CLEAN MX realtime database    
public access query for virus URL statistics
Totally watched: Walker is running: 35(49) http://highlands.uk.com/
Subscribe to the VirusWatch Mailing list, updated hourly

This database consists of Virus URI, collected and verified since Feb 2006
Tweet
If you detect URI'S concerning your netblock, already closed... you have made a good job, otherwise please close them as soon as possible.

to look at some nice charts, there are complete statisticsstatistics for this database
Attention: all URI'S are manually verified, but not cross-checked for real viruses function in this moment you make this query.(Sites may have been closed already..)
Our automatic Viruswalker process is scheduled every hour, so you may see now a incident and this one will be resolved later on.
So please keep on sending close-feedbacks to us...

if you have questions, criticism, wishes or ... do not hesitate to contact us at abuse@clean-mx.de
Our PBX is down you may reach us by cell phone +49 171 4802507 ...
Query as xml: Same query as xml output
TIMERS: Runtime Query: 0.0032 Seconds 10 hits
helpLine help#descendigascending helpDatedescendigascending helpCloseddescendigascending helphours helpcontributordescendigascending helpvirusnamedescendigascending helpURLdescendigascending helpip state helpresponsedescendigascending helpIp initialdescendigascending helpAS#descendigascending helpip reviewdescendigascending helpURLdescendigascending helpDomaindescendigascending helpcountrydescendigascending helpsourcedescendigascending helpemaildescendigascending helpinetnumdescendigascending helpnetnamedescendigascending helpdescrdescendigascending helpns1descendigascending helpns2descendigascending helpns3descendigascending helpns4descendigascending helpns5descendigascending helpURLdescendigascending
1 follow up this item(11394735) 11394735 Report false positive Report closed case make a suggestion 2013-05-24 05:00:53     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
lookup in virustotal.com (836783dadcf1a25535cd21fb03dad429)lookup in threatexpert.comlookup the sha256(d7ac9900aae1c6f3e6b13c4cc27f6c0357ef3e5f403369e6359f7b1a2371a268) in comodo.comfollow up this md5sum(836783dadcf1a25535cd21fb03dad429)follow up this itemfollow up this virusname (TR%2FFraud.Gen4) as RSS-Feedlookup Virusname at avirafollow up this malware(TR%2FFraud.Gen4) for scanner (avira) in md5 table25/47 (53.2%) TR/Fraud.Gen4
 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://update.windowfast.co.kr/bin/windo ...  up No previous evidence recordedSaved evidence (73736 Bytes) of last contact as txt March 29 2013 02:57:33 CET. aliveSaved log of last contact as txt May 24 2013 05:26:04 CEST. SenderBaselookup 115.68.58.8 at virustotallookup 115.68.58.8 at Rus CERT university stuttgart germanylookup 115.68.58.8 at apnicfollow up this item(ip) in same window 115.68.58.8 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS38700) in networks tablefollow up this itemfollow up this AS (AS38700) as RSS-Feed AS38700 SenderBaselookup 115.68.58.6 at virustotallookup 115.68.58.6 at Rus CERT university stuttgart germanylookup 115.68.58.6 at apnicfollow up this item(review) in same window 115.68.58.6 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://update.windowfast.co.kr/bin/windo ... lookup windowfast.co.kr at virustotalfollow up this domain(windowfast.co.kr) windowfast.co.kr follow up this itemfollow up this country (KR) as RSS-Feed KR follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (network@smileserv.com) as RSS-Feed network@smileserv.com follow up this itemfollow up this item 115.68.0.0 - 115.68.255.255 follow up this item SMILESERV-KR follow up this item SMILESERV follow up this item ns.windowfast.co.kr follow up this item  follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://update.windowfast.co.kr/bin/windo ...
