0 Members and 12 Guests are viewing this topic.
+---------------------+-------------+------------+-----------------------------------+---------------+---------------------------------------------+-----------------+-------------------------------------+---------+--------+-----------------------------+----------------------------------+--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| date | contributor | scanner | virusname | vt_score | AS | review | email | country | source | netname | md5sum | url |+---------------------+-------------+------------+-----------------------------------+---------------+---------------------------------------------+-----------------+-------------------------------------+---------+--------+-----------------------------+----------------------------------+--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| 2012-02-04 10:01:45 | sub16 | avira | JS/iFrame.psa.22 | 23/40 (57.5%) | AS34221 | 217.199.218.172 | dn@quickline.ru | RU | RIPE | QL-LAN-LL1 | a2af0fa90e02fe35c49125114f27e338 | http://qaqalar.net/oxu/index.php?file=FETIRUSTU.txt&kat=Toy-Merasimi&view=2 || 2012-02-04 10:01:45 | sub16 | avira | JS/iFrame.psa.22 | 23/40 (57.5%) | AS34221 | 217.199.218.172 | dn@quickline.ru | RU | RIPE | QL-LAN-LL1 | 2fe9beac5fb5baa3a4deef1ba8ba1a81 | http://qaqalar.net/oxu/index.php?sort=data&kat=Qiz-Ve-Oglan&view=1 || 2012-02-04 10:01:47 | sub16 | AntiVir | JOKE/MovingMouse.C | 25/40 (62.5%) | AS30968 | 77.221.130.23 | abuse@infobox.ru | RU | RIPE | INFOBOX-NET1 | 0f68c57c8df5e70529d02fcfa173802a | http://realdosug.ru/komp_prikol/crazy_mouse2.rar || 2012-02-04 10:01:47 | sub16 | avira | HTML/Crypted.Gen | 24/39 (61.5%) | AS29611 | 217.68.241.140 | noc@elite.net.uk | GB | RIPE | ELITE-UK-NETWORK | 5c3bf33b5d7441f50576518b19cbcd84 | http://rentalspecialists.co.uk/photos/thumbs/news-1001-2008-10-17.html || 2012-02-04 10:01:47 | sub16 | avira | HTML/Crypted.Gen | 25/40 (62.5%) | AS29611 | 217.68.241.140 | noc@elite.net.uk | GB | RIPE | ELITE-UK-NETWORK | acfb2561d297ec41dd4206ff48cb5ce7 | http://rentalspecialists.co.uk/photos/thumbs/news-1228-2008-10-15.html || 2012-02-04 10:01:47 | sub16 | avira | HTML/Crypted.Gen | 24/40 (60%) | AS29611 | 217.68.241.140 | noc@elite.net.uk | GB | RIPE | ELITE-UK-NETWORK | 52486b05b6a1a327d662ba9db2174ab6 | http://rentalspecialists.co.uk/photos/thumbs/news-2069-2008-10-14.html || 2012-02-04 10:01:48 | sub16 | avira | JS/Redirector.MR | 7/40 (17.5%) | AS47781 | 91.206.200.72 | rudenko@delta-x.ua | UA | RIPE | Delta-X | fa92f11bfdcc3fe21b9e6a799b9279d0 | http://rhemachurch.dn.ua/about_church/history || 2012-02-04 10:01:48 | sub16 | avira | JS/Clicker.CA | 31/40 (77.5%) | AS36420, AS30315, AS13749, AS21844 | 70.85.145.98 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-13 | c062d05745ce00e17cf6576565acd8b5 | http://royalcs.com/blog/?tag=self-defense || 2012-02-04 10:02:35 | sub16 | Antiy_AVL | Trojan/win32.agent.gen | 15/40 (37.5%) | AS20773 | 46.163.77.137 | net-abuse@hosteurope.de | DE | RIPE | DE-HE-LVPS-46-163-72-NET | bc545ebf0ba2a11ee332a677e963e4fd | http://pc-cheats.de/tt/warhammer40k_space_marine_v10610_trn3.zip || 2012-02-04 10:02:38 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 21/40 (52.5%) | AS2820 | 212.114.10.1 | abuse@telekom.ru | RU | RIPE | APREC-NET | f33ccba28f13bbf5f3b626e4db5edbdf | http://rusmagistr.ru/forum/profile.php?mode=viewprofile&u=3438&sid=d914eac0858e1ab9ff4de1a7951d03ee || 2012-02-04 10:02:38 | sub16 | avira | JS/Infected.C | 23/40 (57.5%) | AS3595 | 205.251.135.210 | engineering@gnax.net | US | ARIN | GNAXNET | 327caaaa2c8b0188da4077815696aaa7 | http://sagittariussagittarius.com/wp-content/themes/LightBright/js/cufon-yui.js || 2012-02-04 10:02:38 | sub16 | avira | HTML/IFrame.Inje.1 | 27/40 (67.5%) | AS25459 | 94.103.156.3 | arco@nedzone.nl | NL | RIPE | NL-NEDZONE-20080915 | e925afe73d29cac395cc51922b37cd54 | http://salamancapad.nl/phpBB3/viewtopic.php?f=1&t=7995 || 2012-02-04 10:02:38 | sub16 | avira | HTML/IFrame.NS.1 | 13/40 (32.5%) | AS12363 | 195.110.124.133 | abuse@dada.net | IT | RIPE | register-it | 02d6fe57daa298bdff8bf0567808b382 | http://salatimario.it/tonymery/carnevale_2010/index.html || 2012-02-04 10:02:38 | sub16 | avira | EXP/Agent.zib | 31/40 (77.5%) | AS2118 | 194.135.22.233 | advt@relcom.ru | RU | RIPE | relcom | 529f68ecd2ed578182ebb2b3f91e3f2c | http://salvage.ru/dir-catalogue/avtomobili || 2012-02-04 10:02:38 | sub16 | avira | EXP/Agent.zib | 31/40 (77.5%) | AS2118 | 194.135.22.233 | advt@relcom.ru | RU | RIPE | relcom | a4f7ea846b4da4b50e73d6df6429d90a | http://salvage.ru/dir-catalogue/obrazovanie/id-1384/sd-1 || 2012-02-04 10:02:38 | sub16 | avira | EXP/Agent.zib | 31/39 (79.5%) | AS2118 | 194.135.22.233 | advt@relcom.ru | RU | RIPE | relcom | ba3bd2d33dd72069e71ea470538a7bf5 | http://salvage.ru/dir-catalogue/poisk/1031 || 2012-02-04 10:02:38 | sub16 | avira | EXP/Agent.zib | 31/40 (77.5%) | AS2118 | 194.135.22.233 | advt@relcom.ru | RU | RIPE | relcom | d42df3a24364504a30a6371f8c16e082 | http://salvage.ru/dir-catalogue/poisk/892 || 2012-02-04 10:02:38 | sub16 | avira | JS/iFrame.oce | 17/40 (42.5%) | AS32244 | 72.52.136.4 | abuse@liquidweb.com | US | ARIN | LIQUIDWEB-6 | fd15a45ba770678287437c5be29c2459 | http://sdtheatrescene.com/phpbb/viewtopic.php?f=4&t=1036&p=1058&sid=45df1078b666212b9680added09ae01d || 2012-02-04 10:02:38 | sub16 | avira | TR/PSW.37888.A | 20/43 (46.5%) | AS4538 | 202.117.35.252 | dzhang@xjtu.edu.cn | CN | APNIC | XJTU-CN | 626aaedb2fd3cbeabfdc5b8f7a6855c5 | http://sd.xjtu.edu.cn/soft/winrar3.2.exe?POSTNUKESID=a7834fea55aead&&&&&&&&&&&&&&&&ampampl || 2012-02-04 10:02:38 | sub16 | avira | JS/Agent.zbh | 29/40 (72.5%) | AS36420, AS30315, AS13749, AS21844, AS13884 | 67.15.82.76 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-EV1-14 | b99413c827daf9e022015852216d584f | http://searchandlookup.com/cell/ || 2012-02-04 10:02:38 | sub16 | Avast | HTML:Paylap-L Trj | 4/40 (10%) | AS40676 | 216.24.196.152 | noc@psychz.net | US | ARIN | PSYCHZ-NETWORKS | c5c88b521407675f88d40d87f5a54eb9 | http://service.paypal.com.mrlunix.com/cy/cgl-bin/ || 2012-02-04 10:30:44 | sub16 | Antiy_AVL | Trojan/Win32.Agent.gen | 15/40 (37.5%) | AS42926 | 31.210.72.32 | abuse@kosanbit.com | TR | RIPE | KOSANBIT | d3c49b5ad4b1e11a07cf9cb9e77015bc | http://static.cshile.gen.tr/2011/02/cs-1-8-wall-cca-hook-cshile-gen-tr.zip || 2012-02-04 10:30:45 | sub16 | avira | HTML/IFrame.era | 1/39 (2.6%) | AS9318 | 222.239.76.166 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | 8cd436ba7759bb320534d7160c448edb | http://studio-roc.com/bbs/view.php?id=archive&page=5&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=54 || 2012-02-04 10:30:45 | sub16 | avira | JS/Agent.zbh | 27/39 (69.2%) | AS32780 | 174.127.104.94 | arin-contact@hostingservicesinc.net | US | ARIN | HOSTINGSERVICES-INC | 0131797cda12b75f293549cbc5182114 | http://takecontrol-youcandoit.com/forum/index.php?action=3dprofile/////; || 2012-02-04 10:30:45 | sub16 | avira | JS/Infected.C | 21/40 (52.5%) | AS32475 | 184.154.1.107 | abuse@singlehop.com | US | ARIN | SINGLEHOP | a3184e8187594b70aff305564cf7a3b4 | http://talkinfunny.com/wp-content/plugins/contact-form-7/scripts.js?ver=2.4.4 || 2012-02-04 10:30:45 | sub16 | avira | JS/Infected.C | 22/39 (56.4%) | AS32475 | 184.154.1.107 | abuse@singlehop.com | US | ARIN | SINGLEHOP | 10219661fb7ef335f463d6a69926960f | http://talkinfunny.com/wp-content/themes/polaris/js/dropdown.js || 2012-02-04 10:30:45 | sub16 | avira | JS/Infected.C | 21/40 (52.5%) | AS32475 | 184.154.1.107 | abuse@singlehop.com | US | ARIN | SINGLEHOP | d0daba2ed7dafc5c7e406326c5032c1d | http://talkinfunny.com/wp-content/themes/polaris/js/fonts/qlassik.font.js || 2012-02-04 10:30:45 | sub16 | avira | JS/Infected.C | 22/40 (55%) | AS32475 | 184.154.1.107 | abuse@singlehop.com | US | ARIN | SINGLEHOP | 976e58b8acc6a9a9f6b63bc10b515f17 | http://talkinfunny.com/wp-includes/js/jquery/jquery.js?ver=1.4.4 || 2012-02-04 10:40:09 | sub24 | avira | EXP/Pidief.atm | 23/40 (57.5%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 64b6b3dad943bd30ef6d4b85d991c349 | http://108.59.5.66/content/fdp1.php?f=53 || 2012-02-04 10:40:09 | sub24 | avira | EXP/Pidief.atm | 23/40 (57.5%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 381b54e6ea2f18a4d864594c5f633b9a | http://108.59.5.66/content/fdp1.php?f=88 || 2012-02-04 10:40:09 | sub24 | avira | EXP/Pidief.att | 21/40 (52.5%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | 5a723e6011b7beee9b53645338bf8824 | http://79.137.237.66/content/adfp1.php?f=29 || 2012-02-04 10:40:09 | sub24 | avira | EXP/Pidief.att | 21/39 (53.8%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | 5b7b897c7e94dec3989782f12f963f1c | http://79.137.237.66/content/adfp1.php?f=59 || 2012-02-04 10:40:09 | sub24 | avira | EXP/Pidief.att | 21/40 (52.5%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | 51079f2fca9328e485dc9de02549444b | http://79.137.237.66/content/adfp1.php?f=83 || 2012-02-04 10:40:09 | sub24 | avira | EXP/Pidief.atm | 19/40 (47.5%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | 6f5fe55fe844e8ae879282b02e20c5d8 | http://79.137.237.66/content/fdp2.php?f=30 || 2012-02-04 10:40:09 | sub24 | avira | EXP/Pidief.atm | 19/39 (48.7%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | 0423f7d669140a035057eaa95f3e564d | http://79.137.237.66/content/fdp2.php?f=65 || 2012-02-04 10:40:09 | sub15 | AhnLab_V3 | Dropper/Win32.Injector | 15/40 (37.5%) | AS32475 | 184.154.126.82 | abuse@singlehop.com | US | ARIN | SINGLEHOP | 1f135bbe968dbf88572a9fe7280d21bd | http://hydrogenfueltoday.com/rub.exe || 2012-02-04 10:40:41 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 22/39 (56.4%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | bf6fe6da7cdfeb7a9b9c59ba180f0043 | http://tellus.md/forum/profile.php?mode=viewprofile&u=1235&sid=17a766ae63ff0abe6edc88ed37f22666%3Ascript4 || 2012-02-04 10:40:41 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 22/39 (56.4%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | 7334526eca7424a0086941fdce0b4595 | http://tellus.md/forum/profile.php?mode=viewprofile&u=1331&sid=73a33dad3b4b2787afc24c11e7027b61 || 2012-02-04 10:40:41 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 22/40 (55%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | b61bed30dbfc84a5871b2142e7add112 | http://tellus.md/forum/profile.php?mode=viewprofile&u=1376&sid=eb539ee7f651c7e661b6dba1b2d0fcdf%3Ascript2 || 2012-02-04 10:40:41 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 22/40 (55%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | 3cf9d405fddb0ff83e6baa0ffb3bb969 | http://tellus.md/forum/profile.php?mode=viewprofile&u=2739&sid=f2311d2cf2efe89c395a93bd14cfa677 || 2012-02-04 10:40:41 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 22/40 (55%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | c256fdf996783f2f7c7e08fd327f5088 | http://tellus.md/forum/profile.php?mode=viewprofile&u=352&sid=a65b8e01debb5d41f3ee0bccdb65eddd || 2012-02-04 10:40:41 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 22/40 (55%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | a148522310e89a3a8ad510611b3898a3 | http://tellus.md/forum/profile.php?mode=viewprofile&u=3804&sid=d588499068715f1011b7b32a603f9876 || 2012-02-04 10:40:41 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 22/40 (55%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | 13a2f36792033cae03e9680f030fdc91 | http://tellus.md/forum/profile.php?mode=viewprofile&u=3831&sid=365d6b896abb143221a3538742a9826d || 2012-02-04 10:40:41 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 22/40 (55%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | a7d8fe7f16187ff8a90b9dcc10e3b4ef | http://tellus.md/forum/profile.php?mode=viewprofile&u=3852&sid=d13106fdae04fe0d6a51145a686cd56b || 2012-02-04 10:40:41 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 22/40 (55%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | 3cae96d8f8e164e1347b904fb84bcc99 | http://tellus.md/forum/profile.php?mode=viewprofile&u=3874&sid=d13106fdae04fe0d6a51145a686cd56b || 2012-02-04 10:40:41 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 22/40 (55%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | 25909ebaac117772c4462e3f38a9647b | http://tellus.md/forum/profile.php?mode=viewprofile&u=3883&sid=d13106fdae04fe0d6a51145a686cd56b || 2012-02-04 10:40:41 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 22/40 (55%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | bdb4c2c1b48636657375327ba79fc17a | http://tellus.md/forum/profile.php?mode=viewprofile&u=3912&sid=74c7fbf0849cc108075b8f75a391b04d || 2012-02-04 10:40:41 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 22/40 (55%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | 09925d194b1b5f8d9e4e29fc8eb03a4f | http://tellus.md/forum/profile.php?mode=viewprofile&u=3982&sid=725ba2ee12d101fa3011ffea72783ae1%3Ascript4 || 2012-02-04 10:40:41 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 22/40 (55%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | 1b4a649f9ce7da27d3979be4f3ff930e | http://tellus.md/forum/profile.php?mode=viewprofile&u=454&sid=ee1b3324f1d967ec31461cc02912458b || 2012-02-04 10:40:41 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 22/40 (55%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | 7f4d47cd6f97d45f06603a58da7d69c2 | http://tellus.md/forum/profile.php?mode=viewprofile&u=4671&sid=210f61575bbeb5b4081bece9abaeaaee%3Ascript4 || 2012-02-04 10:40:41 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 21/38 (55.3%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | bcc8616dc1330bcf4c539d0002221140 | http://tellus.md/forum/profile.php?mode=viewprofile&u=474&sid=ee1b3324f1d967ec31461cc02912458b || 2012-02-04 10:40:41 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 22/40 (55%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | fe8198649c9ff0669c204131bc1f27d1 | http://tellus.md/forum/profile.php?mode=viewprofile&u=524&sid=50d9fac8c2e61f014a88a43f6b4fbe2c || 2012-02-04 10:40:41 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 21/38 (55.3%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | 24bcc9e766a4a82145694dc53fa9aabe | http://tellus.md/forum/profile.php?mode=viewprofile&u=5427&sid=e1285a07321def2da1a0967aa8e452c1%3Ascript4 || 2012-02-04 10:40:41 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 21/38 (55.3%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | 4995dd7c7688c7c47dd60377016dbc00 | http://tellus.md/forum/profile.php?mode=viewprofile&u=618&sid=9af1d94bc1d2be502457154632248557 || 2012-02-04 10:50:46 | sub16 | avira | HTML/IFrame.tjb | 23/40 (57.5%) | AS24940 | 85.10.254.89 | abuse@hetzner.de | DE | RIPE | DE-HETZNER-20050223 | 382e0dec7e26e47017119c565cf5ecf8 | http://sharmfun.ru/gallery/rss.php?action=images&cat_id=6 || 2012-02-04 10:50:46 | sub16 | avira | HTML/IFrame.nva | 18/40 (45%) | AS4134 | 58.221.44.234 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-JS | fb503aad516de744168a694d6f2862d4 | http://shelect.com/product/product_list.asp?id=1639 || 2012-02-04 10:50:46 | sub16 | ClamAV | PUA.HTML.Obfus.JS | 5/38 (13.2%) | AS4812 | 222.73.230.83 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-SH | 7b421a5228798eeb777fc06dddd482c2 | http://softwelt.com/Controls/ValidateCode.aspx || 2012-02-04 10:50:46 | sub16 | ClamAV | HTML.Phishing.Bank-391 | 1/39 (2.6%) | AS9120 | 212.97.142.25 | abuse@surftown.com | DK | RIPE | SURFTOWNDEDICATED | f42dde4b744c172325ebbbae70c66415 | http://soundofcopenhagen.dk/updates/details.php || 2012-02-04 10:50:46 | sub16 | AntiVir | JS/Redirector.MR | 6/38 (15.8%) | AS36420, AS30315, AS13749, AS21844 | 174.120.188.187 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 4d80c670d57d7bd3e6cbbc0c8a14c476 | http://specializedbicycles.bestcheappricenow.com/page/4 || 2012-02-04 10:50:46 | sub16 | avira | HTML/Crypted.Gen | 22/38 (57.9%) | AS8685 | 212.58.3.28 | abuse@doruk.net.tr | TR | RIPE | DorukNet | d13bba1be7cd2ba5eb596881eff88708 | http://sqmartakademi.com/admin/userfiles/thumbs/text-1082.html || 2012-02-04 10:50:46 | sub16 | avira | HTML/Crypted.Gen | 22/38 (57.9%) | AS8685 | 212.58.3.28 | abuse@doruk.net.tr | TR | RIPE | DorukNet | 4e44104d2c2ad33f103207d89e58681a | http://sqmartakademi.com/admin/userfiles/thumbs/text-132.html || 2012-02-04 10:50:46 | sub16 | avira | HTML/Crypted.Gen | 24/39 (61.5%) | AS8685 | 212.58.3.28 | abuse@doruk.net.tr | TR | RIPE | DorukNet | 69333e242fe3456d296b2afbd92dfb9d | http://sqmartakademi.com/admin/userfiles/thumbs/text-1423.html || 2012-02-04 10:50:46 | sub16 | avira | HTML/Crypted.Gen | 24/39 (61.5%) | AS8685 | 212.58.3.28 | abuse@doruk.net.tr | TR | RIPE | DorukNet | 6ba3425f8d549dc1f21cbc4b77c47ee7 | http://sqmartakademi.com/admin/userfiles/thumbs/text-1737.html || 2012-02-04 10:50:46 | sub16 | avira | HTML/Crypted.Gen | 24/39 (61.5%) | AS8685 | 212.58.3.28 | abuse@doruk.net.tr | TR | RIPE | DorukNet | a16ca6e7eb5ac52e6ca8b0a7f453d413 | http://sqmartakademi.com/admin/userfiles/thumbs/text-303.html || 2012-02-04 10:50:47 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 22/40 (55%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | 49cc17342e104de9be7b3e3d0151de91 | http://tellus.md/forum/profile.php?mode=viewprofile&u=3848&sid=d588499068715f1011b7b32a603f9876 || 2012-02-04 10:50:48 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 22/40 (55%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | 5613b3634a32913e4b54168c48a753cd | http://tellus.md/forum/profile.php?mode=viewprofile&u=633&sid=7d7e53673a05cede39dbf4dd26987b40 || 2012-02-04 10:50:48 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 22/40 (55%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | b3327e900ef739e8d34864da3299be7e | http://tellus.md/forum/profile.php?mode=viewprofile&u=701&sid=3c1c7c254b60a241dea950dc67c96b24 || 2012-02-04 10:50:48 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 21/38 (55.3%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | 9ac39d2985528f1e0c4d569e47b73e1b | http://tellus.md/forum/profile.php?mode=viewprofile&u=704&sid=c48a657fa089dd860325ae21c7fdfc37 || 2012-02-04 10:50:48 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 21/38 (55.3%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | 7a3681ddb210d93db6abab7032d5e020 | http://tellus.md/forum/profile.php?mode=viewprofile&u=790&sid=2dda1f6fda0686dfa87b07e1ca6654d8 || 2012-02-04 10:50:48 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 21/38 (55.3%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | 08fc30afe9cecffb3de86b3044a65b69 | http://tellus.md/forum/profile.php?mode=viewprofile&u=801&sid=df8e219a435e68f0a9ae97bdec825612 || 2012-02-04 10:50:48 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 21/38 (55.3%) | AS31204 | 83.218.222.38 | vbordeniuc@globnet.md | MD | RIPE | SUNINTERNET | bb1ab23c86992d87e905e7dfd4fcaec3 | http://tellus.md/forum/profile.php?mode=viewprofile&u=843&sid=dc8abf9157165095605afd6f89378f84 || 2012-02-04 10:50:48 | sub16 | avira | HTML/Crypted.Gen | 24/38 (63.2%) | AS42926 | 176.53.18.45 | abuse@as42926.net | TR | RIPE | TR-RADORE-20110526 | fd199855691fb4051fbd65ec58328185 | http://temagt.com/images/pics/page1252.html || 2012-02-04 10:50:48 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 20/38 (52.6%) | AS30277 | 209.236.120.130 | joseq@tailoredservers.com | US | ARIN | TAILORMADESERVERS | 6d7ab24ced89ab089e442269a7ad2428 | http://tennis4you.com/forum/admin/noli-me-tangere-movie/bone-marrow-recipe.html || 2012-02-04 10:50:48 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 20/38 (52.6%) | AS30277 | 209.236.120.130 | joseq@tailoredservers.com | US | ARIN | TAILORMADESERVERS | 9dba570e630e50bb5520c07538d952f9 | http://tennis4you.com/forum/admin/noli-me-tangere-movie/dnc-after-miscarriage.html || 2012-02-04 10:50:48 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 24/40 (60%) | AS30277 | 209.236.120.130 | joseq@tailoredservers.com | US | ARIN | TAILORMADESERVERS | 2d28aee3c6d493622687fbc4ab37cbdd | http://tennis4you.com/forum/admin/noli-me-tangere-movie/fine-me-a-bone.html || 2012-02-04 10:50:48 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 24/40 (60%) | AS30277 | 209.236.120.130 | joseq@tailoredservers.com | US | ARIN | TAILORMADESERVERS | d4933b4c9bde972e5fc5b5f8c42821d6 | http://tennis4you.com/forum/admin/noli-me-tangere-movie/fish-leong-album.html || 2012-02-04 10:50:48 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 24/40 (60%) | AS30277 | 209.236.120.130 | joseq@tailoredservers.com | US | ARIN | TAILORMADESERVERS | 9393ca64483d350638e41df7a0b266c5 | http://tennis4you.com/forum/admin/noli-me-tangere-movie/ilustracion-para-predicaciones.html || 2012-02-04 10:50:48 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 24/40 (60%) | AS30277 | 209.236.120.130 | joseq@tailoredservers.com | US | ARIN | TAILORMADESERVERS | 4b684961add1cddc30afe6057250b975 | http://tennis4you.com/forum/admin/noli-me-tangere-movie/live-cams-of-amsterdam-prostitutes.html || 2012-02-04 10:50:48 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 24/40 (60%) | AS30277 | 209.236.120.130 | joseq@tailoredservers.com | US | ARIN | TAILORMADESERVERS | d4a15f0c0921a23dd172dd62681fe0bb | http://tennis4you.com/forum/admin/noli-me-tangere-movie/long-cookstown-lyrics.html || 2012-02-04 10:50:48 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 24/40 (60%) | AS30277 | 209.236.120.130 | joseq@tailoredservers.com | US | ARIN | TAILORMADESERVERS | 4ab97343902da1c7d4e0ec562f9cd40f | http://tennis4you.com/forum/admin/noli-me-tangere-movie/marketa-morgan-myspace.html || 2012-02-04 10:50:48 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 24/40 (60%) | AS30277 | 209.236.120.130 | joseq@tailoredservers.com | US | ARIN | TAILORMADESERVERS | 2906a32143101b6a4ecba9d12d7f574e | http://tennis4you.com/forum/admin/noli-me-tangere-movie/media-markt-amsterdam.html || 2012-02-04 10:50:48 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 23/39 (59%) | AS30277 | 209.236.120.130 | joseq@tailoredservers.com | US | ARIN | TAILORMADESERVERS | 36d0ec21b468c1eef753ee6b00eb1cd9 | http://tennis4you.com/forum/admin/noli-me-tangere-movie/pierre-cardin-mens-wallets.html || 2012-02-04 10:50:48 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 24/40 (60%) | AS30277 | 209.236.120.130 | joseq@tailoredservers.com | US | ARIN | TAILORMADESERVERS | ee85cfb5db9cd8c2853dcfd81cf7bd12 | http://tennis4you.com/forum/admin/noli-me-tangere-movie/regqueryvalue.html || 2012-02-04 10:50:48 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 24/40 (60%) | AS30277 | 209.236.120.130 | joseq@tailoredservers.com | US | ARIN | TAILORMADESERVERS | 9d0330e2ac9a724608950d2fda3494ba | http://tennis4you.com/forum/admin/noli-me-tangere-movie/sam-s-club-cyber-monday.html || 2012-02-04 10:50:48 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 24/40 (60%) | AS30277 | 209.236.120.130 | joseq@tailoredservers.com | US | ARIN | TAILORMADESERVERS | bf7324e89feea60179f4bed304a23ec0 | http://tennis4you.com/forum/admin/noli-me-tangere-movie/transit-of-rahu-kethu-in-2008.html || 2012-02-04 10:50:48 | sub16 | Avast | JS:Iframe-DL Trj | 14/40 (35%) | AS11798 | 66.147.244.173 | abuse@bluehost.com | US | ARIN | BLUEHOST-NETWORK-4 | 332acc6f4beadc7ff0c3bf950e25ad26 | http://texastraveljournal.com/wp-includes/js/jquery/jquery.js?ver=1.3.2 || 2012-02-04 10:50:48 | sub16 | avira | ADSPY/NaviPromo.J | 13/39 (33.3%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 4af23dea5fdcc6a9925f5c480c103f6f | http://toptenreport.com/diskeeper/dpstfile.exe || 2012-02-04 10:50:48 | sub16 | avira | ADSPY/NaviPromo.J | 13/40 (32.5%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 0305b629b9273c7faab8b3a0cba0e567 | http://toptenreport.com/download/29.exe || 2012-02-04 10:50:48 | sub16 | avira | ADSPY/NaviPromo.J | 13/40 (32.5%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 80881eb5cc83ffdf0d5541948f6737e9 | http://toptenreport.com/download/AresGalaxyAcceleratorDownloader400.exe || 2012-02-04 10:50:48 | sub16 | avira | ADSPY/NaviPromo.J | 15/40 (37.5%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 5a7b91bbe4054cdce9bb39cad7a9fc55 | http://toptenreport.com/download/coranti2010_pad.exe || 2012-02-04 10:50:48 | sub16 | avira | ADWARE/Agent.1845069.2 | 12/37 (32.4%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | ca741f7b5a25148aee8ef963241e6707 | http://toptenreport.com/download/DBX2PSTConverterTrial3.exe || 2012-02-04 10:50:48 | sub16 | avira | ADWARE/Agent.1911671.1 | 15/39 (38.5%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | a9b10387e95828f5430ae56877479000 | http://toptenreport.com/download/dirdate2.exe || 2012-02-04 10:50:48 | sub16 | avira | ADWARE/Agent.1817317.2 | 14/40 (35%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | ce2efd9de4a8bd90bc800e0a51e1bb29 | http://toptenreport.com/download/kb_lite.exe || 2012-02-04 10:50:48 | sub16 | avira | ADSPY/NaviPromo.J | 11/40 (27.5%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | c3c8a496788d26d2ab47d774facbf5f6 | http://toptenreport.com/download/out2nc.exe || 2012-02-04 10:50:48 | sub16 | avira | ADSPY/NaviPromo.J | 14/40 (35%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | ce086befcca621732a40f6a029e4b84d | http://toptenreport.com/download/out2notes.exe || 2012-02-04 10:50:48 | sub16 | avira | ADSPY/NaviPromo.J | 12/38 (31.6%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | d134c97c82d69bbcaa1760cff0381099 | http://toptenreport.com/download/pad21.exe || 2012-02-04 10:50:48 | sub16 | avira | ADSPY/NaviPromo.J | 13/40 (32.5%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 2233d87abf2fb92965139f7766d1ca54 | http://toptenreport.com/download/PAD_FILE6.exe || 2012-02-04 10:50:48 | sub16 | avira | ADSPY/NaviPromo.J | 15/40 (37.5%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 4155ca0978bc3b3b0e1e1996deef7184 | http://toptenreport.com/download/pcspysoftware.exe || 2012-02-04 10:50:48 | sub16 | avira | ADSPY/NaviPromo.J | 13/40 (32.5%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 4d179689376f72a354bd6b85f6cb7f32 | http://toptenreport.com/download/video-download-toolbar-pad.exe || 2012-02-04 10:50:48 | sub16 | avira | ADSPY/NaviPromo.J | 12/40 (30%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 870590e98299d6c2e08815792a3ece2d | http://toptenreport.com/sdownload/freegames4001.exe || 2012-02-04 10:50:48 | sub16 | avira | ADWARE/Relevant.377472 | 17/37 (45.9%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 80e74ce20fd6ed0f03c82581921a4c0e | http://toptenreport.com/TLKGames/activeharem.exe || 2012-02-04 10:50:48 | sub16 | avira | W97M/Mxfile.F | 40/43 (93%) | AS21109 | 62.84.103.80 | noc@dubna.ru | RU | RIPE | RU-CONTACT-20010824 | 48f436e31252ace2fd7e19d3696989b8 | http://torgi.yanao.ru/docs/88/1725/4119/00.