OVERDUE! Overdue!6333 follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
4/45 (8.9%) 
 Trojan/Dropper.Agent.ejd
WS.Reputation.1
W32/Agent.UHHJ
TROJ_GEN.R47H1A7 
 lookup in virustotal.com (a10a6a823d513de954235932a413f4f0)-->[http://www.virustotal.com/latest-report.html?resource=a10a6a823d513de954235932a413f4f0]lookup in threatexpert.comlookup the sha256(622e669ad179d4d74bd0fec6b466b08f1a2826aed21232137d94530b12049bdb) in comodo.comfollow up this md5sum(a10a6a823d513de954235932a413f4f0)follow up this itemfollow up this virusname (PUA.Win32.Packer.Upx-28) as RSS-Feedlookup Virusname at viruspoolfollow up this malware(PUA.Win32.Packer.Upx-28) for scanner (clamav) in md5 table4/45 (8.9%) PUA.Win32.Packer.Upx-28
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://roulettesystemsecrets.org/roulett ...  up No previous evidence recordedSaved evidence (531022 Bytes) of last contact as txt March 19 2010 22:40:07 CET. aliveSaved log of last contact as txt July 29 2013 19:00:42 CEST. follow up this ip (ip=174.36.159.35) as RSS-FeedSenderBaselookup 174.36.159.35 at virustotallookup 174.36.159.35 at Rus CERT university stuttgart germanylookup 174.36.159.35 at ARINfollow up this item(ip) in same window 174.36.159.35 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS36351) in networks tablefollow up this itemfollow up this AS (AS36351) as RSS-Feed AS36351 follow up this ip (review=174.36.159.35) as RSS-FeedSenderBaselookup 174.36.159.35 at virustotallookup 174.36.159.35 at Rus CERT university stuttgart germanylookup 174.36.159.35 at ARINfollow up this item(review) in same window 174.36.159.35 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://roulettesystemsecrets.org/roulett ... follow up this domain (roulettesystemsecrets.org) as RSS-Feedlookup roulettesystemsecrets.org at virustotalfollow up this domain(roulettesystemsecrets.org) roulettesystemsecrets.org follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (abuse@softlayer.com) as RSS-Feed abuse@softlayer.com follow up this itemfollow up this item 174.36.0.0 - 174.37.255.255 follow up this item SOFTLAYER-4-7 follow up this item SoftLayer Technologies Inc. SOFTL 1950 N Stemmons Freeway Dallas TX 75207 follow up this item ns2.speedydns.net follow up this item ns1.speedydns.net follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://roulettesystemsecrets.org/roulett ...
8 follow up this item(13361638) 13361638 Report false positive Report closed case make a suggestion 2013-07-24 17:10:33 OVERDUE! Overdue!6451.5 follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
2/36 (5.6%) 
 
Adware/EShoper.dq
AdWare/EShoper.q 
 lookup in virustotal.com (51757b6198dd1c43ef2717516e6ba57e)-->[http://www.virustotal.com/latest-report.html?resource=51757b6198dd1c43ef2717516e6ba57e]lookup in threatexpert.comlookup the sha256(0eb53690f8a7c4ace331526794708dac86d56b45c766da752582e68f1b83c5c2) in comodo.comfollow up this md5sum(51757b6198dd1c43ef2717516e6ba57e)follow up this itemfollow up this virusname (PUA.Win32.Packer.Upx-28) as RSS-Feedlookup Virusname at viruspoolfollow up this malware(PUA.Win32.Packer.Upx-28) for scanner (clamav) in md5 table2/36 (5.6%) PUA.Win32.Packer.Upx-28
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://re2.pw/dl/81926  up No previous evidence recordedSaved evidence (237666 Bytes) of last contact as txt December 13 2012 22:04:03 CET. aliveSaved log of last contact as txt July 25 2013 08:36:41 CEST. follow up this ip (ip=64.79.83.242) as RSS-FeedSenderBaselookup 64.79.83.242 at virustotallookup 64.79.83.242 at Rus CERT university stuttgart germanylookup 64.79.83.242 at ARINfollow up this item(ip) in same window 64.79.83.242 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS10297) in networks tablefollow up this itemfollow up this AS (AS10297) as RSS-Feed AS10297 follow up this ip (review=64.79.83.242) as RSS-FeedSenderBaselookup 64.79.83.242 at virustotallookup 64.79.83.242 at Rus CERT university stuttgart germanylookup 64.79.83.242 at ARINfollow up this item(review) in same window 64.79.83.242 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://re2.pw/dl/81926 follow up this domain (re2.pw) as RSS-Feedlookup re2.pw at virustotalfollow up this domain(re2.pw) re2.pw follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (hostmaster@ee.net) as RSS-Feed hostmaster@ee.net follow up this itemfollow up this item 64.79.64.0 - 64.79.95.255 follow up this item ENET-XLHOST-4 follow up this item eNET Inc. ENET 3000 East Dublin Granville Rd. Columbus OH 43231 follow up this item dns2.registrar-servers.com follow up this item dns5.registrar-servers.com follow up this item dns1.registrar-servers.com follow up this item dns4.registrar-servers.com follow up this item dns3.registrar-servers.com Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://re2.pw/dl/81926
9 follow up this item(13140106) 13140106 Report false positive Report closed case make a suggestion 2013-07-17 13:00:40 OVERDUE! Overdue!6623.7 follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
2/36 (5.6%) 
 
