0 Members and 2 Guests are viewing this topic.
+---------------------+-------------+------------------+------------------------------------------+---------------+---------------------------------------------+-----------------+-------------------------------------------+---------+---------+----------------------------------+----------------------------------+-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| date | contributor | scanner | virusname | vt_score | AS | review | email | country | source | netname | md5sum | url |+---------------------+-------------+------------------+------------------------------------------+---------------+---------------------------------------------+-----------------+-------------------------------------------+---------+---------+----------------------------------+----------------------------------+-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| 2012-01-31 08:42:20 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 6e7a448fb68f51a0d882b6d7688e5e72 | http://padrup.com/sobaka.aspx?15a02=442890 || 2012-01-31 08:42:20 | sub16 | undef | unknown_html | 0/40 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 7e38bfca1e79d1cf70244c83e0033fd6 | http://padrup.com/sobaka.aspx?15a11=88593 || 2012-01-31 08:42:20 | sub16 | undef | unknown_html | 0/40 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 32ef36796a29da68bae09014fd270165 | http://padrup.com/sobaka.aspx?15d6d=715624 || 2012-01-31 08:42:20 | sub16 | undef | unknown_html | 0/40 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 7db5e95d347bf825164a0b6e454ace92 | http://padrup.com/sobaka.aspx?15dab=89515 || 2012-01-31 08:42:20 | sub16 | undef | unknown_html | 0/40 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | bc9a4927af6e365cdaad7c9b5e831212 | http://padrup.com/sobaka.aspx?15ee4=628796 || 2012-01-31 08:42:20 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 1673ea60f533854ea41b4a43678cef19 | http://padrup.com/sobaka.aspx?1606a=631526 || 2012-01-31 08:42:20 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | cb841a18a39352d3de0f58afb5b507a9 | http://padrup.com/sobaka.aspx?1650e=182812 || 2012-01-31 08:42:20 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 15e244e0659de17e88d3e1b238643510 | http://padrup.com/sobaka.aspx?165c9=274779 || 2012-01-31 08:42:20 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 6d0e991e57c7fa6ae2cd215c20fcb780 | http://padrup.com/sobaka.aspx?165c9=91593 || 2012-01-31 08:42:21 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | e63a492f84929c0079609112a0878061 | http://padrup.com/sobaka.aspx?16963=462575 || 2012-01-31 08:42:21 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | f386c8fa8d3edf2f8a8e612caae72d8e | http://padrup.com/sobaka.aspx?16963=555090 || 2012-01-31 08:42:21 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 9c378cd20fe4940bf0953c89f76f93c3 | http://padrup.com/sobaka.aspx?16963=92515 || 2012-01-31 08:42:21 | sub16 | undef | unknown_html | 0/40 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 9a9a26eb2385ce2cabea91a67e7903c6 | http://padrup.com/sobaka.aspx?16a6d=185562 || 2012-01-31 08:42:21 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 5bf06fc505dc00bf1f4a1232992d8518 | http://padrup.com/sobaka.aspx?17143=567186 || 2012-01-31 08:42:21 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | c7bee634ac1fe99e9123ddcdbacaea74 | http://padrup.com/sobaka.aspx?17152=661822 || 2012-01-31 08:42:21 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 062b36c61146f5ada6109fa977cb3821 | http://padrup.com/sobaka.aspx?17412=571500 || 2012-01-31 08:42:21 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 5ab7103526492b67a13d8fab4e332d6d | http://padrup.com/sobaka.aspx?17450=953120 || 2012-01-31 08:42:21 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | e66001b1e4a8a7d66d22e3fbde35fde2 | http://padrup.com/sobaka.aspx?1751b=859635 || 2012-01-31 08:42:21 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | b2e57585b6ff6728538675155fe2ffb5 | http://padrup.com/sobaka.aspx?176f0=863856 || 2012-01-31 08:42:21 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 6325fa858adb83e2cd3763a4f1e01eb6 | http://padrup.com/sobaka.aspx?17b84=291468 || 2012-01-31 08:42:21 | sub16 | undef | unknown_html | 0/41 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 1a7fa915704e98094fc2b3eae8f5e75c | http://padrup.com/sobaka.aspx?17c3f=292029 || 2012-01-31 08:42:22 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 18a4d5c8cea0773240eb4e7dcec2518f | http://padrup.com/sobaka.aspx?17cad=97453 || 2012-01-31 08:42:22 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 0367acb4ab98104f6e205ed29246ef12 | http://padrup.com/sobaka.aspx?17fd9=687855 || 2012-01-31 08:42:22 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | a1cbd7a14669b391f45a3247022cd53e | http://padrup.com/sobaka.aspx?180e3=591186 || 2012-01-31 08:42:22 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | b71e1ff4a6477278cc436b33f52bde48 | http://padrup.com/sobaka.aspx?18373=991870 || 2012-01-31 08:42:22 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 07e29bf6af7d30a9001c0fba289679c0 | http://padrup.com/sobaka.aspx?18920=1006400 || 2012-01-31 08:42:22 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | e6634c37b7b820a115b6d42ae4953707 | http://padrup.com/sobaka.aspx?18c6c=811872 || 2012-01-31 08:42:22 | sub16 | undef | unknown_html | 0/41 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 1b89eb8463c8e5d8c89ad18d29cf2b7f | http://padrup.com/sobaka.aspx?191bb=822744 || 2012-01-31 08:42:22 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | f70f1ea7186b55a5eb2aee84c669c5c4 | http://padrup.com/sobaka.aspx?19630=623904 || 2012-01-31 08:42:22 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | e430e4c8738350b79fa8bb7e2132d23e | http://padrup.com/sobaka.aspx?1b2b1=1001529 || 2012-01-31 08:42:22 | sub16 | undef | unknown_html | 0/41 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | c33788871d7fa728da61fb1f78e872f2 | http://padrup.com/sobaka.aspx?1b39b=557575 || 2012-01-31 08:42:22 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 4ee73a4e9eead56d25aa563938f2ee14 | http://padrup.com/sobaka.aspx?1cabd=822059 || 2012-01-31 08:42:22 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | ed453196153750e744f753db97db2b00 | http://padrup.com/sobaka.aspx?1e1df=493436 || 2012-01-31 08:42:22 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | f62c80da09be4eda403a7eb0e0c9eec5 | http://padrup.com/sobaka.aspx?1edd5=632105 || 2012-01-31 08:42:22 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | e0be0bce0f379fefa92b548b5c8adb9b | http://padrup.com/sobaka.aspx?1f95f=388125 || 2012-01-31 08:42:23 | sub16 | undef | unknown_html | 0/41 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 4771e2eaecd2b32fb1088ef8e09b193e | http://padrup.com/sobaka.aspx?28bac=1334624 || 2012-01-31 08:42:23 | sub16 | undef | unknown_html | 0/41 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 700a4e68bc7ae1405213f903c8ac3338 | http://padrup.com/sobaka.aspx?29c94=1369248 || 2012-01-31 08:42:23 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 9952fd19bcf9ee8f707009cf6d57ffb2 | http://padrup.com/sobaka.aspx?2a80d=522279 || 2012-01-31 08:42:23 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 5523992d69e9a32052852a56fe1817fd | http://padrup.com/sobaka.aspx?2b2bc=353656 || 2012-01-31 08:42:23 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | c87421bc626bdf75d8662729ebed0d9e | http://padrup.com/sobaka.aspx?2d0b4=1660500 || 2012-01-31 08:42:23 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 16934f3a030f21cb3f95752cb5b1bd13 | http://padrup.com/sobaka.aspx?2f2d2=966170 || 2012-01-31 08:42:23 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 8850d776006a844a5490564c80621a92 | http://padrup.com/sobaka.aspx?2fe0d=1764981 || 2012-01-31 08:42:23 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 5432329f53e1d27720420296a9c1174d | http://padrup.com/sobaka.aspx?30967=995075 || 2012-01-31 08:42:23 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | a2b16ec9431133c01352a9e10c9dc7ee | http://padrup.com/sobaka.aspx?31416=1614000 || 2012-01-31 08:42:23 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | e7abc79af990ae87f87ab4f6b8c37b6b | http://padrup.com/sobaka.aspx?31f60=1432480 || 2012-01-31 08:42:23 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | fd9e8ef31a98978043878b9c39043d4f | http://padrup.com/sobaka.aspx?32cae=1664368 || 2012-01-31 08:42:23 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 8fc6b08ad4e32f12a74471199e1af696 | http://padrup.com/sobaka.aspx?8210=166480 || 2012-01-31 08:42:23 | sub16 | undef | unknown_html | 0/41 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 96ca9775f03e14d3b8d894b58f372ae0 | http://padrup.com/sobaka.aspx?85f8=274368 || 2012-01-31 08:42:23 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | e8721bca5a2942f47b4860c3e338d58c | http://padrup.com/sobaka.aspx?87be=104250 || 2012-01-31 08:42:23 | sub16 | undef | unknown_html | 0/41 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 28be394d20f7701582a9cbad8babc365 | http://padrup.com/sobaka.aspx?9dd6=282842 || 2012-01-31 08:42:23 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | d4b3150109b1dac75bcff96f5f297691 | http://padrup.com/sobaka.aspx?c4b7=302154 || 2012-01-31 08:42:23 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | e368c5da082ddf689650caf3120f2a29 | http://padrup.com/sobaka.aspx?ceaa=317436 || 2012-01-31 08:42:24 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 56e459a931e4f439346a96c64af81b70 | http://padrup.com/sobaka.aspx?d2ff=486135 || 2012-01-31 08:42:24 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 0306edf31ecad19175e1822dcc2c6786 | http://padrup.com/sobaka.aspx?d4d4=163452 || 2012-01-31 08:42:24 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 852a0872e5684f3a1ae8ebfb3ffe3005 | http://padrup.com/sobaka.aspx?d8fa=55546 || 2012-01-31 08:42:51 | sub16 | avira | ADWARE/Adware.Gen2 | 4/40 (10%) | AS36420, AS30315, AS13749, AS21844, AS13884 | 64.246.3.226 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-EV1-7 | 08356ba46f84434e54bc53bd67e74666 | http://www.desktop-xp.com/files/enchantingfire.exe || 2012-01-31 08:42:58 | sub16 | avira | ADSPY/MSNChatSpy.A | 20/43 (46.5%) | AS36351 | 174.36.170.116 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-7 | a0c49b28c9ad888364a01182456773d1 | http://www.spy-im.com/download/Yahoo_spy.zip || 2012-01-31 09:00:12 | sub15 | Kaspersky | Trojan-Spy.Win32.Zbot.diao | 1/42 (2.4%) | AS32613 | 174.142.247.164 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-06 | a6934a4104dd7274e225c24502dfc955 | http://174.142.247.164/files/82 || 2012-01-31 09:00:12 | sub15 | Kaspersky | Trojan-Spy.Win32.Zbot.diao | 1/42 (2.4%) | AS32613 | 174.142.247.164 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-06 | e45efb4ef5eb350343fb8036ef90c4f3 | http://174.142.247.164/files/79 || 2012-01-31 09:01:18 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | e77383af10b2b882df42b0bd2ed50f16 | http://padrup.com/sobaka.aspx?dbba=506250 || 2012-01-31 09:01:18 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | f51d338429e2be1310052d13aec445ed | http://padrup.com/sobaka.aspx?dddc=397572 || 2012-01-31 09:01:18 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | a92f5c791d457709c2e0e2a9848aa479 | http://padrup.com/sobaka.aspx?deb7=342090 || 2012-01-31 09:01:18 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 7509a6ee91f36916503d7a257fbf5c3d | http://padrup.com/sobaka.aspx?eb69=361590 || 2012-01-31 09:01:18 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 254a4fac428000923d4783f8ee5af307 | http://padrup.com/sobaka.aspx?eb79=421967 || 2012-01-31 09:01:18 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | d3a5f58f4e988687fc5a330c0c6da675 | http://padrup.com/sobaka.aspx?edf9=60921 || 2012-01-31 09:01:18 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 388050b40ed03a24f28bdaee3dac3e7a | http://padrup.com/sobaka.aspx?f491=626090 || 2012-01-31 09:01:18 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | c766de2252041ab79d6ffba2ba5ce9f3 | http://padrup.com/sobaka.aspx?f685=631090 || 2012-01-31 09:01:18 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | ee07174911b22fc6e63885cbe444da90 | http://padrup.com/sobaka.aspx?f879=190827 || 2012-01-31 09:01:19 | sub16 | undef | unknown_html | 0/41 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 251578fb4c39590ea9f064b3de2bb542 | http://padrup.com/sobaka.aspx?f954=382968 || 2012-01-31 09:01:19 | sub16 | undef | unknown_html | 0/41 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 444c4d456d7bd2a134ab7cc3c538b576 | http://padrup.com/sobaka.aspx?f983=574875 || 2012-01-31 09:01:19 | sub16 | undef | unknown_html | 0/41 (0.0%) | AS3561 | 208.48.81.134 | b.vanderent@au.darkbluesea.com | AU | ARIN | SAVV-S231205-5 | 38c5cf847e1596130d09391a55d0c6ea | http://padrup.com/sobaka.aspx?ff3f=392058 || 2012-01-31 09:01:19 | sub16 | avira | HTML/FakeAlert.I | 29/41 (70.7%) | AS2514 | 61.194.62.161 | higuchim@nttpc.co.jp | JP | APNIC | INFOSPHERE | bca83454b80c881a78254088b0c91564 | http://palpaciya.searchnavi.jp/drgcbbzkt/ || 2012-01-31 09:01:19 | sub16 | avira | TR/PWS.LDPinch.aysf | 15/41 (36.6%) | AS25532 | 90.156.201.38 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-HOSTING | 5adc399cd8b103161f8e16406682b11e | http://passrecovery.com/files/mpr.zip || 2012-01-31 09:01:20 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS3595 | 209.217.251.146 | greg@hostingzoom.com | US | ARIN | LH-GOLD-NETWORK | 73444bfdd558442d02d796ebe41178ed | http://paypal.al3aqrab.com/paypal/df2c29878a435fe324eec2511727fbf3e9efcd8/us/ || 2012-01-31 09:01:21 | sub16 | avira | HTML/Crypted.Gen | 23/43 (53.5%) | AS32097 | 204.12.247.112 | abuse@wholesaleinternet.net | US | ARIN | WHOLESALEINTERNET-3 | 235f97f4c369609bc911d4a03c59bb58 | http://pbdemo.110mb.com/client/_image/fin_dex.html || 2012-01-31 09:01:21 | sub16 | avira | JS/iFrame.psa.4 | 20/35 (57.1%) | AS35662 | 31.3.230.130 | abuse@dedicatedservercontact.com | GB | RIPE | DSC-CNMGPAKP | 910c384fb566ad130cbccfa88ee19478 | http://pelinkarahan.org/archive/index.php/t-4642.html || 2012-01-31 09:01:21 | sub16 | avira | JS/iFrame.psa.4 | 20/35 (57.1%) | AS35662 | 31.3.230.130 | abuse@dedicatedservercontact.com | GB | RIPE | DSC-CNMGPAKP | c72945a8fab3f37baa1a89fa368787fe | http://pelinkarahan.org/archive/index.php/t-6266.html || 2012-01-31 09:01:23 | sub16 | avira | TR/VB.rjo | 35/41 (85.4%) | AS15003 | 108.62.114.141 | abuse@nobistech.net | US | ARIN | NETBLK-NOBIS-TECHNOLOGY-GROUP-09 | 71e674339000791ec2041efc0cfe2471 | http://pic.watersb.com/az/tssqj.php?bd=ef8js0998737eufh389su32jd992j29302fwuwus283&qid=CzHYBYhdwyehu887378299s || 2012-01-31 09:01:23 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS9280 | 116.0.23.217 | vic@cia.com.au | AU | APNIC | CIA | 39568efca6d127489607db782b0a0dc6 | http://pisdtol.countrycampers.com.au/index.php || 2012-01-31 09:01:25 | sub16 | avira | JS/Redirect.TX | 24/43 (55.8%) | AS39561 | 89.108.68.56 | abuse@agava.com | RU | RIPE | AGAVA-DATACENTER-NET | d0f55a3547314a45f87390133901c63d | http://postlaterli.h12.ru/index.html || 2012-01-31 09:01:25 | sub16 | avira | JS/Redirect.TX | 24/40 (60%) | AS39561 | 89.108.68.81 | abuse@agava.com | RU | RIPE | AGAVA-DATACENTER-NET | 309be735663a77265ffadd272e99a610 | http://potolok.hut2.ru/index.html || 2012-01-31 09:02:49 | sub16 | Avast | Win32:OpenInstall-A [PUP] | 6/42 (14.3%) | AS16509 | 207.171.163.4 | noc@amazon.com | US | ARIN | AMAZON-01 | 58a27cbb91a869bad518f480ba799b48 | http://dl02.s3.amazonaws.com/installers/224521/vlc-1.exe || 2012-01-31 09:03:49 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS24940 | 188.40.70.27 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ10 | 906eefa9c364cb03ba11bb03c179791a | http://programavaidevisa.br.ms/ || 2012-01-31 09:03:54 | sub16 | avira | JS/iFrame.psa.22 | 23/42 (54.8%) | AS34221 | 217.199.218.172 | dn@quickline.ru | RU | RIPE | QL-LAN-LL1 | a2c4c1c34d035a7699c62dee1696f195 | http://qaqalar.net/musiqi/Turk/?page=7&sort=date || 2012-01-31 09:03:54 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS4837 | 221.215.88.163 | abuse@chinaunicom.cn | CN | APNIC | UNICOM-SD | 9f49fa38c30f8978e50da95d5e0ebda0 | http://qnct.cn/logperst.php || 2012-01-31 09:03:55 | sub16 | Avast | HTML:Iframe-inf | 14/42 (33.3%) | AS24940 | 78.46.62.13 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET | c2077eaae7b3da332e22ee078d5e68ce | http://radius.altervista.org/media/oggetti/bagagli/O017/images/animated-ladies-watch.html || 2012-01-31 09:03:55 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 21/42 (50%) | AS24940 | 78.46.62.13 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET | 9755293d54c7a049382b18cda15aa9d7 | http://radius.altervista.org/media/oggetti/bagagli/O017/images/best-fucking-hardcore-clip.html || 2012-01-31 09:03:55 | sub16 | Avast | HTML:Iframe-inf | 13/43 (30.2%) | AS24940 | 78.46.62.13 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET | 94b15e1e08ba1515d744d9c574bfcae2 | http://radius.altervista.org/media/oggetti/bagagli/O017/images/black-sexy-girl-lexi.html || 2012-01-31 09:03:56 | sub16 | F_Prot | IFrame.gen | 6/43 (14%) | AS26347 | 173.236.137.112 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | 6d5d6af7e822ddb75d22066527972574 | http://randomthreads.com/?paged=11 || 2012-01-31 09:03:56 | sub16 | Avast | JS:Redirector-FO [Trj] | 5/43 (11.6%) | AS31103 | 87.118.126.62 | abuse@keyweb.de | DE | RIPE | DE-KEYWEB-III | 7b5b11c9bc0081afea58471d225a5429 | http://redtubes.redtub.us/ || 2012-01-31 09:03:59 | sub16 | Avast | HTML:Iframe-HU [Trj] | 9/43 (20.9%) | AS9892 | 202.157.142.222 | indra@webvisions.com | SG | APNIC | WEBVISIONS-COLO | fc90be26ca067a3fda529733877a50da | http://riverchelles.com.sg/installFlash.html || 2012-01-31 09:04:59 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS36351 | 50.22.80.58 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-9 | 70959ba3b9026c6e2d06d4611ec4d4e1 | http://www.vcsoftwares.com/mk.html || 2012-01-31 09:10:04 | sub7 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS13147 | 193.107.38.49 | abuse@host.bg | BG | RIPE | HOSTBG-NET | a0f983f5ca8d482eddeb35cddb866aef | http://b.grabo.bg/click.php?banner_id=146&affid=509&affid2=5&did=0&url=http%3A%2F%2Fgrabo.bg%2Fsofia%3Faffid%3D509%2526affid2%3D5&r=6024 || 2012-01-31 09:10:04 | sub7 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS13147 | 193.107.38.49 | abuse@host.bg | BG | RIPE | HOSTBG-NET | 975da732a80f1e5c061bcce32a69c7f2 | http://b.grabo.bg/click.php?banner_id=146&affid=509&affid2=5&did=0&url=http://grabo.bg/sofia?affid=509%26affid2=5&r=6024 || 2012-01-31 09:30:12 | sub7 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS43260 | 109.235.249.115 | bilgi@dgn.net.tr | TR | RIPE | TR-DGN-20100201 | 54fdc8a41425ee43f8031e4df021a96d | http://www.xxx-boardz.com/board || 2012-01-31 09:30:12 | sub7 | avira | PERL/IrcBot.AX | 26/43 (60.5%) | AS16276 | 94.23.68.169 | abuse@ovh.net | IT | RIPE | IT-OVH | e635ac1fecda6c4680854df2424fb545 | http://blogger.com.nettunoresidence.it/appa.jpg || 2012-01-31 09:30:38 | sub1 | undef | unknown_html | 0/43 (0.0%) | AS36476 | 209.237.150.20 | abuse@corp.web.com | US | ARIN | WEB-COM-BLK1 | e474c76dab5ddce48cf14c2b10caedf8 | http://singonebynewas1.com/1.html || 2012-01-31 09:30:38 | sub1 | undef | unknown_html | 0/42 (0.0%) | AS2914 | 198.106.48.19 | abuse@ntt.net | US | ARIN | NTTA-198-106 | bcd0ea5cdb2b470ca920f2ce6dbedc9d | http://www.ivorizzo.com.br/Cielo_PromocaoNova/Compra_Premiada/index2.html || 2012-01-31 09:30:38 | sub1 | clamav | Suspect.Trojan.Generic.FD-1 | 7/43 (16.3%) | AS18687 | 208.57.254.37 | ip-abuse@mpowercom.net | US | ARIN | MPOWER-001 | a614b053d028d3468889e15811627bc1 | http://208.57.254.37/images/Proposta_Boleto.pdf.scr || 2012-01-31 09:30:38 | sub1 | undef | unknown_html | 0/42 (0.0%) | AS2914 | 198.106.49.65 | abuse@ntt.net | US | ARIN | NTTA-198-106 | bcd0ea5cdb2b470ca920f2ce6dbedc9d | http://www.engesoftservicos.com.br/Cielo/_nova_promocao/Compra-premiada/index2.html || 2012-01-31 09:30:38 | sub1 | avira | TR/Dropper.Gen | 17/42 (40.5%) | AS2044 | 66.11.236.26 | abuse@dotster.com | US | ARIN | DOTSTERNET | edddd6df590ffe85ed9efd4193d170fc | http://www.acadiadiv.ca/empresarial/Santander_v201.exe || 2012-01-31 09:30:38 | sub1 | clamav | PUA.Packed.ASPack | 9/43 (20.9%) | AS26496 | 72.167.232.150 | noc@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 66831a82a71f2a82e6bc38dfcfa64133 | http://www.wecbolivia.com/tmp/mod_set/Correios-Telegrama8758.exe || 2012-01-31 09:30:38 | sub1 | trendmicro | TSPY_BANKER.SMAW | 27/42 (64.3%) | AS25454 | 212.56.203.93 | mihail.casapciuc@orange.md | MD | RIPE | RELSOFT-203 | 702967b42f71d57a8b3e143dceb2cddf | http://www.uccm.md/components/com_denado/boleto4492892.exe || 2012-01-31 09:30:04 | sub17 | avira | TR/Virtool.Vbcrypt.EC.52 | 15/42 (35.7%) | AS15201 | 200.98.131.46 | l-registrobr-uol@corp.uol.com.br | BR | LACNIC | 001.109.184/0001-95 | 1c79a64ce07b1c40e3ff9c596d6f692b | http://migre.me/7Gx5A?Boleto_Impres.PDFsala_14@oi.com.br%0A || 2012-01-31 09:40:06 | sub15 | Kaspersky | Trojan-Spy.Win32.Zbot.diao | 2/43 (4.7%) | AS32613 | 174.142.247.164 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-06 | 91802049c43d0efdbe0506cf9452de58 | http://174.142.247.164/files/87 || 2012-01-31 09:40:06 | sub15 | DrWeb | Trojan.PWS.Panda.1698 | 3/42 (7.1%) | AS32613 | 174.142.247.164 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-06 | 88845d1f80576d23e4040325d8b89b4b | http://174.142.247.164/files/86 || 2012-01-31 09:41:07 | sub16 | avira | JS/iFrame.HH | 17/43 (39.5%) | AS8708 | 81.196.20.134 | abuse@home.ro | RO | RIPE | RO-RDS-HOME-RO | ab96df7b1c41b2d62ca92bbfe4343be7 | http://traffik.go.ro/GPS/A44Fpop.html || 2012-01-31 09:41:07 | sub16 | avira | HTML/Rce.Gen | 15/43 (34.9%) | AS4906 | 63.250.48.67 | abuse@frontline.net | US | ARIN | SINEP-BLOCK-3 | 31f1b84a39277807329c4658bc0df12f | http://travelbranson1.hollisterwebhosting.com/ || 2012-01-31 09:41:07 | sub16 | avira | JS/Infected.C | 23/43 (53.5%) | AS25151 | 93.94.226.203 | abuse@cyso.net | NL | RIPE | NL-CYSO-YOURHOSTING | d1196043464efeecba817c47c5d82749 | http://trouwjournalist.nl/wp-content/themes/DeepFocus/js/jquery.cycle.all.min.js || 2012-01-31 09:41:07 | sub16 | undef | unknown_html | 0/41 (0.0%) | AS41750 | 128.204.198.56 | bitbucket@ripe.net | EU | AFRINIC | IANA-BLK | bcf7069e1715d63f8eec740be6abb242 | http://tsyu3hgvr.eu/index.php?tp=89c9473171a1c848 || 2012-01-31 09:41:07 | sub16 | avira | JS/Pegel.BR.51139 | 29/43 (67.4%) | AS30058 | 66.90.68.166 | abuse@fdcservers.net | US | ARIN | FDCSERVERS | 824cac96469f6ce5180bfd017b8b1cd4 | http://tunga.uuuq.com/kisinh/2/27.htm || 2012-01-31 09:41:07 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS21844 | 74.53.227.146 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 046760b14fa54181d958eed5a635d9dc | http://turquaz.com/en/A3/Shahnaz/Shahnaz/A4/A6/MT/A3/A4/A6/A6/A5/A5/Shahnaz/A3/A4/A3/A4/A3/ || 2012-01-31 09:41:07 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS21844 | 74.53.227.146 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 046760b14fa54181d958eed5a635d9dc | http://turquaz.com/en/A3/Shahnaz/Shahnaz/A4/A6/MT/A3/A4/A6/A6/A5/A5/Shahnaz/A3/A4/A6/A6/A4/ || 2012-01-31 09:41:07 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS21844 | 74.53.227.146 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 046760b14fa54181d958eed5a635d9dc | http://turquaz.com/en/A3/Shahnaz/Shahnaz/A4/A6/MT/A3/A4/A6/A6/A5/A5/Shahnaz/A3/A4/A6/A6/Shahnaz/ || 2012-01-31 09:41:07 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS21844 | 74.53.227.146 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 046760b14fa54181d958eed5a635d9dc | http://turquaz.com/en/A3/Shahnaz/Shahnaz/A4/A6/MT/A3/A4/A6/A6/A5/A5/Shahnaz/A3/A4/Shahnaz/A3/A4/ || 2012-01-31 09:41:07 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS21844 | 74.53.227.146 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 046760b14fa54181d958eed5a635d9dc | http://turquaz.com/en/A3/Shahnaz/Shahnaz/A4/A6/MT/A3/A4/A6/A6/A5/A5/Shahnaz/A3/A6/A3/MT/Shahnaz/ || 2012-01-31 09:41:07 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS21844 | 74.53.227.146 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 046760b14fa54181d958eed5a635d9dc | http://turquaz.com/en/A3/Shahnaz/Shahnaz/A4/A6/MT/A3/A4/A6/A6/A5/A5/Shahnaz/A3/A6/Shahnaz/A3/MT/ || 2012-01-31 09:41:07 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS21844 | 74.53.227.146 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 046760b14fa54181d958eed5a635d9dc | http://turquaz.com/en/A3/Shahnaz/Shahnaz/A4/A6/MT/A3/A4/A6/A6/A5/A5/Shahnaz/A3/Shahnaz/A6/A4/A5/ || 2012-01-31 09:41:07 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS21844 | 74.53.227.146 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 046760b14fa54181d958eed5a635d9dc | http://turquaz.com/en/A3/Shahnaz/Shahnaz/A4/A6/MT/A3/A4/A6/A6/A5/A5/Shahnaz/A3/Shahnaz/A6/A4/A6/ || 2012-01-31 09:41:07 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS21844 | 74.53.227.146 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 046760b14fa54181d958eed5a635d9dc | http://turquaz.com/en/A3/Shahnaz/Shahnaz/A4/A6/MT/A3/A4/A6/A6/A5/A5/Shahnaz/A3/Shahnaz/MT/F6/MT/ || 2012-01-31 09:41:07 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS21844 | 74.53.227.146 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 046760b14fa54181d958eed5a635d9dc | http://turquaz.com/en/A3/Shahnaz/Shahnaz/A4/A6/MT/A3/A4/A6/A6/A5/A5/Shahnaz/A3/Shahnaz/MT/Shahnaz/A5/ || 2012-01-31 09:41:07 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS21844 | 74.53.227.146 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 046760b14fa54181d958eed5a635d9dc | http://turquaz.com/en/A3/Shahnaz/Shahnaz/A4/A6/MT/A3/A4/A6/A6/A5/A5/Shahnaz/A3/Shahnaz/MT/Shahnaz/Shahnaz/ || 2012-01-31 09:41:08 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS21844 | 74.53.227.146 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 046760b14fa54181d958eed5a635d9dc | http://turquaz.com/en/A3/Shahnaz/Shahnaz/A4/A6/MT/A3/A4/A6/A6/A5/A5/Shahnaz/A6/A5/Shahnaz/A5/ || 2012-01-31 09:41:08 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS21844 | 74.53.227.146 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 046760b14fa54181d958eed5a635d9dc | http://turquaz.com/en/A3/Shahnaz/Shahnaz/A4/A6/MT/A3/A4/A6/A6/A5/A5/Shahnaz/A6/MT/ || 2012-01-31 09:41:08 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS21844 | 74.53.227.146 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 046760b14fa54181d958eed5a635d9dc | http://turquaz.com/en/A3/Shahnaz/Shahnaz/A4/A6/MT/A3/A4/A6/A6/A5/A5/Shahnaz/A6/Shahnaz/A4/A5/A6/ || 2012-01-31 09:41:08 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS21844 | 74.53.227.146 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 046760b14fa54181d958eed5a635d9dc | http://turquaz.com/en/A3/Shahnaz/Shahnaz/A4/A6/MT/A3/A4/A6/A6/A5/A5/Shahnaz/F6/A4/A3/Shahnaz/Shahnaz/ || 2012-01-31 09:41:08 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS21844 | 74.53.227.146 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 046760b14fa54181d958eed5a635d9dc | http://turquaz.com/en/A3/Shahnaz/Shahnaz/A4/A6/MT/A3/A4/A6/A6/A5/A5/Shahnaz/F6/A4/Shahnaz/A4/ || 2012-01-31 09:41:08 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS21844 | 74.53.227.146 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 046760b14fa54181d958eed5a635d9dc | http://turquaz.com/en/A3/Shahnaz/Shahnaz/A4/A6/MT/A3/A4/A6/A6/A5/A5/Shahnaz/MT/A4/ || 2012-01-31 09:41:08 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS21844 | 74.53.227.146 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 046760b14fa54181d958eed5a635d9dc | http://turquaz.com/en/A3/Shahnaz/Shahnaz/A4/A6/MT/A3/A4/A6/A6/A5/A5/Shahnaz/Shahnaz/A4/A6/ || 2012-01-31 09:41:08 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS21844 | 74.53.227.146 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 046760b14fa54181d958eed5a635d9dc | http://turquaz.com/en/A3/Shahnaz/Shahnaz/A4/A6/MT/A3/A4/A6/A6/A5/A5/Shahnaz/Shahnaz/A4/MT/ || 2012-01-31 09:41:08 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS21844 | 74.53.227.146 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 046760b14fa54181d958eed5a635d9dc | http://turquaz.com/en/A3/Shahnaz/Shahnaz/A4/A6/MT/A3/A4/A6/A6/A5/A5/Shahnaz/Shahnaz/A4/MT/A3/ || 2012-01-31 09:41:08 | sub16 | AntiVir | JOKE/MouseShy.A | 31/42 (73.8%) | AS13238 | 213.180.199.23 | abuse@yandex.ru | RU | RIPE | YANDEX-199 | 0d7918682c1b602979ed8ecd593e8aee | http://uhfybn2005.narod.ru/button-shy-mouse.rar || 2012-01-31 09:41:09 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS33597 | 67.208.91.118 | abuse@inforelay.com | US | ARIN | INFORELAY-NETBLOCK01 | 28d4ac380239b29c10350fe31cf21c3a | http://users9.jabry.com/cycycy/pz.asp || 2012-01-31 09:41:09 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS30083 | 50.30.47.185 | s.wintz@hostingsolutionsinternational.com | US | ARIN | HSI-4 | 9f55ec9454c6947cd1116299358d2599 | http://usve3342.startvps.com/AtualizeChave/ || 2012-01-31 09:41:09 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS30083 | 50.30.47.185 | s.wintz@hostingsolutionsinternational.com | US | ARIN | HSI-4 | 9f55ec9454c6947cd1116299358d2599 | http://usve3342.startvps.com/AtualizeChave/index.php || 2012-01-31 09:41:09 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS30083 | 50.30.47.185 | s.wintz@hostingsolutionsinternational.com | US | ARIN | HSI-4 | 9f55ec9454c6947cd1116299358d2599 | http://usve3342.startvps.com/Chave2012/index.html || 2012-01-31 09:41:09 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 22/42 (52.4%) | AS25532 | 90.156.201.59 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-HOSTING | 6bebb18e374031b9c6ce9ce9020d0865 | http://valerepower.ru/guestbook/?guestbook_page=357 || 2012-01-31 09:41:09 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 22/43 (51.2%) | AS25532 | 90.156.201.59 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-HOSTING | a6781a3207263020428edbfbb788bb9c | http://valerepower.ru/guestbook/?guestbook_page=418 || 2012-01-31 09:41:10 | sub16 | avira | JS/Redirector.psp | 25/40 (62.5%) | AS24940 | 78.47.210.185 | abuse@hetzner.de | DE | RIPE | DE-HETZNER-20070416 | 9840c2fc3c37d125a5d0ecc24e9cc650 | http://vbcool.com/vb/sitemap/f-10.html || 2012-01-31 09:41:10 | sub16 | avira | JS/Agent.zbh | 25/43 (58.1%) | AS36420, AS30315, AS13749, AS21844 | 67.18.17.146 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-11 | fde9286ea7a316f27f259c46cd8d5945 | http://vbmarticles.com/EarthEnergy4Home/ || 2012-01-31 09:41:10 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS13237 | 82.197.131.109 | abuse@attractsoft.com | DE | RIPE | LNC-ATTRACTSOFT-GMBH | 9fc6db72c2052bb459a0293e5a5b84c3 | http://vergelcastro.atspace.com/logos.gif?140cd=410625 || 2012-01-31 09:41:10 | sub16 | CAT_QuickHeal | JS/Blacole.B | 9/43 (20.9%) | AS26753, AS31347 | 69.161.135.217 | noc@in2net.com | CA | ARIN | IN2NETWORK | d985f81f6ad8e554fd9bf07a44b2e066 | http://vertical-review.com/community-natural-foods.html?q=community-natural-foods.html&atrGrp=113&atrId=113&rating=40 || 2012-01-31 09:41:10 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS9318 | 218.38.136.45 | abuse@skbroadband.com | kr | APNIC | HANANET-INFRA | cfcd208495d565ef66e7dff9f98764da | http://wbappm.com/APP/ck_setup.php?m=00:80:C8:82:34:07&d=anycop.com&a=php || 2012-01-31 09:41:11 | sub16 | NOD32 | HTML/Iframe.B.Gen | 2/42 (4.8%) | AS15169 | 209.85.148.132 | arin-contact@google.com | US | ARIN | GOOGLE | 052446ecf57e20c9887e3ebd46020316 | http://webcache.googleusercontent.com/search?q=cache:_KA317bksWkJ:attilcom.com/arabic/sitenews/index.php+%D9%85%D9%86%D8%AA%D8%AF%D9%89+%D8%B9%D8%AA%D9%8A%D9%84&cd=1&hl=ar&ct=clnk&gl=ae%22 || 2012-01-31 09:41:11 | sub16 | avira | PHISH/TAM.A | 6/42 (14.3%) | AS6983 | 97.67.41.68 | marshall.marlow@deltacom.com | US | ARIN | NETBLCK-ITCD-7 | b814b2c6c43012dcf2b3e746b39447b8 | http://webmail.claypoole.com/images/fidelidade/index.asp || 2012-01-31 10:14:43 | sub1 | undef | unknown_arch_zip | 0/42 (0.0%) | AS15133 | 93.184.220.20 | noc@edgecast.com | EU | RIPE | EDGECAST-NETBLK-04 | 434a662eb8ecc9ba2da73eb734af129f | http://dl6.iq6download.com/disclosures/products/product.iq.aftertherain.zip || 2012-01-31 10:14:43 | sub1 | undef | unknown_arch_zip | 0/42 (0.0%) | AS15133 | 93.184.220.20 | noc@edgecast.com | EU | RIPE | EDGECAST-NETBLK-04 | c39ce0489e31a0167765c822f1a71553 | http://dl6.iq6download.com/disclosures/products/product.iq.wallpapercollection.zip || 2012-01-31 10:14:45 | sub1 | avira | TR/Dldr.Cutwail.BF.1 | 34/43 (79.1%) | AS44784 | 91.202.244.59 | office@sitek.od.ua | UA | RIPE | SITEK-NET | e3a3dd9f16076462dff2320109e34327 | http://ghyt54.com/temp/fast.exe || 2012-01-31 10:14:45 | sub1 | avira | ADWARE/Adware.Gen | 33/43 (76.7%) | AS4812 | 61.152.239.21 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-SH | 271e7787847ca56c44ed454b5f3c1c77 | http://gkd.ns02.us/d/6.exe || 2012-01-31 10:14:45 | sub1 | undef | unknown_arch_zip | 0/43 (0.0%) | AS4837 | 119.188.40.81 | abuse@chinaunicom.cn | CN | APNIC | UNICOM-SD | 0ffc6b7854021176d2a3fddc17942319 | http://list1.ppstream.com/msg/msg_0df17e5bded89e5f55374c2a851cb0ee.zip || 2012-01-31 10:14:45 | sub1 | undef | unknown_arch_zip | 0/42 (0.0%) | AS4837 | 119.188.40.81 | abuse@chinaunicom.cn | CN | APNIC | UNICOM-SD | 9fec989457907d3a62a0458e1155a0ce | http://list1.ppstream.com/msg/msg_ce93caff7a65d538fbf11f36ccbc5399.zip || 2012-01-31 10:14:45 | sub1 | undef | unknown_arch_zip | 0/42 (0.0%) | AS4837 | 119.188.40.81 | abuse@chinaunicom.cn | CN | APNIC | UNICOM-SD | 4cfa48f6e22f55959b3b97072c648aaf | http://list1.ppstream.com/msg/msg_e0eaa4cadfd5c46620dc73eb928b6bbc.zip || 2012-01-31 10:14:45 | sub1 | Norman | HTML/Agent.NP | 1/43 (2.3%) | AS30058 | 74.63.108.110 | NOC@fdcservers.net | US | ARIN | FDCSERVERS | f382fe3d08efcce6cd54e56071cac771 | http://pcgame.gamedia.cn/pcgame/C8C/gl/cnzz6.html?GameID=0,Path=c:\temp\download_virusfile.php-sid-0037148154.exe || 2012-01-31 10:14:45 | sub1 | DrWeb | Trojan.DownLoader5.37745 | 6/43 (14%) | AS55383 | 27.125.204.59 | hwang@yyy-group.com | JP | APNIC | IDC-JP | 6858ec96b6adb0f3d94911a46aa817a5 | http://qhfl880.net/down/bb.exe || 2012-01-31 10:14:45 | sub1 | avira | TR/Downloader.Gen | 13/43 (30.2%) | AS4134 | 58.215.171.42 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-JS | 4eda409e310c625bd1cae465336a6df7 | http://upd.131.com/value_add/20111223.001/GameAd.exe || 2012-01-31 10:14:45 | sub1 | undef | unknown_html | 0/43 (0.0%) | AS4134 | 58.215.171.42 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-JS | 1b5afd4255738fbc8303f5af6493c143 | http://upd.131.com/value_add/va_meta.bin || 2012-01-31 10:14:45 | sub1 | Antiy_AVL | Worm/Win32.Palevo.gen | 4/42 (9.5%) | AS8551 | 62.219.24.53 | abuse@bezeqint.net | IL | RIPE | IL-BEZEQ-INTERNATIONAL-20001229 | 42434773db72cb65d3684fe15f7cb52f | http://updater.spadester.com/SpadesUpdate/1.1.5.0.7/SpadesterV5.exe || 2012-01-31 10:14:45 | sub1 | Avast | Win32:MalOb-HN [Cryp] | 9/43 (20.9%) | AS33287 | 98.156.23.253 | abuse@rr.com | US | ARIN | RRWE | b07504c06fdf63a88c3dedecd1db462f | http://wigiluk.eu/rtce002.exe || 2012-01-31 10:14:45 | sub1 | Avast | Win32:MalOb-HX [Cryp] | 10/43 (23.3%) | AS41390 | 91.217.153.130 | abuse@uahoster.org | UA | RIPE | UAHOSTER-NET | 7a4ad65a76657d51b64f4a0e7211b799 | http://znvcrzegn.ocry.com/rtce002.exe || 2012-01-31 10:14:48 | sub10 | avira | TR/Dropper.Gen | 17/41 (41.5%) | AS2044 | 66.11.236.26 | abuse@dotster.com | US | ARIN | DOTSTERNET | 61c63cf8c151f515b69f7bbcee1652a2 | http://acadiadiv.ca/empresarial/Santander_v201.exe || 2012-01-31 10:14:49 | sub10 | avira | TR/Spy.Banker.LW.38 | 25/43 (58.1%) | AS25454 | 212.56.203.93 | mihail.casapciuc@orange.md | MD | RIPE | RELSOFT-203 | 702967b42f71d57a8b3e143dceb2cddf | http://uccm.md/components/com_denado/boleto4492892.exe || 2012-01-31 10:15:52 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS33070, AS10532, AS19994, AS27357 | 174.143.204.60 | abuse@rackspace.com | US | ARIN | RSCP-NET-4 | 0816d2f622432a5ca3264585318707e7 | http://screenblaze.com/42432 || 2012-01-31 10:15:52 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS33070, AS10532, AS19994, AS27357 | 174.143.204.60 | abuse@rackspace.com | US | ARIN | RSCP-NET-4 | 237303af5e36b5f6a2a7f0656e37088b | http://screenblaze.com/curver.php || 2012-01-31 10:15:52 | sub16 | undef | unknown_html_google_blacklist | 0/40 (0.0%) | AS39392 | 95.168.203.12 | zdenek@superhosting.cz | CZ | RIPE | CZ-SUPERNETWORK-20090107 | ed1e13e1807fd2afbe7bd1911d430241 | http://secure-cb-3d.com/ || 2012-01-31 10:15:54 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS12260 | 67.214.175.92 | jay@ceilley.com | US | ARIN | COLOSTORE-COM | 8a1bc52a529fc4ad4015b12bde24f50d | http://serviciosmga.linkpc.net/?path=soporte/function.php? || 2012-01-31 10:15:54 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS12260 | 67.214.175.92 | jay@ceilley.com | US | ARIN | COLOSTORE-COM | 8a1bc52a529fc4ad4015b12bde24f50d | http://serviciosmga.linkpc.net/soporte/function.php || 2012-01-31 10:15:54 | sub16 | avira | JS/Dldr.Pegel.G.5 | 28/43 (65.1%) | AS36420, AS30315, AS13749, AS21844, AS13884 | 75.125.247.50 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-EV1-17 | fa73a6af4a4b53f1d44a8b75a512c8de | http://sevenpage.com.ar/center/ || 2012-01-31 10:15:55 | sub16 | avira | JS/Agent.zbh | 29/43 (67.4%) | AS32780 | 174.127.107.164 | arin-contact@hostingservicesinc.net | US | ARIN | HOSTINGSERVICES-INC | a79165d4f145928b48f31e0b7c9e2c6a | http://shining.com/about/ || 2012-01-31 10:15:55 | sub16 | avira | HTML/IFrame.JA.7 | 15/42 (35.7%) | AS16138 | 217.74.65.162 | ripe@firma.interia.pl | PL | RIPE | INTERIAPL-NET1 | 0f500e3ea60647b38bfad31986051c2e | http://sisonoio.w.interii.pl/07.04.2009r/zdjecia/album/index.html || 2012-01-31 10:15:55 | sub16 | undef | unknown_html | 0/42 (0.0%) | AS42331 | 194.0.200.154 | boss@freehost.com.ua | UA | RIPE | FREEHOST | 2c10e4df2ca06ac384e62f05991bfdbd | http://softpick.ru/torrent_url/WinRAR-4.01-RePack-RU-Packed.rar.torrent || 2012-01-31 10:15:55 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS42331 | 194.0.200.154 | boss@freehost.com.ua | UA | RIPE | FREEHOST | 794b2227a940daddd4670b6d7b8cde06 | http://softpick.ru/torrent_url/WinTuning-7-1.15-RU-Packed.zip.torrent || 2012-01-31 10:15:55 | sub16 | undef | unknown_html | 0/41 (0.0%) | AS26347 | 173.236.192.9 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | 323f3305b2b9114344e5f1fbd27702e6 | http://soloimagenes.net/index.php || 2012-01-31 10:15:55 | sub16 | avira | W97M/Smac.H | 38/43 (88.4%) | AS47241 | 109.60.161.6 | alopatkin@dsn.ru | RU | RIPE | RU-RUIVTELECOM-20091214 | f956763d5c653b945a22c3612e022946 | http://specstroioao.ivanovo.ru/doc/gendir.doc || 2012-01-31 10:15:55 | sub16 | avira | JS/Infected.C | 20/43 (46.5%) | AS25074 | 78.138.97.88 | abuse@dediserv.eu | DE | RIPE | DE-DEDISERV | 906cf0d95395eac534c717582f99805e | http://sporhaber.gen.tr/wp-content/themes/Transcript/inc/js/script.js?ver=3.3 || 2012-01-31 10:15:55 | sub16 | avira | TR/Dldr.Psyme.1073 | 31/43 (72.1%) | AS49505 | 31.186.96.84 | akme@selectel.ru | RU | RIPE | SELECTEL-NET | 534f4179b4d8333152c85dd3b2c6f9c3 | http://sporttrial.ru/forum/ || 2012-01-31 10:15:55 | sub16 | avira | JS/Agent.akk.1 | 19/43 (44.2%) | AS47583 | 31.170.166.108 | abuse@main-hosting.com | US | RIPE | MAIN-HOSTING-SERVERS | a6e555d4d4fefd52edc47b4bcbf80ad7 | http://spravkijdb.allalla.com/proekty/dohod-po-dogovoru-dareniya.html || 2012-01-31 10:15:55 | sub16 | avira | HTML/Crypted.Gen | 25/43 (58.1%) | AS8685 | 212.58.3.28 | abuse@doruk.net.tr | TR | RIPE | DorukNet | 1e797532d0945503b16b9c00713546f3 | http://sqmartakademi.com/admin/userfiles/thumbs/text-92.html || 2012-01-31 10:15:56 | sub16 | avira | WORM/Sobig.F | 26/42 (61.9%) | AS3292 | 195.215.30.152 | nihb@tdc.dk | DK | RIPE | DK-TELEDANMARK-971007 | 74b737272d3dd5460494c2301c0afc79 | http://std.dkuug.dk/JTC1/SC22/WG15/iso14766/172 || 2012-01-31 10:15:56 | sub16 | avira | HTML/IFrame.JA.1 | 10/43 (23.3%) | AS36351 | 96.125.163.219 | ipadmin@websitewelcome.com | US | ARIN | WW-2011-A-NET | cb0b0a8ceeb68a14d13f2bd112005297 | http://steamcleaners.gwazh.com/?aff=arts-alliance-of-clear-lake-0Xkk3htFAoTpQBfPxsEjMoP0qTDEIihFQy2wHEU13D5fS/eq6GcqlBb8dyniuX4NwXGYagdr_pkhF/d2d3Bu15q4paIQUq5l11vkG5ygrK8jcq9NiAUfc_/JpuuJoTRA4G8s0vm.jpg || 2012-01-31 10:15:56 | sub16 | avira | HTML/IFrame.JA.1 | 10/43 (23.3%) | AS36351 | 96.125.163.219 | ipadmin@websitewelcome.com | US | ARIN | WW-2011-A-NET | e36bf8436b7d95a4047329c3b986ea59 | http://steamcleaners.gwazh.com/?aff=arts-alliance-of-clear-lake-FR8PaRxe/TlQnKF50EFe7xhZDxFLr6rKRjw/k9qVMyp72gIjgFXFnoSOyHUnEwS5GPGfpk9.jpg || 2012-01-31 10:15:56 | sub16 | avira | HTML/IFrame.JA.1 | 11/42 (26.2%) | AS36351 | 96.125.163.219 | ipadmin@websitewelcome.com | US | ARIN | WW-2011-A-NET | dd9decb0eabf00324f807467eeecedfe | http://steamcleaners.gwazh.com/?aff=arts-alliance-of-clear-lake-HepnU4iYgA0C3OVFQcJCv6tZIISqYCMesrVcwXGlG3EUzCARzuQDEN8XnVgK_uFa7QRa0Q3hpX60qCIf6gFQEhuIV_kAuPPhfaOCIsz3RWWojavyypt.jpg || 2012-01-31 10:15:56 | sub16 | avira | HTML/IFrame.JA.1 | 10/42 (23.8%) | AS36351 | 96.125.163.219 | ipadmin@websitewelcome.com | US | ARIN | WW-2011-A-NET | 996aa41ac99226c7bab7c6be220d3d3f | http://steamcleaners.gwazh.com/?aff=arts-alliance-of-clear-lake-JPhW20RkNV69AQ6i2rmjFBh4HXfIkpG/Xq4DP_rD/xBlNYc_iwincaCykrAt69jt9qXCpmNH6otfw0mg4TPZkSH1TXGkijrQznA=422.jpg || 2012-01-31 10:16:02 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS32613 | 184.107.100.63 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-07 | b41a7512708f6a3e0cd8be81c11f13ca | http://wellsfargo.symposiumgsk.com/wellsfargo/session.php/ || 2012-01-31 10:16:02 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS32613 | 184.107.100.63 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-07 | b41a7512708f6a3e0cd8be81c11f13ca | http://wellsfargo.symposiumgsk.com/wellsfargo/session.php?screenid=signon&lob=cons/ || 2012-01-31 10:16:02 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS32613 | 184.107.100.63 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-07 | 3fbc179ada137c94c081ee47d4a80ebb | http://wellsfargo.symposiumgsk.com/wellsfargo/signingin.php/ || 2012-01-31 10:16:02 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS32613 | 184.107.100.63 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-07 | 3fbc179ada137c94c081ee47d4a80ebb | http://wellsfargo.symposiumgsk.com/wellsfargo/signingin.php?screenid=SIGNON || 2012-01-31 10:16:02 | sub16 | undef | unknown_html | 0/43 (0.0%) | AS32613 | 184.107.100.63 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-07 | 3fbc179ada137c94c081ee47d4a80ebb | http://wellsfargo.symposiumgsk.com/wellsfargo/signingin.php?screenid=signon&%3blob=cons/ || 2012-01-31 10:16:02 | sub16 | trendmicro | JS_CLICKER.SMDA | 29/43 (67.4%) | AS36752 | 98.138.19.88 | network-abuse@cc.yahoo-inc.com | US | ARIN | A-YAHOO-US9 | d11b7aef68e5f01e65370b194e94be48 | http://winecountrywebs.com/blog/?tag=flash || 2012-01-31 10:16:02 | sub16 | trendmicro | JS_CLICKER.SMDA | 29/43 (67.4%) | AS36752 | 98.138.19.88 | network-abuse@cc.yahoo-inc.com | US | ARIN | A-YAHOO-US9 | e6179e8f36e4927071ce226797a0fef4 | http://winecountrywebs.com/blog/?tag=hot || 2012-01-31 10:16:02 | sub16 | trendmicro | JS_CLICKER.SMDA | 29/43 (67.4%) | AS36752 | 98.138.19.88 | network-abuse@cc.yahoo-inc.com | US | ARIN | A-YAHOO-US9 | c8b050ab044ea3a72c63306729460863 | http://winecountrywebs.com/blog/?tag=prohibit || 2012-01-31 10:16:02 | sub16 | undef | unknown_html | 0/41 (0.0%) | AS3786 | 211.115.80.49 | ip@kidc.net | KR | APNIC | KIDC-KR | 5dbc98dcc983a70728bd082d1a47546e | http://wizpop.co.kr/core/count.asp?exe=i001&act=update || 2012-01-31 10:16:02 | sub16 | McAfee_GW_Editio | Heuristic.BehavesLike.JS.CodeUnfolding.F | 3/43 (7%) | AS28753 | 217.20.116.142 | abuse@leaseweb.de | DE | RIPE | NETDIRECT-NET | e49cc940d43e6edd93108a97289457dc | http://wkjrj.com/wild-stik-40-arf/ || 2012-01-31 10:16:06 | sub16 | Comodo | UnclassifiedMalware | 11/43 (25.6%) | AS8560 | 74.208.28.204 | abuse@1and1.com | US | ARIN | 1AN1-NETWORK | 5d244feb715681217c882ec1229f0cd3 | http://www.reversecellphonerecords.com/submit001/CellPhoneDetective.exe || 2012-01-31 10:41:57 | sub16 | avira | DR/AdMedia.BP | 24/43 (55.8%) | AS36420, AS30315, AS13749, AS21844 | 184.172.139.192 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-17 | e6ce054e2083419469f313c386a3c7a2 | http://www.lyricsjoy.com/LyricsJoyPlugin.exe || 2012-01-31 10:41:58 | sub16 | undef | unknown_exe | 0/42 (0.0%) | AS36351 | 75.126.219.106 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-3 | 7bbe25277cc7f0a7705dbf3bd507acbe | http://www.pdf-word-converter.net/download/pdfwordconverter.exe || 2012-01-31 10:26:12 | sub17 | avira | W32/Chir.B | 37/43 (86%) | AS3595 | 69.73.138.225 | abuse@jaguarpc.com | US | ARIN | LH-GOLD-NETWORK | 4755a56637f536b68d59e5109b351936 | http://www.bandacox.com || 2012-01-31 10:42:06 | sub5 | avira | PHP/Pastie.637 | 26/42 (61.9%) | AS3786 | 211.234.100.236 | kidc@hanbiro.com | KR | APNIC | KIDC-KR | 493d3c720be431004253125118998a5d | http://jirisan.com/zmSpamFree/php.ini????? || 2012-01-31 10:26:11 | sub17 | avira | HTML/IFrame.inkb | 23/43 (53.5%) | AS4808 | 114.255.157.144 | abuse@chinaunicom.cn | CN | APNIC | UNICOM-BJ | c5d3b34234c508e7a0fd0315a5862346 | http://sx.myedu.gov.cn/def.html || 2012-01-31 08:27:32 | sub8 | AhnLab_V3 | Trojan/Win32.Buzus | 7/42 (16.7%) | AS7366 | 199.7.177.240 | abuse@lemuriaco.com | US | ARIN | LEMURIA-COMMUNICATIONS | 1590ea8dc107a8cc19ef211e3f3803c8 | http://hotfile.com/dl/144294021/96bb757/ || 2012-01-31 08:27:33 | sub8 | undef | UDS:DangerousObject.Multi.Generic | 0/43 (0.0%) | AS33182 | 66.7.196.166 | abuse@dimenoc.com | US | ARIN | DIMECNET | dd1c098d3cc90bf01a09b377381a4d4c | http://jlcphoto.com/media/ || 2012-01-31 11:03:15 | sub1 | avira | TR/Crypt.XPACK.Gen2 | 4/43 (9.3%) | AS2118 | 195.9.3.80 | advt@relcom.ru | RU | RIPE | relcom | d515fa84df1722876aa4a9d73fcbe642 | http://mediavision-mag.ru/modules/News/price.exe || 2012-01-31 11:03:16 | sub1 | Norman | HTML/Agent.NP | 1/43 (2.3%) | AS30058 | 74.63.108.110 | NOC@fdcservers.net | US | ARIN | FDCSERVERS | f382fe3d08efcce6cd54e56071cac771 | http://pcgame.gamedia.cn/pcgame/C8C/gl/cnzz6.html?GameID=0,Path=c:%5C%5Ctemp%5C%5Cdownload_virusfile.php-sid-0037148154.exe |+---------------------+-------------+------------------+------------------------------------------+---------------+---------------------------------------------+-----------------+-------------------------------------------+---------+---------+----------------------------------+----------------------------------+-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+202 rows in set (0.01 sec)