= || 2012-02-04 10:50:48 | sub16 | avira | W97M/Mxfile.F | 38/40 (95%) | AS21109 | 62.84.103.80 | noc@dubna.ru | RU | RIPE | RU-CONTACT-20010824 | 48f436e31252ace2fd7e19d3696989b8 | http://torgi.yanao.ru/docs/88/1725/4119/00.0.0.doc || 2012-02-04 10:50:48 | sub16 | avira | ADSPY/BaiduBar.DI | 29/40 (72.5%) | AS4134 | 117.21.173.10 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-JX | 4fa4a441700fe1af466defadd005aa17 | http://tqqa.com/Soft/UploadSoft/200901/2009012010071283.rar || 2012-02-04 10:50:48 | sub16 | Antiy_AVL | RiskTool/J2ME.SMSreg | 9/40 (22.5%) | AS25229 | 77.120.125.62 | abuse@volia.net | UA | RIPE | UA-VOLIA-20061124 | ac69a925be5bf0a2b62ede82b9501c17 | http://trashbox.ru/files/21266_dfd9f4/isms2.jar || 2012-02-04 10:50:50 | sub16 | trendmicro | TROJ_LO.C1A80F86 | 6/39 (15.4%) | AS26496 | 72.167.232.227 | noc@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 6c9377823502c0d5504ca0ccdee79a91 | http://www.thepickapp.com/Builds/BatchImageConverterSetup.exe || 2012-02-04 10:50:50 | sub16 | avira | ADSPY/NaviPromo.J | 14/40 (35%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 1b7f2ac6185b471e6810b09d59a931fe | http://www.toptenreport.com/nirsoft/office_tab.exe || 2012-02-04 11:01:54 | sub16 | F_Prot | IFrame.gen | 4/40 (10%) | AS33182 | 66.7.193.74 | abuse@dimenoc.com | US | ARIN | DIMECNET | a735fefd826409a1bd9f35438f0c8951 | http://uloada.co.za/index.php || 2012-02-04 11:01:54 | sub16 | avira | HTML/Crypted.Gen | 26/40 (65%) | AS8560 | 74.208.87.188 | abuse@1and1.com | US | ARIN | 1AN1-NETWORK | cd76fdb24667da56d9eb1a5611baf646 | http://unimaxcanada.com/test/perl/_images/qp-marijuana/qsi-florida.html || 2012-02-04 11:01:54 | sub16 | avira | HTML/Crypted.Gen | 26/40 (65%) | AS8560 | 74.208.87.188 | abuse@1and1.com | US | ARIN | 1AN1-NETWORK | 11491dd1c17ff35de37779077c333d75 | http://unimaxcanada.com/test/perl/_images/qp-marijuana/qsi-in-wichita-ks.html || 2012-02-04 11:01:54 | sub16 | avira | ADWARE/Adware.Gen2 | 28/40 (70%) | AS48445 | 91.209.163.171 | abuse@favorit-network.com | ES | RIPE | FAVN-ES1 | 69b8c6eff1f94b2254f17ce70ec72719 | http://updates.advert-network.com/binaries/bin.php?id=3D3D0&up=3D3D1&v=3D3D1&timestamp=3D3D1309440068&checksum=3D3DF78D2D6BCC8C650004898589D5F9AEDF || 2012-02-04 11:01:55 | sub16 | Rising | Trojan.Win32.Generic.1246BC37 | 1/39 (2.6%) | AS3595 | 69.73.176.160 | abuse@jaguarpc.com | US | ARIN | LH-GOLD-NETWORK | 1fdafcdaa92d51764a82c539a85d055f | http://www.audio2convert.com/wav-to-mp3/download/wav-to-mp3-plus.exe || 2012-02-04 11:02:40 | sub16 | Avast | HTML:Iframe-inf | 7/40 (17.5%) | AS44112 | 77.222.40.27 | abuse@sweb.ru | RU | RIPE | SpaceWeb | 433855a36b61ede0bf7b3287465dedaf | http://vedrussia.ru/ || 2012-02-04 11:02:40 | sub16 | avira | JS/Redirect.TX | 24/43 (55.8%) | AS39561 | 89.108.68.81 | abuse@agava.com | RU | RIPE | AGAVA-DATACENTER-NET | 309be735663a77265ffadd272e99a610 | http://viagra.hut2.ru/index.html || 2012-02-04 11:02:40 | sub16 | avira | JS/Agent.akj | 16/39 (41%) | AS21219 | 194.28.87.73 | abuse@hostpro.ua | UA | RIPE | HOSTPRO-NET4 | d3df74f4bb96639b16a4813d8b92f392 | http://vision-ua.com/doctor/lecture/ || 2012-02-04 11:02:40 | sub16 | avira | JS/Agent.akj | 14/39 (35.9%) | AS21219 | 194.28.87.73 | abuse@hostpro.ua | UA | RIPE | HOSTPRO-NET4 | 525cdc60ab7cc3f79bcdff62bea23fb4 | http://vision-ua.com/patient/clinic/ukr/excimer.php || 2012-02-04 11:02:40 | sub16 | avira | HTML/Drop.Agent.AB | 30/39 (76.9%) | AS18866 | 69.50.199.222 | abuse@atjeuhosting.com | US | ARIN | ATJEU | 7fd4e3dc17b5b40f75f484637659ab36 | http://vjpschool.com/advisory_committee.html || 2012-02-04 11:02:40 | sub16 | Sophos | Mal/Phish-A | 1/40 (2.5%) | AS24173 | 210.86.239.221 | nhanlv@netnam.vn | vn | APNIC | NETNAM-VNNIC-VN | c6508f59164f71a07901ef5cf44bfd71 | http://vlxd24h.com/Paypal.cgi/webscr/update.php?cmd=_login-done&login_access=1193476743 || 2012-02-04 11:02:40 | sub16 | avira | JS/Twetti.B.1 | 24/40 (60%) | AS48539 | 91.198.106.56 | support@deziweb.com | NL | RIPE | NL-DEZIWEB | 8b10529990b7be5f330703df7c5ac0d8 | http://walkingproud.nl/alexguestbook4/index.php?lang=english&skin=&debut=750&seeAdd=1&seeNotes=&seeMess= || 2012-02-04 11:02:40 | sub16 | avira | JS/Twetti.B.1 | 24/40 (60%) | AS48539 | 91.198.106.56 | support@deziweb.com | NL | RIPE | NL-DEZIWEB | ed30bfd9fe0098c05de1da8eef908c1f | http://walkingproud.nl/alexguestbook4/index.php?lang=german&skin=&debut=130&seeAdd=1&seeNotes=&seeMess= || 2012-02-04 11:02:40 | sub16 | avira | JS/Twetti.B.1 | 24/40 (60%) | AS48539 | 91.198.106.56 | support@deziweb.com | NL | RIPE | NL-DEZIWEB | 72312130753c7a1fbd1a9172a7b2a3cb | http://walkingproud.nl/alexguestbook4/index.php?lang=german&skin=&debut=730&seeAdd=1&seeNotes=&seeMess= || 2012-02-04 11:02:40 | sub16 | avira | JS/Twetti.B.1 | 24/40 (60%) | AS48539 | 91.198.106.56 | support@deziweb.com | NL | RIPE | NL-DEZIWEB | 7040f7053555dc0df0ba58e4f1cfbf8b | http://walkingproud.nl/alexguestbook4/index.php?lang=italiano&skin=&debut=650&seeAdd=1&seeNotes=&seeMess= || 2012-02-04 11:02:40 | sub16 | avira | JS/Twetti.B.1 | 24/40 (60%) | AS48539 | 91.198.106.56 | support@deziweb.com | NL | RIPE | NL-DEZIWEB | 5041b349b8e7748bad5a046587b41778 | http://walkingproud.nl/alexguestbook4/index.php?lang=italiano&skin=&debut=700&seeAdd=1&seeNotes=&seeMess= || 2012-02-04 11:02:40 | sub16 | avira | JS/iFrame.aau | 16/40 (40%) | AS12695 | 92.38.226.6 | abuse@di-net.ru | RU | RIPE | DINETHOSTING-NEXT2 | 58ed61125813a13c79b86351d3698f33 | http://webkolesa.ru/catalog/includes/htm/crosspartner/krossvord_tsitologiya.htm || 2012-02-04 11:02:40 | sub16 | avira | JS/iFrame.aau | 16/40 (40%) | AS12695 | 92.38.226.6 | abuse@di-net.ru | RU | RIPE | DINETHOSTING-NEXT2 | 6612827d9b5181be0c7a9368ed300593 | http://webkolesa.ru/catalog/includes/htm/funcrosamigo/krossvord_prirodnie_zoni.htm || 2012-02-04 11:20:29 | sub16 | Avast | Win32:MediaGet-B PUP | 8/38 (21.1%) | AS41947 | 92.241.182.191 | abuse@wahome.ru | RU | RIPE | WAHOME-COLO | b37688864eb0bc2f0611f42d879cd055 | http://mediaget.com/torrent.php?r=h33t&u=http://h33t.com/details.php?id=5f0fd37e148b21ebbb10ab3a5fb3dc0ee7b78834&f=2010+Counter-Strike+Source+NonSteam+4231+%5B%5Bdrummwill%5D%5D+%28with+4260+patch%29 || 2012-02-04 11:20:45 | sub16 | Comodo | UnclassifiedMalware | 3/40 (7.5%) | AS9125 | 77.105.36.118 | abuse.hosting@oriontelekom.rs | RS | RIPE | ORIONTELEKOMTIMHOSTING-NET | 53d8ebf0340aebb36fb7e4102f638458 | http://wflukstim.com/44/webscr/5885d80a13c0db1f8e263663d3faee8dd049a0174d7b2337c94a2120c957a268/ || 2012-02-04 11:20:45 | sub16 | avira | HTML/Crypted.Gen | 34/40 (85%) | AS32780 | 174.127.105.121 | arin-contact@hostingservicesinc.net | US | ARIN | HOSTINGSERVICES-INC | 8e96508defab0db20f472b0b56353417 | http://winstoncreative.com/mykalippolito/editors/ || 2012-02-04 11:20:45 | sub16 | Comodo | UnclassifiedMalware | 4/40 (10%) | AS28753 | 217.20.116.142 | abuse@leaseweb.de | DE | RIPE | NETDIRECT-NET | c01d03a5b6f50349a25c895199adecdc | http://wkjrj.com/abusing-abilify/ || 2012-02-04 11:20:45 | sub16 | AVG | HTML/Framer | 3/40 (7.5%) | AS17444 | 113.10.140.2 | nmc@newworldtel.com | HK | APNIC | NWTiDC-HK | 16b3149fd4f4b17c961eea4536b4f2d4 | http://wujianwei.com/index.htm || 2012-02-04 11:20:45 | sub16 | AntiVir | HTML/Dldr.Agent.OB | 29/40 (72.5%) | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | b370aea3c23a2780efc8b86959c02e26 | http://wuya10.199138.com/image/wuya1/index1.asp || 2012-02-04 11:20:45 | sub16 | avira | PHP/BackDoor.AR | 33/39 (84.6%) | AS2914 | 161.58.247.151 | abuse@ntt.net | US | ARIN | NTTA-161-58 | b85c6b399bd7d3c7b64ea0e5d06becdc | http://ww.regionnet.de/ftp/FlashChat_v508/chat/inc/cmses/functionCMSphp???? || 2012-02-04 11:30:56 | sub16 | avira | TR/Crypt.PEPM.Gen | 32/40 (80%) | AS34221 | 217.199.217.4 | dn@quickline.ru | RU | RIPE | UCOZ | 56cb6457cc67460d70f20ef123ccdc7d | http://xxx.ucoz.ru/brutus2v1.rar || 2012-02-04 11:30:56 | sub16 | avira | EXP/Pidief.hgv | 22/43 (51.2%) | AS4134 | 121.12.169.152 | abuse@gddc.com.cn | CN | APNIC | CHINANET-GD | 79f46c51814cc773b374907b16636faf | http://xz.9000cha.com/dt/dt.html?dz.rc16.com || 2012-02-04 11:30:56 | sub16 | avira | EXP/Pidief.hgv | 22/43 (51.2%) | AS4134 | 121.12.169.152 | abuse@gddc.com.cn | CN | APNIC | CHINANET-GD | 79f46c51814cc773b374907b16636faf | http://xz.9000cha.com/dt/dt.html?pyfw.cn || 2012-02-04 11:30:56 | sub16 | avira | EXP/Pidief.hgv | 22/40 (55%) | AS4134 | 121.12.169.152 | abuse@gddc.com.cn | CN | APNIC | CHINANET-GD | 79f46c51814cc773b374907b16636faf | http://xz.9000cha.com/dt/dt.html?s0355.com || 2012-02-04 11:30:56 | sub16 | avira | EXP/Pidief.hgv | 22/41 (53.7%) | AS4134 | 121.12.169.152 | abuse@gddc.com.cn | CN | APNIC | CHINANET-GD | 9a6c3d634144239ab55951215677d2b8 | http://xz.9000cha.com/lq/lq.html?cdccy.com || 2012-02-04 11:30:56 | sub16 | avira | EXP/Pidief.hgv | 22/41 (53.7%) | AS4134 | 121.12.169.152 | abuse@gddc.com.cn | CN | APNIC | CHINANET-GD | 9a6c3d634144239ab55951215677d2b8 | http://xz.9000cha.com/lq/lq.html?rc16.com || 2012-02-04 11:30:56 | sub16 | avira | EXP/Pidief.hgv | 23/40 (57.5%) | AS4134 | 121.12.169.152 | abuse@gddc.com.cn | CN | APNIC | CHINANET-GD | 9a6c3d634144239ab55951215677d2b8 | http://xz.9000cha.com/lq/lq.html?toysale.cn || 2012-02-04 11:30:56 | sub16 | AntiVir | HTML/Dldr.Agent.OB | 28/39 (71.8%) | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 915d3f23b2098c2076fb7090aea39930 | http://y12.qingluo.net/G120B19/index1.asp || 2012-02-04 11:30:56 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 20/40 (50%) | AS48619 | 91.209.206.52 | abuse@so.ua | UA | RIPE | SOUA-NET | e2d2636194a25cabf413f3268865d03b | http://ycd-ru.hrworld.ru/guest/?22070 || 2012-02-04 11:30:56 | sub16 | AntiVir | TR/Spy.Banker.ACF.50 | 23/40 (57.5%) | AS15201 | 200.98.135.104 | l-registrobr-uol@corp.uol.com.br | BR | LACNIC | 001.109.184/0001-95 | 0964a2e2de6487281f1028e55aa214e2 | http://yozzwqr.fotoss.in/ || 2012-02-04 11:30:56 | sub16 | avira | JS/Redirect.TX | 22/40 (55%) | AS39561 | 89.108.68.81 | abuse@agava.com | RU | RIPE | AGAVA-DATACENTER-NET | 309be735663a77265ffadd272e99a610 | http://ypoxycozet.hut2.ru/index.html || 2012-02-04 11:30:56 | sub16 | ClamAV | PUA.HTML.Crypt-11 | 14/40 (35%) | AS34754 | 88.87.0.184 | office@magibg.com | BG | RIPE | TELNET-MAN-NET | ba417f79cb1078d1878791f0ff96ccee | http://zavesata.com/page.php?158ordinews.be/?cat=5&paged=3:script4 || 2012-02-04 11:31:58 | sub1 | avira | TR/Dropper.Gen | 38/40 (95%) | AS32613 | 70.38.98.238 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-05 | 494ae8dfd424c0e4246b1cce06671a03 | http://img104.herosh.com/2011/09/12/30103820.gif || 2012-02-04 11:31:58 | sub1 | avira | TR/Kazy.49734 | 12/40 (30%) | AS32613 | 70.38.98.234 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-05 | d2083088cb17068621a3f126969d3f86 | http://img101.herosh.com/2012/02/02/758266422.gif || 2012-02-04 11:50:37 | sub16 | AntiVir | GAME/Casino.Gen | 1/38 (2.6%) | AS40366 | 174.35.7.12 | support@cdnetworks.com | US | ARIN | CDNET-USA-1 | 122705e598fdd0e724739837ecad8e29 | http://www.casinoglamour.com/downloads/S14A1B/Casino%20Glamour.exe || 2012-02-04 11:50:37 | sub16 | avira | ADSPY/NaviPromo.J | 9/40 (22.5%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | c533e8c780ae2e1ee786ad8560c102a2 | http://www.sharewarepile.com/download/slvc10016.exe || 2012-02-04 11:50:38 | sub16 | avira | ADSPY/NaviPromo.J | 7/40 (17.5%) | AS31815 | 205.186.187.146 | abuse@mediatemple.net | US | ARIN | MEDIATEMPLE-106 | 2ed0438d95608317bd2fd86af71a7787 | http://www.ultimatumz.com/downloads/mp4converter_installer.exe || 2012-02-04 12:02:10 | sub16 | avira | ADSPY/NaviPromo.J | | AS41550 | 91.207.44.10 | abuse@hostbizua.com | UA | RIPE | FUIR-MNT | a896919944afa2e5ca27e3e856bc5f03 | http://falcogames.com/MyDiarySetup.exe || 2012-02-04 12:02:48 | sub16 | avira | ADWARE/Relevant.BA.484 | 17/40 (42.5%) | AS29789 | 66.254.123.32 | hostmaster@reflected.net | US | ARIN | REFLECTED-1 | e5a2c3ccd454d604e11ff46eedda9236 | http://www.sexy-screen-savers.com/downloads/sexyss122.exe || 2012-02-04 12:20:43 | sub16 | avira | ADWARE/Agent.1892427.2 | 15/38 (39.5%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 31118904aa6caad62c85de9dfd99810c | http://www.toptenreport.com/download/systools-export-notes10.exe || 2012-02-04 12:20:43 | sub16 | avira | ADSPY/NaviPromo.J | 14/38 (36.8%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 6dd8a2c65d631c3390e5fd1f640431bb | http://www.toptenreport.com/download/systools-export-notes6.exe || 2012-02-04 12:40:06 | sub15 | Avast | Win32:Rootkit-gen Rtk | 12/38 (31.6%) | AS6760 | 77.72.129.120 | abuse@ripe.net | EU | RIPE | EU-ZZ-80-93 | c05194b57c11c858f7a25323b5c75f74 | http://77.72.129.120/files/17 || 2012-02-04 13:01:52 | sub16 | avira | TR/Crypt.ULPM.Gen8 | 15/40 (37.5%) | AS49544 | 188.95.50.171 | abuse@as49544.net | NL | RIPE | SERVERBOOST | 1aef6fa272700661638686f41746ab65 | http://s4.zip-host.in/download/aeaa219b-2861/++Alawar+2012.exe || 2012-02-04 13:01:53 | sub16 | Jiangmin | Trojan/Menti.pcq | 1/40 (2.5%) | AS14618 | 107.20.227.210 | ec2-abuse@amazon.com | US | ARIN | AMAZON-EC2-8 | 23096c228deaf3712a96e77189b4c4a2 | http://soft.foxtab.com/music-converter/ga/sg/?dl=1 || 2012-02-04 13:40:07 | sub24 | avira | EXP/Pidief.atm | 23/40 (57.5%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 2fe33dacf6b66d2e2cd0fcd3b2f72c06 | http://108.59.5.66/content/fdp1.php?f=76 || 2012-02-04 13:40:07 | sub24 | avira | EXP/Pidief.atm | 23/40 (57.5%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 2248c2e6135b86b1c25e21f63c6579a9 | http://108.59.5.66/content/fdp1.php?f=99 || 2012-02-04 13:40:07 | sub24 | avira | EXP/Pidief.att | 22/39 (56.4%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | fb3817b794e6cfd2fa570d5044ccf1b2 | http://79.137.237.66/content/adfp1.php?f=34 || 2012-02-04 13:40:07 | sub24 | avira | EXP/Pidief.att | 21/40 (52.5%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | 992a03c8d09fcfe500f4c5cecadd5b9a | http://79.137.237.66/content/adfp1.php?f=55 || 2012-02-04 13:40:07 | sub24 | avira | EXP/Pidief.atm | 19/39 (48.7%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | 254ed98c5dae4baf8853c6bcc4478a60 | http://79.137.237.66/content/fdp2.php?f=28 || 2012-02-04 13:40:07 | sub24 | avira | EXP/Pidief.atm | 19/39 (48.7%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | e176e3c18eb4e065e68aa04caa31ed64 | http://79.137.237.66/content/fdp2.php?f=63 || 2012-02-04 13:40:07 | sub24 | avira | EXP/Pidief.atm | 19/40 (47.5%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | ad12cbdced8ef4555e7ecd0991196f5c | http://79.137.237.66/content/fdp2.php?f=83 || 2012-02-04 14:20:44 | sub16 | McAfee | Artemis!D7B6C7C319CD | 3/38 (7.9%) | AS36420, AS30315, AS13749, AS21844 | 174.120.83.49 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | d7b6c7c319cd7b3d3600b791f66062ea | http://www.acairesearch.org/monavie-scam.exe || 2012-02-04 14:20:45 | sub16 | avira | ADWARE/Relevant.377472 | 19/38 (50%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 30b8aad96b099f6952ad082b927bc0eb | http://www.file4me.com/Conceiva/cwlm2o10.exe || 2012-02-04 14:40:09 | sub24 | avira | EXP/Pidief.atm | 18/38 (47.4%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 6d4485aa90ac73062d223e4756f545ce | http://108.59.5.66/content/fdp2.php?f=48 || 2012-02-04 14:40:09 | sub24 | avira | EXP/Pidief.atm | 18/38 (47.4%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 7e5b606b39bb40a2d474d11c0c44ce1e | http://108.59.5.66/content/fdp2.php?f=99 || 2012-02-04 14:40:09 | sub24 | AhnLab_V3 | Dropper/Win32.Injector | 22/40 (55%) | AS6760 | 77.72.129.120 | abuse@ripe.net | EU | RIPE | EU-ZZ-80-93 | bc0768262670888a3eda3a6614fa7da3 | http://77.72.129.120/files/37 || 2012-02-04 14:40:09 | sub24 | avira | TR/Crypt.ULPM.Gen | 18/38 (47.4%) | AS6760 | 77.72.129.120 | abuse@ripe.net | EU | RIPE | EU-ZZ-80-93 | 159badfd049e32767f5cfdb926f8bc8c | http://77.72.129.120/files/42 || 2012-02-04 14:40:09 | sub24 | avira | EXP/Pidief.att | 21/40 (52.5%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | 0049d5314337f6bed5af59f398ba3fa7 | http://79.137.237.66/content/adfp1.php?f=35 || 2012-02-04 14:40:09 | sub24 | avira | EXP/Pidief.att | 21/40 (52.5%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | b9d3e207a19a86e50d8bd5d3b444f91f | http://79.137.237.66/content/adfp1.php?f=68 || 2012-02-04 14:40:09 | sub24 | avira | EXP/Pidief.att | 21/39 (53.8%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | 87cb6b6bb9b72150572107fa64fa8d7d | http://79.137.237.66/content/adfp1.php?f=94 || 2012-02-04 14:40:09 | sub24 | avira | EXP/Pidief.atm | 17/38 (44.7%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | 54db5bd7050fa29910aa715c9b98aafd | http://79.137.237.66/content/fdp2.php?f=37 || 2012-02-04 14:40:09 | sub24 | avira | EXP/Pidief.atm | 19/39 (48.7%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | 40202e2bd16e06aaeeddb88020bbf66f | http://79.137.237.66/content/fdp2.php?f=62 || 2012-02-04 14:40:09 | sub24 | avira | EXP/Pidief.atm | 18/40 (45%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | 1d4cd0ac688cfc493af8464258e295be | http://79.137.237.66/content/fdp2.php?f=90 || 2012-02-04 15:03:21 | sub16 | avira | TR/Spy.Gen | 2/40 (5%) | AS26347 | 173.236.163.61 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | 6616adc3b8bd4487c00b416a539fff09 | http://www.feeplay.com/download/watch-online-tv.exe || 2012-02-04 15:03:39 | sub10 | avira | TR/Black.Gen2 | 24/40 (60%) | AS4808 | 182.50.0.139 | info@linktom.com | CN | APNIC | LINKTOM | 01d201db36d612857f1b33d982fb79ef | http://182.50.0.139/u.exe || 2012-02-04 15:20:24 | sub16 | DrWeb | Trojan.Virtumod.10616 | 1/40 (2.5%) | AS36420, AS30315, AS13749, AS21844 | 74.55.207.172 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 29bf326e6ba86b8ddae9f2df230bf7eb | http://clock-desktop.com/files/dc_alchemic_clock.exe || 2012-02-04 15:20:53 | sub16 | eSafe | Win32.Banker | 2/40 (5%) | AS32475 | 69.175.66.250 | netops@singlehop.com | US | ARIN | SINGLEHOP | 50b90025d642110ad81263dbcca870b0 | http://spywareremover.antispywareconsumerreport.com/rec/RecoverDeletedFilesFromHardDrive/Run-RecoverDisk.exe || 2012-02-04 15:40:08 | sub24 | clamav | PUA.Script.PDF.EmbeddedJavaScript | 22/38 (57.9%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 721877b1e5409a519f6f06b7e26acb32 | http://108.59.5.66/content/fdp1.php?f=57 || 2012-02-04 15:40:08 | sub24 | avira | EXP/Pidief.atm | 22/38 (57.9%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | cd764da810b8e88ad2406aa271972b76 | http://108.59.5.66/content/fdp1.php?f=96 || 2012-02-04 15:40:08 | sub24 | avira | EXP/Pidief.atm | 17/38 (44.7%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 60ec6f5b43191f98afc934f67f59e244 | http://108.59.5.66/content/fdp2.php?f=24 || 2012-02-04 15:40:08 | sub24 | avira | EXP/Pidief.atm | 18/38 (47.4%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 8345777b59382c0e77657d8f4a12a6f1 | http://108.59.5.66/content/fdp2.php?f=85 || 2012-02-04 15:40:08 | sub24 | avira | EXP/Pidief.att | 21/38 (55.3%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | fd786dfbf6eacf30c720d8c7b5c020a5 | http://79.137.237.66/content/adfp1.php?f=31 || 2012-02-04 15:40:08 | sub24 | avira | EXP/Pidief.att | 21/38 (55.3%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | d835b1487c08ce9ba773959b9f91c31b | http://79.137.237.66/content/adfp1.php?f=64 || 2012-02-04 15:40:08 | sub24 | avira | EXP/Pidief.att | 21/38 (55.3%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | 95098ea6e6b8338e82ba900d0bcacdcf | http://79.137.237.66/content/adfp1.php?f=90 || 2012-02-04 15:40:08 | sub24 | avira | EXP/Pidief.atm | 17/38 (44.7%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | f7803116dbc41bf6508eeb2b2e6ecf47 | http://79.137.237.66/content/fdp2.php?f=33 || 2012-02-04 15:40:08 | sub24 | avira | EXP/Pidief.atm | 18/40 (45%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | ea712f91c98ed41fabf3c7270cd1d67f | http://79.137.237.66/content/fdp2.php?f=71 || 2012-02-04 15:40:08 | sub14 | avira | DR/Dldr.Small.atkz | 21/40 (52.5%) | AS8422 | 78.35.36.202 | abuse@netcologne.de | DE | RIPE | ARTEGIC | 7ee8ba61e081a00a3f03f18360632262 | http://diebestenbits.de/files/86098ef82c97fa789a47a8d2e8800794/115/dana-setup.exe&&&<br&&&> || 2012-02-04 15:40:08 | sub14 | avira | TR/PSW.37888.A | 18/41 (43.9%) | AS4538 | 202.117.35.252 | dzhang@xjtu.edu.cn | CN | APNIC | XJTU-CN | 626aaedb2fd3cbeabfdc5b8f7a6855c5 | http://sd.xjtu.edu.cn/soft/winrar3.2.exe?POSTNUKESID=a7834fea55aead&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&ampampl || 2012-02-04 15:40:08 | sub14 | avira | BDS/Cain.1.6 | 14/40 (35%) | AS16276 | 91.121.156.73 | abuse@ovh.net | FR | RIPE | OVH | 61f048ae6dd0bb719ce4bb9d91689c60 | http://tools.l0t3k.net/ARPutils/ArpWorks10.EXE || 2012-02-04 15:40:08 | sub14 | avira | TR/Gendal.6668864.2 | 24/40 (60%) | AS38700 | 115.68.7.213 | network@smileserv.com | KR | APNIC | SMILESERV-KR | 746b36258a7c67fe7ddc12e4f0489df0 | http://update.everyguard.co.kr/version/bina/everyguardstart.exe || 2012-02-04 15:41:07 | sub16 | avira | ADSPY/NaviPromo.J | 12/40 (30%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 1f28c54364eecac0ac1f916b2b6cd22c | http://www.toptenreport.com/download/outlook-password-decryption-2011-09-01.exe || 2012-02-04 16:02:01 | sub16 | Avast | Win32:OpenInstall-A PUP | 6/40 (15%) | AS16509 | 207.171.163.142 | noc@amazon.com | US | ARIN | AMAZON-01 | 5f58b300484f2c9d7512edd1b502c89c | http://dl02.s3.amazonaws.com/installers/588685/GreenGamesandHam_v1.exe || 2012-02-04 16:20:48 | sub16 | F_Prot | File is damaged | 1/38 (2.6%) | AS18866 | 69.50.209.95 | abuse@atjeuhosting.com | US | ARIN | ATJEU | 550e561a08797308e63c488e8fd0c482 | http://www.optinsecretsexposed.com/golf/golf.exe || 2012-02-04 16:20:49 | sub16 | avira | ADSPY/NaviPromo.J | 12/40 (30%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 366d937598807404188741eedb01c5a6 | http://www.toptenreport.com/download/AlmezaMultiSetEnterpriseDownloader900.exe || 2012-02-04 16:30:07 | sub10 | avira | TR/Agent.KD.2 | 16/38 (42.1%) | AS3786 | 112.222.106.10 | shkim082@chol.com | KR | APNIC | BORANET-KR | d473fe8a392056fc90f1c3919334ba78 | http://pops.go-diva.co.kr/keytab/instkw_g1.exe || 2012-02-04 16:31:13 | sub9 | avira | EXP/Pidief.att | 20/38 (52.6%) | AS6760 | 77.72.129.120 | abuse@ripe.net | EU | RIPE | EU-ZZ-80-93 | 9aa1deb348eacee82a258c7e5db06de1 | http://77.72.129.120/content/adfp1.php?f=42 || 2012-02-04 16:31:54 | sub16 | avira | TR/ATRAPS.Gen | 18/38 (47.4%) | AS36420, AS30315, AS13749, AS21844 | 174.132.111.50 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-15 | a790f75bcef4acce96e8b2e2f842ec3d | http://www.computerdelhi.com/new29.exe || 2012-02-04 16:31:54 | sub16 | avira | ADSPY/NaviPromo.J | 7/38 (18.4%) | AS41550 | 91.207.44.10 | abuse@hostbizua.com | UA | RIPE | FUIR-MNT | 720bb899c8cc1befc09eb6fe1cceee42 | http://www.falcogames.com/MasterNinjaSetup.exe |+---------------------+-------------+------------+-----------------------------------+---------------+---------------------------------------------+-----------------+-------------------------------------+---------+--------+-----------------------------+----------------------------------+--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+200 rows in set (0.11 sec)
+---------------------+-------------+------------------+-------------------------------------------+---------------+------------------------------------+-----------------+--------------------------------+---------+--------+-----------------------------+----------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| date | contributor | scanner | virusname | vt_score | AS | review | email | country | source | netname | md5sum | url |+---------------------+-------------+------------------+-------------------------------------------+---------------+------------------------------------+-----------------+--------------------------------+---------+--------+-----------------------------+----------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| 2012-02-04 16:40:10 | sub20 | AVG | Suspicion: unknown virus | 2/40 (5%) | AS3786 | 112.222.106.10 | shkim082@chol.com | KR | APNIC | BORANET-KR | fcc307e797621460547c3ca4f97848a0 | http://jalanfed.info/cd2/keytwtinst.exe || 2012-02-04 17:01:25 | sub16 | Rising | Trojan.Win32.Generic.1246BC37 | 3/40 (7.5%) | AS3595 | 69.73.176.160 | abuse@jaguarpc.com | US | ARIN | LH-GOLD-NETWORK | eb49a1f0bce7d7fc4bbc9e1c349b39bd | http://www.audio2convert.com/developers/download/ogg_to_mp3_activex.exe || 2012-02-04 17:02:20 | sub16 | avira | ADSPY/NaviPromo.J | 8/40 (20%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | c86b4fe4fab791b8c26dbc9c77640e89 | http://www.bostonhitech.com/sdownload/4media.exe || 2012-02-04 17:02:20 | sub16 | DrWeb | Trojan.Virtumod.10616 | 1/40 (2.5%) | AS36420, AS30315, AS13749, AS21844 | 74.55.207.172 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 12ff8ec7500060d8ac1fb73b2b4d7669 | http://www.clock-desktop.com/files/dc_fudziama_time_fingers.exe || 2012-02-04 17:20:03 | sub7 | undef | unknown_html_RFI_shell | 0/40 (0.0%) | AS45839 | 111.90.148.247 | abuse@piradius.net | MY | APNIC | PIRADIUS-NET | 7a9d61e4e2e2f553c4fae4af505d9987 | http://111.90.148.247/ || 2012-02-04 17:20:03 | sub7 | undef | unknown_html_RFI | 0/40 (0.0%) | AS31122 | 212.126.36.48 | abuse@digiweb.ie | IE | RIPE | SERVERS-IRELAND-NET | 70fce166e371021d9dd7dc9350762965 | http://www.aboutleitrim.ie/wp-content/plugins/tweet-blender || 2012-02-04 17:20:03 | sub7 | undef | unknown_html_RFI | 0/38 (0.0%) | AS31122 | 212.126.36.48 | abuse@digiweb.ie | IE | RIPE | SERVERS-IRELAND-NET | 9368e9cbd56a2979239860e2fc7d6643 | http://www.aboutleitrim.ie/wp-content/plugins/wp-banners || 2012-02-04 17:20:03 | sub7 | avira | PERL/IrcBot.AX | 24/40 (60%) | AS39729 | 81.88.48.95 | abuse@register.it | IT | RIPE | REGISTERIT03 | 6ccd2c5fb978ac8065fcf550cd306c0f | http://www.mcimmo.fr//wp-content/themes/estate/unix.txt || 2012-02-04 17:32:52 | sub16 | avira | ADSPY/NaviPromo.J | 14/40 (35%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 465dd2ccc280c0af5d43fe5927a1c321 | http://www.toptenreport.com/triedtool/raf.exe || 2012-02-04 17:33:00 | sub1 | avira | TR/Drop.Inject.cmkm | 23/43 (53.5%) | AS36420, AS30315, AS13749, AS21844 | 184.173.245.54 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-17 | 96c837945031295f8a52e3ecc488856a | http://www.mathisonengineering.com/se.exe || 2012-02-04 17:33:00 | sub1 | avira | TR/Drop.Inject.cmkm | 23/43 (53.5%) | AS32244 | 67.225.166.114 | abuse@liquidweb.com | US | ARIN | LIQUIDWEB-8 | 96c837945031295f8a52e3ecc488856a | http://www.manabar.com.au/se.exe || 2012-02-04 17:33:00 | sub1 | avira | TR/Drop.Inject.cmkm | 24/40 (60%) | AS6724 | 81.169.145.162 | abuse@strato.de | DE | RIPE | STRATO-RZG-KA | 96c837945031295f8a52e3ecc488856a | http://www.mgc-ronsdorf.de/se.exe || 2012-02-04 17:40:04 | sub24 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS44546 | 93.170.108.22 | network@serverclub.com | US | RIPE | SERVERCLUB-NET | 335c2f90059bedca0031277dd77d80cf | http://asmob.net/l/er2/xxx/555/18-letnyuyu_trahnuli.jar || 2012-02-04 17:40:04 | sub24 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS44546 | 93.170.108.22 | network@serverclub.com | US | RIPE | SERVERCLUB-NET | 335c2f90059bedca0031277dd77d80cf | http://asmob.net/l/er2/xxx/555/Analnyy_seks_s_blondi...jar || 2012-02-04 17:40:04 | sub24 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS44546 | 93.170.108.22 | network@serverclub.com | US | RIPE | SERVERCLUB-NET | 335c2f90059bedca0031277dd77d80cf | http://asmob.net/l/er2/xxx/555/Seks_s_molodoy_devushkoy.jar || 2012-02-04 17:40:04 | sub24 | undef | unknown_html_RFI_php | 0/40 (0.0%) | AS44546 | 93.170.108.22 | network@serverclub.com | US | RIPE | SERVERCLUB-NET | 335c2f90059bedca0031277dd77d80cf | http://asmob.net/l/er2/xxx/555/Trahnul_dvuh_uchilok_.jar || 2012-02-04 17:40:04 | sub24 | avira | EXP/Pidief.atm | 23/40 (57.5%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 711554e2b1c5bb816ee20e6258c50658 | http://108.59.5.66/content/fdp1.php?f=69 || 2012-02-04 17:40:04 | sub24 | avira | EXP/Pidief.atm | 23/40 (57.5%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | a78e6684dd31abc21959c07d2f5c2996 | http://108.59.5.66/content/fdp1.php?f=91 || 2012-02-04 17:40:04 | sub24 | avira | EXP/Pidief.atm | 19/40 (47.5%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 4013d38e8d4d31fec211a48b2f2fad98 | http://108.59.5.66/content/fdp2.php?f=100 || 2012-02-04 17:40:04 | sub24 | avira | EXP/Pidief.att | 21/40 (52.5%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | a4d2173587ac5a4bd6818dd7b9469e2b | http://79.137.237.66/content/adfp1.php?f=57 || 2012-02-04 17:40:04 | sub24 | avira | EXP/Pidief.att | 22/40 (55%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | ae64c64ae3b13af6e3a887ca508c85ad | http://79.137.237.66/content/adfp1.php?f=89 || 2012-02-04 17:40:04 | sub24 | avira | EXP/Pidief.atm | 18/38 (47.4%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | 735160713533bfe571f28394b31add03 | http://79.137.237.66/content/fdp2.php?f=21 || 2012-02-04 17:40:04 | sub24 | avira | EXP/Pidief.atm | 18/38 (47.4%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | 138cc254dd4dd48fb8be43f281a5b92f | http://79.137.237.66/content/fdp2.php?f=56 || 2012-02-04 16:39:06 | sub8 | undef | WebToolbar.Win32.RK.cr | 0/38 (0.0%) | AS18866 | 69.50.209.95 | abuse@atjeuhosting.com | US | ARIN | ATJEU | 3f7a3afcc4e45c083190401bbfb14771 | http://www.optinsecretsexposed.com/golf/ || 2012-02-04 18:16:16 | sub16 | avira | ADSPY/NaviPromo.J | 13/40 (32.5%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | bca6799a18075e525e2b5a3406b0a41d | http://www.toptenreport.com/download/toolbar2.exe || 2012-02-04 18:16:16 | sub16 | avira | TR/Offend.7077122.1 | 28/40 (70%) | AS39572 | 213.174.157.136 | abuse@compubyte.vg | GB | RIPE | COMPUBYTE-NET | 5bfaa7c0d770e759dc6826a352a88111 | http://05icq.ucoz.ru/ICQ-Hook.rar || 2012-02-04 18:16:16 | sub16 | avira | HTML/IFrame.ztd | 10/40 (25%) | AS25653 | 208.116.53.135 | abuse@fortressitx.com | US | ARIN | CIRTEX-CORP | f28e816cf583ad09739e1628b0f82e4e | http://104tube.com/2009/k104/photos/index.php?id=150&gallery=gallery3 || 2012-02-04 18:16:16 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS42831 | 78.110.174.12 | abuse@ukservers.com | GB | RIPE | NAMEHOG-LTD-IP-1 | b511ace6fe010413b3bbd3f827f98499 | http://11thhourglobalmanagement.com/wp-content/themes/DeepFocus/js/cufon-yui.js || 2012-02-04 18:16:16 | sub16 | BitDefender | Gen:Trojan.FirewallBypass.uq0@aai2Ankj | 6/41 (14.6%) | AS9924 | 124.9.4.250 | ting_tseng@twfn.com.tw | TW | APNIC | TFN-NET | fa3b9f853906f4eaa0006ede3da4be1f | http://124.9.4.250/www/layout/nmcmask/ABWhiz-AutoDistribution-CHT-14-Aug-2009-1959.exe || 2012-02-04 18:16:16 | sub16 | Avast | HTML:Script-inf | 8/43 (18.6%) | AS4812 | 222.73.173.216 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-SH | 045b97557c448cbb45cdf4608ed3447d | http://19449291.china-wcmedia.com/CS478 || 2012-02-04 18:16:16 | sub16 | Avast | HTML:Iframe-inf | 2/40 (5%) | AS11419 | 200.196.254.27 | abuse@ticbrasil.com.br | BR | LACNIC | 058.671.835/0001-53 | bb0ff461cd363def3e3960f67fe10a07 | http://200.196.254.27/parenthood.html || 2012-02-04 18:16:16 | sub16 | Ikarus | Trojan.JS.Agent | 2/40 (5%) | AS9931 | 202.129.32.163 | admin-thix@cat.net.th | TH | APNIC | CAT-North | fb8f2559febfa9736f004d2588a19e99 | http://202.129.32.163/ || 2012-02-04 18:16:16 | sub16 | trendmicro | JS_REDIR.MJSM | 12/40 (30%) | AS3786 | 211.115.111.114 | ip@kidc.net | KR | APNIC | KIDC-KR | 774ccf2af3bd166a2855d1aee64129de | http://211.115.111.114/~hyunmi/consensus.html || 2012-02-04 18:16:16 | sub16 | BitDefender | Trojan.JS.Agent.ERN | 4/40 (10%) | AS9848 | 211.239.162.41 | abuse@sejongtelecom.net | KR | APNIC | SEJONGNET-KR | 9b50d955b76aadffc4a5b0075cf9676c | http://211.239.162.41/~lee3337/ || 2012-02-04 18:16:16 | sub16 | avira | JS/Agent.psa.7 | 16/40 (40%) | AS8218 | 82.98.201.79 | dausch@megaspace.de | DE | RIPE | MEGASPACE | f15d395327f06af07d2773a2be70bb0d | http://2245.free-toplist.de/ || 2012-02-04 18:16:16 | sub16 | BitDefender | Trojan.JS.Redirector.TQ | 8/40 (20%) | AS3216 | 194.186.88.61 | abuse@relax.ru | RU | RIPE | RU-SOVINTEL-MSK-RokVel-NET | 16e179313cfccb9e9c8276511f5e4db2 | http://228121676.qipim.ru/iodrjwoo.html || 2012-02-04 18:16:16 | sub16 | BitDefender | Trojan.JS.Redirector.TQ | 8/40 (20%) | AS3216 | 194.186.88.61 | abuse@relax.ru | RU | RIPE | RU-SOVINTEL-MSK-RokVel-NET | 7f196cf37f125d9306f72072b64501bd | http://245575949.qipim.ru/uuttwgls.html || 2012-02-04 18:16:16 | sub16 | avira | JS/Infected.C | 22/40 (55%) | AS35818 | 93.113.25.2 | noc@hosttix.com | ro | RIPE | SC-HOSTCONTINUUM-SRL | 81bde8e0ca32573f482128d411ab49f9 | http://24events.ro/wp-content/themes/cadabrapress/js/dropdown.js || 2012-02-04 18:16:16 | sub16 | avira | JS/Infected.C | 22/40 (55%) | AS35818 | 93.113.25.2 | noc@hosttix.com | ro | RIPE | SC-HOSTCONTINUUM-SRL | 948932b6172e15999a2f354d3961e40c | http://24events.ro/wp-content/themes/cadabrapress/js/jquery.tools.min.js || 2012-02-04 18:16:16 | sub16 | avira | JS/Infected.C | 23/40 (57.5%) | AS35818 | 93.113.25.2 | noc@hosttix.com | ro | RIPE | SC-HOSTCONTINUUM-SRL | a5da82e0730deb877416eee9de4017a2 | http://24events.ro/wp-content/themes/cadabrapress/js/script.js || 2012-02-04 18:16:16 | sub16 | avira | JS/Infected.C | 23/40 (57.5%) | AS35818 | 93.113.25.2 | noc@hosttix.com | ro | RIPE | SC-HOSTCONTINUUM-SRL | 22eeb090b30db292ec12c4721d314bda | http://24events.ro/wp-content/themes/cadabrapress/js/tabber-minimized.js || 2012-02-04 18:16:16 | sub16 | BitDefender | Trojan.JS.Redirector.TQ | 8/40 (20%) | AS3216 | 194.186.88.61 | abuse@relax.ru | RU | RIPE | RU-SOVINTEL-MSK-RokVel-NET | 170a238ad1a02993efc6ec99001c2327 | http://333985111.qipim.ru/nvhemuds.html || 2012-02-04 18:16:16 | sub16 | BitDefender | Trojan.JS.Redirector.TQ | 8/40 (20%) | AS3216 | 194.186.88.61 | abuse@relax.ru | RU | RIPE | RU-SOVINTEL-MSK-RokVel-NET | eb2c57fe2d96a885378d46142f429dcb | http://445281093.qipim.ru/pvspqabd.html || 2012-02-04 18:16:16 | sub16 | avira | TR/Gendal.kdt.352500 | 37/40 (92.5%) | AS30058 | 76.73.44.108 | abuse@fdcservers.net | US | ARIN | FDCSERVERS | d5c0a5d18f1f71517c3836a46de1be05 | http://76.73.44.108/Upgrade.exe || 2012-02-04 18:16:16 | sub16 | avira | HTML/IFrame.ers | 16/40 (40%) | AS4837 | 58.23.131.59 | abuse@chinaunicom.cn | CN | APNIC | UNICOM-FJ | b36c217c4c5889c64e58a937f90a5add | http://768088.13159.20la.com.cn/Product/Product.asp?CateID=8 || 2012-02-04 18:16:16 | sub16 | avira | HTML/IFrame.ers | 17/43 (39.5%) | AS4837 | 58.23.131.59 | abuse@chinaunicom.cn | CN | APNIC | UNICOM-FJ | 58a5d7a7d7ede6cea4ae8947b825650f | http://768088.13159.20la.com.cn/Product/Product.asp?CateID=9 || 2012-02-04 18:16:16 | sub16 | clamav | PUA.Script.PDF.EmbeddedJS-1 | 14/40 (35%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | 26d58a401099b6d74ed0c26d2460b972 | http://79.137.237.66/content/adfp2.php?f=20 || 2012-02-04 18:16:16 | sub16 | avira | EXP/Pidief.atm | 23/39 (59%) | AS15836 | 87.255.73.20 | abuse@araxinfo.com | MD | RIPE | MD-ARAXCOM-20051108 | ed7928e02c1b3341d0c1f27bb0b0b690 | http://87.255.73.20/content/adfp1.php?f=20 || 2012-02-04 18:16:16 | sub16 | avira | EXP/Pidief.atm | 19/39 (48.7%) | AS15836 | 87.255.73.20 | abuse@araxinfo.com | MD | RIPE | MD-ARAXCOM-20051108 | 13a72bbc4527b969d0fbe1457a9c5f05 | http://87.255.73.20/content/adfp2.php?f=20 || 2012-02-04 18:16:16 | sub16 | avira | EXP/CVE-2010-0840.FI | 30/40 (75%) | AS15836 | 87.255.73.20 | abuse@araxinfo.com | MD | RIPE | MD-ARAXCOM-20051108 | edd9db547e5edf276401f84c0065f077 | http://87.255.73.20/content/content.jar || 2012-02-04 18:16:16 | sub16 | Avast | JS:Downloader-BFQ Trj | 7/40 (17.5%) | AS15836 | 87.255.73.20 | abuse@araxinfo.com | MD | RIPE | MD-ARAXCOM-20051108 | 80394c505bb60f2576e79f872bb57342 | http://87.255.73.20/content/cph2.php?c=78 || 2012-02-04 18:16:16 | sub16 | avira | EXP/Pidief.atm | 23/40 (57.5%) | AS15836 | 87.255.73.20 | abuse@araxinfo.com | MD | RIPE | MD-ARAXCOM-20051108 | b176c751468c31c766614e86e397bb91 | http://87.255.73.20/content/fdp1.php?f=20 || 2012-02-04 18:16:16 | sub16 | avira | EXP/Pidief.atm | 19/40 (47.5%) | AS15836 | 87.255.73.20 | abuse@araxinfo.com | MD | RIPE | MD-ARAXCOM-20051108 | 1f37af1f83a941cc5f7a9fe589ac6ec6 | http://87.255.73.20/content/fdp2.php?f=20 || 2012-02-04 18:16:16 | sub16 | avira | EXP/CVE-2010-0840.FG | 28/40 (70%) | AS15836 | 87.255.73.20 | abuse@araxinfo.com | MD | RIPE | MD-ARAXCOM-20051108 | da22b1ddfc28e3eb108f12fb2d0d176c | http://87.255.73.20/content/field.jar || 2012-02-04 18:16:16 | sub16 | avira | EXP/SWF.AT.2 | 14/43 (32.6%) | AS15836 | 87.255.73.20 | abuse@araxinfo.com | MD | RIPE | MD-ARAXCOM-20051108 | 2435793ee73efdaf79541977b3c08eeb | http://87.255.73.20/content/field.swf || 2012-02-04 18:16:16 | sub16 | trendmicro | JAVA_AGENT.BBH | 4/43 (9.3%) | AS15836 | 87.255.73.20 | abuse@araxinfo.com | MD | RIPE | MD-ARAXCOM-20051108 | 634030a5752947225f492cc1c76ab2ce | http://87.255.73.20/content/rino.jar || 2012-02-04 18:16:16 | sub16 | avira | EXP/SWF.AX | 23/40 (57.5%) | AS15836 | 87.255.73.20 | abuse@araxinfo.com | MD | RIPE | MD-ARAXCOM-20051108 | 90b4894dc33fd5e7c93cdb8b2a43907c | http://87.255.73.20/content/score.swf || 2012-02-04 18:16:16 | sub16 | trendmicro | JAVA_AGENT.BBH | 17/39 (43.6%) | AS15836 | 87.255.73.20 | abuse@araxinfo.com | MD | RIPE | MD-ARAXCOM-20051108 | 634030a5752947225f492cc1c76ab2ce | http://87.255.73.20/content/v1.jar || 2012-02-04 18:16:16 | sub16 | Comodo | UnclassifiedMalware | 4/40 (10%) | AS15836 | 87.255.73.20 | abuse@araxinfo.com | MD | RIPE | MD-ARAXCOM-20051108 | 18990a0a65a6fb3f0ffe1106168b4eac | http://87.255.73.20/getJavaInfo.jar || 2012-02-04 18:16:16 | sub16 | avira | HTML/Rce.Gen | 6/40 (15%) | AS6724 | 85.214.121.138 | abuse-server@strato.de | DE | RIPE | STRATO-RZG-DED2 | bcc434e730b74d2cb63416b19fda8df3 | http://a24.ecar-manager.de/homepage/index.php?page=gebrauchtwagen || 2012-02-04 18:16:17 | sub16 | avira | TR/Elderado.B.6 | 5/43 (11.6%) | AS28753 | 78.159.112.61 | abuse@leaseweb.de | DE | RIPE | NETDIRECT-NET | deb8ad50cfa2540e5c266c90b1ca01e8 | http://acemoglusucuklari.com.tr/images/logo.gif?a548=211560 || 2012-02-04 18:16:17 | sub16 | avira | TR/Elderado.B.6 | 5/43 (11.6%) | AS28753 | 78.159.112.61 | abuse@leaseweb.de | DE | RIPE | NETDIRECT-NET | deb8ad50cfa2540e5c266c90b1ca01e8 | http://acemoglusucuklari.com.tr/images/logo.gif?ad95=177748 || 2012-02-04 18:16:17 | sub16 | avira | TR/Elderado.B.6 | 5/43 (11.6%) | AS28753 | 78.159.112.61 | abuse@leaseweb.de | DE | RIPE | NETDIRECT-NET | deb8ad50cfa2540e5c266c90b1ca01e8 | http://acemoglusucuklari.com.tr/images/logo.gif?aece=223750 || 2012-02-04 18:16:17 | sub16 | avira | JS/Twetti.A | 21/40 (52.5%) | AS12620 | 195.190.190.13 | karl.frankeser@ticinocom.com | CH | RIPE | TICINOCOM-ASGN3 | 0ff4e531df92ff93ab45259fc445fd63 | http://acpt.ch/contatti.html || 2012-02-04 18:16:17 | sub16 | Avast | Win32:Elderado-B Trj | 2/43 (4.7%) | AS16397 | 200.219.214.46 | abuse@comdominio.com.br | BR | LACNIC | 003.672.254/0001-44 | 167453a7690f24136e742f6b08172208 | http://adjutojunior.com.br/xs.jpg?15416=609434 || 2012-02-04 18:16:17 | sub16 | Avast | Win32:Elderado-B Trj | 2/43 (4.7%) | AS16397 | 200.219.214.46 | abuse@comdominio.com.br | BR | LACNIC | 003.672.254/0001-44 | 167453a7690f24136e742f6b08172208 | http://adjutojunior.com.br/xs.jpg?1585c=617092 || 2012-02-04 18:16:17 | sub16 | Avast | Win32:Elderado-B Trj | 2/40 (5%) | AS16397 | 200.219.214.46 | abuse@comdominio.com.br | BR | LACNIC | 003.672.254/0001-44 | 167453a7690f24136e742f6b08172208 | http://adjutojunior.com.br/xs.jpg?f443=437717 || 2012-02-04 18:16:17 | sub16 | Avast | HTML:Script-inf | 4/43 (9.3%) | AS3242 | 151.1.159.159 | registry@it.net | IT | RIPE | ITNET-WAN | 2d1c49065fc45ee686afc67fbabda5c1 | http://adminformatica.it/irYkZjNn/index.html || 2012-02-04 18:16:17 | sub16 | Avast | HTML:Script-inf | 6/40 (15%) | AS3242 | 151.1.159.159 | registry@it.net | IT | RIPE | ITNET-WAN | 2d1c49065fc45ee686afc67fbabda5c1 | http://adminformatica.it/jy8tiMj4/index.html || 2012-02-04 18:16:17 | sub16 | Comodo | UnclassifiedMalware | 3/40 (7.5%) | AS13768 | 69.90.109.44 | net-admin@peer1.net | US | ARIN | PEER1-BLK-08 | 1e8850fac4257b9541e1b51f75c29a46 | http://afpollution.com/css.js || 2012-02-04 18:16:17 | sub16 | BitDefender | Trojan.JS.Redirector.TQ | 8/40 (20%) | AS3216 | 194.186.88.61 | abuse@relax.ru | RU | RIPE | RU-SOVINTEL-MSK-RokVel-NET | ca103323ec4d8c81e4ab85145cbf36d7 | http://agohoplettysti.qipim.ru/xbfxcucu.html || 2012-02-04 18:16:17 | sub16 | Avast | JS:Redirector-NQ Trj | 14/40 (35%) | AS29182 | 78.24.217.238 | abuse@ispsystem.net | RU | RIPE | ISPSYSTEM | 575e2935bdb54f9e62659a116946b265 | http://ak-msk.ru/index.php?option=com_content&view=article&id=15&Itemid=7 || 2012-02-04 18:16:17 | sub16 | Avast | JS:Redirector-NQ Trj | 15/40 (37.5%) | AS29182 | 78.24.217.238 | abuse@ispsystem.net | RU | RIPE | ISPSYSTEM | c608c5f5f318524f8695655aa8c30b17 | http://ak-msk.ru/index.php?option=com_content&view=article&id=1838:2012-01-25-00-00-08&catid=1:news&Itemid=1&Itemid=2 || 2012-02-04 18:16:17 | sub16 | Avast | JS:Redirector-NQ Trj | 15/40 (37.5%) | AS29182 | 78.24.217.238 | abuse@ispsystem.net | RU | RIPE | ISPSYSTEM | 046a992b946e5d85f1a8bc2026fd2a59 | http://ak-msk.ru/index.php?option=com_content&view=article&id=34&Itemid=34 || 2012-02-04 18:16:17 | sub16 | Avast | JS:Redirector-NQ Trj | 15/40 (37.5%) | AS29182 | 78.24.217.238 | abuse@ispsystem.net | RU | RIPE | ISPSYSTEM | f16d9c93b0f73343bfb77241a2e06a5d | http://ak-msk.ru/index.php?option=com_content&view=category&layout=blog&id=1&Itemid=2 || 2012-02-04 18:16:17 | sub16 | AntiVir | JS/Agent.akj | 16/40 (40%) | AS28753 | 217.73.59.100 | azer@karyagdy.com | RU | RIPE | RUSTELEKOM-PA-SPACE | 9a69247a22704bd9191f36e269b38262 | http://alaska-libertarian.org/070801-a-8872e-015 || 2012-02-04 18:16:17 | sub16 | AntiVir | JS/Agent.akj | 16/40 (40%) | AS28753 | 217.73.59.100 | azer@karyagdy.com | RU | RIPE | RUSTELEKOM-PA-SPACE | 5317ea3130347f2dd0b8dfeb5669ff07 | http://alaska-libertarian.org/nice-alaska-photo-photos-43 || 2012-02-04 18:16:17 | sub16 | avira | TR/Elderado.B.6 | 5/40 (12.5%) | AS32244 | 67.225.141.155 | abuse@liquidweb.com | US | ARIN | LIQUIDWEB-8 | deb8ad50cfa2540e5c266c90b1ca01e8 | http://almaspersia.com/img.gif?17c9d=487185 || 2012-02-04 18:16:17 | sub16 | Avast | HTML:Iframe-inf | 3/40 (7.5%) | AS32475 | 184.154.94.123 | abuse@singlehop.com | US | ARIN | SINGLEHOP | 5fa00978c2ffcfee66ec7793c1517e5a | http://alodaba.com/vb/showthread.php?t=14492 || 2012-02-04 18:16:17 | sub16 | Avast | HTML:Iframe-inf | 3/43 (7%) | AS32475 | 184.154.94.123 | abuse@singlehop.com | US | ARIN | SINGLEHOP | 8f98382850a5967a7e1ff356dd069d1b | http://alodaba.com/vb/showthread.php?t=9098 || 2012-02-04 18:16:17 | sub16 | avira | JS/iFrame.CN | 28/40 (70%) | AS28753 | 188.72.233.145 | abuse@leaseweb.de | DE | RIPE | NETDIRECT-NET | 4e6491626ccc0e57dad84381ff6aaf23 | http://amalshbab.com/dir/orderbyrate-62.html || 2012-02-04 18:16:17 | sub16 | avira | JS/iFrame.CN | 28/40 (70%) | AS28753 | 188.72.233.145 | abuse@leaseweb.de | DE | RIPE | NETDIRECT-NET | b27b6052a60b568bc3c38ef63d06ad02 | http://amalshbab.com/dir/pages-8-1.html || 2012-02-04 18:16:17 | sub16 | avira | JS/iFrame.CN | 28/40 (70%) | AS28753 | 188.72.233.145 | abuse@leaseweb.de | DE | RIPE | NETDIRECT-NET | caefdb632abbaabf5262250968f9af20 | http://amalshbab.com/dir/site-235.html || 2012-02-04 18:16:17 | sub16 | avira | JS/iFrame.CN | 28/40 (70%) | AS28753 | 188.72.233.145 | abuse@leaseweb.de | DE | RIPE | NETDIRECT-NET | 42cf44e607816def26ac96e0dec7cee0 | http://amalshbab.com/dir/site-441.html || 2012-02-04 18:16:17 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 22/40 (55%) | AS8342 | 81.177.6.32 | abuse@agava.com | RU | RIPE | AGAVA | 95ab269004330ca46b265c0fd1ccf6e4 | http://anastasia-myskina.ru/index.php-id=31&nid=255.html || 2012-02-04 18:16:17 | sub16 | NOD32 | HTML/ScrInject.B.Gen | 2/40 (5%) | AS13768 | 69.174.252.144 | abuse@serverbeach.com | US | ARIN | SERVER-ALLOC-1 | e2cfa3d6376d4589a1466fc0e44d55d0 | http://andthewomengather.com/2008/12/ || 2012-02-04 18:16:17 | sub16 | avira | HTML/Crypted.Gen | 26/40 (65%) | AS25973, AS35937, AS15244 | 67.210.126.35 | hostmaster@lunarpages.com | US | ARIN | ADD2NET-DOT-COM | a65d7fa206839b72e919ed1a4f16c9ec | http://annaroth.us/digiroth/pix/includes/thatfreesite-passwords/alina-lafleche-model.html || 2012-02-04 18:16:17 | sub16 | avira | HTML/Crypted.Gen | 25/40 (62.5%) | AS25973, AS35937, AS15244 | 67.210.126.35 | hostmaster@lunarpages.com | US | ARIN | ADD2NET-DOT-COM | b90d4158c476260144ceac3987f1b9fc | http://annaroth.us/digiroth/pix/includes/thatfreesite-passwords/craigs-list-florida.html || 2012-02-04 18:16:17 | sub16 | avira | TR/Injector.1387525 | 18/40 (45%) | AS39111 | 46.51.133.180 | ec2-abuse@amazon.com | IE | RIPE | AMAZON-EU-AWS | 96d17308f4ef4c62e221f6ab02a643a7 | http://api2.ge.tt/0/8ZUws8D/0/blob/download || 2012-02-04 18:16:17 | sub16 | AhnLab_V3 | Trojan/Win32.Llac | 25/40 (62.5%) | AS39111 | 46.51.133.180 | ec2-abuse@amazon.com | IE | RIPE | AMAZON-EU-AWS | a86316470d03e0b9fdf8f2fc9addb4e1 | http://api2.ge.tt/0/9Ojfl3D/0/blob/download || 2012-02-04 18:16:17 | sub16 | AntiVir | HEUR/HTML.Malware | 9/40 (22.5%) | AS34989 | 83.143.81.86 | abuse@fasthost.no | NO | RIPE | NO-SERVETHEWORLD | ce17c858c1cdb22268004d4a528a9859 | http://arena-partner.com/aboutus.php?language=en&osCsid=slcet4fv13f9j4fsl29bemvm31 || 2012-02-04 18:16:17 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 31/43 (72.1%) | AS32613 | 184.107.205.242 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-07 | 0d8627b2258b9b9ce432c5c7ab0c7867 | http://artisticgfxforum.com/index.php?s=56e57c2f0b7739cf9142f10f080c076c&autocom=arcade&code=displaygif || 2012-02-04 18:16:17 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 29/40 (72.5%) | AS32613 | 184.107.205.242 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-07 | d139c62b15cb738238c74e626d8dc321 | http://artisticgfxforum.com/index.php?s=9a91cc2afaf933f4f5ad305454e3a288&autocom=arcade&code=displaygif || 2012-02-04 18:16:17 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 31/43 (72.1%) | AS32613 | 184.107.205.242 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-07 | 775bdd915653bfff9efaaac8ba997069 | http://artisticgfxforum.com/?s=20ab49ea2d1fc92166e8df9d447441e7&autocom=arcade&code=displaygif || 2012-02-04 18:16:17 | sub16 | avira | JS/Redirector.DC | 21/40 (52.5%) | AS32475 | 173.236.48.82 | netops@singlehop.com | US | ARIN | SINGLEHOP | 03b108905abe6278614b02cfcf04e48b | http://asia1x1.net/HOME_PAGE/modules/weblinks/myheader--may24.nogifs.php?lid=666 || 2012-02-04 18:16:17 | sub16 | AntiVir | GAME/Casino.Gen | 13/40 (32.5%) | AS17036, AS22653 | 69.61.102.212 | abuse@cyberwurx.com | US | ARIN | NET-GLOBAL-COMPASS | 38601bffbb0c08e0b947aac3453b5477 | http://at.casinostadt.com/downloads/casinoclub.exe || 2012-02-04 18:16:17 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 26/40 (65%) | AS48302 | 94.199.64.153 | adm-group@atomlink.ru | RU | RIPE | ATOMLINK-NET | 9fe11f7135dac09305ef62a81a096c00 | http://atomlink.ru/~medjan/ || 2012-02-04 18:16:17 | sub16 | BitDefender | Trojan.IFrame.ABS | 5/38 (13.2%) | AS12824 | 79.96.31.139 | abuse@home.pl | PL | RIPE | HOMEPL | 87ba54fb54f687f4432604940d9c3627 | http://audytorzy.info/index.php?strona=ogloszenie&p=92Alo26cn068qyA6kn || 2012-02-04 18:16:17 | sub16 | avira | JS/Infected.C | 21/40 (52.5%) | AS5602 | 94.141.22.36 | abuse@kpnqwest.it | IT | RIPE | K-SUP2-SUPERNOVASRL | ded7fc803b848790474880c384837833 | http://autosposa.it/wp-content/plugins/jquery-lightbox-for-native-galleries/colorbox/jquery.colorbox-min.js?ver=1.3.14 || 2012-02-04 18:16:17 | sub16 | Avast | Win32:Elderado-B Trj | 4/41 (9.8%) | AS34619 | 85.159.66.13 | abuse@cizgi.net.tr | TR | RIPE | CIZGI-NET-HOSTING | cc217d5d68dc035aba67cabc0be96065 | http://aynacim.com/images/logo.gif?12df0=309184 || 2012-02-04 18:16:17 | sub16 | Avast | Win32:Elderado-B Trj | 4/41 (9.8%) | AS34619 | 85.159.66.13 | abuse@cizgi.net.tr | TR | RIPE | CIZGI-NET-HOSTING | cc217d5d68dc035aba67cabc0be96065 | http://aynacim.com/images/logo.gif?1e903=1126683 || 2012-02-04 18:16:17 | sub16 | Avast | Win32:Elderado-B Trj | 4/41 (9.8%) | AS34619 | 85.159.66.13 | abuse@cizgi.net.tr | TR | RIPE | CIZGI-NET-HOSTING | cc217d5d68dc035aba67cabc0be96065 | http://aynacim.com/images/logo.gif?f8b7=445697 || 2012-02-04 18:16:17 | sub16 | AntiVir | JS/Redirector.MR | 6/38 (15.8%) | AS36420, AS30315, AS13749, AS21844 | 174.120.201.162 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | b5191d2d1a53ad8889ec29266cf6b95b | http://backpackpurses.bargainpricetoday.com/tag/notebook-computer-accessories || 2012-02-04 18:16:17 | sub16 | avira | JS/Agent.AT | 14/43 (32.6%) | AS29873 | 66.96.160.157 | bnbrock@maileig.com | US | ARIN | BIZLAND-FC01 | 98a40bc8b77f1ffc56ed1068b8649a8a | http://backspacestudios.com/ || 2012-02-04 18:16:17 | sub16 | Avast | Win32:Elderado-B Trj | 4/41 (9.8%) | AS34619 | 89.19.29.176 | huseyin.caymaz@cizgi.net.tr | TR | RIPE | CIZGI-NET-HOSTING | cc217d5d68dc035aba67cabc0be96065 | http://bakirkoydogus.com/images/logo.gif?1055a=66906 || 2012-02-04 18:16:17 | sub16 | Avast | Win32:Elderado-B Trj | 4/41 (9.8%) | AS34619 | 89.19.29.176 | huseyin.caymaz@cizgi.net.tr | TR | RIPE | CIZGI-NET-HOSTING | cc217d5d68dc035aba67cabc0be96065 | http://bakirkoydogus.com/images/logo.gif?17fe9=589686 || 2012-02-04 18:16:17 | sub16 | Avast | Win32:Elderado-B Trj | 4/41 (9.8%) | AS34619 | 89.19.29.176 | huseyin.caymaz@cizgi.net.tr | TR | RIPE | CIZGI-NET-HOSTING | cc217d5d68dc035aba67cabc0be96065 | http://bakirkoydogus.com/images/logo.gif?1966e=728322 || 2012-02-04 18:16:17 | sub16 | Avast | Win32:Elderado-B Trj | 4/41 (9.8%) | AS34619 | 89.19.29.176 | huseyin.caymaz@cizgi.net.tr | TR | RIPE | CIZGI-NET-HOSTING | cc217d5d68dc035aba67cabc0be96065 | http://bakirkoydogus.com/images/logo.gif?1b59f=560155 || 2012-02-04 18:16:17 | sub16 | avira | W32/Chir.B | 33/38 (86.8%) | AS3595 | 69.73.138.225 | abuse@jaguarpc.com | US | ARIN | LH-GOLD-NETWORK | 4755a56637f536b68d59e5109b351936 | http://bandacox.com/ || 2012-02-04 18:16:17 | sub16 | clamav | PUA.Packed.PECompact-1 | 4/40 (10%) | AS13100 | 87.252.210.4 | degripeadmin@dataelec.com | IE | RIPE | IE-INFLOW-20050923 | 30556f6626499cb58c6318aa5b7e467b | http://banner.casinolasvegas.com/cgi-bin/SetupCasino.exe?member=laurent82 || 2012-02-04 18:16:17 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 20/40 (50%) | AS23974 | 202.143.164.4 | charnsak@emisc.moe.go.th | TH | APNIC | edNET | ee8f0e9ced5a7cb161e381bfbd154876 | http://bantern.ssk.in.th/modules.php?name=Forums&file=viewtopic&p=50365 || 2012-02-04 18:16:17 | sub16 | avira | JS/iFrame.3375 | 19/38 (50%) | AS12824 | 212.85.112.66 | abuse@home.pl | PL | RIPE | HOMEPL | e83daecbd12b1d7701f7293a8f554b38 | http://barmarket.home.pl/catalog/ || 2012-02-04 18:16:17 | sub16 | avira | HTML/IFrame.era | 17/40 (42.5%) | AS4670 | 210.118.171.85 | abuse@shinbiro.com | KR | APNIC | SHINBIRO-INFRA | db08f49041fcec2590e99464e2c132c8 | http://bbs.gagadigital.com/bbs/write.php?id=movie&page=1&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=15&mode=reply&sn1= || 2012-02-04 18:16:17 | sub16 | BitDefender | Trojan.JS.Redirector.TU | 4/43 (9.3%) | AS24299 | 202.43.34.50 | helpdesk@isp-thailand.com | TH | APNIC | ColoNonFWISSP | f5b44592f2b3087849ae0def850ccd3f | http://beautybuffetshop.com/irYkZjNn/index.html || 2012-02-04 18:16:17 | sub16 | avira | HTML/Crypted.Gen | 29/38 (76.3%) | AS12322 | 212.27.63.107 | abuse@proxad.net | FR | RIPE | FR-PROXAD | e1bd3ba4213903dae6f0044ecf35f8b6 | http://benoittom.free.fr/bouda/ || 2012-02-04 18:16:17 | sub16 | Avast | Win32:Kryptik-GTO [Trj] | 10/43 (23.3%) | AS39743 | 93.114.44.130 | noc@voxility.com | ro | RIPE | SC-VOXILITY-SRL | 50becc545efce82454ad8bf4fb8cd690 | http://bestsoft4free.info/SkypeSetup-skype.exe || 2012-02-04 18:16:17 | sub16 | avira | JS/Redirector.MR | 6/38 (15.8%) | AS36351 | 173.192.114.33 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-8 | 26db388ee75f70136e2b5fee20c4d530 | http://besttouchscreenmp3player.com/tag/samsung || 2012-02-04 18:16:18 | sub16 | avira | HTML/IFrame.era | 15/38 (39.5%) | AS9286 | 121.78.232.140 | kwlee@actela.com | KR | APNIC | KINXINC-KR | 878597c0b53fac3aa2323aad7b7c69f7 | http://biz.korea.ac.kr/~jangya/board/zboard.php?id=column&page=1&page_num=10&select_arrange=hit&desc=&sn=off&ss=on&sc=on&keyword=&category=&no=218 || 2012-02-04 18:16:18 | sub16 | avira | HTML/IFrame.era | 16/38 (42.1%) | AS9286 | 121.78.232.140 | kwlee@actela.com | KR | APNIC | KINXINC-KR | e1394f1415bb7386bde4e7f52d49228b | http://biz.korea.ac.kr/~jangya/board/zboard.php?id=column&page=2&page_num=10&select_arrange=hit&desc=&sn=off&ss=on&sc=on&keyword=&category=&no=167 || 2012-02-04 18:16:18 | sub16 | avira | HTML/IFrame.era | 15/38 (39.5%) | AS9286 | 121.78.232.140 | kwlee@actela.com | KR | APNIC | KINXINC-KR | 38d794e755fe7c9101d672c0c4254bd0 | http://biz.korea.ac.kr/~jangya/board/zboard.php?id=column&page=5&page_num=10&select_arrange=hit&desc=&sn=off&ss=on&sc=on&keyword=&category=&no=145 || 2012-02-04 18:16:18 | sub16 | avira | HTML/IFrame.era | 14/38 (36.8%) | AS9286 | 121.78.232.140 | kwlee@actela.com | KR | APNIC | KINXINC-KR | e1ea5dd7846bacae568dd685d28d8c78 | http://biz.korea.ac.kr/~jangya/board/zboard.php?id=column&page=6&page_num=10&select_arrange=hit&desc=&sn=off&ss=on&sc=on&keyword=&category=&no=102 || 2012-02-04 18:16:18 | sub16 | avira | HTML/FakeAlert.I | 30/43 (69.8%) | AS2514 | 61.194.62.161 | higuchim@nttpc.co.jp | JP | APNIC | INFOSPHERE | 4421094781242363f3dfb4d28d15b5e7 | http://blankpage.searchnavi.jp/mdee1ybpa/ || 2012-02-04 18:16:18 | sub16 | Avast | Win32:Elderado-B Trj | 4/43 (9.3%) | AS39582 | 89.106.12.151 | abuse@turkticaret.net | TR | RIPE | TURKTICARET-GRID-NET | b004833f949d0e65bac3756e48bd097c | http://cansesiasknefesi.com/img/logo.gif?16aab=278529 || 2012-02-04 18:16:18 | sub16 | Avast | Win32:Elderado-B Trj | 4/43 (9.3%) | AS39582 | 89.106.12.151 | abuse@turkticaret.net | TR | RIPE | TURKTICARET-GRID-NET | b004833f949d0e65bac3756e48bd097c | http://cansesiasknefesi.com/img/logo.gif?17402=761872 || 2012-02-04 18:16:18 | sub16 | Avast | Win32:Elderado-B Trj | 4/43 (9.3%) | AS39582 | 89.106.12.151 | abuse@turkticaret.net | TR | RIPE | TURKTICARET-GRID-NET | b004833f949d0e65bac3756e48bd097c | http://cansesiasknefesi.com/img/logo.gif?2dff6=942030 || 2012-02-04 18:16:18 | sub16 | avira | JS/Infected.C | 23/40 (57.5%) | AS24940 | 176.9.36.101 | abuse@hetzner.de | DE | RIPE | DE-HETZNER-20110517 | 327caaaa2c8b0188da4077815696aaa7 | http://capetownshow.co.za/wp-content/themes/alabastroswp/js/cufon.js?ver=3.0.4 || 2012-02-04 18:16:18 | sub16 | avira | JS/Infected.C | 25/41 (61%) | AS32181 | 69.39.232.73 | abuse@gigenet.com | US | ARIN | IPNAP | 48b390d9a0a1a28327c702cadf7113ef | http://catholicmissionarygirl.com/wp-content/themes/Basic/epanel/page_templates/js/fancybox/jquery.fancybox-1.2.6.pack.js?ver=1.3.2 || 2012-02-04 18:16:18 | sub16 | avira | JS/Infected.C | 22/40 (55%) | AS32181 | 69.39.232.73 | abuse@gigenet.com | US | ARIN | IPNAP | 