2 follow up this item(11262835) 11262835 Report false positive Report closed case make a suggestion 2013-05-21 16:48:51     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
28/43 (65.1%) Gen:Variant.Graftor.Elzob.24368 Generic FakeAlert.hh Adware.Kraddare Riskware Trojan.Win32.FakeAV.bllvqw W32/FakeAlert.UA.gen!Eldorado WS.Reputation.1 Krypt.DI TROJ_GEN.RCBCFCM Gen:Variant.Graftor.Elzob.24368 Adware.Kraddare!z/8IeIkW5g0 Generic PUA HI Un lookup in virustotal.com (34cc0806b2cb45e4eb64030ae7e2956a)-->[http://www.virustotal.com/latest-report.html?resource=34cc0806b2cb45e4eb64030ae7e2956a]lookup in threatexpert.comlookup the sha256(5b0a0b740c466efe762b0c60dee164b384d37560c57680c9ab89e2af54bea590) in comodo.comfollow up this md5sum(34cc0806b2cb45e4eb64030ae7e2956a)follow up this itemfollow up this virusname (TR%2FFraud.Gen4) as RSS-Feedlookup Virusname at avirafollow up this malware(TR%2FFraud.Gen4) for scanner (avira) in md5 table28/43 (65.1%) TR/Fraud.Gen4
 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://upstat.vaccineclinic.co.kr/P/user ...  up No previous evidence recordedSaved evidence (157184 Bytes) of last contact as txt February 25 2013 09:46:31 CET. aliveSaved log of last contact as txt May 21 2013 23:31:21 CEST. SenderBaselookup 222.234.2.28 at virustotallookup 222.234.2.28 at Rus CERT university stuttgart germanylookup 222.234.2.28 at apnicfollow up this item(ip) in same window 222.234.2.28 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS9318) in networks tablefollow up this itemfollow up this AS (AS9318) as RSS-Feed AS9318 SenderBaselookup 222.234.2.28 at virustotallookup 222.234.2.28 at Rus CERT university stuttgart germanylookup 222.234.2.28 at apnicfollow up this item(review) in same window 222.234.2.28 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://upstat.vaccineclinic.co.kr/P/user ... lookup vaccineclinic.co.kr at virustotalfollow up this domain(vaccineclinic.co.kr) vaccineclinic.co.kr follow up this itemfollow up this country (KR) as RSS-Feed KR follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (abuse@skbroadband.com) as RSS-Feed abuse@skbroadband.com follow up this itemfollow up this item 222.232.0.0 - 222.239.255.255 follow up this item broadNnet-KR follow up this item SK Broadband Co Ltd follow up this item ns.vaccineclinic.co.kr follow up this item  follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://upstat.vaccineclinic.co.kr/P/user ...
3 follow up this item(11262783) 11262783 Report false positive Report closed case make a suggestion 2013-05-21 16:48:48     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
16/46 (34.8%) Artemis!97FA2C7D3F0B Riskware Posible_Worm32 W32/FakeAlert.UA.gen!Eldorado WS.Reputation.1 TROJ_GEN.F47V0503 HEUR:Trojan-FakeAV.Win32.Onescan.gen ApplicUnwnt TR/Fraud.Gen4 Artemis!97FA2C7D3F0B Trojan.FakeAV.Win32.Onescan.AMN (A) Win32.Troj.Generic.a.(kcl lookup in virustotal.com (97fa2c7d3f0bbbf17125532019153ac1)-->[http://www.virustotal.com/latest-report.html?resource=97fa2c7d3f0bbbf17125532019153ac1]lookup in threatexpert.comlookup the sha256(61fddd6bc6f1378b50155dbc140300969bc22cc53b75573cb8555ce0b3200218) in comodo.comfollow up this md5sum(97fa2c7d3f0bbbf17125532019153ac1)follow up this itemfollow up this virusname (TR%2FFraud.Gen4) as RSS-Feedlookup Virusname at avirafollow up this malware(TR%2FFraud.Gen4) for scanner (avira) in md5 table16/46 (34.8%) TR/Fraud.Gen4
 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://update.vaccineclinic.co.kr/versio ...  up No previous evidence recordedSaved evidence (113680 Bytes) of last contact as txt May 04 2013 06:22:29 CEST. aliveSaved log of last contact as txt May 22 2013 00:50:57 CEST. SenderBaselookup 115.68.58.6 at virustotallookup 115.68.58.6 at Rus CERT university stuttgart germanylookup 115.68.58.6 at apnicfollow up this item(ip) in same window 115.68.58.6 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS38700) in networks tablefollow up this itemfollow up this AS (AS38700) as RSS-Feed AS38700 SenderBaselookup 115.68.58.8 at virustotallookup 115.68.58.8 at Rus CERT university stuttgart germanylookup 115.68.58.8 at apnicfollow up this item(review) in same window 115.68.58.8 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://update.vaccineclinic.co.kr/versio ... lookup vaccineclinic.co.kr at virustotalfollow up this domain(vaccineclinic.co.kr) vaccineclinic.co.kr follow up this itemfollow up this country (KR) as RSS-Feed KR follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (network@smileserv.com) as RSS-Feed network@smileserv.com follow up this itemfollow up this item 115.68.0.0 - 115.68.255.255 follow up this item SMILESERV-KR follow up this item SMILESERV follow up this item ns.vaccineclinic.co.kr follow up this item  follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://update.vaccineclinic.co.kr/versio ...
