0 Members and 9 Guests are viewing this topic.
+---------------------+-------------+------------------+--------------------------------------------+---------------+---------------------------------------------+-----------------+-------------------------------------+---------+---------+----------------------------+----------------------------------+-----------------------------------------------------------------------------------------------------------------------------------------------+| date | contributor | scanner | virusname | vt_score | AS | review | email | country | source | netname | md5sum | url |+---------------------+-------------+------------------+--------------------------------------------+---------------+---------------------------------------------+-----------------+-------------------------------------+---------+---------+----------------------------+----------------------------------+-----------------------------------------------------------------------------------------------------------------------------------------------+| 2012-02-09 02:40:09 | sub24 | clamav | PUA.Script.PDF.EmbeddedJavaScript | 15/43 (34.9%) | AS3308 | 86.52.218.28 | abuse@stofanet.dk | DK | RIPE | STOFANET-INET-CIDR-5 | 187b6f403547af931fa19827927a0984 | http://86.52.218.28/content/adp1.php?f=61 || 2012-02-09 02:40:09 | sub24 | clamav | PUA.Script.PDF.EmbeddedJavaScript | 15/43 (34.9%) | AS3308 | 86.52.218.28 | abuse@stofanet.dk | DK | RIPE | STOFANET-INET-CIDR-5 | 23654b6a6790670acc01c489e086edcb | http://86.52.218.28/content/adp1.php?f=95 || 2012-02-09 02:40:09 | sub24 | clamav | Exploit.PDF-28745 | 13/42 (31%) | AS36420, AS30315, AS13749, AS21844, AS13884 | 216.12.212.114 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-EV1-2 | 525c6fbe23d25f1b50d7faa16a76d20d | http://216.12.212.114/content/adfp2.php?f=84 || 2012-02-09 02:40:13 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS3356 | 213.131.252.251 | abuse@conversis.de | DE | RIPE | DE-TRIPOD | 4619afe2e9e5f3e39f24c404dc7278cc | http://vlsidea.mi-website.es/news-471.html || 2012-02-09 02:40:13 | sub16 | avira | ADSPY/NaviPromo.J | | AS41550 | 91.207.44.10 | abuse@hostbizua.com | UA | RIPE | FUIR-MNT | d5557359fd0fafd423f81b906677afc1 | http://www.falcogames.com/InSearchofLightSetup.exe || 2012-02-09 01:10:09 | sub8 | trendmicro | TROJ_KRYPTK.SMU3 | 22/43 (51.2%) | AS7366 | 199.7.177.244 | abuse@lemuriaco.com | US | ARIN | LEMURIA-COMMUNICATIONS | 5cc9acdfecbb49e0b26c5e5ce3b9d2ea | http://hotfile.com/dl/145643264/9087879/ || 2012-02-09 02:50:11 | sub16 | avira | JS/iFrame.GM.4 | 19/43 (44.2%) | AS29671 | 77.232.67.100 | abuse@servage.net | EU | RIPE | SRVG-NET-FL1-H1 | bc46d903a3bcff9f449292c750e5fd51 | http://www.jorgefuster.es/index.php?showimage=5 || 2012-02-09 02:50:11 | sub16 | undef | unknown_exe | 0/43 (0.0%) | AS36420, AS30315, AS13749, AS21844 | 174.120.202.34 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 9edfe17768c78f658573de5fecf2f749 | http://www.orchidstoresecrets.com/Wedding_Orchids_Screensaver.exe || 2012-02-09 02:50:12 | sub16 | VBA32 | suspected of Trojan.Downloader.gen.h | 1/43 (2.3%) | AS25653 | 216.67.242.74 | abuse@fortressitx.com | US | ARIN | FORTRESSITX | 7886e9b7ba3e372d9d42dac24e6acd73 | http://www.spunog.com/i/dd021.exe || 2012-02-09 02:50:12 | sub16 | avira | ADWARE/Agent.1834614 | 15/43 (34.9%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 33b8876bca325b803a406e1726e4ddb9 | http://www.toptenreport.com/BrandThunder/ftpnav.exe || 2012-02-09 03:00:16 | sub16 | avira | JS/Redirector.MR | 10/43 (23.3%) | AS26347 | 67.205.55.153 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK7 | 6a732b5bbcc6bfaad2ec52b69781d45d | http://definitivecentral.com/ || 2012-02-09 03:00:16 | sub16 | avira | JS/Decdec.psc | 34/43 (79.1%) | AS13287 | 213.162.209.135 | abuse@gruposys4net.com | ES | RIPE | SYS4NET | 59dc4f382888feadbe6f1729bcdc676c | http://emoticon.com.es/logos-google/index.htm || 2012-02-09 02:41:06 | sub5 | avira | PHP/Shellbot.7642 | 26/43 (60.5%) | AS11798 | 69.27.174.10 | abuse@0catch.com | US | ARIN | 0CATCH-NETWORK-1 | 58a6c68968cacbb52549df336ffed498 | http://diihxd.741.com/CMD.txt? || 2012-02-09 02:50:48 | sub5 | avira | PHP/Shellbot.7642 | 33/43 (76.7%) | AS14141 | 98.142.215.182 | wnoc@wiresix.com | US | ARIN | WIRESIX | 2a58b097bdf4d800266138bfbed1351c | http://fileden.com/files/2012/2/4/3259779//junior1000.txt? || 2012-02-09 02:42:54 | sub5 | avira | PHP/PBot.A | 30/43 (69.8%) | AS14141 | 98.142.215.182 | wnoc@wiresix.com | US | ARIN | WIRESIX | 4c748475954efb3ca41a8636a712ab2c | http://fileden.com/files/2012/2/4/3259779//1000junior.txt? || 2012-02-09 03:00:19 | sub16 | undef | unknown_file_Multi Client.exe | 0/43 (0.0%) | AS3595 | 209.217.226.34 | greg@jaguarpc.com | US | ARIN | LH-GOLD-NETWORK | a4bb530c5db85143d2c9d49b99961ce3 | http://www.asiturk.com/usko/AutoPatchMC.zip || 2012-02-09 03:00:20 | sub16 | avira | JS/iFrame.GJ.2 | 15/43 (34.9%) | AS196713 | 86.109.170.3 | david@dhapcenter.es | ES | RIPE | DHAPCENTER-NET | 0f86fe59da23662177ff5a504e524f8a | http://www.dark-killers.es/carnaval/contacto/contacto.html || 2012-02-09 03:10:08 | sub10 | DrWeb | Trojan.VbCrypt.66 | 5/43 (11.6%) | AS46433 | 216.14.124.128 | hostmaster@eboundhost.com | US | ARIN | EBOUNDHOST | b3f6447d5ed286ddf83fea9b149efa1f | http://emprender.edu.co/media/system/js/ad.exe || 2012-02-09 03:10:09 | sub16 | avira | TR/SMSFraud.aman | 31/43 (72.1%) | AS24940 | 178.63.55.17 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ12 | ccb21ee90d96892c27c69c67023c4d92 | http://bigpowerman.ru/getUnikSex/metod_UnikSex.exe || 2012-02-09 03:50:09 | sub16 | avira | ADSPY/NaviPromo.J | 13/43 (30.2%) | AS35017 | 94.100.30.18 | abuse@swiftway.net | NL | RIPE | DEDICATED-SERVERS | 4b0dbe1042c7690e2fd07bc7c0e30492 | http://www.risingresearch.com/files/d2msetup.exe || 2012-02-09 04:00:10 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS25847 | 64.131.75.19 | ipdept@servint.com | US | ARIN | SERVINT-CIDR-4 | 7f27e28a049acfb58c4376e31c3bf253 | http://0593tguo.ce.ms/ || 2012-02-09 04:00:10 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS24971 | 178.238.36.6 | abuse@master.cz | CZ | RIPE | DC1-4D-HOUSING-10-CZ-MAI | a2d620616d074f0180feab9c175c1ba4 | http://0d1.cz.cc/ || 2012-02-09 04:00:10 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS26347 | 173.236.148.174 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | 06c2de0ab67f55f34edb31bb3cee3c53 | http://101-sex-positions.com/images/vb.php || 2012-02-09 04:00:12 | sub16 | avira | JS/Redirector.MR | 10/43 (23.3%) | AS36420, AS30315, AS13749, AS21844 | 174.122.2.222 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | fff5d3555fe9966e82dde1611bccda52 | http://1-4corporategifts.com/tag/dosadora-acido/ || 2012-02-09 04:00:15 | sub16 | Sophos | Mal/VB-BL | 1/43 (2.3%) | AS36420, AS30315, AS13749, AS21844 | 184.172.173.4 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-17 | afb06996b1542a69177d4ccf5898b3a5 | http://infoblasters.com/drobot/sound-card-driver/postbind/afile.exe || 2012-02-09 04:10:07 | sub7 | undef | unknown_html_RFI | 0/43 (0.0%) | AS20401 | 216.36.248.152 | abuse@hostway.com | US | ARIN | HOSTWAY-04 | bfde0100abd9978666fe6fd4d28fee07 | http://216.36.248.152/i/ph-i.js? || 2012-02-09 04:10:11 | sub16 | avira | PHISH/PayPal.DI | 4/43 (9.3%) | AS20746 | 178.255.72.123 | abuse@logica.eu.com | IT | RIPE | IT-LOGICA-20100705 | 7b142077020b81a02a7097e17c871209 | http://178.255.72.123/paypal/en/cgi-bin/webscr?cmd=login-run& || 2012-02-09 04:10:11 | sub16 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS16735 | 187.72.171.167 | wanderleif@ctbc.com.br | BR | LACNIC | 071.208.516/0001-74 | 08ca7794c4a6265d6f0436d696c46afb | http://187.72.171.167/~sorvete1/promo/ || 2012-02-09 04:10:15 | sub16 | DrWeb | BACKDOOR.Trojan | 2/43 (4.7%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | bdd75ef8bb18f699f229fe8fde5aee7b | http://www.robust.ws/download/rsb10017.exe || 2012-02-09 04:20:05 | sub10 | avira | TR/ATRAPS.Gen2 | 36/43 (83.7%) | AS4134 | 222.186.42.103 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-JS | 09843f3b58efd54aec956c89e2d8e630 | http://222.186.42.103:888/1.exe || 2012-02-09 04:20:06 | sub10 | avira | TR/Spy.Gen2 | 34/43 (79.1%) | AS16265 | 85.17.25.236 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20050311 | a16c4fcd7f49d221e248082f69d1463e | http://jozeko900.cba.pl/20bonussurf.exe || 2012-02-09 04:20:08 | sub16 | avira | BDS/Backdoor.Gen | 35/43 (81.4%) | AS23535 | 216.120.236.102 | abuse@hostrocket.com | US | ARIN | HRWEBSERVICES | bc77b7f8c9520bd9f40e584ca42e7b5f | http://216.120.236.102/jdb/lib/adobe.php?id=c046fd67bad625006e5e47ade692da71 || 2012-02-09 04:20:09 | sub16 | clamav | PUA.IRC-Client.mIRC-37 | 3/43 (7%) | AS26496 | 72.167.1.1 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | f9eae52fbef5f8e0cdd3b635fdc1036a | http://chrisqueen.com/dp/distr/app-howtobox/site-0062101e758/lng-eng/howtobox.exe || 2012-02-09 04:20:14 | sub16 | undef | unknown_file_$INSTDIR/pacencount_trial.exe | 0/43 (0.0%) | AS17971 | 112.137.164.6 | abuse@netmyne.com | MY | APNIC | TM-IDC | 371b0cc6dfc1fe3ae0a3851d481bb4c0 | http://www.yeohhs.com/shareware/pacencount_trialsetup.exe || 2012-02-09 04:30:08 | sub16 | avira | SPR/JS.Crytper.VIP | 31/43 (72.1%) | AS29873 | 66.96.145.107 | bnbrock@maileig.com | US | ARIN | BIZLAND-FC01 | 2841fcd757ad2d9bef2d252f13479168 | http://3cyl.com/bulletins/bulletins/index.html || 2012-02-09 04:30:08 | sub16 | avira | JS/Redirect.AC | 18/43 (41.9%) | AS4250 | 64.40.153.4 | abuse@alentus.com | US | ARIN | ALENT-NBLK-2 | 1e14e347f40cc18fe8ce0bc8cac001f2 | http://3dcbc.com/ || 2012-02-09 04:30:08 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS29550 | 91.103.220.47 | abuse@dataflame.co.uk | GB | RIPE | DFL-NET | f72c420d2fe81056fd084204247ce115 | http://3dclothing.co.uk/descriptives.html || 2012-02-09 04:30:08 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS29550 | 91.103.220.47 | abuse@dataflame.co.uk | GB | RIPE | DFL-NET | f72c420d2fe81056fd084204247ce115 | http://3dclothing.co.uk/impenetrability.html || 2012-02-09 04:30:08 | sub16 | avira | EXP/Pidief.hgv | 24/43 (55.8%) | AS4134 | 121.12.169.152 | abuse@gddc.com.cn | CN | APNIC | CHINANET-GD | d28f3679ab474f708a9c141a4edd3ba7 | http://4.9000cha.com/mxd/mxd.html?ty3q.com || 2012-02-09 04:30:08 | sub16 | avira | JS/Redirector.LC | 24/43 (55.8%) | AS6903 | 213.189.197.55 | abuse@zenon.net | RU | RIPE | ZENON | f4d4d352413076546369839513eb8a49 | http://5roz.ru/partners/js/index.js || 2012-02-09 04:30:08 | sub16 | avira | JS/Redirector.LC | 24/43 (55.8%) | AS6903 | 213.189.197.55 | abuse@zenon.net | RU | RIPE | ZENON | f4d4d352413076546369839513eb8a49 | http://5roz.ru/partners/partners/damochka.php || 2012-02-09 04:30:08 | sub16 | Microsoft | Exploit:JS/Blacole.BM | 1/43 (2.3%) | AS21788 | 64.191.87.24 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | 0b1b867608d279dac2df517e61f13bd7 | http://64.191.87.24/content/cph2.php?c=78 || 2012-02-09 04:30:08 | sub16 | BitDefender | Script.SWF.Cxx | 11/43 (25.6%) | AS21788 | 64.191.87.24 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | 2f29542f0e037b3a710437f23bfdbd07 | http://64.191.87.24/content/score.swf || 2012-02-09 04:30:08 | sub16 | avira | EXP/CVE-2010-0840.FI | 28/38 (73.7%) | AS21788 | 64.191.87.25 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | edd9db547e5edf276401f84c0065f077 | http://64.191.87.25/content/content.jar || 2012-02-09 04:30:08 | sub16 | Microsoft | Exploit:JS/Blacole.BM | 1/43 (2.3%) | AS21788 | 64.191.87.25 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | 7ae941c06a4e9cc51abfbaa43318f10e | http://64.191.87.25/content/cph2.php?c=78 || 2012-02-09 04:30:08 | sub16 | avira | EXP/CVE-2010-0840.FG | 28/40 (70%) | AS21788 | 64.191.87.25 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | da22b1ddfc28e3eb108f12fb2d0d176c | http://64.191.87.25/content/field.jar || 2012-02-09 04:30:08 | sub16 | BitDefender | Script.SWF.Cxx | 4/43 (9.3%) | AS21788 | 64.191.87.25 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | da321a419d505090b2a5bd4acbbe9272 | http://64.191.87.25/content/field.swf || 2012-02-09 04:30:08 | sub16 | avira | EXP/CVE-2010-0840.FJ | 26/38 (68.4%) | AS21788 | 64.191.87.25 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | 1bfd08907a2bf3663b226700147894fb | http://64.191.87.25/content/import.jar || 2012-02-09 04:30:08 | sub16 | BitDefender | Script.SWF.Cxx | 8/38 (21.1%) | AS21788 | 64.191.87.25 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | 2f29542f0e037b3a710437f23bfdbd07 | http://64.191.87.25/content/score.swf || 2012-02-09 04:30:08 | sub16 | avira | EXP/Java.Blacole.K | 30/40 (75%) | AS21788 | 64.191.87.25 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | c69fcaa876e809a61d74e6a1d7fe822d | http://64.191.87.25/content/worms.jar || 2012-02-09 04:30:08 | sub16 | Comodo | UnclassifiedMalware | 4/40 (10%) | AS21788 | 64.191.87.25 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | 18990a0a65a6fb3f0ffe1106168b4eac | http://64.191.87.25/getJavaInfo.jar || 2012-02-09 04:30:08 | sub16 | AVG | JS/Phish | 1/43 (2.3%) | AS40015 | 67.23.117.122 | abuse@yellowfiber.net | US | ARIN | RST-RX-YELLOWFIBER-NET | e4aeeea806e446c55a3a54a60021c7bd | http://67.23.117.122/wseBayISAPIdllSignInhttpSSS/ || 2012-02-09 04:30:09 | sub16 | AVG | Suspicion: unknown virus | 5/43 (11.6%) | AS36420, AS30315, AS13749, AS21844 | 174.120.96.251 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 1fdda9915b9c2a0c74cfc9ab09694160 | http://digofone.com/cyber/CyberCafePro.5.Server.Client/Ccp5-Server.exe || 2012-02-09 04:30:13 | sub10 | avira | JS/iFrame.GJ.2 | 15/43 (34.9%) | AS196713 | 86.109.170.3 | david@dhapcenter.es | ES | RIPE | DHAPCENTER-NET | 0f86fe59da23662177ff5a504e524f8a | http://dark-killers.es/carnaval/contacto/contacto.html || 2012-02-09 04:30:13 | sub10 | avira | PHP/Mailsend.A | 14/43 (32.6%) | AS14259 | 201.238.248.140 | jolea@gtdinternet.com | CL | LACNIC | CL-GISA-LACNIC | 9a65e09727c793d36ca7817b1a4364ab | http://goldenchile.cl/images/index.txt?%3F || 2012-02-09 04:30:13 | sub10 | avira | JS/Dldr.Psym.DC.3.B | 30/43 (69.8%) | AS4837 | 123.15.41.50 | abuse@public.zz.ha.cn | CN | APNIC | UNICOM-HA | 5c5d2f2bcf1af1ab3353b9fb9186b100 | http://news.peczzu.edu.cn/NewsView.asp?ID=2076 || 2012-02-09 04:30:13 | sub10 | Panda | Suspicious file | 9/43 (20.9%) | AS25525 | 83.98.197.57 | abuse@reasonnet.com | NL | RIPE | NL-DIGITPAINT | 643d3d31bd1eb889180589307e40b567 | http://web.obi4wan.nl/rapport.pdf.exe || 2012-02-09 04:30:40 | sub16 | avira | HTML/IFrame.JA.7 | 16/42 (38.1%) | AS13768 | 83.222.232.179 | abuse@peer1.com | GB | RIPE | UK-PNE-20090408 | a18493f80e772404c752b36a36705ec5 | http://7kschikara.co.uk/photogallery/?display=Gym%20Show%20Oct%204th%202008/SDC10360.JPG || 2012-02-09 04:30:40 | sub16 | avira | HTML/IFrame.JA.7 | 16/43 (37.2%) | AS13768 | 83.222.232.179 | abuse@peer1.com | GB | RIPE | UK-PNE-20090408 | f229ad6e09c93aaae2628c3a2e46fd65 | http://7kschikara.co.uk/photogallery/?display=Newark%20Gym%20Show%20March%2015%202009/DSC_0254_sized.jpg || 2012-02-09 04:30:40 | sub16 | avira | HTML/IFrame.JA.7 | 16/43 (37.2%) | AS13768 | 83.222.232.179 | abuse@peer1.com | GB | RIPE | UK-PNE-20090408 | d9dfd3d0847feb514b37fecdba5fd416 | http://7kschikara.co.uk/photogallery/?display=WUMA%20Lincolnshire%20Open%20Sep%202007/SDC10240.JPG || 2012-02-09 04:30:40 | sub16 | avira | HTML/IFrame.JA.7 | 16/42 (38.1%) | AS13768 | 83.222.232.179 | abuse@peer1.com | GB | RIPE | UK-PNE-20090408 | bfe2ca45c1c95984de53deb0cdfdacdc | http://7kschikara.co.uk/photogallery/index.php?display=Newark%20Gym%20Show%20March%2015%202009/DSC_0120_sized.jpg || 2012-02-09 04:30:40 | sub16 | avira | HTML/IFrame.JA.7 | 16/43 (37.2%) | AS13768 | 83.222.232.179 | abuse@peer1.com | GB | RIPE | UK-PNE-20090408 | ec35d0e1647a67c89a10a5702fa05e34 | http://7kschikara.co.uk/photogallery/index.php?display=Newark%20Gym%20Show%20March%2015%202009/DSC_0213_sized.jpg || 2012-02-09 04:30:40 | sub16 | avira | HTML/IFrame.JA.7 | 16/43 (37.2%) | AS13768 | 83.222.232.179 | abuse@peer1.com | GB | RIPE | UK-PNE-20090408 | 500976c6fb863f8e7c906a2ef2baa132 | http://7kschikara.co.uk/photogallery/index.php?display=Newark%20Gym%20Show%20March%2015%202009/DSC_0219_sized.jpg || 2012-02-09 04:30:41 | sub16 | avira | HTML/IFrame.JA.7 | 16/43 (37.2%) | AS13768 | 83.222.232.179 | abuse@peer1.com | GB | RIPE | UK-PNE-20090408 | 83dc3afe42fc09d6cb72bfa08afbcd39 | http://7kschikara.co.uk/photogallery/index.php?display=WUMA%20Lincolnshire%20Open%20Feb%202009/DSC01233.JPG || 2012-02-09 04:30:41 | sub16 | avira | JAVA/Agent.6639 | 24/43 (55.8%) | AS12322 | 88.191.146.160 | abuse@proxad.net | FR | RIPE | FR-DEDIBOX | f65f3b9b809ebf221e73502480ab6ea7 | http://88.191.146.160/el144/5734.jar || 2012-02-09 04:30:45 | sub1 | Avast | Win32:Banker-JAP [Trj] | 12/43 (27.9%) | AS16276 | 46.105.227.9 | abuse@ovh.net | FR | RIPE | FR-OVH-20101129 | aae0ada06557e925b645c5208f4b7a77 | http://www.kerrest.fr/wordpress/wp-includes/Instalador.exe || 2012-02-09 04:40:07 | sub24 | clamav | PUA.Script.PDF.EmbeddedJavaScript | 14/40 (35%) | AS36420, AS30315, AS13749, AS21844, AS13884 | 216.12.212.114 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-EV1-2 | cc8f6e7a19d3780fb21695b1ddde70aa | http://216.12.212.114/content/adfp1.php?f=34 || 2012-02-09 04:40:07 | sub24 | clamav | PUA.Script.PDF.EmbeddedJavaScript | 14/39 (35.9%) | AS36420, AS30315, AS13749, AS21844, AS13884 | 216.12.212.114 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-EV1-2 | e256fa0ace9ad5f0464c136d188923ed | http://216.12.212.114/content/adfp1.php?f=65 || 2012-02-09 04:40:07 | sub24 | clamav | Exploit.PDF-28745 | 11/40 (27.5%) | AS36420, AS30315, AS13749, AS21844, AS13884 | 216.12.212.114 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-EV1-2 | 5b53db7cf275228b11225bff8baf987a | http://216.12.212.114/content/adfp2.php?f=23 || 2012-02-09 04:40:07 | sub24 | clamav | Exploit.PDF-28745 | 11/40 (27.5%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | 61e783baf4ae0d015448c7f8ade196d4 | http://79.137.237.66/content/adfp2.php?f=248 || 2012-02-09 04:40:07 | sub24 | clamav | Exploit.PDF-28745 | 11/40 (27.5%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | 7d3dce4d1ffb263ce1f308105bc04bfc | http://79.137.237.66/content/adfp2.php?f=282 || 2012-02-09 04:40:07 | sub24 | clamav | Exploit.PDF-28745 | 11/40 (27.5%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | 7f7e16a41c3e131f7500d76f78b71418 | http://79.137.237.66/content/adfp2.php?f=60 || 2012-02-09 04:40:07 | sub24 | clamav | PUA.Script.PDF.EmbeddedJavaScript | 15/42 (35.7%) | AS36420, AS30315, AS13749, AS21844, AS13884 | 216.12.212.114 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-EV1-2 | 07197a747eaec6fbb49c62b3a3eb9d63 | http://216.12.212.114/content/adfp1.php?f=27 || 2012-02-09 04:40:07 | sub24 | clamav | PUA.Script.PDF.EmbeddedJavaScript | 14/40 (35%) | AS36420, AS30315, AS13749, AS21844, AS13884 | 216.12.212.114 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-EV1-2 | ce678db4a58ecaba749923e50885f0e2 | http://216.12.212.114/content/adfp1.php?f=56 || 2012-02-09 04:40:07 | sub24 | clamav | PUA.Script.PDF.EmbeddedJavaScript | 14/39 (35.9%) | AS36420, AS30315, AS13749, AS21844, AS13884 | 216.12.212.114 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-EV1-2 | 6fdc45fda510d2c8fb2efcc0f1b2ff72 | http://216.12.212.114/content/adfp1.php?f=87 || 2012-02-09 04:40:07 | sub24 | clamav | Exploit.PDF-28745 | 10/38 (26.3%) | AS36420, AS30315, AS13749, AS21844, AS13884 | 216.12.212.114 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-EV1-2 | 129cd76162384fd967b03a2cdffa08ff | http://216.12.212.114/content/adfp2.php?f=32 || 2012-02-09 04:40:07 | sub24 | clamav | Exploit.PDF-28745 | 11/40 (27.5%) | AS36420, AS30315, AS13749, AS21844, AS13884 | 216.12.212.114 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-EV1-2 | 361725c3c359b8ff016802a6d20f34d1 | http://216.12.212.114/content/adfp2.php?f=67 || 2012-02-09 04:40:07 | sub24 | clamav | Exploit.PDF-28745 | 11/40 (27.5%) | AS36420, AS30315, AS13749, AS21844, AS13884 | 216.12.212.114 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-EV1-2 | d8ccf1c1e0dcdd4b633aaa7705088671 | http://216.12.212.114/content/adfp2.php?f=95 || 2012-02-09 04:40:07 | sub24 | trendmicro | TROJ_PIDEX.SML | 28/40 (70%) | AS21788 | 64.191.87.24 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | 8b19d041d9262adffa0b2f1cc2b20c2a | http://64.191.87.24/content/1ddfp.php?f=26 || 2012-02-09 04:40:07 | sub24 | avira | EXP/Pidief.amp | 28/40 (70%) | AS21788 | 64.191.87.24 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | 0a10c65a0221616883012c91a26b7872 | http://64.191.87.24/content/1ddfp.php?f=54 || 2012-02-09 04:40:07 | sub24 | avira | EXP/Pidief.amp | 28/40 (70%) | AS21788 | 64.191.87.24 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | 3d59a628aa70df9748db247a67bf0705 | http://64.191.87.24/content/1ddfp.php?f=75 || 2012-02-09 04:40:07 | sub24 | avira | EXP/Pdfka.QC | 26/40 (65%) | AS21788 | 64.191.87.24 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | fd2f25a7810207aa212904a465127c61 | http://64.191.87.24/content/2ddfp.php?f=26 || 2012-02-09 04:40:07 | sub24 | trendmicro | TROJ_PIDEX.SMJ | 28/43 (65.1%) | AS21788 | 64.191.87.24 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | 83652518f4ac7db4f35d852d4e9bd612 | http://64.191.87.24/content/2ddfp.php?f=50 || 2012-02-09 04:40:07 | sub24 | avira | EXP/Pdfka.QC | 26/40 (65%) | AS21788 | 64.191.87.24 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | e52a3a196729511aee14fd8811d417e5 | http://64.191.87.24/content/2ddfp.php?f=77 || 2012-02-09 04:40:07 | sub24 | clamav | PUA.Script.PDF.EmbeddedJavaScript | 14/40 (35%) | AS21788 | 64.191.87.24 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | 538d34995fb56b1bc358dc842e666080 | http://64.191.87.24/content/adfp1.php?f=37 || 2012-02-09 04:40:07 | sub24 | clamav | PUA.Script.PDF.EmbeddedJavaScript | 14/40 (35%) | AS21788 | 64.191.87.24 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | 1c25fda52f6a44e261948f370050d75a | http://64.191.87.24/content/adfp1.php?f=59 || 2012-02-09 04:40:08 | sub24 | clamav | PUA.Script.PDF.EmbeddedJavaScript | 13/38 (34.2%) | AS21788 | 64.191.87.24 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | 7993a88681f4c07adb814d4b23ceaaf7 | http://64.191.87.24/content/adfp1.php?f=96 || 2012-02-09 04:40:08 | sub24 | clamav | Exploit.PDF-28745 | 13/43 (30.2%) | AS21788 | 64.191.87.24 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | ea582e77a94d92d5aeedb7a3b6f47374 | http://64.191.87.24/content/adfp2.php?f=77 || 2012-02-09 04:40:08 | sub24 | avira | EXP/Pidief.aou | 26/42 (61.9%) | AS21788 | 64.191.87.24 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | a1fcf16b4b66c524c490441b12ff48d3 | http://64.191.87.24/content/fdp1.php?f=26 || 2012-02-09 04:40:08 | sub24 | avira | EXP/Pidief.aou | 26/43 (60.5%) | AS21788 | 64.191.87.24 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | a03727a5bc4164cc6e0520ea34429f50 | http://64.191.87.24/content/fdp1.php?f=56 || 2012-02-09 04:40:08 | sub24 | avira | EXP/Pidief.aou | 26/43 (60.5%) | AS21788 | 64.191.87.24 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | fb8a2105ece39342dc876395a1cdf8bc | http://64.191.87.24/content/fdp1.php?f=84 || 2012-02-09 04:40:08 | sub24 | avira | EXP/Pidief.aob | 18/43 (41.9%) | AS21788 | 64.191.87.24 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | e742cf9320bbe075b5e3cf372a22dde5 | http://64.191.87.24/content/fdp2.php?f=32 || 2012-02-09 04:40:08 | sub24 | avira | EXP/Pidief.aob | 18/43 (41.9%) | AS21788 | 64.191.87.24 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | 3798b83da67e27e369c85130d90ddc9c | http://64.191.87.24/content/fdp2.php?f=60 || 2012-02-09 04:40:08 | sub24 | avira | EXP/Pidief.aob | 18/42 (42.9%) | AS21788 | 64.191.87.24 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | 7126e65eeb165a2ff30f98500824a595 | http://64.191.87.24/content/fdp2.php?f=85 || 2012-02-09 04:40:08 | sub24 | avira | EXP/Pidief.amp | 30/43 (69.8%) | AS21788 | 64.191.87.25 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | 9254214bf2c0f047a75f6c6155c9bb32 | http://64.191.87.25/content/1ddfp.php?f=26 || 2012-02-09 04:40:08 | sub24 | avira | EXP/Pidief.amp | 30/43 (69.8%) | AS21788 | 64.191.87.25 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | cfe975882f415ad775fa0059c68a4d77 | http://64.191.87.25/content/1ddfp.php?f=90 || 2012-02-09 04:40:08 | sub24 | avira | EXP/Pdfka.QC | 28/43 (65.1%) | AS21788 | 64.191.87.25 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | b6800bb80837a581d39716659f4ba109 | http://64.191.87.25/content/2ddfp.php?f=23 || 2012-02-09 04:40:08 | sub24 | avira | EXP/Pdfka.QC | 28/43 (65.1%) | AS21788 | 64.191.87.25 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | dd64f87c21ae9bc3e2f3de3d25274670 | http://64.191.87.25/content/2ddfp.php?f=59 || 2012-02-09 04:40:08 | sub24 | avira | EXP/Pdfka.QC | 28/43 (65.1%) | AS21788 | 64.191.87.25 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | d253a5439c08d510b2e96bdd3f4b816e | http://64.191.87.25/content/2ddfp.php?f=82 || 2012-02-09 04:40:08 | sub24 | clamav | PUA.Script.PDF.EmbeddedJavaScript | 15/43 (34.9%) | AS21788 | 64.191.87.25 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | 713c06fc7cab8f3d8c0f5aa3503cf479 | http://64.191.87.25/content/adfp1.php?f=65 || 2012-02-09 04:40:08 | sub24 | clamav | PUA.Script.PDF.EmbeddedJavaScript | 15/43 (34.9%) | AS21788 | 64.191.87.25 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | 0bc4a72b5829dbd1dbdfe56ff4741016 | http://64.191.87.25/content/adfp1.php?f=92 || 2012-02-09 04:40:08 | sub24 | clamav | Exploit.PDF-28745 | 13/43 (30.2%) | AS21788 | 64.191.87.25 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | 9eb1fa8904e1231f44674773080bac38 | http://64.191.87.25/content/adfp2.php?f=29 || 2012-02-09 04:40:08 | sub24 | clamav | Exploit.PDF-28745 | 13/42 (31%) | AS21788 | 64.191.87.25 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | a38d980cf50199ee0d524d4649db48e2 | http://64.191.87.25/content/adfp2.php?f=90 || 2012-02-09 04:40:08 | sub24 | avira | EXP/Pidief.aou | 25/41 (61%) | AS21788 | 64.191.87.25 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | 18d9f7ea1cc57c13aacb0e11383fb79c | http://64.191.87.25/content/fdp1.php?f=100 || 2012-02-09 04:40:08 | sub24 | avira | EXP/Pidief.aou | 26/43 (60.5%) | AS21788 | 64.191.87.25 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | 488bf696c6f1a0650da48bfd7f15b6de | http://64.191.87.25/content/fdp1.php?f=35 || 2012-02-09 04:40:08 | sub24 | avira | EXP/Pidief.aou | 26/43 (60.5%) | AS21788 | 64.191.87.25 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | 70f0eb7c35ef152f30fa180a60060a3f | http://64.191.87.25/content/fdp1.php?f=67 || 2012-02-09 04:40:08 | sub24 | avira | EXP/Pidief.aob | 18/43 (41.9%) | AS21788 | 64.191.87.25 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | 6b332de46474b1674508a5fafbeb21e3 | http://64.191.87.25/content/fdp2.php?f=32 || 2012-02-09 04:40:08 | sub24 | clamav | Exploit.PDF-28745 | 13/43 (30.2%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | ce0b8ab3985804a7ed04da8cee4ff5e2 | http://79.137.237.66/content/adfp2.php?f=131 || 2012-02-09 04:40:08 | sub24 | avira | EXP/Pidief.atm | 21/43 (48.8%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | aaf90d614632f04bb2bd8d29a6707add | http://79.137.237.66/content/fdp2.php?f=165 || 2012-02-09 04:40:08 | sub24 | avira | EXP/Pidief.atm | 21/42 (50%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | 0d9ae02604a13bc01685aac086b4f3e0 | http://79.137.237.66/content/fdp2.php?f=190 || 2012-02-09 04:40:08 | sub24 | avira | EXP/Pidief.atm | 21/43 (48.8%) | AS28753 | 188.72.233.77 | abuse@leaseweb.de | DE | RIPE | NETDIRECT-NET | 5239930fb71249f603aaa75f8b159e4a | http://188.72.233.77/content/fdp2.php?f=61 || 2012-02-09 04:40:08 | sub24 | avira | EXP/Pidief.atm | 21/43 (48.8%) | AS28753 | 188.72.233.77 | abuse@leaseweb.de | DE | RIPE | NETDIRECT-NET | 88ba8c1b2a9a9b55c2c77bc9a1c40d33 | http://188.72.233.77/content/fdp2.php?f=84 || 2012-02-09 03:48:07 | sub8 | undef | HEUR:Trojan-Downloader.Win32.Generic | 0/42 (0.0%) | AS24955 | 92.50.149.126 | vadim@ufanet.ru | RU | RIPE | UBN | 2dd09154a893a70edaa146389d615832 | http://debrup.dyndns.biz/ || 2012-02-09 05:00:14 | sub14 | avira | ADSPY/AdSpy.Gen2 | 27/43 (62.8%) | AS32613 | 174.142.58.233 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-06 | 97234d83993a5b688909a8917fa9ea81 | http://clients.lb1networks.com/data/gp/uninstaller/GPUninstaller.prod.v7351.07022012.exe.97234d83993a5b688909a8917fa9ea81 || 2012-02-09 05:00:14 | sub14 | avira | TR/Crypt.XPACK.Gen | 26/43 (60.5%) | AS24955 | 92.50.149.126 | vadim@ufanet.ru | RU | RIPE | UBN | 679aaa9d9fd1efb3df5f755aa8bd88b1 | http://debrup.dyndns.biz/debrbod.exe || 2012-02-09 05:00:14 | sub14 | avira | DR/VB.Y.2 | 36/43 (83.7%) | AS36351 | 75.126.210.232 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-3 | eef803f8f59092866375b3807108e4f0 | http://d.emule.com/classic-arcade-pack-5-0/classic-arcade-pack-5-0.exe || 2012-02-09 05:00:14 | sub14 | F_Prot | File is damaged | 1/43 (2.3%) | AS8182 | 209.87.181.43 | hostmaster@digitalriver.com | US | ARIN | DIGITALRIVER | 8c055357d0c9e2ab52ad575ea8e91257 | http://dl.filekicker.com/send/file/203586-6155/index.html || 2012-02-09 05:00:27 | sub16 | AntiVir | HEUR/HTML.Malware | 11/41 (26.8%) | AS32392 | 71.18.121.149 | abuse@ecommerce.com | US | ARIN | OPENTRANSFER-ECOMMERCE | 0cb1f2703e9625d02fcc4dfaa5c2ea98 | http://adsuccess.com/newsite/vertical-markets/?level=album&id=22 || 2012-02-09 05:00:27 | sub16 | AntiVir | HEUR/HTML.Malware | 12/43 (27.9%) | AS32392 | 71.18.121.149 | abuse@ecommerce.com | US | ARIN | OPENTRANSFER-ECOMMERCE | bf3ac508f1743e3e23a9c862536eecf5 | http://adsuccess.com/newsite/vertical-markets/?level=album&id=36 || 2012-02-09 05:00:27 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS30968 | 77.221.130.24 | abuse@infobox.ru | RU | RIPE | INFOBOX-NET1 | f72c420d2fe81056fd084204247ce115 | http://ag-socrat.spb.ru/melting.html || 2012-02-09 05:00:27 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS30968 | 77.221.130.24 | abuse@infobox.ru | RU | RIPE | INFOBOX-NET1 | f72c420d2fe81056fd084204247ce115 | http://ag-socrat.spb.ru/thimble.html || 2012-02-09 05:00:28 | sub16 | avira | JS/Infected.C | 23/43 (53.5%) | AS18059 | 116.90.165.138 | abuse@dtp.net.id | ID | APNIC | DTPNET-ID | 74d26f4cec97bd314f394673034148f1 | http://alatkesehatan.co/wp-content/plugins/cart66-lite/js/cart66-library.js?ver=1.1.2 || 2012-02-09 05:00:28 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS18059 | 116.90.165.138 | abuse@dtp.net.id | ID | APNIC | DTPNET-ID | c2f1a97c19789ecb4d4dff3272997880 | http://alatkesehatan.co/wp-content/plugins/google-analyticator/external-tracking.min.js?ver=6.1.3 || 2012-02-09 05:00:28 | sub16 | avira | JS/Infected.C | 20/43 (46.5%) | AS18059 | 116.90.165.138 | abuse@dtp.net.id | ID | APNIC | DTPNET-ID | 0c35e8e26727a56f9129b62fb670aac1 | http://alatkesehatan.co/wp-content/themes/acquisto/js/livetwitter.js?ver=3.2.1 || 2012-02-09 05:00:28 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS18059 | 116.90.165.138 | abuse@dtp.net.id | ID | APNIC | DTPNET-ID | 875715a7335ff7d145e0ea6519e2c075 | http://alatkesehatan.co/wp-content/themes/acquisto/js/modernizr.js || 2012-02-09 05:00:28 | sub16 | avira | JS/Infected.C | 21/43 (48.8%) | AS18059 | 116.90.165.138 | abuse@dtp.net.id | ID | APNIC | DTPNET-ID | fabf7b24e04259c91a8522e3b355e620 | http://alatkesehatan.co/wp-content/themes/acquisto/js/slides.js?ver=3.2.1 || 2012-02-09 05:00:28 | sub16 | avira | JS/Infected.C | 23/42 (54.8%) | AS18059 | 116.90.165.138 | abuse@dtp.net.id | ID | APNIC | DTPNET-ID | e2d781be1c63a101ead6a19452f170bd | http://alatkesehatan.co/wp-content/themes/acquisto/js/superfish.js?ver=3.2.1 || 2012-02-09 05:00:28 | sub16 | avira | HTML/IFrame.nva | 20/43 (46.5%) | AS21788 | 64.191.20.207 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | f112c57db9decc82725050503f0e6ab1 | http://alfacom-dubai.com/productdetails.asp?prodid=157 || 2012-02-09 05:00:28 | sub16 | avira | HTML/Infected.WebPage.Gen3 | 27/43 (62.8%) | AS25653 | 69.72.243.178 | abuse@fortressitx.com | US | ARIN | FORTRESSITX | af9c3071adaf04f964cf3c977ea9f9c7 | http://alfurrsan.com/site/en/modules.php?name=coppermine&cat=2 || 2012-02-09 05:00:28 | sub16 | AVG | Generic5_c.QVH | 15/43 (34.9%) | AS29076 | 193.109.247.47 | abuse@compubyte.vg | VG | RIPE | UCOZ-NET | a2973f7df6ba71ffb7a2157de1552eae | http://all-cod.net/bf3ext_wh.rar || 2012-02-09 05:00:28 | sub16 | eSafe | Win32.MiscDigRiver | 6/42 (14.3%) | AS35916 | 204.13.155.243 | noc@multacom.com | US | ARIN | 2GMCORPNET1 | 440fa8f3e25fa8b0317448cc66736258 | http://allconvertertools.com/download/appletvconvsuite.exe || 2012-02-09 05:00:28 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 19/43 (44.2%) | AS32780 | 174.127.119.6 | arin-contact@hostingservicesinc.net | US | ARIN | HOSTINGSERVICES-INC | c71c9e4a2f46d7c2b682d02731c1312a | http://alotofsportstalk.com/fmirz/admin/nude-in-pool/candice-smith-nude.html || 2012-02-09 05:00:28 | sub16 | avira | JS/Redirect.TX | 24/43 (55.8%) | AS39561 | 89.108.68.81 | abuse@agava.com | RU | RIPE | AGAVA-DATACENTER-NET | 309be735663a77265ffadd272e99a610 | http://alrabmi8.hut2.ru/index.html || 2012-02-09 05:00:28 | sub16 | BitDefender | Script.SWF.Cxx | 4/43 (9.3%) | AS32468 | 209.135.132.62 | ipadmin@primary.net | US | ARIN | INLINK97 | da321a419d505090b2a5bd4acbbe9272 | http://analytic-google.com/content/field.swf || 2012-02-09 05:00:28 | sub16 | undef | unknown_arch_zip | 0/43 (0.0%) | AS32468 | 209.135.132.62 | ipadmin@primary.net | US | ARIN | INLINK97 | f69e6a3bdaace99f4a4444c765921dae | http://analytic-google.com/content/rin.jar || 2012-02-09 05:00:28 | sub16 | BitDefender | Script.SWF.Cxx | 10/40 (25%) | AS32468 | 209.135.132.62 | ipadmin@primary.net | US | ARIN | INLINK97 | 2f29542f0e037b3a710437f23bfdbd07 | http://analytic-google.com/content/score.swf || 2012-02-09 05:00:28 | sub16 | McAfee_GW_Editio | Heuristic.LooksLike.HTML.Suspicious-URL.H | 1/43 (2.3%) | AS32475 | 184.154.131.170 | abuse@singlehop.com | US | ARIN | SINGLEHOP | b873a33affc7a64ae048b232fb91b1f3 | http://anam.sn/wellzz/details.html || 2012-02-09 05:00:28 | sub16 | undef | unknown_arch_zip | 0/43 (0.0%) | AS39561 | 89.108.68.81 | abuse@agava.com | RU | RIPE | AGAVA-DATACENTER-NET | 31c4beccb4ba56bf881196c03fea6ded | http://andr.hut2.ru/bot02.exe.pack || 2012-02-09 05:00:28 | sub16 | Avast | HTML:Iframe-inf | 4/43 (9.3%) | AS24940 | 176.9.7.242 | abuse@hetzner.de | DE | RIPE | DE-HETZNER-20110517 | 09a78dc182717c1f3bc6a8a9ccaca70d | http://anglersground.com/?p=5 || 2012-02-09 05:00:28 | sub16 | avira | HTML/Totee.A | 27/43 (62.8%) | AS5610 | 88.103.247.60 | abuse.cz@o2.com | CZ | RIPE | CZ-CZNET-20051004 | 70e1b249d87f334a2d6bb46bb25232b0 | http://angry.harpy.ru/~geo/stats/user_geo.html || 2012-02-09 05:00:28 | sub16 | avira | JS/Dldr.IFrame.CF | 17/43 (39.5%) | AS33055 | 65.182.100.191 | tparadiso@brinkster.com | US | ARIN | ORF-BRINKSTER-COM | 2c326ce9b2eca8ccf9f0762bb1fcd715 | http://animevizion.net/cpg149/displayimage.php?album=6&pos=2 || 2012-02-09 05:00:28 | sub16 | avira | JS/Dldr.IFrame.CF | 17/43 (39.5%) | AS33055 | 65.182.100.191 | tparadiso@brinkster.com | US | ARIN | ORF-BRINKSTER-COM | 270a1a340fa9397825349916baac8044 | http://animevizion.net/cpg149/displayimage.php?album=lastcomby&cat=0&pos=1&uid=594 || 2012-02-09 05:00:29 | sub16 | avira | HTML/Scriptinf.A.2198 | 15/41 (36.6%) | AS12322 | 212.27.63.105 | abuse@proxad.net | FR | RIPE | FR-PROXAD | 16169ccea4d7add98cfd1fca584948b3 | http://apfe06.free.fr/joomla/index.php?option=com_content&task=view&id=80&Itemid=65 || 2012-02-09 05:10:11 | sub16 | avira | PHISH/AmericaBkFrau | 4/42 (9.5%) | AS27257 | 174.137.191.5 | ipadmin@webair.com | US | ARIN | WEBAIRINTERNET4 | 766ddb6ef00a39320a2cf3dbb1afcdfa | http://arabedesign.net/bankofamerica/onlineverification/index.htm || 2012-02-09 05:10:12 | sub16 | avira | HTML/Crypted.Gen | 25/43 (58.1%) | AS36420, AS30315, AS13749, AS21844 | 174.132.192.194 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-15 | f2e1debd1544ce36c3122e99b3dd6293 | http://aretesaddlery.com/tack/images/uploads/pics/news-826-2008-08-02.html || 2012-02-09 05:10:12 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 34/43 (79.1%) | AS40676 | 208.87.242.158 | noc@psychz.net | US | ARIN | PSYCHZ | 9ebb7830eadefede56602b7607621dcb | http://arizanta.com/Top/Business/Arts_and_Entertainment/Music/Labels/Specialty/Punk/3/ || 2012-02-09 05:10:12 | sub16 | Antiy_AVL | Trojan/JS.Iframe | 16/43 (37.2%) | AS26753, AS31347 | 69.161.141.158 | noc@in2net.com | CA | ARIN | IN2NETWORK | 2698aaf90f659cb7d1e241fb2c77d9c6 | http://artamiba.com/heard-on-the-street/index.php || 2012-02-09 05:10:12 | sub16 | avira | JS/Redirector.DC | 22/43 (51.2%) | AS32475 | 173.236.48.82 | netops@singlehop.com | US | ARIN | SINGLEHOP | 57e14a0a19a06a4c2f7565efddb52c5d | http://asia1x1.net/HOME_PAGE/modules/weblinks/myheader--may24.nogifs.php?lid=619 || 2012-02-09 05:10:12 | sub16 | Avast | JS:Illredir-BP [Trj] | 11/43 (25.6%) | AS4618 | 203.150.230.79 | noc@inet.co.th | TH | APNIC | INET-TH | 40a1725e9726f9afc62c5ce9aac6ee50 | http://asialamp.com/pro-bar-compact.htm || 2012-02-09 05:10:12 | sub16 | Avast | JS:Illredir-BP [Trj] | 11/43 (25.6%) | AS4618 | 203.150.230.79 | noc@inet.co.th | TH | APNIC | INET-TH | 62cfbecdcf5135f0500dff0fe1922b3f | http://asialamp.com/pro-frame-compact.htm || 2012-02-09 05:10:12 | sub16 | Avast | JS:Illredir-BP [Trj] | 11/43 (25.6%) | AS4618 | 203.150.230.79 | noc@inet.co.th | TH | APNIC | INET-TH | 09ff5fdb88c438fc337003a7c8a65376 | http://asialamp.com/pro-frame-delux.htm || 2012-02-09 05:10:12 | sub16 | avira | HTML/Dldr.Agent.IW | 31/43 (72.1%) | AS3595 | 69.73.138.162 | abuse@jaguarpc.com | US | ARIN | LH-GOLD-NETWORK | 4adacc46619dcb1436bf525fe7b57945 | http://attachments.innisdale.ca/fire/ || 2012-02-09 05:10:12 | sub16 | avira | HTML/Dldr.Agent.IW | 25/43 (58.1%) | AS3595 | 69.73.138.162 | abuse@jaguarpc.com | US | ARIN | LH-GOLD-NETWORK | e77266eaa541f9d860b5d001fc9b9468 | http://attachments.innisdale.ca/fire/pages/DSC03845.htm || 2012-02-09 05:10:12 | sub16 | avira | HTML/Dldr.Agent.IW | 25/43 (58.1%) | AS3595 | 69.73.138.162 | abuse@jaguarpc.com | US | ARIN | LH-GOLD-NETWORK | 73238751a0035a7006f40988b95a54f5 | http://attachments.innisdale.ca/fire/ThumbnailFrame.htm || 2012-02-09 05:10:12 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS30099 | 64.34.179.136 | abuse@serverbeach.com | US | ARIN | PEER1-SERVERBEACH-02A | 958e79ed5d53e9b4a456e205eb43c0cf | http://audiobloc.com/apps/PEI/ || 2012-02-09 05:10:12 | sub16 | avira | JS/Dldr.Agent.BJZ | 16/43 (37.2%) | AS24557 | 175.107.146.25 | abuse-arf@aussiehq.com.au | AU | APNIC | AUSSIEHQ | 898f1f358d075879ee3bdff42c3923d3 | http://australiancomputers.com.au/shop/index.php?cPath=1&osCsid=bn0o6nusm8tmrldfb8tg9vong3 || 2012-02-09 05:10:12 | sub16 | undef | unknown_file_setup.exe | 0/43 (0.0%) | AS36351 | 174.37.242.101 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-7 | 1b0425ad11c18a124627f02fa19f7419 | http://avlandesign.com/bc.zip || 2012-02-09 05:10:12 | sub16 | undef | unknown_html_RFI_eval | 1/43 (2.3%) | AS32613 | 209.172.45.145 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-01 | c2587e8f4adfdfeb607cffbf26fb9419 | http://awardsex.juicynetwork.com/(S(ra00dmiz21w3bu45mhrt4f45) || 2012-02-09 05:10:12 | sub16 | undef | unknown_html_RFI_eval | 1/43 (2.3%) | AS32613 | 209.172.45.145 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-01 | f7f43eaabd65ae21704e9dc56b4da937 | http://awardsex.juicynetwork.com/(S(rlo55ze1wowsq545o2fjtayw) || 2012-02-09 05:10:12 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 26/43 (60.5%) | AS25973, AS35937, AS36025, AS6130, AS15244 | 216.97.231.220 | hostmaster@lunarpages.com | US | ARIN | ADD2NET-DOT-COM | 9d867cee4f15943329e0b5ee09edf0cf | http://axlemachine.com/linkmachine/admin/ficeb-stars/hearthmaster-fireplace.html || 2012-02-09 05:10:12 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 26/43 (60.5%) | AS25973, AS35937, AS36025, AS6130, AS15244 | 216.97.231.220 | hostmaster@lunarpages.com | US | ARIN | ADD2NET-DOT-COM | 1132ca554a4c41a89aa60b6bdbc55cdb | http://axlemachine.com/linkmachine/admin/ficeb-stars/lincospectin.html || 2012-02-09 05:10:12 | sub16 | avira | HTML/Redirect.B | 29/42 (69%) | AS4837 | 116.255.145.178 | abuse@cnc-noc.net | CN | APNIC | GIANT | db27c41d83244a4c7198d5ff8619647a | http://aybus.ha.cn/busbbs/dispbbs.asp?BoardID=4&replyID=146&id=45&skin=0 || 2012-02-09 05:10:12 | sub16 | avira | HTML/IFrame.era | 18/43 (41.9%) | AS4766 | 211.62.35.151 | abuse@kornet.net | kr | APNIC | KORNET-INFRA000001 | 6336ca62ed4659632333abec2f87e3a1 | http://bandotel.com/bbs/delete.php?id=board&page=1&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=3232 || 2012-02-09 05:10:12 | sub16 | avira | JS/Redirector.MR | 10/43 (23.3%) | AS25074 | 78.138.97.197 | abuse@dediserv.eu | DE | RIPE | DE-DEDISERV | f698013d9e56e0eaf0cbca54cf5073f9 | http://barokko-az.com/?cat=8 || 2012-02-09 05:10:13 | sub16 | avira | JS/Redirector.MR | 10/43 (23.3%) | AS25074 | 78.138.97.197 | abuse@dediserv.eu | DE | RIPE | DE-DEDISERV | 60143f642b2cf91f8f65768d82c6b116 | http://barokko-az.com/?page_id=512&lang=ru || 2012-02-09 05:10:13 | sub16 | avira | HTML/IFrame.jurs | 12/43 (27.9%) | AS36444, AS2828 | 207.45.187.130 | abuse@acenet-inc.net | US | ARIN | ACENETMI | f33fe1166064e93506ddc2936b689d37 | http://barr.ws/BIR/index.php?sid=08c98f1e2ad125b795e7a0151565d22c || 2012-02-09 05:10:13 | sub16 | avira | HTML/IFrame.jurs | 12/43 (27.9%) | AS36444, AS2828 | 207.45.187.130 | abuse@acenet-inc.net | US | ARIN | ACENETMI | dd9c5bfd563f2f20f518c13cbe9bfa5c | http://barr.ws/BIR/index.php?sid=572f9608fcf401d93b4a406bfc49f31e || 2012-02-09 05:10:13 | sub16 | avira | JS/Redirector.JM | 23/43 (53.5%) | AS26347 | 69.163.248.207 | netops@dreamhost.com | US | ARIN | DREAMHOST-BLK9 | 3cad7a84185e80c23571fc1033052f0e | http://bassbyte.com/ramp/ || 2012-02-09 05:10:13 | sub16 | avira | JS/iFrame.IQ | 19/43 (44.2%) | AS16276 | 213.186.33.19 | abuse@ovh.net | FR | RIPE | OVH | e2f1134d568a70d700dbaf05448dfbd3 | http://batistock.fr/contact.htm || 2012-02-09 05:10:13 | sub16 | avira | JS/iFrame.IQ | 19/43 (44.2%) | AS16276 | 213.186.33.19 | abuse@ovh.net | FR | RIPE | OVH | 653463e029f02e874cbf02184e0f4acc | http://batistock.fr/deco.htm || 2012-02-09 05:10:13 | sub16 | avira | JS/iFrame.IQ | 19/43 (44.2%) | AS16276 | 213.186.33.19 | abuse@ovh.net | FR | RIPE | OVH | 19c5ea19e664260daf50864db42473b7 | http://batistock.fr/peint.htm || 2012-02-09 05:10:13 | sub16 | avira | JS/iFrame.IQ | 19/43 (44.2%) | AS16276 | 213.186.33.19 | abuse@ovh.net | FR | RIPE | OVH | 34ca9646049656e893ffdc0d9b9eab76 | http://batistock.fr/revet.htm || 2012-02-09 05:10:13 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS4134 | 202.103.221.20 | hostmaster@gx163.net | CN | APNIC | CHINANET-GX | 50c906b69425a7283ac986fde60187b8 | http://bbs.jk136.com/images/js/count.exe || 2012-02-09 05:10:15 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS262707 | 187.109.163.42 | joaomartins2000@hotmail.com | BR | LACNIC | 007.303.646/0001-97 | 450ce145bd11af4b744fa55e8af0eacd | http://redefarol.com.br/henrope.php?rahgmailID=3D69 || 2012-02-09 05:10:16 | sub16 | undef | unknown_html_google_malware | 0/40 (0.0%) | AS30447 | 64.29.145.9 | admin@internetnamesforbusiness.com | US | ARIN | MEGA-2 | c07bb19280beb31ad225cbe3274ed59b | http://www.dlmmanufacturing.com/ || 2012-02-09 05:10:18 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS23650 | 61.155.152.150 | abuse@jsinfo.net | CN | APNIC | CHINANET-JS | f72c420d2fe81056fd084204247ce115 | http://www.weiyigift.com/contemporaries.html || 2012-02-09 05:30:30 | sub16 | Avast | JS:Redirector-NH [Trj] | 14/43 (32.6%) | AS8560 | 82.165.124.222 | abuse@1and1.com | DE | RIPE | SCHLUND-SHARED | 40951f5d210b2d81d5181e02ae381560 | http://bridge-partners.de/main_kontakt.html || 2012-02-09 05:30:30 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS36420, AS30315, AS13749, AS21844 | 67.19.193.242 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-11 | 97dc00f7cddb0d893a0416d704ec81d0 | http://btnr.com/anglemont/house/_images/blonde-hairy/britany-underwear.html || 2012-02-09 05:30:30 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS36420, AS30315, AS13749, AS21844 | 67.19.193.242 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-11 | 65046701e3e61fe0b94fc5cd46eadddb | http://btnr.com/anglemont/house/_images/blonde-hairy/collin-ferell-sex-tape.html || 2012-02-09 05:30:30 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS36420, AS30315, AS13749, AS21844 | 67.19.193.242 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-11 | e04110f80a68330bb85a2ca6e7da33c4 | http://btnr.com/anglemont/house/_images/blonde-hairy/gay-wont-adds.html || 2012-02-09 05:30:30 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS36420, AS30315, AS13749, AS21844 | 67.19.193.242 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-11 | 6f83b4d7b816e1d2011e0f92319a75f0 | http://btnr.com/anglemont/house/_images/blonde-hairy/hentai-sim-girls-2.html || 2012-02-09 05:30:30 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS36420, AS30315, AS13749, AS21844 | 67.19.193.242 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-11 | aa0a8f0c75bb9166b344811406dcefc2 | http://btnr.com/anglemont/house/_images/blonde-hairy/pedeo-pussy.html || 2012-02-09 05:30:30 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS36420, AS30315, AS13749, AS21844 | 67.19.193.242 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-11 | 8b0639e897f2facbd56a8e1d24367109 | http://btnr.com/anglemont/house/_images/blonde-hairy/xbuster-mature.html || 2012-02-09 05:30:30 | sub16 | Avast | Win32:Elderado-B Trj | 4/43 (9.3%) | AS21788 | 66.197.198.204 | abuse@hostnoc.net | US | ARIN | HOSTNOC-2BLK | cc217d5d68dc035aba67cabc0be96065 | http://btwebtasarim.somee.com/images/logo.gif?15be6=801558 || 2012-02-09 05:30:30 | sub16 | Avast | Win32:Elderado-B Trj | 4/43 (9.3%) | AS21788 | 66.197.198.204 | abuse@hostnoc.net | US | ARIN | HOSTNOC-2BLK | cc217d5d68dc035aba67cabc0be96065 | http://btwebtasarim.somee.com/images/logo.gif?168b7=184686 || 2012-02-09 05:30:30 | sub16 | avira | JS/Obfuscator.pse | 17/43 (39.5%) | AS36351 | 96.125.167.124 | ipadmin@websitewelcome.com | US | ARIN | WW-2011-A-NET | e9176eb1b506e8cb7ce6317fb6c5ce10 | http://burnthefatworkout.com/getmoreonlinecustomers.com/contact-form.html || 2012-02-09 05:30:30 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS27715 | 200.234.196.186 | regcom@locaweb.com.br | BR | LACNIC | 002.351.877/0001-52 | 9a039d8be93611b23e5d2aaebe6136d4 | http://camaracariacica.es.gov.br/ || 2012-02-09 05:30:30 | sub16 | undef | Trojan.Heur.gm0@cnTLDHbi | 0/43 (0.0%) | AS33182 | 72.29.80.241 | abuse@dimenoc.com | US | ARIN | HOSTDIME-PI-1 | d4a309e1d50ba9c95c66d27b1b14e208 | http://canadiandreamjob.com/toolbar/ || 2012-02-09 05:30:30 | sub16 | avira | JS/iFrame.yor | 30/43 (69.8%) | AS23352 | 205.234.223.153 | alex.k@hostforweb.com | US | ARIN | SCNET-HFW-205-234-222-0 | 54c8c0fa5efd97354a0170826534327b | http://cash-assur.com/images/logo/thumbs/text358.htm || 2012-02-09 05:30:30 | sub16 | avira | TR/Agent.cada.12088 | 15/43 (34.9%) | AS15497 | 31.28.166.247 | abuse@colocall.net | UA | RIPE | UA-COLOCALL-20110228 | 190bf8296f1d2d210d11c6deed0417d2 | http://catzone.ws/soft/SoftonicDownloader_for_easy-wifi-radar.rar || 2012-02-09 05:30:30 | sub16 | avira | JS/Redirector.pse | 16/43 (37.2%) | AS4134 | 118.122.178.176 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-SC | bdf755b0897c361ef8019ebd8c387680 | http://cd.kdd.cc/R/7RY/ || 2012-02-09 05:31:03 | sub16 | avira | HTML/IFrame.era | 17/41 (41.5%) | AS9697 | 210.109.103.198 | abuse@sejongtelecom.net | KR | APNIC | SEJONGNET-KR | 9cd633442153c77ca9dcd9760b068fe3 | http://bbs.win4net.com/bbs/view.php?id=marketinge&page=1&page_num=20&select_arrange=headnum&desc=&sn=off&ss=on&sc=on&keyword=&category=&no=15 || 2012-02-09 05:31:03 | sub16 | avira | JS/Infected.C | 22/41 (53.7%) | AS16637 | 196.7.147.60 | abuse@mtnbusiness.co.za | ZA | AFRINIC | MTNBUSINESS-196-7-147-0-24 | 57640d8232ed35a66661886d5313cf12 | http://bedscapetown.co.za/wp-content/themes/ecobiz/js/functions.js?ver=3.3.1 || 2012-02-09 05:31:03 | sub16 | avira | JS/Infected.C | 24/41 (58.5%) | AS16637 | 196.7.147.60 | abuse@mtnbusiness.co.za | ZA | AFRINIC | MTNBUSINESS-196-7-147-0-24 | 810e4678eba5cba83bc7f2a25ad25b97 | http://bedscapetown.co.za/wp-content/themes/ecobiz/js/jquery.kwicks.min.js?ver=3.3.1 || 2012-02-09 05:31:03 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS16637 | 196.7.147.60 | abuse@mtnbusiness.co.za | ZA | AFRINIC | MTNBUSINESS-196-7-147-0-24 | 319a40620d9850c3d22b09a3c976f2aa | http://bedscapetown.co.za/wp-content/themes/ecobiz/js/jquery.nivo.slider.pack.js?ver=3.3.1 || 2012-02-09 05:31:03 | sub16 | avira | JS/Infected.C | 23/43 (53.5%) | AS16637 | 196.7.147.60 | abuse@mtnbusiness.co.za | ZA | AFRINIC | MTNBUSINESS-196-7-147-0-24 | 709a7abaa203c4ff33c1f9c102fc5997 | http://bedscapetown.co.za/wp-content/themes/ecobiz/js/jquery.prettyPhoto.js?ver=3.3.1 || 2012-02-09 05:31:03 | sub16 | avira | JS/Infected.C | 25/43 (58.1%) | AS16637 | 196.7.147.60 | abuse@mtnbusiness.co.za | ZA | AFRINIC | MTNBUSINESS-196-7-147-0-24 | 9f20d715d480f95ec018776aaaf5c2a0 | http://bedscapetown.co.za/wp-content/themes/ecobiz/js/jqueryslidemenu.js?ver=3.3.1 || 2012-02-09 05:31:03 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS16637 | 196.7.147.60 | abuse@mtnbusiness.co.za | ZA | AFRINIC | MTNBUSINESS-196-7-147-0-24 | 81c26ea6875ea682412aa5d63667611e | http://bedscapetown.co.za/wp-content/themes/ecobiz/js/jquery.tools.tabs.min.js?ver=3.3.1 || 2012-02-09 05:31:07 | sub16 | avira | JS/Infected.C | 26/43 (60.5%) | AS26347 | 69.163.158.85 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK9 | 48b390d9a0a1a28327c702cadf7113ef | http://chattee.info/wp-content/themes/OccenaDentalOffice/epanel/page_templates/js/fancybox/jquery.fancybox-1.2.6.pack.js?_=1328659229656 || 2012-02-09 05:31:07 | sub16 | avira | HTML/Drop.VBS.A | 35/43 (81.4%) | AS36351 | 208.43.120.187 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-6 | 91bb0af967ca9fb900952506d82f0470 | http://cheapdhakaflights.com/ |+---------------------+-------------+------------------+--------------------------------------------+---------------+---------------------------------------------+-----------------+-------------------------------------+---------+---------+----------------------------+----------------------------------+-----------------------------------------------------------------------------------------------------------------------------------------------+200 rows in set (0.02 sec)