1f8295849b135a639257e618ae21fccf | http://catholicmissionarygirl.com/wp-content/themes/Basic/epanel/shortcodes/js/et_shortcodes_frontend.js?ver=1.6 || 2012-02-04 18:16:18 | sub16 | avira | JS/Infected.C | 22/40 (55%) | AS32181 | 69.39.232.73 | abuse@gigenet.com | US | ARIN | IPNAP | c0f6586009219dbda735302ece807882 | http://catholicmissionarygirl.com/wp-content/themes/Basic/js/superfish.js || 2012-02-04 18:16:18 | sub16 | avira | JS/Infected.B | 23/40 (57.5%) | AS8560 | 74.208.216.63 | abuse@1and1.com | US | ARIN | 1AN1-NETWORK | 482e2e6da18d03baed4f25498d14ca3b | http://catieart.com/wp-content/plugins/google-analytics-for-wordpress/custom_se.js || 2012-02-04 18:16:18 | sub16 | avira | JS/Infected.B | 23/40 (57.5%) | AS8560 | 74.208.216.63 | abuse@1and1.com | US | ARIN | 1AN1-NETWORK | ba78a2d17787e75a631289339eda28cd | http://catieart.com/wp-content/plugins/nextgen-gallery/shutter/shutter-reloaded.js?ver=1.3.0 || 2012-02-04 18:16:18 | sub16 | F_Prot | IFrame.gen | 4/40 (10%) | AS8560 | 74.208.87.186 | abuse@1and1.com | US | ARIN | 1AN1-NETWORK | 5dc823bf77bd6f24621dbccfe311d6fc | http://cat-n-scratch.com/page/32/ || 2012-02-04 18:16:18 | sub16 | avira | JS/Infected.C | 21/40 (52.5%) | AS26347 | 69.163.144.154 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK9 | 86adb4762d1d69fdbbdb137a545276a7 | http://cdaspas.com/wp-content/plugins/contact-form-7/contact-form-7.js?ver=2.0.6 || 2012-02-04 18:16:18 | sub16 | avira | JS/Infected.C | 21/40 (52.5%) | AS26347 | 69.163.144.154 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK9 | 0a2a6302fa2ed5f2acec3fd240c4a975 | http://cdaspas.com/wp-content/themes/cdaspas/js/hoverIntent.js || 2012-02-04 18:16:18 | sub16 | avira | JS/Infected.C | 21/39 (53.8%) | AS26347 | 69.163.144.154 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK9 | 0863a32f21174b80705e810fc0b66790 | http://cdaspas.com/wp-content/themes/cdaspas/js/idtabs.js || 2012-02-04 18:16:18 | sub16 | avira | JS/Infected.C | 23/40 (57.5%) | AS26347 | 69.163.144.154 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK9 | c8f21917e0c382c00b0e07d943ab0e3f | http://cdaspas.com/wp-content/themes/cdaspas/js/superfish.js || 2012-02-04 18:16:18 | sub16 | avira | JS/Infected.C | 23/40 (57.5%) | AS26347 | 69.163.144.154 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK9 | 706b01efa795c176b2f669c7d54ddc2f | http://cdaspas.com/wp-includes/js/jquery/jquery.form.js?ver=2.73 || 2012-02-04 18:16:18 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS26347 | 69.163.144.154 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK9 | e990ca163d15aab20aa518d2121acdba | http://cdaspas.com/wp-includes/js/l10n.js?ver=20101110 || 2012-02-04 18:16:18 | sub16 | avira | JS/Infected.B | 24/40 (60%) | AS3356 | 198.78.206.126 | abuse@level3.com | US | ARIN | LVLT-ORG-198-76 | 1824b90f4cc789d3b9f50f31fea7048f | http://cdn.sharam.com/wp-includes/js/comment-reply.js?ver=20090102 || 2012-02-04 18:16:18 | sub16 | avira | JS/Infected.C | 24/40 (60%) | AS33876 | 94.126.169.17 | abuse@flesk.com | PT | RIPE | FLESK-NET | 48b390d9a0a1a28327c702cadf7113ef | http://cesarioromeiro.com/wp-content/themes/LightBright/epanel/page_templates/js/fancybox/jquery.fancybox-1.2.6.pack.js?ver=1.3.2 || 2012-02-04 18:16:18 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS33876 | 94.126.169.17 | abuse@flesk.com | PT | RIPE | FLESK-NET | 5972978e94da5f26b016a924da5c4520 | http://cesarioromeiro.com/wp-includes/js/jquery/jquery.js?ver=1.7.1 || 2012-02-04 18:16:18 | sub16 | avira | JS/Infected.C | 22/40 (55%) | AS8560 | 74.208.57.253 | abuse@1and1.com | US | ARIN | 1AN1-NETWORK | c04d72c7df5cc8e7c9f1650343ae65cb | http://cfcsfccanada.com/wordpress/wp-content/plugins/mailchimp/js/mailchimp.js?ver=1.2.6 || 2012-02-04 18:16:18 | sub16 | avira | TR/Black.Gen2 | 17/40 (42.5%) | AS12314 | 212.42.63.218 | root@ropnet.ru | RU | RIPE | RU-ROPNET-990301 | 8b569b6e35d5eaa9ebdbf8a50c7210a9 | http://cheathall.playground.ru/7/9/Bulletstorm_1.0_{skidrow}.7z || 2012-02-04 18:16:18 | sub16 | Avast | HTML:Script-inf | 7/41 (17.1%) | AS4812 | 222.73.173.216 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-SH | e49355f46e27f6953ceabb74831dbd32 | http://chengjianyyy.china-wcmedia.com/CS480 || 2012-02-04 18:16:18 | sub16 | avira | PHP/C99Shell.AI | 23/40 (57.5%) | AS25653 | 50.61.244.236 | hostmaster@fortressitx.com | US | ARIN | FORTRESSITX | eebab6f4f7ff646168042b3c74a8b85f | http://chinashoppingworld.com/sysLogo/201201200901163586.jpg || 2012-02-04 18:16:18 | sub16 | clamav | PUA.IRC-Client.mIRC-37 | 6/40 (15%) | AS26496 | 72.167.1.1 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 61f00ff160755ede0ad41082346768c3 | http://chrisqueen.com/dp/distr/app-gurugosgos/site-0062101e758/lng-eng/gurugosgos.exe || 2012-02-04 18:16:18 | sub16 | avira | JS/Badscr.A | 11/40 (27.5%) | AS17139 | 173.247.240.140 | abuse@inmotionhosting.com | US | ARIN | CORPCOLO-NET04-INMOT-240-22 | 63ead6e172895fd0ba98f7f96f5a6331 | http://citykeepermedia.com/images09/ || 2012-02-04 18:16:18 | sub16 | Comodo | UnclassifiedMalware | 4/40 (10%) | AS28753 | 212.95.52.126 | abuse@leaseweb.de | DE | RIPE | NETDIRECT-NET | 361163f5784ae68e83c32367f039d07d | http://ckcs.in/deca-deca/ || 2012-02-04 18:16:18 | sub16 | McAfee_GW_Editio | Heuristic.BehavesLike.JS.CodeUnfolding.F | 3/43 (7%) | AS28753 | 212.95.52.126 | abuse@leaseweb.de | DE | RIPE | NETDIRECT-NET | e374bb450d31636060701458488a57a7 | http://ckcs.in/st-vincent-fire-ergot-wikipedia/ || 2012-02-04 18:16:18 | sub16 | avira | JS/iFrame.DV.1 | 19/40 (47.5%) | AS32475 | 69.175.91.226 | netops@singlehop.com | US | ARIN | SINGLEHOP | 9ee3f4194b1d39fd5fd8ccdc46881e99 | http://classicalhorsemasters.com/?page_id=355 || 2012-02-04 18:16:18 | sub16 | Kaspersky | HEUR:Trojan.Script.Generic | 1/40 (2.5%) | AS30568, AS11434, AS14383 | 74.200.74.138 | abuse@virtacore.com | US | ARIN | VCS-NET-4 | 2556e21cfce72fd9a994077213336f36 | http://cornwallishouse.com.au/ || 2012-02-04 18:16:18 | sub16 | avira | HTML/Infected.WebPage.Gen | 20/40 (50%) | AS23851 | 211.158.25.212 | frankpeng@hltt.cn | CN | APNIC | CQCNC | f152b4e1c147c1a782172d198ad89f32 | http://cq2e.com/blog/u/89/archives/2011/530.html || 2012-02-04 18:16:18 | sub16 | avira | JS/Clicker.CA | 31/40 (77.5%) | AS30266 | 216.17.100.45 | poc@a1colo.com | US | ARIN | A1COLO | 884495dd03ce17db232119c25e4c67b8 | http://crackskinny.com/blog/?p=133 || 2012-02-04 18:16:18 | sub16 | avira | JS/Clicker.CA | 31/40 (77.5%) | AS30266 | 216.17.100.45 | poc@a1colo.com | US | ARIN | A1COLO | ef409249a4b2bb61dc80f25877615bfc | http://crackskinny.com/blog/?page_id=104 || 2012-02-04 18:16:18 | sub16 | avira | HTML/Crypted.Gen | 26/40 (65%) | AS21844 | 74.52.133.18 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 746b1aa5ec0d8764f6cadb5b86fb2a6b | http://createyourwebspace.com/teamcal/tools/_images/saginaw-michigan-escorts-adult/visualization-exercises-for-teens.html || 2012-02-04 18:16:18 | sub16 | avira | HTML/Crypted.Gen | 26/40 (65%) | AS262790 | 186.233.144.133 | registro@centralserver.com.br | BR | LACNIC | 004.151.097/0001-94 | 1cb8db905c4dacdf4abd6fd5e0462f4f | http://crfmg.org.br/legislacao/Resolucao/_notes/_image/curso-_dd.html || 2012-02-04 18:16:18 | sub16 | avira | HTML/Crypted.Gen | 23/39 (59%) | AS262790 | 186.233.144.133 | registro@centralserver.com.br | BR | LACNIC | 004.151.097/0001-94 | d0d6f14fd2f82a9934f2a5ccb8a46b79 | http://crfmg.org.br/legislacao/Resolucao/_notes/_images/r_es37_.html || 2012-02-04 18:16:18 | sub16 | AVG | Dropper.Generic5.ACOU | 4/39 (10.3%) | AS33774 | 174.34.232.251 | abuse@carohosting.com | US | ARIN | CARO-NET-ARIN-5 | d81098158024817f34121f437bf63a04 | http://cutt.us/xtsk || 2012-02-04 18:16:18 | sub16 | avira | TR/Dropper.Gen | 25/39 (64.1%) | AS30266 | 64.6.103.122 | poc@a1colo.com | US | ARIN | A1COLO | af26a465457f833816fb39ec8eea74e9 | http://czyonoft.com/wp-content/uploads/2013/albums.php?109117277 || 2012-02-04 18:16:18 | sub16 | AVG | Script/Exploit.Kit | 5/40 (12.5%) | AS16265 | 212.7.203.78 | info@dediserv.eu | NL | RIPE | PL-DEDISERV-20100812 | cddec094c3dd97b4bb59e5416faa4c12 | http://dark.birdamla.biz/main.php?page=8708bdb08f6ac407 || 2012-02-04 18:16:19 | sub16 | AhnLab_V3 | JS/Redirector | 14/40 (35%) | AS4134 | 61.159.225.18 | ynipm@126.com | CN | APNIC | CHINANET-YN | 35dac2689f4bd16574863b7b8379eb14 | http://dc4g.js6.in/401/ww/i1.js || 2012-02-04 18:16:19 | sub16 | Avast | HTML:Illiframe-C Trj | 7/40 (17.5%) | AS38661 | 124.217.216.35 | noc@hclc.co.kr | KR | APNIC | HCLC-KR | 36aa569048ac6fdee45146ffcb68de9b | http://denthouse.net/bbs/zboard.php?id=poto&page=17&sn1=&divpage=2&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=7537 || 2012-02-04 18:16:19 | sub16 | Avast | HTML:Illiframe-C Trj | 7/40 (17.5%) | AS38661 | 124.217.216.35 | noc@hclc.co.kr | KR | APNIC | HCLC-KR | 10a7f326ee7c810ac4b97f663592b6f2 | http://denthouse.net/bbs/zboard.php?id=poto&page=17&sn1=&divpage=2&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=7545 || 2012-02-04 18:16:19 | sub16 | Avast | HTML:Illiframe-C Trj | 7/40 (17.5%) | AS38661 | 124.217.216.35 | noc@hclc.co.kr | KR | APNIC | HCLC-KR | bc35c485a45d96c87f0e50e2136dc408 | http://denthouse.net/bbs/zboard.php?id=poto&page=17&sn1=&divpage=2&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=7548 || 2012-02-04 18:16:19 | sub16 | avira | HTML/Rce.Gen | 18/39 (46.2%) | AS18059 | 116.90.167.7 | abuse@dtp.net.id | ID | APNIC | DTPNET-ID | 45178f5b7a74f4cfca63b5b1210cda8f | http://dinkeskabtasik.com/index.php?option=com_content&view=article&id=174%3Adesiminasi-dan-informasi-tentang-rokok&catid=1%3Aterbaru&Itemid=201&layout=default&date=2010-10-01 || 2012-02-04 18:16:19 | sub16 | AVG | Generic3_c.CCSO | 22/40 (55%) | AS36752 | 68.180.151.75 | network-abuse@cc.yahoo-inc.com | US | ARIN | A-YAHOO-US6 | 8983a23462d38952d096487d74f420d7 | http://diviniaro.com/Furball/Patcher/FullPatch/System/RagII.exe.zip || 2012-02-04 18:16:19 | sub16 | avira | EXP/Android.XI | 15/40 (37.5%) | AS14618 | 107.20.133.134 | ec2-abuse@amazon.com | US | ARIN | AMAZON-EC2-8 | 162cda1ec7f49e9ca2e4c4d47f642041 | http://dl.dropbox.com/u/1033695/UniversalAndroot.apk || 2012-02-04 18:16:19 | sub16 | McAfee_GW_Editio | Heuristic.BehavesLike.Win32.ModifiedUPX.C | 1/40 (2.5%) | AS14618 | 107.20.133.134 | ec2-abuse@amazon.com | US | ARIN | AMAZON-EC2-8 | 914fb0f0c10c60b6d8ef02e30e6cdce7 | http://dl.dropbox.com/u/2554170/wget-1.13.4/wget.exe || 2012-02-04 18:16:19 | sub16 | Jiangmin | Trojan/Generic.qexi | 1/40 (2.5%) | AS14618 | 184.73.245.80 | aes-noc@amazon.com | US | ARIN | AMAZON-EC2-7 | 553a6700fa7e27f92090df3ad7e994fa | http://dl.dropbox.com/u/47450407/Kristal%20Safe%20Way%202012%20-%20Public/Kristal%20Safe%20Way%20installer.exe || 2012-02-04 18:16:19 | sub16 | Jiangmin | Trojan/Generic.qexi | 1/40 (2.5%) | AS14618 | 23.21.195.112 | ec2-abuse@amazon.com | US | ARIN | AMAZON-EC2-USEAST-10 | 3dbbd62b92164b7566d39d7a420362e8 | http://dl.dropbox.com/u/47450407/Kristal%20Safe%20Way%202012%20-%20Public/Kristal%20Safe%20Way%20Portable.zip || 2012-02-04 18:16:19 | sub16 | Symantec | WS.Reputation.1 | 1/40 (2.5%) | AS14618 | 23.21.195.112 | ec2-abuse@amazon.com | US | ARIN | AMAZON-EC2-USEAST-10 | 073fb22d5f3097c25bf466edd26a7fc3 | http://dl.dropbox.com/u/47450407/Kristal%20Security%202012%20-%20Public/Kristal%20Security%20installer.exe || 2012-02-04 18:16:19 | sub16 | McAfee | HTool-Loic | 4/40 (10%) | AS14618 | 23.21.195.112 | ec2-abuse@amazon.com | US | ARIN | AMAZON-EC2-USEAST-10 | aa2932a948e2fe0c2d9c871de47b8722 | http://dl.dropbox.com/u/5128599/%23OpDoring.html || 2012-02-04 18:16:19 | sub16 | Kaspersky | HEUR:Trojan.Win32.Generic | 1/40 (2.5%) | AS8182 | 209.87.181.43 | hostmaster@digitalriver.com | US | ARIN | DIGITALRIVER | 001ab8c2ecf621b8db046fa793d4fa32 | http://dl.filekicker.com/send/file/228951-Z3UW/SnappyInternetControlSetup.exe || 2012-02-04 18:16:19 | sub16 | Avast | Win32:Monitor-I PUP | 6/40 (15%) | AS8182 | 209.87.181.43 | hostmaster@digitalriver.com | US | ARIN | DIGITALRIVER | f8172e1737c120ee4b79859b163bee02 | http://dl.filekicker.com/send/file/231437-6FO5/SnappySpySetup.exe || 2012-02-04 18:16:19 | sub16 | avira | TR/Click.VB.fou | 28/40 (70%) | AS4134 | 124.115.16.200 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-SN | e60a0fe7f4fc095af8dd51f5f3d9c010 | http://dl.warmh.cn/software/HFRoom.rar || 2012-02-04 18:16:19 | sub16 | avira | TR/Dropper.Gen | 22/40 (55%) | AS20248 | 173.252.250.137 | ops@take2hosting.com | US | ARIN | T2H-NET4-4 | 3300cec8ff616c9523e3bf210d87bd73 | http://dnf898.com/wg/dnfwg.rar || 2012-02-04 18:16:19 | sub16 | avira | JS/Redirector.MR | 7/40 (17.5%) | AS40244 | 173.233.77.42 | support@turnkeyinternet.net | US | ARIN | TURNKEY-INTERNET | 38091a529e2c577c923ce662395dc69a | http://dockingstationpc.bestforsalenow.com/cheap-deals-on-docking-station-pc-lenovo-thinkpad-x200-ultrabase-docking-station-on-sale/ || 2012-02-04 18:16:19 | sub16 | ClamAV | PUA.JS.Obfus-7 | 1/43 (2.3%) | AS24971 | 89.185.237.165 | mbi@centrum.cz | CZ | RIPE | KTVMB2-CZ-MAI | 30742a400f69922e1869cc5f50c4e5d5 | http://dornascu.net/njob.php?num=10738365143151826002& || 2012-02-04 18:16:19 | sub16 | Avast | Win32:Adware-gen Adw | 4/40 (10%) | AS3292 | 195.215.232.61 | nihb@tdc.dk | DK | RIPE | DK-TELEDANMARK-971007 | ccec7e197b85e54e42d4b3bff25ed501 | http://downloadcentral.dk/files/daemon410-x86.exe || 2012-02-04 18:16:19 | sub16 | avira | TR/Agent.1869245 | 7/40 (17.5%) | AS16276 | 91.121.74.221 | abuse@ovh.net | FR | RIPE | OVH | 9805a50dd554b47e5edd7c5d8fbd98ec | http://downloads3.uptodown.net/dm/flashget-3-7-0-1195-en-win.exe || 2012-02-04 18:16:19 | sub16 | Avast | NSIS:TheMediaFinder-A PUP | 1/40 (2.5%) | AS50245 | 109.206.185.134 | abuse@serverel.com | EU | RIPE | SERVEREL | b0458f90a2683db431295a7c458322b2 | http://downloadthismedia.com/files/download.php?get || 2012-02-04 18:16:19 | sub16 | NOD32 | Win32/SpeedUpMyPC | 1/40 (2.5%) | AS14618 | 107.20.252.110 | ec2-abuse@amazon.com | US | ARIN | AMAZON-EC2-8 | 01e1961b7ddb28a894244c2c36be10a9 | http://download.uniblue.com/ub/main/sp/speedupmypc3.exe || 2012-02-04 18:16:19 | sub16 | eSafe | Win32.Hexzone.Iul | 5/40 (12.5%) | AS30496 | 67.222.10.19 | noc@privatesystems.net | US | ARIN | PRIVATE-1 | e9d97add3b960e65281bee6a6f53f125 | http://downloadyoutubevideo.org/download_youtube_free_setup.exe || 2012-02-04 18:16:19 | sub16 | TheHacker | Trojan/Dropper.VB.aprb | 1/40 (2.5%) | AS32475 | 69.175.66.250 | netops@singlehop.com | US | ARIN | SINGLEHOP | 2a366f1333f99b93d25cc679bbe2dd50 | http://driverbackup.antispywareconsumerreport.com/drv/UpdateDisplayDrivers/Run-DriverUpdateUtility.exe || 2012-02-04 18:16:19 | sub16 | eSafe | Win32.Banker | 2/43 (4.7%) | AS32475 | 69.175.66.250 | netops@singlehop.com | US | ARIN | SINGLEHOP | 2ec4095c0ca28e85d0e1238ce79ac7f2 | http://driverbackup.antispywareconsumerreport.com/drv/UpdateDriversSoftware/Run-DriverUpdateUtility.exe || 2012-02-04 18:16:19 | sub16 | eSafe | Win32.Banker | 2/40 (5%) | AS32475 | 69.175.66.250 | netops@singlehop.com | US | ARIN | SINGLEHOP | 3b63deb179e305e5e7dff50c860d1462 | http://driverbackup.antispywareconsumerreport.com/reg/RegistryTool/Run-RegistryFixer.exe || 2012-02-04 18:16:19 | sub16 | avira | HTML/Crypted.Gen | 21/40 (52.5%) | AS32392 | 50.118.15.106 | abuse@ecommerce.com | US | ARIN | ECOMM-201111 | 6fbf3b01ef564a555bd840f19b93117b | http://dshorophotohost.com/cp/scripts/_image/m_u_age_200707_001_0030.html || 2012-02-04 18:16:19 | sub16 | avira | JS/Redirect.TV | 19/40 (47.5%) | AS25074 | 213.203.202.15 | info@net-publics.de | DE | RIPE | DE-NETPUBLICS | b60b746b2d2fcba6bfa589349483f9f8 | http://dslflatrates.info/dsl-vergleich/index.html || 2012-02-04 18:16:19 | sub16 | DrWeb | SCRIPT.Virus | 1/43 (2.3%) | AS4134 | 218.22.248.156 | abuse@ah163.com | CN | APNIC | CHINANET-AH | 5956c351d24028ae54774ab5db211ef4 | http://dxs.uglyas.com/b.js?google=2x012 || 2012-02-04 18:16:19 | sub16 | DrWeb | SCRIPT.Virus | 1/43 (2.3%) | AS4134 | 218.22.248.156 | abuse@ah163.com | CN | APNIC | CHINANET-AH | 5956c351d24028ae54774ab5db211ef4 | http://dxt.uglyas.com/b.js?google=2x021 || 2012-02-04 18:16:19 | sub16 | DrWeb | SCRIPT.Virus | 1/40 (2.5%) | AS4134 | 218.22.248.156 | abuse@ah163.com | CN | APNIC | CHINANET-AH | 5956c351d24028ae54774ab5db211ef4 | http://dxu.uglyas.com/b.js?google=2x022 || 2012-02-04 18:16:19 | sub16 | ClamAV | PUA.JS.Obfus-7 | 1/43 (2.3%) | AS24971 | 89.185.237.165 | mbi@centrum.cz | CZ | RIPE | KTVMB2-CZ-MAI | 30742a400f69922e1869cc5f50c4e5d5 | http://dyaneph.net/ || 2012-02-04 18:16:19 | sub16 | avira | HTML/IFrame.era | 17/39 (43.6%) | AS23983 | 203.237.168.7 | sysma@dju.ac.kr | KR | APNIC | KREN-KR | 647fe90b0992ae479f67a45738c108a7 | http://ecamp.smu.ac.kr/zboard/view.php?id=camp_notice&page=6&page_num=20&select_arrange=vote&desc=&sn=off&ss=on&sc=on&keyword=&category=&no=29 || 2012-02-04 18:16:19 | sub16 | avira | HTML/IFrame.era | 18/42 (42.9%) | AS23983 | 203.237.168.7 | sysma@dju.ac.kr | KR | APNIC | KREN-KR | ad855d40914cfe6a51465e529c8d8bcb | http://ecamp.smu.ac.kr/zboard/view.php?id=camp_study1&page=9&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=95 || 2012-02-04 18:16:19 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 9/40 (22.5%) | AS15621 | 109.127.8.247 | sergey.zelyukin@alfanet.az | AZ | RIPE | AZDATA-NET | 61e279ce940c121a9c8318646c3e1833 | http://echo-az.com/archive/2007_12/1706/index.shtml || 2012-02-04 18:16:19 | sub16 | Avast | HTML:Iframe-inf | 6/40 (15%) | AS16371 | 217.116.0.144 | abuse@acens.net | ES | RIPE | ACENS-MAD-1 | fcebd289b7ca715393904e74fce8452f | http://ecuadrado.es/ || 2012-02-04 18:16:19 | sub16 | avira | JS/Clicker.CA | 31/40 (77.5%) | AS27823 | 200.58.119.9 | ipmaster@hostmar.com | AR | LACNIC | AR-DATT-LACNIC | c9669d952e315ebdfc8aabedea9feeab | http://elcontenedor.com.ar/humor/bloopers-chinoka-naa-de-karate || 2012-02-04 18:16:19 | sub16 | avira | JS/Clicker.CA | 30/39 (76.9%) | AS27823 | 200.58.119.9 | ipmaster@hostmar.com | AR | LACNIC | AR-DATT-LACNIC | 0281c346e1b0ee1c2e4e262f731888ef | http://elcontenedor.com.ar/humor/un-alumno-tipicamente-idiota-y-un-profesor-sin-paciencia-y-con-buena-punteria || 2012-02-04 18:16:19 | sub16 | clamav | Suspect.Trojan.Generic.FD-1 | 20/40 (50%) | AS24940 | 78.46.102.37 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET | a87b8d4a9b6bf3845460b8056113de5f | http://emprescoporativ.br.gp/?x=/relat/ || 2012-02-04 18:16:19 | sub16 | avira | HTML/IFrame.era | 18/39 (46.2%) | AS9848 | 61.109.250.202 | abuse@sejongtelecom.net | kr | APNIC | ENTERPRISENET-NEXTLINE | 733e9c6f1b78f21ba0a60146e677dd7b | http://englishcode.com/bbs/zboard.php?id=eng_6&page=11&select_arrange=headnum&desc=asc&category=&sn=off&ss=on&sc=on&keyword=&sn1=&divpage=1 |+---------------------+-------------+------------------+-------------------------------------------+---------------+------------------------------------+-----------------+--------------------------------+---------+--------+-----------------------------+----------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+200 rows in set (0.04 sec)
+---------------------+-------------+-------------+----------------------------+---------------+---------------------------------------+-----------------+-------------------------------------+---------+--------+----------------------------+----------------------------------+-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| date | contributor | scanner | virusname | vt_score | AS | review | email | country | source | netname | md5sum | url |+---------------------+-------------+-------------+----------------------------+---------------+---------------------------------------+-----------------+-------------------------------------+---------+--------+----------------------------+----------------------------------+-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| 2012-02-04 18:16:19 | sub16 | eSafe | Win32.Banker | 2/40 (5%) | AS32475 | 69.175.66.250 | netops@singlehop.com | US | ARIN | SINGLEHOP | bc70a82ea7f3bb40fa20deaf975727af | http://erasehistory.trishulsoft.com/drv/UpdateMyDrivers/Run-WindowsDriverUtility.exe || 2012-02-04 18:16:19 | sub16 | avira | TR/ElderadoB.A.11 | 3/41 (7.3%) | AS26496 | 97.74.45.128 | noc@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 0fa10cd0f8cf3348db3339ecba32bce3 | http://esource.co.in/images/logo2.gif?12824=606496 || 2012-02-04 18:16:19 | sub16 | avira | TR/ElderadoB.A.11 | 3/41 (7.3%) | AS26496 | 97.74.45.128 | noc@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 0fa10cd0f8cf3348db3339ecba32bce3 | http://esource.co.in/images/logo2.gif?1368c=795000 || 2012-02-04 18:16:19 | sub16 | avira | TR/ElderadoB.A.11 | 3/41 (7.3%) | AS26496 | 97.74.45.128 | noc@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 0fa10cd0f8cf3348db3339ecba32bce3 | http://esource.co.in/images/logo2.gif?144c4=332560 || 2012-02-04 18:16:19 | sub16 | avira | TR/ElderadoB.A.11 | 3/41 (7.3%) | AS26496 | 97.74.45.128 | noc@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 0fa10cd0f8cf3348db3339ecba32bce3 | http://esource.co.in/images/logo2.gif?184da=497730 || 2012-02-04 18:16:19 | sub16 | avira | TR/ElderadoB.A.11 | 3/41 (7.3%) | AS26496 | 97.74.45.128 | noc@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 0fa10cd0f8cf3348db3339ecba32bce3 | http://esource.co.in/images/logo2.gif?18538=597840 || 2012-02-04 18:16:19 | sub16 | avira | TR/ElderadoB.A.11 | 3/40 (7.5%) | AS26496 | 97.74.45.128 | noc@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 0fa10cd0f8cf3348db3339ecba32bce3 | http://esource.co.in/images/logo2.gif?1b82f=901496 || 2012-02-04 18:16:19 | sub16 | Avast | HTML:Script-inf | 13/40 (32.5%) | AS13749, AS21844, AS30315, AS36420 | 74.54.57.98 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | fb4892e3780225beaa2cb3e8e3e51dc8 | http://expouniverse.com/country_state.js || 2012-02-04 18:16:19 | sub16 | Kaspersky | Trojan.HTML.Fraud.gt | 1/40 (2.5%) | AS47869 | 94.228.217.240 | abuse@netrouting.eu | NL | RIPE | NL-NETROUTING-20081106 | f84ecc6f973f047e59dc44557a7ddc4b | http://fastly-download.ru/ || 2012-02-04 18:16:20 | sub16 | avira | PHISH/PayPal.DI | 3/40 (7.5%) | AS32613 | 72.55.186.49 | abuse@panelboxmanager.com | CA | ARIN | PANELBOX-01 | d08d9e896659257591dea061e43406ce | http://fermehorticolelajoie.com/data/configler/fr/cjYYLPGtzgcwFGaN2b2KkRhML7VCMTZlJpd78P2gsaRisJuudispatch5885d80a13c0db1f8e263663d3faee8d5863a909c4bb5aeebb52c6e1151/mise-a-jour/ || 2012-02-04 18:16:20 | sub16 | trendmicro | TSPY_HATKEYS.C | 16/40 (40%) | AS35017 | 94.100.29.123 | abuse@swiftway.net | NL | RIPE | DEDICATED-SERVERS | 5b2feb22fe8af9cc29e18bec139ce95f | http://files.tgdb.net/downloads/0/02/Daby2tr-trainer.rar || 2012-02-04 18:16:20 | sub16 | AntiVir | JS/Redirector.MR | 7/40 (17.5%) | AS11798 | 66.147.240.161 | abuse@bluehost.com | US | ARIN | BLUEHOST-NETWORK-4 | 46df88d3aae833de5e86caf53f4d5ac8 | http://fitmovie.com/2010/08/18/hum-apke-dil-main-rehtay-hain/ || 2012-02-04 18:16:20 | sub16 | AntiVir | JS/Redirector.MR | 7/40 (17.5%) | AS11798 | 66.147.240.161 | abuse@bluehost.com | US | ARIN | BLUEHOST-NETWORK-4 | 6943cd2c525537599f439457d1cbea9a | http://fitmovie.com/tag/poornima/ || 2012-02-04 18:16:20 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 18/40 (45%) | AS43962 | 91.200.184.33 | inten@inten.pl | PL | RIPE | INTEN-NET-PL | 1c3225be3a9dd9e162293029b93ca49b | http://florek.org.pl/propozycje/ || 2012-02-04 18:16:20 | sub16 | avira | JS/Redirector.MR | 7/40 (17.5%) | AS40244 | 173.233.70.116 | support@turnkeyinternet.net | US | ARIN | TURNKEY-INTERNET | fa9f42288a6585af4c0df68cecb2dedf | http://fordexpedition.ford4u.com/best-prices-ford-expedition-ford-expedition-pin-red-1-on-sale/ || 2012-02-04 18:16:20 | sub16 | BitDefender | Trojan.JS.Iframe.AUL | 5/39 (12.8%) | AS36420, AS30315, AS13749, AS21844 | 174.132.225.245 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-15 | f98e62eea388086ae7587c11666b6d02 | http://freecontentarticles.net/index.php?page=register || 2012-02-04 18:16:20 | sub16 | clamav | PUA.Packed.PECompact-1 | 1/39 (2.6%) | AS14242 | 216.36.58.164 | turkers@softcom.com | US | ARIN | SLHOST-216 | 30982e3fdfb80e61bfd3ef7e4d372aff | http://free-sports-games.org/download/GoldenGlovesBoxing.exe || 2012-02-04 18:16:20 | sub16 | avira | TR/PWS.4288 | 24/39 (61.5%) | AS35807 | 94.19.12.181 | abuse@sknt.ru | RU | RIPE | SKYNET | ad2787494c773eebd75efeaaef6b32ab | http://ftp.lipkiy.ru/prg/kassovie_cheki.zip || 2012-02-04 18:16:20 | sub16 | avira | HTML/Infected.WebPage.Gen3 | 15/39 (38.5%) | AS12824 | 89.161.176.60 | abuse@home.pl | PL | RIPE | HOMEPL | 108b8d48bc030ec7b56e6a76e0f5ee48 | http://fundacja-krajna-paluki.pl/eng/index.php?option=com_zoom&Itemid=40&page=view&catid=8&key=10 || 2012-02-04 18:16:20 | sub16 | ClamAV | PUA.JS.Obfus-7 | 1/43 (2.3%) | AS21788 | 96.9.160.96 | nic@hostnoc.net | US | ARIN | HOSTNOC-4BLK | 30742a400f69922e1869cc5f50c4e5d5 | http://funklero.be/ || 2012-02-04 18:16:20 | sub16 | AhnLab_V3 | JS/Redirector | 6/40 (15%) | AS4134 | 61.159.225.18 | ynipm@126.com | CN | APNIC | CHINANET-YN | 24f6fb595c5e2c46c1c1a5ad3181c347 | http://fv5n.js6.in/401/ww/i2.js || 2012-02-04 18:16:20 | sub16 | avira | TR/Black.Gen2 | 19/40 (47.5%) | AS44066 | 91.228.152.48 | abuse@first-colo.de | DE | RIPE | DE-FORNEX | 84868284ef8ed9f75ebd9c67c9fbbb43 | http://gametory.ru/uploads/load/trainers/duke-nukem-forever-23-trainer.rar || 2012-02-04 18:16:20 | sub16 | avira | HTML/IFrame.acu | 21/40 (52.5%) | AS31731 | 89.200.201.136 | info@adixhosting.nl | NL | RIPE | ADIX | 42321f626cc899cd91644a99192ba015 | http://gekkenboel.nl/ || 2012-02-04 18:16:20 | sub16 | Avast | HTML:Script-inf | 5/39 (12.8%) | AS20355 | 69.2.43.118 | abuse@ntg.com | US | ARIN | NTG-DATACENTER-NETBLK2 | 54d9b70f3d3b0eae86b743cd08d51a65 | http://gemstateelectric.com/inventory/details.cfm?item=1041301057 || 2012-02-04 18:16:20 | sub16 | AVG | HTML/Framer.AC | 3/43 (7%) | AS26496 | 208.109.181.57 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 135e4bb1a6e2e5e806012825d52b446d | http://gloxiniagesneriadgrowers.org/picture.php?args=DSCN0681-s-grotei&caption=S+Grotei || 2012-02-04 18:16:20 | sub16 | AhnLab_V3 | Trojan/Win32.Gimemo | 16/40 (40%) | AS11798 | 66.147.244.208 | abuse@bluehost.com | US | ARIN | BLUEHOST-NETWORK-4 | ffab0fb64d594883cd71869b07098342 | http://godismycocounsel.com/media/xxx_video_clips_arhiv.exe || 2012-02-04 18:16:20 | sub16 | ClamAV | PUA.HTML.Crypt | 3/40 (7.5%) | AS6903 | 213.189.197.104 | abuse@zenon.net | RU | RIPE | ZENON | ed7eed01033638bc86797cb81499d4e8 | http://golovolomka.hobby.ru/ || 2012-02-04 18:16:20 | sub16 | avira | HTML/Crypted.Gen | 23/40 (57.5%) | AS29873 | 66.96.145.101 | bnbrock@maileig.com | US | ARIN | BIZLAND-FC01 | aa6fe628832d22be8c83cbc44c19d513 | http://graphiconcepts.com/pages/folderspec.html || 2012-02-04 18:16:20 | sub16 | clamav | JS.Obfus-31 | 19/40 (47.5%) | AS2044 | 66.11.225.247 | abuse@dotster.com | US | ARIN | DOTSTERNET | d0254774a11c3000553f58b19fe8c625 | http://grisetalla.fortunecity.com/fvrhaa.js || 2012-02-04 18:16:20 | sub16 | avira | HTML/Rce.Gen | 38/43 (88.4%) | AS33182 | 199.168.186.154 | abuse@dimenoc.com | US | ARIN | DIMENOC | f11e6bc8b7d5f76235fd2f731c9c08ae | http://grupourpay.com/ || 2012-02-04 18:16:20 | sub16 | avira | JS/iFrame.aav | 17/40 (42.5%) | AS25532 | 90.156.201.105 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-HOSTING | 146347daeb256ea83c97e988f323710c | http://gwcon.ru/inter/ || 2012-02-04 18:16:20 | sub16 | avira | HTML/Afriem.U | 17/40 (42.5%) | AS32244 | 209.59.154.150 | abuse@liquidweb.com | US | ARIN | LIQUIDWEB-2 | e20c9a0aa8c5713cd52f19eef9c4f24c | http://gymsnearby.co.uk/sitemap.html || 2012-02-04 18:16:20 | sub16 | Avast | JS:Downloader-AB Trj | 5/40 (12.5%) | AS4134 | 220.179.151.227 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 9492499a8e1660bda1d07c68894cccc4 | http://hackaxin.3355.cc/1.htm || 2012-02-04 18:16:20 | sub16 | Avast | JS:Downloader-ET Expl | 8/38 (21.1%) | AS4134 | 220.179.151.227 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 3962e7e2fd71d2d2ef6cba1a5d146e0c | http://hackaxin.3355.cc/2.htm || 2012-02-04 18:16:20 | sub16 | avira | HTML/Shellcode.Gen | 7/38 (18.4%) | AS4134 | 220.179.151.227 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 594f44d71331719c604ddd2a1112c946 | http://hackaxin.3355.cc/cc.jpg || 2012-02-04 18:16:20 | sub16 | DrWeb | Exploit.JavaScript.129 | 1/38 (2.6%) | AS4134 | 220.179.151.227 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | d37bbf4f5a939ae861cba0f45ec4fd1e | http://hackaxin.3355.cc/d.jpg || 2012-02-04 18:16:20 | sub16 | avira | SWF/Dldr.Agent.F.1 | 25/38 (65.8%) | AS4134 | 220.179.151.227 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 603947997e9b5e6b2619ef81085e457d | http://hackaxin.3355.cc/f115.swf || 2012-02-04 18:16:20 | sub16 | avira | SWF/Dldr.Agent.F.1 | 26/43 (60.5%) | AS4134 | 220.179.151.227 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | c1778b945e341d5d62f41140ffbbe091 | http://hackaxin.3355.cc/f45.swf || 2012-02-04 18:16:20 | sub16 | avira | SWF/Dldr.Agent.F.1 | 26/43 (60.5%) | AS4134 | 220.179.151.227 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | c1778b945e341d5d62f41140ffbbe091 | http://hackaxin.3355.cc/f47.swf || 2012-02-04 18:16:20 | sub16 | avira | SWF/Dldr.Agent.F.1 | 26/40 (65%) | AS4134 | 220.179.151.227 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | c1778b945e341d5d62f41140ffbbe091 | http://hackaxin.3355.cc/f64.swf || 2012-02-04 18:16:20 | sub16 | AVG | Exploit | 3/38 (7.9%) | AS4134 | 220.179.151.227 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 0d5319564bbc72edaedd439faf0e4e8c | http://hackaxin.3355.cc/fox.htm || 2012-02-04 18:16:20 | sub16 | avira | EXP/Flash.Gen | 25/38 (65.8%) | AS4134 | 220.179.151.227 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 62f00fbb3adc416cf91b742278f34ea1 | http://hackaxin.3355.cc/i115.swf || 2012-02-04 18:16:20 | sub16 | avira | EXP/Flash.Gen | 24/40 (60%) | AS4134 | 220.179.151.227 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | d5a30427db00a888f880e638c1b59513 | http://hackaxin.3355.cc/i45.swf || 2012-02-04 18:16:20 | sub16 | avira | EXP/Flash.Gen | 24/40 (60%) | AS4134 | 220.179.151.227 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 0e168b3d4ee986f94e5160223a8bceac | http://hackaxin.3355.cc/i47.swf || 2012-02-04 18:16:20 | sub16 | avira | EXP/Flash.Gen | 26/40 (65%) | AS4134 | 220.179.151.227 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | c87c62665e2902376d7c57015930d389 | http://hackaxin.3355.cc/i64.swf || 2012-02-04 18:16:20 | sub16 | avira | JS/A.809 | 10/40 (25%) | AS4134 | 220.179.151.227 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | c324ebb3c05e8ed7f12e485cca6d8369 | http://hackaxin.3355.cc/of.htm || 2012-02-04 18:16:20 | sub16 | AVG | Exploit.Iframe | 2/39 (5.1%) | AS4134 | 220.179.151.227 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 62966d37d62d5b44462110f3df8dca97 | http://hackaxin.3355.cc/svfl9.htm || 2012-02-04 18:16:20 | sub16 | avira | JS/Agent.aae | 3/40 (7.5%) | AS4134 | 220.179.151.227 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | cedc23d5c4fecb2d286474085ec4da92 | http://hackaxin.3355.cc/x7.htm || 2012-02-04 18:16:20 | sub16 | avira | JS/iFrame.GK | 15/39 (38.5%) | AS26496 | 97.74.144.178 | noc@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 11a6d9d85711c8f2073da96886f009a8 | http://halongcruiseholidays.com/Tours/pc33-pi225/Trans-Mekong-Tours:-Saigon-to-Siem-Reap-(4-day--3-nights) || 2012-02-04 18:16:20 | sub16 | Comodo | TrojWare.Win32.Script.~P | 3/43 (7%) | AS27715 | 186.202.95.18 | regcom@locaweb.com.br | BR | LACNIC | 002.351.877/0001-52 | edb772ec9d6e2ad828088fe2473f52ae | http://hemagen.com.br/images/logos.gif?16462=273702 || 2012-02-04 18:16:20 | sub16 | Comodo | TrojWare.Win32.Script.~P | 3/43 (7%) | AS27715 | 186.202.95.18 | regcom@locaweb.com.br | BR | LACNIC | 002.351.877/0001-52 | edb772ec9d6e2ad828088fe2473f52ae | http://hemagen.com.br/images/logos.gif?1a9e7=763217 || 2012-02-04 18:16:20 | sub16 | avira | JS/iFrame.DV.1 | 19/40 (47.5%) | AS11798 | 69.89.31.136 | abuse@bluehost.com | US | ARIN | BLUEHOST-NETWORK-1 | ef5de4d9bcca279ebab3f404fb7e19cd | http://hmfx.net/ || 2012-02-04 18:16:20 | sub16 | AntiVir | JS/Agent.dop | 19/39 (48.7%) | AS14989 | 64.115.0.44 | abuse@broadviewnet.net | US | ARIN | BDVU-BLK1 | a702e2300aa91d66843f89f4938f4cdf | http://horshamfitness.com/ || 2012-02-04 18:16:20 | sub16 | avira | JS/Redirector.psp | 23/40 (57.5%) | AS16276 | 178.33.146.64 | abuse@ovh.net | FR | RIPE | FR-OVH-20100119 | b6741fa23f1fc2a5fe9319fdac8df788 | http://hosteleriatarancon.com/newsjournal/70SimonDoyle/ || 2012-02-04 18:16:20 | sub16 | avira | HTML/IFrame.jurs | 11/40 (27.5%) | AS32244 | 67.43.12.64 | abuse@liquidweb.com | US | ARIN | LIQUIDWEB-1 | 9cbf0319db231e7e831e418b514231df | http://howtoclassics.com/How-To-Sell-Real-Estate/Links/Buying_Homes_In_Portugal__Page_2.php || 2012-02-04 18:16:20 | sub16 | AntiVir | HTML/IFrame.jurs | 11/40 (27.5%) | AS32244 | 67.43.12.64 | abuse@liquidweb.com | US | ARIN | LIQUIDWEB-1 | 2507f19e58192f150474ac33c60df67d | http://howtoclassics.com/How-To-Sell-Real-Estate/Links/Buying_Properties_In_Bulgaria_Page_3.php || 2012-02-04 18:16:20 | sub16 | avira | HTML/IFrame.jurs | 11/40 (27.5%) | AS32244 | 67.43.12.64 | abuse@liquidweb.com | US | ARIN | LIQUIDWEB-1 | 6c587891a57406030cdccd051aff2751 | http://howtoclassics.com/How-To-Sell-Real-Estate/Links/Buying_Property_In_Dubai_Page_2.php || 2012-02-04 18:16:20 | sub16 | AntiVir | HTML/IFrame.jurs | 11/40 (27.5%) | AS32244 | 67.43.12.64 | abuse@liquidweb.com | US | ARIN | LIQUIDWEB-1 | a40252481a86361aea3c72c717f990e3 | http://howtoclassics.com/How-To-Sell-Real-Estate/Links/Buying_You_Dream_House_In_Denver_Page_3.php || 2012-02-04 18:16:20 | sub16 | AntiVir | HTML/IFrame.jurs | 11/40 (27.5%) | AS32244 | 67.43.12.64 | abuse@liquidweb.com | US | ARIN | LIQUIDWEB-1 | 820c0892153a0cd4ff21f5732a5c39ae | http://howtoclassics.com/How-To-Sell-Real-Estate/Links/Information_On_Buying_Property_In_SPain__Page_2.php || 2012-02-04 18:16:20 | sub16 | AntiVir | JS/Infected.C | 21/40 (52.5%) | AS36351 | 96.125.174.163 | ipadmin@websitewelcome.com | US | ARIN | WW-2011-A-NET | 5442f6bc074e70b8d04d33e60a120f2c | http://howtomodelcoaching.com/wp-content/themes/OptimizePress/js/cufon-yui.js?9d7bd4 || 2012-02-04 18:16:21 | sub16 | avira | JS/Agent.zarb | 13/38 (34.2%) | AS21409 | 94.125.162.111 | ikoula@ikoula.com | FR | RIPE | IKOULA | e4fd14593c6dec2443eb9f2d500eeea6 | http://icities.fr/index.php?option=com_content&view=article&id=8&Itemid=23 || 2012-02-04 18:16:21 | sub16 | Avast | HTML:Script-inf | 18/40 (45%) | AS26496 | 64.202.163.2 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 6ee705e10ea713176c4fd5a86a1e7734 | http://indianstocksinfo.com/diamonds_and_jewellery/shareholders/suashish_diamonds_ltd.html || 2012-02-04 18:16:21 | sub16 | Norman | W32/Suspicious_Gen2.UJJYT | 1/40 (2.5%) | AS40366 | 174.35.7.25 | support@cdnetworks.com | US | ARIN | CDNET-USA-1 | 793742438efac374d1ada36101dd56dd | http://install.iminent.com/IminentSetup{2.IgDVl76.1}.exe || 2012-02-04 18:16:21 | sub16 | Avast | JS:Small-C Trj | 17/40 (42.5%) | AS19318 | 64.20.50.170 | network@interserver.net | US | ARIN | NJIIX | d16c07f96d9ab44e622860a0814e1da1 | http://islamic-flash.net/Flash/Card-1856.html || 2012-02-04 18:16:21 | sub16 | DrWeb | Java.Siggen.39 | 1/40 (2.5%) | AS36351 | 75.126.130.228 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-3 | bb456b4533a5d4dce794be1ca4df07f4 | http://janasto.mobile9.com/download/content_delivery.php?key=MzE3L3ZvaWNlY2hhbmdfM2tjNTcxaHYuamFyfDEzMjgzMjQyNDZ8 || 2012-02-04 18:16:21 | sub16 | BitDefender | Trojan.Script.CV | 7/40 (17.5%) | AS46475 | 216.245.221.83 | noc@limestonenetworks.com | US | ARIN | LSN-DLLSTX-1 | f5adab44d6d8d37f9b179d2dcc3a0b5b | http://jjsdesigns.001webs.com/reactivity.html || 2012-02-04 18:16:21 | sub16 | Avast | JS:Redirector-HX Trj | 12/40 (30%) | AS33055 | 65.182.101.165 | tparadiso@brinkster.com | US | ARIN | ORF-BRINKSTER-COM | 1473180603582f6fe58c1785e135c56a | http://justinejablonska.com/?m=200909 || 2012-02-04 18:16:21 | sub16 | BitDefender | Trojan.JS.Agent.EMC | 8/40 (20%) | AS9925 | 202.153.114.15 | support@pbase.net | HK | APNIC | POWERBASE-HK | 88585e22c9aff62aa10f087cde7c2e42 | http://kajchk.com/e/product/product_detail.asp?sku=10 || 2012-02-04 18:16:21 | sub16 | BitDefender | Trojan.JS.Iframe.AUM | 8/40 (20%) | AS25532 | 90.156.201.31 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-HOSTING | 476fa178c390942062eb4fa186876648 | http://kino0.ru/index.php?cstart=9&do=cat&category=otechestvo || 2012-02-04 18:16:21 | sub16 | BitDefender | Trojan.JS.Iframe.AUM | 8/40 (20%) | AS25532 | 90.156.201.31 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-HOSTING | 36ccbfe9d606946bb89dbe8664754811 | http://kino0.ru/index.php?newsid=516 || 2012-02-04 18:16:21 | sub16 | avira | JS/Infected.C | 22/40 (55%) | AS3595 | 69.73.130.182 | abuse@jaguarpc.com | US | ARIN | LH-GOLD-NETWORK | b511ace6fe010413b3bbd3f827f98499 | http://kleiherbs.com/wp-content/themes/eStore/js/cufon-yui.js || 2012-02-04 18:16:21 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 7/40 (17.5%) | AS6461 | 209.133.9.236 | abuse@above.net | US | ARIN | MFN-N282-209-133-8-0-22 | 9094fd5c2dc361ce73f7aec39bb9576b | http://kuwait45.com/medicine/index.php?aashab=al3sl || 2012-02-04 18:16:21 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 7/40 (17.5%) | AS6461 | 209.133.9.236 | abuse@above.net | US | ARIN | MFN-N282-209-133-8-0-22 | 58403217cd96c2634912c4f47b5f85e4 | http://kuwait45.com/medicine/index.php?aashab=hanthel || 2012-02-04 18:16:21 | sub16 | avira | HTML/Crypted.Gen | 16/40 (40%) | AS34221 | 217.199.218.172 | dn@quickline.ru | RU | RIPE | QL-LAN-LL1 | dcd6ddeb473e865c351e6634205c88fd | http://lddt.info/uploads/m7y7r0z/buy_meridia_online_order_cheap_meridia_now_all_information_about.html || 2012-02-04 18:16:21 | sub16 | avira | HTML/Crypted.Gen | 16/40 (40%) | AS34221 | 217.199.218.172 | dn@quickline.ru | RU | RIPE | QL-LAN-LL1 | 4d0bf1ca22871d569a723e694ddc20d0 | http://lddt.info/uploads/m7y7r0z/meridia_mexican_pharmacy.html || 2012-02-04 18:16:21 | sub16 | F_Prot | JS/Redir.IQ | 3/40 (7.5%) | AS15244 | 67.210.110.36 | hostmaster@lunarpages.com | US | ARIN | ADD2NET-DOT-COM | bdb5c6cc504c8ae14d47432e5a261d9a | http://lemonkind.com/portalapp/content.asp?CatId=593&ContentType=health || 2012-02-04 18:16:21 | sub16 | avira | TR/PWS.337381 | 26/40 (65%) | AS34221 | 217.199.217.11 | dn@quickline.ru | RU | RIPE | UCOZ | 65443421a0b579ca7a218c5f32ecd27c | http://lendex.ru/Download/KlevalkaF.rar || 2012-02-04 18:16:21 | sub16 | Avast | HTML:Iframe-inf | 11/40 (27.5%) | AS12321 | 212.166.67.9 | abuse@tiscali.it | ES | RIPE | ES-TISCALI | f6ce22b9b7c6b2c2d125456dbc520b14 | http://life.plus.es/ || 2012-02-04 18:16:21 | sub16 | avira | HTML/IFrame.era | 17/40 (42.5%) | AS9318 | 211.49.162.170 | abuse@hanaro.com | KR | APNIC | HANANET-INFRA | c9cfebfb8cbbdc49148e32eb875e42aa | http://littlegarden.kr/zb41/view.php?id=qna&page=1&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=258 || 2012-02-04 18:16:21 | sub16 | avira | HTML/IFrame.era | 17/40 (42.5%) | AS9318 | 211.49.162.170 | abuse@hanaro.com | KR | APNIC | HANANET-INFRA | c87be7876bf19b80a219f5c75ae9e144 | http://littlegarden.kr/zb41/view.php?id=qna&page=3&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=127 || 2012-02-04 18:16:22 | sub16 | Comodo | TrojWare.Win32.Script.~P | 3/39 (7.7%) | AS11664 | 200.61.58.12 | netmaster-ar@telmex.com | AR | LACNIC | AR-TLCI-LACNIC | edb772ec9d6e2ad828088fe2473f52ae | http://losmasfamosos.unlugar.com/logos.gif?1bacf=680154 || 2012-02-04 18:16:22 | sub16 | avira | HMTL/iFrame.mce | 18/40 (45%) | AS4766 | 222.122.156.50 | abuse@kornet.net | KR | APNIC | KORNET-KR | 5f1e145d3425f1f90a0312e43a6546a3 | http://love.junylover.com/bbs/zboard.php?id=suda&page=11&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=subject&desc=desc || 2012-02-04 18:16:22 | sub16 | avira | HMTL/iFrame.mce | 18/40 (45%) | AS4766 | 222.122.156.50 | abuse@kornet.net | KR | APNIC | KORNET-KR | 627f466cf76e6f3bce49fa564034eb4b | http://love.junylover.com/bbs/zboard.php?id=suda&page=19&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=name&desc=asc || 2012-02-04 18:16:22 | sub16 | avira | HTML/Rce.Gen | 36/40 (90%) | AS33182 | 199.168.186.154 | abuse@dimenoc.com | US | ARIN | DIMENOC | f11e6bc8b7d5f76235fd2f731c9c08ae | http://lpmarketing.com.pe/ || 2012-02-04 18:16:22 | sub16 | avira | JS/Infected.C | 19/40 (47.5%) | AS16097 | 109.237.138.6 | hostmaster@alfahosting.de | DE | RIPE | ALFAHOSTING-NET | 3d37302ac029472fb8cfd80fed11770b | http://lte-angebote.net/wp-content/themes/InterPhase/js/cluetip/jquery.cluetip.js || 2012-02-04 18:16:22 | sub16 | avira | JS/Infected.C | 20/40 (50%) | AS16097 | 109.237.138.6 | hostmaster@alfahosting.de | DE | RIPE | ALFAHOSTING-NET | d0984f663ade95fce430339ec64c1dad | http://lte-angebote.net/wp-content/themes/InterPhase/js/slider.js || 2012-02-04 18:16:22 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS16097 | 109.237.138.6 | hostmaster@alfahosting.de | DE | RIPE | ALFAHOSTING-NET | 229d692f0d30f832b16b0a1920e6b0a9 | http://lte-angebote.net/wp-includes/js/comment-reply.js?ver=20090102 || 2012-02-04 18:16:22 | sub16 | avira | HTML/FakeAlert.I | 27/40 (67.5%) | AS2514 | 61.194.62.161 | higuchim@nttpc.co.jp | JP | APNIC | INFOSPHERE | f20209a95f824b827399fe8572f39778 | http://maabraha.searchnavi.jp/gofbmtzr4/ || 2012-02-04 18:16:22 | sub16 | avira | TR/Dldr.Banload.agz.36 | 22/40 (55%) | AS3356 | 8.23.224.90 | abuse@level3.com | US | ARIN | LVLT-ORG-8-8 | fff1558f667d2f2ad6aa5a3cd332c17a | http://mabellive.myvnc.com/ || 2012-02-04 18:16:22 | sub16 | avira | HTML/Rce.Gen | 36/40 (90%) | AS33182 | 199.168.186.154 | abuse@dimenoc.com | US | ARIN | DIMENOC | d6a559aedb187ea6757ff52eb7178538 | http://maestrosdelmarketing.com/ || 2012-02-04 18:16:22 | sub16 | avira | HTML/Infected.WebPage.Gen | 9/40 (22.5%) | AS36420, AS30315, AS13749, AS21844 | 184.172.147.64 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-17 | 1e899025bced1586fa8718bff2e40241 | http://malignantmelanomaskincancer.com/blog/71/sloan-kettering-melanoma-the-lifetime-melanoma-risk-for/ || 2012-02-04 18:16:22 | sub16 | avira | PHP/C99Shell.AI | 23/40 (57.5%) | AS7859 | 66.39.88.201 | abuse@pair.com | US | ARIN | PAIRNET-BLK-4 | 07c547a1e43cd95a0a2ee9465e04c12b | http://manaltheeram.com/french/uploaded_files/photogallery/icon_image_112.jpg || 2012-02-04 18:16:22 | sub16 | Avast | HTML:Script-inf | 7/39 (17.9%) | AS4812 | 222.73.173.216 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-SH | 045b97557c448cbb45cdf4608ed3447d | http://mashimaro1234.china-wcmedia.com/CS478 || 2012-02-04 18:16:22 | sub16 | avira | JS/Agent.aln | 22/40 (55%) | AS28753 | 188.72.230.16 | abuse@leaseweb.de | DE | RIPE | NETDIRECT-NET | 44a2754fd1e92c9eb3ba888cd152e901 | http://mavisonsoft.com/ || 2012-02-04 18:16:22 | sub16 | Avast | JS:Redirector-NT Trj | 2/40 (5%) | AS16276 | 213.186.33.19 | abuse@ovh.net | FR | RIPE | OVH | d01b4b1037e6a91f8196957319245a33 | http://meetonearth.org/ || 2012-02-04 18:16:22 | sub16 | avira | HTML/Rce.Gen | 7/39 (17.9%) | AS36420, AS30315, AS13749, AS21844 | 174.122.1.108 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | ca39eb5d24f9f3caac5fedb94a86bb32 | http://megacompartilhador.com/ebook/27836-61-architectural-e-books-collection.html || 2012-02-04 18:16:22 | sub16 | avira | HTML/Rce.Gen | 7/39 (17.9%) | AS36420, AS30315, AS13749, AS21844 | 174.122.1.108 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | d4cb3814412d47c6b1ffc0d7c6bb8869 | http://megacompartilhador.com/ebook/30460-pro-wrestling-illustrated-march-2012.html || 2012-02-04 18:16:22 | sub16 | avira | HTML/Rce.Gen | 7/40 (17.5%) | AS36420, AS30315, AS13749, AS21844 | 174.122.1.108 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 0d9f06648a21a99a5fd5d92e21efcbfc | http://megacompartilhador.com/ebook/4990-digital-arts-december-2011-uk.html || 2012-02-04 18:16:22 | sub16 | avira | HTML/Rce.Gen | 7/40 (17.5%) | AS36420, AS30315, AS13749, AS21844 | 174.122.1.108 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 7a3b7c9057d384b51f5634bb7680e534 | http://megacompartilhador.com/game/10504-throne-of-olympus-10-cracked-f4cg.html || 2012-02-04 18:16:22 | sub16 | avira | HTML/Rce.Gen | 7/40 (17.5%) | AS36420, AS30315, AS13749, AS21844 | 174.122.1.108 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | a72f288cfb99d9ce915d23ed1b34a450 | http://megacompartilhador.com/game/29443-sanctum-dlc-pack-reloaded.html || 2012-02-04 18:16:22 | sub16 | avira | HTML/Rce.Gen | 7/40 (17.5%) | AS36420, AS30315, AS13749, AS21844 | 174.122.1.108 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 2140a258c3e3752e49ded61557531601 | http://megacompartilhador.com/graficos/30-awesome-hd-wallpapers-pack-no-6.html || 2012-02-04 18:16:22 | sub16 | avira | HTML/Rce.Gen | 7/40 (17.5%) | AS36420, AS30315, AS13749, AS21844 | 174.122.1.108 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 9b6a94200b76d29fcebfe0162cf461af | http://megacompartilhador.com/jogos/157-quantum-of-solace-the-game-2008multi3.html || 2012-02-04 18:16:22 | sub16 | avira | HTML/Rce.Gen | 7/40 (17.5%) | AS36420, AS30315, AS13749, AS21844 | 174.122.1.108 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 21bd778c0d800439e0cdd638d4e95e7d | http://megacompartilhador.com/movie/18583-hugo-2011-720p-cam-xvid-sinister.html || 2012-02-04 18:16:22 | sub16 | avira | HTML/Rce.Gen | 7/40 (17.5%) | AS36420, AS30315, AS13749, AS21844 | 174.122.1.108 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 3c73df004a857c5a03fc296709ee72dd | http://megacompartilhador.com/movie/dvdrip/15032-carjacked-2011-dvdrip-xvid-vomit.html || 2012-02-04 18:16:22 | sub16 | avira | HTML/Rce.Gen | 7/40 (17.5%) | AS36420, AS30315, AS13749, AS21844 | 174.122.1.108 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 592d2b905d60f90b7c0d45ea804b6b91 | http://megacompartilhador.com/movie/dvdrip/27541-cafe-rel-2011-dvdrip-xvid-ac3-feel-free.html || 2012-02-04 18:16:22 | sub16 | avira | HTML/Rce.Gen | 7/40 (17.5%) | AS36420, AS30315, AS13749, AS21844 | 174.122.1.108 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 9942acc4fa221b72422482047e3f59b8 | http://megacompartilhador.com/musica/111-pink-fuckin-perfect-2011-hd-720p.html || 2012-02-04 18:16:22 | sub16 | avira | HTML/Rce.Gen | 7/40 (17.5%) | AS36420, AS30315, AS13749, AS21844 | 174.122.1.108 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 41e9a88be6b0aa91463b379804909a7c | http://megacompartilhador.com/musica/128-infinity-overture-the-infinite-overture-pt-1-2011.html || 2012-02-04 18:16:22 | sub16 | avira | HTML/Rce.Gen | 7/40 (17.5%) | AS36420, AS30315, AS13749, AS21844 | 174.122.1.108 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | e59f9e0d67a2f3ae544a629a8a8ee685 | http://megacompartilhador.com/?option=com_user&view=login&return=aHR0cDovL3d3dy5tZWdhY29tcGFydGlsaGFkb3IuY29tL2Nkcy9yb2NrLWludGVybmFjaW9uYWwvNzQtZG93bmxvYWQtbmlja2VsYmFjay1uby1yZXNwZWN0LTIwMTA= || 2012-02-04 18:16:22 | sub16 | avira | HTML/Rce.Gen | 7/40 (17.5%) | AS36420, AS30315, AS13749, AS21844 | 174.122.1.108 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 2136a04ae9560d30bd8c4072b58ce6f2 | http://megacompartilhador.com/?option=com_user&view=login&return=aHR0cDovL3d3dy5tZWdhY29tcGFydGlsaGFkb3IuY29tL3JldmlzdGFzLzQyLXJldmlzdGFzLzEyNC1kb3dubG9hZC1sYW5ndWFnZS1uZXR3b3Jrcy10aGUtbmV3LXdvcmQtZ3JhbW1hcg== || 2012-02-04 18:16:22 | sub16 | avira | HTML/Rce.Gen | 7/40 (17.5%) | AS36420, AS30315, AS13749, AS21844 | 174.122.1.108 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | f88a050f119506bc1994c75b228ad678 | http://megacompartilhador.com/programas/152-zoner-photo-studio-13015.html || 2012-02-04 18:16:22 | sub16 | avira | HTML/Rce.Gen | 7/40 (17.5%) | AS36420, AS30315, AS13749, AS21844 | 174.122.1.108 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 6661c3c47e97f9f6df2f7efea7f7de02 | http://megacompartilhador.com/programas/174-hirens-bootcd-v110-dlc-v12-ultimate-boot-cd-v502-2-in-1.html || 2012-02-04 18:16:22 | sub16 | avira | HTML/Rce.Gen | 7/40 (17.5%) | AS36420, AS30315, AS13749, AS21844 | 174.122.1.108 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | fbcfb448a2aaddcc806642ff65abc959 | http://megacompartilhador.com/series/153-greek-s04e04-all-about-beav-hdtv-xvid-fqm.html || 2012-02-04 18:16:22 | sub16 | avira | HTML/Rce.Gen | 7/40 (17.5%) | AS36420, AS30315, AS13749, AS21844 | 174.122.1.108 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 7f4e82298521518441295a1a2f87a56d | http://megacompartilhador.com/software/24453-learn-to-speak-french-deluxe.html || 2012-02-04 18:16:22 | sub16 | avira | HTML/Rce.Gen | 7/40 (17.5%) | AS36420, AS30315, AS13749, AS21844 | 174.122.1.108 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 3307e7e663afae6f02a6eee5f238451f | http://megacompartilhador.com/software/30346-platinumloops-killa-dubstep-multiformat.html || 2012-02-04 18:16:22 | sub16 | avira | HTML/Rce.Gen | 7/40 (17.5%) | AS36420, AS30315, AS13749, AS21844 | 174.122.1.108 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 3f9578db9cbb80af080c048eaefa96f6 | http://megacompartilhador.com/xxx/14-chick-flixxx-xxxdvdripxvid-jiggly.html || 2012-02-04 18:16:22 | sub16 | Ikarus | Trojan.Fakeav | 2/40 (5%) | AS13760 | 69.85.233.87 | jhollon@slfiber.com | US | ARIN | SOLIGHT-18-ARIN-1 | d3dfa426c26c03f7b322565158c8d11c | http://megaupload.007sites.com/ || 2012-02-04 18:16:22 | sub16 | eSafe | Win32.Banker | 1/40 (2.5%) | AS9143 | 212.54.40.5 | abuse@as9143.net | NL | RIPE | ZIGGO-INFRA-2-TB-SLB | f44da44d4a4364937c0a0db3363d0ee5 | http://members.home.nl/bas.de.reuver/cashinvaders/invader.zip || 2012-02-04 18:16:22 | sub16 | avira | JS/iFrame.HF.1 | 19/40 (47.5%) | AS15756 | 62.213.68.188 | abuse@caravan.ru | RU | RIPE | RU-CARAVAN-20011109 | 6e11ad9dbce78cc2b612fc10ce0b4a54 | http://mgus.ru/forum/viewtopic.php?t=934&sid=66cdaf8960893a8e5999c2178d9143b0 || 2012-02-04 18:16:22 | sub16 | avira | HTML/Small.AV | 24/40 (60%) | AS35540 | 87.98.239.2 | abuse@ovh.net | PL | RIPE | PL-OVH | c3bc569eea76a1592709d6faf4e3a6da | http://mmkphoto.co.uk/feed/atom || 2012-02-04 18:16:22 | sub16 | Avast | Win32:Elderado-B Trj | 4/41 (9.8%) | AS38224 | 119.252.148.136 | ipadmin@rediff.co.in | IN | APNIC | REDIFF | cc217d5d68dc035aba67cabc0be96065 | http://mobitrail.com/logo.gif?14afe=169468 || 2012-02-04 18:16:22 | sub16 | Avast | Win32:Elderado-B Trj | 4/41 (9.8%) | AS38224 | 119.252.148.136 | ipadmin@rediff.co.in | IN | APNIC | REDIFF | cc217d5d68dc035aba67cabc0be96065 | http://mobitrail.com/logo.gif?166f2=918900 || 2012-02-04 18:16:22 | sub16 | Avast | Win32:Elderado-B Trj | 4/40 (10%) | AS38224 | 119.252.148.136 | ipadmin@rediff.co.in | IN | APNIC | REDIFF | cc217d5d68dc035aba67cabc0be96065 | http://mobitrail.com/logo.gif?1944c=621000 || 2012-02-04 18:16:23 | sub16 | Comodo | UnclassifiedMalware | 2/40 (5%) | AS4765 | 61.47.43.254 | abuse@pacnet.com | TH | APNIC | PACNET | 504bb811e1e279cdb079218c2841c31d | http://mod.go.th/ || 2012-02-04 18:16:23 | sub16 | BitDefender | Trojan.JS.Redirector.TQ | 8/39 (20.5%) | AS3216 | 194.186.88.61 | abuse@relax.ru | RU | RIPE | RU-SOVINTEL-MSK-RokVel-NET | 53d9f9623cacdca34e4a26d563891750 | http://ms.bandito1.qipim.ru/mlwhkjvy.html || 2012-02-04 18:16:23 | sub16 | avira | HTML/IFrame.era | 17/39 (43.6%) | AS9318 | 58.227.192.80 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | 54d00113ada51383e6af4b145fb53a1f | http://mwal.ajou.ac.kr/bbs/view.php?id=5_board_2&page=3&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=59 || 2012-02-04 18:16:23 | sub16 | avira | HTML/IFrame.era | 17/39 (43.6%) | AS9318 | 58.227.192.80 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | 520fc33037ec55a7ab71e75c7ea54b75 | http://mwal.ajou.ac.kr/bbs/view.php?id=5_board_2&page=4&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=hit&desc=asc&no=109 || 2012-02-04 18:16:23 | sub16 | avira | HTML/IFrame.era | 17/39 (43.6%) | AS9318 | 58.227.192.80 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | f102f6952946cbf108873936099827bb | http://mwal.ajou.ac.kr/bbs/view.php?id=5_board_2&page=5&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=hit&desc=asc&no=67 || 2012-02-04 18:16:23 | sub16 | AVG | HTML/Framer | 2/39 (5.1%) | AS17223 | 208.78.169.130 | tomc@stargate.com | US | ARIN | STARGATE | 18ed74acf8b58f8133f72b7f8b47fd27 | http://mycusthelp.com/EPAYMENTADMINHELP/supportkbitem.asp?sSessionID=&Inc=2&sFilA=Group&sFilB=&sFilC=&FA=-1&FB=-1&FC=-1 || 2012-02-04 18:16:23 | sub16 | eTrust_Vet | JS/Redirector.AD | 2/39 (5.1%) | AS46989 | 216.128.18.163 | brad@maximumasp.com | US | ARIN | MAXIMUMASP | c9f6e76787c4b56e2a06107f6eecce20 | http://myphonegames.co.uk/xq/asp.lr/inth.217/page.3/qx/Siemens%20S56%20mobile%20phone%20games.htm || 2012-02-04 18:16:23 | sub16 | avira | SPR/Mydoomer.AF | 19/39 (48.7%) | AS50214 | 188.72.70.182 | abuse@qwarta.ru | RU | RIPE | QWARTANET | d799e0560066994cde03f491167e28cd | http://myppc.ru/engine/download.php?id=12620 || 2012-02-04 18:16:23 | sub16 | Comodo | UnclassifiedMalware | 5/40 (12.5%) | AS24940 | 213.133.104.156 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET | a2132521fdd6c2b5547765f929e440ca | http://my-project-x.de/Forum/phpBB3/viewforum.php?f=152&sid=0487c10a3366e1eeeb4e56450410a4a3&start=270 || 2012-02-04 18:16:23 | sub16 | Comodo | UnclassifiedMalware | 5/40 (12.5%) | AS24940 | 213.133.104.156 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET | d0f391c3106206d746fef10f33659289 | http://my-project-x.de/Forum/phpBB3/viewtopic.php?p=31337&sid=42f2c75b1881b1ba7c0977f033af45b9 || 2012-02-04 18:16:23 | sub16 | avira | JS/Redirector.MR | 7/40 (17.5%) | AS36351 | 50.22.90.166 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-9 | 35b8574248181d7fc5dd92cff441f0a9 | http://nabimuhammad.info/2011/12/ya-nabi-selam-aleyke-maher-zain/ || 2012-02-04 18:16:23 | sub16 | avira | JS/Redirector.MR | 7/40 (17.5%) | AS36351 | 50.22.90.166 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-9 | 586750f9a6e7a9ac04b98d938055e1a8 | http://nabimuhammad.info/tag/sanad/ || 2012-02-04 18:16:23 | sub16 | avira | SPR/Tool.966144 | 20/40 (50%) | AS29076 | 193.109.247.54 | abuse@compubyte.vg | VG | RIPE | UCOZ-NET | 4b2c3d3b3c7b440e292db7d8ef748803 | http://nasskyler.ucoz.ru/Tuyryaga_nakrutka_v2.9.rar || 2012-02-04 18:16:23 | sub16 | avira | TR/Spy.29184.B | 18/40 (45%) | AS31240 | 78.110.50.110 | abuse@ht-systems.ru | RU | RIPE | RU-HT-SYSTEMS | 2b4ece3c9492a5771a94c9c281406024 | http://nfsworld.ru/deingine/files/May2008/NFSPSv1.1_PLUS11_Trainer(v2).zip || 2012-02-04 18:16:23 | sub16 | NOD32 | HTML/ScrInject.B.Gen | 1/40 (2.5%) | AS21788 | 