4 follow up this item(11233294) 11233294 Report false positive Report closed case make a suggestion 2013-05-20 23:39:57     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
22/35 (62.9%) Rogue.Onescan (Not a Virus) FakeAlert-PZ Riskware W32/FakeAlert.UA.gen!Eldorado WS.Reputation.1 Krypt.DI TROJ_SPNR.35CC13 Trojan-FakeAV.Win32.Ankore.a Gen:Variant.Graftor.6590 UnclassifiedMalware Gen:Variant.Graftor.6590 TR/Fraud.Gen4 TROJ_SPNR.35CC13 H lookup in virustotal.com (9a74774fcd762ca6413abcd089128df2)-->[http://www.virustotal.com/latest-report.html?resource=9a74774fcd762ca6413abcd089128df2]lookup in threatexpert.comlookup the sha256(4a725d835bbf986dfdc8690db32d7abd4057560136dcf2d1d35bfc5a6aa6e930) in comodo.comfollow up this md5sum(9a74774fcd762ca6413abcd089128df2)follow up this itemfollow up this virusname (TR%2FFraud.Gen4) as RSS-Feedlookup Virusname at avirafollow up this malware(TR%2FFraud.Gen4) for scanner (avira) in md5 table22/35 (62.9%) TR/Fraud.Gen4
 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://update.vaccineweb.co.kr/setupa/va ...  up No previous evidence recordedSaved evidence (185872 Bytes) of last contact as txt January 09 2013 10:54:30 CET. aliveSaved log of last contact as txt May 21 2013 11:25:57 CEST. SenderBaselookup 115.68.58.7 at virustotallookup 115.68.58.7 at Rus CERT university stuttgart germanylookup 115.68.58.7 at apnicfollow up this item(ip) in same window 115.68.58.7 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS38700) in networks tablefollow up this itemfollow up this AS (AS38700) as RSS-Feed AS38700 SenderBaselookup 115.68.58.8 at virustotallookup 115.68.58.8 at Rus CERT university stuttgart germanylookup 115.68.58.8 at apnicfollow up this item(review) in same window 115.68.58.8 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://update.vaccineweb.co.kr/setupa/va ... lookup vaccineweb.co.kr at virustotalfollow up this domain(vaccineweb.co.kr) vaccineweb.co.kr follow up this itemfollow up this country (KR) as RSS-Feed KR follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (network@smileserv.com) as RSS-Feed network@smileserv.com follow up this itemfollow up this item 115.68.0.0 - 115.68.255.255 follow up this item SMILESERV-KR follow up this item SMILESERV follow up this item ns.vaccineweb.co.kr follow up this item  follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://update.vaccineweb.co.kr/setupa/va ...