+---------------------+-------------+---------------+--------------------------------------+---------------+---------------------------------------------+-----------------+--------------------------+---------+---------+-----------------------------+----------------------------------+-------------------------------------------------------------------------------+| date | contributor | scanner | virusname | vt_score | AS | review | email | country | source | netname | md5sum | url |+---------------------+-------------+---------------+--------------------------------------+---------------+---------------------------------------------+-----------------+--------------------------+---------+---------+-----------------------------+----------------------------------+-------------------------------------------------------------------------------+| 2012-01-31 10:26:10 | sub17 | avira | W32/Chir.B | 37/43 (86%) | AS36351 | 174.37.60.8 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-7 | 4755a56637f536b68d59e5109b351936 | http://sasblessings.com || 2012-01-31 11:12:10 | sub1 | DrWeb | Adware.Downware.146 | 4/43 (9.3%) | AS14618 | 184.73.179.238 | aes-noc@amazon.com | US | ARIN | AMAZON-EC2-7 | 2ba505ed01a533554e6f2f315364dd11 | http://www.installmonetizer.com/download.php?l4GC || 2012-01-31 11:12:10 | sub1 | NOD32 | Win32/Qhost | 1/43 (2.3%) | AS36420, AS30315, AS13749, AS21844 | 174.132.192.218 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-15 | eaada766db69f4ec64039f570636b11d | http://www.londonblacktaxitours.net/wp-content/themes/install.txt || 2012-01-31 11:12:10 | sub1 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS10912 | 66.150.203.30 | abuse@internap.com | US | ARIN | PNAP-06-2001 | 8e0bc1b16f076861c3be28b0a2bed558 | http://www.worldwinner.com/dynamic/html/css/ww_base.css || 2012-01-31 11:12:10 | sub1 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS10912 | 66.150.203.30 | abuse@internap.com | US | ARIN | PNAP-06-2001 | 10092eee563dec2dca82b77d2cf5a1ae | http://www.worldwinner.com/dynamic/html/js/jquery.js || 2012-01-31 11:41:12 | sub16 | avira | ADSPY/NaviPromo.J | 13/43 (30.2%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 0fcf0d85b49c65e3a9bf423178f4aef5 | http://www.toptenreport.com/download/print2pdf.exe || 2012-01-31 11:52:13 | sub16 | eSafe | Win32.MiscDigRiver | 6/39 (15.4%) | AS35916 | 204.13.155.243 | noc@multacom.com | US | ARIN | 2GMCORPNET1 | 15ac25e506e1baf8237038d53c00f0bd | http://www.allconvertertools.com/download/iphonecopypack.exe || 2012-01-31 12:20:03 | sub1 | Kaspersky | HEUR:Trojan.Script.Generic | 3/43 (7%) | AS3595 | 209.217.224.197 | greg@jaguarpc.com | US | ARIN | LH-GOLD-NETWORK | f13cb4711c5b575268ac196c2e12bb01 | http://123-movie-download-review.com/LaV4inWa/index.html || 2012-01-31 12:20:05 | sub10 | avira | TR/Crypt.XPACK.Gen | 34/43 (79.1%) | AS29169 | 92.243.5.113 | abuse@gandi.net | FR | RIPE | GANDI-NET1 | 5de0c86879bb8b9351fd5ca42da967ef | http://92.243.5.113/wut.exe || 2012-01-31 12:20:06 | sub16 | Antiy_AVL | Monitor/Win32.Hooker.gen | 8/43 (18.6%) | AS1267 | 195.210.93.172 | abuse@iol.it | IT | RIPE | IOL-2 | a214a7e6db356ec8fb55522d6e1543c4 | http://digilander.libero.it/important/zoom/download/zoom30en.zip || 2012-01-31 12:30:05 | sub10 | avira | TR/Hocomrac.A.33 | 16/43 (37.2%) | AS41390 | 91.217.153.77 | abuse@uahoster.org | UA | RIPE | UAHOSTER-NET | 9dcd5cbefa8e9c9483da4939898e96b1 | http://91.217.153.77/file/re923018.exe || 2012-01-31 12:30:05 | sub10 | avira | TR/Dldr.Krutab.A | 12/43 (27.9%) | AS38661 | 180.210.40.3 | luvyong@hclc.co.kr | KR | APNIC | HCLC-KR | 95b074c1b61f1dc20f048382fe27772d | http://download.u-tab.co.kr/dm2/setup_axaxaa_dual.exe || 2012-01-31 12:40:39 | sub15 | Kaspersky | UDS:DangerousObject.Multi.Generic | 2/43 (4.7%) | AS31147 | 178.18.250.229 | abuse@inline.de | DE | RIPE | DE-INLINE-20100427 | 9e1744f23bf52dba8b62dda062e79745 | http://178.18.250.229/files/19 || 2012-01-31 12:40:44 | sub16 | avira | ADWARE/Adware.Gen2 | 4/43 (9.3%) | AS36420, AS30315, AS13749, AS21844, AS13884 | 64.246.3.226 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-EV1-7 | 20dcd8da5c6b5751361410a69e6d4bea | http://www.desktop-xp.com/files/freematrix.exe || 2012-01-31 12:40:47 | sub16 | avira | TR/Spy.IMonitorPCPro.46 | 16/42 (38.1%) | AS36351 | 174.36.170.117 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-7 | bbfd4624e142ba57d45d7c90cacfa5ff | http://www.awosoft.com/download/IMonSetup.zip || 2012-01-31 12:40:49 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS27715 | 187.45.240.68 | regcom@locaweb.com.br | BR | LACNIC | 002.351.877/0001-52 | 1cff0828d96c3a8763ce1ae5a56ed08a | http://www.maquinaostefanini.com.br/loja/test.php?usual138.img || 2012-01-31 12:40:50 | sub16 | K7AntiVirus | Trojan | 5/41 (12.2%) | AS32475 | 69.175.71.50 | netops@singlehop.com | US | ARIN | SINGLEHOP | 943ea6f9012432ebbee4e9e6fac56441 | http://www.registry-reviews.com/games/pspvideosdownload/pspvideosdownload.exe || 2011-12-15 17:01:10 | sub17 | avira | HTML/Rce.Gen | 31/43 (72.1%) | AS32475 | 69.175.39.66 | netops@singlehop.com | US | ARIN | SINGLEHOP | 2163452c376bd0bc80a0a043ada45cc7 | http://smsfoursms.com || 2012-01-31 12:25:33 | sub5 | Avast | PHP:Shell-AS [Trj] | 3/43 (7%) | AS9782 | 210.93.117.56 | webmaster@kpu.ac.kr | KR | APNIC | KREN-KR | 83e768f7a71ff8abb797e64e2bf00761 | http://wonnam.or.kr/wizhome/hacker.txt?? || 2012-01-31 13:01:43 | sub16 | avira | ADSPY/NaviPromo.J | 13/43 (30.2%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 4d179689376f72a354bd6b85f6cb7f32 | http://www.toptenreport.com/download/video-download-toolbar-pad.exe || 2012-01-31 13:18:40 | sub7 | avira | PHP/C99Shell.F | 27/42 (64.3%) | AS3595 | 69.73.186.33 | abuse@jaguarpc.com | US | ARIN | LH-GOLD-NETWORK | 4d298df855ed4dc6bf4b1461632714be | http://pgsf.com.au/images/babybottle.txt || 2012-01-31 13:18:41 | sub7 | avira | PERL/Shellbot.aa | 24/43 (55.8%) | AS36420, AS30315, AS13749, AS21844 | 184.172.150.12 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-17 | 5f105a76916ab463cfa70226fe458840 | http://www.hkhuibang.net/images/SDC10011.jpg || 2012-01-31 13:18:41 | sub16 | avira | ADSPY/NaviPromo.J | | AS41550 | 91.207.44.10 | abuse@hostbizua.com | UA | RIPE | FUIR-MNT | ffc9cea3108424d97f53a66ea49d772a | http://falcogames.com/MegazeyAndDemonsSetup.exe || 2012-01-31 13:18:41 | sub16 | clamav | PUA.Packed.EXECryptor | 9/42 (21.4%) | AS41947 | 77.68.68.94 | abuse@ripe.net | EU | RIPE | EU-ZZ-80-93 | c197acd1add58fc9b3be7b966e33aa07 | http://install.ticno.com/3/?wmid=wbsm_3457_sftport&url=base64(url) || 2012-01-31 13:18:41 | sub16 | Rising | Trojan.Win32.Generic.1246BC37 | 1/41 (2.4%) | AS3595 | 69.73.176.160 | abuse@jaguarpc.com | US | ARIN | LH-GOLD-NETWORK | fa0fd034dffce3efd5d82a5096027176 | http://www.audio2convert.com/acm-converter/download/acm-converter.exe || 2012-01-31 13:20:07 | sub10 | Comodo | UnclassifiedMalware | 5/43 (11.6%) | AS12488 | 77.72.0.66 | noc@krystal.co.uk | GB | RIPE | KRYSTAL | 8ea06ac4650ec03f630e215f189fe62d | http://itsupportsussex.co.uk/connect.exe || 2012-01-31 13:30:32 | sub1 | Avast | Win32:Bancos-CCE [Spy] | 6/43 (14%) | AS6325 | 209.174.21.7 | abuse@illinois.net | US | ARIN | ICN4 | 90a63fa9fe3b2c82635807cad6529fa7 | http://209.174.21.7/webctrl_client/1_0/Comprovante0041.pdf.scr || 2012-01-31 13:35:33 | sub7 | undef | unknown_html_RFI | 0/41 (0.0%) | AS32181 | 69.39.236.36 | abuse@gigenet.com | US | ARIN | IPNAP | cbd1821eb07439dfb0c55e60feba3ce4 | http://adf.ly/1324684/www.warezrocker.info || 2012-01-31 13:41:44 | sub15 | DrWeb | Trojan.PWS.Panda.1698 | 3/43 (7%) | AS10912 | 66.150.164.137 | abuse@internap.com | US | ARIN | PNAP-06-2001 | 0a646c7eddb377017672fd782a89c081 | http://66.150.164.137/files/87 || 2012-01-31 13:41:44 | sub15 | DrWeb | Trojan.PWS.Panda.1698 | 3/42 (7.1%) | AS10912 | 66.150.164.137 | abuse@internap.com | US | ARIN | PNAP-06-2001 | 001138229fde61998db9768a9f7a4a88 | http://66.150.164.137/files/86 || 2012-01-31 13:41:44 | sub15 | DrWeb | Trojan.PWS.Panda.1698 | 3/42 (7.1%) | AS10912 | 66.150.164.137 | abuse@internap.com | US | ARIN | PNAP-06-2001 | cb1286a5fa2efe51200ff78b65c78806 | http://66.150.164.137/files/82 || 2012-01-31 13:41:44 | sub15 | undef | unknown_exe | 0/43 (0.0%) | AS10912 | 66.150.164.137 | abuse@internap.com | US | ARIN | PNAP-06-2001 | cdc051e8ac67176ff81eb3386d9a5e2a | http://66.150.164.137/files/79 || 2012-01-31 13:41:44 | sub15 | Fortinet | W32/Yakes.B!tr | 2/43 (4.7%) | AS32613 | 174.142.247.164 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-06 | c7de9b26b3692c933110554641d763ef | http://174.142.247.164/files/123 || 2012-01-31 13:41:44 | sub15 | BitDefender | Gen:Variant.Kazy.53830 | 10/41 (24.4%) | AS32613 | 174.142.247.164 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-06 | 7b38da50971daf482dae23670de639d8 | http://174.142.247.164/files/122 || 2012-01-31 13:41:44 | sub15 | BitDefender | Gen:Variant.Kazy.53830 | 10/43 (23.3%) | AS32613 | 174.142.247.164 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-06 | 97d9df2c9e8ccfdbd539805f43f073db | http://174.142.247.164/files/121 || 2012-01-31 13:41:44 | sub15 | DrWeb | Trojan.PWS.Panda.1698 | 3/42 (7.1%) | AS32613 | 174.142.247.164 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-06 | 87a98cd3a8ed99da278b4c990248c0a7 | http://174.142.247.164/files/103 || 2012-01-31 13:41:44 | sub15 | AhnLab_V3 | Trojan/Win32.Gimemo | 1/43 (2.3%) | AS197043 | 31.214.170.232 | abuse@xsserver.eu | DE | RIPE | XSSERVER-EU | 71a6c042f101f807b45465f540d91287 | http://31.214.170.232/files/25 || 2012-01-31 13:16:05 | sub8 | undef | Monitor.Win32.PowerSpy.duo | 0/43 (0.0%) | AS29169 | 92.243.5.113 | abuse@gandi.net | FR | RIPE | GANDI-NET1 | 21dde95d9d269cbb2fa6560309dca40c | http://92.243.5.113/ || 2012-01-31 13:46:42 | sub16 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS51377 | 46.37.184.226 | abuse@burst.net | GB | RIPE | UK-BURSTNET-20101117 | 98657ff629066a7681a42667a3ac2c57 | http://allmondrage.ru/ || 2012-01-31 13:46:42 | sub16 | CAT_QuickHeal | (Suspicious) - DNAScan | 3/43 (7%) | AS36420, AS30315, AS13749, AS21844, AS13884 | 75.125.243.130 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-EV1-17 | 8c46ff7c63a56a5a882ad1f63c788168 | http://www.cliprex.com/files/Capturexshar.exe || 2012-01-31 14:00:17 | sub15 | DrWeb | Trojan.PWS.Panda.1698 | 3/43 (7%) | AS36351 | 173.193.102.112 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-8 | 0a646c7eddb377017672fd782a89c081 | http://megashped.com/english/melt.exe || 2012-01-31 14:00:51 | sub1 | Kaspersky | HEUR:Trojan.Script.Generic | 3/42 (7.1%) | AS32613 | 184.107.41.4 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-07 | f13cb4711c5b575268ac196c2e12bb01 | http://samwep.com/8KQZuSAy/index.html || 2012-01-31 14:10:05 | sub16 | avira | JS/Agent.zbh | 30/43 (69.8%) | AS36420, AS30315, AS13749, AS21844, AS13884 | 67.15.82.76 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-EV1-14 | b99413c827daf9e022015852216d584f | http://www.searchandlookup.com/cell/ || 2012-01-31 14:10:55 | sub10 | avira | TR/Dropper.Gen | 7/43 (16.3%) | AS20649 | 78.111.104.63 | noc@teklan.net.tr | TR | RIPE | TR-TEKLAN-20070910 | 5912a7e3c3c1ab57d3df620535adb68d | http://78.111.104.63/Loader.exe || 2012-01-31 14:10:55 | sub10 | avira | TR/Abot.A.54 | 26/43 (60.5%) | AS33182 | 72.29.76.78 | abuse@dimenoc.com | US | ARIN | HOSTDIME-PI-1 | 30d4b0dbfb828e2ec721e466dd0c21a8 | http://bjvanloon.nl/bin/cert.exe || 2012-01-31 14:10:56 | sub20 | DrWeb | Trojan.PWS.Panda.1698 | 4/42 (9.5%) | AS16805 | 74.200.195.170 | abuse@fastservers.net | US | ARIN | FASTSERVERS-CHI | 82afb6070097affe2dac6bef28569e87 | http://www.edgecube.com/portfolio/melt.exe || 2012-01-31 14:10:56 | sub20 | DrWeb | Trojan.PWS.Panda.1698 | 4/42 (9.5%) | AS36420, AS30315, AS13749, AS21844, AS13884 | 216.40.218.105 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-EV1-5 | 82afb6070097affe2dac6bef28569e87 | http://www.moosavings.com/feeds/melt.exe || 2012-01-31 14:10:56 | sub20 | DrWeb | Trojan.PWS.Panda.1698 | 4/42 (9.5%) | AS21844 | 74.52.65.130 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 82afb6070097affe2dac6bef28569e87 | http://www.naturallightcharters.com/melt.exe || 2012-01-31 14:30:05 | sub16 | NOD32 | JS/Kryptik.GU | 1/43 (2.3%) | AS28753 | 188.72.202.198 | abuse@leaseweb.de | DE | RIPE | NETDIRECT-NET | 77d6a3ca774eab10b3e83f6d68a02474 | http://188.72.202.198/~novipoc2/ || 2012-01-31 14:30:05 | sub16 | avira | ADWARE/Agent.1911671.1 | 12/41 (29.3%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | a9b10387e95828f5430ae56877479000 | http://www.toptenreport.com/download/dirdate2.exe || 2012-01-31 14:30:20 | sub1 | Kaspersky | HEUR:Trojan.Script.Generic | 1/43 (2.3%) | AS14141 | 98.142.210.10 | wnoc@wiresix.com | US | ARIN | WIRESIX | 56e36da5845af5bc62944f2fa79f5873 | http://shirtlove.com/LzdX2XPJ/index.html || 2012-01-31 14:30:04 | sub17 | AhnLab_V3 | Trojan/Win32.VB | 13/43 (30.2%) | AS26415, AS30060 | 69.58.188.40 | abuse@bitly.com | US | ARIN | VRSN-BITLY-69-58-188-0 | 19e5518d16c76a268600e80906d1ad63 | http://bit.ly/xjNNDn?Boleto_Impres.PDFsala_14@oi.com.br || 2012-01-31 14:41:41 | sub15 | undef | unknown_exe | 0/43 (0.0%) | AS36420, AS30315, AS13749, AS21844, AS13884 | 216.40.218.105 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-EV1-5 | e3f423b0fe7d1eee2f2d6d86f81a5b6e | http://moosavings.com/feeds/melt.exe || 2012-01-31 14:41:42 | sub15 | avira | TR/Fakealert.47556 | 23/43 (53.5%) | AS45352 | 14.102.148.38 | abuse@ipdc.com.my | MY | APNIC | IPDC-MY | 02defe0491fc57aba4646eccf592e65c | http://oceaniatrust.com/images/24.exe || 2012-01-31 14:41:42 | sub15 | DrWeb | Trojan.PWS.Panda.1698 | 5/42 (11.9%) | AS16805 | 74.200.195.170 | abuse@fastservers.net | US | ARIN | FASTSERVERS-CHI | eae5d5532b2daea22ecdf7e901f55c4c | http://edgecube.com/portfolio/melt.exe || 2012-01-31 14:41:42 | sub15 | DrWeb | Trojan.PWS.Panda.1698 | 5/42 (11.9%) | AS21844 | 74.52.65.130 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | eae5d5532b2daea22ecdf7e901f55c4c | http://naturallightcharters.com/melt.exe || 2012-01-31 08:42:07 | sub8 | undef | W32/-210!Eldorado | 0/41 (0.0%) | AS11798 | 74.220.215.202 | support@bluehost.com | US | ARIN | BLUEHOST-NETWORK-2 | 9a75167b4987ec74d9fb7d8e784eb8ed | http://www.cottonhouse.com.sg/SpryAssets/gold/img/new/gincfarm/ || 2012-01-31 12:42:37 | sub8 | undef | HEUR:Trojan-Downloader.Win32.Generic | 0/43 (0.0%) | AS31283 | 80.65.58.57 | | NO | RIPE | NO-FH-MYWH | 1c7b413c3fa39d0fed40556d2658ac73 | http://www.karljensen.no/plugins/system/legacy/ || 2012-01-31 12:59:43 | sub8 | undef | Packed.Win32.Black.a | 0/43 (0.0%) | AS2044 | 66.11.236.26 | abuse@dotster.com | US | ARIN | DOTSTERNET | ce8453c21c750ca1bdfa65d5c937b8d1 | http://www.acadiadiv.ca/empresarial/ || 2012-01-31 12:59:44 | sub8 | BitDefender | Generic.Banker.OT.407AEE2E | 20/43 (46.5%) | AS46664 | 199.115.228.244 | info@volumedrive.com | US | ARIN | VOLUMEDRIVE | c27a70d9fba12a862f410d6e22feb48a | http://199.115.228.244/Debito/ || 2012-01-31 13:38:02 | sub8 | undef | RemoteAdmin.Win32.WinVNC-based.c | 0/43 (0.0%) | AS36351 | 173.193.102.112 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-8 | 9df6b768d81001f035d17dfe4adc53ee | http://megashped.com/english/ || 2012-01-31 14:15:04 | sub8 | undef | Trojan-Spy.Win32.Zbot.diao | 0/43 (0.0%) | AS36351 | 173.193.102.112 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-8 | f2658fa217310fec900b2d8ae0c6be19 | http://www.megashped.com/english/ || 2012-01-31 14:46:14 | sub16 | DrWeb | Exploit.Phoenix.1 | 1/43 (2.3%) | AS35592 | 128.204.198.56 | bitbucket@ripe.net | EU | AFRINIC | IANA-BLK | 43331c287ff37079e2cd849267f779cc | http://asdhiwekrhrjt.eu/index.php?tp=89c9473171a1c848 || 2012-01-31 15:00:05 | sub7 | undef | unknown_html_RFI | 0/41 (0.0%) | AS26347 | 69.163.220.16 | netops@dreamhost.com | US | ARIN | DREAMHOST-BLK9 | b3e3dac1aeadf6c012177eed8c083b39 | http://www.blogtext.org/maxwellboyer820/article/1115853.html? || 2012-01-31 15:00:06 | sub1 | Kaspersky | HEUR:Trojan.Script.Generic | 3/43 (7%) | AS31815 | 70.32.105.234 | abuse@mediatemple.net | US | ARIN | MEDIATEMPLE-106 | f13cb4711c5b575268ac196c2e12bb01 | http://stpetedentistry.com/aRpcdCjd/index.html || 2012-01-31 15:00:08 | sub15 | NOD32 | a variant of Win32/Kryptik.ZSA | 1/43 (2.3%) | AS56851 | 31.131.16.175 | support@vps.ua | UA | RIPE | VPS-UA | ac37f423f144c75944085879747b018e | http://31.131.16.175/files/34 || 2012-01-31 15:00:08 | sub15 | avira | TR/Graftor.13201 | 21/42 (50%) | AS56851 | 31.131.16.175 | support@vps.ua | UA | RIPE | VPS-UA | 9f19e44dc132b347a832901cc15caf21 | http://31.131.16.175/files/33 || 2012-01-31 15:00:08 | sub15 | Kaspersky | UDS:DangerousObject.Multi.Generic | 1/43 (2.3%) | AS56851 | 31.131.16.175 | support@vps.ua | UA | RIPE | VPS-UA | aeb2b379753f4e0305fba2df976b4105 | http://31.131.16.175/files/32 || 2012-01-31 15:00:08 | sub15 | BitDefender | Trojan.Generic.KD.521892 | 14/43 (32.6%) | AS56851 | 31.131.16.175 | support@vps.ua | UA | RIPE | VPS-UA | edba5024b1d58cb6ea4842a88c2719a7 | http://31.131.16.175/files/31 || 2012-01-31 15:00:08 | sub15 | avira | TR/Reveton.A.295 | 4/43 (9.3%) | AS56851 | 31.131.16.175 | support@vps.ua | UA | RIPE | VPS-UA | 3b557553fb9323f9e5a88d9e99f96614 | http://31.131.16.175/files/30 || 2012-01-31 15:00:08 | sub15 | avira | TR/Reveton.A.294 | 22/41 (53.7%) | AS56851 | 31.131.16.175 | support@vps.ua | UA | RIPE | VPS-UA | 8554b68695c1a0f6e18285560eea5927 | http://31.131.16.175/files/29 || 2012-01-31 15:00:08 | sub15 | Panda | Suspicious file | 1/43 (2.3%) | AS56851 | 31.131.16.175 | support@vps.ua | UA | RIPE | VPS-UA | 6944814fdcdc6b051bef078ee0371f9c | http://31.131.16.175/files/24 || 2012-01-31 15:00:08 | sub15 | Kaspersky | UDS:DangerousObject.Multi.Generic | 2/43 (4.7%) | AS56851 | 31.131.16.175 | support@vps.ua | UA | RIPE | VPS-UA | db4a8a2c006c1881c291b9c3b370e9f0 | http://31.131.16.175/files/23 || 2012-01-31 15:00:08 | sub15 | Kaspersky | UDS:DangerousObject.Multi.Generic | 1/42 (2.4%) | AS56851 | 31.131.16.175 | support@vps.ua | UA | RIPE | VPS-UA | e02053e2541efe544dc84bc537740ac8 | http://31.131.16.175/files/22 || 2012-01-31 15:00:08 | sub15 | Kaspersky | UDS:DangerousObject.Multi.Generic | 2/42 (4.8%) | AS56851 | 31.131.16.175 | support@vps.ua | UA | RIPE | VPS-UA | 001bb4eb45b8ca991623bd1591eaf975 | http://31.131.16.175/files/20 || 2012-01-31 15:00:08 | sub15 | undef | unknown_exe | 0/43 (0.0%) | AS56851 | 31.131.16.175 | support@vps.ua | UA | RIPE | VPS-UA | e1859f1b36450632a7781c834aa10319 | http://31.131.16.175/files/19 || 2012-01-31 15:00:09 | sub16 | avira | ADWARE/Relevant.BA.775 | 20/43 (46.5%) | AS29789 | 66.254.123.32 | hostmaster@reflected.net | US | ARIN | REFLECTED-1 | 35ba9a463f0cc010bdb2e790d7c7482d | http://www.sexy-screen-savers.com/downloads/sexys103.exe || 2012-01-31 14:06:23 | sub5 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS47583 | 31.170.163.150 | abuse@main-hosting.com | US | RIPE | MAIN-HOSTING-SERVERS | 924f4d3dd3a4c0742e065f578c08ef95 | http://omlkzika.comuv.com/ph.lol?http://omlkzika.comuv.com/ph.lol? || 2012-01-31 14:41:08 | sub5 | avira | PHP/RemoteAdmi.5398 | 18/43 (41.9%) | AS29873 | 65.254.254.34 | bnbrock@maileig.com | US | ARIN | BIZLAND-FC03 | 9c997e6467b400f4cd1a857003d45884 | http://selectsalvage.net/cyber-tech.txt?? || 2012-01-31 14:44:04 | sub5 | avira | PHP/RemoteAdmi.5398 | 29/43 (67.4%) | AS29873 | 65.254.254.34 | bnbrock@maileig.com | US | ARIN | BIZLAND-FC03 | 4a90c7ffbdf3b7f65b4acbe9b1c0f702 | http://selectsalvage.net/myid.flv? || 2012-01-31 14:44:10 | sub5 | avira | PHP/Loader.9852 | 12/43 (27.9%) | AS29873 | 65.254.254.34 | bnbrock@maileig.com | US | ARIN | BIZLAND-FC03 | 383fbc0950c01db0074231060ae05133 | http://selectsalvage.net/jcx.flv? || 2012-01-31 15:13:58 | sub10 | Comodo | UnclassifiedMalware | 5/43 (11.6%) | AS29925 | 66.240.183.21 | shu.lam@momentum.com | CA | ARIN | MASMEDIA-NET | 9451fe8f1c7dd0c13a30f4ce797fb477 | http://66.240.183.21/vnc/suporte018.exe || 2012-01-31 15:13:59 | sub10 | DrWeb | Adware.Downware.113 | 5/43 (11.6%) | AS46281 | 94.127.76.190 | ripeadmin@cotendo.com | US | RIPE | IL-CTNDO-20081008 | d217ad3865d28adf9635b424be066fba | http://cdn01.bcdn.info/geo/downloads/VLC/geo/IN/setup.exe || 2012-01-31 15:16:43 | sub16 | clamav | PUA.Packed.ASPack | 6/42 (14.3%) | AS34989 | 91.189.180.49 | abuse@fasthost.no | NO | RIPE | NO-STW-20070228 | 584ad6a118f7e8a0673241b184378a09 | http://www.boc.idrett.no/includes/video.scr || 2012-01-31 15:16:43 | sub16 | clamav | PUA.Game.Casino-2 | 14/43 (32.6%) | AS17036, AS22653 | 69.61.74.188 | abuse@cyberwurx.com | US | ARIN | NET-GLOBAL-COMPASS | f4f6bcae9e72f8caae94df7f94c02047 | http://www.casinoschule.com/downloads/expektcasino.exe || 2011-12-14 00:10:19 | sub17 | trendmicro | Mal_Hifrm | 2/43 (4.7%) | AS25847 | 64.131.77.246 | ipdept@servint.com | US | ARIN | SERVINT-CIDR-4 | e782bc2bfdba71106d2759f2a1337c26 | http://www.petstojapan.com |+---------------------+-------------+---------------+--------------------------------------+---------------+---------------------------------------------+-----------------+--------------------------+---------+---------+-----------------------------+----------------------------------+-------------------------------------------------------------------------------+86 rows in set (0.02 sec)
