CLEAN MX realtime database    
public access query for virus URL statistics
Totally watched: 3591582 As of 2014-04-19 14:24:34 CEST
Subscribe to the VirusWatch Mailing list, updated hourly

This database consists of Virus URI, collected and verified since Feb 2006
Tweet
If you detect URI'S concerning your netblock, already closed... you have made a good job, otherwise please close them as soon as possible.

to look at some nice charts, there are complete statisticsstatistics for this database
Attention: all URI'S are manually verified, but not cross-checked for real viruses function in this moment you make this query.(Sites may have been closed already..)
Our automatic Viruswalker process is scheduled every hour, so you may see now a incident and this one will be resolved later on.
So please keep on sending close-feedbacks to us...

if you have questions, criticism, wishes or ... do not hesitate to contact us at abuse@clean-mx.de
Our PBX is down you may reach us by cell phone +49 171 4802507 ...
Query as xml: Same query as xml output
TIMERS: Runtime Query: 0.1916 Seconds 10 hits
helpLine help#descendigascending helpDatedescendigascending helpCloseddescendigascending helphours helpcontributordescendigascending helpvirusnamedescendigascending helpURLdescendigascending helpip state helpresponsedescendigascending helpIp initialdescendigascending helpAS#descendigascending helpip reviewdescendigascending helpURLdescendigascending helpDomaindescendigascending helpcountrydescendigascending helpsourcedescendigascending helpemaildescendigascending helpinetnumdescendigascending helpnetnamedescendigascending helpdescrdescendigascending helpns1descendigascending helpns2descendigascending helpns3descendigascending helpns4descendigascending helpns5descendigascending helpURLdescendigascending
1 follow up this item(23265066) 23265066 Report false positive Report closed case make a suggestion 2014-03-22 09:30:44 OVERDUE! Overdue!683.1 follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
9/51 (17.6%) 
 Flyagent
Packed.Multi.MultiPacked.gen
Packed.Win32.MUPX.Gen
Flyagent
Mal/Scribble-D
Trojan/Generic.suif
a
variant
of
Win32/FlyStudio.Packed.AD
PE:Packer.Win32.Agent.g!1075137382
W32/OnLineGames.AJN!tr 
 lookup in virustotal.com (38df0c4dc0b90e44eea9f73b6cfe0b94)-->[http://www.virustotal.com/latest-report.html?resource=38df0c4dc0b90e44eea9f73b6cfe0b94]lookup in threatexpert.comlookup the sha256(d080178e203e30cb2a5451dad08952434713670aa83d4c2ee7d44f501e5c70ce) in comodo.comfollow up this md5sum(38df0c4dc0b90e44eea9f73b6cfe0b94)follow up this itemfollow up this virusname (Packed.Win32.MUPX.Gen) as RSS-Feedfollow up this malware(Packed.Win32.MUPX.Gen) for scanner (Comodo) in md5 table9/51 (17.6%) Packed.Win32.MUPX.Gen
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://down.myxuanfeng.com/goodweather.e ...  up No previous evidence recordedSaved evidence (2660712 Bytes) of last contact as txt March 21 2014 05:18:42 CET. aliveSaved log of last contact as txt March 22 2014 10:07:17 CET. follow up this ip (ip=122.226.120.133) as RSS-FeedSenderBaselookup 122.226.120.133 at virustotallookup 122.226.120.133 at Rus CERT university stuttgart germanylookup 122.226.120.133 at apnicfollow up this item(ip) in same window 122.226.120.133 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4134) in networks tablefollow up this itemfollow up this AS (AS4134) as RSS-Feed AS4134 follow up this ip (review=122.226.120.133) as RSS-FeedSenderBaselookup 122.226.120.133 at virustotallookup 122.226.120.133 at Rus CERT university stuttgart germanylookup 122.226.120.133 at apnicfollow up this item(review) in same window 122.226.120.133 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://down.myxuanfeng.com/goodweather.e ... follow up this domain (myxuanfeng.com) as RSS-Feedlookup myxuanfeng.com at virustotalfollow up this domain(myxuanfeng.com) myxuanfeng.com follow up this itemfollow up this country (CN) as RSS-Feed CN follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (anti-spam@ns.chinanet.cn.net) as RSS-Feed anti-spam@ns.chinanet.cn.net follow up this itemfollow up this item 122.224.0.0 - 122.239.255.255 follow up this item CHINANET-ZJ follow up this item CHINANET Zhejiang province networkChina TelecomNo.31,jingrong streetBeijing 100032China Telecom Zhejiang Province follow up this item f1g1ns2.dnspod.net follow up this item f1g1ns1.dnspod.net follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://down.myxuanfeng.com/goodweather.e ...