+---------------------+-------------+-----------+-----------------------------+---------------+---------------------------------------+-----------------+------------------------------------+---------+--------+-------------------------+----------------------------------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| date | contributor | scanner | virusname | vt_score | AS | review | email | country | source | netname | md5sum | url |+---------------------+-------------+-----------+-----------------------------+---------------+---------------------------------------+-----------------+------------------------------------+---------+--------+-------------------------+----------------------------------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| 2012-02-09 05:31:07 | sub16 | avira | TR/Packed.30993 | 22/43 (51.2%) | AS12314 | 212.42.63.218 | root@ropnet.ru | RU | RIPE | RU-ROPNET-990301 | 56baae8b849df3a57aa58c1bc8b1e90f | http://cheathall.playground.ru/0/6/hlkeygen.rar || 2012-02-09 05:31:07 | sub16 | Avast | Win32:PUP-gen [PUP] | 11/43 (25.6%) | AS12314 | 212.42.63.218 | root@ropnet.ru | RU | RIPE | RU-ROPNET-990301 | d3521402960ac8b8ee3de2db707c2e47 | http://cheathall.playground.ru/6/5/tvm-whbm.rar || 2012-02-09 05:31:07 | sub16 | avira | HTML/Crypted.Gen | 27/42 (64.3%) | AS36420, AS30315, AS13749, AS21844 | 184.173.207.99 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-17 | d2dd75880901c949a7aafd166aeace97 | http://chicago-connection.com/vision-realty.com/media/com_jea/imports/kaye-eldridge/308-bullets-pulled.html || 2012-02-09 05:31:08 | sub16 | avira | ADSPY/NaviPromo.J | | AS41550 | 91.207.44.10 | abuse@hostbizua.com | UA | RIPE | FUIR-MNT | 960fd3ffca1b6c0fad5ea4f959039fcc | http://falcogames.com/MouseAvoidSetup.exe || 2012-02-09 07:52:15 | sub16 | avira | HTML/Infected.WebPage.Gen2 | | AS24940 | 78.46.36.176 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET | 5c0764fc5d76b94f3db1b83bc642aad3 | http://kata.altervista.org/immagini/_img/backup/natural-vaccination-breast-milk.html || 2012-02-09 07:52:15 | sub16 | avira | HTML/Rce.Gen | | AS30447 | 64.29.151.221 | admin@internetnamesforbusiness.com | US | ARIN | MEGA-2 | 7a40b52c047e3c1640e9838db6cb9777 | http://keycard.org/todd-green || 2012-02-09 07:52:16 | sub16 | undef | unknown_html_RFI_eval | | AS25532 | 90.156.201.31 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-HOSTING | a1a8cb16a060f6280a767187fd22e037 | http://kino0.ru/engine/classes/js/jquery.js || 2012-02-09 07:52:16 | sub16 | undef | unknown_html_google_malware | | AS8220 | 212.78.185.210 | abuse@uk.colt.net | NL | RIPE | NET-NL-EASYSERVER | f72c420d2fe81056fd084204247ce115 | http://klantenmonitor.nl/unsure.html || 2012-02-09 07:52:16 | sub16 | undef | unknown_html_google_malware | | AS34619 | 89.19.27.27 | abuse@cizgi.net.tr | TR | RIPE | TR-CIZGI-20060816 | 38483c76982ccd0d38a4e001f55b47c7 | http://kobi-kosid.com/reformatting.html || 2012-02-09 07:52:16 | sub16 | avira | TR/Crypt.TPM.Gen | | AS24940 | 78.47.35.52 | abuse@hetzner.de | DE | RIPE | DE-HETZNER-20070416 | 4b2ffc203e3bafc16f77d3a7a2b8aa34 | http://kolebot.com/down/euko1030.9.rar || 2012-02-09 07:52:16 | sub16 | undef | unknown_html_RFI_eval | | AS49189 | 188.120.40.95 | abuse@ruweb.net | RU | RIPE | RUWEB | af2037c22d71f0e80e96f20670340343 | http://ks-professional.ru/forum/index.php/style.php?id=1&lang=en&sid=55dda64b0bf65c7364246d47a6385e17 || 2012-02-09 07:52:16 | sub16 | undef | unknown_html_RFI_eval | | AS49189 | 188.120.40.95 | abuse@ruweb.net | RU | RIPE | RUWEB | 2791a7d2d597b0d2a2973735ae714c8f | http://ks-professional.ru/forum/index.php/style.php?id=1&lang=en&sid=c6e366b40ba1197732b8ce34875c32fa || 2012-02-09 07:52:16 | sub16 | avira | HTML/IFrame.era | | AS4766 | 14.33.226.32 | abuse@kornet.net | KR | APNIC | KORNET | 5c102c7dc1e9ae486390aae09068660e | http://kum1500.net/view.php?id=gongji&page=1&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=145 || 2012-02-09 07:52:16 | sub16 | avira | HTML/IFrame.era | | AS4766 | 14.33.226.32 | abuse@kornet.net | KR | APNIC | KORNET | deee091985c1807ca694c529ee503dda | http://kum1500.net/view.php?id=text&no=3944 || 2012-02-09 07:52:16 | sub16 | avira | TR/StartPage.RS | | AS35540 | 87.98.239.48 | abuse@ovh.net | PL | RIPE | PL-OVH | 4dfd8b01c3c8ad14277f497c78bebacb | http://kupa.info/hackme/download/delphi/source/!ANewTrojan.rar || 2012-02-09 07:52:16 | sub16 | avira | JS/StyleSheeter.A | | AS24940 | 78.47.222.220 | piotr@gmx.pl | DE | RIPE | YOYO-SP-Z-OO | b5b9d8839484084a38773621d46e7e27 | http://kura.yoyo.pl/cfbdae/convictedpediphilesinmyarea.html || 2012-02-09 07:52:16 | sub16 | avira | HTML/IFrame.era | | AS3786 | 118.129.167.38 | shkim082@chol.com | KR | APNIC | BORANET-KR | a5766486b49a029f1308bf0fa34891aa | http://kyante.com/bbs/view.php?id=board&page=17&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=874 || 2012-02-09 07:52:16 | sub16 | avira | HTML/IFrame.era | | AS3786 | 118.129.167.38 | shkim082@chol.com | KR | APNIC | BORANET-KR | accb7071cb08f14e7dee65946b4e5470 | http://kyante.com/bbs/view.php?id=board&page=1&page_num=17&select_arrange=headnum&desc=&sn=off&ss=on&sc=on&keyword=&no=614&category= || 2012-02-09 07:52:16 | sub16 | avira | TR/Kazy.53825.29 | 20/43 (46.5%) | AS6539 | 65.255.235.50 | western.gt@bell.ca | CA | ARIN | GT-65-255-235-0 | ca11cd5789ff8cfeb286e9729584c901 | http://largedocument.com/2/2824bc47/Runescape.exe || 2012-02-09 07:52:16 | sub16 | avira | ADWARE/SMSHoax.71.3 | 24/43 (55.8%) | AS26347 | 69.163.165.69 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK9 | b374dfa5144d88cd9e0f1aeca85f7be2 | http://lauraandnate.com/album.php?Facebook.com-IMG779759.JPG || 2012-02-09 07:52:16 | sub16 | avira | HTML/Crypted.Gen | 16/42 (38.1%) | AS34221 | 217.199.218.172 | dn@quickline.ru | RU | RIPE | QL-LAN-LL1 | feeecec40b3b7b0c46530981872ae438 | http://lddt.info/uploads/m7y7r0z/bontril_meridia_xenical.html || 2012-02-09 07:52:16 | sub16 | avira | HTML/Crypted.Gen | 16/43 (37.2%) | AS34221 | 217.199.218.172 | dn@quickline.ru | RU | RIPE | QL-LAN-LL1 | b718263f5a18f0679c18a2f9bb8eef51 | http://lddt.info/uploads/m7y7r0z/book_com_discount_guest_jodie_meridia_site.html || 2012-02-09 07:52:16 | sub16 | avira | HTML/Crypted.Gen | 16/43 (37.2%) | AS34221 | 217.199.218.172 | dn@quickline.ru | RU | RIPE | QL-LAN-LL1 | e768e23e2dfe0cb57e250e2a0c76a2ca | http://lddt.info/uploads/m7y7r0z/cheap_meridia_buy_online.html || 2012-02-09 07:52:16 | sub16 | avira | HTML/Crypted.Gen | 15/41 (36.6%) | AS34221 | 217.199.218.172 | dn@quickline.ru | RU | RIPE | QL-LAN-LL1 | 38d3cd69b986306f2b34570af35e08af | http://lddt.info/uploads/m7y7r0z/cheap_meridia_online_pharmacy.html || 2012-02-09 07:52:16 | sub16 | avira | HTML/Crypted.Gen | 16/42 (38.1%) | AS34221 | 217.199.218.172 | dn@quickline.ru | RU | RIPE | QL-LAN-LL1 | 6d634f91c5f64c25fb204aa03cc6dd24 | http://lddt.info/uploads/m7y7r0z/district_of_columbia_meridia_legal.html || 2012-02-09 07:52:16 | sub16 | avira | HTML/Crypted.Gen | 16/42 (38.1%) | AS34221 | 217.199.218.172 | dn@quickline.ru | RU | RIPE | QL-LAN-LL1 | d5a7a7b96cb264da7b09a977a3c38c9b | http://lddt.info/uploads/m7y7r0z/indiana_meridia_corporate_contracts.html || 2012-02-09 07:52:16 | sub16 | avira | HTML/Crypted.Gen | 16/43 (37.2%) | AS34221 | 217.199.218.172 | dn@quickline.ru | RU | RIPE | QL-LAN-LL1 | 498176fde2bce1886fac265a76c833fd | http://lddt.info/uploads/m7y7r0z/indiana_meridia_resource_center.html || 2012-02-09 07:52:16 | sub16 | avira | HTML/Crypted.Gen | 16/42 (38.1%) | AS34221 | 217.199.218.172 | dn@quickline.ru | RU | RIPE | QL-LAN-LL1 | c01a3a57819bab32fd5a73590c016f7b | http://lddt.info/uploads/m7y7r0z/lonamin_meridia.html || 2012-02-09 07:52:16 | sub16 | avira | HTML/Crypted.Gen | 16/43 (37.2%) | AS34221 | 217.199.218.172 | dn@quickline.ru | RU | RIPE | QL-LAN-LL1 | 5fcc14f0973865946b715020af0e4d46 | http://lddt.info/uploads/m7y7r0z/meridia_drug_online.html || 2012-02-09 07:52:16 | sub16 | avira | HTML/Crypted.Gen | 16/43 (37.2%) | AS34221 | 217.199.218.172 | dn@quickline.ru | RU | RIPE | QL-LAN-LL1 | c8ec6f3e9aa3e3d7cdf64813ae654757 | http://lddt.info/uploads/m7y7r0z/meridia_medical_group_ohio.html || 2012-02-09 07:52:16 | sub16 | avira | HTML/Crypted.Gen | 15/41 (36.6%) | AS34221 | 217.199.218.172 | dn@quickline.ru | RU | RIPE | QL-LAN-LL1 | 9aeb41dc92000d17a40a0e6b6973a52f | http://lddt.info/uploads/m7y7r0z/meridia_weight_loss_programs.html || 2012-02-09 07:52:16 | sub16 | avira | HTML/Crypted.Gen | 15/41 (36.6%) | AS34221 | 217.199.218.172 | dn@quickline.ru | RU | RIPE | QL-LAN-LL1 | f15b6294f55b966aa877c298e2f7f3cb | http://lddt.info/uploads/m7y7r0z/muzhskie_chleny_pornuha.html || 2012-02-09 07:52:16 | sub16 | avira | HTML/Rce.Gen | 28/42 (66.7%) | AS13749, AS21844, AS30315, AS36420 | 74.54.176.35 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | ecb628a83a5f997f5f96dae1fce271e4 | http://lealethenna.com/aboutus.html || 2012-02-09 07:52:16 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS8560 | 74.208.24.249 | abuse@1and1.com | US | ARIN | 1AN1-NETWORK | bea7dfdc93c43ff45d2914a353ca9cb7 | http://lee-designs.com/graphic_ornaments/cd_2/PAG181/_images/mustek-1200-ub-plus-user-manuel/pesant-skirts.html || 2012-02-09 07:52:16 | sub16 | avira | JS/Obfuscated.ZX | 27/43 (62.8%) | AS36420, AS30315, AS13749, AS21844 | 174.120.242.226 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | ca0b835961b4f7c0699a99fc8929f3aa | http://lennedmedia.com/dienstverlening/feed/ || 2012-02-09 07:52:16 | sub16 | avira | HTML/Modifo.A | 23/42 (54.8%) | AS35295 | 80.93.54.49 | abuse@peterhost.ru | RU | RIPE | PETERHOST-PITER | aaa5b91c73b16c27e87d765fbf1d7fa0 | http://leondirect.ru/katalog/ || 2012-02-09 07:52:16 | sub16 | avira | HTML/Modifo.A | 21/43 (48.8%) | AS35295 | 80.93.54.49 | abuse@peterhost.ru | RU | RIPE | PETERHOST-PITER | 2cb8612bd266c2158e16ee1b01f2914b | http://leondirect.ru/katalog/GetUserData.php || 2012-02-09 07:52:16 | sub16 | avira | JS/Infected.C | 23/43 (53.5%) | AS55449 | 175.41.43.40 | apnic@ausweb.com.au | AU | APNIC | AUSWEB | 140e8182588dace6618eb81fc0b22e95 | http://lifecoach.yourfuturenow.com.au/wp-content/plugins/uBillboard/js/billboard.min.js?ver=3.3.1 || 2012-02-09 07:52:16 | sub16 | avira | JS/Infected.C | 23/43 (53.5%) | AS55449 | 175.41.43.40 | apnic@ausweb.com.au | AU | APNIC | AUSWEB | 85e3f38b073025fbd0b91eb8ca0fc207 | http://lifecoach.yourfuturenow.com.au/wp-content/plugins/uBillboard/js/jquery.easing.js?ver=3.3.1 || 2012-02-09 07:52:17 | sub16 | avira | HTML/IFrame.ztd | 13/43 (30.2%) | AS16131 | 84.243.219.11 | abuse@ccchosting.nl | NL | RIPE | GFX-CUST-CCCHOSTING | b8aaf99fc20b9904f12fb5055e730772 | http://littledc.be/web/news.php?readmore=1&/; || 2012-02-09 07:52:17 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 15/43 (34.9%) | AS48933 | 193.36.35.100 | noc@netltd.ru | RU | RIPE | NETSPB1 | ee67a6cd548d54d83bd7729d07e912fc | http://loes.ru/main/gbook/gbook.shtml?guestbook_page=2 || 2012-02-09 07:52:17 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 15/42 (35.7%) | AS48933 | 193.36.35.100 | noc@netltd.ru | RU | RIPE | NETSPB1 | 2d1c0c7f5d292e92fdad073d1c0290b3 | http://loes.ru/main/gbook/gbook.shtml?guestbook_page=5 || 2012-02-09 07:52:17 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 15/43 (34.9%) | AS48933 | 193.36.35.100 | noc@netltd.ru | RU | RIPE | NETSPB1 | 4310a3fe37d7fc54d284add0bc0f2cbd | http://loes.ru/main/gbook/gbook.shtml?guestbook_page=7 || 2012-02-09 07:52:17 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 15/42 (35.7%) | AS48933 | 193.36.35.100 | noc@netltd.ru | RU | RIPE | NETSPB1 | 1a370a51f3df8562674b0bbc45c3c7f8 | http://loes.ru/main/gbook/gbook.shtml?guestbook_page=8 || 2012-02-09 07:52:17 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 15/43 (34.9%) | AS48933 | 193.36.35.100 | noc@netltd.ru | RU | RIPE | NETSPB1 | b4f60019957e046a24716f4ac0ffee02 | http://loes.ru/main/news/news.shtml || 2012-02-09 07:52:17 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS32613 | 184.107.53.150 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-07 | e1ae0f6e2c809c4a0b0b444ff010a24d | http://myposte-posteitaliane-jod-fcc-authentication.bee.pl/ || 2012-02-09 07:52:17 | sub16 | avira | HTML/Xorer | 28/42 (66.7%) | AS13238 | 213.180.199.35 | abuse@yandex.ru | RU | RIPE | YANDEX-199 | 7ea075b3122d0a4eb4324db39ea44765 | http://nadler-too.narod.ru/program/leading.htm || 2012-02-09 07:52:17 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 34/42 (81%) | AS34932 | 217.195.182.32 | abuse@danhost.dk | DK | RIPE | Danhost | 4a79adb05ddb5deaa70b94cfcbac255e | http://natfilm.sweetlemon.dk/forum/memberlist.php?mode=joined&order=ASC&start=9050&sid=b96375bc7de95a7cd2bd1cde7375a6b9 || 2012-02-09 07:52:18 | sub16 | avira | JS/iFrame.psa.16 | 14/43 (32.6%) | AS32475 | 69.175.61.130 | netops@singlehop.com | US | ARIN | SINGLEHOP | 813696c19f7df9dfc5300ae74be06248 | http://netkom.us/wiki/index.php?diff=link=hjexsdsqhkfj.com/ || 2012-02-09 07:52:18 | sub16 | avira | JS/iFrame.psa.16 | 14/42 (33.3%) | AS32475 | 69.175.61.130 | netops@singlehop.com | US | ARIN | SINGLEHOP | e4a330dc7b482b4f69b977680d26d7e7 | http://netkom.us/wiki/index.php?diff=link=tbchmzhttsyj.com/ || 2012-02-09 07:52:18 | sub16 | avira | JS/iFrame.psa.16 | 14/43 (32.6%) | AS32475 | 69.175.61.130 | netops@singlehop.com | US | ARIN | SINGLEHOP | 4b4c6bc82848ff13f1c30478b1075568 | http://netkom.us/wiki/index.php?diff=link=ttkghbvntbjm.com/ || 2012-02-09 07:52:18 | sub16 | avira | JS/iFrame.psa.16 | 14/43 (32.6%) | AS32475 | 69.175.61.130 | netops@singlehop.com | US | ARIN | SINGLEHOP | aea62a1387d27052a2546af5d0373d71 | http://netkom.us/wiki/index.php?diff=url=camtgdspjitw.com/ || 2012-02-09 07:52:18 | sub16 | avira | JS/iFrame.psa.16 | 13/42 (31%) | AS32475 | 69.175.61.130 | netops@singlehop.com | US | ARIN | SINGLEHOP | b6be8a9a5a0dcf45dbf17a361acc43aa | http://netkom.us/wiki/index.php?refs=EditText || 2012-02-09 07:52:18 | sub16 | avira | HTML/Afriem.D | 23/42 (54.8%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | 83afbc7da5c246061f04b9ecc17578f4 | http://neutronbot.com/jonesy/?m=tank& || 2012-02-09 07:52:18 | sub16 | avira | HTML/Afriem.D | 22/43 (51.2%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | 5e02194cc527ffcc0d6d8eae7030f2a9 | http://neutronbot.com/jonesy/?m=TCRobo&n=6 || 2012-02-09 07:52:18 | sub16 | avira | HTML/Afriem.D | 23/43 (53.5%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | cd7d15632bac85867acc6ae8461c6522 | http://neutronbot.com/jonesy/?m=vespa& || 2012-02-09 07:52:18 | sub16 | avira | HTML/Afriem.D | 22/42 (52.4%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | e198e61e77e610dbddc476ec37c301cd | http://neutronbot.com/kevin/?m=agenor&n=2 || 2012-02-09 07:52:18 | sub16 | avira | HTML/Afriem.D | 23/43 (53.5%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | 22eb4bfffd6bfb760aaf322a0dfa2b54 | http://neutronbot.com/kevin/?m=barrow& || 2012-02-09 07:52:18 | sub16 | avira | HTML/Afriem.D | 23/42 (54.8%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | 8346b8a27626304078620c3d1680b64f | http://neutronbot.com/kevin/?m=cycloplin& || 2012-02-09 07:52:18 | sub16 | avira | HTML/Afriem.D | 23/42 (54.8%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | eea59de223c1a383636c5a712f9c6a1f | http://neutronbot.com/kevin/?m=fingobbins& || 2012-02-09 07:52:18 | sub16 | avira | HTML/Afriem.D | 23/42 (54.8%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | a2629fca44e71152b8a2261ed3cca300 | http://neutronbot.com/kevin/?m=gong& || 2012-02-09 07:52:18 | sub16 | avira | HTML/Afriem.D | 22/43 (51.2%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | 720d00cea45aa6af91cefb1f27f58099 | http://neutronbot.com/kevin/?m=heliocopter&n=3 || 2012-02-09 07:52:18 | sub16 | avira | HTML/Afriem.D | 23/43 (53.5%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | 55c2020e461b442faea5f9b527015c38 | http://neutronbot.com/kevin/?m=kidbot& || 2012-02-09 07:52:18 | sub16 | avira | HTML/Afriem.D | 23/43 (53.5%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | d70a3133d2208c79ef542760b73ed055 | http://neutronbot.com/kevin/?m=microfloat& || 2012-02-09 07:52:18 | sub16 | avira | HTML/Afriem.D | 23/43 (53.5%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | 0fd650193160ce2bb9af0e38be38ff03 | http://neutronbot.com/kevin/?m=origins& || 2012-02-09 07:52:18 | sub16 | avira | HTML/Afriem.D | 22/39 (56.4%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | 49a3ef1bb23052bd9e4aba23d400dbda | http://neutronbot.com/kevin/?m=profusuits& || 2012-02-09 07:52:18 | sub16 | Avast | Win32:Gamarue-S [Trj] | 12/39 (30.8%) | AS16276 | 213.186.33.19 | abuse@ovh.net | FR | RIPE | OVH | a1fb244d783eb740afe5b98658e246e1 | http://neverendingtrip.eu/Payments/Order.zip || 2012-02-09 07:52:18 | sub16 | avira | JS/Redirector.MR | 10/43 (23.3%) | AS11798 | 74.220.207.162 | abuse@bluehost.com | US | ARIN | BLUEHOST-NETWORK-2 | df78679cde93a4852125409dbd1d6639 | http://newbestiphone.com/category/iphone-case || 2012-02-09 07:52:18 | sub16 | Antiy_AVL | Trojan/Win32.Genome.gen | 21/41 (51.2%) | AS29076 | 193.109.247.54 | abuse@compubyte.vg | VG | RIPE | UCOZ-NET | 90d756881ed60e7320cc466639f4c5ce | http://newcheats.ru/_ld/0/79_opengl32_multi.rar || 2012-02-09 07:52:18 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS36420, AS30315, AS13749, AS21844 | 70.84.99.69 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-13 | 12768ad82c65cc36320524166d0d8deb | http://newqite.com/iphonemactransfer.dmg || 2012-02-09 07:52:18 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 11/38 (28.9%) | AS32244 | 50.28.7.182 | ipadmin@liquidweb.com | US | ARIN | LIQUIDWEB-10 | 839ba5e95480150099fe4bd754217ceb | http://nintendowii.hclegend.com/?feed=rss2&p=982 || 2012-02-09 07:52:18 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 23/43 (53.5%) | AS34788 | 85.13.129.6 | ip@all-inkl.com | DE | RIPE | DE-ALL-INKL-20050405 | 64e2e1368743d8fa385c72a43f472fa0 | http://nordstadtliga.de/Saison2007/Trikots%20Sparkasse%2030.05.2007/slides/Trikots%20Sparkasse%202007%20029.html || 2012-02-09 07:52:18 | sub16 | avira | TR/Expl.SQLInject.E | 26/40 (65%) | AS2856 | 213.171.218.141 | abuse@fasthosts.co.uk | GB | RIPE | FASTHOSTS-UK-NETWORK | 143ee1907cbb935ebf8b0abdb6461edc | http://northern-monkee.co.uk/pub/bobcat_files/BobCat_Alpha_v0.4.zip || 2012-02-09 07:52:18 | sub16 | avira | HTML/Crypted.Gen | 25/43 (58.1%) | AS3786 | 211.234.111.50 | kidc@hanbiro.com | KR | APNIC | KIDC-KR | f845b18336e022346c3309531f557404 | http://northumbria.co.kr/zboard/icons/zelnrch.htm || 2012-02-09 07:52:18 | sub16 | Avast | JS:Illredir-CB [Trj] | 8/40 (20%) | AS8972 | 85.25.129.7 | abuse@server4you.de | DE | RIPE | SERVER4YOU-1 | 1de280a3b4c31385c381bfbc852ff91b | http://nostilakom.ru/index.php_x=wiwod&t=stat&y=157.html || 2012-02-09 07:52:18 | sub16 | Avast | JS:Illredir-CB [Trj] | 8/42 (19%) | AS8972 | 85.25.129.7 | abuse@server4you.de | DE | RIPE | SERVER4YOU-1 | e062bfac7ee15f89f45e3f7c9417291c | http://nostilakom.ru/index.php_x=wiwod&t=stat&y=172.html || 2012-02-09 07:52:18 | sub16 | Avast | JS:Illredir-CB [Trj] | 8/43 (18.6%) | AS8972 | 85.25.129.7 | abuse@server4you.de | DE | RIPE | SERVER4YOU-1 | 62be5f60e222c0e9a039395bff44ac42 | http://nostilakom.ru/index.php_x=wiwod&t=stat&y=221.html || 2012-02-09 07:52:18 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS32244 | 69.167.173.224 | abuse@liquidweb.com | US | ARIN | LIQUIDWEB-9 | a490b53d1d384315be4f9da8f23b660c | http://novocardapiomultiplus.com.br/Newsletter/Multiplus/Fidelidade/Fevereiro/Cliente/Data/SorteioMensal/11247H4TAM022012/ || 2012-02-09 07:52:18 | sub16 | undef | unknown_html_RFI_shell | 0/41 (0.0%) | AS32244 | 69.167.173.224 | abuse@liquidweb.com | US | ARIN | LIQUIDWEB-9 | 128f5c07bbcc3abb28870ec3ecdc228f | http://novocardapiomultiplus.com.br/Newsletter/Multiplus/Fidelidade/Fevereiro/Cliente/Data/SorteioMensal/11j47H4TAM022012/index.php || 2012-02-09 07:52:18 | sub16 | undef | unknown_html_RFI_shell | 0/40 (0.0%) | AS32244 | 69.167.173.224 | abuse@liquidweb.com | US | ARIN | LIQUIDWEB-9 | 128f5c07bbcc3abb28870ec3ecdc228f | http://novocardapiomultiplus.com.br/Newsletter/Multiplus/Fidelidade/Fevereiro/Cliente/Data/SorteioMensal/11j47H4TAM022012/index.php?BRpage=8308H4TAM312012=XXX@XXX.COM || 2012-02-09 07:52:18 | sub16 | avira | DR/Drop.Agent.cej | 30/43 (69.8%) | AS41947 | 77.91.229.67 | abuse@wahome.ru | RU | RIPE | FATAL-RU | d376568f7a7bfd4203a53d5e924b124e | http://oddcoders.webhost.ru/files/ASTheCross/ASTheCross.zip || 2012-02-09 07:52:18 | sub16 | avira | JS/Infected.C | 23/40 (57.5%) | AS32181 | 69.65.47.64 | abuse@gigenet.com | US | ARIN | IPNAP | 5276c96967492f0192a9d5a22ff8008b | http://oh.404.pe/wp-content/themes/TheStyle/epanel/page_templates/js/et-ptemplates-frontend.js?ver=1.1 || 2012-02-09 07:52:18 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS32181 | 69.65.47.64 | abuse@gigenet.com | US | ARIN | IPNAP | dab42194fd25c6edb33b41d42fe2febd | http://oh.404.pe/wp-content/themes/TheStyle/epanel/page_templates/js/prettyphoto/jquery.prettyPhoto.js?ver=3.0.3 || 2012-02-09 07:52:18 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS32181 | 69.65.47.64 | abuse@gigenet.com | US | ARIN | IPNAP | 1f8295849b135a639257e618ae21fccf | http://oh.404.pe/wp-content/themes/TheStyle/epanel/shortcodes/js/et_shortcodes_frontend.js?ver=1.6 || 2012-02-09 07:52:18 | sub16 | avira | JS/Infected.C | 25/41 (61%) | AS32181 | 69.65.47.64 | abuse@gigenet.com | US | ARIN | IPNAP | b30a394a5a68a008f68302d0f348e204 | http://oh.404.pe/wp-content/themes/TheStyle/js/jquery.hoverIntent.minified.js || 2012-02-09 07:52:18 | sub16 | avira | JS/Infected.C | 23/42 (54.8%) | AS32181 | 69.65.47.64 | abuse@gigenet.com | US | ARIN | IPNAP | 1ec065001a2bb0418598bf822724294e | http://oh.404.pe/wp-content/themes/TheStyle/js/jquery.masonry.min.js || 2012-02-09 07:52:18 | sub16 | avira | JS/Infected.C | 23/43 (53.5%) | AS32181 | 69.65.47.64 | abuse@gigenet.com | US | ARIN | IPNAP | 26268228cb60874939f045bf361e2c38 | http://oh.404.pe/wp-content/themes/TheStyle/js/League_Gothic_400.font.js || 2012-02-09 07:52:18 | sub16 | avira | HTML/IFrame.ers | 21/41 (51.2%) | AS4812 | 61.152.242.116 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-SH | 70986762b640087dda0cf54514e06dac | http://one-art.com/Html/Show_News.asp?ID=333 || 2012-02-09 07:52:19 | sub16 | Antiy_AVL | Trojan/Win32.Agent.gen | 3/43 (7%) | AS18866 | 69.50.209.95 | abuse@atjeuhosting.com | US | ARIN | ATJEU | 03d3295fc1c34a55236093bf5eb6c13a | http://optinsecretsexposed.com/abs/chmodabs.exe || 2012-02-09 07:52:19 | sub16 | undef | unknown_exe | 0/43 (0.0%) | AS18866 | 69.50.209.95 | abuse@atjeuhosting.com | US | ARIN | ATJEU | ff534f17883be69cf2eaf8a832ff932a | http://optinsecretsexposed.com/abs/screenabs.exe || 2012-02-09 07:52:19 | sub16 | undef | unknown_exe | 0/43 (0.0%) | AS18866 | 69.50.209.95 | abuse@atjeuhosting.com | US | ARIN | ATJEU | 3af4137b75917cf49a613948f97aa450 | http://optinsecretsexposed.com/abs/screenabsii.exe || 2012-02-09 07:52:19 | sub16 | undef | unknown_exe | 0/38 (0.0%) | AS18866 | 69.50.209.95 | abuse@atjeuhosting.com | US | ARIN | ATJEU | 945ac9e5e6f0b8ccea0eefab755ed44b | http://optinsecretsexposed.com/abs/screenabsiii.exe || 2012-02-09 07:52:19 | sub16 | undef | unknown_html_google_malware | 0/40 (0.0%) | AS18866 | 69.50.209.95 | abuse@atjeuhosting.com | US | ARIN | ATJEU | 14971f7aaa2642ddbc2ab957f82e4d55 | http://optinsecretsexposed.com/gs/ || 2012-02-09 07:52:19 | sub16 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS21788 | 184.82.109.221 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | 1ceda6564c77dbf447b2f2f3bd1d53f2 | http://ora12.com/filma/wp-content/plugins/contact-form-7/jquery.form.js?ver=2.52 || 2012-02-09 07:52:19 | sub16 | avira | JS/Infected.C | 22/40 (55%) | AS21788 | 184.82.109.221 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | d9ccef271737f47a4943971d1907c159 | http://ora12.com/filma/wp-content/plugins/let-it-snow/script/snowstorm-min.js || 2012-02-09 07:52:19 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS21788 | 184.82.109.221 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | 4d7ebc892b890851e54ec51434cd55fa | http://ora12.com/filma/wp-content/plugins/wp-super-popup/jquery.colorbox-min.js?ver=1198501543 || 2012-02-09 07:52:19 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS21788 | 184.82.109.221 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | 4d7ebc892b890851e54ec51434cd55fa | http://ora12.com/filma/wp-content/plugins/wp-super-popup/jquery.colorbox-min.js?ver=1678709781 || 2012-02-09 07:52:19 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS21788 | 184.82.109.221 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | 4d7ebc892b890851e54ec51434cd55fa | http://ora12.com/filma/wp-content/plugins/wp-super-popup/jquery.colorbox-min.js?ver=1827324736 || 2012-02-09 07:52:19 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS21788 | 184.82.109.221 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | 4d7ebc892b890851e54ec51434cd55fa | http://ora12.com/filma/wp-content/plugins/wp-super-popup/jquery.colorbox-min.js?ver=316335308 || 2012-02-09 07:52:19 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS21788 | 184.82.109.221 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | 4d7ebc892b890851e54ec51434cd55fa | http://ora12.com/filma/wp-content/plugins/wp-super-popup/jquery.colorbox-min.js?ver=362437738 |+---------------------+-------------+-----------+-----------------------------+---------------+---------------------------------------+-----------------+------------------------------------+---------+--------+-------------------------+----------------------------------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------+100 rows in set (0.02 sec)
+---------------------+-------------+-------------+--------------------------------------------------------------------+---------------+---------------------------------------------+-----------------+----------------------------------+---------+--------+----------------------------+----------------------------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| date | contributor | scanner | virusname | vt_score | AS | review | email | country | source | netname | md5sum | url |+---------------------+-------------+-------------+--------------------------------------------------------------------+---------------+---------------------------------------------+-----------------+----------------------------------+---------+--------+----------------------------+----------------------------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| 2012-02-09 07:52:18 | sub16 | avira | HTML/IFrame.ers | 21/41 (51.2%) | AS4812 | 61.152.242.116 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-SH | 70986762b640087dda0cf54514e06dac | http://one-art.com/Html/Show_News.asp?ID=333 || 2012-02-09 07:52:19 | sub16 | Antiy_AVL | Trojan/Win32.Agent.gen | 3/43 (7%) | AS18866 | 69.50.209.95 | abuse@atjeuhosting.com | US | ARIN | ATJEU | 03d3295fc1c34a55236093bf5eb6c13a | http://optinsecretsexposed.com/abs/chmodabs.exe || 2012-02-09 07:52:19 | sub16 | undef | unknown_exe | 0/43 (0.0%) | AS18866 | 69.50.209.95 | abuse@atjeuhosting.com | US | ARIN | ATJEU | ff534f17883be69cf2eaf8a832ff932a | http://optinsecretsexposed.com/abs/screenabs.exe || 2012-02-09 07:52:19 | sub16 | undef | unknown_exe | 0/43 (0.0%) | AS18866 | 69.50.209.95 | abuse@atjeuhosting.com | US | ARIN | ATJEU | 3af4137b75917cf49a613948f97aa450 | http://optinsecretsexposed.com/abs/screenabsii.exe || 2012-02-09 07:52:19 | sub16 | undef | unknown_exe | 0/38 (0.0%) | AS18866 | 69.50.209.95 | abuse@atjeuhosting.com | US | ARIN | ATJEU | 945ac9e5e6f0b8ccea0eefab755ed44b | http://optinsecretsexposed.com/abs/screenabsiii.exe || 2012-02-09 07:52:19 | sub16 | undef | unknown_html_google_malware | 0/40 (0.0%) | AS18866 | 69.50.209.95 | abuse@atjeuhosting.com | US | ARIN | ATJEU | 14971f7aaa2642ddbc2ab957f82e4d55 | http://optinsecretsexposed.com/gs/ || 2012-02-09 07:52:19 | sub16 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS21788 | 184.82.109.221 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | 1ceda6564c77dbf447b2f2f3bd1d53f2 | http://ora12.com/filma/wp-content/plugins/contact-form-7/jquery.form.js?ver=2.52 || 2012-02-09 07:52:19 | sub16 | avira | JS/Infected.C | 22/40 (55%) | AS21788 | 184.82.109.221 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | d9ccef271737f47a4943971d1907c159 | http://ora12.com/filma/wp-content/plugins/let-it-snow/script/snowstorm-min.js || 2012-02-09 07:52:19 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS21788 | 184.82.109.221 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | 4d7ebc892b890851e54ec51434cd55fa | http://ora12.com/filma/wp-content/plugins/wp-super-popup/jquery.colorbox-min.js?ver=1198501543 || 2012-02-09 07:52:19 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS21788 | 184.82.109.221 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | 4d7ebc892b890851e54ec51434cd55fa | http://ora12.com/filma/wp-content/plugins/wp-super-popup/jquery.colorbox-min.js?ver=1678709781 || 2012-02-09 07:52:19 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS21788 | 184.82.109.221 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | 4d7ebc892b890851e54ec51434cd55fa | http://ora12.com/filma/wp-content/plugins/wp-super-popup/jquery.colorbox-min.js?ver=1827324736 || 2012-02-09 07:52:19 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS21788 | 184.82.109.221 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | 4d7ebc892b890851e54ec51434cd55fa | http://ora12.com/filma/wp-content/plugins/wp-super-popup/jquery.colorbox-min.js?ver=316335308 || 2012-02-09 07:52:19 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS21788 | 184.82.109.221 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | 4d7ebc892b890851e54ec51434cd55fa | http://ora12.com/filma/wp-content/plugins/wp-super-popup/jquery.colorbox-min.js?ver=362437738 || 2012-02-09 07:52:19 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS21788 | 184.82.109.221 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | 4d7ebc892b890851e54ec51434cd55fa | http://ora12.com/filma/wp-content/plugins/wp-super-popup/jquery.colorbox-min.js?ver=375558207 || 2012-02-09 07:52:19 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS21788 | 184.82.109.221 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | 4d7ebc892b890851e54ec51434cd55fa | http://ora12.com/filma/wp-content/plugins/wp-super-popup/jquery.colorbox-min.js?ver=403174668 || 2012-02-09 07:52:19 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS21788 | 184.82.109.221 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | 4d7ebc892b890851e54ec51434cd55fa | http://ora12.com/filma/wp-content/plugins/wp-super-popup/jquery.colorbox-min.js?ver=448038941 || 2012-02-09 07:52:19 | sub16 | avira | JS/Infected.C | 22/40 (55%) | AS21788 | 184.82.109.221 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | 4d7ebc892b890851e54ec51434cd55fa | http://ora12.com/filma/wp-content/plugins/wp-super-popup/jquery.colorbox-min.js?ver=60158433 || 2012-02-09 07:52:19 | sub16 | avira | JS/Infected.C | 23/43 (53.5%) | AS21788 | 184.82.109.221 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | e2fbeb825dc8c28b86aef52e601f7a33 | http://ora12.com/filma/wp-content/plugins/wp-super-popup/jquery.utils-min.js?ver=1115083945 || 2012-02-09 07:52:19 | sub16 | avira | JS/Infected.C | 23/43 (53.5%) | AS21788 | 184.82.109.221 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | e2fbeb825dc8c28b86aef52e601f7a33 | http://ora12.com/filma/wp-content/plugins/wp-super-popup/jquery.utils-min.js?ver=112376535 || 2012-02-09 07:52:19 | sub16 | avira | JS/Infected.C | 23/43 (53.5%) | AS21788 | 184.82.109.221 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | e2fbeb825dc8c28b86aef52e601f7a33 | http://ora12.com/filma/wp-content/plugins/wp-super-popup/jquery.utils-min.js?ver=1436376740 || 2012-02-09 07:52:19 | sub16 | avira | JS/Infected.C | 23/43 (53.5%) | AS21788 | 184.82.109.221 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | e2fbeb825dc8c28b86aef52e601f7a33 | http://ora12.com/filma/wp-content/plugins/wp-super-popup/jquery.utils-min.js?ver=1444707827 || 2012-02-09 07:52:19 | sub16 | avira | JS/Infected.C | 23/43 (53.5%) | AS21788 | 184.82.109.221 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | e2fbeb825dc8c28b86aef52e601f7a33 | http://ora12.com/filma/wp-content/plugins/wp-super-popup/jquery.utils-min.js?ver=1600319349 || 2012-02-09 07:52:19 | sub16 | avira | JS/Infected.C | 23/43 (53.5%) | AS21788 | 184.82.109.221 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | e2fbeb825dc8c28b86aef52e601f7a33 | http://ora12.com/filma/wp-content/plugins/wp-super-popup/jquery.utils-min.js?ver=1664180494 || 2012-02-09 07:52:19 | sub16 | avira | JS/Infected.C | 23/43 (53.5%) | AS21788 | 184.82.109.221 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | e2fbeb825dc8c28b86aef52e601f7a33 | http://ora12.com/filma/wp-content/plugins/wp-super-popup/jquery.utils-min.js?ver=2014635438 || 2012-02-09 07:52:19 | sub16 | avira | JS/Infected.C | 23/43 (53.5%) | AS21788 | 184.82.109.221 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | e2fbeb825dc8c28b86aef52e601f7a33 | http://ora12.com/filma/wp-content/plugins/wp-super-popup/jquery.utils-min.js?ver=473233031 || 2012-02-09 07:52:19 | sub16 | avira | JS/Infected.C | 23/43 (53.5%) | AS21788 | 184.82.109.221 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | e2fbeb825dc8c28b86aef52e601f7a33 | http://ora12.com/filma/wp-content/plugins/wp-super-popup/jquery.utils-min.js?ver=668688244 || 2012-02-09 07:52:19 | sub16 | avira | JS/Infected.C | 20/38 (52.6%) | AS21788 | 184.82.109.221 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | e2fbeb825dc8c28b86aef52e601f7a33 | http://ora12.com/filma/wp-content/plugins/wp-super-popup/jquery.utils-min.js?ver=995969248 || 2012-02-09 07:52:19 | sub16 | avira | JS/Infected.C | 23/41 (56.1%) | AS21788 | 184.82.109.221 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | 3425e5e39131a62ed7793bdbc695d720 | http://ora12.com/filma/wp-content/themes/videozoom/js/dropdown.js || 2012-02-09 07:52:19 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS21788 | 184.82.109.221 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | 95805e5386ef2566ee9b4b116e10bc5d | http://ora12.com/filma/wp-content/themes/videozoom/js/loopedslider.min.js || 2012-02-09 07:52:23 | sub16 | avira | ADSPY/NaviPromo.J | 14/40 (35%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | e17f2357a877830d761f5464c65e0968 | http://www.toptenreport.com/ematrixsoft/yahoopassworddecryptor_padfile.exe || 2012-02-09 07:52:23 | sub16 | avira | HTML/Small.AV | 16/43 (37.2%) | AS46015 | 110.4.45.55 | noc-abuse@mschosting.com | MY | APNIC | MSCHOSTING | 1950677f203d897080c0326a69e2c338 | http://www.webmastermalaysia.com/ || 2012-02-09 08:01:24 | sub16 | avira | JS/Obfuscated.CF | 23/43 (53.5%) | AS29017 | 83.223.106.10 | noc@gyron.net | GB | RIPE | G-CUST-NB02 | 3658a78e14901b6f0c610fc2d72e8bdc | http://mansons-eyecare.co.uk/catalog/index.php?cPath=55&osCsid=57b775c6da873cc837bc1da6fb716389 || 2012-02-09 08:01:24 | sub16 | avira | JS/iFrame.psa.7 | 20/38 (52.6%) | AS28299 | 189.38.80.77 | abuse@kinghost.com.br | BR | LACNIC | 005.305.671/0001-84 | e89e6ee0d71d0b8f789cea5a3aedcf59 | http://marcuspeixoto.com.br/forum/viewtopic.php?f=2&t=17662&p=87913&sid=99c0d81b85a3e5572457796649ade3cc || 2012-02-09 08:01:24 | sub16 | avira | JS/iFrame.psa.7 | 24/43 (55.8%) | AS28299 | 189.38.80.77 | abuse@kinghost.com.br | BR | LACNIC | 005.305.671/0001-84 | e7785c541dd98fbaf7ff4b78f23143d9 | http://marcuspeixoto.com.br/forum/viewtopic.php?f=2&t=25565 || 2012-02-09 08:01:24 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS32613 | 174.142.215.122 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-06 | d819453252381714d1736278e68e9f02 | http://marinasolares.com/index/Tam/index1.php?=T1pBSoIWnjJ9Zjamb5AK49K4K49ywLOxXitW8qOtfVZnGWEMi4p2FqySXU4S2q9eGMATJFa59qiRxNoDr6aJSsRarAg1eoSOMp7b || 2012-02-09 08:01:24 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS32613 | 174.142.215.122 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-06 | d819453252381714d1736278e68e9f02 | http://marinasolares.com/index/Tam/index.php || 2012-02-09 08:01:24 | sub16 | Avast | Win32:MediaGet-B [PUP] | 6/43 (14%) | AS41947 | 92.241.182.191 | abuse@wahome.ru | RU | RIPE | WAHOME-COLO | 57dcc069648b39615690b6c39c710ce5 | http://mediaget.com/torrent.php?r=h33t&&&&&&&&u=http:%2F%2Fh33t.com%2Fdetails.php?id=5f0fd37e148b21ebbb10ab3a5fb3dc0ee7b78834&&&&&&&&f=2010+Counter-Strike+Source+NonSteam+4231+[[drummwill || 2012-02-09 08:01:24 | sub16 | Avast | Win32:MediaGet-B [PUP] | 6/43 (14%) | AS41947 | 92.241.182.191 | abuse@wahome.ru | RU | RIPE | WAHOME-COLO | 478f9ba2589a54e74ce519e9878bb877 | http://mediaget.com/torrent.php?r=h33t&u=h33t.com/details.php?id=bb8b33389cdff962326b1ad0452f43f91627d348&f=cFosSpeed+6.61+beta+x32x64+ASRock_mod-madeinheaven || 2012-02-09 08:01:24 | sub16 | avira | HTML/Rce.Gen | 8/43 (18.6%) | AS36420, AS30315, AS13749, AS21844 | 174.122.1.108 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | ca0df935daa40482dde588f450d33995 | http://megacompartilhador.com/?option=com_user&view=login&return=aHR0cDovL3d3dy5tZWdhY29tcGFydGlsaGFkb3IuY29tL3JldmlzdGFzLzQyLXJldmlzdGFzLzEyNC1kb3dubG9hZC1sYW5ndWFnZS1uZXR3b3Jrcy10aGUtbmV3LXdvcmQtZ3JhbW1hcg= || 2012-02-09 08:01:24 | sub16 | avira | JS/iFrame.GM.8 | 24/43 (55.8%) | AS34104 | 84.51.37.30 | destek@markum.net | TR | RIPE | MARKUM_BILISIM | f8074154b138cc447ba096188950a063 | http://mehmetkugu.com/ha/haberdetay.asp?bolum=510&uyeid=0&sayfano=1 || 2012-02-09 08:01:24 | sub16 | avira | JS/iFrame.psa.2 | 26/43 (60.5%) | AS35662 | 31.3.230.130 | abuse@dedicatedservercontact.com | GB | RIPE | DSC-CNMGPAKP | 63435e53da66c0c3b7d780141bb012c6 | http://metin2tr.com/archive/index.php/t-11963.html || 2012-02-09 08:01:24 | sub16 | avira | JS/iFrame.psa.2 | 26/43 (60.5%) | AS35662 | 31.3.230.130 | abuse@dedicatedservercontact.com | GB | RIPE | DSC-CNMGPAKP | e39685ad3a2365724ce16ac0aa257059 | http://metin2tr.com/archive/index.php/t-13015.html || 2012-02-09 08:01:24 | sub16 | avira | JS/iFrame.psa.2 | 26/43 (60.5%) | AS35662 | 31.3.230.130 | abuse@dedicatedservercontact.com | GB | RIPE | DSC-CNMGPAKP | e845012330b6c640d4a61978ebae7991 | http://metin2tr.com/archive/index.php/t-13159.html || 2012-02-09 08:01:24 | sub16 | avira | JS/iFrame.psa.2 | 26/43 (60.5%) | AS35662 | 31.3.230.130 | abuse@dedicatedservercontact.com | GB | RIPE | DSC-CNMGPAKP | 52b390505c8a786e539502609c01476f | http://metin2tr.com/archive/index.php/t-13877.html || 2012-02-09 08:01:24 | sub16 | avira | JS/iFrame.psa.2 | 26/42 (61.9%) | AS35662 | 31.3.230.130 | abuse@dedicatedservercontact.com | GB | RIPE | DSC-CNMGPAKP | c39ee97525abfab8f064fafdcc62be41 | http://metin2tr.com/archive/index.php/t-14076.html || 2012-02-09 08:01:24 | sub16 | avira | JS/iFrame.psa.2 | 24/40 (60%) | AS35662 | 31.3.230.130 | abuse@dedicatedservercontact.com | GB | RIPE | DSC-CNMGPAKP | 6bb5ac5b47c4252f671a4b7c9cf9c281 | http://metin2tr.com/archive/index.php/t-15157.html || 2012-02-09 08:01:24 | sub16 | avira | JS/iFrame.psa.2 | 26/43 (60.5%) | AS35662 | 31.3.230.130 | abuse@dedicatedservercontact.com | GB | RIPE | DSC-CNMGPAKP | d8f049cb233c015ca71a10b9e33dc9c7 | http://metin2tr.com/archive/index.php/t-6753.html || 2012-02-09 08:01:24 | sub16 | avira | JS/iFrame.psa.2 | 26/42 (61.9%) | AS35662 | 31.3.230.130 | abuse@dedicatedservercontact.com | GB | RIPE | DSC-CNMGPAKP | e64f654dcfb6558a36c10e657d663030 | http://metin2tr.com/archive/index.php/t-8415.html || 2012-02-09 08:01:24 | sub16 | avira | JS/iFrame.psa.2 | 26/42 (61.9%) | AS35662 | 31.3.230.130 | abuse@dedicatedservercontact.com | GB | RIPE | DSC-CNMGPAKP | e8eaedf2d141fe2c6f940282fd80ba9d | http://metin2tr.com/archive/index.php/t-9210.html || 2012-02-09 08:01:24 | sub16 | avira | JS/Redirector.MR | 9/41 (22%) | AS4250 | 216.185.43.207 | abuse@alentus.com | US | ARIN | ALENT-NBLK-1 | a15983e7733babd91981fbc79a91e247 | http://mexicodestination.net/grand-mayan-acapulco.html || 2012-02-09 08:01:24 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 26/42 (61.9%) | AS25973, AS35937, AS15244 | 67.210.120.10 | hostmaster@lunarpages.com | US | ARIN | ADD2NET-DOT-COM | 9074d78f53c8db15ba0d8f0b43439136 | http://mh201.com/search/admin/vanesa-hudges-nude-pictures/girls-showing-tits.html || 2012-02-09 08:01:24 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 26/43 (60.5%) | AS25973, AS35937, AS15244 | 67.210.120.10 | hostmaster@lunarpages.com | US | ARIN | ADD2NET-DOT-COM | a5e1218ff9aa0e755d213f27f8e16377 | http://mh201.com/search/admin/vanesa-hudges-nude-pictures/moscow-outcall-escort-agency.html || 2012-02-09 08:01:24 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS9280 | 116.0.23.236 | vic@cia.com.au | AU | APNIC | CIA | 1f8295849b135a639257e618ae21fccf | http://mhb.net.au/wp-content/themes/Chameleon/epanel/shortcodes/js/et_shortcodes_frontend.js?ver=1.6 || 2012-02-09 08:01:24 | sub16 | avira | JS/Infected.C | 22/39 (56.4%) | AS9280 | 116.0.23.236 | vic@cia.com.au | AU | APNIC | CIA | b26986aafb949bd9e4f31515564a8a06 | http://mhb.net.au/wp-content/themes/Chameleon/js/jquery.cycle.all.min.js?ver=1.0 || 2012-02-09 08:01:24 | sub16 | avira | JS/Infected.C | 25/43 (58.1%) | AS9280 | 116.0.23.236 | vic@cia.com.au | AU | APNIC | CIA | 0a11ec1fae951f042083522af9287b65 | http://mhb.net.au/wp-content/themes/Chameleon/js/jquery.easing.1.3.js || 2012-02-09 08:01:24 | sub16 | avira | JS/Infected.C | 25/43 (58.1%) | AS9280 | 116.0.23.236 | vic@cia.com.au | AU | APNIC | CIA | ceaaba205d03c74a0ef2c920f15bdb21 | http://mhb.net.au/wp-content/themes/Chameleon/js/superfish.js || 2012-02-09 08:01:24 | sub16 | avira | JS/Infected.C | 21/39 (53.8%) | AS9280 | 116.0.23.236 | vic@cia.com.au | AU | APNIC | CIA | a00212dbda0f6457d55cd13866ed7f5e | http://mhb.net.au/wp-includes/js/comment-reply.js?ver=20090102 || 2012-02-09 08:01:25 | sub16 | avira | JS/Infected.C | 25/43 (58.1%) | AS9280 | 116.0.23.236 | vic@cia.com.au | AU | APNIC | CIA | 976e58b8acc6a9a9f6b63bc10b515f17 | http://mhb.net.au/wp-includes/js/jquery/jquery.js?ver=1.4.4 || 2012-02-09 08:01:25 | sub16 | avira | JS/Infected.C | 23/40 (57.5%) | AS9280 | 116.0.23.236 | vic@cia.com.au | AU | APNIC | CIA | e990ca163d15aab20aa518d2121acdba | http://mhb.net.au/wp-includes/js/l10n.js?ver=20101110 || 2012-02-09 08:01:25 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 26/43 (60.5%) | AS25973, AS35937, AS36025, AS6130, AS15244 | 216.97.236.230 | hostmaster@lunarpages.com | US | ARIN | ADD2NET-DOT-COM | 2b79e4164152c056ba5283f5b4b01593 | http://michelemelina.com/_borders/templates/sanchez-monster-of-cock/hot-mexican-naked-chicks.html || 2012-02-09 08:01:25 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 26/43 (60.5%) | AS25973, AS35937, AS36025, AS6130, AS15244 | 216.97.236.230 | hostmaster@lunarpages.com | US | ARIN | ADD2NET-DOT-COM | 66319d1bae94649d2eb212df7c453bcc | http://michelemelina.com/_borders/templates/sanchez-monster-of-cock/miss-france-begue-nude.html || 2012-02-09 08:01:25 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 26/43 (60.5%) | AS25973, AS35937, AS36025, AS6130, AS15244 | 216.97.236.230 | hostmaster@lunarpages.com | US | ARIN | ADD2NET-DOT-COM | 3477e7b7342596bdeb8a6e1c0cb4f9a7 | http://michelemelina.com/_borders/templates/sanchez-monster-of-cock/nude-cristina-gonzalez-pictures.html || 2012-02-09 08:01:25 | sub16 | avira | JS/Agent.htp | 34/43 (79.1%) | AS12322 | 212.27.63.164 | abuse@proxad.net | FR | RIPE | FR-PROXAD | 23506b305b30b7ade5c8cb41a410d807 | http://milhouse33.free.fr/up.image/ || 2012-02-09 08:01:25 | sub16 | avira | JS/Agent.alf | 22/43 (51.2%) | AS29650 | 79.140.142.22 | abuse@names.co.uk | IE | RIPE | REGISTER365 | 514e3f58cc6b9d08622926e84a6a7418 | http://miloufaber.com/ || 2012-02-09 08:01:25 | sub16 | avira | TR/Dropper.Gen | 34/43 (79.1%) | AS4134 | 121.12.122.152 | abuse@gddc.com.cn | CN | APNIC | CHINANET-GD | 3987ee2de4f1cc2115d6f2554bc72bf2 | http://mi.mm2gg.net:78/QvodSetupPlus09.exe || 2012-02-09 08:10:57 | sub10 | eSafe | Suspicious File | 5/43 (11.6%) | AS23535 | 66.147.234.181 | abuse@hostrocket.com | US | ARIN | HRWEBSERVICES-2 | 8ff624ab3c58fa94b4ea78fb9f9dfafc | http://66.147.234.181/ideasclaro/multimedia/claro.exe || 2012-02-09 08:20:21 | sub16 | avira | JS/Agent.EPI | 11/43 (25.6%) | AS4134 | 118.123.246.139 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-SC | ba97503f55e9a408e197b003826b9697 | http://eastedu.org/bnqz/7school_teacher_part.asp?teacherID=142 || 2012-02-09 08:20:22 | sub16 | avira | JS/Agent.EPI | 10/41 (24.4%) | AS4134 | 118.123.246.139 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-SC | 2cf60363405fc747c4c78eb3b740b69d | http://eastedu.org/bnqz/7school_teacher_part.asp?teacherID=161 || 2012-02-09 08:20:22 | sub16 | avira | JS/Agent.EPI | 10/41 (24.4%) | AS4134 | 118.123.246.139 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-SC | 6920875bf191af08dff1d72485e0bdf7 | http://eastedu.org/bnqz/7school_teacher_part.asp?teacherID=37 || 2012-02-09 08:20:23 | sub16 | BitDefender | Script.SWF.Cxx | 4/40 (10%) | AS24961 | 46.20.35.73 | abuse@fibre1.net | DE | RIPE | DE-FASTIT-20100819 | da321a419d505090b2a5bd4acbbe9272 | http://extra.keepmclose.com/content/field.swf || 2012-02-09 08:20:24 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS29131 | 95.154.222.206 | ip-abuse@nextcard.us | PT | RIPE | NextcardCons-1 | 36e203f55aab983b78af4c5ddfe903ae | http://files.gooofull.com/download.php?id_descarga=32664 || 2012-02-09 08:20:37 | sub16 | DrWeb | Tool.Siggen.6437 | 9/43 (20.9%) | AS4935 | 74.117.220.19 | nocl@directnic.com | KY | ARIN | DIRECTNIC-AMERICAS | d5652952b89a7d2dd47ab2439c5c995c | http://leithauserresearch.com/mffarc.exe || 2012-02-09 08:20:40 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS24940 | 78.46.48.227 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET | c885f4836603d3b61b0e2bced3955f88 | http://mirror1.upwap.ru/d/1563097/eb9452e542a3cf37c2af6f004f2fe96c/Wormix_Search_v1.2.exe || 2012-02-09 08:20:40 | sub16 | avira | JS/Pegel.BR.51139 | 25/43 (58.1%) | AS24940 | 78.47.222.220 | piotr@gmx.pl | DE | RIPE | YOYO-SP-Z-OO | 6490e7cc852cee6f7b93c50a8a8bc7e2 | http://mkbiblioteka.yoyo.pl/ecabfd/demoulasmarketbaskethaverhillma.html || 2012-02-09 08:20:40 | sub16 | avira | JS/Pegel.BR.51139 | 25/43 (58.1%) | AS24940 | 78.47.222.220 | piotr@gmx.pl | DE | RIPE | YOYO-SP-Z-OO | e4ca418908fbba5757a943b6b9f4987c | http://mkbiblioteka.yoyo.pl/ecabfd/map0.html || 2012-02-09 08:20:40 | sub16 | trendmicro | Mal_Hifrm-2 | 17/43 (39.5%) | AS39392 | 88.86.113.152 | obchod@anoweb.cz | CZ | RIPE | SUPERNETWORK-AYACZ-1 | 2671b7202564882b9c635f0578ca85a4 | http://mkracing.wz.cz/vysledky/vys2004.htm || 2012-02-09 08:20:40 | sub16 | avira | TR/Dropper.Gen | 32/43 (74.4%) | AS28968 | 212.59.116.156 | info@eut.ru | RU | RIPE | RU-EUT-20060516 | 0483d3a2356c9434e7afb5951a71f77c | http://mmogamez.ru/assets/files/bots/KarosBot.rar || 2012-02-09 08:20:40 | sub16 | avira | BDS/Pcclient.ors | 18/43 (41.9%) | AS26496 | 97.74.155.34 | noc@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | f9861d8954556e1022ae6a2d127edbef | http://modtw.com/down/Mod.rar || 2012-02-09 08:20:40 | sub16 | Avast | JS:Illredir-CB [Trj] | 10/43 (23.3%) | AS27823 | 200.58.120.5 | ipmaster@hostmar.com | AR | LACNIC | AR-DATT-LACNIC | 97ba9987be26b817a3046f17c72c77d3 | http://motorkit.com.ar/Foro/archive/index.php?t-302.html= || 2012-02-09 08:20:40 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS48689 | 212.57.32.43 | koller@webglobe.sk | SK | RIPE | SK-WEBGLOBE1-20100415 | 8c7f19eb16bba2e208f9380e62a55122 | http://motoservis.sk/_themes/betonov-blok2/_images/long-slow-wet-kisses/amateur-blowjobb.html || 2012-02-09 08:20:40 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS15967 | 77.55.111.43 | abuse@netart.pl | PL | RIPE | NETART | 1a23a7a9a3645074fdb4a6aaa9c38019 | http://mp-dent.pl/wp-content/plugins/nextgen-gallery/js/jquery.cycle.all.min.js?ver=2.88 || 2012-02-09 08:20:40 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS15967 | 77.55.111.43 | abuse@netart.pl | PL | RIPE | NETART | 347f762e6be0282fc60b8bebd58d577d | http://mp-dent.pl/wp-content/plugins/nextgen-gallery/js/ngg.slideshow.min.js?ver=1.05 || 2012-02-09 08:20:40 | sub16 | avira | JS/Infected.C | 22/43 (51.2%) | AS15967 | 77.55.111.43 | abuse@netart.pl | PL | RIPE | NETART | ba6ce76c3981713ba3a2ec03ea82c0b0 | http://mp-dent.pl/wp-content/plugins/nextgen-gallery/shutter/shutter-reloaded.js?ver=1.3.0 || 2012-02-09 08:20:40 | sub16 | avira | JS/Infected.C | 25/43 (58.1%) | AS15967 | 77.55.111.43 | abuse@netart.pl | PL | RIPE | NETART | 66c2039e883afb48f91ef734e3097063 | http://mp-dent.pl/wp-content/themes/InStyle/epanel/page_templates/js/et-ptemplates-frontend.js?ver=1.1 || 2012-02-09 08:20:40 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS15967 | 77.55.111.43 | abuse@netart.pl | PL | RIPE | NETART | 4c4515fe400d5039fc325b648b20283f | http://mp-dent.pl/wp-content/themes/InStyle/epanel/page_templates/js/prettyphoto/jquery.prettyPhoto.js?ver=3.0.3 || 2012-02-09 08:20:40 | sub16 | avira | JS/Infected.C | 25/43 (58.1%) | AS15967 | 77.55.111.43 | abuse@netart.pl | PL | RIPE | NETART | a59390af558bb701d1d5280ecb20a4f5 | http://mp-dent.pl/wp-content/themes/InStyle/epanel/shortcodes/js/et_shortcodes_frontend.js?ver=1.6 || 2012-02-09 08:20:40 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS15967 | 77.55.111.43 | abuse@netart.pl | PL | RIPE | NETART | d83cef7e9d0405d4332c16781ddd087d | http://mp-dent.pl/wp-content/themes/InStyle/js/Colaborate-Regular_400.font.js || 2012-02-09 08:20:40 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS25847 | 64.131.75.19 | ipdept@servint.com | US | ARIN | SERVINT-CIDR-4 | 5c37066d6fdddc55d0d9ba273a7ffa5d | http://msi-antivirus.ce.ms/ || 2012-02-09 08:20:42 | sub16 | avira | JS/iFrame.DV.1 | 15/43 (34.9%) | AS3595 | 205.251.130.234 | engineering@gnax.net | US | ARIN | GNAXNET | 8037292eb18241d6d00e778b255d3cd5 | http://msofficetuneup.com/ || 2012-02-09 08:20:42 | sub16 | avira | JS/iFrame.DV.1 | 15/43 (34.9%) | AS3595 | 205.251.130.234 | engineering@gnax.net | US | ARIN | GNAXNET | 8037292eb18241d6d00e778b255d3cd5 | http://msofficetuneup.com/2007/09/03/presenting-your-marketing-plan || 2012-02-09 08:20:42 | sub16 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS32613 | 174.142.215.122 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-06 | e3a27e047a8bfebae5638f93afbaadb0 | http://mttmotores.com/tam-fidelidade/index.html || 2012-02-09 08:20:42 | sub16 | Avast | JS:Illredir-AX [Trj] | 20/43 (46.5%) | AS19730 | 199.204.248.105 | netops@hostican.com | US | ARIN | HOSTICAN-NETWORK | bd943b4f847d5dbea46e3308e15b4962 | http://mugatxoan.org/amaya-gonzalez-reyes/ || 2012-02-09 08:20:42 | sub16 | avira | JS/iFrame.AV.1 | 13/43 (30.2%) | AS26496 | 208.109.78.133 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | dc495ce998fb5083d805c847e7d12b68 | http://muschis.us/bauernsex/bondagevideo.htm || 2012-02-09 08:20:42 | sub16 | avira | JS/iFrame.AV.1 | 13/43 (30.2%) | AS26496 | 208.109.78.133 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 59dcb80fc0a89c4b03dc1104a613f152 | http://muschis.us/bauernsex/pornobalken.htm || 2012-02-09 08:20:42 | sub16 | avira | HTML/FakeAlert.I | 30/42 (71.4%) | AS2514 | 61.194.62.161 | higuchim@nttpc.co.jp | JP | APNIC | INFOSPHERE | a17fb9388c103f2a0705602b18905ef3 | http://muvreela.searchnavi.jp/3jy4hxu1d/ || 2012-02-09 08:20:48 | sub16 | AntiVir | GAME/Casino.Gen | 16/43 (37.2%) | AS17036, AS22653 | 69.61.74.188 | abuse@cyberwurx.com | US | ARIN | NET-GLOBAL-COMPASS | 7151c994c6dd4db390ee30bd087b23aa | http://www.casinoschule.com/downloads/swisscasino.exe || 2012-02-09 08:20:48 | sub16 | undef | unknown_file_PPT to EXE Converter 7.0/PPT to EXE Converter 7.0.exe | 0/43 (0.0%) | AS26496 | 97.74.27.105 | noc@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 86e5bb678e508a591da98303a85a7a66 | http://www.drmsoft.com/encryption-tool/ppt-to-exe-converter.zip || 2012-02-09 08:20:50 | sub16 | avira | ADSPY/NaviPromo.J | 20/43 (46.5%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 6dd84c7ebace7857e0e168a3256cd76a | http://www.toptenreport.com/spysoftwareking/thinkertec_windowsspy.exe || 2012-02-09 08:40:09 | sub24 | clamav | PUA.Script.PDF.EmbeddedJavaScript | 15/43 (34.9%) | AS36420, AS30315, AS13749, AS21844, AS13884 | 216.12.212.114 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-EV1-2 | 27a48d4329b7bb87b382fc04b10e78d1 | http://216.12.212.114/content/adfp1.php?f=25 || 2012-02-09 08:40:10 | sub24 | clamav | PUA.Script.PDF.EmbeddedJavaScript | 15/43 (34.9%) | AS36420, AS30315, AS13749, AS21844, AS13884 | 216.12.212.114 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-EV1-2 | 238b6a7f3b306abd39b7fffc1fb97a19 | http://216.12.212.114/content/adfp1.php?f=84 || 2012-02-09 08:40:10 | sub24 | clamav | Exploit.PDF-28745 | 13/43 (30.2%) | AS36420, AS30315, AS13749, AS21844, AS13884 | 216.12.212.114 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-EV1-2 | e56f80a6e114f637e27abca7e82d1d04 | http://216.12.212.114/content/adfp2.php?f=34 || 2012-02-09 08:40:11 | sub24 | clamav | Exploit.PDF-28745 | 13/43 (30.2%) | AS36420, AS30315, AS13749, AS21844, AS13884 | 216.12.212.114 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-EV1-2 | 28b65039d56b53e3a8a4f6f4d9a41b93 | http://216.12.212.114/content/adfp2.php?f=62 || 2012-02-09 08:40:11 | sub24 | clamav | Exploit.PDF-28745 | 13/43 (30.2%) | AS36420, AS30315, AS13749, AS21844, AS13884 | 216.12.212.114 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-EV1-2 | 50b076cfa011f6356bb0847af3741719 | http://216.12.212.114/content/adfp2.php?f=82 || 2012-02-09 08:40:11 | sub24 | clamav | Exploit.PDF-28745 | 13/43 (30.2%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | b4af4e1a2917cf6cfe48dc6091e77a07 | http://79.137.237.66/content/adfp2.php?f=145 || 2012-02-09 08:40:11 | sub24 | clamav | Exploit.PDF-28745 | 13/43 (30.2%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | 39a4391e3a6c9ca2b2d9d2dce4d5ccab | http://79.137.237.66/content/adfp2.php?f=227 || 2012-02-09 08:40:11 | sub24 | avira | EXP/Pidief.atm | 21/43 (48.8%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | ccdc1fd386e2125a9d8c5997fec2d7e2 | http://79.137.237.66/content/fdp2.php?f=159 || 2012-02-09 08:40:11 | sub24 | avira | EXP/Pidief.atm | 21/43 (48.8%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | 014157d563b6939e75d76af9cd8c9615 | http://79.137.237.66/content/fdp2.php?f=182 || 2012-02-09 09:00:46 | sub23 | AhnLab_V3 | Trojan/Win32.PornoAsset | 4/43 (9.3%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | aed15d18f336ab208cf41d569ad5b60c | http://os8128.ru/files/1265 || 2012-02-09 09:00:46 | sub23 | AhnLab_V3 | Trojan/Win32.PornoAsset | 9/43 (20.9%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | 8cd4e38c4c71f95d03e3eecd69686e78 | http://os8128.ru/files/1266 || 2012-02-09 09:01:38 | sub9 | clamav | PUA.Script.PDF.EmbeddedJavaScript | 15/43 (34.9%) | AS6830 | 200.126.194.254 | noc@fibertel.com.ar | AR | LACNIC | AR-CASA10-LACNIC | ca1acfdbc18adea008888c1a39c69006 | http://corsoceogpoen.com/content/adp1.php?f=26 || 2012-02-09 09:01:41 | sub10 | BitDefender | Trojan.Generic.7200791 | 10/43 (23.3%) | as44050 | 146.185.244.42 | abuse@pinspb.ru | RU | RIPE | RU-PIN-20110713 | 9bc84c1f547e1782134d5bbb824b6f8a | http://146.185.244.42/tutorial/vdesrecfde.exe |+---------------------+-------------+-------------+--------------------------------------------------------------------+---------------+---------------------------------------------+-----------------+----------------------------------+---------+--------+----------------------------+----------------------------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+111 rows in set (0.04 sec)
+---------------------+-------------+-----------+----------------------------------------------------------------------------------------------------+---------------+------------------------------------+-----------------+-------------------------------------+---------+---------+---------------------------------+----------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| date | contributor | scanner | virusname | vt_score | AS | review | email | country | source | netname | md5sum | url |+---------------------+-------------+-----------+----------------------------------------------------------------------------------------------------+---------------+------------------------------------+-----------------+-------------------------------------+---------+---------+---------------------------------+----------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| 2012-02-09 09:14:18 | sub14 | avira | DR/Dldr.Small.atkz | | AS8422 | 78.35.36.202 | abuse@netcologne.de | DE | RIPE | ARTEGIC | 7ee8ba61e081a00a3f03f18360632262 | http://diebestenbits.de/files/86098ef82c97fa789a47a8d2e8800794/115/dana-setup.exe&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&<br&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&& || 2012-02-09 09:24:37 | sub16 | avira | ADWARE/Relevant.377472 | | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 380fd0b2aa2fd0fcc3478deec8d09984 | http://www.file4me.com/sdownload/sutilites.exe || 2012-02-09 09:31:43 | sub24 | clamav | Exploit.PDF-28745 | | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | e9ef5a6c9d871ad36294351b8b07d965 | http://79.137.237.66/content/adfp2.php?f=156 || 2012-02-09 09:31:43 | sub24 | clamav | Exploit.PDF-28745 | 11/40 (27.5%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | f119d0e2c91c7dfb8e45c0df577f5a7a | http://79.137.237.66/content/adfp2.php?f=234 || 2012-02-09 09:31:43 | sub24 | clamav | Exploit.PDF-28745 | | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | c723ca99b953919e8d3ae05fea99f9c3 | http://79.137.237.66/content/adfp2.php?f=284 || 2012-02-09 09:31:43 | sub24 | undef | unknown_exe | 9/40 (22.5%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | aed15d18f336ab208cf41d569ad5b60c | http://79.137.237.66/files/1265 || 2012-02-09 09:31:43 | sub24 | undef | unknown_exe | 7/40 (17.5%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | 8cd4e38c4c71f95d03e3eecd69686e78 | http://79.137.237.66/files/1266 || 2012-02-09 09:40:08 | sub10 | AVG | Downloader.Zlob.BGFU | 14/42 (33.3%) | AS41390 | 195.3.145.44 | abuse@altnet.lv | LV | RIPE | ALTNET-LV | de9f0c3da3827e91b60c4ccb26e47899 | http://rodenc.in/doc/bdnj3romvgk.exe || 2012-02-09 09:40:08 | sub10 | AVG | Generic27.BBZ | 15/39 (38.5%) | AS41390 | 195.3.145.44 | abuse@altnet.lv | LV | RIPE | ALTNET-LV | 74368fa0320c3223bd53ac856dd52cc7 | http://rodenc.in/doc/bgtrfk5romdf.exe || 2012-02-09 09:40:08 | sub15 | avira | TR/Offend.7187095 | 25/40 (62.5%) | AS31147 | 178.18.243.172 | abuse@inline.de | DE | RIPE | DE-INLINE-20100427 | 5c2202dc12122d7732ecd85ed1123e22 | http://178.18.243.172/l.exe?rwmid=1&/;&/;&/;&/;wmid=284 || 2012-02-09 09:50:36 | sub16 | Kaspersky | HEUR:Trojan.Script.Generic | 2/40 (5%) | AS48881 | 93.115.115.40 | office@datanode.eu | ro | RIPE | SC-DATA-NODE-SRL | c7999f21734ee945cb91b02bb637c2fe | http://ftp.digitalmarketing.ro/cM2Vj9Ph/index.html || 2012-02-09 09:51:05 | sub16 | Comodo | ApplicUnwnt.Win32.AdWare.InstallCore.1 | 4/43 (9.3%) | AS14618 | 107.20.227.210 | ec2-abuse@amazon.com | US | ARIN | AMAZON-EC2-8 | 3d6779d73eba87381e61d4bff47247ba | http://soft.foxtab.com/pdf-reader/gb/sh/?dl=1&adnm=14027981036&lg=en&cc=us&c=1&d || 2012-02-09 09:51:07 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS4134 | 113.107.43.56 | abuse@gddc.com.cn | CN | APNIC | CHINANET-GD | 98616b22d043bd96ac376156d94f6319 | http://www.hahayouxi.com/flash/7987.htm || 2012-02-09 10:10:05 | sub1 | undef | unknown_exe | 15/40 (37.5%) | AS33785 | 41.215.241.34 | admin@citynettelecom.net | EG | AFRINIC | CITYNET-20080821 | e7d32dbff7233c5c71748746f3406ba2 | http://alavarka.com/8loader.exe || 2012-02-09 10:10:05 | sub1 | avira | DR/Delphi.Gen | 33/42 (78.6%) | AS14618 | 107.20.141.233 | ec2-abuse@amazon.com | US | ARIN | AMAZON-EC2-8 | 683b0d13f9442600062f4988761885a5 | http://dl.dropbox.com/u/58780284/arquivol.zip || 2012-02-09 10:10:05 | sub1 | undef | unknown_html_google_malware | 0/40 (0.0%) | AS14618 | 107.22.254.1 | ec2-abuse@amazon.com | US | ARIN | AMAZON-EC2-8 | 2d530f857252ade718f7d6615ffa5d56 | http://dl.dropbox.com/u/60349443/arquivob.zip || 2012-02-09 10:10:05 | sub1 | undef | unknown_file_$_OUTDIR/waitBHOEnable.exe | 0/40 (0.0%) | AS32613 | 72.55.158.70 | abuse@noc.privatedns.com | CA | ARIN | IWEBGROUP | 2a5c1a41e4942a05975a0252efadd477 | http://download.wajam.com/download/wajam_Tuguu.exe || 2012-02-09 10:10:06 | sub1 | avira | ADWARE/PinGuide.d | 29/39 (74.4%) | AS9318 | 180.71.56.233 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | c4ad88e76db08de9bdf12b73b859716c | http://file.sidegreen.com/dst/GuideOn_GO20.exe || 2012-02-09 10:10:06 | sub1 | DrWeb | DLOADER.Trojan | 2/43 (4.7%) | AS17713 | 140.117.42.215 | abuse@mail.nsysu.edu.tw | TW | APNIC | T-NSYSU.EDU.TW-NET | 9820fa93a002837b46ee996156fb8e06 | http://i5cg.servegame.com/cg_020910.exe || 2012-02-09 10:10:06 | sub1 | undef | unknown_exe | 0/42 (0.0%) | AS17713 | 140.117.42.215 | abuse@mail.nsysu.edu.tw | TW | APNIC | T-NSYSU.EDU.TW-NET | bdda5580ac90195d90770f920e643f84 | http://i5cg.servegame.com/cg020910.exe || 2012-02-09 10:10:07 | sub1 | undef | unknown_exe | 9/40 (22.5%) | AS38661 | 114.141.14.19 | luvyong@hclc.co.kr | KR | APNIC | HCLC-KR | f1985d1913d99cabaa6988fc44f96362 | http://www.aceinfosys.co.kr//bbs/data/update/35upjmrlzz.exe || 2012-02-09 10:10:56 | sub16 | Avast | HTML:Iframe-inf | 3/42 (7.1%) | AS14618 | 50.17.195.149 | aes-noc@amazon.com | US | ARIN | AMAZON-EC2-8 | 9b9b3af21f82d58e05c51db90dd488bc | http://www.pabloescobar.in/analytics/in.cgi? || 2012-02-09 10:20:55 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS33182 | 199.168.189.168 | abuse@dimenoc.com | US | ARIN | DIMENOC | de6c8173afaa5cf496b8755e5e8bfee7 | http://www.bestnzb.com/download/downloadnewmovies.exe || 2012-02-09 10:20:57 | sub16 | undef | unknown_exe | 0/38 (0.0%) | AS7097 | 207.150.193.214 | abuse@southwebventures.com | US | ARIN | AFFINITY-AUSTIN | ec71b7951d4ed093be692cd83c16b648 | http://www.sherv.net/Files/Nerdmoticons-Setup.exe || 2012-02-09 10:30:21 | sub16 | avira | TR/VB.Downloader.Gen | 21/40 (52.5%) | AS15201 | 200.98.196.16 | l-registrobr-uol@corp.uol.com.br | BR | LACNIC | 001.109.184/0001-95 | 58a95824209f0442e37cc2dedd0ee982 | http://canchimdarainha.com.br/images/r2/?3780258 || 2012-02-09 10:30:30 | sub16 | undef | unknown_html_google_malware | 0/39 (0.0%) | AS25847 | 64.131.75.19 | ipdept@servint.com | US | ARIN | SERVINT-CIDR-4 | 555de12300505b42fe38dbb37675d12c | http://gooogle.ce.ms/e5c278e334e0f7af6c47c8f8030eb3dd.js || 2012-02-09 10:21:00 | sub5 | avira | PHP/Small.C | 22/42 (52.4%) | AS32613 | 174.142.68.231 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-06 | d495b98faa0915bcc56ffbba7db7c78d | http://infecteur.servebeer.com/my.php?? || 2012-02-09 10:31:02 | sub16 | undef | unknown_file_Jp2lt.exe | 1/40 (2.5%) | AS21844 | 74.52.220.106 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | c96fdc33bf032b57bce84815c4c2acae | http://www.lovebodylanguage.info/puzzles/tas2.exe || 2012-02-09 10:40:07 | sub10 | undef | unknown_exe | 14/39 (35.9%) | AS11754 | 216.59.154.18 | noc@orangeisp.com | US | ARIN | GUS-NET | f84902225999c5ed57b025cbb0f68d8b | http://gzvacgtxs.casinos4you.eu/En-WinPalace.exe || 2012-02-09 10:40:07 | sub10 | avira | TR/Spy.764711.2 | 7/40 (17.5%) | AS24940 | 176.9.44.3 | abuse@hetzner.de | DE | RIPE | DE-HETZNER-20110517 | d5baa4a475e2f4f18c507e7d22dba668 | http://kilosoft.pp.ua/download/Setup_dovk.exe || 2012-02-09 10:40:07 | sub10 | undef | unknown_exe | 13/39 (33.3%) | AS41390 | 195.3.145.44 | abuse@altnet.lv | LV | RIPE | ALTNET-LV | de9f0c3da3827e91b60c4ccb26e47899 | http://rodenc.in:80/doc/bdnj3romvgk.exe || 2012-02-09 03:48:50 | sub8 | undef | Trojan.Win32.FakeAV.kuyl | 1/40 (2.5%) | AS12314 | 212.42.63.218 | root@ropnet.ru | RU | RIPE | RU-ROPNET-990301 | bf941e03dfca38db299642c2a70d8b4f | http://cheathall.playground.ru/6/5/ || 2012-02-09 09:37:03 | sub8 | undef | unknown_html_RFI_shell | 1/38 (2.6%) | AS12314 | 212.42.63.218 | root@ropnet.ru | RU | RIPE | RU-ROPNET-990301 | 8c34410b91bf4ae437d8cc25b02bb478 | http://cheathall.playground.ru/0/6/ || 2012-02-09 09:37:04 | sub8 | Avast | JS:ScriptIP-inf [Trj] | 2/43 (4.7%) | AS15497 | 31.28.166.247 | abuse@colocall.net | UA | RIPE | UA-COLOCALL-20110228 | d45cec9184bab8473627e0d3fec7a3b4 | http://catzone.ws/soft/ || 2012-02-09 09:37:08 | sub8 | undef | W32/River.A | 0/40 (0.0%) | AS29076 | 193.109.247.47 | abuse@compubyte.vg | VG | RIPE | UCOZ-NET | 8fdbd540e192a832b9c307675dc84773 | http://all-cod.net/ || 2012-02-09 09:47:10 | sub8 | undef | HEUR:Trojan-Downloader.Win32.Generic | 0/38 (0.0%) | AS30447 | 64.29.151.221 | admin@internetnamesforbusiness.com | US | ARIN | MEGA-2 | efe1960b4e32a5aa48730e51d5af241a | http://cheapestcloset.net/ || 2012-02-09 10:51:23 | sub16 | avira | DR/PSW.Msnpassword.I | 10/40 (25%) | AS8560 | 82.165.87.129 | abuse@1and1.com | DE | RIPE | SCHLUND-SHARED | 80ed355d583caccd9db395ac5b3d8c0f | http://www.reactive-software.com/instant-messenger/aim-password-recovery-setup.exe || 2012-02-09 10:51:24 | sub16 | avira | TR/Agent.1601760 | 12/41 (29.3%) | AS32475 | 69.175.66.250 | netops@singlehop.com | US | ARIN | SINGLEHOP | bb64ca28a6d4840a334fca476dfbb814 | http://www.trishulsoft.com/exe/sar/Spyware-And-Adware-Removal.exe || 2012-02-09 11:16:41 | sub1 | avira | TR/Crypt.TPM.Gen | 25/40 (62.5%) | AS15201 | 187.17.96.80 | l-registrobr-uol@corp.uol.com.br | BR | LACNIC | 001.109.184/0001-95 | b1e7f60666ade903b33f31748a629f8c | http://nostranet.dominiotemporario.com/mastheu2012/jujuliana.wma || 2012-02-09 11:16:41 | sub1 | undef | unknown_arch_zip | 0/40 (0.0%) | AS38895 | 122.248.245.100 | ec2-abuse@amazon.com | SG | APNIC | AMAZON-EC2-SG | 8103677ed9be148a8b3f542c4590af59 | http://singapoura.systemupdate.co.kr/.RECURSOS/wxp.zip || 2012-02-09 11:30:07 | sub10 | avira | TR/Offend.KD.528721 | 11/39 (28.2%) | AS8315 | 91.200.49.6 | abuse@argeweb.nl | NL | RIPE | ARGEWEB | 643d3d31bd1eb889180589307e40b567 | http://perlamodeschoenen.nl/rapport.pdf.exe || 2012-02-09 11:30:09 | sub10 | avira | ADWARE/Relevant.AY.14 | 13/39 (33.3%) | AS8265 | 195.96.192.10 | abuse@fastnet.it | IT | RIPE | FNIT | 639b6b5497af20528866d4774e4bf34f | http://themes.fastnet.it//files4/zssr.exe || 2012-02-09 11:40:06 | sub15 | undef | unknown_exe | 0/43 (0.0%) | ASNA | 37.59.74.145 | abuse@ripe.net | EU | RIPE | EU-ZZ-37 | 62163585ea584556553bbd31a4f98c2b | http://37.59.74.145/load/8.exe || 2012-02-09 11:40:06 | sub15 | undef | unknown_exe | 0/39 (0.0%) | ASNA | 37.59.74.149 | abuse@ripe.net | EU | RIPE | EU-ZZ-37 | 62163585ea584556553bbd31a4f98c2b | http://37.59.74.149/load/8.exe || 2012-02-09 11:51:05 | sub16 | avira | ADWARE/Relevant.377472 | 11/40 (27.5%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | cd594587eb6188abbf874ae8ff85d9fa | http://www.file4me.com/sdownload/harryinstall.exe || 2012-02-09 11:52:16 | sub16 | undef | unknown_file_Setup.exe | 0/39 (0.0%) | AS28753 | 178.162.137.160 | abuse@imhoster.net | UA | RIPE | imhoster-968946 | 350c0e93c118d4e63e726b72e1e47226 | http://www.rnlogic.com/download/neo-cryptor.zip || 2012-02-09 11:53:31 | sub16 | undef | unknown_exe | 0/40 (0.0%) | AS36420, AS30315, AS13749, AS21844 | 69.56.168.130 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-7 | bb5db672203f2bcfa5174150a5fa6892 | http://xtremedelights.info/chiccokeyfit30puzzle/chiccokeyfit30puzzle.exe || 2012-02-09 12:00:05 | sub17 | avira | JS/Redirector.AK.5 | 7/39 (17.9%) | AS32097 | 204.12.247.106 | abuse@wholesaleinternet.net | US | ARIN | WHOLESALEINTERNET-3 | f0bc1aa9f90a254c9f5aa99f9ca25a23 | http://redhomepage.110mb.com/go2.php?cat=mp3 || 2012-02-09 12:28:51 | sub7 | undef | unknown_html_RFI | 0/40 (0.0%) | AS3595, AS16626 | 207.210.118.4 | abuse@gnax.net | US | ARIN | GNAXNET | c6cb96fcdb72736b68770fb5cd723c96 | http://skadoogle.com/cache/si!19096/p3w400cat0 || 2012-02-09 12:28:51 | sub7 | undef | unknown_html_RFI | 0/43 (0.0%) | AS3595, AS16626 | 207.210.118.4 | abuse@gnax.net | US | ARIN | GNAXNET | 1b8350f80dc2e8722e14d3aa6e5346dc | http://skadoogle.com/cache/si!19096/p3w450cat2 || 2012-02-09 12:40:40 | sub16 | avira | JAVA/Agent.8833 | 20/43 (46.5%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | 634030a5752947225f492cc1c76ab2ce | http://os8128.ru/content/v1.jar || 2012-02-09 12:41:26 | sub16 | avira | HTML/Rce.Gen | 26/43 (60.5%) | AS32613 | 174.142.112.31 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-06 | 3f4e2f36b4eefea307183389cc132d23 | http://otavalosonline.com/killkaykuna/dialogo_alcaldes/suscal.htm || 2012-02-09 12:50:02 | sub7 | undef | unknown_html_RFI | 0/40 (0.0%) | AS36420, AS30315, AS13749, AS21844 | 174.132.77.6 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-15 | da2fc4d0e4ec792e5e566f6d0a2e75f0 | http://cheap-water-fountains-indoor.blogzupp.com/wp-content/themes/easystore-nologo/js/rokbox/ || 2012-02-09 12:51:07 | sub16 | Avast | JS:Redirector-NU [Trj] | 14/43 (32.6%) | AS6724 | 81.169.145.163 | abuse@strato.de | DE | RIPE | STRATO-RZG-KA | 5fff4e77dd02df3abfd9b223ccacea4d | http://papierdesign.de/videos/videos-deutsch/buchbinden-japanischer-stil.html || 2012-02-09 12:51:07 | sub16 | avira | HTML/Modifo.A | 21/40 (52.5%) | AS21844 | 74.52.120.66 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 1c1b53f922db9a9ae618647426075762 | http://parts.net/ || 2012-02-09 12:51:07 | sub16 | avira | HTML/Crypted.Gen | 25/39 (64.1%) | AS32780 | 174.127.110.249 | arin-contact@hostingservicesinc.net | US | ARIN | HOSTINGSERVICES-INC | b0ab68f9b48fca00fdb4f02667915495 | http://pcfixes.org/keril/admin/corridas-internas/meatloaf-recipe-betty-crocker.html || 2012-02-09 12:51:07 | sub16 | avira | HTML/Crypted.Gen | 24/40 (60%) | AS26689 | 74.63.10.96 | abuse@networkredux.com | US | ARIN | NET-74-63-8-0-21 | b86e84de88cdca2f077562220d171756 | http://peerpole.com/vma/pub/images/bofuco.html || 2012-02-09 12:51:08 | sub16 | avira | JS/Redirect.AC | 15/40 (37.5%) | AS20718 | 82.223.205.109 | abuse@arsys.es | ES | RIPE | ES-ARSYS-20031222 | 6b92ddc147e49375833eff7e469ae73d | http://peliculasendvd.es/catalog/product_info.php?products_id=7815&/; || 2012-02-09 12:51:08 | sub16 | undef | unknown_file_AccountStatistics.Pdf____________________________________________________________.exe | 13/40 (32.5%) | AS25525 | 89.18.176.55 | abuse@flexwebhosting.nl | NL | RIPE | FLEXWEBHOSTING | 4a304abce37427cffe5a54ea6319370f | http://phv-rechtdoorzee.nl/AccountStatistics/AccountStatistics.zip?zTgeFL_user=caterina.vitale@comune.treviglio.bg.it%22 || 2012-02-09 12:51:08 | sub16 | avira | JS/Redirect.TX | 22/40 (55%) | AS39561 | 89.108.68.81 | abuse@agava.com | RU | RIPE | AGAVA-DATACENTER-NET | 309be735663a77265ffadd272e99a610 | http://piski.hut2.ru/index.html?3 || 2012-02-09 12:51:08 | sub16 | avira | HTML/Rce.Gen | 15/40 (37.5%) | AS32244 | 50.28.7.182 | ipadmin@liquidweb.com | US | ARIN | LIQUIDWEB-10 | d5b44d3caef15e3ac04a9d150bfe2026 | http://playstation3.hclegend.com/?p=1207 || 2012-02-09 12:51:08 | sub16 | avira | HTML/Rce.Gen | 15/40 (37.5%) | AS32244 | 50.28.7.182 | ipadmin@liquidweb.com | US | ARIN | LIQUIDWEB-10 | d1000fa19457a48654f6407f70d70773 | http://playstation3.hclegend.com/?p=1924 || 2012-02-09 12:51:08 | sub16 | avira | HTML/Rce.Gen | 15/40 (37.5%) | AS32244 | 50.28.7.182 | ipadmin@liquidweb.com | US | ARIN | LIQUIDWEB-10 | df3972ae863bf677aca5e1f35c1a2d2d | http://playstation3.hclegend.com/?p=3953 || 2012-02-09 12:51:08 | sub16 | avira | HTML/Rce.Gen | 15/40 (37.5%) | AS32244 | 50.28.7.182 | ipadmin@liquidweb.com | US | ARIN | LIQUIDWEB-10 | 836fc6fd5acd7c16ee4277096501d886 | http://playstation3.hclegend.com/?p=477 || 2012-02-09 12:51:08 | sub16 | avira | HTML/Rce.Gen | 15/39 (38.5%) | AS32244 | 50.28.7.182 | ipadmin@liquidweb.com | US | ARIN | LIQUIDWEB-10 | fadd7eaee2e250a1b6e2a74b054b7f92 | http://playstation3.hclegend.com/?p=5127 || 2012-02-09 12:51:08 | sub16 | AVG | JS/Redir | 14/42 (33.3%) | AS3215 | 195.101.201.181 | abuse@orange-business.com | FR | RIPE | FR-TELECOM-970307 | db6ed0e83cec5c47f61971aea7450c3e | http://plebicity.com/Stat/ConsultAvis_124202.htm || 2012-02-09 12:55:15 | sub7 | undef | unknown_html_RFI | 0/40 (0.0%) | AS32244 | 67.43.12.64 | abuse@liquidweb.com | US | ARIN | LIQUIDWEB-1 | 820b9cdcec0eafe436d160f76bf932e9 | http://howtoclassics.com/Guide-To-Alternative-Energy/datas/google_alt.php || 2012-02-09 12:56:18 | sub16 | undef | unknown_html_RFI_shell | 0/40 (0.0%) | AS44546 | 93.170.52.30 | abuse@dot.tk | NL | RIPE | DOT-TK-NET | d06eb5e36d7c1a2d4fb8b13a0b0a2721 | http://pontosfidelidade.tk/ || 2012-02-09 12:56:19 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 15/43 (34.9%) | AS26496 | 208.109.180.211 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 91d51f2bcbf78d39f92f7b12440bd5b7 | http://pr.darkened-dreams.com/colb/idoa6/index.html || 2012-02-09 12:56:19 | sub16 | avira | HTML/Crypted.Gen | 24/40 (60%) | AS8717 | 212.36.9.1 | support@tophost.bg | BG | RIPE | OTELNET | 8de02fc7dc98e61d729fb53a7bfa069a | http://primorskosport.com/aquapark/thumb/pics/new825.htm || 2012-02-09 12:56:19 | sub16 | avira | HIDDENEXT/Worm.Gen | 29/43 (67.4%) | AS12993 | 89.111.0.126 | abuse@deac.lv | LV | RIPE | LV-DEAC-20060421 | a40747f4c183dbdd081df431f9ec51d0 | http://privatgimnazija.lv/album.php?Facebook.com-IMG7k1L7X.JPG || 2012-02-09 12:56:19 | sub16 | avira | JS/Clicker.CA | 31/40 (77.5%) | AS36420, AS30315, AS13749, AS21844 | 184.172.167.35 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-17 | a00e8093163b5d606d592f787c605dc5 | http://projectglobalalchemy.com/blog/21/the-principle-of-the-two-truths || 2012-02-09 12:56:19 | sub16 | avira | JS/Obfuscated.CF | 20/43 (46.5%) | AS47242 | 81.31.145.11 | ripe@dnshosting.it | IT | RIPE | COLTENGINE-SHARED-HOSTING-NET-1 | a0926faa11f137f5805fe7aa6abe9121 | http://prosistelshop.it/index.php?page=shop.browse&category_id=6&option=com_virtuemart&Itemid=45&vmcchk=1&Itemid=45 || 2012-02-09 12:56:19 | sub16 | avira | TR/Rabbit.bcy | 20/43 (46.5%) | AS13238 | 213.180.199.40 | abuse@yandex.ru | RU | RIPE | YANDEX-199 | f858cec6006e40971b519f8c8a8cfab1 | http://pure-basic.narod.ru/libs/HID_Lib__PB_4.50.rar || 2012-02-09 12:56:19 | sub16 | avira | HTML/Rce.Gen | 36/40 (90%) | AS32475 | 173.236.99.82 | netops@singlehop.com | US | ARIN | SINGLEHOP | 7d2229e1cf3961e682aa5650b745f388 | http://pusnap.com/education/dyslexia-how-to-recognize-dyslexia-in-children.html || 2012-02-09 12:56:19 | sub16 | avira | HTML/Rce.Gen | 36/40 (90%) | AS32475 | 173.236.99.82 | netops@singlehop.com | US | ARIN | SINGLEHOP | bf69b4bc778f7ca27ea5aef92fa74ffd | http://pusnap.com/education/toefl--ibt-transitional-words.html || 2012-02-09 12:56:19 | sub16 | avira | HTML/Rce.Gen | 36/40 (90%) | AS32475 | 173.236.99.82 | netops@singlehop.com | US | ARIN | SINGLEHOP | c3c1fc352dfec997b3178384c9af996a | http://pusnap.com/education/why-should-you-consider-an-online-masters-degree.html || 2012-02-09 12:56:19 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 32/40 (80%) | AS29049 | 94.20.30.75 | abuse@delta-telecom.net | AZ | RIPE | DELTA-DSL | ba18d98b14e03060f7c315813a06a5c0 | http://qarabagh.com/site/?name=photoview&phid=145&lang=3 || 2012-02-09 13:10:22 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS24971 | 178.238.36.6 | abuse@master.cz | CZ | RIPE | DC1-4D-HOUSING-10-CZ-MAI | d2d45a4af530210f5cfeba7f06dd31fb | http://saneles.cz.cc/gAFaAODTtkQ+P//c1MC56OHHIKnZQUB94Uap25AUCuZFMk2e3aYjvukHtEj1XnrNk6OerghLMusWNy6u5P1rfw5FDH374RO67ycO5pRc2yoEHZTIAZwJG7iM0GtIE1La7qlvBHY4xcHtgXfByRP92vvdfaKKMVVwt+JM7TGWZPSLzyr9X0aJXGj2LaTIKgwAxWMUNTNV || 2012-02-09 13:10:23 | sub1 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS14618 | 50.17.240.4 | aes-noc@amazon.com | US | ARIN | AMAZON-EC2-8 | fa95af6b3c914e365d02047a3b2684b9 | http://url2.cptgt.com/cpv.jsp?p=110355&response=xml&default=http%3A%2F%2Fredir.flagthis.biz%2Frdmg.php&url=http%3A//1160938203/SnakeSetup.exe&context=&ip=64.214.53.100&ron=off&partnerMin=0.004 || 2012-02-09 13:10:23 | sub1 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS14618 | 50.17.240.4 | aes-noc@amazon.com | US | ARIN | AMAZON-EC2-8 | fa95af6b3c914e365d02047a3b2684b9 | http://url2.cptgt.com/cpv.jsp?p=110355&response=xml&default=http%3A%2F%2Fredir.flagthis.biz%2Frdmg.php&url=http%3A//1160938203/SnakeSetup.exe&context=&ip=&ron=off&partnerMin=0.004 || 2012-02-09 13:10:23 | sub1 | undef | unknown_html_google_malware | 0/38 (0.0%) | AS23650 | 61.160.245.46 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-JS | d24dea2c15eddee2eda7952496025c32 | http://w.xt918.com/iclk/?s=NDU0MzQ4fGh0dHA6Ly93d3cuNzcxZG5mLmNvbS98fDEwMjR4NzY4eDMyfC01fDF8Ni4wLjc5LjB8fHx8MzF8MTMyODczNjcxN3w2NC4yMTQuNTMuMTAwfDQ4MHxjcG18OXwxNzk0fDExOTB8NjM5N3wxNjYy;c29e9abc66d4e95869c78bb6e4ce3abd;http%3A%2F%2Fswf.games.sina.com.cn%2Ftgy%2Frexue2%2Fwm%2Fxieteng%2Fwm006.html%3F%3D%7Buid%7D || 2012-02-09 13:10:23 | sub1 | undef | unknown_html_google_malware | 0/39 (0.0%) | AS23650 | 61.160.245.46 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-JS | 1dd845764d58e3ead66d963c927ea614 | http://w.xt918.com/iclk/?zoneid=3051&uid=702 || 2012-02-09 13:10:38 | sub16 | avira | HMTL/iFrame.mce | 16/40 (40%) | AS3786 | 180.150.228.154 | ljy1258@ehostidc.co.kr | KR | APNIC | EHOSTIDC-KR | f1db6ea1039bfee5d7ab21fc89ca92d6 | http://raon77.com/bbs/write.php?id=model_join&page=1&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=14&mode=write&sn1= || 2012-02-09 13:10:38 | sub16 | avira | HTML/Crypted.Gen | 25/40 (62.5%) | AS22576 | 72.232.194.50 | abuse@layeredtech.com | US | ARIN | LAYERED-TECH- | a2553fbd11b8dd1a4a50464ac58c3bf1 | http://rasoglou.gr/_images/vintage-cheese-grater/vintage-electric-heater.html || 2012-02-09 13:10:38 | sub16 | avira | HTML/Crypted.Gen | 26/40 (65%) | AS22576 | 72.232.194.50 | abuse@layeredtech.com | US | ARIN | LAYERED-TECH- | 00e7227efe5f2847f8e2cece982a2f05 | http://rasoglou.gr/_images/vintage-cheese-grater/vintage-fabrics-from-1860.html || 2012-02-09 13:10:39 | sub16 | avira | HTML/Crypted.Gen | 26/41 (63.4%) | AS22576 | 72.232.194.50 | abuse@layeredtech.com | US | ARIN | LAYERED-TECH- | 35ab9d9737409ffe474059a1126d8063 | http://rasoglou.gr/_images/vintage-cheese-grater/vintage-fair-mall-modesto.html || 2012-02-09 13:10:39 | sub16 | avira | HTML/Crypted.Gen | 28/43 (65.1%) | AS22576 | 72.232.194.50 | abuse@layeredtech.com | US | ARIN | LAYERED-TECH- | 6c4a2f059424bee56150f2390f305204 | http://rasoglou.gr/_images/vintage-cheese-grater/vintage-feed-sack-prints.html || 2012-02-09 13:10:39 | sub16 | avira | HTML/Crypted.Gen | 26/40 (65%) | AS22576 | 72.232.194.50 | abuse@layeredtech.com | US | ARIN | LAYERED-TECH- | 29322026cabd889e2bd78791100c7c09 | http://rasoglou.gr/_images/vintage-cheese-grater/vintage-fiesta-ware.html || 2012-02-09 13:10:39 | sub16 | avira | HTML/Crypted.Gen | 26/40 (65%) | AS22576 | 72.232.194.50 | abuse@layeredtech.com | US | ARIN | LAYERED-TECH- | 4a8f6536a112c89b7de9217c62dda10c | http://rasoglou.gr/_images/vintage-cheese-grater/vintage-floor-lamp-danish.html || 2012-02-09 13:10:39 | sub16 | avira | HTML/Crypted.Gen | 26/39 (66.7%) | AS22576 | 72.232.194.50 | abuse@layeredtech.com | US | ARIN | LAYERED-TECH- | 0a8a79f6e27e78a3981e93ff254bdba1 | http://rasoglou.gr/_images/vintage-cheese-grater/vintage-fortis-watches.html || 2012-02-09 13:10:39 | sub16 | avira | JS/Dldr.IFrame.EK | 29/43 (67.4%) | AS25532 | 90.156.201.110 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-HOSTING | 00462ec59b1df64520f0eb2f3d1c1020 | http://realtystroy.ru/-action=view&type=1&id=787.htm || 2012-02-09 13:10:39 | sub16 | avira | JS/Clicker.CA | 29/38 (76.3%) | AS6245 | 206.188.193.79 | ipadmin@monstercommerce.com | US | ARIN | MONSTERCOMMERCE | d0a25bf51d4e74d87575e3947307f9fe | http://reesedykersideas.com/RDeye/?cat= || 2012-02-09 13:10:39 | sub16 | undef | unknown_file_$INSTDIR/RegistryHelperSetupTR.exe | 0/38 (0.0%) | AS23535 | 66.147.230.137 | abuse@hostrocket.com | US | ARIN | HRWEBSERVICES-2 | 8756c0d6e836dbe6a3bbc279c2d7a2ec | http://reghelperdownload.com/RegistryHelperSetup.exe || 2012-02-09 13:10:39 | sub16 | undef | unknown_file_autorun.exe | 2/38 (5.3%) | AS32475 | 69.175.66.250 | netops@singlehop.com | US | ARIN | SINGLEHOP | cd6136446dcdde65ebd8ee2e4f44c77c | http://registrycleaner.shukraware.com/6/UninstallWizard/Run-ProgramRemover.exe || 2012-02-09 13:10:40 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS53665 | 199.59.241.235 | abuse@bodis.com | CN | ARIN | BODIS-COM | 3ce6871a736d86e0f4a2a22c7f6c3b14 | http://ro521.com/test.htm || 2012-02-09 13:10:40 | sub16 | avira | HTML/IFrame.era | 18/43 (41.9%) | AS3786 | 118.129.167.61 | shkim082@chol.com | KR | APNIC | BORANET-KR | 15c935b6db19089108a1b75e3909916f | http://rodem-house.com/zeroboard/del_comment.php?id=qna&page=1&sn1=on&divpage=1&sn=on&ss=off&sc=off&keyword=%B9%CC%C8%AD&select_arrange=headnum&desc=asc&no=5097&c_no=5985%22 || 2012-02-09 13:10:50 | sub16 | avira | JS/Clicker.CA | 30/40 (75%) | AS16276 | 94.23.3.194 | abuse@ovh.net | FR | RIPE | OVH | 71c3b11361253b24014150fdac21ec70 | http://rpgmagazine.fr/site/?p=279&cpage=176 || 2012-02-09 13:10:51 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 20/40 (50%) | AS2820 | 212.114.10.1 | abuse@telekom.ru | RU | RIPE | APREC-NET | d0cdaa1396664d87a35e4ddc903b8d18 | http://rusmagistr.ru/forum/memberlist.php?mode=joined&order=ASC&start=3000&sid=c0f72715529098b46301449bc8c47450 || 2012-02-09 13:10:51 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 22/43 (51.2%) | AS2820 | 212.114.10.1 | abuse@telekom.ru | RU | RIPE | APREC-NET | 3a3d7db7de5850d078cfcb39f3d039ff | http://rusmagistr.ru/forum/memberlist.php?mode=joined&order=ASC&start=500&sid=5fa6e42bc393c36b20910f2124fd2175 |+---------------------+-------------+-----------+----------------------------------------------------------------------------------------------------+---------------+------------------------------------+-----------------+-------------------------------------+---------+---------+---------------------------------+----------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+100 rows in set (0.58 sec)
+---------------------+-------------+---------------+----------------------------------------+---------------+--------------------------------------------+-----------------+-------------------------------------+---------+--------+----------------------------------------+----------------------------------+--------------------------------------------------------------------------------------------------------------------------------------------------------------------+| date | contributor | scanner | virusname | vt_score | AS | review | email | country | source | netname | md5sum | url |+---------------------+-------------+---------------+----------------------------------------+---------------+--------------------------------------------+-----------------+-------------------------------------+---------+--------+----------------------------------------+----------------------------------+--------------------------------------------------------------------------------------------------------------------------------------------------------------------+| 2012-02-09 13:10:51 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 20/40 (50%) | AS2820 | 212.114.10.1 | abuse@telekom.ru | RU | RIPE | APREC-NET | 5cbe9d411991ce878127e3f96ab35b19 | http://rusmagistr.ru/forum/profile.php?mode=viewprofile&u=2968&sid=ec07cbcb158dd7366b56e9c738bb99f2 || 2012-02-09 13:10:51 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 22/43 (51.2%) | AS2820 | 212.114.10.1 | abuse@telekom.ru | RU | RIPE | APREC-NET | 4dd151bb7c4d9ee8062119bed7bea556 | http://rusmagistr.ru/forum/profile.php?mode=viewprofile&u=2969&sid=ec07cbcb158dd7366b56e9c738bb99f2 || 2012-02-09 13:10:51 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 22/43 (51.2%) | AS2820 | 212.114.10.1 | abuse@telekom.ru | RU | RIPE | APREC-NET | fac3aae3f68f13baf046e36788396e8e | http://rusmagistr.ru/forum/profile.php?mode=viewprofile&u=3705&sid=131c8141a2b88fd2f78f883ec8082fe4 || 2012-02-09 13:10:51 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 20/40 (50%) | AS2820 | 212.114.10.1 | abuse@telekom.ru | RU | RIPE | APREC-NET | 9817392770d1ba76b6389c87f07d053b | http://rusmagistr.ru/forum/profile.php?mode=viewprofile&u=3753&sid=0f6327c253020d58c5400d8ee071cceb || 2012-02-09 13:10:51 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 20/40 (50%) | AS2820 | 212.114.10.1 | abuse@telekom.ru | RU | RIPE | APREC-NET | 4c7dfb0231a11596208e91c3019d4a78 | http://rusmagistr.ru/forum/profile.php?mode=viewprofile&u=3782&sid=0f6327c253020d58c5400d8ee071cceb || 2012-02-09 13:10:51 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 20/40 (50%) | AS2820 | 212.114.10.1 | abuse@telekom.ru | RU | RIPE | APREC-NET | f9100e2cac43502d3335d956170d25d5 | http://rusmagistr.ru/forum/profile.php?mode=viewprofile&u=3789&sid=0f6327c253020d58c5400d8ee071cceb || 2012-02-09 13:10:52 | sub16 | avira | HTML/Crypted.Gen | 20/38 (52.6%) | AS21844 | 74.52.60.98 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 60e6ad89526b18b4a10773f92676b24d | http://saiberfx.net/webhosting/mambots/editors/etc/erotic-clubs-in-milan/anamil-sex.html || 2012-02-09 13:10:53 | sub16 | undef | unknown_html_google_malware | 0/40 (0.0%) | AS29097 | 217.26.54.13 | abuse@hostpoint.ch | CH | RIPE | HOSTPOINT | a35ec37c27a56c9cf2f20a7ea54db647 | http://scgoldingen.ch/club/meisterschaft/meisterschaft-detail.php?RECORD_KEY(Meisterschaft) || 2012-02-09 13:10:53 | sub16 | avira | JS/Redirector.k.795 | 19/38 (50%) | AS8708 | 81.196.20.134 | abuse@home.ro | RO | RIPE | RO-RDS-HOME-RO | 90c438082b133fe5c72afed5316cc200 | http://scoalaonutza.go.ro/images/pechenkodes/37=topic.html || 2012-02-09 13:23:44 | sub16 | avira | JS/iFrame.oce | 16/40 (40%) | AS32244 | 72.52.136.4 | abuse@liquidweb.com | US | ARIN | LIQUIDWEB-6 | e1772852323f7f83964b4f9f59052062 | http://sdtheatrescene.com/phpbb/viewtopic.php?f=4&t=1458&p=1480&sid=b5c9cb1f5d3de8743409bb42cd79416b || 2012-02-09 13:23:44 | sub16 | avira | JS/iFrame.oce | 16/40 (40%) | AS32244 | 72.52.136.4 | abuse@liquidweb.com | US | ARIN | LIQUIDWEB-6 | eb17d799ebd4c523b8a14147e72c173c | http://sdtheatrescene.com/phpbb/viewtopic.php?f=4&t=466 || 2012-02-09 13:23:44 | sub16 | avira | JS/Redirector.MR | 8/38 (21.1%) | AS36351 | 208.43.93.32 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-6 | c448832eeffd3e2881e62c67ec21d115 | http://searchengineseo.org.uk/tag/testimonials/ || 2012-02-09 13:23:44 | sub16 | avira | HTML/Crypted.Gen | 25/40 (62.5%) | AS25973, AS35937, AS36025, AS6130, AS15244 | 216.97.237.35 | hostmaster@lunarpages.com | US | ARIN | ADD2NET-DOT-COM | 4ef234c34c56773aba3a129025eb9506 | http://segmeminc.com/untitled/untitled/_images/she-likes-cock/naked-men-sites.html || 2012-02-09 13:23:44 | sub16 | avira | HTML/IFrame.era | 17/41 (41.5%) | AS9848 | 211.239.157.101 | abuse@sejongtelecom.net | KR | APNIC | SEJONGNET-KR | 2ee792e1ef46ad1c5863e0b394943dcd | http://seogwipomc.com/zboard/zboard.php?id=b0007&page=19&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=hit&desc=asc&no=1599 || 2012-02-09 13:23:44 | sub16 | avira | JS/iFrame.GT.4 | 15/43 (34.9%) | AS6939 | 64.71.130.222 | abuse@he.net | US | ARIN | HURRICANE-2 | 0a8b4aeff391109f754e78fd262aa7a7 | http://seolink555.com/regist_ys.cgi || 2012-02-09 13:23:44 | sub16 | undef | unknown_html_google_malware | 0/40 (0.0%) | AS9318 | 222.239.76.166 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | 598f4fe64aefab8f00bcbea4c9239abf | http://sgms.zerois.net/bbs/ || 2012-02-09 13:23:44 | sub16 | avira | HTML/ImgHack.A.1 | 10/43 (23.3%) | AS3595 | 69.73.171.21 | abuse@jaguarpc.com | US | ARIN | LH-GOLD-NETWORK | 58eacb33f7e42f93dd43295cb19cd6c4 | http://shabelleh.com/ || 2012-02-09 13:23:44 | sub16 | avira | TR/Dropper.Gen | 17/38 (44.7%) | AS40819 | 72.44.90.208 | security@futurehosting.com | US | ARIN | FUTUREHOSTING | bf5e09fbdaa80b9b3464936a27d7d3c9 | http://shaddeh.com/Trix_Game.zip || 2012-02-09 13:23:44 | sub16 | ClamAV | Adware.Fakealert-560 | 2/40 (5%) | AS26347 | 75.119.200.232 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK8 | 5e2a1a30fa738ae91b1b9484211161d5 | http://sharp-ideas.net/info/d/index49.html || 2012-02-09 13:23:44 | sub16 | avira | JS/Agent.zbh | 28/41 (68.3%) | AS32780 | 174.127.107.164 | arin-contact@hostingservicesinc.net | US | ARIN | HOSTINGSERVICES-INC | 9bea2f070fc48b61f4e4905887d8dca9 | http://shining.com/index.php?option=com_easyfaq&task=view&id=50&Itemid=98 || 2012-02-09 13:23:44 | sub16 | avira | JS/Obfuscated.CF | 16/34 (47.1%) | AS24940 | 46.4.92.84 | abuse@hetzner.de | DE | RIPE | DE-HETZNER-20100819 | c84019c048648fd646b066cf62a041bc | http://slonka.pl/node/8699 || 2012-02-09 13:23:44 | sub16 | avira | HTML/Crypted.Gen | 26/40 (65%) | AS29550 | 213.229.112.103 | n_alblas@saturnus.nl | NL | RIPE | DEKOOI | 20b706737e2425f45c01665ab3ae75df | http://sminkes.jatekokingyen.com/ || 2012-02-09 13:23:44 | sub16 | avira | HTML/Rce.Gen | 29/43 (67.4%) | AS29522 | 94.152.192.134 | abuse@ebitda.pl | PL | RIPE | EBITDA | b753ecc576ce60a1e714370021596a19 | http://sn.win.pl/mapo/mp/galeria/index.php?idnew=237&a=&st=0 || 2012-02-09 13:23:44 | sub16 | avira | HTML/Rce.Gen | 26/39 (66.7%) | AS29522 | 94.152.192.134 | abuse@ebitda.pl | PL | RIPE | EBITDA | 6908fbebfe1692039ee4658d6628d8d7 | http://sn.win.pl/mapo/mp/galeria/index.php?idnew=244&a=21&st=0 || 2012-02-09 13:23:44 | sub16 | avira | HTML/Rce.Gen | 26/39 (66.7%) | AS29522 | 94.152.192.134 | abuse@ebitda.pl | PL | RIPE | EBITDA | 3d81994c6df4ca15820434a3dd0fa69d | http://sn.win.pl/mapo/mp/galeria/index.php?idnew=63&a=7&st=1 || 2012-02-09 13:23:44 | sub16 | clamav | PUA.Game.Casino-2 | 15/43 (34.9%) | AS17036, AS22653 | 69.61.74.188 | abuse@cyberwurx.com | US | ARIN | NET-GLOBAL-COMPASS | c2dc4bf1887c35984a03d6830ec66cf8 | http://www.casinoschule.com/downloads/roxypalacecasino.exe || 2012-02-09 13:40:15 | sub16 | avira | TR/StartPage.aqmt.13 | 13/40 (32.5%) | AS31815 | 64.13.192.180 | abuse@mediatemple.net | US | ARIN | MEDIATEMPLE-103 | 46d1f9786616d63d620bedd62f1b251c | http://snipfiles.com/files/snowman_screensaver.exe || 2012-02-09 13:40:15 | sub16 | avira | HTML/Rce.Gen | 27/40 (67.5%) | AS29522 | 94.152.192.134 | abuse@ebitda.pl | PL | RIPE | EBITDA | 870ff6c7ef4b54a25c892f90bc2d4d5b | http://sn.win.pl/mapo/mp/galeria/index.php?idnew=165&a=9 || 2012-02-09 13:40:16 | sub16 | avira | HTML/Rce.Gen | 27/40 (67.5%) | AS29522 | 94.152.192.134 | abuse@ebitda.pl | PL | RIPE | EBITDA | ff78269c1284c052cf792916f91515e9 | http://sn.win.pl/mapo/mp/galeria/index.php?idnew=69&a=&st=1 || 2012-02-09 13:40:16 | sub16 | avira | HTML/Rce.Gen | 25/38 (65.8%) | AS29522 | 94.152.192.134 | abuse@ebitda.pl | PL | RIPE | EBITDA | e9ed6194dd66b12c6036a3e52959aa97 | http://sn.win.pl/mapo/mp/galeria/index.php?idnew=75&a=&st=1 || 2012-02-09 13:40:16 | sub16 | undef | unknown_exe | 4/40 (10%) | AS31334 | 95.90.17.40 | abuse@kabel-bb.de | DE | RIPE | KABEL-DEUTSCHLAND-CUSTOMER-SERVICES-19 | 038a8b1d1419b842d76282990cab5a7a | http://soewltrncornh.com/w.php?f=26&e=2 || 2012-02-09 13:40:16 | sub16 | avira | ADSPY/NaviPromo.J | 8/38 (21.1%) | AS36420, AS30315, AS13749, AS21844 | 174.122.149.156 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 6ec77b19d5c2fafccc8a093e2a43287b | http://softwarefreeway.com/music-mute-setup.exe || 2012-02-09 13:40:16 | sub16 | avira | HTML/Small.AV | 19/42 (45.2%) | AS21788 | 64.191.115.4 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | 4e8888ad2b1bc0c517ce0534f0a0d7a7 | http://sourcewebdesign.org/tag/portfolio || 2012-02-09 13:40:16 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 17/39 (43.6%) | AS32780 | 174.127.110.241 | arin-contact@hostingservicesinc.net | US | ARIN | HOSTINGSERVICES-INC | 76db474513c97d3ac90ce08cc25d2649 | http://sourcing.cl/fechida/eventos.php || 2012-02-09 13:40:16 | sub16 | avira | HTML/IFrame.Inje.1 | 27/43 (62.8%) | AS8560 | 74.208.26.124 | abuse@1and1.com | US | ARIN | 1AN1-NETWORK | 99c6230f18d8753496355c08506d592a | http://sparrowconcrete.com/ || 2012-02-09 13:40:16 | sub16 | avira | HTML/Crypted.Gen | 20/43 (46.5%) | AS31365 | 85.153.6.51 | ripe@sgstelecom.com | TR | RIPE | MECIDIYEKOY-POP | 8b585a9de60493363c6bd1befbbd54e5 | http://spor.mavigunkoleji.com/FCKeditor/editor/fc_keditor.html || 2012-02-09 13:40:16 | sub16 | avira | JS/Infected.C | 21/39 (53.8%) | AS21155 | 188.93.150.24 | noc@mijndomein.nl | NL | RIPE | NL-MIJNDOMEIN-20090514 | 234df593cd9005fa18f7001e5c2d93bb | http://sportmarketingrotterdam.nl/wp-content/plugins/fancybox-for-wordpress/js/jquery.fancybox-1.2.6.min.js?ver=1.3.2 || 2012-02-09 13:40:16 | sub16 | avira | JS/Infected.C | 26/43 (60.5%) | AS21155 | 188.93.150.24 | noc@mijndomein.nl | NL | RIPE | NL-MIJNDOMEIN-20090514 | 7edcccd709268c0989c4c7b553f4797a | http://sportmarketingrotterdam.nl/wp-content/themes/introductie/epanel/page_templates/js/fancybox/jquery.easing-1.3.pack.js?ver=1.3.4 || 2012-02-09 13:40:16 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS21155 | 188.93.150.24 | noc@mijndomein.nl | NL | RIPE | NL-MIJNDOMEIN-20090514 | 1f8295849b135a639257e618ae21fccf | http://sportmarketingrotterdam.nl/wp-content/themes/introductie/epanel/shortcodes/js/et_shortcodes_frontend.js?ver=1.7 || 2012-02-09 13:40:16 | sub16 | avira | JS/Infected.C | 22/39 (56.4%) | AS21155 | 188.93.150.24 | noc@mijndomein.nl | NL | RIPE | NL-MIJNDOMEIN-20090514 | b26986aafb949bd9e4f31515564a8a06 | http://sportmarketingrotterdam.nl/wp-content/themes/introductie/js/jquery.cycle.all.min.js?ver=1.0 || 2012-02-09 13:40:16 | sub16 | avira | JS/Infected.C | 23/39 (59%) | AS21155 | 188.93.150.24 | noc@mijndomein.nl | NL | RIPE | NL-MIJNDOMEIN-20090514 | 0a11ec1fae951f042083522af9287b65 | http://sportmarketingrotterdam.nl/wp-content/themes/introductie/js/jquery.easing.1.3.js || 2012-02-09 13:40:16 | sub16 | avira | JS/Infected.C | 25/43 (58.1%) | AS21155 | 188.93.150.24 | noc@mijndomein.nl | NL | RIPE | NL-MIJNDOMEIN-20090514 | ceaaba205d03c74a0ef2c920f15bdb21 | http://sportmarketingrotterdam.nl/wp-content/themes/introductie/js/superfish.js || 2012-02-09 13:40:16 | sub16 | avira | JS/Infected.C | 21/39 (53.8%) | AS21155 | 188.93.150.24 | noc@mijndomein.nl | NL | RIPE | NL-MIJNDOMEIN-20090514 | a00212dbda0f6457d55cd13866ed7f5e | http://sportmarketingrotterdam.nl/wp-includes/js/comment-reply.js?ver=20090102 || 2012-02-09 13:40:16 | sub16 | avira | TR/Renaz.37185 | 27/41 (65.9%) | AS45045 | 91.203.147.6 | abuse@goodnet.com.ua | UA | RIPE | GOODNET-NET | 66c1912f3f8d46786f9e2a0f88a36c16 | http://sputnik-home.ru/assets/soft_sat_res/openbox/300/pobedit.zip || 2012-02-09 13:40:16 | sub16 | avira | SPR/Tool.RoboNanny.1 | 28/43 (65.1%) | AS2914 | 198.63.210.233 | abuse@ntt.net | US | ARIN | NTTA-198-63 | 9f673be9d61e9718062a647978d3dfa5 | http://spyarsenal.com/spy-microphone/robonanny.zip || 2012-02-09 13:40:16 | sub16 | avira | HTML/Crypted.Gen | 25/43 (58.1%) | AS8685 | 212.58.3.28 | abuse@doruk.net.tr | TR | RIPE | DorukNet | 4eac9252bbca220f4d1b42a42d47769d | http://sqmartakademi.com/admin/userfiles/thumbs/text-1856.html || 2012-02-09 13:40:16 | sub16 | avira | HTML/Crypted.Gen | 25/43 (58.1%) | AS8685 | 212.58.3.28 | abuse@doruk.net.tr | TR | RIPE | DorukNet | 3de94a87a9b5869386c7238ea31c5940 | http://sqmartakademi.com/admin/userfiles/thumbs/text-2187.html || 2012-02-09 13:40:16 | sub16 | avira | DR/Rabbit.bac | 31/43 (72.1%) | AS39572 | 213.174.157.135 | abuse@compubyte.vg | GB | RIPE | COMPUBYTE-NET | 5b0e6395885697f240b21f619b1c542b | http://sragwow.clan.su/files/130_office.zip || 2012-02-09 13:40:16 | sub16 | avira | HTML/IFrame.act.2 | 20/43 (46.5%) | AS19066 | 96.30.44.137 | abuse@wiredtree.com | US | ARIN | WIREDTREE | 69ec51042b8970c4c629a48c091286f1 | http://srhdpc.org/homeport/modules/piCal/index.php?cid=0&smode=Daily&caldate=2010-4-24 || 2012-02-09 13:40:16 | sub16 | avira | HTML/Crypted.Gen | 25/40 (62.5%) | AS36351 | 50.116.107.88 | ipadmin@websitewelcome.com | US | ARIN | HGBLOCK-3 | a825674b36a64975e0af901b63dd8d5b | http://sscolaw.com/qdctz/includes/naked-connecticut-women/ebony-internal.html || 2012-02-09 13:40:16 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 21/39 (53.8%) | AS26496 | 173.201.140.128 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 46d98f031c4b219f3edb0bbe5e414108 | http://starsofwonder.com/peopleneed2know/language/inthevip-jc/carstrada-hollywood.html || 2012-02-09 13:40:16 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 22/40 (55%) | AS26496 | 173.201.140.128 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 62244d5c78aea6ffec6304749a46889a | http://starsofwonder.com/peopleneed2know/language/inthevip-jc/cerelli-foods.html || 2012-02-09 13:40:16 | sub16 | undef | unknown_html_google_blacklist | 0/40 (0.0%) | AS2119 | 213.115.221.24 | abuse@bredband.com | SE | RIPE | SE-CYBER-20000314 | 9d0101d6e9c6431297a1757f14a53729 | http://steamcommunity.laguay.com/ || 2012-02-09 13:40:16 | sub16 | avira | HTML/Agent.opd | 27/40 (67.5%) | AS13301 | 213.202.225.63 | abuse@funpic.de | DE | RIPE | UNITEDCOLO-BERGLER-LIEMEN-NET | 4f022de9753a09459c640cc9eeb46f92 | http://superkeks.su.funpic.de/phpbb3/modules/shoutbox/shoutbox.php?start=0&sid=a876a0eda8985496fe579786c7437639 || 2012-02-09 13:50:20 | sub16 | undef | unknown_html_RFI_php | 0/40 (0.0%) | AS4134 | 218.16.125.32 | abuse@gddc.com.cn | CN | APNIC | CHINANET-GD | 1bbc901153d25c34d7485dafa735801e | http://s60sign.com/ || 2012-02-09 13:50:23 | sub16 | avira | SPR/JS.Crytper.VIP | 27/40 (67.5%) | AS4906 | 63.250.48.135 | abuse@frontline.net | US | ARIN | SINEP-BLOCK-3 | e86ff03a2bb7a648026ee155d5c6e666 | http://surfingtrips.com/phpBB2/faq.php?sid=3d5e56a0da4370de7e8a8e4eb71495bd || 2012-02-09 13:50:23 | sub16 | avira | HTML/Crypted.Gen | 24/40 (60%) | AS30475 | 68.71.137.60 | noc@wehostwebsites.com | US | ARIN | NET-WEHOST-3 | 72f0b1e78205f2cd0383419ff1ef5eac | http://svgmap.com/images/thumb/5/topic322.htm || 2012-02-09 13:50:24 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 18/38 (47.4%) | AS36420, AS30315, AS13749, AS21844 | 184.172.171.163 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-17 | 63c6e9d54c7277c1928a311b20611227 | http://syfteam.com/docs/ || 2012-02-09 13:50:24 | sub16 | avira | JS/Obfuscated.CF | 21/43 (48.8%) | AS12824 | 62.129.200.54 | abuse@home.pl | PL | RIPE | HOMEPL | 65715f3fa33797bebde7ba48dddd47ee | http://szczytno.org/forum2/viewtopic.php?f=12&t=350&sid=e3493d7f70a3815eddc88724a3e055b1&p=24915 || 2012-02-09 13:50:24 | sub16 | avira | JS/Obfuscated.CF | 19/40 (47.5%) | AS12824 | 62.129.200.54 | abuse@home.pl | PL | RIPE | HOMEPL | 51adb6365a4a2dc23cc547cf6c90d4df | http://szczytno.org/forum2/viewtopic.php?f=12&t=4582&start=0&sid=d555f384b6ba6706bb8393b3958d3b29 || 2012-02-09 13:50:24 | sub16 | avira | JS/Obfuscated.CF | 19/40 (47.5%) | AS12824 | 62.129.200.54 | abuse@home.pl | PL | RIPE | HOMEPL | 37019230b43c4039328c0b4161e8ca70 | http://szczytno.org/forum2/viewtopic.php?p=12443&sid=2fd262a55e2cdf8f4a775aa78b9b4a8d || 2012-02-09 13:50:24 | sub16 | avira | PHP/Shell.O.1 | 5/40 (12.5%) | AS41535 | 89.253.247.155 | abuse@rusonyx.ru | RU | RIPE | RU-RUSONYX-20060829 | 35c2909643456525b13adf9139b0c944 | http://t-nalog.ru/about.php?id=fake-mail || 2012-02-09 14:00:18 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 21/40 (52.5%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | 210380248e149917e62c96d7e0da1a2f | http://tellus.md/forum/profile.php?mode=viewprofile&u=16&sid=cb730040b8274163bfe120f61c90fb7e || 2012-02-09 14:00:18 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 21/40 (52.5%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | 32d127802af25c37db4b9c6aca73e258 | http://tellus.md/forum/profile.php?mode=viewprofile&u=3808&sid=d588499068715f1011b7b32a603f9876 || 2012-02-09 14:00:18 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 23/43 (53.5%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | 075f6d00c951a47d172384fc6331532f | http://tellus.md/forum/profile.php?mode=viewprofile&u=3811&sid=d588499068715f1011b7b32a603f9876 || 2012-02-09 14:00:18 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 21/39 (53.8%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | 76e37b5cad5a328fcb6bd7513229d6e3 | http://tellus.md/forum/profile.php?mode=viewprofile&u=3833&sid=d588499068715f1011b7b32a603f9876 || 2012-02-09 14:00:18 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 23/43 (53.5%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | f52dfb7d44b2e9a2c2fd6ef54861e239 | http://tellus.md/forum/profile.php?mode=viewprofile&u=3856&sid=d13106fdae04fe0d6a51145a686cd56b || 2012-02-09 14:00:18 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 23/43 (53.5%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | 5e41c891692a2a86b48e748f027d6d19 | http://tellus.md/forum/profile.php?mode=viewprofile&u=3865&sid=d13106fdae04fe0d6a51145a686cd56b || 2012-02-09 14:00:18 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 21/40 (52.5%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | 620449ab7503ecde63dcd2c7a82b8ba3 | http://tellus.md/forum/profile.php?mode=viewprofile&u=3876&sid=d13106fdae04fe0d6a51145a686cd56b || 2012-02-09 14:00:18 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 21/39 (53.8%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | e336d242a7ac7da8854cba76bb74582a | http://tellus.md/forum/profile.php?mode=viewprofile&u=3879&sid=d13106fdae04fe0d6a51145a686cd56b || 2012-02-09 14:00:18 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 23/43 (53.5%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | f716637463440a133ba92927898d5e2a | http://tellus.md/forum/profile.php?mode=viewprofile&u=3887&sid=d13106fdae04fe0d6a51145a686cd56b || 2012-02-09 14:00:18 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 23/43 (53.5%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | 5270cb883902cc8ed4c2b90fec0d28a5 | http://tellus.md/forum/profile.php?mode=viewprofile&u=3931&sid=74c7fbf0849cc108075b8f75a391b04d || 2012-02-09 14:00:18 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 23/43 (53.5%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | f0cf3c09d05ec1b57279bbe149169379 | http://tellus.md/forum/profile.php?mode=viewprofile&u=4815&sid=aad3a5c719a3d90c7a800514b475310e || 2012-02-09 14:00:18 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 23/43 (53.5%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | bc744a978264baae05c3344d2bd5a4f0 | http://tellus.md/forum/profile.php?mode=viewprofile&u=4982&sid=abb48ef17f67502d503c56e38fe78cc9 || 2012-02-09 14:00:18 | sub16 | avira | HTML/Crypted.Gen | 25/43 (58.1%) | AS42926 | 176.53.18.45 | abuse@as42926.net | TR | RIPE | TR-RADORE-20110526 | cc616e2ea4d9d23a7cb5555b9b33839c | http://temagt.com/images/pics/page1117.html || 2012-02-09 14:00:18 | sub16 | avira | HTML/Crypted.Gen | 24/41 (58.5%) | AS42926 | 176.53.18.45 | abuse@as42926.net | TR | RIPE | TR-RADORE-20110526 | 9389bc5e7d051675c225ff677488e9b7 | http://temagt.com/images/pics/page1630.html || 2012-02-09 14:00:19 | sub16 | avira | HTML/Infected.WebPage.Gen | 22/38 (57.9%) | AS47583 | 31.170.164.73 | abuse@main-hosting.com | GB | RIPE | MAIN-HOSTING-SERVERS | 94c07da79e3a3d4ec96ba8ed82631411 | http://texashollldemm.16mb.com/index.php || 2012-02-09 14:00:19 | sub16 | avira | JS/Infected.C | 23/41 (56.1%) | AS6245 | 206.188.192.232 | ipadmin@monstercommerce.com | US | ARIN | MONSTERCOMMERCE | b4db8c9e3bfbbe59e315e716c5b7f998 | http://thediplomaticwife.com/blog/wp-content/themes/Minimal-1/js/DD_belatedPNG_0.0.8a-min.js || 2012-02-09 14:00:19 | sub16 | avira | JS/Infected.C | 22/43 (51.2%) | AS13335 | 173.245.61.43 | noc@cloudflare.com | US | ARIN | CLOUDFLARENET | 0f99e38ef815e98b4b235d8738e5dcc0 | http://themete.com/mt/img/jquery.twitter-friends-1.0.min.js || 2012-02-09 14:00:19 | sub16 | Avast | JS:Redirector-NL [Trj] | 18/42 (42.9%) | AS13335 | 173.245.61.43 | noc@cloudflare.com | US | ARIN | CLOUDFLARENET | ebf72bbada95e1df64a70d822f1ae38f | http://themete.com/mt/wp-content/plugins/cforms/js/cforms.js || 2012-02-09 14:00:19 | sub16 | avira | JS/Obfuscated.CF | 20/42 (47.6%) | AS36420, AS30315, AS13749, AS21844 | 184.172.173.11 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-17 | d790f1b9cd7766ff90c3785316197bab | http://therecipesbook.com/chocolate-dipped-ice-cream-sandwiches/ || 2012-02-09 14:00:19 | sub16 | avira | JS/Obfuscated.CF | 20/42 (47.6%) | AS36420, AS30315, AS13749, AS21844 | 184.172.173.11 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-17 | d790f1b9cd7766ff90c3785316197bab | http://therecipesbook.com/fish-soup-with-bread-and-rouille/ || 2012-02-09 14:00:19 | sub16 | avira | JS/Obfuscated.CF | 20/42 (47.6%) | AS36420, AS30315, AS13749, AS21844 | 184.172.173.11 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-17 | d790f1b9cd7766ff90c3785316197bab | http://therecipesbook.com/mexican-chocolate-ice-cream-cake-with-orange-meringue/ || 2012-02-09 14:00:19 | sub16 | avira | JS/Obfuscated.CF | 20/42 (47.6%) | AS36420, AS30315, AS13749, AS21844 | 184.172.173.11 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-17 | d790f1b9cd7766ff90c3785316197bab | http://therecipesbook.com/recipes/cake-recipes/ || 2012-02-09 14:00:19 | sub16 | avira | JS/Obfuscated.CF | 20/42 (47.6%) | AS36420, AS30315, AS13749, AS21844 | 184.172.173.11 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-17 | d790f1b9cd7766ff90c3785316197bab | http://therecipesbook.com/the-weekend-dish-172012/ || 2012-02-09 14:00:19 | sub16 | avira | JS/iFrame.psa.22 | 26/41 (63.4%) | AS21844 | 74.53.229.82 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | cf5f24f83e1a1deb9c8902ab83b88d61 | http://thewebsitecompany.co.uk/demo/abptt/forum/cron.php?cron_type=tidy_cache&sid=a852ae7d675a4b13a49eb8d295f2a56e || 2012-02-09 14:00:19 | sub16 | avira | JS/iFrame.psa.22 | 25/39 (64.1%) | AS21844 | 74.53.229.82 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | cf5f24f83e1a1deb9c8902ab83b88d61 | http://thewebsitecompany.co.uk/demo/abptt/forum/cron.php?cron_type=tidy_search&sid=949bf6e7fc339c4fd9f5a4be1b7b027f || 2012-02-09 14:00:19 | sub16 | avira | HTML/IFrame.Inje.1 | 25/40 (62.5%) | AS3595 | 205.251.128.170 | engineering@gnax.net | US | ARIN | GNAXNET | 0e7227de2a8d14bc7969fb4551e06f00 | http://tinoamodei.com/kms/development/ || 2012-02-09 14:00:19 | sub16 | avira | HMTL/iFrame.mce | 16/40 (40%) | AS4766 | 222.122.49.24 | abuse@kornet.net | KR | APNIC | KORNET-KR | 7297483eb7da8ab8d06410b2fbcd0e45 | http://tkmb.com/bbs/zboard.php?id=free&page=17&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=7226 || 2012-02-09 14:00:19 | sub16 | avira | HMTL/iFrame.mce | 16/40 (40%) | AS4766 | 222.122.49.24 | abuse@kornet.net | KR | APNIC | KORNET-KR | 35cf592dc02506f9eb50466fb629a3ed | http://tkmb.com/bbs/zboard.php?id=free&page=18&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=5326 || 2012-02-09 14:00:19 | sub16 | avira | HMTL/iFrame.mce | 16/40 (40%) | AS4766 | 222.122.49.24 | abuse@kornet.net | KR | APNIC | KORNET-KR | aafa61d6f69cc055b937a5805430d209 | http://tkmb.com/bbs/zboard.php?id=free&page=1&page_num=20&select_arrange=vote&desc=&sn=off&ss=on&sc=on&keyword=&no=2758&category= || 2012-02-09 14:00:19 | sub16 | avira | HMTL/iFrame.mce | 16/40 (40%) | AS4766 | 222.122.49.24 | abuse@kornet.net | KR | APNIC | KORNET-KR | e3adc55bcf7bf810b1f0ff4bd7900b25 | http://tkmb.com/bbs/zboard.php?id=free&page=72&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=vote&desc=desc&no=4632 || 2012-02-09 14:00:19 | sub16 | avira | HMTL/iFrame.mce | 18/43 (41.9%) | AS4766 | 222.122.49.24 | abuse@kornet.net | KR | APNIC | KORNET-KR | 7c2064db10de5fd6274372111bd7aab4 | http://tkmb.com/bbs/zboard.php?id=free&page=7&sn1=&divpage=2&sn=off&ss=on&sc=on&select_arrange=vote&desc=desc&no=4499 || 2012-02-09 14:00:19 | sub16 | avira | HMTL/iFrame.mce | 16/40 (40%) | AS4766 | 222.122.49.24 | abuse@kornet.net | KR | APNIC | KORNET-KR | 4e316eb569cd26d217c806a092cc08ec | http://tkmb.com/bbs/zboard.php?id=TaeKwangpeople&page=1&sn1=on&divpage=1&sn=on&ss=off&sc=off&keyword=%B1%E8%C1%D8%B1%B8&select_arrange=headnum&desc=asc&no=5998%22 || 2012-02-09 14:00:19 | sub16 | avira | HMTL/iFrame.mce | 16/40 (40%) | AS9848 | 211.239.157.100 | abuse@sejongtelecom.net | KR | APNIC | SEJONGNET-KR | 83de142e21d687386d3e29bc3eecf5c0 | http://tnnsolution.com/zb41/view.php?id=new2 || 2012-02-09 14:00:20 | sub16 | avira | HMTL/iFrame.mce | 18/43 (41.9%) | AS9848 | 211.239.157.100 | abuse@sejongtelecom.net | KR | APNIC | SEJONGNET-KR | a58414669c5c2403e43525a3227d4274 | http://tnnsolution.com/zb41/view.php?id=new2&page=3&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=hit&desc=desc&no=164 || 2012-02-09 14:00:20 | sub16 | avira | HMTL/iFrame.mce | 19/43 (44.2%) | AS9848 | 211.239.157.100 | abuse@sejongtelecom.net | KR | APNIC | SEJONGNET-KR | f32ed1ca8aa1ed18ed9b594288f8108f | http://tnnsolution.com/zb41/zboard.php?id=fboard&page=10&sn1=&divpage=2&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=5774 || 2012-02-09 14:00:20 | sub16 | avira | HMTL/iFrame.mce | 19/43 (44.2%) | AS9848 | 211.239.157.100 | abuse@sejongtelecom.net | KR | APNIC | SEJONGNET-KR | 9489cd4a35d19387cdc89eb1d32be74f | http://tnnsolution.com/zb41/zboard.php?id=fboard&page=11&sn1=&divpage=2&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=5753 || 2012-02-09 14:00:20 | sub16 | avira | HMTL/iFrame.mce | 17/38 (44.7%) | AS9848 | 211.239.157.100 | abuse@sejongtelecom.net | KR | APNIC | SEJONGNET-KR | 4f2b1e1951c813e945a45dcf48073835 | http://tnnsolution.com/zb41/zboard.php?id=fboard&page=16&sn1=&divpage=2&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=5668 || 2012-02-09 14:00:20 | sub16 | avira | HMTL/iFrame.mce | 17/40 (42.5%) | AS9848 | 211.239.157.100 | abuse@sejongtelecom.net | KR | APNIC | SEJONGNET-KR | 84e5c46ce4561893310e8d31588f8ea3 | http://tnnsolution.com/zb41/zboard.php?id=fboard&page=1&sn1=&divpage=2&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=5916 || 2012-02-09 14:00:20 | sub16 | avira | HMTL/iFrame.mce | 17/40 (42.5%) | AS9848 | 211.239.157.100 | abuse@sejongtelecom.net | KR | APNIC | SEJONGNET-KR | e59f121f28ec3def21fc2484c8dadccc | http://tnnsolution.com/zb41/zboard.php?id=fboard&page=22&sn1=&divpage=2&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=5569 || 2012-02-09 14:00:20 | sub16 | avira | HMTL/iFrame.mce | 17/39 (43.6%) | AS9848 | 211.239.157.100 | abuse@sejongtelecom.net | KR | APNIC | SEJONGNET-KR | a1318d7c5e5685863796a165abc15ba1 | http://tnnsolution.com/zb41/zboard.php?id=fboard&page=37&category=&sn=off&ss=on&sc=on&keyword=&prev_no=&sn1=&divpage=2 || 2012-02-09 14:00:20 | sub16 | avira | HMTL/iFrame.mce | 16/40 (40%) | AS9848 | 211.239.157.100 | abuse@sejongtelecom.net | KR | APNIC | SEJONGNET-KR | c02638131cc9e3dcc7c5b5ba0df260e8 | http://tnnsolution.com/zb41/zboard.php?id=new1&page=1&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=subject&desc=desc || 2012-02-09 14:00:20 | sub16 | avira | HTML/IFrame.era | 18/43 (41.9%) | AS9848 | 211.239.157.100 | abuse@sejongtelecom.net | KR | APNIC | SEJONGNET-KR | e0f40f6aa374c3ee70362e58898aac1d | http://tnnsolution.com/zb41/zboard.php?id=pds&page=1&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=333 || 2012-02-09 14:00:20 | sub16 | avira | HTML/IFrame.era | 16/40 (40%) | AS9848 | 211.239.157.100 | abuse@sejongtelecom.net | KR | APNIC | SEJONGNET-KR | 73c5c06e38f749d1e71089b88615f492 | http://tnnsolution.com/zb41/zboard.php?id=pds&page=9&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=184 || 2012-02-09 14:00:20 | sub16 | avira | HTML/IFrame.era | 16/40 (40%) | AS9848 | 211.239.157.100 | abuse@sejongtelecom.net | KR | APNIC | SEJONGNET-KR | 1ab4016190d68e4e34173aeff737c445 | http://tnnsolution.com/zb41/zboard.php?id=pds&page=9&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=199 || 2012-02-09 14:00:20 | sub16 | avira | ADSPY/NaviPromo.J | 12/37 (32.4%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 8a91588655ee93bdac8f5e1dea1629a5 | http://toptenreport.com/mapilab/micro2n.exe || 2012-02-09 14:00:20 | sub16 | avira | ADSPY/NaviPromo.J | 12/40 (30%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 135dc3f826007ae0652d01b10a0c6fdb | http://toptenreport.com/triedtool/ret-pstpwd.exe || 2012-02-09 14:00:20 | sub16 | Ikarus | HTML.Iframeref | 9/42 (21.4%) | AS14992 | 208.106.129.157 | abuse@crystaltech.com | US | ARIN | CRYSTALTECH-BLK-7 | e445d3f6aa63718eefe0006e0eab55c7 | http://totalsierra.com/ale/ReviewsAdd.asp?LinkID=3451 || 2012-02-09 14:00:20 | sub16 | avira | JS/StyleSheeter.A | 26/40 (65%) | AS20738 | 212.67.202.199 | abuse@webfusion.com | GB | RIPE | UK-WEBFUSION-LEEDS | bd0e45fcded903fcbdfefa1c188a1a3c | http://toysters.com/acatalog/Online_Catalogue_Thomas_The_Tank_Engine___Train_Sets_111.html || 2012-02-09 14:00:20 | sub16 | undef | unknown_file_Jp2lt.exe | 1/40 (2.5%) | AS21844 | 74.52.18.28 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 0289eb0ff23f45e7005591a2184107e0 | http://triplebunkbeds.org/software/kidsloftbedspuzzle.exe || 2012-02-09 14:00:20 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS9891 | 203.146.253.82 | ip_admin@csloxinfo.net | TH | APNIC | idc-csloxinfo | f72c420d2fe81056fd084204247ce115 | http://tsbot2007.com/coveting.html || 2012-02-09 14:00:20 | sub16 | undef | unknown_html_google_malware | 0/40 (0.0%) | AS9891 | 203.146.253.82 | ip_admin@csloxinfo.net | TH | APNIC | idc-csloxinfo | f72c420d2fe81056fd084204247ce115 | http://tsbot2007.com/slow.html || 2012-02-09 14:00:35 | sub16 | avira | HTML/Crypted.Gen | 25/40 (62.5%) | AS36420, AS30315, AS13749, AS21844 | 70.87.64.130 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-13 | a8fa394747e69e49905bb5bfdcb068b9 | http://trucksafety.us/admin/tavia-free-porn/erotic-naked-women.html || 2012-02-09 14:00:35 | sub16 | avira | HTML/IFrame.era | 16/40 (40%) | AS3786 | 114.108.131.25 | ip@kidc.net | KR | APNIC | KIDC-KR | 2e87da0a9bb789375eb9182102799140 | http://tuneupstudio.co.kr/bbs/del_comment.php?id=qna&page=78&sn1=&divpage=9&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=44492&c_no=23610 || 2012-02-09 14:00:35 | sub16 | avira | HTML/IFrame.era | 17/39 (43.6%) | AS3786 | 114.108.131.25 | ip@kidc.net | KR | APNIC | KIDC-KR | 0c0c384cab0d6a0f5c34d81490a7fea0 | http://tuneupstudio.co.kr/bbs/view.php?id=qna&page=126&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=42473 || 2012-02-09 14:00:35 | sub16 | avira | HTML/IFrame.era | 17/40 (42.5%) | AS3786 | 114.108.131.25 | ip@kidc.net | KR | APNIC | KIDC-KR | 32fe544f2ef6c0f25e24607184b581cb | http://tuneupstudio.co.kr/bbs/view.php?id=qna&page=1707&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=10998 || 2012-02-09 14:00:35 | sub16 | avira | HTML/IFrame.era | 17/40 (42.5%) | AS3786 | 114.108.131.25 | ip@kidc.net | KR | APNIC | KIDC-KR | 6e99a304bbf234b0675bfbcbf2854a0c | http://tuneupstudio.co.kr/bbs/view.php?id=qna&page=1891&sn1=&divpage=7&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=8013 || 2012-02-09 14:00:35 | sub16 | avira | HTML/IFrame.era | 17/40 (42.5%) | AS3786 | 114.108.131.25 | ip@kidc.net | KR | APNIC | KIDC-KR | 8639519a74cde1a5e1923789b19a00f0 | http://tuneupstudio.co.kr/bbs/view.php?id=qna&page=1&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=45066 || 2012-02-09 14:00:35 | sub16 | avira | JS/Infected.C | 23/40 (57.5%) | AS8560 | 74.208.128.245 | abuse@1and1.com | US | ARIN | 1AN1-NETWORK | 976e58b8acc6a9a9f6b63bc10b515f17 | http://tvdramawatch.com/wp-includes/js/jquery/jquery.js?ver=1.4.4 || 2012-02-09 14:00:35 | sub16 | avira | HTML/IFrame.vieb | 