+---------------------+-------------+------------------+---------------------------------------------+---------------+------------------------------------+-----------------+---------------------------+---------+--------+--------------------------+----------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| date | contributor | scanner | virusname | vt_score | AS | review | email | country | source | netname | md5sum | url |+---------------------+-------------+------------------+---------------------------------------------+---------------+------------------------------------+-----------------+---------------------------+---------+--------+--------------------------+----------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| 2012-01-31 15:31:09 | sub16 | DrWeb | Adware.InstallCore.15 | 2/42 (4.8%) | AS36420, AS30315, AS13749, AS21844 | 174.37.174.85 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-7 | e5d069202602d4bee6b165b5ee45a555 | http://i.facemoods.com/fsy/wr/Facemoods.exe || 2012-01-31 15:31:11 | sub16 | Avast | HTML:Script-inf | 8/43 (18.6%) | AS26496 | 184.168.252.1 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | d70a323ba364ecd690207c453e55299f | http://www.onlinemovies4us.com/ || 2012-01-31 15:31:11 | sub16 | undef | unknown_exe | | AS36420, AS30315, AS13749, AS21844 | 174.132.56.13 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-15 | 247d9844d0b634038246d85a9b167f95 | http://174.132.56.13/directdownload/blackdproxy22200completeinstaller.exe || 2012-01-31 15:31:11 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS39572 | 213.174.154.111 | abuse@advancedhosters.com | US | RIPE | ADVANCEDHOSTERS-NET | 7c230bca3267c5ecda901901521679c3 | http://4megaupload.com/download/recuva-rar-5068672.html || 2012-01-31 15:31:11 | sub16 | TheHacker | Posible_Worm32 | 1/41 (2.4%) | AS29246 | 195.68.250.91 | abuse@optilian.net | FR | RIPE | OPTILIAN | 7d34637317848e2a055ae72c48f05adc | http://bluemars.org/clipx/clipx-1.0.3.9g-setup-x86.exe || 2012-01-31 15:31:11 | sub16 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS4766 | 112.175.243.21 | abuse@kornet.net | KR | APNIC | KORNET-KR | d8aa9252d056061eb9c0841d4d1340ba | http://bodis-tigiado.co.cc/ || 2012-01-31 15:31:11 | sub16 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS4766 | 112.175.243.22 | abuse@kornet.net | KR | APNIC | KORNET-KR | 4db8c2b2112a92895920158408b2fb7f | http://bodis-tigiangoaite.co.cc/ || 2012-01-31 15:31:11 | sub16 | F_Secure | Gen:Trojan.Heur.DP.OMW@aOcoctlc | 3/41 (7.3%) | AS2914 | 198.63.208.35 | abuse@ntt.net | US | ARIN | NTTA-198-63 | f964783da0ecb632c19f7c6290bdc86c | http://boxedapp.com/download/boxedapppacker__demo || 2012-01-31 15:31:11 | sub16 | clamav | JS.Obfus-31 | 19/43 (44.2%) | AS2044 | 66.11.225.247 | abuse@dotster.com | US | ARIN | DOTSTERNET | d0254774a11c3000553f58b19fe8c625 | http://brackcomne.fortunecity.com/fvrhaa.js || 2012-01-31 15:31:12 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | 962a6af7d4c83378a0a9c38c1fd95c89 | http://electnate.com/ || 2012-01-31 15:31:12 | sub16 | undef | unknown_arch_zip | 0/41 (0.0%) | AS15133 | 93.184.221.133 | noc@edgecast.com | EU | RIPE | EDGECAST-NETBLK-04 | a429089a1fe81c26ac58413dd83a681c | http://fc04.deviantart.net/fs38/f/2008/312/7/1/Luna_Inspirat_by_krosavcheg.zip || 2012-01-31 15:31:12 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS49704 | 91.223.77.122 | abuse@antiddos.biz | UA | RIPE | ANTIDDOS-NET | 117ac827877ede75af7dac924b502018 | http://files-boomloaders.ru/ || 2012-01-31 15:31:12 | sub16 | McAfee | JS/Downloader | 2/43 (4.7%) | AS7366 | 199.7.177.240 | abuse@lemuriaco.com | US | ARIN | LEMURIA-COMMUNICATIONS | 3c14e7dece5c4f8d6507e84f9a58d14c | http://hotfile.com/dl/144263393/6925384/Koxp_TT_Launcer.exe.html || 2012-01-31 15:31:12 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS31815 | 205.186.175.236 | abuse@mediatemple.net | US | ARIN | MEDIATEMPLE-106 | 141b203c3ccc24c382b5fa9c732e91ce | http://makeovergames.com/ || 2012-01-31 15:31:12 | sub16 | undef | unknown_file_$INSTDIR/AcrylicController.exe | 0/43 (0.0%) | AS24940 | 78.46.58.150 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET | a2cd7a4a2b7efefc157231bbe6ca3839 | http://mayakron.altervista.org/opensource/Windows/data/Acrylic.exe || 2012-01-31 15:31:12 | sub16 | ClamAV | Trojan.Fakesec-317 | 1/41 (2.4%) | AS36420, AS30315, AS13749, AS21844 | 174.120.202.61 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 5f593aa8799ba176f2950883312bf582 | http://mindtoheartinstitute.com/Yogamiamitoolbar2.exe || 2012-01-31 15:31:12 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS30058 | 50.7.240.90 | abuse@fdcservers.net | US | ARIN | FDCSERVERS | 1a241dbfa42185b8bf0b167a7958c0a1 | http://music.djmaza.com/music/indian_movies/Valentines%20Night%20(2012)/03%20-%20VN%20-%20Valentine%20Song%20[www.DJMaza.Com].mp3 || 2012-01-31 15:31:12 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS33070, AS19994, AS10532, AS27357 | 98.129.126.140 | abuse@rackspace.com | US | ARIN | RSCP-NET-4 | 485bcdc590da8d0232908cf9b82e216e | http://pantys.co/ || 2012-01-31 15:31:13 | sub16 | avira | HTML/Shellcode.Gen | 7/42 (16.7%) | AS4609 | 202.175.50.210 | noc@macau.ctm.net | MO | APNIC | CTM-MO | 4f94cbad13744386748f298479ec7128 | http://portal.dsej.gov.mo/webdsejspace/inc/js/transform.js || 2012-01-31 15:31:13 | sub16 | undef | unknown_html_google_malware | 1/43 (2.3%) | AS26496 | 208.109.78.128 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 695ce7d2b3a043fa3bb5abf9d7888891 | http://regtool.software-phile.com/regtool.exe || 2012-01-31 15:31:13 | sub16 | Antiy_AVL | Trojan/win32.agent.gen | 2/43 (4.7%) | AS40366 | 174.35.64.22 | support@cdnetworks.com | US | ARIN | CDNET-USA-1 | 511f66fbc55e74a0239f135c79ded31e | http://res1.esnips.com/apps/eSnipsDownloader.exe || 2012-01-31 15:31:13 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | 4f1aa8290a52ceddcb36d6cd591f382c | http://sexandstars.com/ || 2012-01-31 15:31:13 | sub16 | undef | unknown_html_RFI_shell | 0/42 (0.0%) | AS33070, AS19994, AS10532, AS27357 | 98.129.126.141 | abuse@rackspace.com | US | ARIN | RSCP-NET-4 | f741250c3521ac4f4af19e555183b159 | http://shaveddoors.com/ || 2012-01-31 15:31:13 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS39392 | 88.86.100.176 | zdenek@superhosting.cz | CZ | RIPE | CZ-SUPERNETWORK-20060214 | 450ce145bd11af4b744fa55e8af0eacd | http://sochorroman.ic.cz/undjru/RDU.php || 2012-01-31 15:31:13 | sub16 | avira | JS/Redirect.AC | 17/43 (39.5%) | AS8262 | 91.196.126.85 | abuse@superhosting.bg | BG | RIPE | SUPERHOSTINGBG | fb5857bb99b4bc95ebec9e29849ed0dd | http://steven.tvflamingo.net/ || 2012-01-31 15:31:13 | sub16 | Antiy_AVL | Trojan/Win32.Agent.gen | 4/42 (9.5%) | AS36351 | 75.126.186.244 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-3 | 2a36308a8738fc47a70d0863f953c5ae | http://www.affordablelifeinsuranceusa.com/downloads/affordable-life-insurance-websound.zip || 2012-01-31 15:31:13 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS47869 | 94.185.80.186 | abuse@netrouting.eu | SE | RIPE | NETROUTING-IP | 7ea9e6f27c2045133d5dc042fbd13b9d | http://www.cracks.cx/ || 2012-01-31 15:31:13 | sub16 | Avast | JS:Iframe-DU [Trj] | 13/43 (30.2%) | AS6724 | 81.169.140.190 | abuse@strato.de | DE | RIPE | STRATO-RZG-DED | cbf7ea4d7731bbdf30690229e79af4a2 | http://www.erlesentv.de/john-irving-letzte-nacht-in-twisted-river/ || 2012-01-31 15:31:13 | sub16 | Jiangmin | VirTool.VB.cp | 1/42 (2.4%) | AS32421 | 208.64.125.90 | noc@blacklotus.net | US | ARIN | NET-208-64-120-0-1 | ec6288c8f6b726e77b1a77da95fa3517 | http://www.freelimewiredownload.net/download/Limewire.exe || 2012-01-31 15:31:14 | sub16 | NOD32 | HTML/Iframe.B.Gen | 1/41 (2.4%) | AS19994 | 50.57.10.6 | abuse@rackspace.com | US | ARIN | RACKS-8-NET-4 | 85670d6000c1b6c70c8390d19a9a6f51 | http://www.fuzzyyellowballs.com/ || 2012-01-31 15:31:14 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS13601 | 209.213.105.125 | abuse-mh@peer1.com | US | ARIN | 209-213-96-0-NET | cf286132c8e8a1e7c4de035ac2481d74 | http://www.ggrove.com/ || 2012-01-31 15:31:14 | sub16 | Antiy_AVL | Trojan/Win32.Agent.gen | 4/43 (9.3%) | AS5048 | 209.90.78.77 | hostmaster@fiber.net | US | ARIN | FIBERNET-209-90-BLK-1 | 26f73038bff87a99da4d31a4ca91d8bc | http://www.jdairsoftguns.com/chmod.exe || 2012-01-31 15:31:14 | sub16 | Jiangmin | Worm/Palevo.fjp | 2/42 (4.8%) | AS36420, AS30315, AS13749, AS21844 | 174.133.165.242 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-15 | 9f18131498e250fb87ddc434b9eca439 | http://www.mydls.org/systools-ost-recovery.exe || 2012-01-31 15:31:14 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS40676 | 199.15.118.218 | noc@psychz.net | US | ARIN | PSYCHZ-NETWORKS | 0450500908fe543438998b24cdf453d7 | http://www.nationalpubsite.net/D457/79/2435/792490.1/89/15579/1247231/7B02?hw=?nuaWM/sb/sa-17269.e96/?mu=42 || 2012-01-31 15:31:14 | sub16 | F_Prot | File is damaged | 1/43 (2.3%) | AS36420, AS30315, AS13749, AS21844 | 174.120.202.34 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 3bdd9aa6441290b463e39b72bfcc02b7 | http://www.orchidstoresecrets.com/Orchid_Types_Toolbar.exe || 2012-01-31 15:31:14 | sub16 | eSafe | Win32.WS.Reputation | 4/42 (9.5%) | AS26496 | 97.74.215.181 | noc@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | f77766c12d2ea85f71332522c8866804 | http://www.sautinsoft.com/components/rtftohtml_com.exe || 2012-01-31 15:31:14 | sub16 | clamav | PUA.Packed.ASPack | 4/41 (9.8%) | AS25973 | 69.174.52.42 | danc@inmotionhosting.com | US | ARIN | MZIMA08-CUST-INMOTION04 | 719e531fca7b3c4fbe4b7cf16e8ded4a | http://www.soft.tahionic.com/download-ruler/PixelRuler.exe || 2012-01-31 15:31:14 | sub16 | CAT_QuickHeal | (Suspicious) - DNAScan | 3/41 (7.3%) | AS2914 | 198.63.208.81 | abuse@ntt.net | US | ARIN | NTTA-198-63 | 0e1a73269736b09552ba5d3137fd2cfe | http://www.sowsoft.com/dp/distr/app-00450eb1096/site-001b1da2d96/lng-eng/idsearch.zip || 2012-01-31 15:31:14 | sub16 | undef | unknown_html_RFI_php | 0/42 (0.0%) | AS2044 | 198.145.26.134 | abuse@iinet.com | US | ARIN | NET-198-145-0-0-1 | 0cbd8cc0e20fd5f42c60df2e8c5d4938 | http://www.spycar.org/ || 2012-01-31 15:31:14 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS2044 | 198.145.26.134 | abuse@iinet.com | US | ARIN | NET-198-145-0-0-1 | 599c077b176245823e7b32f53bb4d8ae | http://www.spycar.org/Spycar.html || 2012-01-31 15:31:14 | sub16 | AVG | BackDoor.Hupigon5.BJQU | 6/42 (14.3%) | AS47692 | 77.244.240.139 | noc@nessus.at | AT | RIPE | AT-NESSUS-20070410 | 6558ed6f8f557c9bf54bc88afde1e1b6 | http://www.usec.at/downloads2/SystemShield_installer_free.exe || 2012-01-31 15:31:14 | sub16 | ClamAV | PUA.JS.Iframe | 2/43 (4.7%) | AS29182 | 188.120.248.137 | abuse@ispserver.com | LU | RIPE | LU-ISPSYSTEM-20090505 | 1c1222676661968b3f34c59ed0cef2c5 | http://xakeroff.net/ || 2012-01-31 15:31:14 | sub16 | McAfee_GW_Editio | Heuristic.BehavesLike.JS.Suspicious.G | 1/42 (2.4%) | AS41947 | 195.216.243.26 | abuse@compubyte.vg | GB | RIPE | COMPUBYTE-NET | 25717f6e72e160ebd41e954227b96b69 | http://zarabotatdeneg.ucoz.ru/ || 2012-01-31 15:40:07 | sub14 | avira | TR/Spy.290816.127 | 31/42 (73.8%) | AS16276 | 188.165.244.159 | abuse@ovh.net | FR | RIPE | OVH | 9f6e48bc195e20c00504f47edb1e9691 | http://afffili.com/a/b/upd.php || 2012-01-31 15:40:07 | sub14 | clamav | PUA.Packed.PECompact-1 | 3/43 (7%) | AS13100 | 87.252.210.15 | degripeadmin@dataelec.com | IE | RIPE | IE-INFLOW-20050923 | 1b67d5c05836698dc105ffa04d610196 | http://banner.titancasino.com/cgi-bin/SetupCasino.exe?member=cpartner&creferer=source:AffID68 || 2012-01-31 15:40:07 | sub14 | Ikarus | Gen.Trojan.Heur | 6/43 (14%) | AS22576 | 72.232.218.74 | abuse@layeredtech.com | US | ARIN | LAYERED-TECH- | 25fd987202ed51599e0bc703c57c565c | http://download.megajogos.com.br/megajogos-sueca-instalador.exe || 2012-01-31 15:40:07 | sub14 | avira | ADWARE/Adware.1499508 | 16/42 (38.1%) | AS19318 | 209.159.146.144 | network@interserver.net | US | ARIN | INTERSERVER | 3293cace2ac355676329424e5b71725c | http://download.xvidcodec.org/dm-ddd-xvid.exe?filename=xvidsetup.ex&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&lt || 2012-01-31 15:40:07 | sub14 | avira | TR/Agent.434176.30 | 7/43 (16.3%) | AS7366 | 199.7.177.238 | abuse@lemuriaco.com | US | ARIN | LEMURIA-COMMUNICATIONS | dbd39ad050a620f42fd720d52ff1a31a | http://hotfile.com/dl/143933681/8e88081/3 || 2012-01-31 15:40:07 | sub14 | Avast | Win32:MediaGet-B [PUP] | 9/43 (20.9%) | AS41947 | 92.241.182.191 | abuse@wahome.ru | RU | RIPE | WAHOME-COLO | 35170bb19d672061e1816c7735ffccd8 | http://ld.mediaget.com/index.php?l=en&u=http:%2F%2Fh33t.com%2Fdetails.php?id=e4a5e7d18505d780df2e67ab9d779cac0295d353&r=h33t&f=nightwish__2004__wish_i_had_an_angel_[cdsingle || 2012-01-31 15:40:07 | sub20 | clamav | PUA.Packed.ASPack | 7/41 (17.1%) | AS34989 | 91.189.180.49 | abuse@fasthost.no | NO | RIPE | NO-STW-20070228 | d2b4d2f8dcb8389dd1cf124ad643bd5f | http://www.boc.idrett.no/////templates/norton.exe || 2012-01-31 14:46:02 | sub8 | undef | WebToolbar.Win32.RK.cb | 0/43 (0.0%) | AS33182 | 72.29.76.78 | abuse@dimenoc.com | US | ARIN | HOSTDIME-PI-1 | fbaac66753bff85a0dcae8bc49152d0e | http://bjvanloon.nl/bin/ || 2012-01-31 15:50:03 | sub16 | NOD32 | Win32/Vittalia | 1/40 (2.5%) | AS16276 | 94.23.153.141 | abuse@ovh.net | GB | RIPE | UK-OVH | 42c18445d96a39c37be048f1ab41ff0a | http://download.filewin.net/installers/out/en/37/www.filewin.net/en/8b/b2/d5cf5235a10239b29ad4c5b4b3d5/installer_adobe_flash_player_English.exe || 2012-01-31 15:56:41 | sub16 | avira | JS/Decdec.psc | 16/43 (37.2%) | AS2044 | 66.11.225.247 | abuse@dotster.com | US | ARIN | DOTSTERNET | ddbe15a2adc4b23c5190ca3bd510059e | http://brackcomne.fortunecity.com/hotmail-login.html || 2012-01-31 15:56:41 | sub16 | clamav | PUA.IRC-Client.mIRC-37 | 3/43 (7%) | AS26496 | 72.167.1.1 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 2eed2d1261548a1e92e61facbd52056e | http://chrisqueen.com/dp/distr/app-hausl86/site-0062101e758/lng-eng/hausl86.exe || 2012-01-31 15:56:41 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS35908 | 98.126.18.236 | admin-arin@vpls.net | US | ARIN | VPLSNET | a9e648e2cd25133c811990aca1f9d988 | http://gass.passinggas.net/3g.qq/ || 2012-01-31 15:56:41 | sub16 | Norman | W32/Suspicious_Gen2.UJJYT | 2/43 (4.7%) | AS40366 | 174.35.6.44 | support@cdnetworks.com | US | ARIN | CDNET-USA-1 | 793742438efac374d1ada36101dd56dd | http://install.iminent.com/IminentSetup{2.w2Lw586.1}.exe || 2012-01-31 15:56:41 | sub16 | DrWeb | Adware.Downware.97 | 1/43 (2.3%) | AS30633 | 108.59.10.28 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | b501ccb06cc6e52dd5469fe272c6fd19 | http://premiumstorage.info/v24/ || 2012-01-31 15:56:41 | sub16 | DrWeb | Adware.Downware.97 | 1/43 (2.3%) | AS30633 | 108.59.10.28 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | f9e5cee7ea161597537b93601f75588e | http://premiumstorage.info/v54/ || 2012-01-31 15:56:41 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS33597 | 67.208.74.71 | abuse@inforelay.com | US | ARIN | INFORELAY-NETBLOCK01 | 9c7318c9eac7f2508e3505275133bdd9 | http://www1.personalcleanerkx.rr.nu/votixd?200agnp=VqaUw6Tl1NfP19bglNbVx6mdkaCVmNvhlm1jh8jQ0uKis8a%2FlM3foJ2VmJTU5ajvqGdWw9DSrdLEtdvh3c7RidLa1dCi3dXrn6Oeh8rRrcW4mNzfq5ickZ2WkpyWqZ6mZmhW1NvP5OXYr5nm18WplJyXmpTZ5te1aGGVlsih1aeWoqqV4tSplJ%2BXmKedqKKta1aU0NTP2d6i6ermoY%2Ff197Uz9XG5Njxo6Wqj9ngnt7amOzU5sfYoNjMxd3Q3JHql5Ztydvi4JWYs5ihtIaeqePc2JzM4drfnpVexNbblaKr5%2BXbk5Sy1s2KlLLZl52upJOkhpqy2pWXqOSUoaWRlaLK1ODIl568pVVil9rd5eLI15iistjRxZGXl9HJl568ZFVil93T1JWYtqOyspm9qdamo5OXqODqnlVjpc%2Fi5OCKpKiir4aemJ6rhqCapLHkk6CZwuHo0d7PoNbe24aemJ6rhqCb19SdZXSTk5vcxKW4o7fUwY6ctLOr2t%2B4qKzfV2Jm1trVlaOps7nA2KS6q9%2FI2LbTo%2BLqX5GEtKzU0siSvaza3s6gzeS6spI%3D || 2012-01-31 15:56:41 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS33597 | 67.208.74.71 | abuse@inforelay.com | US | ARIN | INFORELAY-NETBLOCK01 | d9103a3d5922f1e31e629f501a47ad5d | http://www1.powerholderqb.rr.nu/ftlr211_8020.php || 2012-01-31 15:56:41 | sub16 | McAfee_GW_Editio | Heuristic.LooksLike.HTML.Infected.E | 1/43 (2.3%) | AS30475 | 173.248.143.40 | noc@wehostwebsites.com | US | ARIN | NET-WEHOST-3 | 98d350e169ef6b3787d43839edd2f2f5 | http://www.2009taxfiling.com/ || 2012-01-31 15:56:41 | sub16 | clamav | Trojan.Agent-250214 | | AS36420, AS30315, AS13749, AS21844 | 184.173.219.200 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-17 | 8eb9e4031f86497e43b16806ef081eb2 | http://www.macvideosoft.com/software/macvideo_dvd23gp.exe || 2012-01-31 15:21:31 | sub5 | avira | PHP/Pbot.AL | 22/43 (51.2%) | AS14141 | 98.142.215.184 | wnoc@wiresix.com | US | ARIN | WIRESIX | beb31bfdd424ffab75b418f5befd2039 | http://fileden.com/files/2012/1/31/3257643/highsky.txt |+---------------------+-------------+------------------+---------------------------------------------+---------------+------------------------------------+-----------------+---------------------------+---------+--------+--------------------------+----------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+63 rows in set (0.00 sec)