2 follow up this item(22644781) 22644781 Report false positive Report closed case make a suggestion 2014-03-13 07:10:27 OVERDUE! Overdue!901.4 follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
1/49 (2%) 
 
Packed.Win32.MUPX.Gen 
 lookup in virustotal.com (5b5b1cb51e9ea7736eb9572b51e399d7)-->[http://www.virustotal.com/latest-report.html?resource=5b5b1cb51e9ea7736eb9572b51e399d7]lookup in threatexpert.comlookup the sha256(c4f143b2642362c6a97c943e18be1588985f86c2ac5131e93b8923e44f357b68) in comodo.comfollow up this md5sum(5b5b1cb51e9ea7736eb9572b51e399d7)follow up this itemfollow up this virusname (Packed.Win32.MUPX.Gen) as RSS-Feedfollow up this malware(Packed.Win32.MUPX.Gen) for scanner (Comodo) in md5 table1/49 (2%) Packed.Win32.MUPX.Gen
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal https://www.flawlesswidescreen.org/fws/f ...  up No previous evidence recordedSaved evidence (1294241 Bytes) of last contact as txt November 24 2013 11:39:03 CET. aliveSaved log of last contact as txt March 13 2014 10:51:03 CET. follow up this ip (ip=23.239.157.38) as RSS-FeedSenderBaselookup 23.239.157.38 at virustotallookup 23.239.157.38 at Rus CERT university stuttgart germanylookup 23.239.157.38 at ARINfollow up this item(ip) in same window 23.239.157.38 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (ASNA) in networks tablefollow up this itemfollow up this AS (ASNA) as RSS-Feed ASNA follow up this ip (review=23.239.157.38) as RSS-FeedSenderBaselookup 23.239.157.38 at virustotallookup 23.239.157.38 at Rus CERT university stuttgart germanylookup 23.239.157.38 at ARINfollow up this item(review) in same window 23.239.157.38 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal https://www.flawlesswidescreen.org/fws/f ... follow up this domain (flawlesswidescreen.org) as RSS-Feedlookup flawlesswidescreen.org at virustotalfollow up this domain(flawlesswidescreen.org) flawlesswidescreen.org follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (abuse@iana.org) as RSS-Feed abuse@iana.org follow up this itemfollow up this item 23.0.0.0 - 23.255.255.255 follow up this item RESERVED-23 follow up this item Internet Assigned Numbers Authority IANA 4676 Admiralty Way, Suite 330 Marina del Rey CA 90292-6695 follow up this item dns3.registrar-servers.com follow up this item dns1.registrar-servers.com follow up this item dns4.registrar-servers.com follow up this item dns5.registrar-servers.com follow up this item dns2.registrar-servers.com Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal https://www.flawlesswidescreen.org/fws/f ...