5 follow up this item(11233293) 11233293 Report false positive Report closed case make a suggestion 2013-05-20 23:39:57     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
26/35 (74.3%) FakeAlert-PZ Riskware W32/FakeAlert.UA.gen!Eldorado Trojan.Gen Krypt.DI TROJ_SPNR.35DG13 Win32.Trojan Trojan-FakeAV.Win32.Ankore.a Gen:Variant.Symmi.5744 Mal/Generic-S UnclassifiedMalware Gen:Variant.Symmi.5744 Trojan.DownLoad3.11328 TR/Fraud.Gen4 TROJ_ lookup in virustotal.com (14756a303a392179a50ef30cca5dd772)-->[http://www.virustotal.com/latest-report.html?resource=14756a303a392179a50ef30cca5dd772]lookup in threatexpert.comlookup the sha256(4a08c8f246cf2a74c223d499a3a453d066327cc5b71b7a4efcc35304901e58d5) in comodo.comfollow up this md5sum(14756a303a392179a50ef30cca5dd772)follow up this itemfollow up this virusname (TR%2FFraud.Gen4) as RSS-Feedlookup Virusname at avirafollow up this malware(TR%2FFraud.Gen4) for scanner (avira) in md5 table26/35 (74.3%) TR/Fraud.Gen4
 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://update.systemvaccine.co.kr/setupa ...  up No previous evidence recordedSaved evidence (188432 Bytes) of last contact as txt February 20 2013 03:12:10 CET. aliveSaved log of last contact as txt May 21 2013 11:26:03 CEST. SenderBaselookup 115.68.58.8 at virustotallookup 115.68.58.8 at Rus CERT university stuttgart germanylookup 115.68.58.8 at apnicfollow up this item(ip) in same window 115.68.58.8 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS38700) in networks tablefollow up this itemfollow up this AS (AS38700) as RSS-Feed AS38700 SenderBaselookup 115.68.58.8 at virustotallookup 115.68.58.8 at Rus CERT university stuttgart germanylookup 115.68.58.8 at apnicfollow up this item(review) in same window 115.68.58.8 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://update.systemvaccine.co.kr/setupa ... lookup systemvaccine.co.kr at virustotalfollow up this domain(systemvaccine.co.kr) systemvaccine.co.kr follow up this itemfollow up this country (KR) as RSS-Feed KR follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (network@smileserv.com) as RSS-Feed network@smileserv.com follow up this itemfollow up this item 115.68.0.0 - 115.68.255.255 follow up this item SMILESERV-KR follow up this item SMILESERV follow up this item ns.systemvaccine.co.kr follow up this item  follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://update.systemvaccine.co.kr/setupa ...
6 follow up this item(11173875) 11173875 Report false positive Report closed case make a suggestion 2013-05-19 23:18:24     follow up this itemfollow up this contributor (csirt) as RSS-Feed sub31possible lookup Evidence at malwaredomainlist.com
18/36 (50%) Artemis!065F5B72EEBE Riskware Posible_Worm32 W32/FakeAlert.UA.gen!Eldorado TROJ_GEN.F47V0412 Gen:Variant.Adware.Graftor.41005 ApplicUnwnt Gen:Variant.Adware.Graftor.41005 TR/Fraud.Gen4 Artemis!065F5B72EEBE Gen:Variant.Adware.Graftor.41005 (B) Trojan/Fak lookup in virustotal.com (065f5b72eebe6b8316a84ed93fc9f484)-->[http://www.virustotal.com/latest-report.html?resource=065f5b72eebe6b8316a84ed93fc9f484]lookup in threatexpert.comlookup the sha256(709d8c38ad707d11af5559bae8c8c2fa7062daeaa4c95196d940b9405e72445b) in comodo.comfollow up this md5sum(065f5b72eebe6b8316a84ed93fc9f484)follow up this itemfollow up this virusname (TR%2FFraud.Gen4) as RSS-Feedlookup Virusname at avirafollow up this malware(TR%2FFraud.Gen4) for scanner (avira) in md5 table18/36 (50%) TR/Fraud.Gen4
 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://update.powerbooting.co.kr/bin/pow ...  up No previous evidence recordedSaved evidence (76816 Bytes) of last contact as txt May 04 2013 06:49:05 CEST. aliveSaved log of last contact as txt May 20 2013 01:53:23 CEST. SenderBaselookup 115.68.58.8 at virustotallookup 115.68.58.8 at Rus CERT university stuttgart germanylookup 115.68.58.8 at apnicfollow up this item(ip) in same window 115.68.58.8 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS38700) in networks tablefollow up this itemfollow up this AS (AS38700) as RSS-Feed AS38700 SenderBaselookup 115.68.58.6 at virustotallookup 115.68.58.6 at Rus CERT university stuttgart germanylookup 115.68.58.6 at apnicfollow up this item(review) in same window 115.68.58.6 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://update.powerbooting.co.kr/bin/pow ... lookup powerbooting.co.kr at virustotalfollow up this domain(powerbooting.co.kr) powerbooting.co.kr follow up this itemfollow up this country (KR) as RSS-Feed KR follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (network@smileserv.com) as RSS-Feed network@smileserv.com follow up this itemfollow up this item 115.68.0.0 - 115.68.255.255 follow up this item SMILESERV-KR follow up this item SMILESERV follow up this item ns.powerbooting.co.kr follow up this item  follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://update.powerbooting.co.kr/bin/pow ...