184.22.222.190 | nic@hostnoc.net | US | ARIN | HOSTNOC-9BLK | f84361c7e0b7a3d22e1aa48e6f78c128 | http://niex.org/forum/attachment.php?aid=18 || 2012-02-04 18:16:23 | sub16 | AVG | Script/Exploit.Kit | 5/40 (12.5%) | AS24940 | 46.4.163.213 | abuse@hetzner.de | DE | RIPE | DE-HETZNER-20100819 | 422be0366b901353804abb5244bc0ffc | http://nine.agentproseries.com/main.php?page=5fcafcd243888334 || 2012-02-04 18:16:23 | sub16 | Avast | JS:Redirector-FP Trj | 10/40 (25%) | AS26496 | 184.168.238.1 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 141fea2abf47f1f053cedbddf331f057 | http://nuevacu.com/ns1/839328150.jan || 2012-02-04 18:16:23 | sub16 | avira | HTML/IFrame.AM | 15/40 (37.5%) | AS9811 | 211.144.142.101 | as9811@srit.com.cn | CN | APNIC | DRCSCNET | ebb3623fcb0cb718d2655af9f728fd6f | http://nugoo.com/public/b_ft.php?code=000729 || 2012-02-04 18:16:23 | sub16 | avira | HTML/IFrame.era | 17/40 (42.5%) | AS3786 | 110.45.139.11 | ip@kidc.net | KR | APNIC | KIDC-KR | 6a3de27249f0faaa367a5b58a6d836a3 | http://odom1981.org/bbs/write.php?id=qna&page=3&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=reg_date&desc=desc&no=17&mode=modify || 2012-02-04 18:16:23 | sub16 | avira | HTML/Crypted.Gen | 22/39 (56.4%) | AS32780 | 174.127.110.239 | arin-contact@hostingservicesinc.net | US | ARIN | HOSTINGSERVICES-INC | 1cc90aa253ebfd6e0e6bcd3697841da5 | http://ofimatic.com/ecastillo/E-mails/files/s_encuestador2.html || 2012-02-04 18:16:23 | sub16 | AhnLab_V3 | HTML/Nimda | 36/41 (87.8%) | AS33182 | 199.168.186.154 | abuse@dimenoc.com | US | ARIN | DIMENOC | e79bbf5180c48f2a2cc0bea41b4234d9 | http://ogaecyprus.com/ || 2012-02-04 18:16:23 | sub16 | avira | TR/Dldr.JS.IFR.as.4 | 10/40 (25%) | AS42331 | 178.20.153.1 | noc@freehost.ua | UA | RIPE | FREEHOST-DC | 9fea7bfcbd9bbf482d49d0abdf646887 | http://old.uatrade.net/web_design || 2012-02-04 18:16:23 | sub16 | avira | ADSPY/AdSpy.Gen2 | 26/40 (65%) | AS10912 | 66.150.14.87 | abuse@internap.com | US | ARIN | PNAP-06-2001 | 8f1d73ca520f2d758e34908ee69af2b0 | http://origin-ics.ravenbleu.com/IC/GPLRavenBleu03/31985/2/a77fc4f9-2f15-4fa0-bae2-6354c338e8f3/RealSetup.exe || 2012-02-04 18:16:23 | sub16 | avira | JS/Redirector.MR | 7/40 (17.5%) | AS30968 | 77.221.130.35 | abuse@infobox.ru | RU | RIPE | INFOBOX-NET1 | 428f84435844b6e79670d83de74ca31c | http://orispace.ru/members/?s=Andrey || 2012-02-04 18:16:23 | sub16 | avira | JS/Infected.C | 23/40 (57.5%) | AS29671 | 77.232.69.177 | abuse@servage.net | EU | RIPE | SRVG-NET-FL1-H2 | e427a016bbfddfe279fecf21430ac75d | http://osmanozmen.com/wp-content/themes/InStyle/js/cufon-yui.js || 2012-02-04 18:16:23 | sub16 | avira | HTML/IFrame.era | 18/40 (45%) | AS9318 | 211.39.116.71 | ip@dotname.co.kr | KR | APNIC | KRNIC-KR | f0891e02635c4e020e8c966d2c8b6f66 | http://osm.dhu.ac.kr/bbs/zboard.php?id=subpage2_5&page=17&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=36 || 2012-02-04 18:16:23 | sub16 | avira | HTML/IFrame.era | 18/40 (45%) | AS9318 | 211.39.116.71 | ip@dotname.co.kr | KR | APNIC | KRNIC-KR | 49bb3c2e0412f9edb8f6d4c7d9370ef8 | http://osm.dhu.ac.kr/bbs/zboard.php?id=subpage2_5&page=17&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=42 || 2012-02-04 18:16:23 | sub16 | avira | HTML/IFrame.era | 18/40 (45%) | AS9318 | 211.39.116.71 | ip@dotname.co.kr | KR | APNIC | KRNIC-KR | 7a0dbd33ada9a8e12c8616f8caee4a03 | http://osm.dhu.ac.kr/bbs/zboard.php?id=subpage2_5&page=17&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=48 || 2012-02-04 18:16:23 | sub16 | avira | HTML/IFrame.era | 18/39 (46.2%) | AS9318 | 211.39.116.71 | ip@dotname.co.kr | KR | APNIC | KRNIC-KR | 813e1be4abb0314a95bdc6fe04e00d26 | http://osm.dhu.ac.kr/bbs/zboard.php?id=subpage2_5&page=17&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=51 || 2012-02-04 18:16:23 | sub16 | avira | HTML/IFrame.era | 18/39 (46.2%) | AS9318 | 211.39.116.71 | ip@dotname.co.kr | KR | APNIC | KRNIC-KR | 9dc9b667c93c37e7230036607aebc907 | http://osm.dhu.ac.kr/bbs/zboard.php?id=subpage2_5&page=1&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=109 || 2012-02-04 18:16:23 | sub16 | avira | HTML/IFrame.era | 18/39 (46.2%) | AS9318 | 211.39.116.71 | ip@dotname.co.kr | KR | APNIC | KRNIC-KR | 471d65be04996260ef5240f11e5f98c7 | http://osm.dhu.ac.kr/bbs/zboard.php?id=subpage2_5&page=2&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=99 || 2012-02-04 18:16:23 | sub16 | TheHacker | Trojan/Diple.aalb | 1/39 (2.6%) | AS26496 | 184.168.238.1 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 88419a3ff7f5c3d267f2c0bcabddc4a9 | http://osugames.com/PAD/exe/spiderSolitaire4suit.exe || 2012-02-04 18:16:23 | sub16 | Microsoft | Flooder:JS/LOIC | 1/39 (2.6%) | AS33837 | 88.80.29.58 | abuse@prq.se | SE | RIPE | SE-PRQ-20051124 | bc5ced554590a752dee5bb03563f12de | http://pastehtml.com/view/bmp0uzp8a.html || 2012-02-04 18:16:23 | sub16 | Sophos | Mal/Badsrc-C | 1/40 (2.5%) | AS27715 | 187.45.210.4 | regcom@locaweb.com.br | BR | LACNIC | 002.351.877/0001-52 | b63b31658d05772e8a289fa5af028efa | http://pautasocial.com.br/pauta.asp?idPauta=2693 || 2012-02-04 18:16:23 | sub16 | Antiy_AVL | Packed/Win32.Katusha.gen | 10/40 (25%) | AS16276 | 188.165.14.93 | abuse@ovh.net | FR | RIPE | OVH | 3f6b45091d91a088ae2cdcdd4643756a | http://pf.dlwvit.com/s/3/6/36230-92466-windows-movie-maker.exe || 2012-02-04 18:16:23 | sub16 | DrWeb | Adware.InstallCore.17 | 2/40 (5%) | AS46281 | 94.127.76.170 | ripeadmin@cotendo.com | US | RIPE | IL-CTNDO-20081008 | 1823d64e4c3bcc4fa065cb7a201322ae | http://photoshine.soft32.com/get/file/id/749984 || 2012-02-04 18:16:23 | sub16 | BitDefender | Exploit.SWF.AB | 9/41 (22%) | AS8972 | 188.138.55.242 | abuse@plusserver.de | DE | RIPE | DE-INTERGENIA-20090508 | 8b48c206d6fe9aca6939923172c43f4d | http://place.miningforbusiness.org/content/field.swf || 2012-02-04 18:16:23 | sub16 | AVG | JS/Redir | 7/40 (17.5%) | AS3215 | 195.101.201.181 | abuse@orange-business.com | FR | RIPE | FR-TELECOM-970307 | ab0ade5bafb3d27c3ae2ebb13877468a | http://plebicity.com/Stat/ConsultAvis_128322.htm || 2012-02-04 18:16:23 | sub16 | AVG | JS/Redir | 9/39 (23.1%) | AS3215 | 195.101.201.181 | abuse@orange-business.com | FR | RIPE | FR-TELECOM-970307 | 7765999fe329787935edb8fd308b6eeb | http://plebicity.com/Stat/ConsultAvis_19032.htm || 2012-02-04 18:16:23 | sub16 | AVG | JS/Redir | 9/40 (22.5%) | AS3215 | 195.101.201.181 | abuse@orange-business.com | FR | RIPE | FR-TELECOM-970307 | 2b345cd3fcda18e9177b1e9dd9ad7cc2 | http://plebicity.com/Stat/ConsultAvis_95140.htm || 2012-02-04 18:16:23 | sub16 | avira | TR/Skillis.kyc | 5/40 (12.5%) | AS16276 | 46.105.113.75 | abuse@ovh.net | FR | RIPE | FR-OVH-20101129 | 9a1ab34007142c1caaafcb4ebd87eeb1 | http://pliki.pobieralnia.pl/windows/directx_11.exe || 2012-02-04 18:16:23 | sub16 | avira | HTML/IFrame.era | 17/40 (42.5%) | AS3786 | 220.68.82.57 | kindman@snu.ac.kr | kr | APNIC | KREN-HANSE | 2781a73fd69f7766b179017aecdfcce0 | http://pllab.kut.ac.kr/~shin/bbs/view.php?id=Teaching&page=11&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=hit&desc=asc&no=305 || 2012-02-04 18:16:23 | sub16 | avira | HTML/IFrame.era | 17/40 (42.5%) | AS3786 | 220.68.82.57 | kindman@snu.ac.kr | kr | APNIC | KREN-HANSE | d9dce7c046d99f574c3fb8e8af76cb3e | http://pllab.kut.ac.kr/~shin/bbs/view.php?id=Teaching&page=1&page_num=20&select_arrange=hit&desc=&sn=off&ss=on&sc=on&keyword=&category=&no=110 || 2012-02-04 18:16:23 | sub16 | avira | HTML/IFrame.era | 18/40 (45%) | AS3786 | 220.68.82.57 | kindman@snu.ac.kr | kr | APNIC | KREN-HANSE | 11a803e501388608aaa23b31ee24bdb3 | http://pllab.kut.ac.kr/~shin/bbs/view.php?id=Teaching&page=3&page_num=20&select_arrange=hit&desc=&sn=off&ss=on&sc=on&keyword=&category=&no=262 || 2012-02-04 18:16:24 | sub16 | avira | HTML/IFrame.era | 17/40 (42.5%) | AS3786 | 220.68.82.57 | kindman@snu.ac.kr | kr | APNIC | KREN-HANSE | cdbee0251329e76c4e9336b31192d4f5 | http://pllab.kut.ac.kr/~shin/bbs/view.php?id=Teaching&page=3&page_num=20&select_arrange=hit&desc=&sn=off&ss=on&sc=on&keyword=&category=&no=324 || 2012-02-04 18:16:24 | sub16 | avira | HTML/IFrame.era | 17/40 (42.5%) | AS3786 | 220.68.82.57 | kindman@snu.ac.kr | kr | APNIC | KREN-HANSE | fc6ed71265658a62cce7134c696a3671 | http://pllab.kut.ac.kr/~shin/bbs/view.php?id=Teaching&page=3&page_num=20&select_arrange=vote&desc=&sn=off&ss=on&sc=on&keyword=&category=&no=282 || 2012-02-04 18:16:24 | sub16 | avira | HTML/IFrame.era | 18/40 (45%) | AS3786 | 220.68.82.57 | kindman@snu.ac.kr | kr | APNIC | KREN-HANSE | 0e704b389ec8cc129c7630f8b3cb7541 | http://pllab.kut.ac.kr/~shin/bbs/view.php?id=Teaching&page=4&page_num=20&select_arrange=hit&desc=&sn=off&ss=on&sc=on&keyword=&category=&no=268 || 2012-02-04 18:16:24 | sub16 | avira | HTML/IFrame.era | 18/42 (42.9%) | AS3786 | 220.68.82.57 | kindman@snu.ac.kr | kr | APNIC | KREN-HANSE | a3746db07f6e49a717d6d3a1731fefe8 | http://pllab.kut.ac.kr/~shin/bbs/view.php?id=Teaching&page=9&page_num=20&select_arrange=vote&desc=&sn=off&ss=on&sc=on&keyword=&category=&no=74 || 2012-02-04 18:16:24 | sub16 | avira | JS/Redirector.MR | 7/40 (17.5%) | AS21844 | 74.53.178.163 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 6bc14a71dda161a076108b7387fa4136 | http://powershotcameras.net/blog/tag/30inch/ || 2012-02-04 18:16:24 | sub16 | avira | TR/Graftor.153569 | 22/40 (55%) | AS39572 | 213.174.157.148 | abuse@compubyte.vg | GB | RIPE | COMPUBYTE-NET | 3d968b43fd61a0984eba0013a5ed062a | http://pragrammisti.ucoz.ru/skachat2.rar || 2012-02-04 18:16:24 | sub16 | avira | TR/Offend.kdv.526399 | 16/40 (40%) | AS3356 | 8.23.224.90 | abuse@level3.com | US | ARIN | LVLT-ORG-8-8 | f9c7e5fbbd9ea05c2c0a372ff3e98ca2 | http://promocoesglobo.servehalflife.com/ || 2012-02-04 18:16:24 | sub16 | eSafe | Win32.Banker | 3/40 (7.5%) | AS32475 | 69.175.66.250 | netops@singlehop.com | US | ARIN | SINGLEHOP | 0fabaef0bd51f09700beaba990125677 | http://registryscan.trishulsoft.com/un/DeviceDriverUninstall/Run-UninstallerTool.exe || 2012-02-04 18:16:24 | sub16 | Avast | HTML:Iframe-inf | 4/39 (10.3%) | AS9150 | 213.207.99.36 | ripe@mlc.nl | NL | RIPE | NL-MLC-20050330 | 1faec57c3a7ce20fee68fdaa31e05eed | http://reijndersbv.nl/index.php?section=waaltjes || 2012-02-04 18:16:24 | sub16 | AVG | JS/Downloader.Agent | 6/40 (15%) | AS44112 | 77.222.40.207 | abuse@sweb.ru | RU | RIPE | SpaceWeb | 444533e6766ff541e50922b8bde6a653 | http://ribiu-ryazan.ru/forum/memberlist.php?mode=viewprofile&u=449&sid=781fea16d8b531532cff2c23b2287745 || 2012-02-04 18:16:24 | sub16 | ClamAV | PUA.JS.Obfus-7 | 1/43 (2.3%) | AS24971 | 89.185.237.165 | mbi@centrum.cz | CZ | RIPE | KTVMB2-CZ-MAI | 30742a400f69922e1869cc5f50c4e5d5 | http://riumoete.net/ || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 12/40 (30%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | c169d641f2c0abf74698cde38652b71d | http://rockreef.se/.../?act=chmod&f=libc.so.6&d=/lib64 || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 12/40 (30%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | d5c48d26a9515f8bc7fbac616dd4d92e | http://rockreef.se/.../?act=chmod&f=security&d=/lib64 || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 14/40 (35%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | 3129ff24753153e0c062c189a0c6c40b | http://rockreef.se/.../?act=f&f=.autofsck&ft=info&white=1&d=/ || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 14/40 (35%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | b031cd1cb9a1c53e50365b5b5c1904e0 | http://rockreef.se/.../?act=f&f=.autofsck&ft=ini&white=1&d=/ || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 14/40 (35%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | 29d474d0caa2fc63666f261d76ee4102 | http://rockreef.se/.../?act=f&f=.autorelabel&ft=edit&white=1&d=/ || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 12/39 (30.8%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | 6692d7999d79137b68e41392f6fdb67b | http://rockreef.se/.../?act=f&f=.bash_logout&ft=edit&white=1&d=/home/kalvahag/ || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 12/39 (30.8%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | 08ab815273df02379e2b5eea390862bf | http://rockreef.se/.../?act=f&f=.bash_profile&ft=exe&white=1&d=/home/kalvahag/ || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 12/39 (30.8%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | 4d6057b3ca5db5602baa3c4075c89480 | http://rockreef.se/.../?act=f&f=.bash_profile&ft=phpsess&white=1&d=/home/kalvahag/ || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 13/40 (32.5%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | 35e301f8bfe8db3b425917e6b35e18c7 | http://rockreef.se/.../?act=f&f=.contactemail&ft=info&white=1&d=/home/kalvahag/ || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 13/40 (32.5%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | cc3b91dbe3124f45da714f1951016a2b | http://rockreef.se/.../?act=f&f=.contactemail&ft=sdb&white=1&d=/home/kalvahag/ || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 14/40 (35%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | ce599daeac3975b90b3167d452675f50 | http://rockreef.se/.../?act=f&f=courierimapsubscribed&ft=info&white=1&d=/home/kalvahag/mail/ || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 12/39 (30.8%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | 2d2ad5e908b428a52c48bd08b79e2bdd | http://rockreef.se/.../?act=f&f=courierimapsubscribed&ft=sdb&white=1&d=/home/kalvahag/mail/ || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 11/39 (28.2%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | db2c64cc1129af72a62c84d2f5948af5 | http://rockreef.se/.../?act=f&f=domainips&ft=info&white=1&d=/etc/ || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 13/43 (30.2%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | a2460365d38ea28a1216c2cc552a2b7f | http://rockreef.se/.../?act=f&f=ducache&ft=ini&white=1&d=/home/kalvahag/.cpanel/ || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 11/39 (28.2%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | 53c215373c7bf414ffaa62e2623c753f | http://rockreef.se/.../?act=f&f=ioports&ft=ini&white=1&d=/proc/ || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 11/39 (28.2%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | 7d2f2e9bde90dce93fde944e9f673f8c | http://rockreef.se/.../?act=f&f=libgcc_s.so.1&ft=exe&white=1&d=/lib64/ || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 11/39 (28.2%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | 615e3adc1dfaff64db74fb1d21be0c6a | http://rockreef.se/.../?act=f&f=libgcc_s.so.1&ft=ini&white=1&d=/lib64/ || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 11/39 (28.2%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | 10ef38d7e5b08641a0e701e0853cbb22 | http://rockreef.se/.../?act=f&f=libgcc_s.so.1&ft=sdb&white=1&d=/lib64/ || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 11/39 (28.2%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | d85d8bfb8e37bebbf89d06da5a1deb57 | http://rockreef.se/.../?act=f&f=liblvm2cmd.a&ft=ini&white=1&d=/lib64/ || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 11/39 (28.2%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | a37e1497a59b79bfc9c797a6eca7c062 | http://rockreef.se/.../?act=f&f=libnss_hesiod.so.2&ft=sdb&white=1&d=/lib64/ || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 12/43 (27.9%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | a7aeb8095a343524ea2ad6d116a7c22c | http://rockreef.se/.../?act=f&f=libsemanage.so.1&ft=ini&white=1&d=/lib64/ || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 11/39 (28.2%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | dd2d0d4ab9e26288ddb7afcfe379ff02 | http://rockreef.se/.../?act=f&f=.libssl.so.0.9.8e.hmac&ft=ini&white=1&d=/lib64/ || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 12/40 (30%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | df4837776352bc865a9c92162a2843eb | http://rockreef.se/.../?act=f&f=.libssl.so.6.hmac&ft=edit&white=1&d=/lib64/ |+---------------------+-------------+-------------+----------------------------+---------------+---------------------------------------+-----------------+-------------------------------------+---------+--------+----------------------------+----------------------------------+-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+200 rows in set (0.06 sec)
+---------------------+-------------+-------------+------------------------------------+---------------+------------------------------------------------------------------+-----------------+-----------------------------------------+---------+--------+----------------------------+----------------------------------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| date | contributor | scanner | virusname | vt_score | AS | review | email | country | source | netname | md5sum | url |+---------------------+-------------+-------------+------------------------------------+---------------+------------------------------------------------------------------+-----------------+-----------------------------------------+---------+--------+----------------------------+----------------------------------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 11/39 (28.2%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | 7f101f510b33423bc4ebfd20ffcce2fa | http://rockreef.se/.../?act=f&f=mke2fs.conf&ft=txt&white=1&d=/etc/ || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 12/39 (30.8%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | 9e0dc5041b2e7dcf32df76baa4776155 | http://rockreef.se/.../?act=f&f=nvdata.cache&ft=sdb&white=1&d=/home/kalvahag/.cpanel/ || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 12/39 (30.8%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | 30d013952a9afa19e398740c68ef0291 | http://rockreef.se/.../?act=f&f=oddjobd.conf&ft=txt&white=1&d=/etc/ || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 13/40 (32.5%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | ebc5fbf44cf4593d86115cc7c9512323 | http://rockreef.se/.../?act=f&f=pure-ftpd.conf&ft=edit&white=1&d=/etc/ || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 12/39 (30.8%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | bb19b0cebec5da8fe23b40c4397545c3 | http://rockreef.se/.../?act=f&f=quotatab&ft=phpsess&white=1&d=/etc/ || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 12/43 (27.9%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | a13241c0a4eff147b97c2ecd0674682c | http://rockreef.se/.../?act=f&f=rndc.key&ft=exe&white=1&d=/etc/ || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 12/43 (27.9%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | a13241c0a4eff147b97c2ecd0674682c | http://rockreef.se/.../?act=f&f=rndc.key&ft=html&white=1&d=/etc/ || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 12/40 (30%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | a13241c0a4eff147b97c2ecd0674682c | http://rockreef.se/.../?act=f&f=rndc.key&ft=img&white=1&d=/etc/ || 2012-02-04 18:16:24 | sub16 | AntiVir | PHP/Agent.DQ | 13/40 (32.5%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | 135cb2a29a00b4faa3bee36a82eb0fcb | http://rockreef.se/.../?act=f&f=secondarymx || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 12/40 (30%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | 1d058f6d6ea367387564beebe036bbb0 | http://rockreef.se/.../?act=f&f=securetty&ft=download&white=1&d=/etc/ || 2012-02-04 18:16:24 | sub16 | avira | PHP/Agent.DQ | 12/40 (30%) | AS16245 | 77.66.30.204 | abuse@ngdc.net | DK | RIPE | DK-NETGROUP-20070124 | 401fda5469e1e83ea42e12c124127fc2 | http://rockreef.se/.../?act=f&f=securetty&ft=sdb&white=1&d=/etc/ || 2012-02-04 18:16:24 | sub16 | BitDefender | Trojan.JS.Redirector.TW | 4/40 (10%) | AS36476 | 209.237.150.20 | abuse@corp.web.com | US | ARIN | WEB-COM-BLK1 | 1538f436bfcb0be59caada2ce914f90c | http://route2.bz/vQ2UBKBT/js.js || 2012-02-04 18:16:24 | sub16 | Comodo | UnclassifiedMalware | 3/40 (7.5%) | AS41390 | 91.217.153.27 | abuse@uahoster.org | UA | RIPE | UAHOSTER-NET | 6e7a20690d42c18d601bc70bfb98b0da | http://ru-otveti2.com/red.html || 2012-02-04 18:16:24 | sub16 | Comodo | UnclassifiedMalware | 3/40 (7.5%) | AS6724 | 81.169.145.148 | abuse@strato.de | DE | RIPE | STRATO-RZG-KA | e912a10481c6b52373a0c9c5f933da7a | http://rymes.de/css.js || 2012-02-04 18:16:24 | sub16 | Avast | HTML:Script-inf | 8/40 (20%) | AS4812 | 222.73.173.216 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-SH | abd77b2a48cae4a4dbcfd1bf7c2a255e | http://s3348629.china-wcmedia.com/CS479 || 2012-02-04 18:16:24 | sub16 | DrWeb | Adware.InstallCore.19 | 4/40 (10%) | AS33597 | 72.21.195.97 | noc@amazon.com | US | ARIN | AMAZON-02 | 3456518fd6fd89d582c1bc6f15c8e256 | http://s3.amazonaws.com/Adlsoft/releases/ADLSoft_UnCompressor.exe || 2012-02-04 18:16:24 | sub16 | avira | JS/Infected.C | 21/40 (52.5%) | AS3595 | 205.251.135.210 | engineering@gnax.net | US | ARIN | GNAXNET | 681a99ee8506544409b6488879e2fd95 | http://sagittariussagittarius.com/wp-content/plugins/contact-form-7/jquery.form.js?ver=2.47 || 2012-02-04 18:16:24 | sub16 | avira | JS/Infected.C | 24/40 (60%) | AS3595 | 205.251.135.210 | engineering@gnax.net | US | ARIN | GNAXNET | ce2840f1f4ab2f0ad697bfddc6f9ad1f | http://sagittariussagittarius.com/wp-content/themes/LightBright/js/jquery.fancybox-1.2.6.pack.js || 2012-02-04 18:16:24 | sub16 | avira | JS/Infected.C | 21/40 (52.5%) | AS3595 | 205.251.135.210 | engineering@gnax.net | US | ARIN | GNAXNET | afc883631ab6b77ab037a5c0afeffd3b | http://sagittariussagittarius.com/wp-content/themes/LightBright/js/League_Gothic_400.font.js || 2012-02-04 18:16:24 | sub16 | AVG | JS/Redir | 4/40 (10%) | AS16406 | 207.5.94.22 | mark@noc.mainstreet.net | US | ARIN | TIMS-CIDR4 | 588fe0e7d61c68f003b1e6f17cfcc7dc | http://sap-pros.com/emp_profile.asp?id=2120444466 || 2012-02-04 18:16:24 | sub16 | AVG | JS/Redir | 4/40 (10%) | AS16406 | 207.5.94.22 | mark@noc.mainstreet.net | US | ARIN | TIMS-CIDR4 | e40949a87a180075bd27253e1acdd243 | http://sap-pros.com/emp_profile.asp?id=2120444482 || 2012-02-04 18:16:24 | sub16 | AVG | JS/Redir | 4/40 (10%) | AS16406 | 207.5.94.22 | mark@noc.mainstreet.net | US | ARIN | TIMS-CIDR4 | a40e66b0023507aef650beca3bf603ff | http://sap-pros.com/emp_profile.asp?id=2120444767 || 2012-02-04 18:16:24 | sub16 | AVG | JS/Redir | 4/40 (10%) | AS16406 | 207.5.94.22 | mark@noc.mainstreet.net | US | ARIN | TIMS-CIDR4 | b1449c18fef6a34a3044cc9fed1e0fa9 | http://sap-pros.com/emp_profile.asp?id=2120444916 || 2012-02-04 18:16:24 | sub16 | AVG | JS/Redir | 4/40 (10%) | AS16406 | 207.5.94.22 | mark@noc.mainstreet.net | US | ARIN | TIMS-CIDR4 | 430823392bedd44f1c61e3c8ae9e8aac | http://sap-pros.com/emp_profile.asp?id=2120444966 || 2012-02-04 18:16:24 | sub16 | AVG | JS/Redir | 4/40 (10%) | AS16406 | 207.5.94.22 | mark@noc.mainstreet.net | US | ARIN | TIMS-CIDR4 | 56844975060b6ad5bc062bf608a9a4a6 | http://sap-pros.com/emp_profile.asp?id=2120445235 || 2012-02-04 18:16:24 | sub16 | AVG | JS/Redir | 4/40 (10%) | AS16406 | 207.5.94.22 | mark@noc.mainstreet.net | US | ARIN | TIMS-CIDR4 | 247115d29b074c95498d94e18b0d1e41 | http://sap-pros.com/emp_profile.asp?id=-328717741 || 2012-02-04 18:16:24 | sub16 | BitDefender | Trojan.JS.Redirector.TQ | 8/40 (20%) | AS3216 | 194.186.88.61 | abuse@relax.ru | RU | RIPE | RU-SOVINTEL-MSK-RokVel-NET | 79ad9c51b2c45b0f1baa66bba68c7b9d | http://scorpion66666666.qipim.ru/lbpxlqdn.html || 2012-02-04 18:16:24 | sub16 | avira | JS/Redirector.MR | 7/39 (17.9%) | AS40244 | 173.233.70.114 | support@turnkeyinternet.net | US | ARIN | TURNKEY-INTERNET | 510899bc00201e18c4f7f1ff6f598321 | http://seedstomato.elaynesgarden.com/discounts-seeds-tomato-rose-quartz-multiflora-tomato-10-seed-rarehard-to-find-free-shipping/ || 2012-02-04 18:16:24 | sub16 | BitDefender | Trojan.JS.QLP | 6/40 (15%) | AS10439 | 209.126.254.144 | complaints@cari.net | US | ARIN | CARINET-2 | 583a8d7f9737a10b8fef754c544ce912 | http://sehmuzaltin.com/logs/web.php?1.0.80542?0.58685.1.06346.0.98214 || 2012-02-04 18:16:24 | sub16 | avira | HTML/IFrame.era | 17/40 (42.5%) | AS9318 | 211.214.161.173 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | 07228331e9c25f252174ddf9bead99cb | http://shinnongclinic.com/kor_board/view.php?id=photo&page=3&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=117 || 2012-02-04 18:16:24 | sub16 | avira | HTML/Rce.Gen | 36/40 (90%) | AS33182 | 199.168.186.154 | abuse@dimenoc.com | US | ARIN | DIMENOC | e79bbf5180c48f2a2cc0bea41b4234d9 | http://simplystroller.com/ || 2012-02-04 18:16:24 | sub16 | avira | JS/Twetti.B.1 | 23/40 (57.5%) | AS24989 | 88.84.137.178 | abuse@1blu.de | DE | RIPE | IXEUROPE-1BLU-2 | e510d57788829570deb010c0dd7f5809 | http://singalongfriends.de/ || 2012-02-04 18:16:24 | sub16 | avira | JS/Decdec.psc | 26/40 (65%) | AS3462 | 61.219.39.147 | network-adm@hinet.net | TW | APNIC | HINET-TW | 4976d293b848caa72e3be304362d5e89 | http://slims0210.myweb.hinet.net/?MywebPageId=201221328192885564 || 2012-02-04 18:16:24 | sub16 | avira | JS/Agent.BG.1 | 11/40 (27.5%) | AS3786 | 112.216.119.230 | shkim082@chol.com | KR | APNIC | BORANET-KR | 393c0a2f3cfdd42446b83d3a44be70d8 | http://smdavit.com/kor/board/board_view.asp?tb=notice_k&id=9&page=1&block=0 || 2012-02-04 18:16:24 | sub16 | trendmicro | Mal_Hifrm-2 | 13/40 (32.5%) | AS31815 | 64.13.192.152 | abuse@mediatemple.net | US | ARIN | MEDIATEMPLE-103 | baabee7e2f502960abece3571abd0d23 | http://smtp.breakfreee.org/resources || 2012-02-04 18:16:25 | sub16 | avira | HTML/Rce.Gen | 29/43 (67.4%) | AS29522 | 94.152.192.134 | abuse@ebitda.pl | PL | RIPE | EBITDA | 31ff79941803f877c4f6b41e9e0053cf | http://sn.win.pl/mapo/mp/galeria/index.php?idnew=46&a=&st=1 || 2012-02-04 18:16:25 | sub16 | avira | HTML/Rce.Gen | 27/39 (69.2%) | AS29522 | 94.152.192.134 | abuse@ebitda.pl | PL | RIPE | EBITDA | 31ff79941803f877c4f6b41e9e0053cf | http://sn.win.pl/mapo/mp/galeria/index.php?idnew=66&a=&st=1 || 2012-02-04 18:16:25 | sub16 | ClamAV | PUA.JS.Obfus-7 | 1/43 (2.3%) | AS24971 | 89.185.237.165 | mbi@centrum.cz | CZ | RIPE | KTVMB2-CZ-MAI | 30742a400f69922e1869cc5f50c4e5d5 | http://spacent.be/ || 2012-02-04 18:16:25 | sub16 | AntiVir | JS/Redirector.MR | 7/40 (17.5%) | AS36420, AS30315, AS13749, AS21844 | 174.120.201.162 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | f75b704c598e88c749f037b5f69e1dfe | http://speakerwallmounts.bargainpricetoday.com/tag/fiber-reinforced-polymer || 2012-02-04 18:16:25 | sub16 | avira | JS/Agent.zbh | 25/40 (62.5%) | AS25847 | 216.22.2.40 | abuse@servint.com | US | ARIN | SERVINT-CIDR-2 | 21a08ed95909d9b8ecb94337a5b21304 | http://spotlight-inclusiveartsasia.org/forum/viewtopic.php?f=3&t=50 || 2012-02-04 18:16:25 | sub16 | eSafe | Win32.Banker | 2/40 (5%) | AS32475 | 69.175.66.250 | netops@singlehop.com | US | ARIN | SINGLEHOP | 606abf31b4a889529f1008ab0a3bc0f8 | http://spywareremover.antispywareconsumerreport.com/reg/ExportWindowsRegistry/Run-RegistryFixer.exe || 2012-02-04 18:16:25 | sub16 | Avast | HTML:Iframe-inf | 12/40 (30%) | AS8560 | 87.106.144.84 | abuse@1and1.com | DE | RIPE | SCHLUND-CUSTOMERS | 74f8c8b3f29e7c01e8d4fc77031c475b | http://suesflowers.co.uk/product_info.php?products_id=3592 || 2012-02-04 18:16:25 | sub16 | BitDefender | Exploit.SWF.AB | 9/38 (23.7%) | AS48361 | 178.170.147.21 | | RU | RIPE | GlobaTel | 8b48c206d6fe9aca6939923172c43f4d | http://supertripstogo.in.ua/content/field.swf || 2012-02-04 18:16:25 | sub16 | BitDefender | Exploit.Java.CVE-2011-3544.F | 13/40 (32.5%) | AS48361 | 178.170.147.21 | | RU | RIPE | GlobaTel | 68c8a4ec163f081aee8134f0739e85ec | http://supertripstogo.in.ua/content/rino.jar || 2012-02-04 18:16:25 | sub16 | Avast | Win32:Elderado-B Trj | 2/40 (5%) | AS26496 | 184.168.192.119 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | b8921b3cb3e3fe40442184fb749527ae | http://supportcancerawareness.com/logo.gif?125f2=677250 || 2012-02-04 18:16:25 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 14/40 (35%) | AS10594 | 206.63.68.77 | domainrq@nwnexus.com | US | ARIN | NWNEXUS-BLK4 | 50f6a67a3f6abfcd79788908eca2990d | http://suredisc.com/.store/cialis-online/genric-cialis.php || 2012-02-04 18:16:25 | sub16 | avira | JS/Infected.C | 21/40 (52.5%) | AS15244 | 74.50.3.195 | hostmaster@lunarpages.com | US | ARIN | ADDD2NET-DOT-COM | 804c8cb4a8a2951f0433dfffc32ea6d2 | http://sybaseteam.com/jscripts/moo.ajax.js || 2012-02-04 18:16:25 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 13/40 (32.5%) | AS26496 | 184.168.188.1 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | f39c7671595e815e64204ec2b8303919 | http://synthetikat.com/classes/ || 2012-02-04 18:16:25 | sub16 | AVG | JS/Downloader.Agent | 7/40 (17.5%) | AS22923 | 199.19.95.13 | peterk@yesup.com | CA | ARIN | YESUP-COM | 805a705b330b7a0825958d856f242618 | http://takmahfel.com/cat-26.html || 2012-02-04 18:16:25 | sub16 | avira | HTML/IFrame.ZA | 15/40 (37.5%) | AS33182 | 67.23.250.248 | abuse@dimenoc.com | US | ARIN | DIMECNET | 225d947bad39079c489bf9580ad153d7 | http://theairbornetoxicevent.com/tag/tv/feed || 2012-02-04 18:16:25 | sub16 | Avast | Win32:Elderado-B Trj | 4/43 (9.3%) | AS27715 | 187.45.216.39 | regcom@locaweb.com.br | BR | LACNIC | 002.351.877/0001-52 | b004833f949d0e65bac3756e48bd097c | http://thecleanergroup.com.br/logo.gif?15f13=898750 || 2012-02-04 18:16:25 | sub16 | avira | JS/iFrame.psa.22 | 25/40 (62.5%) | AS21844 | 74.53.229.82 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | cf5f24f83e1a1deb9c8902ab83b88d61 | http://thewebsitecompany.co.uk/demo/abptt/forum/cron.php?cron_type=tidy_cache&sid=f4b70847724c12702333383346000ffb || 2012-02-04 18:16:25 | sub16 | ClamAV | PUA.Script.Packed | 1/40 (2.5%) | AS4134 | 117.25.131.178 | abuse@fjdcb.fz.fj.cn | CN | APNIC | CHINANET-FJ | cb6d1e1672a53c95c4cdec7e8938ae66 | http://t.jiuyaoyouxi.com/game/py_aituo781.php?tguser=529 || 2012-02-04 18:16:25 | sub16 | ClamAV | PUA.Script.Packed | 1/40 (2.5%) | AS4134 | 117.25.131.178 | abuse@fjdcb.fz.fj.cn | CN | APNIC | CHINANET-FJ | 0004d9e925c9d7d5e5f9118db626c366 | http://t.jiuyaoyouxi.com/game/py_yiqiv9730.php?tguser=7555&WID=7555 || 2012-02-04 18:16:25 | sub16 | ClamAV | PUA.Script.Packed | 1/40 (2.5%) | AS4134 | 117.25.131.178 | abuse@fjdcb.fz.fj.cn | CN | APNIC | CHINANET-FJ | 62f2355aa06c65a9a5ec4ca45b0ec0b7 | http://t.jiuyaoyouxi.com/game/union.php?tguser=qizhao || 2012-02-04 18:16:25 | sub16 | AVG | JS/Redir | 4/40 (10%) | AS31034 | 62.149.128.72 | hostmaster@technorail.com | IT | RIPE | TECHNORAIL-NET | 65205d043f0f69092360bde1a35f37a4 | http://torinoinchat.com/Mercatino/detail.asp?iType=3&iAd=24533 || 2012-02-04 18:16:25 | sub16 | AVG | JS/Redir | 4/40 (10%) | AS31034 | 62.149.128.72 | hostmaster@technorail.com | IT | RIPE | TECHNORAIL-NET | 7a259bba5e24a8c8cf13f6178a6e6122 | http://torinoinchat.com/Mercatino/type.asp?iType=2&Sub_ID=3&Cat=24 || 2012-02-04 18:16:25 | sub16 | Avast | HTML:Iframe-inf | 11/40 (27.5%) | AS17444 | 58.64.136.46 | abuse@newworldtel.com | HK | APNIC | NWT-NET | 2cfd693cfd172afb814832ec8607f73d | http://tradekool.com/products/175380/R-9937-jewelry.html || 2012-02-04 18:16:25 | sub16 | trendmicro | JS_HACKLOAD.SM | 12/40 (30%) | AS13213 | 77.92.75.66 | ripe@uk2.net | GB | RIPE | UK2-NET | fc70c63c9bdcbbb261095858e62e3c73 | http://tradingforwealthacademy.knowledgebasemediaserver2.com/libs/effects.core.js || 2012-02-04 18:16:25 | sub16 | avira | JS/Infected.B | 25/40 (62.5%) | AS26347 | 75.119.193.82 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK8 | 42b0c9a5c79aa6e1b329314d23c5f717 | http://trading.ltechindia.com/wp-content/plugins/cforms/js/cforms.js || 2012-02-04 18:16:25 | sub16 | avira | JS/Infected.B | 25/42 (59.5%) | AS26347 | 75.119.193.82 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK8 | 4b45d9548f6e105de3f67a597fb2d359 | http://trading.ltechindia.com/wp-content/plugins/cycle-image-slider/jquery.cycle.js || 2012-02-04 18:16:25 | sub16 | avira | JS/Infected.B | 26/43 (60.5%) | AS26347 | 75.119.193.82 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK8 | a8db31f251128421eb25fc0ee23cdb3a | http://trading.ltechindia.com/wp-content/plugins/cycle-image-slider/jquery.js || 2012-02-04 18:16:25 | sub16 | avira | JS/Infected.B | 25/40 (62.5%) | AS26347 | 75.119.193.82 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK8 | 4112922493861eab8f5c97bfad750273 | http://trading.ltechindia.com/wp-content/themes/trading-ltech/js/chili-1.7.pack.js || 2012-02-04 18:16:25 | sub16 | avira | JS/Infected.B | 25/40 (62.5%) | AS26347 | 75.119.193.82 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK8 | 4b45d9548f6e105de3f67a597fb2d359 | http://trading.ltechindia.com/wp-content/themes/trading-ltech/js/jquery.cycle.all.2.72.js || 2012-02-04 18:16:25 | sub16 | avira | JS/Infected.B | 24/40 (60%) | AS26347 | 75.119.193.82 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK8 | a8db31f251128421eb25fc0ee23cdb3a | http://trading.ltechindia.com/wp-content/themes/trading-ltech/js/jquery.min.js || 2012-02-04 18:16:25 | sub16 | Avast | HTML:Script-inf | 7/40 (17.5%) | AS20355 | 69.2.43.118 | abuse@ntg.com | US | ARIN | NTG-DATACENTER-NETBLK2 | 7fadcb6e1851ffbe65bc5a8fc7750982 | http://tramelectric.com/inventory/details.cfm?item=1041301083 || 2012-02-04 18:16:25 | sub16 | avira | JS/Agent.alf | 21/40 (52.5%) | AS2588 | 159.148.127.210 | abuse@latnet.lv | LV | RIPE | LV-LATNET-19990315 | 3f03b0bae02a4db9c2706af14e316300 | http://transportsvisiem.lv/ || 2012-02-04 18:16:25 | sub16 | avira | HTML/IFrame.era | 18/40 (45%) | AS9318 | 211.49.162.170 | abuse@hanaro.com | KR | APNIC | HANANET-INFRA | a5c4639d808c4871b9c37f2aed4daec1 | http://tratag.com/bbs/zboard.php?id=notice || 2012-02-04 18:16:25 | sub16 | avira | HTML/Crypted.Gen | 16/40 (40%) | AS26347 | 69.163.202.54 | netops@dreamhost.com | US | ARIN | DREAMHOST-BLK9 | b0ab8519ab0e32e20d10af43c0040ff0 | http://triviaaa.com/forum/viewtopic.php?p=41625 || 2012-02-04 18:16:25 | sub16 | avira | HTML/Crypted.Gen | 16/39 (41%) | AS26347 | 69.163.202.54 | netops@dreamhost.com | US | ARIN | DREAMHOST-BLK9 | cf9990f7ec81fbdb3b39aa7d46bfd637 | http://triviaaa.com/forum/viewtopic.php?t=31 || 2012-02-04 18:16:25 | sub16 | avira | TR/Script.85 | 20/43 (46.5%) | AS3786 | 61.38.186.176 | shkim082@chol.com | KR | APNIC | BORANET-KR | 725add22d937622a13654a97d8c04538 | http://triz.or.kr/data/log/auto1.txt?? || 2012-02-04 18:16:25 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 16/40 (40%) | AS41758 | 91.213.154.62 | kadastr@da.net.ua | UA | RIPE | DA-NET | 67fafe3a76c820002219bc034f8828d7 | http://unic.com.ua/weblinks/modules.php?op=modload&name=Web_Links&file=index&req=NewLinksDate&selectdate=1320224295 || 2012-02-04 18:16:25 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 16/40 (40%) | AS41758 | 91.213.154.62 | kadastr@da.net.ua | UA | RIPE | DA-NET | c2ea9242f7fa2deb344828cf57b221e3 | http://unic.com.ua/weblinks/modules.php?op=modload&name=Web_Links&file=index&req=NewLinksDate&selectdate=1320410148 || 2012-02-04 18:16:25 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 16/40 (40%) | AS41758 | 91.213.154.62 | kadastr@da.net.ua | UA | RIPE | DA-NET | c7c83c6425c5cb47ef787bab146d8ced | http://unic.com.ua/weblinks/modules.php?op=modload&name=Web_Links&file=index&req=NewLinksDate&selectdate=1321625549 || 2012-02-04 18:16:25 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 16/40 (40%) | AS41758 | 91.213.154.62 | kadastr@da.net.ua | UA | RIPE | DA-NET | a929aa5c6c724655e74b5b6535cc32be | http://unic.com.ua/weblinks/modules.php?op=modload&name=Web_Links&file=index&req=NewLinksDate&selectdate=1321711949 || 2012-02-04 18:16:26 | sub16 | Avast | Win32:Softonic-C PUP | 4/40 (10%) | AS16509 | 72.21.195.66 | noc@amazon.com | US | ARIN | AMAZON-02 | 4d1a3dbb6035f50d25073b4b882e3f38 | http://universal-downloader.softonic.de/40000/40294/ud_100/SoftonicDownloader_fuer_rawshooter-essentials-2006.exe?AWSAccessKeyId=0HXVA1YMG3HX1XDSGT02 || 2012-02-04 18:16:26 | sub16 | Avast | Win32:Softonic-C PUP | 5/40 (12.5%) | AS16509 | 207.171.163.226 | noc@amazon.com | US | ARIN | AMAZON-01 | 1e77983d601e2ffb44579e91b9d144fa | http://universal-downloader.softonic.fr/78000/78406/ud_300/SoftonicDownloader_pour_shape-collage.exe?AWSAccessKeyId=0HXVA1YMG3HX1XDSGT02&Expires=1328036762&Signature=seF55ZE/o0ZRO4TM5o6ZPDnSlXU% || 2012-02-04 18:16:26 | sub16 | Avast | Win32:Softonic-C PUP | 5/40 (12.5%) | AS16509 | 72.21.211.188 | noc@amazon.com | US | ARIN | AMAZON-02 | 0b184dfea5bd03c3fc13855c54d157d5 | http://universal-downloader.softonic.it/37000/37340/ud_400/SoftonicDownloader_per_autoruns.exe?AWSAccessKeyId=0HXVA1YMG3HX1XDSGT02 || 2012-02-04 18:16:26 | sub16 | DrWeb | Trojan.Fraudster.261 | 1/40 (2.5%) | AS28917 | 93.191.12.243 | devnull@fiord.ru | RU | RIPE | FIORD-COLO | 5a1818afd2a5ea060ac27947c1432604 | http://uno.wt-rotator102.ru/?t=cf&noadult=1&pid=42331 || 2012-02-04 18:16:26 | sub16 | eSafe | Win32.Banker | 2/40 (5%) | AS32475 | 69.175.66.250 | netops@singlehop.com | US | ARIN | SINGLEHOP | 9b014e8ead95ab13bd5860557833b4d9 | http://updatedrivers.jupitersoftwares.com/reg/FixComputerErrors/Run-CleanUpRegistry.exe || 2012-02-04 18:16:26 | sub16 | eSafe | Win32.Banker | 2/40 (5%) | AS32475 | 69.175.66.250 | netops@singlehop.com | US | ARIN | SINGLEHOP | 1a9dd00e4a8b62f837ff534cbbc43c87 | http://updatedrivers.jupitersoftwares.com/un/WindowsUninstallXp/Run-UninstallAllSoftware.exe || 2012-02-04 18:16:26 | sub16 | Antiy_AVL | Trojan/JS.Redirector | 9/40 (22.5%) | AS3216 | 194.186.88.61 | abuse@relax.ru | RU | RIPE | RU-SOVINTEL-MSK-RokVel-NET | 3b44ccf1cddf37ccb0133667d166fba0 | http://uuubbbiii.qipim.ru/sxplajox.html || 2012-02-04 18:16:26 | sub16 | avira | HTML/Infected.WebPage.Gen | 27/40 (67.5%) | AS33182 | 66.7.202.240 | abuse@dimenoc.com | US | ARIN | DIMECNET | b5b0491b519ca073585383a716798869 | http://vanberi.com/mycomp/D_Disk/SOFT/01-System/Help_RUS/Tours/htmlTour/connected_fr.htm || 2012-02-04 18:16:26 | sub16 | Avast | HTML:FBJack-A Trj | 5/39 (12.8%) | AS28753 | 178.162.243.88 | abuse@leaseweb.de | DE | RIPE | DE-NETDIRECT-20100205 | 4ff2631513f9b08e5f531626057971fc | http://videokalbi.com/20-saniyelik-ama-muhtesem-ask-romantizm-hersey.html || 2012-02-04 18:16:26 | sub16 | Avast | HTML:FBJack-A Trj | 5/39 (12.8%) | AS28753 | 178.162.243.88 | abuse@leaseweb.de | DE | RIPE | DE-NETDIRECT-20100205 | 86a3c9341c6bb3bead9365c61cdcae5c | http://videokalbi.com/bu-nasil-bir-vurus-nasil-bir-saka-xd.html || 2012-02-04 18:16:26 | sub16 | Avast | HTML:FBJack-A Trj | 5/40 (12.5%) | AS28753 | 178.162.243.88 | abuse@leaseweb.de | DE | RIPE | DE-NETDIRECT-20100205 | ade5b9a5bdb0996bac82aabf64b6ba43 | http://videokalbi.com/david-guetta-britney-spears-nicki-minaj-hd.html || 2012-02-04 18:16:26 | sub16 | Avast | HTML:FBJack-A Trj | 5/40 (12.5%) | AS28753 | 178.162.243.88 | abuse@leaseweb.de | DE | RIPE | DE-NETDIRECT-20100205 | 2e315de6c94f459b2b1effe5b959b7c8 | http://videokalbi.com/jennifer-lopez-duysa-intihar-eder.html || 2012-02-04 18:16:26 | sub16 | avira | TR/Offend.7079055 | 17/39 (43.6%) | AS41947 | 195.216.243.39 | abuse@compubyte.vg | GB | RIPE | COMPUBYTE-NET | 3ce5a402760bf3b3d8de58b2d8dad319 | http://videoserver.ucoz.net/tjurjaga_nakrutka_v2.9.rar || 2012-02-04 18:16:26 | sub16 | K7AntiVirus | Trojan | 6/40 (15%) | AS32475 | 69.175.71.50 | netops@singlehop.com | US | ARIN | SINGLEHOP | cb6045a502f084df4316b4f9de824d86 | http://virus-reporter.com/psp/pspdownloads/pspdownloads.exe || 2012-02-04 18:16:26 | sub16 | avira | JAVA/SMS.Wire.A | 26/40 (65%) | AS16276 | 188.165.216.206 | abuse@ovh.net | FR | RIPE | OVH | 9d568c2ccd2c796550925cddbb050881 | http://visaochat.waplux.com/files/76635/sexhay.jar || 2012-02-04 18:16:26 | sub16 | Antiy_AVL | Hoax/Win32.ArchSMS | 18/39 (46.2%) | AS39792 | 31.31.196.3 | abuse@reg.ru | RU | RIPE | REGRU-NETWORK | 32717b47204af001fd3347c661fada54 | http://vkeditor.ru/vkfiles.zip || 2012-02-04 18:16:26 | sub16 | avira | JS/Twetti.B.1 | 25/40 (62.5%) | AS48539 | 91.198.106.56 | support@deziweb.com | NL | RIPE | NL-DEZIWEB | 0f3b0956912211a13b8c4e953b2647af | http://walkingproud.nl/alexguestbook4/index.php?lang=german&skin=&debut=690&seeAdd=1&seeNotes=&seeMess= || 2012-02-04 18:16:26 | sub16 | avira | JS/Twetti.B.1 | 25/40 (62.5%) | AS48539 | 91.198.106.56 | support@deziweb.com | NL | RIPE | NL-DEZIWEB | 7f9b291534e7726b72b775cb69df72d0 | http://walkingproud.nl/alexguestbook4/index.php?lang=italiano&skin=&debut=380&seeAdd=1&seeNotes=&seeMess= || 2012-02-04 18:16:26 | sub16 | avira | JS/Twetti.B.1 | 25/40 (62.5%) | AS48539 | 91.198.106.56 | support@deziweb.com | NL | RIPE | NL-DEZIWEB | 7c62b268d2901e5d9d11c98e94681295 | http://walkingproud.nl/alexguestbook4/index.php?lang=italiano&skin=&debut=530&seeAdd=1&seeNotes=&seeMess= || 2012-02-04 18:16:26 | sub16 | AntiVir | JS/Redirector.MR | 7/40 (17.5%) | AS40244 | 173.233.77.42 | support@turnkeyinternet.net | US | ARIN | TURNKEY-INTERNET | 0d0aa09c89e4ef4dd88108e31d4e6506 | http://watershoes.blackfridayshoessale.info/page/2/ || 2012-02-04 18:16:26 | sub16 | Avast | HTML:Script-inf | 8/40 (20%) | AS4812 | 222.73.173.216 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-SH | 62b5a845bd0dad2a6301edcc3dc2e683 | http://wc52584340.china-wcmedia.com/CS482 || 2012-02-04 18:16:26 | sub16 | avira | JS/Agent.brx | 23/40 (57.5%) | AS9931 | 122.155.3.47 | support@idc.cattelecom.com | TH | APNIC | CAT-IDC-Service | 7ad35f8247d579246969ef9b6363dee4 | http://webaraidee.com/modules/news/index.php?storytopic=16 || 2012-02-04 18:16:26 | sub16 | AVG | HTML/Framer | 11/40 (27.5%) | AS23141 | 66.219.141.23 | hostmaster@doylestowncommunications.com | US | ARIN | DTC-BLK-1 | 2ccbbc00b7fcd9b6a57c8c802e44f8f8 | http://webgamestats.com/wgs00011_plybios.aspx?id=16407&CustID=13&Level=50 || 2012-02-04 18:16:26 | sub16 | avira | HTML/IFrame.era | 17/40 (42.5%) | AS18325 | 211.218.150.39 | abuse@kornet.net | KR | APNIC | KORNET-KR | 8646c746fd7edde987385ab9b6321dd1 | http://whlake.com/bbs/view.php?id=qna&page=10&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=hit&desc=desc&no=7 || 2012-02-04 18:16:26 | sub16 | avira | HTML/IFrame.era | 17/40 (42.5%) | AS18325 | 211.218.150.39 | abuse@kornet.net | KR | APNIC | KORNET-KR | 98efa005cb15f2ff857d0db5fdacd222 | http://whlake.com/bbs/view.php?id=qna&page=8&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=hit&desc=asc&no=138 || 2012-02-04 18:16:26 | sub16 | avira | HTML/IFrame.era | 17/40 (42.5%) | AS18325 | 211.218.150.39 | abuse@kornet.net | KR | APNIC | KORNET-KR | bb2e262554212639544c083478342f26 | http://whlake.com/bbs/view.php?id=qna&page=8&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=hit&desc=asc&no=143 || 2012-02-04 18:16:26 | sub16 | avira | HTML/IFrame.era | 17/40 (42.5%) | AS18325 | 211.218.150.39 | abuse@kornet.net | KR | APNIC | KORNET-KR | 1c8e561d072a5d8959f251e5901b1133 | http://whlake.com/bbs/view.php?id=review&page=1&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=hit&desc=desc&no=35 || 2012-02-04 18:16:27 | sub16 | AntiVir | JS/Redirector.MR | 7/40 (17.5%) | AS24940 | 176.9.56.174 | abuse@hetzner.de | DE | RIPE | DE-HETZNER-20110517 | 65aad0392c39215fa81582b484dc3364 | http://wpdelicio.us/tag/it/ || 2012-02-04 18:16:27 | sub16 | Fortinet | Misc/Oss | 2/40 (5%) | AS40395 | 208.77.221.66 | abuse@virtbiz.com | US | ARIN | VIRTBIZ-DFW1 | 4e41764141b791f8fc3abcf4ae4e18c9 | http://www.3tm.net/misc/virus/spyware_virus.zip || 2012-02-04 18:16:27 | sub16 | ClamAV | PUA.Packed.ASPack | 1/40 (2.5%) | AS30217 | 208.64.137.62 | abuse@webmasters.com | US | ARIN | NETTUNER-200509 | 7e043654dce6e1af44c93058a78441d3 | http://www.adultpdf.com/products/pstopdf/pstopdf_c.zip || 2012-02-04 18:16:27 | sub16 | Antiy_AVL | Trojan/win32.agent.gen | 26/38 (68.4%) | AS32613 | 174.142.52.202 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-06 | 5aa1f0092d0444f3ab9fc9fb83046818 | http://www.agbot.net/f/Packag5.2.0b.nomap.zip || 2012-02-04 18:16:27 | sub16 | avira | TR/Dropper.Gen | 28/40 (70%) | AS32613 | 174.142.52.202 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-06 | 380ac3b3593ab17c1efc15396ee7c5b6 | http://www.agbot.net/f/Packag5.2.3.nomap.zip || 2012-02-04 18:16:27 | sub16 | AVG | RegOrganizer.A | 2/40 (5%) | AS24940 | 188.40.3.43 | abuse@hetzner.de | DE | RIPE | DE-HETZNER-20090423 | 8af82774af964dbeca9ee201893a1760 | http://www.anvir.com/downloads/taskfree.exe || 2012-02-04 18:16:27 | sub16 | AVG | RegOrganizer.A | 4/40 (10%) | AS24940 | 188.40.3.43 | abuse@hetzner.de | DE | RIPE | DE-HETZNER-20090423 | a07539359433b9d0bad2a6d2965346fd | http://www.anvir.com/downloads/taskman.exe || 2012-02-04 18:16:27 | sub16 | Rising | Trojan.Win32.Generic.1246BC37 | 1/39 (2.6%) | AS3595 | 69.73.176.160 | abuse@jaguarpc.com | US | ARIN | LH-GOLD-NETWORK | 5f6ba4e352fc22c7b297e827116ec71d | http://www.audio2convert.com/wma-to-mp3/download/wma-to-mp3-plus.exe || 2012-02-04 18:16:27 | sub16 | avira | HTML/ImgHack.B.36 | 3/40 (7.5%) | AS26496 | 182.50.148.128 | gschwimer@godaddy.com | SG | APNIC | GODADDY-NET-SG | c840bd5edb285a05c8d2328744f4b7c1 | http://www.bsnmumbai.org/facebook/index.html || 2012-02-04 18:16:27 | sub16 | avira | ADSPY/KuaisoToolb.3 | 25/39 (64.1%) | AS33182 | 72.29.80.241 | abuse@dimenoc.com | US | ARIN | HOSTDIME-PI-1 | 56dee57c4a6eab5341179eff0a43d96f | http://www.canadiandreamjob.com/toolbar/toolbar.exe || 2012-02-04 18:16:27 | sub16 | ClamAV | PUA.Packed.ASPack | 1/39 (2.6%) | AS15169 | 74.125.79.121 | arin-contact@google.com | US | ARIN | GOOGLE | b0abf987a38feddb8f57472fb89dde61 | http://www.chameleon-managers.com/files/cstartup_freeware.exe || 2012-02-04 18:16:27 | sub16 | BitDefender | Gen:Trojan.Heur.gm0@cnTLDHbi | 6/38 (15.8%) | AS36420, AS30315, AS13749, AS21844 | 174.120.180.124 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 2db0c55ef8e8cfba5906de30a5f66bc6 | http://www.danusoft.com/WiFiHotSpotCreatorSetup.exe || 2012-02-04 18:16:27 | sub16 | Avast | Win32:Adware-gen Adw | 15/40 (37.5%) | AS21788 | 64.191.99.186 | abuse@hostnoc.net | US | ARIN | HOSTNOC-3BLK | cd10637ec18a11065074bf7aa4b8cca2 | http://www.digitalproductsreview.net/download/cbbar.exe || 2012-02-04 18:16:27 | sub16 | AVG | Generic26.CNOC | 15/40 (37.5%) | AS3595 | 205.251.134.23 | engineering@gnax.net | US | ARIN | GNAXNET | 80f985c81f966669acdba68972bed1e6 | http://www.djbrisk.co.uk/modules/Banners/redir.php || 2012-02-04 18:16:27 | sub16 | Antiy_AVL | Trojan/Win32.FakeAV.gen | 5/40 (12.5%) | AS32475 | 69.175.66.250 | netops@singlehop.com | US | ARIN | SINGLEHOP | ac23eb2fd5f4b7ae5926662942272fd0 | http://www.driverupdate.jupitersoftwares.com/6/ControllerDriverUpdate/ControllerDriverUpdate.exe || 2012-02-04 18:16:27 | sub16 | avira | JS/Obfuscated.CF | 23/40 (57.5%) | AS36420, AS30315, AS13749, AS21844 | 174.121.66.13 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 8972697996d297fe21e30f3469becfc0 | http://www.egyptealacarte.com/ || 2012-02-04 18:16:27 | sub16 | ClamAV | Trojan.Agent-124036 | 1/40 (2.5%) | AS14585 | 208.76.170.123 | abuse@cifnet.net | US | ARIN | CIFNET-US-1 | 1342ea400dcf63f781521d6c16b231a5 | http://www.elcomsoft.com/download/aiepr.zip || 2012-02-04 18:16:27 | sub16 | Avast | Win32:PUP-gen PUP | 7/40 (17.5%) | AS21844 | 74.52.152.200 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 26fdef8361f8047d008d92339a27c2ec | http://www.electrasoft.com/klrsx.exe || 2012-02-04 18:16:27 | sub16 | clamav | PUA.Packed.ASPack | 1/40 (2.5%) | AS15083 | 200.35.146.9 | abuse@infolink.com | PA | LACNIC | PA-ICSE-LACNIC | c8934e728cc6a2c5ea2b442d323ad7e7 | http://www.freebytesoftware.com/download/install_tpxsu2.exe || 2012-02-04 18:16:27 | sub16 | Sophos | Sus/Behav-231 | 1/40 (2.5%) | AS26347 | 69.163.250.118 | netops@dreamhost.com | US | ARIN | DREAMHOST-BLK9 | 1c1204fedccb07443fb01b336dbef6a8 | http://www.getpdf.com/getpdf_ise.exe || 2012-02-04 18:16:27 | sub16 | avira | JS/Obfuscated.CF | 19/40 (47.5%) | AS25973, AS35937, AS36025, AS6130, AS15244 | 216.97.224.230 | hostmaster@lunarpages.com | US | ARIN | ADD2NET-DOT-COM | f3d4a6e7770664a3d3e4029f5430ef59 | http://www.gvtransport.net/ || 2012-02-04 18:16:27 | sub16 | Avast | HTML:Paylap-L Trj | 4/40 (10%) | AS36476 | 209.237.150.20 | abuse@corp.web.com | US | ARIN | WEB-COM-BLK1 | b4412c19b292db5019e4eb5991241921 | http://www.hornet-canada.com/templates/paypal-it/it/ || 2012-02-04 18:16:27 | sub16 | eSafe | Suspicious File | 1/40 (2.5%) | AS29873 | 65.254.250.109 | bnbrock@maileig.com | US | ARIN | BIZLAND-FC03 | c8f1562f131fe372415db6d806110eef | http://www.intelligent-converters.com/demos/pdf2txtd.exe || 2012-02-04 18:16:27 | sub16 | Comodo | UnclassifiedMalware | 3/40 (7.5%) | AS43362 | 78.108.81.140 | support@majordomo.ru | RU | RIPE | MAJORDOMO-NETWORK | 351375ebecb15702aa0360fac9c4e669 | http://www.jmo.ru/ || 2012-02-04 18:16:28 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 27/39 (69.2%) | AS4713 | 60.32.201.109 | jindo@ars.dtinet.or.jp | JP | APNIC | OCN | 97b6880f6fd5db155d320524ad2f1c25 | http://www.link003.com/ || 2012-02-04 18:16:28 | sub16 | avira | TR/Agent.765609 | 5/40 (12.5%) | AS21844 | 74.52.220.106 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | b84faaf77ee680620a358e64db081a00 | http://www.lovebodylanguage.info/puzzles/antart7.exe || 2012-02-04 18:16:28 | sub16 | avira | DR/Delphi.Gen | 7/39 (17.9%) | AS26347 | 69.163.137.114 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK9 | 0a3b5407fbe0bb92e5629a0b17004fc6 | http://www.mobiano.com/packs/5/Pocket-PC-Theme-Pack-iphone-01.exe || 2012-02-04 18:16:28 | sub16 | avira | ADSPY/NaviPromo.J | 8/38 (21.1%) | AS36420, AS30315, AS13749, AS21844 | 67.19.127.66 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-11 | b751a6b8b22f81130d540da28ef6b819 | http://www.mp3mymp3.com/tank/mp3mymp3install.exe || 2012-02-04 18:16:28 | sub16 | avira | ADSPY/Perfect.CL | | AS36420, AS30315, AS13749, AS21844 | 69.93.79.171 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-9 | f65dcf37301ea78dfd927362e79501b0 | http://www.mp3towav.org/download/Photo-DVD-Maker-Professional.exe || 2012-02-04 18:16:28 | sub16 | Norman | Remover.exe | 1/40 (2.5%) | AS18450 | 173.231.16.162 | NOC@webnx.com | US | ARIN | WEBNX-BLK-3 | f359a5b4c8c69318bb68623a414c1f4d | http://www.msnvirusremoval.com/MSN%20Virus%20Remover.zip || 2012-02-04 18:16:28 | sub16 | Rising | Trojan.Win32.Generic.126BCD38 | 3/40 (7.5%) | AS53628 | 173.0.139.163 | abuse@jdnextgen.com | US | ARIN | APYLI-AS | 91313e2b0375f884c519833b3d97af7b | http://www.productsfoundry.com/downloads/webcloner.exe || 2012-02-04 18:16:28 | sub16 | eSafe | Win32.Dropper.afxv | 1/38 (2.6%) | AS24134 | 116.213.113.190 | zp@cn.cnlink.net | CN | APNIC | CNLINKNET | dd23d4783b077ee4fdd34c2ed3da637b | http://www.protect-file.com/ensoft/drawing_protector.rar || 2012-02-04 18:16:28 | sub16 | DrWeb | Trojan.KillProc.13765 | 3/40 (7.5%) | AS21844 | 74.52.31.178 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 9e8f9991e10b1d3975497801173e1518 | http://www.quickhealthyrecipes.net/software/quickhealthyrecipespuzzle.exe || 2012-02-04 18:16:28 | sub16 | avira | TR/Agent.2865434 | 15/38 (39.5%) | AS16406 | 64.78.27.90 | abuse@intermedia.net | US | ARIN | INTRMD-1 | 24aa59fe8924417ea723851686dbccad | http://www.rebrandsoftware.com/downloaddemo.asp?soft_id=19 || 2012-02-04 18:16:28 | sub16 | Antiy_AVL | Trojan/Win32.FakeAV.gen | 3/38 (7.9%) | AS32475 | 69.175.66.250 | netops@singlehop.com | US | ARIN | SINGLEHOP | a3028c833dfc0f76f0fdd5df8f08630f | http://www.registryrepair.jupitersoftwares.com/6/CDRomDriverUpdate/CDRomDriverUpdate.exe || 2012-02-04 18:16:28 | sub16 | NOD32 | HTML/Iframe.B.Gen | 1/40 (2.5%) | AS15169 | 74.125.79.121 | arin-contact@google.com | US | ARIN | GOOGLE | 75ffbc751b63a0152ef4d52db278bab3 | http://www.rusdi-nice.co.cc/ || 2012-02-04 18:16:28 | sub16 | avira | SPR/ClientConn.A | 12/39 (30.8%) | AS32475 | 173.236.50.234 | netops@singlehop.com | US | ARIN | SINGLEHOP | 1f998d4a8a58cdba14499e26c3fbfe55 | http://www.saya.mobaely.net/attachment.php?s=15722c9f9b927d8d83c47f489eec6e4b&attachmentid=64&d=1285958481 || 2012-02-04 18:16:28 | sub16 | eSafe | Win32.Trojan | 1/39 (2.6%) | AS11798 | 69.89.31.212 | abuse@bluehost.com | US | ARIN | BLUEHOST-NETWORK-1 | 475c8354d842a4042cc61ff9976a057d | http://www.soft97.com/downloads/access-password-recovery/mdb-password-recovery.msi || 2012-02-04 18:16:28 | sub16 | avira | HTML/IFrame.acu | 21/39 (53.8%) | AS6724 | 81.169.145.70 | abuse@strato.de | DE | RIPE | STRATO-RZG-KA | bf4a6d4c93befaaa262dfbbbc7629ef7 | http://www.solarwaeschetrockner.de/ || 2012-02-04 18:16:28 | sub16 | Antiy_AVL | Trojan/Win32.Vapsup.gen | 4/40 (10%) | AS25577 | 84.45.55.11 | enquiries@hi-velocity.ltd.uk | GB | RIPE | UK-C4L-20040922 | 497e5c4de8345bf442dff3778583cf44 | http://www.streamware-dev.com/cdexwiz17.exe || 2012-02-04 18:16:28 | sub16 | avira | JS/Decdec.psc | 22/39 (56.4%) | AS30475 | 68.71.135.34 | noc@wehostwebsites.com | US | ARIN | NET-WEHOST-3 | 49d65bb49c1e476ff2ddf90a7b3f0df5 | http://www.tagoffshore.net/menu.js || 2012-02-04 18:16:28 | sub16 | clamav | PUA.Packed.ASPack | 10/38 (26.3%) | AS16265 | 213.142.137.33 | ipabuse@adeox.com | TR | RIPE | ADEOXNET | 5ccebe2131dca8b19e88ec89fdd5387c | http://www.tatilvitrini.com/balayi/fuga_fine_times_oteli/Album_de_fotos.exe || 2012-02-04 18:16:28 | sub16 | Antiy_AVL | HackTool/Win32.BlackHole.gen | 1/40 (2.5%) | AS19916 | 216.71.185.15 | abuse@support.olm.net | US | ARIN | OLM-03 | 25a3de23f97d77d178e9611c87bb3a7d | http://www.techsono.com/supernzbwin/SuperNZB-Setup.exe || 2012-02-04 18:16:29 | sub16 | avira | ADWARE/Relevant.377472 | | AS11798 | 74.220.207.173 | abuse@bluehost.com | US | ARIN | BLUEHOST-NETWORK-2 | 1b6f25b3ace8a049c3b34b633723f2e5 | http://www.tompegx.com/downloads/apex-free-psp-converter.exe || 2012-02-04 18:16:29 | sub16 | eSafe | Win32.Banker | 2/40 (5%) | AS32475 | 69.175.66.250 | netops@singlehop.com | US | ARIN | SINGLEHOP | 05f10d2b2db33d9f8b3a354c6d67fc61 | http://www.updatedrivers.jupitersoftwares.com/5/DeinstallAntivirus/Run-CompleteUninstall.exe || 2012-02-04 18:16:29 | sub16 | eSafe | Win32.Artemis | 4/40 (10%) | AS20773 | 80.237.132.126 | net-abuse@hosteurope.de | DE | RIPE | HE-SH-CGN-NET | a95e6f84922795bbeb1b46f90a7a0230 | http://www.win-screensavers.com/screensavers/navyfrigates_ev.exe || 2012-02-04 18:16:29 | sub16 | DrWeb | SCRIPT.Virus | 1/40 (2.5%) | AS5577 | 212.117.163.101 | abuse@as5577.net | LU | RIPE | SERVER-NETWORK | e6fa6739352d3c18b08c3aa10ad12cfa | http://www.xup.in/dl,13404044/CASHANTRAG_20120203_232845_34EF7B3EF5ECEEE6F94F1BECFC23B74Dcash_23648.pdf/ || 2012-02-04 18:16:29 | sub16 | DrWeb | SCRIPT.Virus | 1/40 (2.5%) | AS5577 | 212.117.163.101 | abuse@as5577.net | LU | RIPE | SERVER-NETWORK | fe38a4df6c2f672ec41caa0d672a085b | http://www.xup.in/dl,30277296/WoWPatcher(15211)nossc.zip/ || 2012-02-04 18:16:29 | sub16 | DrWeb | SCRIPT.Virus | 1/37 (2.7%) | AS5577 | 212.117.163.101 | abuse@as5577.net | LU | RIPE | SERVER-NETWORK | 406997f0cacb26879082cf003ffd1bc4 | http://www.xup.in/dl,80253111/Ukash_and_PSC.rar/ || 2012-02-04 18:16:29 | sub16 | DrWeb | SCRIPT.Virus | 1/40 (2.5%) | AS5577 | 212.117.163.101 | abuse@as5577.net | LU | RIPE | SERVER-NETWORK | 9b34ae4f10c19e9c43f27c08c03e1396 | http://www.xup.in/xdownload.php?fid=45511092&fname=Habbo.rar&xerror=YToxOntpOjA7czoxNDoiRkFMU0VfUEFTU1dPUkQiO30= || 2012-02-04 18:16:29 | sub16 | ClamAV | PUA.JS.Iframe | 4/42 (9.5%) | AS17090 | 76.72.164.11 | support@databasebydesignllc.com | US | ARIN | DBDLLC-PHL-401 | 47768ac86611724b64dfb18f189c9a62 | http://zamalek.tv/index.php?id=11589&loc=news&mid= || 2012-02-04 18:16:29 | sub16 | ClamAV | PUA.JS.Iframe | 1/40 (2.5%) | AS17090 | 76.72.164.11 | support@databasebydesignllc.com | US | ARIN | DBDLLC-PHL-401 | f00d556e6884ef00ae9d6f1579f36665 | http://zamalek.tv/index.php?id=11607&loc=news&mid= || 2012-02-04 18:16:29 | sub16 | ClamAV | PUA.JS.Iframe | 4/40 (10%) | AS17090 | 76.72.164.11 | support@databasebydesignllc.com | US | ARIN | DBDLLC-PHL-401 | 47768ac86611724b64dfb18f189c9a62 | http://zamalek.tv/index.php?loc=news&id=11589 || 2012-02-04 18:16:29 | sub16 | ClamAV | PUA.JS.Iframe | 4/40 (10%) | AS17090 | 76.72.164.11 | support@databasebydesignllc.com | US | ARIN | DBDLLC-PHL-401 | 43b2886be112230eccefb4d1a184471f | http://zamalek.tv/index.php?loc=news&id=11615 || 2012-02-04 18:16:29 | sub16 | ClamAV | PUA.JS.Iframe | 4/39 (10.3%) | AS17090 | 76.72.164.11 | support@databasebydesignllc.com | US | ARIN | DBDLLC-PHL-401 | d507b5b09e8705027dcddaaf14d6c155 | http://zamalek.tv/index.php?loc=news&id=11618 || 2012-02-04 18:16:29 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 16/40 (40%) | AS32392 | 98.130.36.177 | abuse@ecommerce.com | US | ARIN | ECOMMERCE-HOSTING | 548070fe6e69f554edf1e68ba2835326 | http://zanettiland.com/Photos/Travel/2006/Germany/slides/DSC07132.html || 2012-02-04 18:16:29 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 16/40 (40%) | AS32392 | 98.130.36.177 | abuse@ecommerce.com | US | ARIN | ECOMMERCE-HOSTING | 2f39c315888f44621a35d9e46fa46804 | http://zanettiland.com/Photos/Travel/2006/Germany/slides/DSC07149.html || 2012-02-04 18:16:29 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 16/40 (40%) | AS32392 | 98.130.36.177 | abuse@ecommerce.com | US | ARIN | ECOMMERCE-HOSTING | 990dc8e107ff16de0c93d7ce0f6bb811 | http://zanettiland.com/Photos/Zoe/ZoeTurnsOne/album/slides/PICT0029.html || 2012-02-04 18:16:29 | sub16 | ClamAV | PUA.HTML.Crypt-11 | 14/39 (35.9%) | AS34754 | 88.87.0.184 | office@magibg.com | BG | RIPE | TELNET-MAN-NET | 0165e174aed93c1ccdd9b4dffbbdc644 | http://zavesata.com/page.php?158%3Ascript11= || 2012-02-04 18:16:29 | sub16 | avira | JS/Agent.Inf.673 | 13/38 (34.2%) | AS4250 | 208.123.214.136 | abuse@alentus.com | US | ARIN | ALENT-NBLK-5 | 5b9de2e1924a584a2c1378787d042fbd | http://zikframe.com/caribcricket/slideshow.asp?id=zima8715ps517 || 2012-02-04 18:16:29 | sub16 | avira | TR/PSW.Agent.sbs | 21/40 (52.5%) | AS41947 | 195.216.243.40 | abuse@compubyte.vg | GB | RIPE | COMPUBYTE-NET | cbe8c745523529855a1654405086f5a5 | http://zismo.ru/vkontakte/VkFriendAdder.rar || 2012-02-04 17:07:03 | sub8 | undef | WebToolbar.Win32.RK.cr | 0/40 (0.0%) | AS29131 | 87.117.239.136 | sales@bpweb.net | GB | RIPE | BP-INTERACTIVE-1 | 712e007f9dfcb5c30bef6f8d84018903 | http://www.redroadflats.org.uk/wp-content/pageflip/books/ || 2012-02-04 17:47:15 | sub8 | undef | Trojan.Win32.Inject.cuxy | 0/39 (0.0%) | AS36420, AS30315, AS13749, AS21844 | 184.173.245.54 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-17 | aa9d5b46e477e78c18f65a7f239d929d | http://www.mathisonengineering.com/ || 2012-02-04 17:47:18 | sub8 | undef | Trojan-Dropper.Win32.Injector.cmkm | 0/40 (0.0%) | AS32244 | 67.225.166.114 | abuse@liquidweb.com | US | ARIN | LIQUIDWEB-8 | 2bee3d3260376b3e02996afe477f39cb | http://www.manabar.com.au/ || 2012-02-04 17:47:19 | sub8 | undef | Trojan-Dropper.Win32.Injector.cmkm | 0/40 (0.0%) | AS10318 | 201.235.253.65 | noc@fibertel.com.ar | AR | LACNIC | AR-CASA10-LACNIC | 0d3f76cc75afc2b76f26cddbc4a3ec8b | http://randomparty.com.ar/ || 2012-02-04 17:47:33 | sub8 | undef | Trojan.Win32.VBKrypt.jafa | 0/39 (0.0%) | AS11798 | 74.220.207.83 | abuse@bluehost.com | US | ARIN | BLUEHOST-NETWORK-2 | a44c07a31af820c3e8d6d223644ebdfe | http://dejangorgievski.com/pomk/ || 2012-02-04 17:47:53 | sub8 | undef | Trojan.Win32.VBKrypt.jafa | 0/40 (0.0%) | AS30071, AS3356, AS29117, AS3549, AS1239, AS3561, AS6461, AS4436 | 173.214.184.160 | webmaster@kvchosting.com | US | ARIN | KVCHO | 4792acb69f3ace1fcedf4a687fb99b9e | http://comandovermelho.org/test-skins-images/ || 2012-02-04 18:50:05 | sub16 | NOD32 | Win32/Adware.ADON | 1/40 (2.5%) | AS36420, AS30315, AS13749, AS21844 | 70.85.178.186 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-13 | 44970916f895bb15577172e7f30deffc | http://www.scanwithfiles.com/files/unlocker-1.9.1.zip || 2012-02-04 18:50:05 | sub16 | avira | ADSPY/NaviPromo.J | 12/40 (30%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 6977caf714ca5d41e2505e66da09deed | http://www.toptenreport.com/download/r-out.exe || 2012-02-04 19:10:06 | sub16 | avira | ADWARE/Agent.1886395 | 23/40 (57.5%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 8150183578081467a833bf6d355f4cde | http://www.toptenreport.com/download/YouTubeDownload.exe || 2012-02-04 19:20:06 | sub16 | avira | ADWARE/Agent.1911579.1 | 16/40 (40%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 0a8a3e32e3edc419e7f066ac8f7f26c9 | http://www.toptenreport.com/download/deletedr.exe || 2012-02-04 19:30:07 | sub16 | Avast | Win32:MediaGet-B PUP | 4/40 (10%) | AS41947 | 92.241.182.191 | abuse@wahome.ru | RU | RIPE | WAHOME-COLO | 857d6cc8ecfbe3f10977ff1f014aeed9 | http://www.mediaget.com/download.php?os=windows || 2012-02-04 19:40:06 | sub24 | avira | EXP/Pidief.atm | 19/40 (47.5%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | cbc43ac49067755db620cb39be522601 | http://108.59.5.66/content/fdp2.php?f=57 || 2012-02-04 19:40:06 | sub24 | avira | EXP/Pidief.atm | 19/40 (47.5%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | b7d43d201df336a15af9cd53dd9317bf | http://108.59.5.66/content/fdp2.php?f=82 || 2012-02-04 19:40:06 | sub24 | avira | EXP/Pidief.att | 21/40 (52.5%) | AS6760 | 77.72.129.120 | abuse@ripe.net | EU | RIPE | EU-ZZ-80-93 | fac67579dc9fe14528bf3fd51f1292f1 | http://77.72.129.120/content/adfp1.php?f=0 || 2012-02-04 19:40:06 | sub24 | avira | EXP/Pidief.att | 21/40 (52.5%) | AS6760 | 77.72.129.120 | abuse@ripe.net | EU | RIPE | EU-ZZ-80-93 | d2934b304391680a82d2bd594314c04f | http://77.72.129.120/content/adfp1.php?f=35 || 2012-02-04 19:40:06 | sub24 | avira | EXP/Pidief.att | 21/40 (52.5%) | AS6760 | 77.72.129.120 | abuse@ripe.net | EU | RIPE | EU-ZZ-80-93 | fc7bc9243d769f23bd3a66b4cd864be4 | http://77.72.129.120/content/adfp1.php?f=64 || 2012-02-04 19:40:06 | sub24 | avira | EXP/Pidief.att | 22/40 (55%) | AS6760 | 77.72.129.120 | abuse@ripe.net | EU | RIPE | EU-ZZ-80-93 | ee6909ffbb26db42f793ddb1e2011618 | http://77.72.129.120/content/adfp1.php?f=88 || 2012-02-04 19:40:06 | sub24 | avira | EXP/Pidief.att | 21/40 (52.5%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | 78348ca0bf1bf673147f0f1462e73116 | http://79.137.237.66/content/adfp1.php?f=33 || 2012-02-04 19:40:06 | sub24 | avira | EXP/Pidief.att | 21/40 (52.5%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | 93c653651db0d51e901aa2fb8a17872c | http://79.137.237.66/content/adfp1.php?f=58 || 2012-02-04 19:40:06 | sub24 | avira | EXP/Pidief.atm | 19/40 (47.5%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | f415db3837e86bb900b2db2c05d3c18a | http://79.137.237.66/content/fdp2.php?f=42 || 2012-02-04 19:40:06 | sub16 | avira | JS/iFrame.GT.1 | 22/40 (55%) | AS19066 | 96.30.33.232 | abuse@wiredtree.com | US | ARIN | WIREDTREE | 3b90d3a61d92b5941f2f5132d1155edf | http://blogdelcoche.es/sin-categoria/espana-no-habra-ayudas-economicas-p || 2012-02-04 19:50:05 | sub16 | avira | JS/iFrame.GT.1 | 22/40 (55%) | AS19066 | 96.30.33.232 | abuse@wiredtree.com | US | ARIN | WIREDTREE | 5d87897cd5eaff5f7970dab074c1f2ce | http://blogdelcoche.es/bmw/bmw-z4-sdrive35is-en-breve-en-las-calles-de-e || 2012-02-04 19:50:05 | sub16 | avira | JS/iFrame.GT.1 | 22/40 (55%) | AS19066 | 96.30.33.232 | abuse@wiredtree.com | US | ARIN | WIREDTREE | 07e3f9ccddf8b720a84f4a85e8d652c0 | http://blogdelcoche.es/lancia/espana-disfrutara-del-lancia-delta-multiai || 2012-02-04 19:50:05 | sub16 | avira | JS/iFrame.GT.1 | 22/40 (55%) | AS19066 | 96.30.33.232 | abuse@wiredtree.com | US | ARIN | WIREDTREE | 88ac20a021d794ccfba782dc21ea71ce | http://blogdelcoche.es/sin-categoria/ayudas-economicas-en-galicia-para-a || 2012-02-04 19:50:05 | sub16 | avira | ADWARE/Agent.1886568 | 18/40 (45%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 2651a1ee4f13d5493ed8edb37446e85c | http://www.toptenreport.com/download/frostwire-ez-booster-free.exe || 2012-02-04 19:50:05 | sub16 | avira | ADSPY/NaviPromo.J | 14/42 (33.3%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | bc651aeca1e3a690f6fbf864fd889eb3 | http://www.toptenreport.com/download/MSOfficeDocumentRecoveryDownloader.exe || 2012-02-04 20:10:04 | sub7 | avira | PHP/Zapchast.X | 11/40 (27.5%) | AS16276 | 213.186.33.17 | abuse@ovh.net | FR | RIPE | OVH | ccb9e1bbb7dbb46819f54f1639a51621 | http://afudesign.com/upload/rico.txt? || 2012-02-04 20:11:34 | sub16 | avira | JS/Redirector.psp | 23/40 (57.5%) | AS6724 | 81.169.145.159 | abuse@strato.de | DE | RIPE | STRATO-RZG-KA | 0eb52fbf514885b65259c32a63ede931 | http://www.codigoslive.es/blog/general/el-parche-1-1-de-the-witcher-2-el || 2012-02-04 20:11:34 | sub16 | avira | JS/Agent.akj | 17/40 (42.5%) | AS29789 | 64.210.152.90 | abuse@reflected.net | US | ARIN | REFLECTED-2 | ce0a37ecae355e6c5da08d1d525921e4 | http://www.cutearcade.com/jquery-1.2.2.pack.js || 2012-02-04 20:11:34 | sub16 | avira | JS/iFrame.GM.4 | 17/40 (42.5%) | AS29671 | 77.232.67.100 | abuse@servage.net | EU | RIPE | SRVG-NET-FL1-H1 | f96f85d0533f522c67ba2df486ee7199 | http://www.jorgefuster.es/index.php?showimage=9 || 2012-02-04 20:11:34 | sub16 | avira | ADWARE/Agent.1817630.1 | 12/43 (27.9%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 6305e29dc61d2ec56aa12ffc7a21857f | http://www.toptenreport.com/download/azta_pad.exe || 2012-02-04 20:40:06 | sub16 | avira | ADWARE/Agent.1886537 | 18/40 (45%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | f731f52164887f1283557a84a5facb3f | http://www.toptenreport.com/download/ForumDominatorSetup.exe || 2012-02-04 20:40:06 | sub16 | avira | ADSPY/NaviPromo.J | 14/40 (35%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 37c893db61d9c7a959271c7304d077bc | http://www.toptenreport.com/download/TheStrokeofMidnightDownloader.exe || 2012-02-04 21:10:06 | sub16 | avira | ADSPY/NaviPromo.J | 8/40 (20%) | AS41550 | 91.207.44.10 | abuse@hostbizua.com | UA | RIPE | FUIR-MNT | f5075133d3ebf10a1e008f929c0af941 | http://falcogames.com/HeliRacerSetup.exe || 2012-02-04 21:10:27 | sub16 | avira | ADWARE/Adware.2807808 | 17/40 (42.5%) | AS11388 | 216.65.3.213 | abuse-mh@peer1.com | US | ARIN | 216-65-0-0-NET | f33b7c4904d4d3bd67f60ce27b003fe5 | http://www.cashfiesta.com/download/y/FiestaBarInstall.exe || 2012-02-04 21:10:27 | sub16 | avira | ADSPY/NaviPromo.J | 13/40 (32.5%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 8544dc4cba7ac7aeebb6a30dca0b84af | http://www.toptenreport.com/download/108.exe || 2012-02-04 21:20:06 | sub16 | avira | ADSPY/NaviPromo.J | 10/39 (25.6%) | AS6939 | 184.105.174.172 | abuse@he.net | US | ARIN | HURRICANE-11 | 3a66df49c9091adcf4469c98deaa6fc2 | http://www.dvdtompegx.com/download/PlatoVideo2PPC.exe |+---------------------+-------------+-------------+------------------------------------+---------------+------------------------------------------------------------------+-----------------+-----------------------------------------+---------+--------+----------------------------+----------------------------------+------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+200 rows in set (0.08 sec)
+---------------------+-------------+---------------+------------------------------+---------------+------------------------------------+-----------------+--------------------------------------------------------------------+---------+--------+-------------------------+----------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| date | contributor | scanner | virusname | vt_score | AS | review | email | country | source | netname | md5sum | url |+---------------------+-------------+---------------+------------------------------+---------------+------------------------------------+-----------------+--------------------------------------------------------------------+---------+--------+-------------------------+----------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| 2012-02-04 21:40:06 | sub18 | avira | PHP/PBot.A.6 | 30/39 (76.9%) | AS39729 | 81.88.48.95 | abuse@register.it | IT | RIPE | REGISTERIT03 | 21832ea0ce6d16e1f11ede06f8443c3d | http://www.mcimmo.fr//wp-content/themes/estate/pani1.jpg?? || 2012-02-04 21:40:06 | sub18 | clamav | PHP.Downloader | 1/39 (2.6%) | AS39729 | 81.88.48.95 | abuse@register.it | IT | RIPE | REGISTERIT03 | d2e052c8541277f0ba713400c3be945c | http://www.mcimmo.fr//wp-content/themes/estate/pani2.jpg?? || 2012-02-04 21:50:09 | sub16 | avira | TR/Graftor.7707.6 | 19/39 (48.7%) | AS34788 | 85.13.139.9 | ip@all-inkl.com | DE | RIPE | DE-ALL-INKL-20050405 | e81070463a4e745a02d5d79f58084b0d | http://www.trainer-paradies.de/portal/download.php?id=10391 || 2012-02-04 22:00:05 | sub16 | avira | SPR/KeyLogger.P.2 | 32/41 (78%) | AS16276 | 94.23.81.156 | abuse@ovh.net | ES | RIPE | ES-OVH | f1e1a63e6416244397682df86a3b6853 | http://keylogger-douglas.descargar.es/descarga-directa.php?x=45& || 2012-02-04 22:10:48 | sub16 | AhnLab_V3 | Dropper/Agent.22528.AA | 15/40 (37.5%) | AS36420, AS30315, AS13749, AS21844 | 174.120.29.158 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 951bd861a8adb5513fa57dab1bc65551 | http://www.carrentingsolutions.com/demo.exe || 2012-02-04 22:10:49 | sub16 | eSafe | Win32.Artemis | 7/40 (17.5%) | AS32475 | 69.175.71.50 | netops@singlehop.com | US | ARIN | SINGLEHOP | 14c4c6ea6ded3accf382b1404e251855 | http://www.virus-reporter.com/psp/downloadsforpsp/downloadsforpsp.exe || 2012-02-04 17:48:01 | sub8 | undef | Trojan.Win32.Jorik.Lethic.bz | 0/39 (0.0%) | AS21788 | 66.197.144.38 | abuse@hostnoc.net | US | ARIN | HOSTNOC-2BLK | 5b6d74f1453e20c09d6a20d909779ad7 | http://66.197.144.38/ || 2012-02-04 23:10:51 | sub10 | AntiVir | TR/Offend.kdv.525834 | 20/38 (52.6%) | AS28753 | 188.72.248.146 | abuse@leaseweb.de | DE | RIPE | DE-NETDIRECT-20090709 | cb3febdb3ea03414082bed031e45df33 | http://188.72.248.146/1.exe || 2012-02-04 23:10:51 | sub10 | BitDefender | Trojan.Generic.7189327 | 12/38 (31.6%) | AS50673 | 46.249.56.112 | abuse@serverius.nl | NL | RIPE | NL-SERVERIUS-20101229 | ae4abdf73992f25cc40f6a782297ba53 | http://46.249.56.112/tutorial/dedrf5.exe || 2012-02-04 23:10:53 | sub16 | avira | ADWARE/Relevant.377472 | 6/40 (15%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 225a7179d25b501ddfcf58f35d5e02a5 | http://www.bostonhitech.com/sdownload/icytowerinstaller4000.exe || 2012-02-04 23:40:06 | sub16 | avira | SPR/PSW.FirePass.ir.1 | 11/40 (27.5%) | AS10316 | 64.150.191.172 | abuse@codero.com | US | ARIN | CODERO2008A | c7019099b1c206128c2e83c0a9b44afc | http://securityxploded.com/getfile.php?id=2510 || 2012-02-04 23:50:04 | sub16 | Ikarus | Trojan-Dropper.FakeAle | 7/40 (17.5%) | AS32475 | 69.175.66.250 | netops@singlehop.com | US | ARIN | SINGLEHOP | a1970a1fea5299a8d62cded29d0887f9 | http://www.trishulsoft.com/tv/internettvchannels/internettvchannels.exe || 2012-02-05 00:20:08 | sub16 | avira | TR/Spy.Gen | 2/40 (5%) | AS26347 | 173.236.163.61 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | fdb61f10f8b44fa2d1683d5fc27f5644 | http://www.feeplay.com/download/make-money-minutes.exe || 2012-02-05 00:30:08 | sub16 | Antiy_AVL | Packed/Win32.Black.gen | 9/39 (23.1%) | AS26347 | 69.163.162.87 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK9 | b5f404b7212859e9e86e47ed9fc240cc | http://the-best-soft.com/softwares/linksniffer/LinkSnifferSetup.zip || 2012-02-05 00:30:10 | sub16 | Avast | HTML:Framer-inf Trj | 2/40 (5%) | AS22489 | 69.43.161.170 | abuse@castleaccess.com | US | ARIN | ARIN-CASTLE-ALLOC | 96971e72c4f72fd0af6114be0128cda2 | http://zz87jhfda88.com/ || 2012-02-05 00:40:06 | sub16 | avira | PHISH/TAM.A | 5/40 (12.5%) | AS36351 | 67.228.43.248 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-5 | ee1de369222f337dd80ad1e792527aed | http://ww2-milhas2012.com/index.php || 2012-02-05 00:49:38 | sub7 | undef | unknown_html_RFI | 0/40 (0.0%) | AS9318 | 210.219.173.11 | abuse@skbroadband.com | kr | APNIC | HANANET-INFRA | 0bff34275815a558ec0bfe1a7a2a7eb2 | http://sbsc.kaia.or.kr/GMMS_2011/system_step1.asp || 2012-02-05 00:49:38 | sub7 | undef | unknown_html_RFI | 0/40 (0.0%) | AS9318 | 210.219.173.11 | abuse@skbroadband.com | kr | APNIC | HANANET-INFRA | 9545221ec30bb3bbee7a65ebc87990d6 | http://sbsc.kaia.or.kr/GMMS_2011/user_info.asp || 2012-02-05 01:10:06 | sub16 | avira | SPR/Tool.Brutus.A.5 | 30/43 (69.8%) | AS20712 | 217.169.3.56 | abuse@a-charge-is-made-for-passing-on-copyright-notices.bill.me.uk | GB | RIPE | UK-AA-20010322 | 1e40a2f8de389bb662f8322e05f28c6d | http://www.hoobie.net/brutus/brutus-aet2.zip || 2012-02-05 01:20:04 | sub10 | avira | TR/Spy.Gen | 24/40 (60%) | AS4134 | 222.77.99.140 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-FJ | aeb14a0b00235514bcdee473aa54a745 | http://222.77.99.140/article/images/jaroda.exe || 2012-02-05 01:30:05 | sub16 | avira | HTML/Rce.Gen | 15/39 (38.5%) | AS25532 | 90.156.201.45 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-HOSTING | c7281f67d9971224b3346ea829107961 | http://dommeda.ru/ || 2012-02-05 01:40:07 | sub16 | avira | JS/Infected.B | 25/39 (64.1%) | AS32475 | 173.236.10.26 | netops@singlehop.com | US | ARIN | SINGLEHOP | c6efa65c1fb19c3920f1a255afc0cf33 | http://2673719426.com/wp-content/plugins/wp-cirrus/wp_cirrus_gwt/wp_cirrus_gwt.nocache.js?ver=0.6.7 || 2012-02-05 01:40:07 | sub16 | avira | JS/Infected.B | 27/39 (69.2%) | AS32475 | 173.236.10.26 | netops@singlehop.com | US | ARIN | SINGLEHOP | 979a0e65ce637e8bc992fd8d70e13bc9 | http://2673719426.com/wp-includes/js/jquery/jquery.js?ver=1.6.1 || 2012-02-05 01:40:08 | sub16 | avira | HTML/Rce.Gen | 7/40 (17.5%) | AS36420, AS30315, AS13749, AS21844 | 174.122.1.108 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | c5832eabe0553ff0a58633fbc8713229 | http://megacompartilhador.com/?option=com_user&view=login&return=aHR0cDovL3d3dy5tZWdhY29tcGFydGlsaGFkb3IuY29tL2Nkcy9yb2NrLWludGVybmFjaW9uYWwvNzQtZG93bmxvYWQtbmlja2VsYmFjay1uby1yZXNwZWN0LTIwMTA= || 2012-02-05 01:40:08 | sub16 | avira | HTML/Rce.Gen | 7/39 (17.9%) | AS36420, AS30315, AS13749, AS21844 | 174.122.1.108 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 7a1a10efdbc03e23785fbb515d5a9cce | http://megacompartilhador.com/?option=com_user&view=login&return=aHR0cDovL3d3dy5tZWdhY29tcGFydGlsaGFkb3IuY29tL3JldmlzdGFzLzQyLXJldmlzdGFzLzEyNC1kb3dubG9hZC1sYW5ndWFnZS1uZXR3b3Jrcy10aGUtbmV3LXdvcmQtZ3JhbW1hcg== || 2012-02-05 01:40:09 | sub16 | avira | JS/Dldr.Agent.agb | 20/40 (50%) | AS32475 | 69.175.22.250 | netops@singlehop.com | US | ARIN | SINGLEHOP | 9d099525d39c83ecd87f82897294d5c2 | http://www.discountbooksandmore.com/ || 2012-02-05 01:40:09 | sub16 | avira | JS/Dldr.Agent.agb | 20/40 (50%) | AS32475 | 69.175.22.250 | netops@singlehop.com | US | ARIN | SINGLEHOP | c731843d929d5e716e3158ef8384a691 | http://www.discountbooksandmore.com/img/p/ || 2012-02-05 01:40:09 | sub16 | BitDefender | Trojan.Generic.KD.526517 | 12/40 (30%) | AS2856 | 94.126.40.144 | abuse@ai270.net | GB | RIPE | AI-NET | 3b4640a9e78ee79366ad747fe7f94384 | http://www.swagknife.com/TwitApplication.exe || 2012-02-05 02:20:04 | sub10 | BitDefender | Trojan.Generic.7188806 | 11/40 (27.5%) | AS50673 | 46.249.56.112 | abuse@serverius.nl | NL | RIPE | NL-SERVERIUS-20101229 | ee9728a988768d26d9d3e21766723284 | http://46.249.56.112/tutorial/vdesrecfde.exe || 2012-02-05 02:20:12 | sub20 | avira | TR/Crypt.TPM.Gen | 28/40 (70%) | AS14618 | 174.129.0.56 | aes-noc@amazon.com | US | ARIN | AMAZON-EC2-5 | bcbecc7b93280cdfae86f4290d12608c | http://dl.dropbox.com/u/60548730/clovis.jpg || 2012-02-05 03:00:13 | sub16 | avira | ADWARE/Agent.1892415.1 | 15/40 (37.5%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | c8846cf05312e4b99175262324dd6c5e | http://www.toptenreport.com/download/systools-outlook-to-notes8.exe || 2012-02-05 03:20:03 | sub16 | clamav | Trojan.Clicker-86 | 17/40 (42.5%) | AS36420, AS30315, AS13749, AS21844 | 174.120.240.73 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 8c92b6c9e00406457716f1533fdf9872 | http://100thingstodobeforeyoudie.org/wholesaleabercrombie/target.exe || 2012-02-05 03:20:04 | sub16 | eSafe | Win32.Banker | 2/40 (5%) | AS32475 | 69.175.66.250 | netops@singlehop.com | US | ARIN | SINGLEHOP | 19832dfb42086157534b2e482d40d8f6 | http://driverbackup.antispywareconsumerreport.com/reg/RegistrySoftware/Run-RegistryFixer.exe || 2012-02-05 03:20:05 | sub16 | F_Prot | File is damaged | 1/40 (2.5%) | AS30099 | 64.34.179.136 | abuse@serverbeach.com | US | ARIN | PEER1-SERVERBEACH-02A | 6fe59d33704ca0a3f7a6794c722b2106 | http://www.audiobloc.com/apps/PEI/Charlottetown-PEI.exe || 2012-02-05 03:20:06 | sub16 | avira | ADWARE/Agent.1923746 | 12/40 (30%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 069cda546dc493c416f39ada80ba0617 | http://www.toptenreport.com/download/MysteryGamesArt.exe || 2012-02-05 03:40:09 | sub16 | F_Prot | File is damaged | 1/40 (2.5%) | AS18866 | 69.50.209.95 | abuse@atjeuhosting.com | US | ARIN | ATJEU | 4ac42993a0c1e427ef76b3ec07029d9a | http://www.optinsecretsexposed.com/gs/gs.exe || 2012-02-05 04:00:07 | sub16 | avira | TR/Crypt.XPACK.Gen | 29/40 (72.5%) | AS4134 | 113.12.64.54 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-GX | 9ad35126951ad3d42ec968d114a478c8 | http://1683.003zzywz.com/nf5nf6/images/adv/c3.jpg || 2012-02-05 04:00:12 | sub16 | avira | JS/Clicker.CA | 31/40 (77.5%) | AS29854 | 206.130.120.197 | noc@westhost.com | US | ARIN | WESTHOST-NOC | 42439a92bd2bed624feab28c69ba7259 | http://morganballantyne.com/ || 2012-02-05 04:00:15 | sub16 | CAT_QuickHeal | Worm-PswZIP | 1/40 (2.5%) | AS36420, AS30315, AS13749, AS21844 | 184.172.136.129 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-17 | b6ea25ff78016372ccdb9d5f14e157d1 | http://www.oggledigital.com/downloads/ZSNES.Setup1.51.exe || 2012-02-05 04:00:15 | sub16 | Jiangmin | Trojan/JboxGeneric.dot | 1/40 (2.5%) | AS26496 | 72.167.246.181 | noc@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 095a33b71ee9ee0ebdf51f8c1f9eda91 | http://www.softcns.com/downloads/avnex/webcam.exe || 2012-02-05 04:00:15 | sub16 | avira | HTML/Infected.WebPage.Gen | 20/40 (50%) | AS4323 | 199.227.201.35 | abuse@twtelecom.net | US | ARIN | ESPIRE-11BLK | bf09fda8ae39def22f06ccd1efebe12b | http://www.tipitinas.com/Clubs/Uptown/uptown.html || 2012-02-05 04:10:14 | sub10 | avira | ADWARE/Sidetab.1.3 | 31/40 (77.5%) | AS9318 | 180.71.56.240 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | 53e89fab888d8e94713cca8e86b8184f | http://file.topguide.co.kr/dst/FineTop_FT67.exe || 2012-02-05 04:20:07 | sub16 | eSafe | Win32.MiscDigRiver | 6/40 (15%) | AS35916 | 204.13.155.243 | noc@multacom.com | US | ARIN | 2GMCORPNET1 | d32ca8178d46089655dcaeefdb77c91f | http://www.allconvertertools.com/download/ipodconvsuite.exe || 2012-02-05 04:20:08 | sub16 | eSafe | Win32.Banker | 4/40 (10%) | AS32475 | 69.175.66.250 | netops@singlehop.com | US | ARIN | SINGLEHOP | 33aeed68d0b9f0ef60fec3a4447ddf3b | http://www.spywareremover.antispywareconsumerreport.com/4/UninstallUtorrent/Run-UninstallerSoftware.exe || 2012-02-05 04:20:08 | sub16 | avira | ADSPY/NaviPromo.J | 13/40 (32.5%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | dddb51e4b8c5f4f54bac4c621ef1f164 | http://www.toptenreport.com/mapilab/mirandapassworddecryptor_padfile.exe || 2012-02-05 04:40:07 | sub16 | clamav | Trojan.Agent-250214 | 6/40 (15%) | AS36420, AS30315, AS13749, AS21844 | 184.173.219.200 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-17 | be1b9d34567436f84095c12302197a26 | http://www.macvideosoft.com/software/macvideo_a3gpconverter.exe || 2012-02-05 05:00:13 | sub16 | avira | ADSPY/NaviPromo.J | 14/40 (35%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | d5154b11b5ca352d79c8305debd1e683 | http://www.toptenreport.com/download/rar-password-decryption-2011-09-01.exe || 2012-02-05 05:50:09 | sub16 | avira | TR/SPY.KeyLogger.lcr | 25/40 (62.5%) | AS42331 | 193.200.173.58 | boss@freehost.com.ua | UA | RIPE | FREEHOST2 | ae6b0bd13900f7c18f5ae7e4ac4a65ce | http://softhint.ru/downloads/LoginsGenerator.rar || 2012-02-05 05:50:10 | sub16 | avira | PHISH/PayPal.DI | 9/40 (22.5%) | AS26347 | 75.119.218.67 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK8 | 5ef786ca4ffb1cc2e44d935d20813db4 | http://www.nsginternational.com/https:paypal.com.us.cgi.bin.webscr.cmd.login.5655637r665g5g5634554gh56ge46hy654/655637r665g5g5634554gh56ge46hy654fggf5485f487549879667/paypal.com/xx/ || 2012-02-05 06:00:14 | sub7 | avira | PHP/Loader.9852 | 22/41 (53.7%) | AS24994 | 89.31.72.50 | l.corbacella@gif.it | IT | RIPE | GENESYS-NET | cc1abe36f9d12f5493fef190b085638a | http://www.bibitalbrianzashop.it/images/icons/publish.jpg?? || 2012-02-05 06:00:14 | sub7 | avira | PHP/PBot.A | 33/42 (78.6%) | AS2914 | 213.198.35.81 | abuse@us.ntt.net | DE | RIPE | WWW-SERVICE | c9b98f6d38ef8c4f100aea2a11a4971a | http://www.titana.com/catalog/images/forum/rabot.txt?? || 2012-02-05 06:00:17 | sub16 | AVG | JS/Downloader.Agent | 6/40 (15%) | AS44112 | 77.222.40.207 | abuse@sweb.ru | RU | RIPE | SpaceWeb | 03f4ea332b40c73e754f40134194db44 | http://ribiu-ryazan.ru/forum/memberlist.php?mode=viewprofile || 2012-02-05 06:00:57 | sub16 | TheHacker | Trojan/Dropper.VB.aprb | 1/39 (2.6%) | AS32475 | 69.175.66.250 | netops@singlehop.com | US | ARIN | SINGLEHOP | a25399aef8c794fc680cd0cb493d9890 | http://updatedrivers.jupitersoftwares.com/drv/ToshibaDriverUpdate/Run-DriverUpdater.exe || 2012-02-05 06:30:20 | sub16 | AVG | Exploit.EFF | 14/40 (35%) | AS24940 | 78.46.69.154 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET | 3a8ebe0e50ad38a5bcf44a97670e10a4 | http://aluigi.altervista.org/fakep/sampfp.zip || 2012-02-05 06:50:06 | sub16 | Antiy_AVL | Trojan/JS.Redirector | 16/40 (40%) | AS2044 | 66.11.225.247 | abuse@dotster.com | US | ARIN | DOTSTERNET | d4ff0478edfe5c13fd762c010d256911 | http://deckjm.fortunecity.com/cranberrc2/oyzhu.js || 2012-02-05 06:50:08 | sub16 | Avast | HTML:Paylap-L Trj | 4/40 (10%) | AS32475 | 184.154.100.242 | abuse@singlehop.com | US | ARIN | SINGLEHOP | a31b51a10a0db1b9d522aa67fe2f7f71 | http://volshebniedeti.ru/post/post.php || 2012-02-05 07:10:07 | sub24 | avira | EXP/Pidief.atm | 19/40 (47.5%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 2a4cea3395eabd8ad133247af4121546 | http://108.59.5.66/content/fdp2.php?f=134 || 2012-02-05 07:10:07 | sub24 | avira | EXP/Pidief.atm | 19/40 (47.5%) | AS30633 | 108.59.5.66
Topic: clean mx's daily dirt (Read 4195685 times)