3 follow up this item(21911869) 21911869 Report false positive Report closed case make a suggestion 2014-03-02 09:40:11 OVERDUE! Overdue!1162.9 follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
2/50 (4%) 
 Packed.Win32.MUPX.Gen
a
variant
of
Win32/Packed.EncryptPE.A 
 lookup in virustotal.com (9a241ba99733354e58d397efbda5c570)-->[http://www.virustotal.com/latest-report.html?resource=9a241ba99733354e58d397efbda5c570]lookup in threatexpert.comlookup the sha256(44b129083f16767b8f714f1bd1300c4d4383512cbd19665b19eef4e0bd0a7d58) in comodo.comfollow up this md5sum(9a241ba99733354e58d397efbda5c570)follow up this itemfollow up this virusname (Packed.Win32.MUPX.Gen) as RSS-Feedfollow up this malware(Packed.Win32.MUPX.Gen) for scanner (Comodo) in md5 table2/50 (4%) Packed.Win32.MUPX.Gen
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://cdn.tlcs.yaowan.com/__update/1138 ...  up Saved evidence (1301112 Bytes) of first contact as txt March 01 2014 07:26:38 CET.Saved evidence (1301112 Bytes) of last contact as txt March 01 2014 07:26:38 CET. aliveSaved log of last contact as txt March 03 2014 14:46:18 CET. follow up this ip (ip=209.170.78.77) as RSS-FeedSenderBaselookup 209.170.78.77 at virustotallookup 209.170.78.77 at Rus CERT university stuttgart germanylookup 209.170.78.77 at ARINfollow up this item(ip) in same window 209.170.78.77 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS30361) in networks tablefollow up this itemfollow up this AS (AS30361) as RSS-Feed AS30361 follow up this ip (review=209.170.78.72) as RSS-FeedSenderBaselookup 209.170.78.72 at virustotallookup 209.170.78.72 at Rus CERT university stuttgart germanylookup 209.170.78.72 at ARINfollow up this item(review) in same window 209.170.78.72 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://cdn.tlcs.yaowan.com/__update/1138 ... follow up this domain (yaowan.com) as RSS-Feedlookup yaowan.com at virustotalfollow up this domain(yaowan.com) yaowan.com follow up this itemfollow up this country (SE) as RSS-Feed SE follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (amar@telia.net) as RSS-Feed amar@telia.net follow up this itemfollow up this item 209.170.64.0 - 209.170.127.255 follow up this item TELIANET-2BLK follow up this item Telia Network Services TENS Marbackagatan 11 Farsta 123 86Swiftwill, Inc. SWIFT-19 738 Main St. PMB 140 Waltham MA 02451 follow up this item ns3.15yl.com follow up this item ns1.15yl.com follow up this item ns2.15yl.com follow up this item ns4.15yl.com follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://cdn.tlcs.yaowan.com/__update/1138 ...
4 follow up this item(20609581) 20609581 Report false positive Report closed case make a suggestion 2014-02-13 13:52:54 OVERDUE! Overdue!1566.7 follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
9/50 (18%) 
 Adware.FakeFlash
Riskware
(
0040eff71
)
Riskware
(
0040eff71
)
W32/Medfos.U.gen!Eldorado
WS.Reputation.1
TROJ_GEN.F47V1203
Packed.Win32.MUPX.Gen
VCS/Instruction.JunkCode
W32/Medfos.U.gen!Eldorado 
 lookup in virustotal.com (a6cf0839606849ae992634656463e525)-->[http://www.virustotal.com/latest-report.html?resource=a6cf0839606849ae992634656463e525]lookup in threatexpert.comlookup the sha256(b7c97f8354ee01d8593287b140db44ab9f11f10a1149e2b2c6766aee8b766e27) in comodo.comfollow up this md5sum(a6cf0839606849ae992634656463e525)follow up this itemfollow up this virusname (Packed.Win32.MUPX.Gen) as RSS-Feedfollow up this malware(Packed.Win32.MUPX.Gen) for scanner (Comodo) in md5 table9/50 (18%) Packed.Win32.MUPX.Gen