7 follow up this item(11173791) 11173791 Report false positive Report closed case make a suggestion 2013-05-19 23:16:29     follow up this itemfollow up this contributor (csirt) as RSS-Feed sub31possible lookup Evidence at malwaredomainlist.com
30/47 (63.8%) Gen:Variant.Graftor.53956 Generic FakeAlert.hh Adware.Kraddare Riskware Trojan.Win32.Fakealert.bmqvcm W32/FakeAlert.UA.gen!Eldorado WS.Reputation.1 Krypt.DI TROJ_GEN.R47CPCU UDS:DangerousObject.Multi.Generic Gen:Variant.Graftor.53956 Adware.Kraddare!QENW lookup in virustotal.com (12c56de9d2267107616b968ac21a16c7)-->[http://www.virustotal.com/latest-report.html?resource=12c56de9d2267107616b968ac21a16c7]lookup in threatexpert.comlookup the sha256(8c41082a0e3a6aafcac6c8d92d96938326fe98500eb7bd745d304d0dc66d2dd1) in comodo.comfollow up this md5sum(12c56de9d2267107616b968ac21a16c7)follow up this itemfollow up this virusname (TR%2FFraud.Gen4) as RSS-Feedlookup Virusname at avirafollow up this malware(TR%2FFraud.Gen4) for scanner (avira) in md5 table30/47 (63.8%) TR/Fraud.Gen4
 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://upstat.speedupgrade.co.kr/P/userc ...  up No previous evidence recordedSaved evidence (160104 Bytes) of last contact as txt March 29 2013 09:14:05 CET. aliveSaved log of last contact as txt May 20 2013 01:48:06 CEST. SenderBaselookup 211.49.99.45 at virustotallookup 211.49.99.45 at Rus CERT university stuttgart germanylookup 211.49.99.45 at apnicfollow up this item(ip) in same window 211.49.99.45 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS9318) in networks tablefollow up this itemfollow up this AS (AS9318) as RSS-Feed AS9318 SenderBaselookup 211.49.99.45 at virustotallookup 211.49.99.45 at Rus CERT university stuttgart germanylookup 211.49.99.45 at apnicfollow up this item(review) in same window 211.49.99.45 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://upstat.speedupgrade.co.kr/P/userc ... lookup speedupgrade.co.kr at virustotalfollow up this domain(speedupgrade.co.kr) speedupgrade.co.kr follow up this itemfollow up this country (KR) as RSS-Feed KR follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (abuse@skbroadband.com) as RSS-Feed abuse@skbroadband.com follow up this itemfollow up this item 211.49.0.0 - 211.49.127.255 follow up this item broadNnet-KR follow up this item SK Broadband Co Ltd follow up this item ns.speedupgrade.co.kr follow up this item  follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://upstat.speedupgrade.co.kr/P/userc ...