+---------------------+-------------+-------------+--------------------------------------+---------------+---------------------------------------------+-----------------+----------------------------------+---------+--------+-----------------------------+----------------------------------+--------------------------------------------------------------------------------------------------------------------+| date | contributor | scanner | virusname | vt_score | AS | review | email | country | source | netname | md5sum | url |+---------------------+-------------+-------------+--------------------------------------+---------------+---------------------------------------------+-----------------+----------------------------------+---------+--------+-----------------------------+----------------------------------+--------------------------------------------------------------------------------------------------------------------+| 2012-01-31 16:30:05 | sub10 | BitDefender | Gen:Variant.TDss.69 | 10/43 (23.3%) | AS29854, AS32780 | 50.115.112.244 | abuse@hostingservicesinc.net | US | ARIN | HOSTINGSERVICES-INC | 9507cd2662e2429786a928aa711de23e | http://aakansha.co.in/smtp31jan.exe || 2012-01-31 16:30:06 | sub16 | undef | unknown_html_google_malware | 0/41 (0.0%) | AS26496 | 68.178.232.100 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | ebf87808253b9892ef15bdfdbd1b7203 | http://tvpaihang.com/ || 2012-01-31 16:40:05 | sub10 | avira | ADWARE/Kraddare.AT.10 | 13/40 (32.5%) | AS38700 | 115.68.17.85 | network@smileserv.com | KR | APNIC | SMILESERV-KR | 6986f653d10af2f2354b2939e4903a79 | http://file.privacyinfo.co.kr/total/PrivacyInfoUpdate.exe || 2012-01-31 16:40:05 | sub24 | avira | TR/Spy.ZBot.DS.3 | 27/43 (62.8%) | AS32613 | 174.142.247.164 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-06 | 7580de5edbe07ae539d7021b092d2b29 | http://174.142.247.164/files/104 || 2012-01-31 16:40:05 | sub24 | avira | TR/Spy.ZBot.afyb | 27/43 (62.8%) | AS32613 | 174.142.247.164 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-06 | cf887221e7eb733bcf7639e7970aca22 | http://174.142.247.164/files/107 || 2012-01-31 16:40:05 | sub24 | avira | TR/Spy.ZBot.DS.3 | 24/43 (55.8%) | AS32613 | 174.142.247.164 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-06 | 56c51016c8912437999888b28fd9d1e1 | http://174.142.247.164/files/118 || 2012-01-31 16:40:05 | sub24 | avira | TR/Spy.ZBot.DS.3 | 7/43 (16.3%) | AS32613 | 174.142.247.164 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-06 | c389f5c29f04bc96f242b839a2273274 | http://174.142.247.164/files/120 || 2012-01-31 16:40:06 | sub24 | Fortinet | W32/Yakes.B!tr | 3/43 (7%) | AS32613 | 174.142.247.164 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-06 | f45e9c4b055dfb089929f6bf2744cc3b | http://174.142.247.164/files/124 || 2012-01-31 16:40:06 | sub24 | eSafe | Win32.Banker | 2/42 (4.8%) | AS197043 | 31.214.170.232 | abuse@xsserver.eu | DE | RIPE | XSSERVER-EU | e9cc8c20b0e682c77b97e6787de16e5d | http://31.214.170.232/files/26 || 2012-01-31 16:40:06 | sub24 | eSafe | Win32.Banker | 1/43 (2.3%) | AS197043 | 31.214.170.232 | abuse@xsserver.eu | DE | RIPE | XSSERVER-EU | 689f5374450115b9a3f90024883732af | http://31.214.170.232/files/27 || 2012-01-31 16:40:06 | sub24 | undef | unknown_exe | 0/43 (0.0%) | AS197043 | 31.214.170.232 | abuse@xsserver.eu | DE | RIPE | XSSERVER-EU | f1888b7d3ffdbe0f8d45c3053b5fde86 | http://31.214.170.232/files/29 || 2012-01-31 16:40:06 | sub24 | undef | unknown_exe | 1/41 (2.4%) | AS197043 | 31.214.170.232 | abuse@xsserver.eu | DE | RIPE | XSSERVER-EU | c9866c628a8c506a0dfa4b8a6f71e642 | http://31.214.170.232/files/30 || 2012-01-31 16:40:06 | sub16 | F_Prot | JS/IFrame.HC.gen | 4/43 (9.3%) | AS43239 | 91.196.216.58 | abuse@specenergo2.ru | RU | RIPE | SPETSENERGO-NET | 47e3d2e7f62b2817ecd25781fa78db9d | http://forcetstat.com/stat.php || 2012-01-31 16:40:13 | sub10 | clamav | PUA.Packed.ASPack | 8/43 (18.6%) | AS34989 | 91.189.180.49 | abuse@fasthost.no | NO | RIPE | NO-STW-20070228 | 584ad6a118f7e8a0673241b184378a09 | http://boc.idrett.no/includes/video.scr || 2012-01-31 15:37:01 | sub8 | undef | W32/Casino.F.gen!Eldorado | 0/41 (0.0%) | AS34989 | 91.189.180.49 | abuse@fasthost.no | NO | RIPE | NO-STW-20070228 | dd5d02cc750d2855cf6f6c5bf5bea587 | http://www.boc.idrett.no/includes/ || 2012-01-31 15:37:02 | sub8 | undef | Trojan-Downloader.Win32.Banload.brmk | 0/42 (0.0%) | AS29925 | 66.240.183.21 | shu.lam@momentum.com | CA | ARIN | MASMEDIA-NET | 18b1f360fe87659679c3dac587eb6641 | http://66.240.183.21/vnc/ || 2012-01-31 16:50:18 | sub20 | undef | unknown_exe | 0/43 (0.0%) | AS26277 | 216.108.233.70 | noc@premianet.com | US | ARIN | PREMIANET | c8307fd5b7257fd5b25b86ccad69b28c | http://www.prep2pass.com/jre-6-windows-i586-iftw.exe || 2012-01-31 16:13:43 | sub5 | avira | PHP/Pbot.Y.1 | 28/42 (66.7%) | AS45839 | 124.217.246.34 | abuse@piradius.net | MY | APNIC | PIRADIUS-NET | be027280bae3eacdd3b61b482b98296c | http://vikdiscount.com/byroe.jpg?? || 2012-01-31 17:02:30 | sub14 | Avast | Win32:OpenInstall-A [PUP] | 7/43 (16.3%) | AS16509 | 72.21.214.160 | noc@amazon.com | US | ARIN | AMAZON-02 | 8ad40495da5f83d5ffa7012aaede7c96 | http://dl02.s3.amazonaws.com/installers/669581/oi_tubesucker.exe || 2012-01-31 17:15:15 | sub10 | avira | DR/Agent.QL | 14/43 (32.6%) | AS50465 | 193.106.172.149 | support@iqhost.ru | RU | RIPE | IQHost | e64b6ffe37fba33f3b7a0663bdfd93db | http://193.106.172.149/exe.exe || 2012-01-31 17:15:15 | sub10 | avira | TR/Dropper.Gen | 22/43 (51.2%) | AS27699 | 201.69.165.102 | security@telesp.net.br | BR | LACNIC | 002.558.157/0001-62 | 09574713441f7eb864a157b54878d5c4 | http://201.69.165.102/cliente_0063214.exe || 2012-01-31 17:21:55 | sub10 | Avast | NSIS:SMSSend-CZ [Trj] | 9/42 (21.4%) | AS8972 | 85.25.108.103 | abuse@justdsl.de | DE | RIPE | JustDSL | 50e99f7a1d9f06eb9947449e73d4b18e | http://85.25.108.103/program/avz4.exe || 2012-01-31 17:45:19 | sub24 | BitDefender | Gen:Variant.Sirefef.52 | 7/42 (16.7%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | a2a0514102bf77ead9678edc67bd5f6a | http://79.137.237.66/files/1239 || 2012-01-31 17:45:19 | sub16 | avira | JS/iFrame.GT.1 | 24/43 (55.8%) | AS19066 | 96.30.33.232 | noc@wiredtree.com | US | ARIN | WIREDTREE | 776db2ea6edeb9f25a3b823dd484062f | http://blogdelcoche.es/motor/evora-s/ || 2012-01-31 18:30:04 | sub10 | clamav | PUA.Packed.ASPack | 14/43 (32.6%) | AS34989 | 91.189.180.49 | abuse@fasthost.no | NO | RIPE | NO-STW-20070228 | d2b4d2f8dcb8389dd1cf124ad643bd5f | http://boc.idrett.no/////templates/norton.exe || 2012-01-31 18:30:05 | sub10 | AVG | BackDoor.Hupigon5.BJQU | 6/43 (14%) | AS47692 | 77.244.240.139 | noc@nessus.at | AT | RIPE | AT-NESSUS-20070410 | 6558ed6f8f557c9bf54bc88afde1e1b6 | http://usec.at/downloads2/SystemShield_installer_free.exe || 2012-01-31 18:40:10 | sub23 | BitDefender | Gen:Variant.Sirefef.52 | 7/42 (16.7%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | a2a0514102bf77ead9678edc67bd5f6a | http://os8128.ru/files/1239 || 2012-01-31 15:48:12 | sub8 | undef | WebToolbar.Win32.MyWebSearch.gen | 0/43 (0.0%) | AS33070, AS19994, AS10532, AS27357 | 98.129.229.50 | abuse@rackspace.com | US | ARIN | RSCP-NET-4 | 5d46390f24726e001894758cbdc296f1 | http://www.spywarehelpcenter.com/ || 2012-01-31 17:47:24 | sub8 | undef | RiskTool.Win32.Killer.b | 0/43 (0.0%) | AS15244 | 216.227.214.76 | hostmaster@lunarpages.com | US | ARIN | ADDD2NET-DOT-COM | 6f5d9f6aa600757dc36088d79623ae4f | http://vwoxsigax.casinos4you.eu/ || 2012-01-31 17:47:43 | sub8 | undef | Rogue:Win32/Onescan | 0/43 (0.0%) | AS3595 | 69.73.147.62 | abuse@jaguarpc.com | US | ARIN | LH-GOLD-NETWORK | e96206e4ccb9f6da287a5e200b96b7f2 | http://sonico.tarjetasbubba.org/download/ || 2012-01-31 17:47:48 | sub8 | undef | Trojan.Win32.Jorik.IRCbot.gum | 0/43 (0.0%) | AS30496 | 204.197.252.72 | noc@privatesystems.net | US | ARIN | PRIVATE-4 | 43456eddf80df5749d7cc4795744834c | http://mediajudo.com/images/ || 2012-01-31 17:47:57 | sub8 | undef | Trojan.Generic.KD.521957 | 0/42 (0.0%) | AS50465 | 193.106.172.149 | support@iqhost.ru | RU | RIPE | IQHost | 85453b9e63ba9668752706e50b63465d | http://gatinhasdanet.com.br/ || 2012-01-31 18:51:48 | sub14 | avira | DR/Agent.QL | 13/42 (31%) | AS50465 | 193.106.172.149 | support@iqhost.ru | RU | RIPE | IQHost | e64b6ffe37fba33f3b7a0663bdfd93db | http://gatinhasdanet.com.br/MediaPlayer_Video_Numero=ID_00053773400322.com || 2012-01-31 18:06:04 | sub5 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS47583 | 31.170.161.216 | abuse@main-hosting.com | US | RIPE | MAIN-HOSTING-SERVERS | 318e1d4914c4899db2256f80fd736d30 | http://lokomesmo.freeiz.com/terra.lol? || 2012-01-31 18:38:01 | sub5 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS47583 | 31.170.161.216 | abuse@main-hosting.com | US | RIPE | MAIN-HOSTING-SERVERS | 318e1d4914c4899db2256f80fd736d30 | http://lokomesmo.freeiz.com/terra.lol?http://lokomesmo.freeiz.com/terra.lol?http://lokomesmo.freeiz.com/terra.lol? || 2012-01-31 18:29:25 | sub5 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS47583 | 31.170.161.216 | abuse@main-hosting.com | US | RIPE | MAIN-HOSTING-SERVERS | 318e1d4914c4899db2256f80fd736d30 | http://lokomesmo.freeiz.com/terra.lol?http://lokomesmo.freeiz.com/terra.lol? || 2012-01-31 18:02:40 | sub5 | avira | SPR/PHP.ID | 23/42 (54.8%) | AS197767 | 91.226.92.19 | support@sibhoster.ru | RU | RIPE | Sobis-net | 6c0dc07d5ff60bbdc1b526513e907107 | http://alexandrohouse.ru/id.txt? || 2012-01-31 19:10:09 | sub16 | DrWeb | Trojan.Winlock.5335 | 2/43 (4.7%) | AS6539 | 65.255.235.50 | western.gt@bell.ca | CA | ARIN | GT-65-255-235-0 | 30bbc309dddebd1a5640668ecb389849 | http://www.largedocument.com/2/034a241f/1.exe || 2012-01-31 19:20:05 | sub16 | eSafe | Win32.Trojan | 1/43 (2.3%) | AS33597 | 205.251.215.251 | ipmanage@rogers.wave.ca | CA | ARIN | ROGERS-CAB-99 | 19ae58b1077ac1b2c83a116c7d7bd583 | http://cloudfront.systweak.com/new/rcpsetup_dcnew_300_new.exe || 2012-01-31 19:20:05 | sub16 | DrWeb | Adware.W3i.9 | 2/42 (4.8%) | AS22822 | 95.140.237.79 | guy@llnw.com | GB | RIPE | LLNW-EU-4 | b542b85249770e81dad3edd886b88b55 | http://dl2.iq5download.com/lm/cdn2/mplayer_tuguu_1271.exe || 2012-01-31 19:20:05 | sub16 | DrWeb | Adware.W3i.9 | 1/43 (2.3%) | AS15133 | 93.184.221.133 | noc@edgecast.com | EU | RIPE | EDGECAST-NETBLK-04 | 5a4fd3fd1871ed9425e85805a0703abb | http://dl5.iq6download.com/lm/lmdisc/jenkatarcade.exe || 2012-01-31 19:30:05 | sub10 | DrWeb | Trojan.DownLoader5.18437 | 4/41 (9.8%) | AS38676 | 115.165.177.39 | lws2065@nate.com | KR | APNIC | WIZCDN-KR | 7ff4af0057c470d1baf18a0276662fa0 | http://fdisk.co.kr/mmsv/winup/CP/Winup3.0_down_wp015.exe || 2012-01-31 19:30:05 | sub10 | clamav | Adware.Adsearcher | 7/33 (21.2%) | AS9943 | 113.10.59.57 | abuse@gsgbi.co.kr | KR | APNIC | KNCTV-KR | 7e2a44dfcc3463e628d756a39b832d7b | http://mdown.funtvi.kr/mncastN/EasyOn.exe || 2012-01-31 19:30:07 | sub16 | DrWeb | Adware.InstallCore.19 | 2/43 (4.7%) | AS16509 | 207.171.163.23 | noc@amazon.com | US | ARIN | AMAZON-01 | 3456518fd6fd89d582c1bc6f15c8e256 | http://s3.amazonaws.com/Adlsoft/releases/ADLSoft_UnCompressor_triple_2nd_offer_0412_s.exe || 2012-01-31 19:30:10 | sub7 | avira | PHP/Pbot.A.6 | 33/43 (76.7%) | AS42868 | 77.245.153.100 | abuse@nw.com.tr | TR | RIPE | TR-NIOBE-20070427 | ffab2ef0295465ff15976de784d041e8 | http://www.anilorak.com/i/js/byroe.txt?? || 2012-01-31 19:35:19 | sub10 | eSafe | Win32.TrojanAgent.Dt | 5/43 (11.6%) | AS24955 | 92.50.149.126 | vadim@ufanet.ru | RU | RIPE | UBN | ae3d65624df7a5dbe69374b64a6698cf | http://upsvcm.myftp.org:80/gptsvc.exe || 2012-01-31 19:35:19 | sub10 | avira | TR/Spy.Banker.135168.1 | 22/43 (51.2%) | AS15201 | 200.98.142.214 | l-registrobr-uol@corp.uol.com.br | BR | LACNIC | 001.109.184/0001-95 | 63947cdf566566435434ad87976b7b5d | http://200.98.142.214/3/curriculum_anexado_docx.exe || 2012-01-31 19:35:19 | sub10 | avira | TR/Agent.qteu | 26/43 (60.5%) | AS13768 | 64.34.72.89 | net-admin@peer1.net | US | ARIN | PEER1-BLK-08 | 40c7d56933ba27ab0c5be78534cadb61 | http://64.34.72.89/download/utils/webutil_0098/spooldsnk.exe || 2012-01-31 19:35:19 | sub10 | avira | TR/Click.NAA.2 | 36/42 (85.7%) | AS6939 | 65.19.183.224 | abuse@he.net | US | ARIN | HURRICANE-4 | 6d5a98b121ae76f7711002c5c1eebb9a | http://65.19.183.224/bak/2.1d/Setup2.165.exe || 2012-01-31 19:35:19 | sub10 | Avast | Win32:VBCrypter-A [Cryp] | 20/43 (46.5%) | AS25761 | 72.20.27.252 | abuse@staminus.net | US | ARIN | STAMINUS-COMMUNICATIONS | 792995d5e7ae8d41e951fba49745f469 | http://72.20.27.252/instantserv.exe || 2012-01-31 19:35:27 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS14618 | 107.22.189.127 | ec2-abuse@amazon.com | US | ARIN | AMAZON-EC2-8 | 41fe5b72a42cae88cbf1977eff5c2a81 | http://dl.dropbox.com/u/12989675/rockbox/index2.html || 2012-01-31 19:53:05 | sub10 | avira | TR/Crypt.CFI.Gen | | AS29802 | 68.233.251.26 | abuse@noc4hosts.com | US | ARIN | NOC4HOSTS1 | be290e78913a879e7c1329b28c00aebc | http://bandfm99.com.br/site/imagens/ProcessSwi.exe || 2012-01-31 19:53:05 | sub10 | avira | RKIT/Agent.AIUL.4 | | AS197145 | 91.229.248.110 | abuse@epiohost.net | UA | RIPE | EPIOHOST-NET | 30ebf10e46f05e0cfc9390958b6d2dff | http://c0de.ws/loader.exe || 2012-01-31 19:53:07 | sub16 | undef | unknown_exe | 0/42 (0.0%) | AS24940 | 78.46.56.74 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET | 65ccd91ea73af7f08a5acb247fef073f | http://www.duplicate-finder-download.com/download/CloneRemover2_setup.exe || 2012-01-31 19:54:31 | sub10 | avira | ADWARE/Adware.217088.1 | 13/43 (30.2%) | AS38661 | 124.217.218.3 | noc@hclc.co.kr | KR | APNIC | HCLC-KR | e10a7ac282d71733e926837aae94c741 | http://down.hanfile.kr/2010_updater/rclean_hanfile.exe || 2012-01-31 19:54:31 | sub10 | avira | TR/Dldr.Agent.oxx | 21/43 (48.8%) | AS38661 | 124.217.218.3 | noc@hclc.co.kr | KR | APNIC | HCLC-KR | 697ea731f322b18bb59454ef859fab5e | http://down.hanfile.kr/2010_updater/windowwizard_hanfile.exe || 2012-01-31 19:54:31 | sub16 | avira | HTML/IFrame.JA.7 | 15/43 (34.9%) | AS2914 | 198.106.113.135 | abuse@ntt.net | US | ARIN | NTTA-198-106 | 20aa2099b424bbb8a05881d5cf043fde | http://www.arthousecomunicacao.com.br/ || 2012-01-31 19:54:32 | sub20 | avira | ADWARE/Sidetab.1.2 | 27/43 (62.8%) | AS9318 | 180.71.56.227 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | a92a8d4f0c5b458572bfd225ec20780c | http://file.sideon.co.kr/dst/EasyOn_EO07.exe || 2012-01-31 19:54:32 | sub20 | undef | unknown_file_$INSTDIR/Winup.exe | 0/42 (0.0%) | AS38676 | 115.165.177.38 | lws2065@nate.com | KR | APNIC | WIZCDN-KR | b785947c4372faf68a647077398e8811 | http://www.fdisk.co.kr/mmsv/winup/CP/winupbg_wp015.exe || 2012-01-31 20:10:06 | sub10 | avira | TR/Onescan.A.122 | 10/43 (23.3%) | AS38700 | 115.68.17.210 | network@smileserv.com | KR | APNIC | SMILESERV-KR | d775aa197d2a77aaed801f42a2cff87a | http://dw.multicode.co.kr/Setup/binc/mcpack_uninstaller.exe || 2012-01-31 20:10:06 | sub10 | avira | TR/Fraud.Gen4 | 18/43 (41.9%) | AS38700 | 115.68.17.210 | network@smileserv.com | KR | APNIC | SMILESERV-KR | 840581830b65cdc1a28b02193b29e9bf | http://dw.multicode.co.kr/Setup/binc/mcpack_updater.exe || 2012-01-31 20:10:06 | sub10 | avira | TR/Fraud.Gen4 | 9/43 (20.9%) | AS38700 | 115.68.17.206 | network@smileserv.com | KR | APNIC | SMILESERV-KR | 87f0bbd4cb7c621ca7cd895019e439d9 | http://dw.searchpack.co.kr/Setup/binc/sphelper.exe || 2012-01-31 20:10:06 | sub10 | AVG | Suspicion: unknown virus | 7/41 (17.1%) | AS38700 | 115.68.17.206 | network@smileserv.com | KR | APNIC | SMILESERV-KR | 0949198b5a024bd46694a63e50d36a67 | http://dw.searchpack.co.kr/Setup/binc/sphelper_uninstaller.exe || 2012-01-31 20:10:06 | sub10 | avira | TR/Fraud.Gen4 | 9/42 (21.4%) | AS38700 | 115.68.17.206 | network@smileserv.com | KR | APNIC | SMILESERV-KR | ee6046b443af18d5bac564472af426d0 | http://dw.searchpack.co.kr/Setup/binc/sphelper_updater.exe || 2012-01-31 20:10:06 | sub10 | avira | TR/SkynetRef.u | 32/42 (76.2%) | AS39743 | 188.211.239.213 | maria.mirabela1980@gmail.com | ro | RIPE | PF-DEACONU-VASILE | ca9adac5b59021d6e1ae4f845709ded3 | http://fvsn.org/!install/install-15020.exe || 2012-01-31 20:10:06 | sub10 | avira | TR/Spy.Banker.Gen | 35/43 (81.4%) | AS35908 | 98.126.110.58 | admin-arin@vpls.net | US | ARIN | VPLSNET | 0f084f287c146ab07ba55b69e10f1f55 | http://hao568x.2288.org:568/imagesq/zr.exe || 2012-01-31 20:10:07 | sub16 | avira | TR/Agent.143360 | 14/43 (32.6%) | AS15836 | 87.255.73.20 | abuse@araxinfo.com | MD | RIPE | MD-ARAXCOM-20051108 | 4d54a66058ea3a0431ebb452b153f1ef | http://87.255.73.20/files/66 || 2012-01-31 20:10:25 | sub10 | avira | SPR/OpenTelnet.100 | 38/43 (88.4%) | AS15657 | 217.13.199.30 | roquette@speedbone.de | DE | RIPE | PROSITE-WEB-199 | 7904dd2ef14d15080be2dd923d0963a0 | http://ip-index.de/files/scanner/ntscangui.zip || 2012-01-31 20:10:25 | sub10 | avira | ADWARE/Ezula.F.9 | 26/43 (60.5%) | AS16138 | 217.74.65.167 | ripe@firma.interia.pl | PL | RIPE | INTERIAPL-NET1 | cab679c1c628bb534c6ec322131b74e2 | http://katims.dl.interia.pl/xmen-ma.exe || 2012-01-31 20:10:25 | sub10 | avira | BDS/Prorat.ae.23 | 39/43 (90.7%) | AS12594 | 212.40.120.230 | abuse@externet.hu | HU | RIPE | EXTERNET | 248f4bca99a2ca7b8e89b95a9e360c43 | http://livewebkam.uw.hu/WinInst_Full.exe || 2012-01-31 20:10:25 | sub10 | avira | TR/Spy.223744.16 | 21/42 (50%) | AS6851 | 195.244.128.25 | bkc@bkc.lv | LV | RIPE | PERSES-TMCD | b2b9ecd982365f024fb15f982ff3d052 | http://oberoning.lv/tmp/dn.exe || 2012-01-31 20:10:25 | sub10 | ClamAV | PUA.Packed.ASPack | 6/41 (14.6%) | AS6648 | 203.115.180.66 | abuse@skyinet.net | PH | APNIC | SKYINET-PH | d0f880d8e8b8369e9e4c7c4192fd868a | http://patch.warrock.com.ph/PF_0_49.zip || 2012-01-31 20:10:25 | sub10 | avira | ADWARE/BHO.WTP.8 | 27/41 (65.9%) | AS9318 | 180.71.56.240 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | af2b91030421cf749748a4d6499554db | http://plustab.co.kr/update/PT93/PTU1005.exe || 2012-01-31 20:20:03 | sub16 | avira | TR/Dropper.Gen | 38/43 (88.4%) | AS174 | 205.196.121.41 | derek@linkrightllc.com | US | ARIN | LINKRIGHT-HOU-1 | 744f07e0cfac0dd6fe47ec1bbbae0acf | http://205.196.121.41/1tp1ew2cc9rg/qjv87lzz84ut6x8/TS3+Server+Hack.exe || 2012-01-31 20:20:04 | sub16 | undef | unknown_html_RFI_php | 0/42 (0.0%) | AS36420, AS30315, AS13749, AS21844, AS13884 | 75.125.42.154 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-EV1-17 | 4095f793b9d8cc312c5107ce830d4916 | http://tuts4you.com/request.php?2656 || 2012-01-31 20:30:03 | sub10 | avira | TR/Delf.11.252 | 29/43 (67.4%) | AS49544 | 188.95.50.171 | abuse@as49544.net | NL | RIPE | SERVERBOOST | 12841b537b0e9836343b7840fb145b42 | http://s4.zip-host.in/download/f075c4af-0231/XPBlack4..exe || 2012-01-31 20:30:03 | sub10 | avira | TR/Dldr.VB.appw | 22/41 (53.7%) | AS3462 | 211.72.17.163 | network-adm@hinet.net | TW | APNIC | HINET-TW | 116e42921253af2bd1066e9362ed3edd | http://soft.ccn.tw/Files/WretchXD.exe || 2012-01-31 20:30:03 | sub10 | avira | TR/Graftor.12370.2 | 19/43 (44.2%) | AS9318 | 211.49.99.54 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | 98933ab72711264b31abf7cd024a004f | http://update.greenkeep.kr/120125/bizup/InfoSeven_wind_s.exe || 2012-01-31 20:30:03 | sub10 | avira | HEUR/Malware | 4/42 (9.5%) | AS9318 | 211.49.99.54 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | 45de80feddcdca9d2c049ef31d4ee0e6 | http://update.parisworld.kr/120130/modl/Clockin.exe || 2012-01-31 20:30:03 | sub10 | AVG | Suspicion: unknown virus | 9/43 (20.9%) | AS38700 | 115.68.7.213 | network@smileserv.com | KR | APNIC | SMILESERV-KR | b66b96b858393061fe468c443d8af1ca | http://update.speedtools.co.kr/bin/speedtoolsEngine.exe || 2012-01-31 20:30:03 | sub10 | avira | TR/Fraud.Gen4 | 19/43 (44.2%) | AS38700 | 115.68.7.213 | network@smileserv.com | KR | APNIC | SMILESERV-KR | 10531ae587eae09732bf36216f79e115 | http://update.speedtools.co.kr/bin/speedtoolsU.exe || 2012-01-31 20:30:03 | sub10 | trendmicro | TROJ_FRAUDL.SMMI | 12/41 (29.3%) | AS38700 | 115.68.7.213 | network@smileserv.com | KR | APNIC | SMILESERV-KR | c01df0f788261ac12d6a363a9a86c619 | http://update.speedtools.co.kr/bin/uninst_speedtools.exe || 2012-01-31 20:30:03 | sub10 | avira | TR/Graftor.6630.3 | 17/43 (39.5%) | AS9318 | 211.49.99.54 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | 1448ef9add9999b1d08d60768b38f305 | http://update.zonefree.co.kr/down/eee.exe || 2012-01-31 20:30:34 | sub10 | avira | TR/Crypt.XPACK.Gen | 31/42 (73.8%) | AS8253 | 192.108.114.44 | abuse@duth.gr | GR | RIPE | DUTHNET | 910d2d3266844ad4547a65467f8ea5b5 | http://utopia.duth.gr/~anaspsar/HobbySoft/FORO.exe || 2012-01-31 20:30:34 | sub10 | avira | ADWARE/BHO.WUH | 20/42 (47.6%) | AS38676 | 111.67.216.10 | post@clunet.co.kr | KR | APNIC | WIZCDN | b70fffbb490d9a94d14dc0f520347342 | http://u.websuprt.co.kr/NewSidebar/Choco/ChocoSupporter.exe || 2012-01-31 20:30:34 | sub10 | avira | TR/Offend.KD.429152.1 | 20/43 (46.5%) | AS38676 | 111.67.216.10 | post@clunet.co.kr | KR | APNIC | WIZCDN | 688e7bac74d7a501fd791eb2d0d6a7d9 | http://u.websuprt.co.kr/NewSidebar/Choco/KeywordTab.exe || 2012-01-31 20:30:34 | sub10 | avira | TR/VB.Downloader.Gen | 29/43 (67.4%) | AS35908 | 98.126.184.172 | admin-arin@vpls.net | US | ARIN | VPLSNET | c9c40dd38e2c520766234ab4effe6131 | http://v8ie.info/1.exe || 2012-01-31 20:30:43 | sub1 | Avast | Win32:Banker-JAP [Trj] | 12/42 (28.6%) | AS41528 | 193.17.218.50 | abuse@binero.se | SE | RIPE | ALEBORG-NET | 514f88e4055aad5300a7c80ae6b6aff4 | http://asonbild.com/oldason/Sincronizar.exe || 2012-01-31 20:30:43 | sub1 | Kaspersky | Trojan-Banker.Win32.Bancos.tko | 3/43 (7%) | AS29761 | 173.254.214.197 | noc@quadranet.com | US | ARIN | OC3-NETWORKS2 | 750b7be12b23d23937b73a5f1a278f6c | http://www.erich3d.com/tmp/Santander_v201.exe |+---------------------+-------------+-------------+--------------------------------------+---------------+---------------------------------------------+-----------------+----------------------------------+---------+--------+-----------------------------+----------------------------------+--------------------------------------------------------------------------------------------------------------------+89 rows in set (0.02 sec)