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.weloveminecraft.com/game/mine ...  up No previous evidence recordedSaved evidence (7326467 Bytes) of last contact as txt November 09 2013 14:07:48 CET. aliveSaved log of last contact as txt March 18 2014 01:22:19 CET. follow up this ip (ip=173.194.70.121) as RSS-FeedSenderBaselookup 173.194.70.121 at virustotallookup 173.194.70.121 at Rus CERT university stuttgart germanylookup 173.194.70.121 at ARINfollow up this item(ip) in same window 173.194.70.121 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS15169) in networks tablefollow up this itemfollow up this AS (AS15169) as RSS-Feed AS15169 follow up this ip (review=173.194.70.121) as RSS-FeedSenderBaselookup 173.194.70.121 at virustotallookup 173.194.70.121 at Rus CERT university stuttgart germanylookup 173.194.70.121 at ARINfollow up this item(review) in same window 173.194.70.121 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.weloveminecraft.com/game/mine ... follow up this domain (weloveminecraft.com) as RSS-Feedlookup weloveminecraft.com at virustotalfollow up this domain(weloveminecraft.com) weloveminecraft.com follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (arin-contact@google.com) as RSS-Feed arin-contact@google.com follow up this itemfollow up this item 173.194.0.0 - 173.194.255.255 follow up this item GOOGLE follow up this item Google Inc. GOGL 1600 Amphitheatre Parkway Mountain View CA 94043 follow up this item ns2.weloveminecraft.com follow up this item ns1.weloveminecraft.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.weloveminecraft.com/game/mine ...
5 follow up this item(19932240) 19932240 Report false positive Report closed case make a suggestion 2014-01-29 23:10:34 OVERDUE! Overdue!1917.4 follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
10/49 (20.4%) 
 Adware.FakeFlash
Riskware
(
0040eff71
)
Riskware
(
0040eff71
)
W32/Medfos.U.gen!Eldorado
Suspicious_Gen2.VPGIN
TROJ_GEN.F47V0109
Mal/Generic-S
Packed.Win32.MUPX.Gen
Trojan.Win32.Generic!BT
W32/Medfos.U.gen!Eldorado 
 lookup in virustotal.com (15ea45bfe00b7a79de92084a4d686b11)-->[http://www.virustotal.com/latest-report.html?resource=15ea45bfe00b7a79de92084a4d686b11]lookup in threatexpert.comlookup the sha256(03a2b4ae47cc3e28e40e3b6630065a7a27a2ec6a497804727d69de921a754994) in comodo.comfollow up this md5sum(15ea45bfe00b7a79de92084a4d686b11)follow up this itemfollow up this virusname (Packed.Win32.MUPX.Gen) as RSS-Feedfollow up this malware(Packed.Win32.MUPX.Gen) for scanner (Comodo) in md5 table10/49 (20.4%) Packed.Win32.MUPX.Gen
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://hivelocity.dl.sourceforge.net/pro ...  up Saved evidence (5566703 Bytes) of first contact as txt March 05 2013 15:41:49 CET.Saved evidence (5566703 Bytes) of last contact as txt March 05 2013 15:41:49 CET. aliveSaved log of last contact as txt March 01 2014 22:03:34 CET. follow up this ip (ip=74.50.101.106) as RSS-FeedSenderBaselookup 74.50.101.106 at virustotallookup 74.50.101.106 at Rus CERT university stuttgart germanylookup 74.50.101.106 at ARINfollow up this item(ip) in same window 74.50.101.106 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS29802) in networks tablefollow up this itemfollow up this AS (AS29802) as RSS-Feed AS29802 follow up this ip (review=74.50.101.106) as RSS-FeedSenderBaselookup 74.50.101.106 at virustotallookup 74.50.101.106 at Rus CERT university stuttgart germanylookup 74.50.101.106 at ARINfollow up this item(review) in same window 74.50.101.106 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://hivelocity.dl.sourceforge.net/pro ... follow up this domain (sourceforge.net) as RSS-Feedlookup sourceforge.net at virustotalfollow up this domain(sourceforge.net) sourceforge.net follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (abuse@noc4hosts.com) as RSS-Feed abuse@noc4hosts.com follow up this itemfollow up this item 74.50.96.0 - 74.50.111.255 follow up this item NOC4HOSTS2 follow up this item NOC4Hosts Inc. NOC4H 400 N Tampa St #1025 Tampa FL 33602 follow up this item ns1.p03.dynect.net follow up this item ns4.p03.dynect.net follow up this item ns2.p03.dynect.net follow up this item ns3.p03.dynect.net follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://hivelocity.dl.sourceforge.net/pro ...