8 follow up this item(11173771) 11173771 Report false positive Report closed case make a suggestion 2013-05-19 23:16:21     follow up this itemfollow up this contributor (csirt) as RSS-Feed sub31possible lookup Evidence at malwaredomainlist.com
19/34 (55.9%) Generic FakeAlert.hh Riskware W32/FakeAlert.UA.gen!Eldorado WS.Reputation.1 Krypt.DI TROJ_GEN.F47V0415 Gen:Variant.Graftor.53956 Adware.Kraddare UnclassifiedMalware Gen:Variant.Graftor.53956 Trojan.Fakealert.36942 TR/Fraud.Gen4 Heuristic.BehavesLike.Win lookup in virustotal.com (001c2afb9c4b20c816dcc0dc3ff5d301)-->[http://www.virustotal.com/latest-report.html?resource=001c2afb9c4b20c816dcc0dc3ff5d301]lookup in threatexpert.comlookup the sha256(846f60b1361d925e38366fb0a649fd4ce7bb6603dda8f39b3eea23ad81d0f0d4) in comodo.comfollow up this md5sum(001c2afb9c4b20c816dcc0dc3ff5d301)follow up this itemfollow up this virusname (TR%2FFraud.Gen4) as RSS-Feedlookup Virusname at avirafollow up this malware(TR%2FFraud.Gen4) for scanner (avira) in md5 table19/34 (55.9%) TR/Fraud.Gen4
 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://upstat.powerbooting.co.kr/P/userc ...  up No previous evidence recordedSaved evidence (157200 Bytes) of last contact as txt March 29 2013 09:16:22 CET. aliveSaved log of last contact as txt May 20 2013 01:51:59 CEST. SenderBaselookup 211.49.99.45 at virustotallookup 211.49.99.45 at Rus CERT university stuttgart germanylookup 211.49.99.45 at apnicfollow up this item(ip) in same window 211.49.99.45 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS9318) in networks tablefollow up this itemfollow up this AS (AS9318) as RSS-Feed AS9318 SenderBaselookup 211.49.99.45 at virustotallookup 211.49.99.45 at Rus CERT university stuttgart germanylookup 211.49.99.45 at apnicfollow up this item(review) in same window 211.49.99.45 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://upstat.powerbooting.co.kr/P/userc ... lookup powerbooting.co.kr at virustotalfollow up this domain(powerbooting.co.kr) powerbooting.co.kr follow up this itemfollow up this country (KR) as RSS-Feed KR follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (abuse@skbroadband.com) as RSS-Feed abuse@skbroadband.com follow up this itemfollow up this item 211.49.0.0 - 211.49.127.255 follow up this item broadNnet-KR follow up this item SK Broadband Co Ltd follow up this item ns.powerbooting.co.kr follow up this item  follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://upstat.powerbooting.co.kr/P/userc ...
9 follow up this item(11138607) 11138607 Report false positive Report closed case make a suggestion 2013-05-18 21:02:34     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
29/47 (61.7%) Gen:Variant.Graftor.Elzob.24368 Generic FakeAlert.hh Adware.Kraddare Riskware W32/FakeAlert.UA.gen!Eldorado WS.Reputation.1 Krypt.DI TROJ_GEN.RCBCPBR Win32:Adware-APS [Adw] Win32.Trojan Gen:Variant.Graftor.Elzob.24368 Adware.Kraddare!E1kBPRU/lXY Unclassi lookup in virustotal.com (93ffa651f0f427ece3919e9b3be8baff)-->[http://www.virustotal.com/latest-report.html?resource=93ffa651f0f427ece3919e9b3be8baff]lookup in threatexpert.comlookup the sha256(d8257fc3ef51f51e0d76a2011cb1878edbbde2b2051d44faeb8e025d58f92156) in comodo.comfollow up this md5sum(93ffa651f0f427ece3919e9b3be8baff)follow up this itemfollow up this virusname (TR%2FFraud.Gen4) as RSS-Feedlookup Virusname at avirafollow up this malware(TR%2FFraud.Gen4) for scanner (avira) in md5 table29/47 (61.7%) TR/Fraud.Gen4
 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://upstat.infocover.co.kr/P/smartchi ...  up No previous evidence recordedSaved evidence (157176 Bytes) of last contact as txt February 22 2013 07:49:12 CET. aliveSaved log of last contact as txt May 19 2013 10:36:54 CEST. SenderBaselookup 211.49.99.33 at virustotallookup 211.49.99.33 at Rus CERT university stuttgart germanylookup 211.49.99.33 at apnicfollow up this item(ip) in same window 211.49.99.33 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS9318) in networks tablefollow up this itemfollow up this AS (AS9318) as RSS-Feed AS9318 SenderBaselookup 211.49.99.33 at virustotallookup 211.49.99.33 at Rus CERT university stuttgart germanylookup 211.49.99.33 at apnicfollow up this item(review) in same window 211.49.99.33 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://upstat.infocover.co.kr/P/smartchi ... lookup infocover.co.kr at virustotalfollow up this domain(infocover.co.kr) infocover.co.kr follow up this itemfollow up this country (KR) as RSS-Feed KR follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (abuse@skbroadband.com) as RSS-Feed abuse@skbroadband.com follow up this itemfollow up this item 211.49.0.0 - 211.49.127.255 follow up this item broadNnet-KR follow up this item SK Broadband Co Ltd follow up this item ns.infocover.co.kr follow up this item  follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://upstat.infocover.co.kr/P/smartchi ...