+---------------------+-------------+-------------+----------------------------------+---------------+---------------------------------------+-----------------+-------------------------------------+---------+---------+----------------------------+----------------------------------+-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| date | contributor | scanner | virusname | vt_score | AS | review | email | country | source | netname | md5sum | url |+---------------------+-------------+-------------+----------------------------------+---------------+---------------------------------------+-----------------+-------------------------------------+---------+---------+----------------------------+----------------------------------+-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| 2012-01-31 20:40:09 | sub16 | avira | JS/Agent.akk.1 | 21/39 (53.8%) | AS26496 | 208.109.14.133 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 131f3ed87c5b645c7afeef37b5ff2b26 | http://www.preventsweating.com/ || 2012-01-31 20:40:09 | sub16 | AVG | Agent.B | 3/43 (7%) | AS36024 | 65.99.250.115 | Chavvon@yoggin.com | US | ARIN | COLO4-TRANS-070506 | bea66ade958d4d7acb92d902cf053c89 | http://www.themexp.org/site_tempfiles/07/184882.exe || 2012-01-31 20:40:20 | sub10 | Jiangmin | Trojan/Generic.ujfl | 9/40 (22.5%) | AS33070, AS10532, AS19994, AS27357 | 67.192.194.98 | abuse@rackspace.com | US | ARIN | RSCP-NET-4 | 4bdff109c508ad54d4bd7cf452be34a3 | http://lmsc.com.au/upload/score/proposta012012.exe || 2012-01-31 20:40:20 | sub20 | avira | TR/Fraud.Gen4 | 13/40 (32.5%) | AS9318 | 211.49.99.54 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | 6e7b5cdfb3286f8006427a37a14c7017 | http://log.towiz.net/A_agree/120127/multicode_life.exe || 2012-01-31 19:53:25 | sub5 | avira | PHP/Spy.SysInfo.C | 23/39 (59%) | AS15598 | 89.31.143.100 | abuse@united-domains.de | DE | RIPE | DE-UD-20060911 | 22cd1fe047121661e517cde0cf2d12e8 | http://chai-tee.info/.logs?? || 2012-01-31 20:57:37 | sub10 | avira | PERL/Shellbot.a.5 | 29/40 (72.5%) | AS32613 | 184.107.133.162 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-07 | f1d1f805fa21fd51918281b3155c435b | http://184.107.133.162/a/stuff/i5 || 2012-01-31 21:10:06 | sub10 | avira | JS/Agent.cja.3 | 27/43 (62.8%) | AS29182 | 62.109.31.211 | abuse@ispsystem.net | RU | RIPE | ISPSYSTEM | a3233c92ed3a29e91b9680b285a14fa6 | http://62.109.31.211/p/dwbwdqxokqiv.pdf || 2012-01-31 21:10:51 | sub10 | avira | HTML/FakeAlert.I | 28/40 (70%) | AS23352 | 216.246.76.66 | abuse@servercentral.net | US | ARIN | SCN-5 | 54f4b9ac64b0cb268fe0b3f73e9828dc | http://aboutdrugtreatment.org/images/pixels/84n9aincw/ || 2012-01-31 21:10:51 | sub10 | avira | JS/Infected.B | 22/40 (55%) | AS26347 | 69.163.244.182 | netops@dreamhost.com | US | ARIN | DREAMHOST-BLK9 | c1195bc6f22907fa3fbb4326c29e6b54 | http://ac3ds.info/skins/common/ajax.js?270 || 2012-01-31 21:10:51 | sub10 | avira | JS/Infected.B | 21/39 (53.8%) | AS26347 | 69.163.244.182 | netops@dreamhost.com | US | ARIN | DREAMHOST-BLK9 | d321eec636b0001438792f1b74f988b6 | http://ac3ds.info/skins/common/wikibits.js?270 || 2012-01-31 21:10:51 | sub10 | avira | JS/Infected.C | 19/38 (50%) | AS24940 | 213.133.104.77 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET | 24f1e86d94c619602a165b624d6aa793 | http://agenturnews.at/wp-content/plugins/tweetmeme/button.js || 2012-01-31 21:10:51 | sub10 | avira | HTML/Afreim.W | 14/38 (36.8%) | AS29131 | 78.129.205.2 | abuse_rs@altervista.it | IT | RIPE | AlterVista_1 | a88a31ac3224fcee0a2c4444b871f5a9 | http://akcizyjpb.altervista.org/hip-hop/kis-ru-msi.html || 2012-01-31 21:10:51 | sub10 | avira | JS/Infected.C | 18/43 (41.9%) | AS24940 | 188.40.112.6 | abuse@hetzner.de | DE | RIPE | DE-HETZNER-20090423 | 90f5a228bb102a54bac31956ddd1ddf7 | http://alfpa.ch/plugins/system/mtupgrade/mootools.js || 2012-01-31 21:10:52 | sub16 | avira | JAVA/SMS.J2ME.AD | 22/40 (55%) | AS42655 | 194.28.172.166 | abuse@besthosting.com.ua | UA | RIPE | BESTHOSTING-NET2 | d2b983cca93dc21bc4561c9bef08cec0 | http://fotoobmen.ws/fot0 || 2012-01-31 21:20:08 | sub10 | avira | JS/Infected.C | 19/40 (47.5%) | AS16276 | 188.165.212.141 | abuse@ovh.net | FR | RIPE | OVH | 968d8104e3a3d2745bd2803d93d13fdd | http://angelovaira.it/wp-content/themes/Modest/js/custom.js || 2012-01-31 21:20:08 | sub10 | avira | JS/Infected.C | 22/40 (55%) | AS16276 | 188.165.212.141 | abuse@ovh.net | FR | RIPE | OVH | 45ae9630361459231fa72eb21119e23d | http://angelovaira.it/wp-content/themes/Modest/js/superfish.js || 2012-01-31 21:20:08 | sub10 | avira | HTML/Crypted.Gen | 22/40 (55%) | AS27715 | 187.45.241.210 | regcom@locaweb.com.br | BR | LACNIC | 002.351.877/0001-52 | 756afcd9898482f594fdf1e019e557b3 | http://artcoquetel.com.br/extra/_img/_ndex.html || 2012-01-31 21:20:08 | sub10 | avira | HTML/IFrame.Inje.1 | 25/40 (62.5%) | AS50465 | 141.255.181.36 | bitbucket@ripe.net | EU | AFRINIC | IANA-BLK | a9dacec5f635b1d9fd4962e3caf3b612 | http://bamdesign.nl/Combinatiezuid/denham1/index2.html || 2012-01-31 21:20:09 | sub10 | Antiy_AVL | Trojan/win32.agent | 18/40 (45%) | AS2856 | 217.115.142.74 | net-abuse@hosteurope.de | DE | RIPE | HEUROPE-NET | 0826c5cba5fa5056a29bded12b87b667 | http://meinegummiwelt.de/altes-gastbuch/st_10.html || 2012-01-31 21:20:09 | sub10 | avira | JS/Infected.C | 20/38 (52.6%) | AS29873 | 66.96.160.142 | bnbrock@maileig.com | US | ARIN | BIZLAND-FC01 | 008955841cde339eed77ea17ec45b59e | http://octanestrength.ca/wp-includes/js/jquery/jquery.js || 2012-01-31 21:20:09 | sub10 | avira | JS/Infected.C | 18/37 (48.6%) | AS29873 | 66.96.160.142 | bnbrock@maileig.com | US | ARIN | BIZLAND-FC01 | 5f0b582332205d27d749a306bde53732 | http://octanestrength.ca/wp-includes/js/tw-sack.js?ver=1.6.1 || 2012-01-31 21:30:24 | sub10 | avira | JS/Infected.C | 19/40 (47.5%) | AS15967 | 77.55.60.18 | abuse@netart.pl | PL | RIPE | NETART | 07926da8e667d378efc9ea066de7de37 | http://belf.pl/wp-content/themes/AskIt/includes/pawel/js/2.js || 2012-01-31 21:30:24 | sub10 | avira | JS/Infected.C | 22/43 (51.2%) | AS45179 | 120.138.18.76 | quintin@sitehost.co.nz | NZ | APNIC | SITEHOST-NZ | 61cd540d76f579a978eb3f77f1b09df2 | http://pitsterpro.co.nz/wp-includes/js/l10n.js?ver=20101110 || 2012-01-31 21:30:24 | sub10 | avira | ADWARE/MyPCCheck.A.17 | 7/40 (17.5%) | AS3786 | 114.108.168.8 | ip@kidc.net | KR | APNIC | KIDC-KR | 00c858d4112a2a2852a906652920ff70 | http://privacycheck.co.kr/binary/update.zip || 2012-01-31 21:30:30 | sub1 | avira | DR/Banload.D | 15/40 (37.5%) | AS38661 | 113.30.103.253 | luvyong@hclc.co.kr | KR | APNIC | HCLC-KR | d834fb30a2a9ef03c2d40714c8c4736f | http://ns3.ishosting.net/rio-de-janeiro/noticia/2012/01/video-inedito-do-desabamento-no-centro-do-rio-AVI.exe || 2012-01-31 21:40:09 | sub10 | avira | HTML/Agent.adn | 19/40 (47.5%) | AS29671 | 77.232.70.196 | abuse@servage.net | DK | RIPE | SRVG-NET-FL1 | 764f21d90de4ce2ee440537ff4ca25ce | http://cphrecmedia.dk/pressesite/ || 2012-01-31 21:40:09 | sub10 | Antiy_AVL | Trojan/JS.JScript | 16/40 (40%) | AS5577 | 212.117.165.190 | abuse@as5577.net | LU | RIPE | SERVER-NETWORK | 60a998a0b52db4e536a087d9c59c51a7 | http://r-stein.nl/wp-includes/js/jquery/jquery.js?ver=1.6.1 || 2012-01-31 21:40:09 | sub20 | clamav | PUA.Packed.ASPack | 11/40 (27.5%) | AS3267 | 194.226.211.12 | | RU | RIPE | HERZEN-NET | 20850ca4f27768bc1c764e84af42f2ef | http://194.226.211.12/pma/nginx.gif || 2012-01-31 21:40:09 | sub20 | Avast | Win32:BATBanker-D [Trj] | 16/43 (37.2%) | AS3267 | 194.226.211.12 | | RU | RIPE | HERZEN-NET | a17e54208d50ba291e36d4451c42fe7f | http://194.226.211.12/pma/nginxx.gif || 2012-01-31 21:50:03 | sub1 | undef | unknown_html_RFI_shell | 0/40 (0.0%) | AS16276 | 213.186.33.19 | abuse@ovh.net | FR | RIPE | OVH | e9d3cb696546aa07bae20630710fb28d | http://resistances.org/link.2012.php?ynyGIS=64ko6 || 2012-01-31 22:00:04 | sub10 | avira | W97M/Thus.AH | 33/40 (82.5%) | AS26347 | 69.163.149.51 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK9 | 2afa2c9f8285b53cac18d414ba75841c | http://cwow.org/artistmedia/283/files/churchillresume.doc || 2012-01-31 22:00:04 | sub10 | avira | HTML/IFrame.kkb.2 | 18/40 (45%) | AS15149 | 66.199.227.242 | adhoon@accessitx.com | US | ARIN | NETBLK-EZZI | 76addaa7f72dfe71fdef1957ba572f6a | http://dadgostary-tehran.ir/farsi/maghale/85/paeiz/28.htm || 2012-01-31 22:00:04 | sub10 | Avast | HTML:Script-inf | 18/38 (47.4%) | AS15149 | 66.199.227.242 | adhoon@accessitx.com | US | ARIN | NETBLK-EZZI | 5a03a40a1fd925c11cae3e0a986fcdcf | http://dadgostary-tehran.ir/farsi/maghale/87/bahar/10.htm || 2012-01-31 22:00:04 | sub10 | avira | JS/Infected.C | 21/40 (52.5%) | AS7393 | 66.201.112.203 | abuse@cybercon.com | AU | ARIN | CBCN-MYVO-66-201-112-128 | 61cd540d76f579a978eb3f77f1b09df2 | http://surmesure.com.au/wp-includes/js/l10n.js?ver=20101110 || 2012-01-31 22:00:04 | sub10 | avira | JS/Decdec.psc | 17/40 (42.5%) | AS16276 | 94.23.95.68 | abuse@ovh.net | PL | RIPE | PL-OVH | df729bc50ca516a15bd33023e29480b5 | http://thulomadebwurt.hitowy.pl/images/google.css || 2012-01-31 22:00:26 | sub10 | avira | JS/Redirector.DC.7 | 27/40 (67.5%) | AS3595 | 209.217.227.85 | greg@jaguarpc.com | US | ARIN | LH-GOLD-NETWORK | 3346a298b7cab50715a765bdcbf3b62f | http://dynamicsales.hu/foto/blelle/index4.html || 2012-01-31 22:00:26 | sub10 | avira | HTML/FakeAlert.I | 27/40 (67.5%) | AS8486 | 217.117.28.75 | abuse@balt.net | LT | RIPE | SERVERS-BNK | 39ef264fd3ee93d110d6d930ae42ae44 | http://ecolines.lt/images/data/icons/comment722.html || 2012-01-31 22:00:26 | sub10 | avira | HTML/Crypted.Gen | 23/40 (57.5%) | AS25137 | 195.8.58.26 | ruben@datasource.pt | PT | RIPE | PT-DATASOURCE | 27c529024e43a423bde25c1b8c5c66fe | http://evolution.pt/builder/imagens/thumbs/nobrhenq.html || 2012-01-31 22:00:26 | sub10 | avira | HTML/Afriem.U | 16/40 (40%) | AS32475 | 69.175.39.138 | netops@singlehop.com | US | ARIN | SINGLEHOP | 14064171ab1b0a0f173aab29892763de | http://fieldmedics.org/installation1/gpl.html || 2012-01-31 22:00:26 | sub10 | avira | HTML/Afriem.U | 16/40 (40%) | AS32475 | 69.175.39.138 | netops@singlehop.com | US | ARIN | SINGLEHOP | f816132c342de083ac13502044c3a8e8 | http://fieldmedics.org/installation1/migration.html || 2012-01-31 22:10:07 | sub16 | avira | HTML/Afriem.NM | 23/40 (57.5%) | AS8560 | 82.165.206.236 | abuse@1and1.com | DE | RIPE | SCHLUND-SHARED | 6022c43bae5610ef95bb38907bc797b1 | http://www.exklusive.co.uk/ || 2012-01-31 22:20:04 | sub10 | BitDefender | Gen:Variant.Mayachok.8 | 15/38 (39.5%) | AS21788 | 184.82.36.205 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | 3e789450305251ab89f5196b1f684454 | http://184.82.36.205/f/readme.exe || 2012-01-31 22:20:04 | sub10 | avira | JS/Infected.C | 20/40 (50%) | AS20738 | 94.136.40.103 | abuse@webfusion.com | GB | RIPE | UK-WEBFUSION-LEEDS | 88a5da7452910de2a040153350518476 | http://foundsound.co.uk/wp-content/themes/arras/js/coderow.js || 2012-01-31 22:30:04 | sub10 | AVG | BackDoor.Generic12.BRRO | 3/40 (7.5%) | AS27715 | 201.76.59.58 | regcom@locaweb.com.br | BR | LACNIC | 002.351.877/0001-52 | 4c263d4a46f7af471b299677ce2e6900 | http://dragonsoft.com.br/AgendaVirtual/Instalar.exe || 2012-01-31 22:30:04 | sub10 | AntiVir | GAME/Casino.Gen2 | 15/43 (34.9%) | AS15244 | 216.227.214.76 | hostmaster@lunarpages.com | US | ARIN | ADDD2NET-DOT-COM | f84902225999c5ed57b025cbb0f68d8b | http://drntdlpdg.casinos4you.eu/En-WinPalace.exe || 2012-01-31 22:30:04 | sub10 | avira | EXP/JS.Blacole.M | 15/40 (37.5%) | AS20773 | 80.237.132.177 | net-abuse@hosteurope.de | DE | RIPE | HE-SH-CGN-NET | 14b355934e3358926dd517530414775e | http://ilwr.de/proteus/wacopas2007_01/imagepages/image140.html || 2012-01-31 21:37:51 | sub5 | avira | PHP/Pbot.A.10 | 25/38 (65.8%) | AS46664 | 199.115.228.67 | info@volumedrive.com | US | ARIN | VOLUMEDRIVE | 0c301762a097fb8f2d47fc53f9539d0f | http://199.115.228.67/pBot.txt? || 2012-01-31 22:40:11 | sub10 | Avast | PHP:Agent-BH [Trj] | 7/38 (18.4%) | AS15598 | 89.31.143.116 | abuse@united-domains.de | DE | RIPE | DE-UD-20060911 | 7d33c0da13d973cf6cc632cc92d7a83d | http://caminoradio.de/album/res/Anjo_Loko.txt || 2012-01-31 22:55:15 | sub16 | avira | HTML/Crypted.Gen | 25/40 (62.5%) | AS8560 | 82.165.76.5 | abuse@1and1.com | DE | RIPE | SCHLUND-SHARED | a006bf8eccec78449fbf081ddf315965 | http://traumkinder.de/%20f/l_r.html || 2012-01-31 23:00:07 | sub10 | avira | TR/SkynetRef.u | 31/40 (77.5%) | AS39743 | 188.211.239.213 | maria.mirabela1980@gmail.com | ro | RIPE | PF-DEACONU-VASILE | ca9adac5b59021d6e1ae4f845709ded3 | http://fvsn.org/%21install/install-15020.exe || 2012-01-31 23:00:07 | sub10 | trendmicro | Mal_Hifrm-2 | 12/38 (31.6%) | AS39392 | 88.86.113.152 | obchod@anoweb.cz | CZ | RIPE | SUPERNETWORK-AYACZ-1 | 3942f641960b0b4644fb4499d01debb3 | http://mkracing.wz.cz/vysledky/vys2008.htm || 2012-01-31 23:00:07 | sub10 | Avast | JS:Iframe-X [Trj] | 8/40 (20%) | AS32613 | 67.205.102.50 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-04 | 58e3412bd4ae0202c6f42e6e5ac8fdd0 | http://motahari.org/asaar/books/87/index.htm || 2012-01-31 23:00:07 | sub10 | avira | HTML/Infected.WebPage.Gen2 | 18/40 (45%) | AS12824 | 62.129.235.180 | abuse@home.pl | PL | RIPE | HOMEPL | 5501893fbf9ea5bab92f4b984d65cd0f | http://nieporet.pl/galerie_foto/galeria_02/index.html || 2012-01-31 23:00:07 | sub10 | avira | HTML/Crypted.Gen | 25/43 (58.1%) | AS29073 | 89.248.166.198 | r.eeden@ecatel.net | NL | RIPE | NL-ECATEL-20060711 | 73f8c34a6d0859a1fb9eaf718bd84006 | http://nockruka.gram.pl/aurora/ || 2012-01-31 23:00:07 | sub10 | avira | HTML/Afreim.W | 16/39 (41%) | AS24940 | 176.9.37.195 | abuse@hetzner.de | DE | RIPE | DE-HETZNER-20110517 | d2ea424efbf615154730a999102cefd7 | http://notybrt.altervista.org/oboi/naryad-dopusk-kran.html || 2012-01-31 23:00:07 | sub10 | Avast | NSIS:Relevant-D [PUP] | 5/40 (12.5%) | AS36024 | 65.99.250.115 | Chavvon@yoggin.com | US | ARIN | COLO4-TRANS-070506 | bea66ade958d4d7acb92d902cf053c89 | http://themexp.org/site_tempfiles/07/184882.exe || 2012-01-31 23:00:09 | sub16 | avira | TR/Offend.7150691 | 12/38 (31.6%) | AS14618 | 107.20.227.210 | ec2-abuse@amazon.com | US | ARIN | AMAZON-EC2-8 | d258a40efb2414c3810b170d49d88db5 | http://soft.foxtab.com/pdf-creator/gb/sg/?dl=1%26adnm=17142636116%26i=s%26grid=D%26lg=EN%26cc=MX%26c=1%26d=0%26cid=_651608411%26kw=995pdf%26mn=www.modelocurriculum.net%26Network=D%26expr=%26agid=_6952 || 2012-01-31 23:20:41 | sub1 | Kaspersky | HEUR:Trojan.Script.Generic | 3/40 (7.5%) | AS36420, AS30315, AS13749, AS21844 | 174.121.35.123 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | ee188b96a7c9d8b4b336253336bd7689 | http://archisys.in/GaYNTCmY/index.html || 2012-01-31 23:20:42 | sub10 | avira | JS/iFrame.GM.4 | 19/40 (47.5%) | AS51167 | 91.194.91.199 | abuse@giga-hosting.biz | DE | RIPE | GIGAHOSTING | d03774b180108f448891b8ad362e761a | http://postenpoint.de/ebay/ || 2012-01-31 23:20:47 | sub10 | AntiVir | GAME/Casino.Gen2 | 21/43 (48.8%) | AS15244 | 216.227.214.76 | hostmaster@lunarpages.com | US | ARIN | ADDD2NET-DOT-COM | 8aac478bb8ba38a3b03a3d30cda9b510 | http://zzhrflgkk.casino-to-win.eu/CasinoTitan_En.exe || 2012-01-31 23:20:54 | sub16 | clamav | PUA.Packed.EXECryptor | 10/40 (25%) | AS41947 | 77.91.231.211 | abuse@wahome.ru | RU | RIPE | WAHOME-DEDIC | 5b02c3f81f9b7179ed9fc96a32c67c3d | http://install.ticno.com/3/?wmid=wbsm_1341_sftport&url=aHR0cDovL3dpbmdhZGdldC5ydS9pbmRleC5waHA/b3B0aW9uPWNvbV9tdHJlZSZhbXA7dGFzaz1hdHRfZG93bmxvYWQmYW1wO2xpbmtfaWQ9NjUwNSZhbXA7Y2ZfaWQ9MjQ= || 2012-01-31 23:05:09 | sub5 | avira | PHP/Pbot.A | 28/40 (70%) | AS15201 | 200.98.212.238 | l-registrobr-uol@corp.uol.com.br | BR | LACNIC | 001.109.184/0001-95 | 5071a017bd8d74361a13660c690b76b1 | http://sja.go.gov.br/pbot5.txt || 2012-01-31 23:35:30 | sub16 | undef | unknown_html_RFI_eval | 0/38 (0.0%) | AS42708 | 188.126.66.99 | noc@portlane.com | SE | RIPE | SE-PORTLANE-20090722 | c42d01ae10134fd309b9c653c9f81381 | http://lottieminick.com/net_secure/index.php/index.php || 2012-01-31 23:36:53 | sub10 | avira | JS/iFrame.IA.2 | 20/38 (52.6%) | AS16276 | 213.186.33.40 | abuse@ovh.net | FR | RIPE | OVH | 64d18394c8d4a277f6e41402f440689e | http://rsv-gpe.info/dons/Dons_files/widget1_markup.html || 2012-01-31 23:36:53 | sub10 | avira | HTML/Crypted.Gen | 22/40 (55%) | AS32780 | 174.127.110.171 | arin-contact@hostingservicesinc.net | US | ARIN | HOSTINGSERVICES-INC | bc78c67a445cdaa57cf3467f7ac3b9ff | http://rushhour.org/pods/backup/_1sidebar.html || 2012-01-31 23:09:02 | sub8 | undef | Trojan.Win32.SkynetRef.u | 0/40 (0.0%) | AS16265 | 46.165.196.78 | abuse@leaseweb.de | DE | RIPE | NETDIRECT-NET | 53abc209f8338990e13fd0c691b20a03 | http://46.165.196.78/ || 2012-02-01 00:00:06 | sub10 | avira | HTML/IFrame.era | 16/40 (40%) | AS4766 | 222.122.163.145 | abuse@kornet.net | KR | APNIC | KORNET-KR | 43593bbc3d084b86be7536a8c9585587 | http://sdaebs.co.kr/bbs/view.php?id=ewas_profile08& || 2012-02-01 00:00:52 | sub10 | avira | JS/iFrame.GM.3 | 18/40 (45%) | AS174 | 216.28.188.74 | abuse@cogentco.com | US | ARIN | COGENT-FNSI-0005 | bf7a10107b1c101ba08059538452cadf | http://summersetelectric.org/charitable.html || 2012-01-31 23:49:14 | sub5 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS47583 | 31.170.162.63 | abuse@main-hosting.com | US | RIPE | MAIN-HOSTING-SERVERS | a4126e5a6c042b41eb8dfd842c0c58bd | http://welcomesr.site88.net/tango.lol? || 2012-01-31 23:26:04 | sub5 | avira | HTML/Zones.Gen | | AS4134 | 61.143.38.171 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-GD | 5cbefea9895c27fce18c06d5235ccf3d | http://sbsxs.com/Crystal.txt || 2012-02-01 00:20:05 | sub10 | avira | HTML/Crypted.Gen | 25/43 (58.1%) | AS35732 | 188.65.115.164 | sales@tsohost.co.uk | GB | RIPE | UK-UKWEBHOSTING-20090807 | 112281778f8a2b5d54111e9a29b3acba | http://svas.co.uk/smf/avatars/img/resource-757.html || 2012-02-01 00:20:06 | sub10 | avira | HTML/Crypted.Gen | 23/43 (53.5%) | AS8560 | 82.165.76.5 | abuse@1and1.com | DE | RIPE | SCHLUND-SHARED | fbb97961e7d7dca33c7dba27284d7f6a | http://traumkinder.de/%20f/Howtoo_rder.html || 2012-02-01 00:20:06 | sub10 | trendmicro | Mal_Hifrm | 16/43 (37.2%) | AS4538 | 211.87.176.46 | abuse@net.edu.cn | CN | APNIC | QDHDPU-CN | 8143d4bd39a0a16743f4e07e165891fc | http://upcnews.hdpu.edu.cn/gbdt/Guestbook.asp?page=68786 || 2012-02-01 00:20:06 | sub10 | trendmicro | Mal_Hifrm | 16/43 (37.2%) | AS4538 | 211.87.176.46 | abuse@net.edu.cn | CN | APNIC | QDHDPU-CN | 0e5a358798ee8377bcf625db709e6529 | http://upcnews.hdpu.edu.cn/gbdt/Guestbook.asp?page=72235 || 2012-02-01 00:20:06 | sub10 | trendmicro | Mal_Hifrm | 16/43 (37.2%) | AS4538 | 211.87.176.46 | abuse@net.edu.cn | CN | APNIC | QDHDPU-CN | 5172b38218c9269ba883a6d7f4677971 | http://upcnews.hdpu.edu.cn/gbdt/Guestbook.asp?page=72438 || 2012-02-01 00:20:06 | sub10 | avira | JS/iFrame.GP | 29/43 (67.4%) | AS12824 | 89.161.132.109 | abuse@home.pl | PL | RIPE | HOMEPL | 6522cefdd5b3556ad8a540c6c825552a | http://v021445.home.net.pl/dtp.html || 2012-02-01 00:20:06 | sub10 | avira | JS/Dldr.Shadraem.a | 31/43 (72.1%) | AS12824 | 89.161.132.109 | abuse@home.pl | PL | RIPE | HOMEPL | 31171bdfcb2370ffbfe8be3a7cc71de2 | http://v021445.home.net.pl/klienci.html || 2012-02-01 00:31:00 | sub10 | undef | unknown_exe | | AS38700 | 115.68.17.210 | network@smileserv.com | KR | APNIC | SMILESERV-KR | 579f5a5d45a41b2801e8947b49a21764 | http://dw.multicode.co.kr/Setup/binc/mcpack_se.exe || 2012-02-01 00:31:00 | sub10 | avira | HTML/Infected.WebPage.Gen2 | | AS28711 | 91.224.1.35 | rt@admin.lv | LV | RIPE | RIGASTIKLI-LV | 2c15445be0ea95a4a1e31b9e54cd9413 | http://vic.siteks.lv/IZONE/izone111/frame/main.htm || 2012-02-01 00:31:00 | sub10 | avira | HTML/Infected.WebPage.Gen2 | | AS28711 | 91.224.1.35 | rt@admin.lv | LV | RIPE | RIGASTIKLI-LV | 6d3342e036e20d515212b4d01f28e73e | http://vic.siteks.lv/IZONE/izone111/ || 2012-02-01 00:40:07 | sub10 | trendmicro | JS_REDIRECN.SM | | AS1659 | 120.106.194.4 | tanetadm@moe.edu.tw | TW | APNIC | TANET-NET | 432fc3274d98c12bcb0fe09297de4f56 | http://web.ypu.edu.tw/csie/ieet/ || 2012-02-01 01:00:06 | sub10 | avira | TR/Drab.A | | AS29873 | 64.150.160.200 | bnbrock@maileig.com | US | ARIN | IPOWERWEB-NET | b07e99a1da532a31cf4c599cfc052742 | http://64.150.160.200/svhost.exe || 2012-02-01 01:12:01 | sub16 | avira | TR/Spy.Gen | | AS26347 | 173.236.163.61 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | 8ed377069018166900d61fe9610596e1 | http://www.feeplay.com/download/free-satellite-tv.exe || 2012-02-01 00:28:35 | sub5 | avira | PHP/PHPShell.BE | | AS17995 | 202.51.119.151 | noc@solusi.net.id | ID | APNIC | SOLUSINET-MWIFO15-BLOCK | 3693fbad43899544e53bfcdb5fed78a0 | http://uki.ac.id/concrete/config/gendeng/Ckrid.txt? || 2012-02-01 00:29:12 | sub5 | undef | unknown_html_RFI_php | | AS47583 | 31.170.162.63 | abuse@main-hosting.com | US | RIPE | MAIN-HOSTING-SERVERS | fb39fcb048a6f38c0e07d7a64a684079 | http://welcomesr.site88.net/ngrp.lol? || 2012-02-01 01:30:49 | sub10 | avira | HTML/IFrame.era | | AS4766 | 222.122.163.145 | abuse@kornet.net | KR | APNIC | KORNET-KR | 534d4ac772e6310d9f211ad3b171cd51 | http://sdaebs.co.kr/bbs/view.php?id=ewas_profile08& || 2012-02-01 01:40:05 | sub14 | avira | TR/Offend.KD.522597 | | AS16276 | 176.31.102.34 | abuse@ovh.net | FR | RIPE | OVH | aada7bfc5b666212423aada53b6cbc05 | http://176.31.102.34/client/AddictMt2.exe || 2012-02-01 01:40:05 | sub14 | undef | unknown_exe | | AS16276 | 176.31.102.34 | abuse@ovh.net | FR | RIPE | OVH | d08f5ff408ecff3c374982b70aebe33f | http://176.31.102.34/client/config.exe || 2012-02-01 01:40:05 | sub14 | undef | unknown_exe | | AS16276 | 176.31.102.34 | abuse@ovh.net | FR | RIPE | OVH | 8df4d4324e5755f1a0567db3c5be4c58 | http://176.31.102.34/client/devil.dll || 2012-02-01 01:40:05 | sub14 | undef | unknown_exe | | AS16276 | 176.31.102.34 | abuse@ovh.net | FR | RIPE | OVH | 4f5f399a970a921f883975a2228a1c8c | http://176.31.102.34/client/DSETUP.dll || 2012-02-01 01:40:05 | sub14 | undef | unknown_exe | | AS16276 | 176.31.102.34 | abuse@ovh.net | FR | RIPE | OVH | faf3279cb2cd66366e6702e913449771 | http://176.31.102.34/client/errorlog.exe || 2012-02-01 01:40:05 | sub14 | undef | unknown_exe | | AS16276 | 176.31.102.34 | abuse@ovh.net | FR | RIPE | OVH | 0b2b7950c8c66fc36699719112a7e5d9 | http://176.31.102.34/client/granny2.dll || 2012-02-01 01:40:05 | sub14 | undef | unknown_exe | | AS16276 | 176.31.102.34 | abuse@ovh.net | FR | RIPE | OVH | 1aa06c81a0621e277e755b965b5e4b5f | http://176.31.102.34/client/ijl15.dll || 2012-02-01 01:40:05 | sub14 | undef | unknown_exe | | AS16276 | 176.31.102.34 | abuse@ovh.net | FR | RIPE | OVH | bd4ff726291d98374fa6791c0589f288 | http://176.31.102.34/client/ilu.dll || 2012-02-01 01:40:05 | sub14 | undef | unknown_exe | 1/43 (2.3%) | AS16276 | 176.31.102.34 | abuse@ovh.net | FR | RIPE | OVH | 552ec1fda72442ab520ef2b2040a78dd | http://176.31.102.34/client/Index.bin || 2012-02-01 01:40:05 | sub14 | undef | unknown_exe | 0/43 (0.0%) | AS16276 | 176.31.102.34 | abuse@ovh.net | FR | RIPE | OVH | ae30494155fc06b63a0410740a18e676 | http://176.31.102.34/client/mscoree.dll || 2012-02-01 01:40:05 | sub14 | undef | unknown_exe | 0/42 (0.0%) | AS16276 | 176.31.102.34 | abuse@ovh.net | FR | RIPE | OVH | 6400e224b8b44ece59a992e6d8233719 | http://176.31.102.34/client/MSS32.DLL || 2012-02-01 01:40:05 | sub14 | undef | unknown_exe | 0/43 (0.0%) | AS16276 | 176.31.102.34 | abuse@ovh.net | FR | RIPE | OVH | cb21d826d9c39aed19dd431c1880f5de | http://176.31.102.34/client/msvcp60.dll || 2012-02-01 01:40:05 | sub14 | undef | unknown_exe | 0/42 (0.0%) | AS16276 | 176.31.102.34 | abuse@ovh.net | FR | RIPE | OVH | 01c72cfcaaed3a7564e5b893b7712d28 | http://176.31.102.34/client/MSVCRTD.DLL || 2012-02-01 01:40:05 | sub14 | undef | unknown_exe | 0/43 (0.0%) | AS16276 | 176.31.102.34 | abuse@ovh.net | FR | RIPE | OVH | 1ac3d612389fa679f5ca3c6bab855145 | http://176.31.102.34/client/SpeedTreeRT.dll || 2012-02-01 01:40:05 | sub14 | undef | unknown_exe | 0/43 (0.0%) | AS16276 | 176.31.102.34 | abuse@ovh.net | FR | RIPE | OVH | f8d176db5b14aed7c9b25e0640226bd1 | http://176.31.102.34/client/unicows.dll || 2012-02-01 01:40:05 | sub14 | clamav | PUA.Packed.PECompact-1 | 3/43 (7%) | AS13100 | 87.252.210.15 | degripeadmin@dataelec.com | IE | RIPE | IE-INFLOW-20050923 | 276bdffdb7569907be271e025deed7ed | http://banner.titancasino.com/cgi-bin/SetupCasino.exe?member=cpartner&&creferer=source:AffID68 || 2012-02-01 01:40:05 | sub14 | Avast | Win32:OpenInstall-A [PUP] | 9/43 (20.9%) | AS16509 | 72.21.203.149 | noc@amazon.com | US | ARIN | AMAZON-02 | 7e7078ecd2c14aaf1944697534098add | http://dl02.s3.amazonaws.com/installers/618231/oi_MDIViewerSetup.exe || 2012-02-01 01:40:05 | sub14 | avira | TR/Buzus.ksup | 15/43 (34.9%) | AS7366 | 199.7.177.244 | abuse@lemuriaco.com | US | ARIN | LEMURIA-COMMUNICATIONS | 1590ea8dc107a8cc19ef211e3f3803c8 | http://hotfile.com/dl/144294021/96bb757/index.html || 2012-02-01 01:50:05 | sub16 | undef | unknown_html_google_malware | | AS3786 | 121.254.178.6 | ip@kidc.net | KR | APNIC | KIDC-KR | e5b6544df2c2057976412b3704a027a5 | http://theonscreen.com/ || 2012-02-01 02:10:09 | sub16 | avira | TR/Crypt.NSPM.Gen | 31/41 (75.6%) | AS11798 | 66.147.244.75 | abuse@bluehost.com | US | ARIN | BLUEHOST-NETWORK-4 | f68cbfd2b9d2fe59fab8fa1c86511999 | http://zsofibarabas.com/thumb.php?pag=download_modulo-de-atualizacao.html || 2012-02-01 01:35:59 | sub5 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS47583 | 31.170.162.63 | abuse@main-hosting.com | US | RIPE | MAIN-HOSTING-SERVERS | 5568dd4787b12b86ca359e62e4dedfd8 | http://welcomesr.site88.net/terra.lol? || 2012-02-01 02:20:05 | sub16 | avira | TR/Dldr.Banload.aha.11 | 26/43 (60.5%) | AS30099 | 64.34.180.180 | abuse@serverbeach.com | US | ARIN | PEER1-SERVERBEACH-02A | a49bf220e775476603f190f27308fa87 | http://netmart.com/samples/contato/Orcamentos.php || 2012-02-01 02:20:07 | sub16 | avira | JS/Agent.3220 | 21/43 (48.8%) | AS3491 | 209.8.187.145 | abuse.ops@pccwglobal.com | US | ARIN | BTN-CIDR4 | 80aacf8f30a0060b94ea3546acce0dab | http://www.topxml.com/scripts/highlight.js || 2012-02-01 02:30:03 | sub10 | Avast | Win32:PUP-gen [PUP] | 4/43 (9.3%) | AS43554 | 193.46.210.4 | abonents@mytrinity.com.ua | UA | RIPE | CDS-UA-NET | b0fa5ca3d2c055b772c453b288a09af5 | http://mytrinity.com.ua/monitor/trinity_monitor_setup.exe || 2012-02-01 02:30:04 | sub16 | avira | HTML/Rce.Gen | 29/43 (67.4%) | AS33070, AS19994, AS10532, AS27357 | 98.129.229.186 | abuse@rackspace.com | US | ARIN | RSCP-NET-4 | 0a09d719f670a4675f0a81e989aa5b00 | http://ecobagz.in/ || 2012-02-01 02:30:06 | sub16 | undef | unknown_exe | | AS31034 | 62.149.140.178 | hostmaster@technorail.com | IT | RIPE | TECHNORAIL-NET | 32af9c5018474041e7ceb7bd3a3e5ea1 | http://www.aleph3.eu/index.exe || 2012-02-01 01:48:19 | sub8 | undef | Backdoor.IRC.Zapchast.zwrc | | AS3595 | 209.217.251.146 | greg@hostingzoom.com | US | ARIN | LH-GOLD-NETWORK | 48ea39e86c8ab6ff54b1010aca69ba24 | http://209.217.251.146/~esetlic1/ || 2012-02-01 01:48:20 | sub8 | undef | Trojan.Win32.Llac.bdm | 0/43 (0.0%) | AS16276 | 176.31.102.34 | abuse@ovh.net | FR | RIPE | OVH | a5352d12f58d5ab53af5e02e4a7f2ecd | http://176.31.102.34/client/ || 2012-02-01 02:37:37 | sub5 | avira | PHP/IRCBOT.F.1 | 31/43 (72.1%) | AS39242 | 81.19.112.22 | seclan@seclan.com | FI | RIPE | FI-SECLAN-20051115 | 190460b763b787aa19ce6466ae0f155a | http://exlan.fi/ladatut/byroe.jpg?? || 2012-02-01 02:37:45 | sub5 | avira | PHP/IRCBOT.A | 23/42 (54.8%) | AS39242 | 81.19.112.22 | seclan@seclan.com | FI | RIPE | FI-SECLAN-20051115 | 5b8c3739e159c76209e1f4e6ff75e13e | http://exlan.fi/ladatut/allnet.jpg?? || 2012-02-01 03:20:04 | sub10 | avira | ADWARE/Adware.359608 | 25/43 (58.1%) | AS10036 | 121.88.250.209 | noc@cnm.co.kr | KR | APNIC | CNM-KR | b9a187994dbe6303dd2228233ebf90e3 | http://121.88.250.209/vdoctor/pro/program/vdpros.exe || 2012-02-01 03:40:05 | sub14 | avira | TR/Offend.6997848 | 36/42 (85.7%) | AS51377 | 46.37.184.226 | abuse@burst.net | GB | RIPE | UK-BURSTNET-20101117 | 2583fc0e7f8202b1a5b2f8476f779fea | http://allmondrage.ru/robots.txt || 2012-02-01 03:40:05 | sub14 | avira | TR/Dropper.Gen | 7/43 (16.3%) | AS33182 | 72.29.76.78 | abuse@dimenoc.com | US | ARIN | HOSTDIME-PI-1 | dbd8844fb061f98f917a2db87bc3974d | http://bjvanloon.nl/bin/KB12GH4.exe || 2012-02-01 03:40:05 | sub14 | AhnLab_V3 | Backdoor/Win32.Agent | 7/43 (16.3%) | AS33182 | 72.29.76.78 | abuse@dimenoc.com | US | ARIN | HOSTDIME-PI-1 | e537dc8cbb0669d8c0ee0d8938c81828 | http://bjvanloon.nl/bin/kernel.exe || 2012-02-01 03:40:05 | sub14 | avira | TR/Kryptik.GNN | 7/43 (16.3%) | AS33182 | 72.29.76.78 | abuse@dimenoc.com | US | ARIN | HOSTDIME-PI-1 | 3308887b7da6daeb0748e8f5a5f10f98 | http://bjvanloon.nl/bin/phpupdate.exe || 2012-02-01 03:40:05 | sub14 | AhnLab_V3 | Backdoor/Win32.Agent | 8/43 (18.6%) | AS33182 | 72.29.76.78 | abuse@dimenoc.com | US | ARIN | HOSTDIME-PI-1 | 585438a3d0736522202ab49d18d7250d | http://bjvanloon.nl/bin/tempmodule.exe || 2012-02-01 03:50:05 | sub16 | undef | unknown_html_google_malware | | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | e5be60682f2be7aa53a8044898a44bc2 | http://17wanr.com/ || 2012-02-01 03:50:06 | sub16 | undef | unknown_html_RFI_shell | | AS33597 | 67.208.74.71 | abuse@inforelay.com | US | ARIN | INFORELAY-NETBLOCK01 | 098bf39cbad3dab2e17e4a6be2ff45d9 | http://www2.topjudefense.kwik.to/?1s6nm7=Vdaj0qqc7NSW397Iopuco6aLpeeiq6No2aTRndqblpaclOfYbqRpoKVnqKCnnK2K0dmin6OVaJmX0M%2BpscHEtZvUzsqioZnYVQ%3D%3D&t=31 || 2012-02-01 04:00:07 | sub24 | BitDefender | Gen:Variant.Sirefef.52 | 11/43 (25.6%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | c382c13621240745d478c23f8a0fae95 | http://79.137.237.66/files/1240 || 2012-02-01 04:00:08 | sub14 | Antiy_AVL | Trojan/Win32.Agent.gen | 6/43 (14%) | AS36420, AS30315, AS13749, AS21844 | 184.173.197.242 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-17 | 2641564bc5dbd24342de9ea8ceea76d8 | http://herbalremediesshop.com/stop-premature-ejaculation/ebook/stop_premature_ejaculation.exe || 2012-02-01 03:34:44 | sub5 | undef | unknown_html_RFI_php | | AS32780 | 98.158.189.191 | arin-contact@hostingservicesinc.net | US | ARIN | HOSTINGSERVICES-INC-VPSNET | bda29c25088be15834c5c4a91f5a9d49 | http://freetexthost.in/?dl=1558? || 2012-02-01 03:38:29 | sub5 | avira | PHP/Pbot.A.10 | | AS8649 | 176.65.131.181 | jens.winter@zexotek.de | DE | RIPE | DE-GNETICS-ZE-1 | a022798ee8215ba08a150ae286c05364 | http://176.65.131.181/NEGO.txt? || 2012-02-01 03:49:14 | sub5 | undef | unknown_html_RFI_php | | AS32780 | 98.158.189.191 | arin-contact@hostingservicesinc.net | US | ARIN | HOSTINGSERVICES-INC-VPSNET | bda29c25088be15834c5c4a91f5a9d49 | http://freetexthost.in/?dl=1558?http://freetexthost.in/?dl=1558?http://freetexthost.in/?dl=1558? || 2012-02-01 04:10:08 | sub16 | undef | unknown_html_google_malware | 0/42 (0.0%) | AS4766 | 112.175.243.23 | abuse@kornet.net | KR | APNIC | KORNET-KR | 5077a20b3dfe9a1cd7c6bb917774ec2c | http://scanfocus.co.cc/ || 2012-02-01 04:20:04 | sub10 | BitDefender | Trojan.Generic.KDV.522692 | 9/43 (20.9%) | AS48211 | 46.17.96.226 | ulp@hostkey.ru | RU | RIPE | RU-HOSTKEY-20101018 | 1f7a6e833b796870f113004c4c11e584 | http://46.17.96.226/sj/admin/users/jana16bi/activex.exe || 2012-02-01 04:20:04 | sub10 | BitDefender | Trojan.Generic.KDV.522700 | 15/43 (34.9%) | AS13335 | 173.245.60.147 | noc@cloudflare.com | US | ARIN | CLOUDFLARENET | cc2f480b1b9ca5033955b9a99b349e45 | http://googlevid.info/VipVideo.exe || 2012-02-01 04:20:04 | sub10 | Kaspersky | Trojan-Dropper.Win32.Dapato.aalx | 4/42 (9.5%) | AS33070, AS10532, AS19994, AS27357 | 67.192.194.98 | abuse@rackspace.com | US | ARIN | RSCP-NET-4 | cbaf7058ef8e0a8d077d290148fc3925 | http://lmsc.com.au/upload/score/proposta012012pdf.exe || 2012-02-01 04:30:07 | sub16 | NOD32 | Win32/Adware.Yontoo | 2/43 (4.7%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 743789c642ed9d737e7062cb944a70eb | http://www.file4me.com/download/deletedr.exe || 2012-02-01 04:40:07 | sub16 | NOD32 | Win32/Adware.Yontoo | 1/43 (2.3%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | c5dc3df0fdd92688adf4f98b56ca3f42 | http://www.file4me.com/download/dna.exe || 2012-02-01 03:47:36 | sub8 | undef | Hoax.Win32.Spycar.a | 0/40 (0.0%) | AS25973 | 69.174.52.42 | danc@inmotionhosting.com | US | ARIN | MZIMA08-CUST-INMOTION04 | a05fe6ada458576341eda30b0197d59a | http://www.soft.tahionic.com/download-ruler/ || 2012-02-01 03:47:42 | sub8 | undef | W32/FakeAlert.KC.gen!Eldorado | 0/43 (0.0%) | AS34989 | 91.189.180.49 | abuse@fasthost.no | NO | RIPE | NO-STW-20070228 | 1c7b413c3fa39d0fed40556d2658ac73 | http://www.boc.idrett.no/templates/ || 2012-02-01 03:48:14 | sub8 | avira | HTML/Dldr.Small.L | 9/40 (22.5%) | AS50465 | 146.0.73.152 | bitbucket@ripe.net | EU | AFRINIC | IANA-BLK | c7e0fedcf06c500d2d480607a100a13a | http://multipagos.org/crackmenarrobamsnpuntocom/https/rsa/ || 2012-02-01 05:00:10 | sub16 | avira | ADSPY/NaviPromo.J | | AS41550 | 91.207.44.10 | abuse@hostbizua.com | UA | RIPE | FUIR-MNT | b3f8f253922b14ce8dc81b85653b19be | http://falcogames.com/AmericanBilliardRusSetup.exe || 2012-02-01 05:00:15 | sub16 | NOD32 | Win32/Adware.Yontoo | 2/42 (4.8%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | b6376fd3255fcb8d70dc4079af4607a2 | http://www.file4me.com/download/dni.exe || 2012-02-01 05:00:15 | sub16 | NOD32 | Win32/Adware.Yontoo | 2/40 (5%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | d5482374b712636f518cc06fccd45a86 | http://www.file4me.com/download/EscapeRosecliffIsland.exe || 2012-02-01 04:15:26 | sub5 | avira | PHP/Pbot.A.10 | | AS8649 | 176.65.131.181 | jens.winter@zexotek.de | DE | RIPE | DE-GNETICS-ZE-1 | a022798ee8215ba08a150ae286c05364 | http://176.65.131.181/NEGO.txt || 2012-02-01 04:56:24 | sub5 | undef | unknown_html_RFI_php | | AS32780 | 98.158.189.191 | arin-contact@hostingservicesinc.net | US | ARIN | HOSTINGSERVICES-INC-VPSNET | cda5ce8db05593ad861e869ebe4e0665 | http://freetexthost.in/?dl=1560? || 2012-02-01 04:38:46 | sub5 | avira | PHP/Shell.CA.2 | 31/41 (75.6%) | AS16265 | 95.211.110.7 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | b90c213a5c75889008ba062b44696c33 | http://95.211.110.7/ID.txt?? || 2012-02-01 04:38:50 | sub5 | avira | PHP/Loader.9852 | 15/43 (34.9%) | AS16265 | 95.211.110.7 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | b81da8110bd84765d46090fcd4b7a271 | http://95.211.110.7/sprd.txt?? || 2012-02-01 04:56:18 | sub5 | avira | PHP/Pbot.A.10 | | AS8649 | 176.65.131.181 | jens.winter@zexotek.de | DE | RIPE | DE-GNETICS-ZE-1 | a4b124d4ae6e54ad2e4b766dc56c15df | http://176.65.131.181/pBotdelay.txt? || 2012-02-01 05:10:05 | sub16 | avira | TR/Dropper.Gen | 30/40 (75%) | AS13749, AS21844, AS30315, AS36420 | 74.54.218.66 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 7085a1968e72e59e0a1f5c1423341ad5 | http://camfrog.tv.tr/program/Cfpinger.rar || 2012-02-01 05:10:05 | sub16 | undef | unknown_html_RFI_shell | | AS10912 | 216.133.241.55 | noc@vitalstream.com | US | ARIN | VS-BLK-02 | c3fe83de0522d2941e5b73faf9e8e789 | http://eddiemarine.com/products/imgs/xxxtm/03/clientetam.htm || 2012-02-01 05:10:05 | sub16 | undef | unknown_html_RFI_shell | 0/42 (0.0%) | AS10912 | 216.133.241.55 | noc@vitalstream.com | US | ARIN | VS-BLK-02 | 8416538d1e9ce0986bf70365f8c046a8 | http://eddiemarine.com/products/imgs/xxxtm/03/novocliente.htm || 2012-02-01 05:20:07 | sub16 | undef | unknown_html_RFI_eval | 0/40 (0.0%) | AS6760 | 77.79.4.76 | abuse@ripe.net | EU | RIPE | EU-ZZ-80-93 | ccc99db74def04c1e3e806a4683555ce | http://www.ucdownloads.com/downloads/downloads.php?do=file&id=6947 || 2012-02-01 05:30:04 | sub10 | AVG | Suspicion: unknown virus | 7/43 (16.3%) | AS38700 | 115.68.17.210 | network@smileserv.com | KR | APNIC | SMILESERV-KR | ed109c142fe4714a3f104f6e5eedbc72 | http://dw.multicode.co.kr/Setup/binc/mcpack.exe || 2012-02-01 05:30:04 | sub10 | undef | unknown_exe | | AS31147 | 178.18.243.172 | abuse@inline.de | DE | RIPE | DE-INLINE-20100427 | 0a90a525e7e30a93d7be46832c4c413c | http://psesinda.in/l.exe?rwmid=1&wmid=284 || 2012-02-01 05:30:06 | sub16 | undef | unknown_arch_rar | 0/43 (0.0%) | AS39572 | 213.174.157.137 | abuse@compubyte.vg | GB | RIPE | COMPUBYTE-NET | c3b216249b2fbeedf9746f01946495e0 | http://lumicheat.3dn.ru/DEVO_RELEASE/Devostatev30011.rar || 2012-02-01 05:30:06 | sub16 | undef | unknown_html_google_malware | | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | e827b541d08950fb464ee4ef85c70618 | http://orgsite.info/ || 2012-02-01 05:30:08 | sub16 | NOD32 | Win32/Adware.Yontoo | 1/43 (2.3%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 2bfed5f2dffb1e65f132c07d0dd99833 | http://www.file4me.com/download/animedressup.exe || 2012-02-01 05:30:08 | sub16 | NOD32 | Win32/Adware.Yontoo | 2/43 (4.7%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 02ce0c0a31dcf39094cea8702ed965a2 | http://www.file4me.com/download/armygirl.exe || 2012-02-01 05:40:05 | sub14 | undef | unknown_exe | | AS31147 | 178.18.243.172 | abuse@inline.de | DE | RIPE | DE-INLINE-20100427 | 0a90a525e7e30a93d7be46832c4c413c | http://178.18.243.172/l.exe?rwmid=1&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&wmid=284 || 2012-02-01 05:40:08 | sub16 | avira | TR/Spy.Gen | 1/40 (2.5%) | AS26347 | 173.236.163.61 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | e68a8b51a4a6b82c67b5f0c2211f0212 | http://www.feeplay.com/download/how-to-earn-money.exe || 2012-02-01 05:40:08 | sub16 | NOD32 | Win32/Adware.Yontoo | 2/43 (4.7%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | ef82288f99215eaeb5ea53a850effa98 | http://www.file4me.com/download/apex-all-converter.exe || 2012-02-01 05:23:30 | sub5 | avira | PHP/Shell.CA.2 | 20/43 (46.5%) | AS32475 | 69.175.67.106 | netops@singlehop.com | US | ARIN | SINGLEHOP | 7f29ac807cbb91ae385a9b2ea2b51ca9 | http://barse.com.br/newsletter/id.txt??? || 2012-02-01 05:32:21 | sub5 | avira | PHP/IRCBOT.K | | AS16626 | 75.127.67.114 | abuse@gnax.net | US | ARIN | GNAXNET | e43c59f3ff22a8ceb82c5948315daef6 | http://kriticalkhaos.com/wiki/files/java.jpg?? || 2012-02-01 05:32:26 | sub5 | avira | PHP/IRCBOT.K | | AS16626 | 75.127.67.114 | abuse@gnax.net | US | ARIN | GNAXNET | 0610c8bf2f02451f6db2b74b90d238c8 | http://kriticalkhaos.com/wiki/files/pbot.jpg?? || 2012-02-01 05:32:33 | sub5 | avira | PHP/IRCBOT.K | | AS16626 | 75.127.67.114 | abuse@gnax.net | US | ARIN | GNAXNET | e43c59f3ff22a8ceb82c5948315daef6 | http://kriticalkhaos.com/wiki/files/perms.jpg?? || 2012-02-01 05:32:38 | sub5 | avira | PHP/Mailsend.A | | AS16626 | 75.127.67.114 | abuse@gnax.net | US | ARIN | GNAXNET | 25d56dcee713cb2a9f8d451f225a4056 | http://kriticalkhaos.com/wiki/files/mail.jpg?? || 2012-02-01 05:27:26 | sub5 | undef | unknown_html_RFI_php | | AS32475 | 69.175.67.106 | netops@singlehop.com | US | ARIN | SINGLEHOP | bfeb4132757a6271100008218e492562 | http://barse.com.br/newsletter/upload.txt?? || 2012-02-01 05:28:01 | sub5 | undef | unknown_html_RFI_php | 0/38 (0.0%) | AS32475 | 69.175.67.106 | netops@singlehop.com | US | ARIN | SINGLEHOP | bfeb4132757a6271100008218e492562 | http://barse.com.br/newsletter/upload.txt? || 2011-11-29 01:47:18 | sub17 | avira | JS/Agent.alf | | AS18042 | 61.67.242.57 | maxchang@kbtelecom.net | TW | APNIC | KBT-NET | 7db6064a4861eb54fcf5955eed0d6ca2 | http://perdormire.com.tw || 2012-02-01 06:20:04 | sub10 | Antiy_AVL | Client/Win32.mIRC | 8/41 (19.5%) | AS35662 | 109.73.75.3 | abuse@dedicatedservercontact.com | GB | RIPE | DSC-PDGMJGPG | 739c51b7a0106f8bf8279345eaddee04 | http://109.73.75.3/video/flv18.exe || 2012-02-01 06:50:06 | sub16 | undef | unknown_html_google_malware | | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | 6a1c8863999775e96b9be17b6419ff79 | http://sood.info/ || 2012-02-01 07:00:10 | sub16 | avira | JS/Agent.apn | 31/43 (72.1%) | AS4134 | 124.115.173.254 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-SN | 9585cc3f22ed9564845c94da0a7911b7 | http://jpkc.nwu.edu.cn/zglsdlx/main03/ppt/06/200507171658.files/slide0012.htm || 2012-02-01 07:00:10 | sub16 | undef | unknown_html_google_malware | | AS196713 | 86.109.167.90 | abuse@tusprofesionales.es | ES | RIPE | TUSPROFESIONALES-ES-NET | 551867799317cd7fae9b962d1297cb12 | http://julymarhotels.com/en/fotos/complejo/43/88/cotillo_beach/ || 2012-02-01 07:00:10 | sub16 | undef | unknown_exe | 0/35 (0.0%) | AS19318 | 64.20.54.242 | network@interserver.net | US | ARIN | NJIIX | fd2c9e5e3d0e7ead84c09a8613844721 | http://justlaugh.com/downloads/games/nstorm/frogpult.exe || 2012-02-01 07:00:10 | sub16 | DrWeb | Trojan.FolderLock.6 | 1/43 (2.3%) | AS8100 | 96.47.232.68 | complaints@iptelligent.com | US | ARIN | IPTELLIGENT | 5af37af053c07978cfa6019f0e8ff3e0 | http://kakasoft.com/files/lockdir.exe || 2012-02-01 07:10:06 | sub16 | avira | JS/iFrame.yor | | AS23352 | 64.202.102.150 | alex.k@hostforweb.com | US | ARIN | SCNET-64-202-102-0 | ea904ca7f214004bf080fa7914dbf5bc | http://kineticedgeperformance.com/uploadedfiles/testimonials/pics/topic1367.htm || 2012-02-01 07:10:07 | sub16 | avira | JS/Infected.C | 21/43 (48.8%) | AS6245 | 206.188.192.8 | ipadmin@monstercommerce.com | US | ARIN | MONSTERCOMMERCE | b4db8c9e3bfbbe59e315e716c5b7f998 | http://kraak.co/home/wp-content/themes/TheStyle/js/DD_belatedPNG_0.0.8a-min.js |+---------------------+-------------+-------------+----------------------------------+---------------+---------------------------------------+-----------------+-------------------------------------+---------+---------+----------------------------+----------------------------------+-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+175 rows in set (0.02 sec)
+---------------------+-------------+-------------+-----------------------------------+---------------+--------------------------------------------+-----------------+-------------------------------------+---------+---------+-------------------------+----------------------------------+--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| date | contributor | scanner | virusname | vt_score | AS | review | email | country | source | netname | md5sum | url |+---------------------+-------------+-------------+-----------------------------------+---------------+--------------------------------------------+-----------------+-------------------------------------+---------+---------+-------------------------+----------------------------------+--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| 2012-02-01 07:10:07 | sub16 | avira | TR/Agent.121856.H | 29/41 (70.7%) | AS12365 | 81.95.237.9 | andrey@sarkor.uz | UZ | RIPE | SARKORNET | ca24588fa590d064de79297c5f755b45 | http://krusty.xnet.uz/cracks/GetSmile%20keymaker.exe || 2012-02-01 07:10:07 | sub16 | avira | HTML/Rce.Gen | | AS49189 | 188.120.40.95 | abuse@ruweb.net | RU | RIPE | RUWEB | 585dd90a52ef0a4ca4b4139362a1e040 | http://ks-professional.ru/forum/index.php/style.php?id=1&lang=en&sid=07327c3937d048632ea86922c66989ea || 2012-02-01 07:10:07 | sub16 | avira | HTML/Rce.Gen | 19/40 (47.5%) | AS49189 | 188.120.40.95 | abuse@ruweb.net | RU | RIPE | RUWEB | 66ba2fa38f3d927154eaa9734f0e1b2b | http://ks-professional.ru/forum/index.php/style.php?id=1&lang=en&sid=0996bd9f6a1e717bd98d559be8ffc254 || 2012-02-01 07:10:07 | sub16 | avira | HTML/Rce.Gen | | AS49189 | 188.120.40.95 | abuse@ruweb.net | RU | RIPE | RUWEB | 32d349c24a13d948ef4143c7732b9a5f | http://ks-professional.ru/forum/index.php/style.php?id=1&lang=en&sid=1440dbf1f3d4f9dfbea95b106770753d || 2012-02-01 07:10:07 | sub16 | avira | HTML/Rce.Gen | | AS49189 | 188.120.40.95 | abuse@ruweb.net | RU | RIPE | RUWEB | 965f35a109d65411d445df1a57f91385 | http://ks-professional.ru/forum/index.php/style.php?id=1&lang=en&sid=166e8a0d244e202774d9a5eeb09210eb || 2012-02-01 07:10:07 | sub16 | avira | HTML/Rce.Gen | | AS49189 | 188.120.40.95 | abuse@ruweb.net | RU | RIPE | RUWEB | a00e3e8808940e3c445807a1445330b5 | http://ks-professional.ru/forum/index.php/style.php?id=1&lang=en&sid=1cbac65b09a33588bb78d08c89e7b8b4 || 2012-02-01 07:10:07 | sub16 | avira | HTML/Rce.Gen | | AS49189 | 188.120.40.95 | abuse@ruweb.net | RU | RIPE | RUWEB | 85949097dc6edff46ceff7f3649538aa | http://ks-professional.ru/forum/index.php/style.php?id=1&lang=en&sid=5f4a1fa0f9e1bcef54fa883bb4bda949 || 2012-02-01 07:10:07 | sub16 | avira | HTML/Rce.Gen | | AS49189 | 188.120.40.95 | abuse@ruweb.net | RU | RIPE | RUWEB | 61892d9cc5f7afb7aed6c2a00d12eb7f | http://ks-professional.ru/forum/index.php/style.php?id=1&lang=en&sid=8d0e9fd4af2567664a300d9d46e5750e || 2012-02-01 07:10:07 | sub16 | avira | HTML/Rce.Gen | | AS49189 | 188.120.40.95 | abuse@ruweb.net | RU | RIPE | RUWEB | 41d1aed25a16e2e5c37d1073aafc7914 | http://ks-professional.ru/forum/index.php/style.php?id=1&lang=en&sid=a543d050ab94eead397c8b05f95b4a84 || 2012-02-01 07:10:07 | sub16 | avira | HTML/Rce.Gen | | AS49189 | 188.120.40.95 | abuse@ruweb.net | RU | RIPE | RUWEB | 1e5f87f3d0fd1a040c52ead8a823796f | http://ks-professional.ru/forum/index.php/style.php?id=1&lang=en&sid=cb0b61fa3505e543606639d258916e95 || 2012-02-01 07:10:07 | sub16 | avira | HTML/Rce.Gen | | AS49189 | 188.120.40.95 | abuse@ruweb.net | RU | RIPE | RUWEB | b266542dd8ad264de7dfe6e0206a2e09 | http://ks-professional.ru/forum/index.php/style.php?id=1&lang=en&sid=ecdfd84abbd282d1841263969036ff5b || 2012-02-01 07:10:07 | sub16 | avira | HTML/IFrame.era | | AS4766 | 14.33.226.32 | abuse@kornet.net | KR | APNIC | KORNET | 36b919d66790843218ca2142758e3c61 | http://kum1500.net/del_comment.php?id=text&page=1&sn1=on&divpage=1&sn=on&ss=off&sc=off&keyword=%B1%E8%C1%D6%BF%B5&select_arrange=hit&desc=desc&no=2288&c_no=897249%22 || 2012-02-01 07:10:07 | sub16 | avira | HTML/IFrame.era | | AS4766 | 14.33.226.32 | abuse@kornet.net | KR | APNIC | KORNET | 94377939e14a1756713911c7c20a880b | http://kum1500.net/del_comment.php?id=text&page=1&sn1=on&divpage=1&sn=on&ss=off&sc=off&keyword=%C3%B5%C1%F6%BD%C5%B8%ED&select_arrange=headnum&desc=asc&no=2933&c_no=897157%22 || 2012-02-01 07:10:10 | sub16 | undef | unknown_exe | 0/43 (0.0%) | AS32413 | 108.59.40.101 | abuse@northtxconnect.com | US | ARIN | NTCV4-1 | 01707d349d8c53942516902f16083fbb | http://www.dummysoftware2.com/snowydesktop.exe || 2012-02-01 07:10:10 | sub16 | NOD32 | Win32/Adware.Yontoo | 1/42 (2.4%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 110040a6b64fe888d0bb6792110bb354 | http://www.file4me.com/download/DFIBk_instHm.exe || 2012-02-01 07:10:10 | sub16 | NOD32 | Win32/Adware.Yontoo | 1/43 (2.3%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | daf4c135d838b271df364a53f7d9820d | http://www.file4me.com/download/Elf_Bowling_Hawaiian_Vacation.exe || 2012-02-01 07:10:10 | sub16 | NOD32 | Win32/Adware.Yontoo | 1/42 (2.4%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 498354e77fc2136a0607fbc032cf1760 | http://www.file4me.com/download/Emerald_Tale.exe || 2012-02-01 07:20:03 | sub10 | avira | TR/Crypt.ULPM.Gen8 | 16/40 (40%) | AS49544 | 188.95.53.70 | abuse@as49544.net | NL | RIPE | SERVERBOOST | a9471e24ed91aa0fc91b4c82966f856b | http://2012.qah.org.au/download/a0103564-23fe/adobe || 2012-02-01 07:20:06 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS11798 | 66.147.240.186 | abuse@bluehost.com | US | ARIN | BLUEHOST-NETWORK-4 | 81d384994a416b825b9ef6258b771515 | http://lemosys.com/teznews/components/com_jmultimedia/assets/thumbs/phpthumb/viewtradeorder.html || 2012-02-01 07:20:06 | sub16 | avira | JS/Dldr.Agent.agb | | AS36351 | 50.22.108.93 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-9 | 34af3d02a3d0baa7796d4822be85c69c | http://linkusamall.com/category.php?id_category=4 || 2012-02-01 07:20:06 | sub16 | avira | JS/Dldr.Agent.agb | | AS36351 | 50.22.108.93 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-9 | 5bfe03c51eb377bc7f96d36deb21d4f3 | http://linkusamall.com/cms.php?id_cms=3&id_lang=4 || 2012-02-01 07:20:06 | sub16 | avira | JS/Dldr.Agent.agb | | AS36351 | 50.22.108.93 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-9 | 119cf69b5075dd032c8146953ea7b357 | http://linkusamall.com/stores.php?