6 follow up this item(19253311) 19253311 Report false positive Report closed case make a suggestion 2014-01-09 09:22:13 OVERDUE! Overdue!2411.2 follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
2/43 (4.7%) 
 
Packed.Win32.MUPX.Gen
TROJ_GEN.F47V0109 
 lookup in virustotal.com (bb8ec3f2ab34e9da923c251807279f99)-->[http://www.virustotal.com/latest-report.html?resource=bb8ec3f2ab34e9da923c251807279f99]lookup in threatexpert.comlookup the sha256(6e05d6c465245ec7ed588bd94ff102547383a46b80d36e220ddbe067f10b7dab) in comodo.comfollow up this md5sum(bb8ec3f2ab34e9da923c251807279f99)follow up this itemfollow up this virusname (Packed.Win32.MUPX.Gen) as RSS-Feedfollow up this malware(Packed.Win32.MUPX.Gen) for scanner (Comodo) in md5 table2/43 (4.7%) Packed.Win32.MUPX.Gen
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://cdn.tlcs.9377.com/__update/106354 ...  up No previous evidence recordedSaved evidence (1300600 Bytes) of last contact as txt January 08 2014 06:47:28 CET. aliveSaved log of last contact as txt January 09 2014 13:59:05 CET. follow up this ip (ip=209.170.78.104) as RSS-FeedSenderBaselookup 209.170.78.104 at virustotallookup 209.170.78.104 at Rus CERT university stuttgart germanylookup 209.170.78.104 at ARINfollow up this item(ip) in same window 209.170.78.104 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS30361) in networks tablefollow up this itemfollow up this AS (AS30361) as RSS-Feed AS30361 follow up this ip (review=209.170.78.104) as RSS-FeedSenderBaselookup 209.170.78.104 at virustotallookup 209.170.78.104 at Rus CERT university stuttgart germanylookup 209.170.78.104 at ARINfollow up this item(review) in same window 209.170.78.104 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://cdn.tlcs.9377.com/__update/106354 ... follow up this domain (9377.com) as RSS-Feedlookup 9377.com at virustotalfollow up this domain(9377.com) 9377.com follow up this itemfollow up this country (SE) as RSS-Feed SE follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (amar@telia.net) as RSS-Feed amar@telia.net follow up this itemfollow up this item 209.170.64.0 - 209.170.127.255 follow up this item TELIANET-2BLK follow up this item Telia Network Services TENS Marbackagatan 11 Farsta 123 86Swiftwill, Inc. SWIFT-19 738 Main St. PMB 140 Waltham MA 02451 follow up this item ns2.dnsv2.com follow up this item ns1.dnsv2.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://cdn.tlcs.9377.com/__update/106354 ...