10 follow up this item(11138546) 11138546 Report false positive Report closed case make a suggestion 2013-05-18 21:02:32     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
23/46 (50%) Gen:Variant.Strictor.26475 Artemis!3C9545C61E42 Riskware Posible_Worm32 W32/FakeAlert.UA.gen!Eldorado TROJ_GEN.RCBZ7CO Gen:Variant.Strictor.26475 Adware.Kraddare!AGNtVkUPPmE UnclassifiedMalware Gen:Variant.Strictor.26475 Trojan.Win32.Generic!BT TR/Fraud. lookup in virustotal.com (3c9545c61e42efcf9b21f620319657d3)-->[http://www.virustotal.com/latest-report.html?resource=3c9545c61e42efcf9b21f620319657d3]lookup in threatexpert.comlookup the sha256(b95b32dfd4dcf2b0cb26ee6a040cf9559fadfa71f2cc1ebf6dcc930b43852fee) in comodo.comfollow up this md5sum(3c9545c61e42efcf9b21f620319657d3)follow up this itemfollow up this virusname (TR%2FFraud.Gen4) as RSS-Feedlookup Virusname at avirafollow up this malware(TR%2FFraud.Gen4) for scanner (avira) in md5 table23/46 (50%) TR/Fraud.Gen4
 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://update.pcsystem.co.kr/bin/pcsyste ...  up No previous evidence recordedSaved evidence (73736 Bytes) of last contact as txt May 04 2013 06:34:57 CEST. aliveSaved log of last contact as txt May 19 2013 11:00:15 CEST. SenderBaselookup 115.68.58.8 at virustotallookup 115.68.58.8 at Rus CERT university stuttgart germanylookup 115.68.58.8 at apnicfollow up this item(ip) in same window 115.68.58.8 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS38700) in networks tablefollow up this itemfollow up this AS (AS38700) as RSS-Feed AS38700 SenderBaselookup 115.68.58.8 at virustotallookup 115.68.58.8 at Rus CERT university stuttgart germanylookup 115.68.58.8 at apnicfollow up this item(review) in same window 115.68.58.8 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://update.pcsystem.co.kr/bin/pcsyste ... lookup pcsystem.co.kr at virustotalfollow up this domain(pcsystem.co.kr) pcsystem.co.kr follow up this itemfollow up this country (KR) as RSS-Feed KR follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (network@smileserv.com) as RSS-Feed network@smileserv.com follow up this itemfollow up this item 115.68.0.0 - 115.68.255.255 follow up this item SMILESERV-KR follow up this item SMILESERV follow up this item ns.pcsystem.co.kr follow up this item  follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://update.pcsystem.co.kr/bin/pcsyste ...
Click here for other vital incidents


for query you may use wildcard=% or placeholder=_
response
domain
url
virusname
md5
ip
review
score
as
id
scanner
recent
descr
email
netname
inetnum
source
country
nsx
ns1
ns2
ns3
ns4
ns5
sub
sort
# of items to display

Protected by clean MX [Valid RSS] Valid HTML 4.01 Transitional CSS ist valide!
Access is provided for free and subject to these Terms and Conditions.