Trojan/PSW.HyvBrowse.a
WS.Reputation.1 
 lookup in virustotal.com (af6a8acf7c8365aa886dc0d293b6fff9)-->[http://www.virustotal.com/latest-report.html?resource=af6a8acf7c8365aa886dc0d293b6fff9]lookup in threatexpert.comlookup the sha256(0f09b135a0c4b1ba55e25cbe44dd3d6c6bb0a97a5a7d11dae7d5e4de800cb0c1) in comodo.comfollow up this md5sum(af6a8acf7c8365aa886dc0d293b6fff9)follow up this itemfollow up this virusname (PUA.Win32.Packer.Upx-28) as RSS-Feedlookup Virusname at viruspoolfollow up this malware(PUA.Win32.Packer.Upx-28) for scanner (clamav) in md5 table2/36 (5.6%) PUA.Win32.Packer.Upx-28
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://ezesoftware.co.uk/Store/software/ ...  up No previous evidence recordedSaved evidence (345103 Bytes) of last contact as txt November 03 2009 14:47:31 CET. aliveSaved log of last contact as txt July 17 2013 13:56:52 CEST. follow up this ip (ip=74.220.207.163) as RSS-FeedSenderBaselookup 74.220.207.163 at virustotallookup 74.220.207.163 at Rus CERT university stuttgart germanylookup 74.220.207.163 at ARINfollow up this item(ip) in same window 74.220.207.163 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS11798) in networks tablefollow up this itemfollow up this AS (AS11798) as RSS-Feed AS11798 follow up this ip (review=74.220.207.163) as RSS-FeedSenderBaselookup 74.220.207.163 at virustotallookup 74.220.207.163 at Rus CERT university stuttgart germanylookup 74.220.207.163 at ARINfollow up this item(review) in same window 74.220.207.163 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://ezesoftware.co.uk/Store/software/ ... follow up this domain (ezesoftware.co.uk) as RSS-Feedlookup ezesoftware.co.uk at virustotalfollow up this domain(ezesoftware.co.uk) ezesoftware.co.uk follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (abuse@bluehost.com) as RSS-Feed abuse@bluehost.com follow up this itemfollow up this item 74.220.192.0 - 74.220.207.255 follow up this item BLUEHOST-NETWORK-2 follow up this item Bluehost Inc. BLUEH-2 1548 North Technology Way #D13 Orem UT 84097 follow up this item ns2.hostmonster.com follow up this item ns1.hostmonster.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://ezesoftware.co.uk/Store/software/ ...
10 follow up this item(12858194) 12858194 Report false positive Report closed case make a suggestion 2013-07-09 11:38:59 OVERDUE! Overdue!6817 follow up this itemfollow up this contributor (csirt) as RSS-Feed sub31possible lookup Evidence at malwaredomainlist.com
2/34 (5.9%) 
 
Posible_Worm32
ApplicUnsaf.Win32.Renos.~FAT 
 lookup in virustotal.com (cdda1f3fc3e9a58b36afd6c2704eadeb)-->[http://www.virustotal.com/latest-report.html?resource=cdda1f3fc3e9a58b36afd6c2704eadeb]lookup in threatexpert.comlookup the sha256(bbe1f21fccf09401e4f87eabd96880a4960a9e03b8933e0ce84a67ca99b64579) in comodo.comfollow up this md5sum(cdda1f3fc3e9a58b36afd6c2704eadeb)follow up this itemfollow up this virusname (PUA.Win32.Packer.Upx-28) as RSS-Feedlookup Virusname at viruspoolfollow up this malware(PUA.Win32.Packer.Upx-28) for scanner (clamav) in md5 table2/34 (5.9%) PUA.Win32.Packer.Upx-28
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.ol-service.com/sikurezza/free ...  up No previous evidence recordedSaved evidence (61952 Bytes) of last contact as txt November 03 2004 19:42:17 CET. aliveSaved log of last contact as txt July 09 2013 19:46:58 CEST. follow up this ip (ip=62.149.130.40) as RSS-FeedSenderBaselookup 62.149.130.40 at virustotallookup 62.149.130.40 at Rus CERT university stuttgart germanylookup 62.149.130.40 at Ripefollow up this item(ip) in same window 62.149.130.40 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS31034) in networks tablefollow up this itemfollow up this AS (AS31034) as RSS-Feed AS31034 follow up this ip (review=62.149.130.40) as RSS-FeedSenderBaselookup 62.149.130.40 at virustotallookup 62.149.130.40 at Rus CERT university stuttgart germanylookup 62.149.130.40 at Ripefollow up this item(review) in same window 62.149.130.40 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.ol-service.com/sikurezza/free ... follow up this domain (ol-service.com) as RSS-Feedlookup ol-service.com at virustotalfollow up this domain(ol-service.com) ol-service.com follow up this itemfollow up this country (IT) as RSS-Feed IT follow up this itemfollow up this region (RIPE) as RSS-Feed RIPE follow up this itemfollow up this enail (hostmaster@technorail.com) as RSS-Feed hostmaster@technorail.com follow up this itemfollow up this item 62.149.128.0 - 62.149.137.255 follow up this item TECHNORAIL-NET follow up this item Technorail srlInternet Service and Access ProviderTechnorail S.r.l. - Aruba.it follow up this item dns4.arubadns.cz follow up this item dns2.technorail.com follow up this item dns.technorail.com follow up this item dns3.arubadns.net follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.ol-service.com/sikurezza/free ...
Click here for other vital incidents



Protected by clean MX [Valid RSS] Valid HTML 4.01 Transitional CSS ist valide!
Access is provided for free and subject to these Terms and Conditions.