7 follow up this item(18680832) 18680832 Report false positive Report closed case make a suggestion 2013-12-26 09:50:29 OVERDUE! Overdue!2746.8 follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
3/46 (6.5%) 
 
Packed.Win32.MUPX.Gen
a
variant
of
Win32/Packed.EncryptPE.A
TROJ_GEN.F47V1225 
 lookup in virustotal.com (df12610bbeb58f0068b69fbad1343061)-->[http://www.virustotal.com/latest-report.html?resource=df12610bbeb58f0068b69fbad1343061]lookup in threatexpert.comlookup the sha256(8b70e569eaf52d84aabd1e60a95e09754f3bed71e089116a854e3a7735c90ac6) in comodo.comfollow up this md5sum(df12610bbeb58f0068b69fbad1343061)follow up this itemfollow up this virusname (Packed.Win32.MUPX.Gen) as RSS-Feedfollow up this malware(Packed.Win32.MUPX.Gen) for scanner (Comodo) in md5 table3/46 (6.5%) Packed.Win32.MUPX.Gen
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://cdn.tlcs.yaowan.com/update/vdgame ...  up No previous evidence recordedSaved evidence (1300600 Bytes) of last contact as txt January 01 2014 08:42:30 CET. aliveSaved log of last contact as txt December 28 2013 19:42:01 CET. follow up this ip (ip=213.242.77.68) as RSS-FeedSenderBaselookup 213.242.77.68 at virustotallookup 213.242.77.68 at Rus CERT university stuttgart germanylookup 213.242.77.68 at Ripefollow up this item(ip) in same window 213.242.77.68 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS3356) in networks tablefollow up this itemfollow up this AS (AS3356) as RSS-Feed AS3356 follow up this ip (review=213.242.77.71) as RSS-FeedSenderBaselookup 213.242.77.71 at virustotallookup 213.242.77.71 at Rus CERT university stuttgart germanylookup 213.242.77.71 at Ripefollow up this item(review) in same window 213.242.77.71 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://cdn.tlcs.yaowan.com/update/vdgame ... follow up this domain (yaowan.com) as RSS-Feedlookup yaowan.com at virustotalfollow up this domain(yaowan.com) yaowan.com follow up this itemfollow up this country (GB) as RSS-Feed GB follow up this itemfollow up this region (RIPE) as RSS-Feed RIPE   follow up this itemfollow up this item 213.242.64.0 - 213.242.127.255 follow up this item  follow up this item  follow up this item ns4.15yl.com follow up this item ns1.15yl.com follow up this item ns3.15yl.com follow up this item ns2.15yl.com follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://cdn.tlcs.yaowan.com/update/vdgame ...
8 follow up this item(18191755) 18191755 Report false positive Report closed case make a suggestion 2013-12-14 15:51:49 OVERDUE! Overdue!3028.8 follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
1/46 (2.2%) 
 
Packed.Win32.MUPX.Gen 
 lookup in virustotal.com (4ae44de5f5dbff884575ac049a6ce63d)-->[http://www.virustotal.com/latest-report.html?resource=4ae44de5f5dbff884575ac049a6ce63d]lookup in threatexpert.comlookup the sha256(bdeb9f617412d5b8cc75fe91e7a312a34065ab5b19cc4496eba51e708b40d4fc) in comodo.comfollow up this md5sum(4ae44de5f5dbff884575ac049a6ce63d)follow up this itemfollow up this virusname (Packed.Win32.MUPX.Gen) as RSS-Feedfollow up this malware(Packed.Win32.MUPX.Gen) for scanner (Comodo) in md5 table1/46 (2.2%) Packed.Win32.MUPX.Gen
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.flawlesswidescreen.org/fws/fl ...  up No previous evidence recordedSaved evidence (1446416 Bytes) of last contact as txt November 24 2013 11:39:36 CET. aliveSaved log of last contact as txt December 15 2013 07:24:21 CET. follow up this ip (ip=23.239.157.38) as RSS-FeedSenderBaselookup 23.239.157.38 at virustotallookup 23.239.157.38 at Rus CERT university stuttgart germanylookup 23.239.157.38 at ARINfollow up this item(ip) in same window 23.239.157.38 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (ASNA) in networks tablefollow up this itemfollow up this AS (ASNA) as RSS-Feed ASNA follow up this ip (review=23.239.157.38) as RSS-FeedSenderBaselookup 23.239.157.38 at virustotallookup 23.239.157.38 at Rus CERT university stuttgart germanylookup 23.239.157.38 at ARINfollow up this item(review) in same window 23.239.157.38 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.flawlesswidescreen.org/fws/fl ... follow up this domain (flawlesswidescreen.org) as RSS-Feedlookup flawlesswidescreen.org at virustotalfollow up this domain(flawlesswidescreen.org) flawlesswidescreen.org follow up this itemfollow up this country (US) as RSS-Feed US follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (abuse@iana.org) as RSS-Feed abuse@iana.org follow up this itemfollow up this item 23.0.0.0 - 23.255.255.255 follow up this item RESERVED-23 follow up this item Internet Assigned Numbers Authority IANA 4676 Admiralty Way, Suite 330 Marina del Rey CA 90292-6695 follow up this item dns5.registrar-servers.com follow up this item dns1.registrar-servers.com follow up this item dns4.registrar-servers.com follow up this item dns2.registrar-servers.com follow up this item dns3.registrar-servers.com Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://www.flawlesswidescreen.org/fws/fl ...