21/38 (55.3%) | AS4134 | 60.171.159.170 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | e143d7a66e93aead7908b76ab3bf6b25 | http://txsykf.com/Demo_showProDetail.asp?ProID=1523 || 2012-02-09 14:00:35 | sub16 | AntiVir | JOKE/Gun | 20/40 (50%) | AS13238 | 213.180.199.15 | abuse@yandex.ru | RU | RIPE | YANDEX-199 | e46bdb84cb2a03547b0848d571b49a34 | http://u-gvozdika.narod.ru/zipprograms/gun.zip || 2012-02-09 14:00:35 | sub16 | trendmicro | JS_BRADES.SMD | 15/40 (37.5%) | AS36351 | 67.228.195.60 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-5 | efacba4f826508691324cac3ad1fe3af | http://ultimatezac.com/index.php?subaction=showcomments&id=1257177005&archive=&start_from=&ucat=8 || 2012-02-09 14:00:35 | sub16 | avira | HTML/IFrame.era | 17/39 (43.6%) | AS38661 | 124.217.216.170 | noc@hclc.co.kr | KR | APNIC | HCLC-KR | e6c2c32548edd8b8ce435f85e300d9e9 | http://unionwaykrew.com/bbs/view.php?id=2009fest_guest&page=2&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=143 || 2012-02-09 14:00:35 | sub16 | avira | HTML/Crypted.Gen | 26/40 (65%) | AS24940 | 78.46.64.55 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET | 59a173dddcf8eb0aad271594c162c403 | http://uno347.altervista.org/php5/_images/david-ortiz-quotes/stella-atrois.html || 2012-02-09 14:00:38 | sub15 | AhnLab_V3 | Trojan/Win32.HDC | 8/41 (19.5%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | 14d00bcb3be9a3af3b1971352c80f98c | http://asmunster.fr/.mix/p3.gif || 2012-02-09 14:00:38 | sub15 | undef | unknown_exe | 0/40 (0.0%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | cd61372f42cdeb55877d14a27875dd80 | http://asmunster.fr/.mix/p2.gif || 2012-02-09 14:00:38 | sub15 | undef | unknown_exe | 4/40 (10%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | a361f5075d845ae3a8f4e692a2af2f40 | http://79.137.237.66/files/1267 || 2012-02-09 14:00:38 | sub15 | Microsoft | TrojanDownloader:Win32/Banload.ACI | 1/42 (2.4%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | e02a4e0acaa0fadd6c5e0fbe9fe82171 | http://asmunster.fr/.mix/p1.gif || 2012-02-09 14:10:05 | sub14 | avira | DR/Dldr.Small.atkz | 21/39 (53.8%) | AS8422 | 78.35.36.202 | abuse@netcologne.de | DE | RIPE | ARTEGIC | 7ee8ba61e081a00a3f03f18360632262 | http://diebestenbits.de/files/86098ef82c97fa789a47a8d2e8800794/115/dana-setup.exe&&&&&<br&&&&&> || 2012-02-09 14:10:59 | sub1 | clamav | PUA.Packed.ASPack | 8/38 (21.1%) | AS3267 | 194.226.211.12 | | RU | RIPE | HERZEN-NET | cd52736112e2d4568b8d50f2d4749d60 | http://194.226.211.12/img/zircon.gif || 2012-02-09 14:10:59 | sub10 | undef | unknown_exe | 10/40 (25%) | AS35662 | 109.73.75.3 | abuse@dedicatedservercontact.com | GB | RIPE | DSC-PDGMJGPG | 739c51b7a0106f8bf8279345eaddee04 | http://109.73.75.3/video/videon12.exe || 2012-02-09 14:16:09 | sub5 | avira | PHP/Shellbot.7642 | 31/40 (77.5%) | AS14141 | 98.142.215.183 | wnoc@wiresix.com | US | ARIN | WIRESIX | 787b4c7de4cd82ae915c792dc65b3acf | http://fileden.com/files/2012/2/4/3259779//4k47.txt? || 2012-02-09 14:40:04 | sub15 | Microsoft | TrojanDownloader:Win32/Banload.ACI | 1/39 (2.6%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | e02a4e0acaa0fadd6c5e0fbe9fe82171 | http://asmunster.fr/.mix/k1.exe || 2012-02-09 14:40:51 | sub16 | avira | HTML/Modifo.A | 21/40 (52.5%) | AS17447 | 202.71.129.152 | ipadmin@net4india.net | IN | APNIC | NET4 | 822ce1ea521bd2b80e90d3556b30c8ad | http://valentine-wallpaper.com/category/Flowers/121/ || 2012-02-09 14:40:51 | sub16 | avira | HTML/Modifo.A | 21/40 (52.5%) | AS17447 | 202.71.129.152 | ipadmin@net4india.net | IN | APNIC | NET4 | d7ceeb050aef4a9eb4fb76c048b3d16b | http://valentine-wallpaper.com/category/Flowers/15/ || 2012-02-09 14:40:51 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 22/43 (51.2%) | AS25532 | 90.156.201.66 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-HOSTING | e4853e7dd2c260a7c0d35ce6aa9da2bd | http://valerepower.ru/guestbook/?guestbook_page=12 || 2012-02-09 14:40:52 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 22/43 (51.2%) | AS25532 | 90.156.201.66 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-HOSTING | 65d8385553677b6d15d3d2a3d6140a40 | http://valerepower.ru/guestbook/?guestbook_page=13 || 2012-02-09 14:40:52 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 20/40 (50%) | AS25532 | 90.156.201.66 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-HOSTING | 7ddc4e0bf1440cd9046117ba021e5f43 | http://valerepower.ru/guestbook/?guestbook_page=16 || 2012-02-09 14:40:52 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 20/40 (50%) | AS25532 | 90.156.201.66 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-HOSTING | 0c41d70feba4376fd1f9f7c99c2fa07b | http://valerepower.ru/guestbook/?guestbook_page=18 || 2012-02-09 14:40:52 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 20/40 (50%) | AS25532 | 90.156.201.66 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-HOSTING | 7024f18b8067e0be9964c8246d92db2c | http://valerepower.ru/guestbook/?guestbook_page=22 || 2012-02-09 14:40:52 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 20/40 (50%) | AS25532 | 90.156.201.66 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-HOSTING | 415e83ff759f6b9115d5233e34cfcecd | http://valerepower.ru/guestbook/?guestbook_page=5 || 2012-02-09 14:40:52 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 20/40 (50%) | AS25532 | 90.156.201.66 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-HOSTING | 49b3c464bfcfb0107167cfb86e12fc91 | http://valerepower.ru/guestbook/?guestbook_page=6 || 2012-02-09 14:40:52 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 20/40 (50%) | AS25532 | 90.156.201.66 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-HOSTING | e4853e7dd2c260a7c0d35ce6aa9da2bd | http://valerepower.ru/guestbook/index.php?guestbook_page=12 || 2012-02-09 14:40:52 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 20/40 (50%) | AS25532 | 90.156.201.66 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-HOSTING | 65d8385553677b6d15d3d2a3d6140a40 | http://valerepower.ru/guestbook/index.php?guestbook_page=13 || 2012-02-09 14:40:52 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 19/39 (48.7%) | AS25532 | 90.156.201.66 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-HOSTING | 94b199478542445deee47e986692b36c | http://valerepower.ru/guestbook/index.php?guestbook_page=19 || 2012-02-09 14:40:52 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 19/38 (50%) | AS25532 | 90.156.201.66 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-HOSTING | bf090edff5acfcbc2648521a84542eb1 | http://valerepower.ru/guestbook/index.php?guestbook_page=20 || 2012-02-09 14:40:52 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 20/40 (50%) | AS25532 | 90.156.201.66 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-HOSTING | bccb0566e1538af6e2f53a17fb6f2394 | http://valerepower.ru/guestbook/index.php?guestbook_page=21 || 2012-02-09 14:40:52 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 20/40 (50%) | AS25532 | 90.156.201.66 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-HOSTING | 3f605e0ca3713eba84db9345ddde9eaf | http://valerepower.ru/guestbook/index.php?guestbook_page=3 || 2012-02-09 14:40:52 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 20/40 (50%) | AS25532 | 90.156.201.66 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-HOSTING | 48b3734aec20bda9dee20dd09ff51100 | http://valerepower.ru/guestbook/index.php?guestbook_page=6 || 2012-02-09 14:40:52 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 22/43 (51.2%) | AS25532 | 90.156.201.66 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-HOSTING | e3b923ce2788242ad1aa3feecff76844 | http://valerepower.ru/guestbook/index.php?guestbook_page=60 || 2012-02-09 14:40:52 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 20/40 (50%) | AS25532 | 90.156.201.66 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-HOSTING | fc982a7603191393b35d3071a9de8485 | http://valerepower.ru/guestbook/index.php?guestbook_page=65 || 2012-02-09 14:40:52 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 18/37 (48.6%) | AS25532 | 90.156.201.66 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-HOSTING | 19d04ddd403e8017d2bf07144105d0b0 | http://valerepower.ru/guestbook/index.php?guestbook_page=7 || 2012-02-09 14:40:52 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 16/35 (45.7%) | AS25532 | 90.156.201.66 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-HOSTING | 52bd17491156b7826463146a79a2a3b8 | http://valerepower.ru/guestbook/index.php?guestbook_page=8 || 2012-02-09 14:40:52 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 20/40 (50%) | AS25532 | 90.156.201.59 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-HOSTING | 47d0522024ff45e5e1136c5da9ac5b6f | http://valerepower.ru/guestbook/index.php?guestbook_page=95 || 2012-02-09 14:40:52 | sub16 | Comodo | UnclassifiedMalware | 2/39 (5.1%) | AS44112 | 77.222.40.27 | abuse@sweb.ru | RU | RIPE | SpaceWeb | 1c6b567411418e6929053e3121474e0c | http://vedrussia.ru/7d4b61a49358e11770d85428109da198/effects_.js || 2012-02-09 14:40:53 | sub16 | avira | HTML/IFrame.era | 16/38 (42.1%) | AS9318 | 211.49.162.28 | abuse@hanaro.com | KR | APNIC | HANANET-INFRA | ee60efaea98231fa706c7b0a7dcd0c12 | http://xn--ij1b50t.kr/bbs/view.php?id=gallery&page=1&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=79 || 2012-02-09 14:40:53 | sub16 | avira | HTML/IFrame.XV | 21/40 (52.5%) | AS13301 | 213.202.225.77 | abuse@funpic.de | DE | RIPE | UNITEDCOLO-BERGLER-LIEMEN-NET | eb1b6f780de77d45f9019f0beb0b7c58 | http://xode.xo.funpic.de/artmedic_cms32/ || 2012-02-09 14:40:53 | sub16 | avira | HTML/IFrame.XV | 19/40 (47.5%) | AS13301 | 213.202.225.77 | abuse@funpic.de | DE | RIPE | UNITEDCOLO-BERGLER-LIEMEN-NET | b80dd29235e64f7f903d7fa8b628bec2 | http://xode.xo.funpic.de/ventus/ || 2012-02-09 14:40:53 | sub16 | avira | HTML/IFrame.XV | 18/39 (46.2%) | AS13301 | 213.202.225.77 | abuse@funpic.de | DE | RIPE | UNITEDCOLO-BERGLER-LIEMEN-NET | 96f375db384f38d9dcb3b5bff0fe876c | http://xode.xo.funpic.de/ventus/index.php || 2012-02-09 14:40:53 | sub16 | avira | HTML/IFrame.XV | 21/38 (55.3%) | AS13301 | 213.202.225.77 | abuse@funpic.de | DE | RIPE | UNITEDCOLO-BERGLER-LIEMEN-NET | c18436d7f2d832bac5e1e954dd18bcf6 | http://xode.xo.funpic.de/webSpell/index.php || 2012-02-09 14:40:53 | sub16 | avira | HTML/IFrame.era | 18/42 (42.9%) | AS3786 | 180.150.228.145 | ljy1258@ehostidc.co.kr | KR | APNIC | EHOSTIDC-KR | d3a5fe00d7b8f545281b1bdfe9206f69 | http://xoutside.com/bbs/view.php?id=RebarFactory&page=3&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=hit&desc=asc&no=17 || 2012-02-09 14:40:53 | sub16 | avira | HTML/IFrame.era | 16/39 (41%) | AS3786 | 180.150.228.145 | ljy1258@ehostidc.co.kr | KR | APNIC | EHOSTIDC-KR | 25a14d5486164a25b13273292d9911b8 | http://xoutside.com/bbs/view.php?id=RebarFactory&page=3&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=name&desc=desc&no=154 || 2012-02-09 14:40:54 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 20/39 (51.3%) | AS48619 | 91.209.206.52 | abuse@so.ua | UA | RIPE | SOUA-NET | 097702f222a6d8b6859bc91135d903ee | http://ycd-ru.hrworld.ru/guest/?14270 || 2012-02-09 14:40:54 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 20/39 (51.3%) | AS48619 | 91.209.206.52 | abuse@so.ua | UA | RIPE | SOUA-NET | b97f509272f7d9035d52bbeb40cb97c6 | http://ycd-ru.hrworld.ru/guest/?14310 || 2012-02-09 14:40:54 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 23/43 (53.5%) | AS48619 | 91.209.206.52 | abuse@so.ua | UA | RIPE | SOUA-NET | f20ba4f376dafeaeee8b0e75915d2d8f | http://ycd-ru.hrworld.ru/guest/?22280 || 2012-02-09 14:40:54 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 21/40 (52.5%) | AS48619 | 91.209.206.52 | abuse@so.ua | UA | RIPE | SOUA-NET | a7f4e6cc39dee75ff6344359399ecc4e | http://ycd-ru.hrworld.ru/guest/?23430 || 2012-02-09 14:40:54 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 23/43 (53.5%) | AS48619 | 91.209.206.52 | abuse@so.ua | UA | RIPE | SOUA-NET | b8f8b1ba3133d27bc6883c69fdbc366b | http://ycd-ru.hrworld.ru/guest/?23720 || 2012-02-09 14:40:54 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 21/40 (52.5%) | AS48619 | 91.209.206.52 | abuse@so.ua | UA | RIPE | SOUA-NET | 6a4ec9519680d838132500b740271dbf | http://ycd-ru.hrworld.ru/guest/?24360 || 2012-02-09 14:40:54 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 19/38 (50%) | AS48619 | 91.209.206.52 | abuse@so.ua | UA | RIPE | SOUA-NET | f0c0a696231ef8e7209bd3e386fcd11c | http://ycd-ru.hrworld.ru/guest/?24840 || 2012-02-09 14:40:54 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 21/40 (52.5%) | AS48619 | 91.209.206.52 | abuse@so.ua | UA | RIPE | SOUA-NET | f629b94a6132c0e72d7a4c1919f516de | http://ycd-ru.hrworld.ru/guest/?3560 || 2012-02-09 14:40:54 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 21/40 (52.5%) | AS48619 | 91.209.206.52 | abuse@so.ua | UA | RIPE | SOUA-NET | 4b111c86b992f447a802a6a5fa115252 | http://ycd-ru.hrworld.ru/guest/?6510 || 2012-02-09 14:40:54 | sub16 | undef | unknown_html_RFI_eval | 8/39 (20.5%) | AS4134 | 122.224.34.104 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 1da0df9faa914f4b9236f1bb091e5995 | http://yylover.com/index.htm?top=nvxing || 2012-02-09 14:40:54 | sub16 | avira | HTML/FakeAlert.I | 28/40 (70%) | AS25233 | 212.93.222.10 | abuse@awalnet.net.sa | SA | RIPE | FAISALIAH-1 | 7b0f8ab02ffd6ab92fb660069e739c8e | http://zamiloffshore.com/siteadmin/css/styles/topic-1892.html || 2012-02-09 14:40:54 | sub16 | undef | unknown_html_google_malware | 0/40 (0.0%) | AS4134 | 222.76.215.40 | anti-spam@ns.chinanet.cn.net | CN | APNIC | XIAMEN-TELECOM-IDC-XIAMEN-FJ | b0efd3c5fb516cf85e3bc25fdad321c6 | http://zjgxsyy.com/bbs/dv_dpo/ || 2012-02-09 14:40:54 | sub16 | Avast | JS:Redirector-NH [Trj] | 15/43 (34.9%) | AS9143 | 212.178.109.230 | abuse@as9143.net | NL | RIPE | TEURLINGS_BV | e4dc3ac3e8bbf4a760cf968ae93ae715 | http://zuiderbuurtje.nl/fotoalbum/index.php?cat=10 || 2012-02-09 14:40:55 | sub16 | avira | TR/Dropper.Gen | 30/38 (78.9%) | AS4134 | 113.105.157.84 | abuse@gddc.com.cn | CN | APNIC | CHINANET-GD | ec3b59f895054b46715e325080fea10d | http://zz.jbxxd.com:896/Qvod8.exe || 2012-02-09 14:41:07 | sub16 | Comodo | ApplicUnwnt.Win32.AdWare.InstallCore.1 | 4/43 (9.3%) | AS14618 | 174.129.198.135 | aes-noc@amazon.com | US | ARIN | AMAZON-EC2-5 | e59de9ebdc4fa66795cdeee11adb1639 | http://soft.foxtab.com/pdf-creator/gb/sf/?dl=1 || 2012-02-09 14:41:17 | sub16 | CAT_QuickHeal | JS/Clicker.ACK | 13/43 (30.2%) | AS26496 | 182.50.148.128 | gschwimer@godaddy.com | SG | APNIC | GODADDY-NET-SG | 749c957f6d73e2d40480e80922707037 | http://violympic.org/toan-lop-5-cong-cac-gio-le.htm || 2012-02-09 14:41:17 | sub16 | undef | unknown_html_RFI_eval | 12/40 (30%) | AS26496 | 182.50.148.128 | gschwimer@godaddy.com | SG | APNIC | GODADDY-NET-SG | fe76544cd509ba3d6055bb0d50f88718 | http://violympic.org/toan-lop-5-phep-cong-phan-1.htm || 2012-02-09 14:41:17 | sub16 | CAT_QuickHeal | JS/Clicker.ACK | 13/43 (30.2%) | AS26496 | 182.50.148.128 | gschwimer@godaddy.com | SG | APNIC | GODADDY-NET-SG | 62ab7347209476a01cbc0d7142ecb3f7 | http://violympic.org/toan-lop-7-thong-ke-so-lap-di-lap-lai-nhieu-nhat.htm || 2012-02-09 14:41:18 | sub16 | avira | JS/iFrame.psa.22 | 22/40 (55%) | AS8342 | 81.176.226.173 | noc@in-solve.ru | RU | RIPE | INSOLVERTC2 | cc32cbd9284cd6a58de3ed7e833d7cc3 | http://w202club.ru/sib-benz/benzclub/index.html || 2012-02-09 14:41:18 | sub16 | avira | JS/Redir.CP | 21/40 (52.5%) | AS29802 | 68.233.255.135 | abuse@noc4hosts.com | US | ARIN | NOC4HOSTS1 | c57dbc892b76ec7af8e019f2d7a8926e | http://warrensvillefile.com/information.php/info_id/3?osCsid=ffbe6f1c7592cacce28c5ea2d06ce040 || 2012-02-09 14:41:18 | sub16 | avira | HTML/SrcInject.U | 21/43 (48.8%) | AS26496 | 64.202.163.11 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | ed05e7a19c97c4d5c4e0b4d9dc6c5887 | http://wausau-info.com/catalog3/products_new.php?osCsid=20 || 2012-02-09 14:41:18 | sub16 | avira | HTML/Infected.WebPage.Gen | 2/40 (5%) | AS40676 | 199.71.212.59 | noc@psychz.net | US | ARIN | PSYCHZ-NETWORKS | 1e300da7fca46e740830a2f23c0ee810 | http://wayned.com/disney-world/ || 2012-02-09 14:41:18 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 23/40 (57.5%) | AS30475 | 64.27.63.210 | abuse@wehostwebsites.com | US | ARIN | WEHOSTWEBSITES-NETWORK | c4efb7052f185308cfb633133754e3c0 | http://webhostingin.com/atul/14thmay/Pillow-block-bearing.html || 2012-02-09 14:41:18 | sub16 | avira | JS/iFrame.aau | 17/43 (39.5%) | AS12695 | 92.38.226.6 | abuse@di-net.ru | RU | RIPE | DINETHOSTING-NEXT2 | 845b61c00acebd125fa6556393b82322 | http://webkolesa.ru/catalog/includes/htm/crosskin/orgsteklo.htm || 2012-02-09 14:41:18 | sub16 | avira | JS/iFrame.aau | 17/42 (40.5%) | AS12695 | 92.38.226.6 | abuse@di-net.ru | RU | RIPE | DINETHOSTING-NEXT2 | 20426b767188bccd389361e083235598 | http://webkolesa.ru/catalog/includes/htm/crosspartner/telo_skanvord.htm || 2012-02-09 14:41:19 | sub16 | undef | unknown_html_RFI_shell | 12/40 (30%) | AS8560 | 82.165.59.139 | abuse@1and1.com | DE | RIPE | SCHLUND-SHARED | 062c9fc4dbb4eda3b6263e12b4ded516 | http://williammathieson.co.uk/blog/comments.php?y=09&m=05&entry=entry090512-180734 || 2012-02-09 14:41:19 | sub16 | Avast | HTML:Iframe-inf | 14/43 (32.6%) | AS8560 | 82.165.59.139 | abuse@1and1.com | DE | RIPE | SCHLUND-SHARED | 52a254a8c9646b23a4bf9f86c31d0cc8 | http://williammathieson.co.uk/blog/comments.php?y=09&m=10&entry=entry091007-213710 || 2012-02-09 14:41:19 | sub16 | avira | HTML/FakeAlert.I | 28/40 (70%) | AS13037 | 82.71.204.15 | ripe@zen.co.uk | GB | RIPE | UK-ZEN-20030428 | 755f4a70827039876d242eb670f1e628 | http://williemiller.co.uk/wp-content/2007/12/online-scan-antivirus.html || 2012-02-09 14:41:19 | sub16 | avira | JS/iFrame.HB | 20/40 (50%) | AS8342 | 81.177.6.134 | abuse@agava.com | RU | RIPE | AGAVA | c6dac622f34eea30ebeb7ca85e42efab | http://womenhealthnature.ru/index.php/component/virtuemart/details/1878/74/kosmetika/transdermal/fleurdelis-migren.html || 2012-02-09 14:41:19 | sub16 | avira | JS/iFrame.HB | 20/40 (50%) | AS8342 | 81.177.6.134 | abuse@agava.com | RU | RIPE | AGAVA | fc2b843025377404e6179ef031ef02a2 | http://womenhealthnature.ru/index.php/component/virtuemart/details/1928/44/face_treatment/epilatori/bradex-slegs.html || 2012-02-09 14:41:19 | sub16 | avira | JS/iFrame.HB | 20/40 (50%) | AS8342 | 81.177.6.134 | abuse@agava.com | RU | RIPE | AGAVA | e32e07d5f53bc80b177877607e34ef72 | http://womenhealthnature.ru/index.php/component/virtuemart/details/2051/93/kitchen/knives/specialknives/tescoma638652.html || 2012-02-09 14:41:19 | sub16 | avira | JS/iFrame.HB | 20/40 (50%) | AS8342 | 81.177.6.134 | abuse@agava.com | RU | RIPE | AGAVA | 31636ed8c07127e3599471b5199f39d5 | http://womenhealthnature.ru/index.php/component/virtuemart/details/2130/30/legs_treatment/ploskostopie/stelki/trives-ct231.html || 2012-02-09 14:41:19 | sub16 | avira | JS/iFrame.HB | 22/43 (51.2%) | AS8342 | 81.177.6.134 | abuse@agava.com | RU | RIPE | AGAVA | f03e0d491779bf7d16edc9d3a8658647 | http://womenhealthnature.ru/index.php/component/virtuemart/details/436/74/kosmetika/transdermal/fleurdelis-volos.html || 2012-02-09 14:41:19 | sub16 | avira | JS/iFrame.HB | 20/40 (50%) | AS8342 | 81.177.6.134 | abuse@agava.com | RU | RIPE | AGAVA | 0e9c8fddfc5b44520096dd1e25c60809 | http://womenhealthnature.ru/index.php/component/virtuemart/details/620/153/sportfood/protein/performance-wheyisolate.html || 2012-02-09 14:41:19 | sub16 | avira | JS/iFrame.HB | 20/40 (50%) | AS8342 | 81.177.6.134 | abuse@agava.com | RU | RIPE | AGAVA | 456feb9cc9e4dc3b1adca6bac95b373b | http://womenhealthnature.ru/index.php/component/virtuemart/details/702/130/fizioterapia/fizio_misc/ntcardiomag.html || 2012-02-09 14:41:19 | sub16 | avira | JS/iFrame.HB | 20/40 (50%) | AS8342 | 81.177.6.134 | abuse@agava.com | RU | RIPE | AGAVA | 50a30979c1cdf7008309f3becd35f788 | http://womenhealthnature.ru/index.php/component/virtuemart/details/882/29/legs_treatment/ploskostopie_kovriki/persey-morskoe.html || 2012-02-09 14:41:19 | sub16 | avira | JS/iFrame.HB | 19/37 (51.4%) | AS8342 | 81.177.6.134 | abuse@agava.com | RU | RIPE | AGAVA | 05dd2ec2b8cfd66c1efb6b0abbcfd749 | http://womenhealthnature.ru/index.php/component/virtuemart/details/96/30/legs_treatment/ploskostopie/stelki/orto-lux.html |+---------------------+-------------+---------------+----------------------------------------+---------------+--------------------------------------------+-----------------+-------------------------------------+---------+--------+----------------------------------------+----------------------------------+--------------------------------------------------------------------------------------------------------------------------------------------------------------------+200 rows in set (0.12 sec)
+---------------------+-------------+------------+-----------------------------------+---------------+---------+-----------------+--------------------------+---------+--------+-----------------+----------------------------------+--------------------------------------------------------------+| date | contributor | scanner | virusname | vt_score | AS | review | email | country | source | netname | md5sum | url |+---------------------+-------------+------------+-----------------------------------+---------------+---------+-----------------+--------------------------+---------+--------+-----------------+----------------------------------+--------------------------------------------------------------+| 2012-02-09 14:41:19 | sub16 | undef | unknown_exe | 0/43 (0.0%) | AS40676 | 173.224.211.174 | noc@psychz.net | US | ARIN | PSYCHZ-NETWORKS | 9d07c95012a3cd9fa80faf47cc00e782 | http://www.ifreeconverter.com/download/dvdtoflvconverter.exe || 2012-02-09 14:41:19 | sub16 | trendmicro | TROJ_FETIBAR.B | 25/40 (62.5%) | AS8560 | 74.208.31.229 | abuse@1and1.com | US | ARIN | 1AN1-NETWORK | 58a66f385e3b2cb68cd221d25157abf7 | http://www.powersearchtool.com/ie/PowerSearchTool.exe || 2012-02-09 15:00:05 | sub16 | undef | unknown_html_RFI_php | 0/42 (0.0%) | AS7506 | 210.172.144.27 | warita@gmo.jp | JP | APNIC | INTERQ | fafa86ef849d8dfbd5a69af2fc80995c | http://asakusa-kagetudo.com/ || 2012-02-09 15:00:48 | sub9 | clamav | PUA.Script.PDF.EmbeddedJavaScript | 14/40 (35%) | AS43239 | 91.196.216.99 | abuse@specenergo2.ru | RU | RIPE | SPETSENERGO-NET | 741bcb155ba114b3329cd85205976062 | http://rbixtmlx.ninth.biz/content/adp1.php?f=16 || 2012-02-09 15:01:50 | sub1 | undef | unknown_exe | 3/40 (7.5%) | AS32244 | 69.167.181.201 | abuse@liquidweb.com | US | ARIN | LIQUIDWEB-9 | 03dd31fc3faca182bd4c0dec23274254 | http://www.timansley.com/bigweb/pw.exe || 2012-02-09 15:02:06 | sub1 | avira | BDS/Backdoor.Gen3 | 9/40 (22.5%) | AS32613 | 70.38.98.238 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-05 | 4768d665ed314329aea1bfbc34600e72 | http://img104.herosh.com/2012/02/08/776435609.gif || 2012-02-09 15:02:06 | sub1 | avira | BDS/Backdoor.Gen3 | 8/40 (20%) | AS32613 | 70.38.98.237 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-05 | 3660f18d2e80368c33ee9b9beca2825f | http://img103.herosh.com/2012/02/08/733842456.gif || 2012-02-09 15:02:06 | sub1 | avira | BDS/Backdoor.Gen3 | 7/39 (17.9%) | AS32613 | 70.38.98.237 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-05 | f4e7296cdfe6770857143e250beabb97 | http://img103.herosh.com/2012/02/08/366399772.gif |+---------------------+-------------+------------+-----------------------------------+---------------+---------+-----------------+--------------------------+---------+--------+-----------------+----------------------------------+--------------------------------------------------------------+8 rows in set (0.03 sec)
Topic: clean mx's daily dirt (Read 4198300 times)