9 follow up this item(17965745) 17965745 Report false positive Report closed case make a suggestion 2013-12-07 22:50:28 OVERDUE! Overdue!3189.8 follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
10/50 (20%) 
 
Trojan/Win32.SGeneric
HW32.CDB.79a7
W32/Medfos.U.gen!Eldorado
Packed.Win32.MUPX.Gen
W32/Medfos.U.gen!Eldorado
Riskware
(
0040eff71
)
Riskware
(
0040eff71
)
Adware.FakeFlash
WS.Reputation.1
TROJ_GEN.F47V1128 
 lookup in virustotal.com (bf81b4479c94714ee81478b26ae8fae8)-->[http://www.virustotal.com/latest-report.html?resource=bf81b4479c94714ee81478b26ae8fae8]lookup in threatexpert.comlookup the sha256(179b2c7c7cc22801df0e7e0061605ee8488663f3964fd9e04516955cbbd9f4c1) in comodo.comfollow up this md5sum(bf81b4479c94714ee81478b26ae8fae8)follow up this itemfollow up this virusname (Packed.Win32.MUPX.Gen) as RSS-Feedfollow up this malware(Packed.Win32.MUPX.Gen) for scanner (Comodo) in md5 table10/50 (20%) Packed.Win32.MUPX.Gen
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://depo-tamindir.com/o/k/kafa-topu/k ...  up Saved evidence (8660 Bytes) of first contact as txt December 09 2013 02:34:08 CET.Saved evidence (4936903 Bytes) of last contact as txt November 28 2013 12:13:01 CET. alive4928243Saved log of last contact as txt March 26 2014 18:30:50 CET. follow up this ip (ip=95.143.83.20) as RSS-FeedSenderBaselookup 95.143.83.20 at virustotallookup 95.143.83.20 at Rus CERT university stuttgart germanylookup 95.143.83.20 at Ripefollow up this item(ip) in same window 95.143.83.20 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS39912) in networks tablefollow up this itemfollow up this AS (AS39912) as RSS-Feed AS39912 follow up this ip (review=95.143.83.20) as RSS-FeedSenderBaselookup 95.143.83.20 at virustotallookup 95.143.83.20 at Rus CERT university stuttgart germanylookup 95.143.83.20 at Ripefollow up this item(review) in same window 95.143.83.20 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://depo-tamindir.com/o/k/kafa-topu/k ... follow up this domain (depo-tamindir.com) as RSS-Feedlookup depo-tamindir.com at virustotalfollow up this domain(depo-tamindir.com) depo-tamindir.com follow up this itemfollow up this country (AT) as RSS-Feed AT follow up this itemfollow up this region (RIPE) as RSS-Feed RIPE follow up this itemfollow up this enail (abuse@ascus.at) as RSS-Feed abuse@ascus.at follow up this itemfollow up this item 95.143.80.0 - 95.143.95.255 follow up this item AT-HAPPYNET-20090824 follow up this item ASCUS Telecom GmbHi3B - Internetbreitband GmbH follow up this item erin.ns.cloudflare.com follow up this item hank.ns.cloudflare.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://depo-tamindir.com/o/k/kafa-topu/k ...
10 follow up this item(17148310) 17148310 Report false positive Report closed case make a suggestion 2013-11-16 20:34:26 OVERDUE! Overdue!3696 follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
9/46 (19.6%) 
 
W32/Medfos.U.gen!Eldorado
Packed.Win32.MUPX.Gen
W32/Medfos.U.gen!Eldorado
Win32.SuspectCrc
Riskware
(
0040eff71
)
Riskware
(
0040eff71
)
Adware.FakeFlash
Suspicious_Gen2.VQXJU
WS.Reputation.1 
 lookup in virustotal.com (3a770e2ac1b96b23d58dbd915ec671b9)-->[http://www.virustotal.com/latest-report.html?resource=3a770e2ac1b96b23d58dbd915ec671b9]lookup in threatexpert.comlookup the sha256(4d49edccabd795c5a377d4e4b9d73c949675f80da91a468974a391ba4e43e520) in comodo.comfollow up this md5sum(3a770e2ac1b96b23d58dbd915ec671b9)follow up this itemfollow up this virusname (Packed.Win32.MUPX.Gen) as RSS-Feedfollow up this malware(Packed.Win32.MUPX.Gen) for scanner (Comodo) in md5 table9/46 (19.6%) Packed.Win32.MUPX.Gen
Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://m0.ultradownloads.com.br/jogo-onl ...  up No previous evidence recordedSaved evidence (6175804 Bytes) of last contact as txt July 12 2013 01:52:19 CEST. aliveSaved log of last contact as txt November 17 2013 01:45:35 CET. follow up this ip (ip=108.163.128.212) as RSS-FeedSenderBaselookup 108.163.128.212 at virustotallookup 108.163.128.212 at Rus CERT university stuttgart germanylookup 108.163.128.212 at ARINfollow up this item(ip) in same window 108.163.128.212 possible lookup  in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS46095, AS46861, AS32613, AS14720, AS40699, AS18875) in networks tablefollow up this itemfollow up this AS (AS46095, AS46861, AS32613, AS14720, AS40699, AS18875) as RSS-Feed AS46095, AS46861, AS32613, AS14720, AS40699, AS18875 follow up this ip (review=108.163.128.212) as RSS-FeedSenderBaselookup 108.163.128.212 at virustotallookup 108.163.128.212 at Rus CERT university stuttgart germanylookup 108.163.128.212 at ARINfollow up this item(review) in same window 108.163.128.212 Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://m0.ultradownloads.com.br/jogo-onl ... follow up this domain (ultradownloads.com.br) as RSS-Feedlookup ultradownloads.com.br at virustotalfollow up this domain(ultradownloads.com.br) ultradownloads.com.br follow up this itemfollow up this country (CA) as RSS-Feed CA follow up this itemfollow up this region (ARIN) as RSS-Feed ARIN follow up this itemfollow up this enail (abuse@noc.privatedns.com) as RSS-Feed abuse@noc.privatedns.com follow up this itemfollow up this item 108.163.128.0 - 108.163.191.255 follow up this item IWEB-NE-1 follow up this item iWeb Technologies Inc. GIT-20 20, place du Commerce Montreal QC H3E-1Z6 follow up this item ns-1319.awsdns-36.org follow up this item ns-474.awsdns-59.com follow up this item ns-1685.awsdns-18.co.uk follow up this item ns-521.awsdns-01.net follow up this item  Safe Virus-Viewer and Analyser may take a minute to completelookup in virustotal http://m0.ultradownloads.com.br/jogo-onl ...
Click here for other vital incidents



Protected by clean MX [Valid RSS] Valid HTML 4.01 Transitional CSS ist valide!
Access is provided for free and subject to these Terms and Conditions.