&id_lang=4 || 2012-02-01 07:20:06 | sub16 | avira | HTML/IFrame.Inje.1 | 25/40 (62.5%) | AS39704 | 94.124.94.198 | info@cj2.nl | NL | RIPE | NL-CJ2-20080731 | 6737ac2e16d3af7a6f349db6be48de65 | http://lisa.henwy.net/?cat=10 || 2012-02-01 07:20:06 | sub16 | avira | HTML/IFrame.Inje.1 | | AS39704 | 94.124.94.198 | info@cj2.nl | NL | RIPE | NL-CJ2-20080731 | 13267b5e40f5214e95d5bf9ff44f0b02 | http://lisa.henwy.net/?cat=8 || 2012-02-01 07:20:06 | sub16 | avira | HTML/IFrame.Inje.1 | | AS39704 | 94.124.94.198 | info@cj2.nl | NL | RIPE | NL-CJ2-20080731 | 5fbb2b1299480573f5b4d38a9a8255f5 | http://lisa.henwy.net/?cat=9 || 2012-02-01 07:20:06 | sub16 | avira | JS/Pegel.l.14936 | | AS16276 | 91.121.0.135 | abuse@ovh.net | FR | RIPE | OVH | 637b01b5b8f0f8a0c939ebd4f77099d6 | http://louard.com/archiwiki/index.php?title=Image:Traffic_060225_10.40.gif || 2012-02-01 07:20:06 | sub16 | avira | HTML/Modifo.A | | AS44112 | 77.222.42.106 | abuse@sweb.ru | RU | RIPE | SpaceWeb | 561465b07c72bd95a0e6bf8343bc2bc0 | http://love-forum.ru/modules.php?name=NukeC || 2012-02-01 07:30:06 | sub16 | avira | HTML/IFrame.Inje.1 | | AS32097 | 204.12.247.103 | abuse@wholesaleinternet.net | US | ARIN | WHOLESALEINTERNET-3 | 6fa817a2c58d4e8e907362f3576c9166 | http://lwowecki.110mb.com/zsetrakowice/galeria5/ || 2012-02-01 07:30:06 | sub16 | avira | HTML/IFrame.Inje.1 | 21/40 (52.5%) | AS32097 | 204.12.247.103 | abuse@wholesaleinternet.net | US | ARIN | WHOLESALEINTERNET-3 | 3afbe885784326cb1d80a7325e80d373 | http://lwowecki.110mb.com/zsetrakowice/galeria5/ext/js/swfobject.js || 2012-02-01 07:30:06 | sub16 | avira | HTML/IFrame.Inje.1 | | AS32097 | 204.12.247.103 | abuse@wholesaleinternet.net | US | ARIN | WHOLESALEINTERNET-3 | ae0199a3b32b1305743b03c04d06112a | http://lwowecki.110mb.com/zsetrakowice/galeria8/ || 2012-02-01 07:30:06 | sub16 | avira | HTML/IFrame.Inje.1 | 21/40 (52.5%) | AS32097 | 204.12.247.103 | abuse@wholesaleinternet.net | US | ARIN | WHOLESALEINTERNET-3 | 3afbe885784326cb1d80a7325e80d373 | http://lwowecki.110mb.com/zsetrakowice/galeria8/ext/js/swfobject.js || 2012-02-01 07:30:06 | sub16 | avira | HTML/FakeAlert.I | | AS2514 | 61.194.62.161 | higuchim@nttpc.co.jp | JP | APNIC | INFOSPHERE | 90d62297e26f2a08d3d2fdd6479a8d3b | http://maabraha.searchnavi.jp/hmjg7bjoa/ || 2012-02-01 07:30:06 | sub16 | avira | HTML/FakeAlert.I | 28/40 (70%) | AS2514 | 61.194.62.161 | higuchim@nttpc.co.jp | JP | APNIC | INFOSPHERE | e262c62177e0fab4cd0d528061401ecc | http://maabraha.searchnavi.jp/hvhhadih3/ || 2012-02-01 07:30:06 | sub16 | avira | HTML/FakeAlert.I | | AS2514 | 61.194.62.161 | higuchim@nttpc.co.jp | JP | APNIC | INFOSPHERE | d0f4a52a0a884b43d131d93efac3e2b2 | http://maabraha.searchnavi.jp/njapfdu5e/ || 2012-02-01 07:30:07 | sub16 | avira | WORM/Caser | 34/40 (85%) | AS12322 | 82.242.7.47 | abuse@proxad.net | FR | RIPE | FR-PROXAD-ADSL | 3e14c75b8bd185729419819df7c19886 | http://madchat.awired.net/vxdevl/vxdb/e/Email-Worm.VBS.Caser.cas || 2012-02-01 07:30:07 | sub16 | avira | HTML/Rce.Gen | | AS8470 | 212.5.71.126 | abuse@8470.NET | RU | RIPE | RU-MACOMNET-980710 | 9213bab4552890afe3bf092c21e1eed8 | http://magen.khatul.ru/alternet/ecology4.html || 2012-02-01 07:30:07 | sub16 | undef | unknown_html_google_malware | | AS4134 | 60.190.35.98 | antispam@dcb.hz.zj.cn | CN | APNIC | CHINANET-ZJ-HZ | 24028c0f5fcecf65966ee7557e524051 | http://mail.nbchanghua.com/paypal.php || 2012-02-01 07:30:07 | sub16 | avira | JS/Infected.C | 20/41 (48.8%) | AS26347 | 66.33.197.130 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK1 | e38044a33f999552ba845120394cee41 | http://mainreefroad.com/wp-content/themes/modularity/includes/js/jquery.cycle.js?ver=3.3.1 || 2012-02-01 07:30:07 | sub16 | avira | TR/Dropper.Gen | 34/43 (79.1%) | AS32613 | 174.142.79.83 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-06 | dbdabbb75ed8325345dc4df90533af86 | http://maket4game.110mb.com/downloads/VLAutoPro7.28.zip || 2012-02-01 07:30:07 | sub16 | avira | JS/iFrame.psa.7 | | AS28299 | 189.38.80.77 | abuse@kinghost.com.br | BR | LACNIC | 005.305.671/0001-84 | 7947b27d6fe3a7a5c5012e2958f5b964 | http://marcuspeixoto.com.br/forum/viewtopic.php?f=2&t=10083 || 2012-02-01 07:30:07 | sub16 | avira | JS/iFrame.psa.7 | | AS28299 | 189.38.80.77 | abuse@kinghost.com.br | BR | LACNIC | 005.305.671/0001-84 | 970d7ad719870a2833059365e98dd478 | http://marcuspeixoto.com.br/forum/viewtopic.php?f=2&t=16960&p=85800&sid=70458abf752cd8f9aff9e7582b1f36ee || 2012-02-01 07:30:07 | sub16 | avira | JS/Clicker.CA | 31/40 (77.5%) | AS8560 | 213.165.72.180 | abuse@1and1.com | DE | RIPE | SCHLUND-CUSTOMERS | eb5f99d1e83ed2bbae870fbcc1e9b350 | http://mathmax.fr/Blog/?paged=2 || 2012-02-01 07:40:05 | sub10 | AhnLab_V3 | Trojan/Win32.Scar | 15/43 (34.9%) | AS13335 | 173.245.60.57 | noc@cloudflare.com | US | ARIN | CLOUDFLARENET | a10eaee42d27ea0dab467987b760515d | http://googlevid.info/1.exe || 2012-02-01 07:40:11 | sub16 | avira | JS/Redirect.AC | 20/40 (50%) | AS33070, AS10532, AS19994, AS27357 | 174.143.162.181 | abuse@rackspace.com | US | ARIN | RSCP-NET-4 | dc0866090fcf1be3c0d6d53abd69055a | http://mauromd.com/samples/mdietm_1b.htm || 2012-02-01 07:40:11 | sub16 | avira | HTML/Dldr.Agent.OB | | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 4ccd78c27e7fb37355260b887387a057 | http://me2.qingluo.net/files/Me122013/index1.asp || 2012-02-01 07:40:11 | sub16 | avira | HTML/Modifo.A | 22/40 (55%) | AS24940 | 88.198.32.168 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET | 3841059fa99d7a1b50d028bb0860861d | http://mindbody.ch/joomla/index.php?view=article&id=14:what-is-the-ftp-layer-for&option=com_content&Itemid=44 || 2012-02-01 07:40:11 | sub16 | avira | HTML/Crypted.Gen | 23/40 (57.5%) | AS8717 | 212.36.9.1 | support@tophost.bg | BG | RIPE | OTELNET | 2998a635843ebeeea9b2efcebd9bb5d1 | http://mission-bg.com/forum/images/avatars/pic/text-2028.htm || 2012-02-01 07:40:11 | sub16 | avira | DIAL/Dialer.Gen2 | 29/42 (69%) | AS42244 | 178.218.210.188 | abuse@eserver.ru | RU | RIPE | ESERVER | 72821f57648c5cd1f6ace721b3c63305 | http://miyaru.wen9.net/m/Migpro_PowerShot_v.1.2.rar || 2012-02-01 07:40:11 | sub16 | avira | TR/Crypt.TPM.Gen | 32/43 (74.4%) | AS28968 | 212.59.116.156 | info@eut.ru | RU | RIPE | RU-EUT-20060516 | cbb68eb688284e66073cb87a26c4793e | http://mmogamez.ru/assets/files/java/WTChaMes.rar || 2012-02-01 07:40:11 | sub16 | avira | HTML/Crypted.Gen | 23/40 (57.5%) | AS38877 | 202.191.62.200 | networkadmin@mdwebhosting.com.au | AU | APNIC | MD-WEB-HOSTING-AU | ed7ed723657bafc683e5a5b919ca02b7 | http://mobilelaserskirmish.com/members/dmdocuments/docs/elc4tda367.htm || 2012-02-01 07:40:11 | sub16 | avira | JS/Clicker.CA | | AS36351 | 173.192.122.68 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-8 | 2531393929494767868a97543b02444d | http://mothership.co.za/WordPress/?p=24 || 2012-02-01 07:40:13 | sub16 | undef | unknown_html_RFI_shell | | AS33597 | 67.208.74.71 | abuse@inforelay.com | US | ARIN | INFORELAY-NETBLOCK01 | ebeadf0920dd65af1e839a237528180c | http://www2.smartsecurityzb.rr.nu/pkrcg107_8009.php || 2012-02-01 07:40:13 | sub16 | undef | unknown_exe | | AS36351 | 208.43.175.188 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-6 | 6469489e8fd542dd08aeaef6fd681121 | http://www.anymp4.com/download/dvd-to-ipad-converter.exe || 2012-02-01 07:50:04 | sub10 | DrWeb | Trojan.Click2.12544 | 7/42 (16.7%) | AS6739 | 95.39.12.16 | abuse@ono.com | ES | RIPE | ES-ONO-20081215 | 11a6e0968fe0d8f95fa8787b95b1ddda | http://valladolidfsf.es/includes/adobe-flash.exe || 2012-02-01 07:50:06 | sub16 | undef | unknown_html_RFI_shell | | AS41550 | 91.207.44.10 | abuse@hostbizua.com | UA | RIPE | FUIR-MNT | 52ca5ede71ba3e75700034d86ce6a57d | http://falcoware.com/downloads_icon_editors.php || 2012-02-01 07:50:09 | sub16 | avira | JS/Crops.A | 19/43 (44.2%) | AS8560 | 74.208.26.227 | abuse@1and1.com | US | ARIN | 1AN1-NETWORK | 431ec7feffec5833064f0c189c123a62 | http://mycatskills.com/panoramic/DSCN1955_stitch.html || 2012-02-01 07:50:09 | sub16 | avira | JS/iFrame.HF.2 | | AS33182 | 64.37.52.211 | abuse@dimenoc.com | US | ARIN | DIMENOC-NETWORK | e8d580e12af01e16d389ab33c2c60e7f | http://mylivechatsite.com/effect/leah-remi.html || 2012-02-01 07:50:09 | sub16 | avira | JS/iFrame.HF.2 | | AS33182 | 64.37.52.211 | abuse@dimenoc.com | US | ARIN | DIMENOC-NETWORK | a04920dc55e26bc4c96364d03aba9089 | http://mylivechatsite.com/effect/outreman-yannick.html || 2012-02-01 07:50:09 | sub16 | avira | JS/iFrame.HF.2 | | AS33182 | 64.37.52.211 | abuse@dimenoc.com | US | ARIN | DIMENOC-NETWORK | 9cf02841941546f784108bbe740a99d9 | http://mylivechatsite.com/effect/outside-display-boards.html || 2012-02-01 07:50:09 | sub16 | avira | JS/Agent.alf | | AS26496 | 173.201.169.118 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 239f0b90e26666b98e00ca7443d5e878 | http://nascarhighlights.com/nascar-video/nascar-stop-motion-2009-the-stop-motion-series-at-the-glen.html || 2012-02-01 07:50:09 | sub16 | avira | JS/Agent.apo | | AS33182 | 72.29.68.137 | abuse@dimenoc.com | US | ARIN | HOSTDIME-PI-1 | 40f9491d0e04b8c2d78814dbf84f2adb | http://networking.alwaiz-arts.com/ciscomemory/router/2650-64d.shtml || 2012-02-01 07:50:09 | sub16 | Avast | Win32:Elderado-B [Trj] | 4/43 (9.3%) | AS16397 | 200.219.245.146 | abuse@comdominio.com.br | BR | LACNIC | 003.672.254/0001-44 | b194a1e6eeca4f787b6208d11d2db983 | http://nfe.aldus.com.br/logo.gif?104ec=534368 || 2012-02-01 07:50:09 | sub16 | Avast | Win32:Elderado-B [Trj] | 4/43 (9.3%) | AS16397 | 200.219.245.146 | abuse@comdominio.com.br | BR | LACNIC | 003.672.254/0001-44 | b194a1e6eeca4f787b6208d11d2db983 | http://nfe.aldus.com.br/logo.gif?16a1f=927030 || 2012-02-01 07:50:09 | sub16 | Avast | Win32:Elderado-B [Trj] | 4/43 (9.3%) | AS16397 | 200.219.245.146 | abuse@comdominio.com.br | BR | LACNIC | 003.672.254/0001-44 | b194a1e6eeca4f787b6208d11d2db983 | http://nfe.aldus.com.br/logo.gif?c2b3=498430 || 2012-02-01 07:50:09 | sub16 | Avast | Win32:Elderado-B [Trj] | 4/39 (10.3%) | AS16397 | 200.219.245.146 | abuse@comdominio.com.br | BR | LACNIC | 003.672.254/0001-44 | b194a1e6eeca4f787b6208d11d2db983 | http://nfe.aldus.com.br/logo.gif?d253=269215 || 2012-02-01 07:50:09 | sub16 | avira | HTML/Infected.WebPage.Gen2 | | AS51559 | 94.102.2.247 | netadmin@ni.net.tr | TR | RIPE | TR-NETINTERNET | 5f2839dc5db7a6533d66e7594a5ef698 | http://nokiafrm.com/archive/index.php/f-4.html || 2012-02-01 07:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/42 (64.3%) | AS25973, AS35937, AS36025, AS6130, AS15244 | 216.97.237.30 | hostmaster@lunarpages.com | US | ARIN | ADD2NET-DOT-COM | 1b55d5089e26ff21aa632aa2e877af6b | http://nrahpets.com/pages/pdfs/etc/shengwei-batteries/ham-croissant-breakfast-casserole-recipe.html || 2012-02-01 07:50:09 | sub16 | avira | HTML/Crypted.Gen | 24/39 (61.5%) | AS25973, AS35937, AS36025, AS6130, AS15244 | 216.97.237.30 | hostmaster@lunarpages.com | US | ARIN | ADD2NET-DOT-COM | 04d4a500935afeba3d9ca522d0981204 | http://nrahpets.com/pages/pdfs/etc/shengwei-batteries/share-food-peoria.html || 2012-02-01 07:50:09 | sub16 | avira | HTML/Crypted.Gen | | AS25973, AS35937, AS36025, AS6130, AS15244 | 216.97.237.30 | hostmaster@lunarpages.com | US | ARIN | ADD2NET-DOT-COM | c9576a307f48bf0cc42863a37d6aba1a | http://nrahpets.com/pages/pdfs/etc/shengwei-batteries/spiral-ham-recipe-in-roaster-oven.html || 2012-02-01 07:50:09 | sub16 | DrWeb | Adware.Downware.146 | 3/43 (7%) | AS14618 | 50.19.102.217 | aes-noc@amazon.com | US | ARIN | AMAZON-EC2-8 | f819b6057843d3da3a99c857327568d3 | http://ntdlzone.com/download.php?lHt+dQ== || 2012-02-01 07:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS24940 | 78.46.62.13 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET | 82487ed5ea120bbb2496213f8231b127 | http://nuovingranaggi.altervista.org/php5/_images/little-xander-twitching-in-pant/little-yellow-jacket-abbi.html || 2012-02-01 08:00:17 | sub16 | undef | unknown_html_RFI_shell | | AS34221 | 217.199.217.8 | dn@quickline.ru | RU | RIPE | UCOZ | 114a8045d3526ea515d3ea60d8033096 | http://ogyvan.clan.su/forum/13-55-1 || 2012-02-01 08:00:17 | sub16 | avira | HTML/IFrame.era | | AS3786 | 180.150.228.152 | ljy1258@ehostidc.co.kr | KR | APNIC | EHOSTIDC-KR | b73b92d149e2922bb843dd260581efb1 | http://oksul38.80port.net/zb41pl5/view.php?id=board&page=1&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=13860 || 2012-02-01 08:00:17 | sub16 | avira | HTML/IFrame.era | 16/40 (40%) | AS3786 | 180.150.228.152 | ljy1258@ehostidc.co.kr | KR | APNIC | EHOSTIDC-KR | c2f5fe8e80d27b8ec44ac505bc114ce9 | http://oksul38.80port.net/zb41pl5/view.php?id=board&page=1&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=14701 || 2012-02-01 08:00:17 | sub16 | avira | HTML/IFrame.ers | | AS4812 | 61.152.242.116 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-SH | 7614cbcc9499a8014d2386c4f999f88f | http://one-art.com/Html/Project.asp?action=List&ClassID=171&ClassName=%C9%CC%CE%F1%D0%CD || 2012-02-01 08:00:18 | sub16 | avira | SPR/JS.Crytper.VIP | | AS196763 | 109.234.111.31 | bkolodziejczyk@az.pl | PL | RIPE | AZPL-1 | 97b4eb573458591e2bd450b037b24fca | http://orzesze.com/phpbb/profile.php?mode=viewprofile&u=46&sid=64141e088a17967a8c9b87bd697e9202 || 2012-02-01 08:00:18 | sub16 | avira | SPR/JS.Crytper.VIP | | AS196763 | 109.234.111.31 | bkolodziejczyk@az.pl | PL | RIPE | AZPL-1 | 877585c698509fb4c529946fd357c8b2 | http://orzesze.com/phpbb/profile.php?mode=viewprofile&u=493 || 2012-02-01 08:20:17 | sub16 | avira | ADSPY/NaviPromo.J | | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 2a484ebde5ccee56152a46ecae10feaf | http://www.audioshareware.com/download/asdp.exe || 2012-02-01 08:30:19 | sub16 | avira | JS/iFrame.HH | | AS47583 | 31.170.166.61 | abuse@main-hosting.com | US | RIPE | MAIN-HOSTING-SERVERS | b578b3dbd5d662431c7509f04589b5ce | http://ovsienkoberega.binhoster.com/soglasheniya/chertezhi-samoleta-il-76.html || 2012-02-01 08:30:19 | sub16 | avira | JS/iFrame.HH | | AS47583 | 31.170.166.61 | abuse@main-hosting.com | US | RIPE | MAIN-HOSTING-SERVERS | c6c878da6fd410fd0e7a156db4cc45cf | http://ovsienkoberega.binhoster.com/tehnicheskie-otchety/karta-oteley-ko-chang.html || 2012-02-01 08:40:04 | sub10 | clamav | PUA.Packed.ASPack | 11/40 (27.5%) | AS34989 | 91.189.180.49 | abuse@fasthost.no | NO | RIPE | NO-STW-20070228 | d2b4d2f8dcb8389dd1cf124ad643bd5f | http://boc.idrett.no/templates/norton.exe || 2012-02-01 08:40:07 | sub16 | Avast | Win32:OpenInstall-A [PUP] | 6/42 (14.3%) | AS16509 | 207.171.163.142 | noc@amazon.com | US | ARIN | AMAZON-01 | 441ccf25fb7323cb95bf4a82814fcfc0 | http://dl02.s3.amazonaws.com/installers/708177/oi_QuickTimeInstallerexe.exe || 2012-02-01 08:40:07 | sub16 | avira | ADSPY/NaviPromo.J | | AS41550 | 91.207.44.10 | abuse@hostbizua.com | UA | RIPE | FUIR-MNT | 681582a79667aeaeb8c2b6b5ec973d10 | http://falcogames.com/ShotBall2Setup.exe || 2012-02-01 08:40:20 | sub16 | avira | TR/Agent.53248.168 | 25/40 (62.5%) | AS13477 | 204.13.52.154 | abuse@hosthead.com | US | ARIN | NTS-NET-ALLOC-01 | cf80113106d8a3fa2feb6e5a4eb86338 | http://pakfun.sitesled.com/booters/DR-Bomber.zip || 2012-02-01 08:40:20 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 19/40 (47.5%) | AS19994 | 184.106.55.17 | abuse@rackspace.com | US | ARIN | RACKS-8-NET-4 | eb9506aa348c6773ef26826f88532cc8 | http://papawu.net/index.php?option=com_content&view=article&id=64&joscclean=1&comment_id=1921 || 2012-02-01 08:40:21 | sub16 | avira | JS/Agent.alf | 16/41 (39%) | AS26496 | 72.167.232.34 | noc@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 1eeba8adea70577859e73cb46e4bfa2f | http://pennyworthbooks.com/the-cat-in-the-hat-quotes/ || 2012-02-01 08:40:21 | sub16 | avira | HTML/Crypted.Gen | 25/40 (62.5%) | AS24940 | 178.63.21.197 | abuse@hetzner.de | DE | RIPE | DE-HETZNER-20100302 | 8fd94dc1fdb3991bb13a47c7ef4046a9 | http://pesforlife.altervista.org/lmo/config/config/_images/dog-sample-food-one/diabetic-cooking-free-recipes.html || 2012-02-01 08:40:22 | sub16 | NOD32 | Win32/Adware.Yontoo | 2/40 (5%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | a2207c905a9100746dbe653f6efc3aed | http://www.file4me.com/download/dexterwire.exe || 2012-02-01 08:40:22 | sub16 | NOD32 | Win32/Adware.Yontoo | 2/39 (5.1%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 2edd3eb2cc427e992b6f61509bbe5406 | http://www.file4me.com/download/Download_td-sb-FlashSCRSetup.exe || 2012-02-01 08:40:22 | sub16 | NOD32 | Win32/Adware.Yontoo | 2/42 (4.8%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | ffbe2e06881fc1018fe5198e162e5b76 | http://www.file4me.com/download/everydayjigsaw.exe || 2012-02-01 08:50:19 | sub16 | avira | TR/Gologger.D.3 | 19/39 (48.7%) | AS24806 | 81.2.194.132 | abuse@forpsi.com | CZ | RIPE | CZ-INTERNET | 9bd6963cbe278694b9734930ebf3d65f | http://pikachu.cz/download/files2/emuls/tgbdual7_cz.zip || 2012-02-01 08:50:19 | sub16 | avira | JS/Redirector.LC | 21/38 (55.3%) | AS8560 | 82.165.72.239 | abuse@1and1.com | DE | RIPE | SCHLUND-SHARED | f6796361ba3aac7ca2f316b3eaffc4ba | http://pomologie.com/oc/vergerfcs/tom2/index.html || 2012-02-01 08:50:19 | sub16 | avira | HTML/IFrame.Inje.1 | 22/40 (55%) | AS34779 | 84.255.249.147 | noc@t-2.net | SI | RIPE | SI-T-2 | b1205a7da3655a092ca188040d7c0465 | http://poussette-babyboom.fr/cart.php?_=1327942458635&ajax=true&token=c3deef8a6e938d9b084201a2086def8a || 2012-02-01 08:50:19 | sub16 | undef | unknown_html_google_malware | 0/40 (0.0%) | AS30968 | 77.221.130.39 | abuse@infobox.ru | RU | RIPE | INFOBOX-NET1 | 7745a674c5031b38aa19bb873f011646 | http://prava-servise.ru/ || 2012-02-01 09:00:12 | sub16 | avira | HEUR/Malware | 19/38 (50%) | AS9644 | 211.234.237.25 | sktsec@sktelecom.com | KR | APNIC | SK-TELECOM-NET-KR | 426296e7007b623ffc1ee5098904657a | http://image.melon.co.kr/svc/user_images/temp/201112230513117780.jpg || 2012-02-01 08:39:37 | sub5 | avira | PHP/Loader.9852 | 12/40 (30%) | AS34619 | 94.73.146.50 | huseyin.caymaz@cizgibilgisayar.com | TR | RIPE | TR-CIZGI-20080710 | 82e5b3f388ba8649c68b105ec906065d | http://alpayotomotiv.com/images/topi.jpg?? || 2012-02-01 08:39:47 | sub5 | avira | PHP/Pbot.A | 32/40 (80%) | AS15201 | 200.98.196.13 | l-registrobr-uol@corp.uol.com.br | BR | LACNIC | 001.109.184/0001-95 | c9b98f6d38ef8c4f100aea2a11a4971a | http://bebaemcasa.com.br/images/microsoft/blues.txt?? || 2012-02-01 08:39:55 | sub5 | avira | PHP/Loader.9852 | 21/40 (52.5%) | AS16276 | 91.121.170.124 | abuse@ovh.net | FR | RIPE | OVH | cc93d7f73becf5dace604d7ecfe5bfad | http://ks361836.kimsufi.com/~m4f/e107_files/images/alnyet.txt?? || 2012-02-01 08:39:38 | sub5 | avira | PHP/BackDoor.AR | 28/39 (71.8%) | AS29278 | 87.229.73.20 | abuse@deninet.hu | HU | RIPE | DENINET-HU | d2a88b2cbdf95237d0e9f9acf4d52865 | http://reklammindenre.hu/e107_images/plus.jpg || 2012-02-01 09:00:31 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 27/41 (65.9%) | AS18450 | 173.231.34.2 | NOC@webnx.com | US | ARIN | WEBNX-BLK-3 | 151f1b521f1233e2cfee7d11b08bf13a | http://qatarsc.net/vb/archive/index.php?t-20001.html= || 2012-02-01 09:00:31 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 27/40 (67.5%) | AS18450 | 173.231.34.2 | NOC@webnx.com | US | ARIN | WEBNX-BLK-3 | 6d95436683e2174b107097a1bd2fc763 | http://qatarsc.net/vb/archive/index.php?t-20001.htmlelperiodicodemexico.com/nota.php?sec=Automotriz&id%4553 || 2012-02-01 09:00:31 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 29/43 (67.4%) | AS18450 | 173.231.34.2 | NOC@webnx.com | US | ARIN | WEBNX-BLK-3 | 5eae4e3540d3db07c2ac41397e8aa01f | http://qatarsc.net/vb/archive/index.php?t-22101.html= || 2012-02-01 09:00:31 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 26/39 (66.7%) | AS18450 | 173.231.34.2 | NOC@webnx.com | US | ARIN | WEBNX-BLK-3 | d26d5902bdec1c45d2bbd255e4c98cfe | http://qatarsc.net/vb/archive/index.php?t-775.html= || 2012-02-01 09:00:31 | sub16 | avira | HTML/Modifo.A | 21/40 (52.5%) | AS24940 | 88.198.35.77 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET | f09704cb27b36e40aee7ac3bd574bb01 | http://qigong-morgensonne.ch/China%20Reisen/Seiten/QG%20China-3_gif_jpg.htm || 2012-02-01 09:00:31 | sub16 | avira | HTML/Modifo.A | 20/38 (52.6%) | AS24940 | 88.198.35.77 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET | 24a6aca10c36219142cf3bb50712d936 | http://qigong-morgensonne.ch/China%20Reisen/Seiten/QG%20China-9_gif_jpg.htm || 2012-02-01 09:00:31 | sub16 | avira | HTML/Modifo.A | 21/40 (52.5%) | AS24940 | 88.198.35.77 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET | 05a84ba375474b800ecba225b52450c2 | http://qigong-morgensonne.ch/China%20Reisen/Seiten/Shaolin7_gif_jpg.htm || 2012-02-01 09:00:31 | sub16 | avira | HTML/Modifo.A | 21/40 (52.5%) | AS24940 | 88.198.35.77 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET | 39123af7bc69d432375caacd4072470c | http://qigong-morgensonne.ch/China%20Reisen/Seiten/Shaolin_gif_jpg.htm || 2012-02-01 09:00:31 | sub16 | avira | JS/Redirect.AC | 16/40 (40%) | AS30447 | 64.29.151.221 | admin@internetnamesforbusiness.com | US | ARIN | MEGA-2 | b59097cafb20e3ba23b2b8c4554bb25d | http://qmcis.com/enviornment-testing.html || 2012-02-01 09:00:31 | sub16 | avira | HTML/Crypted.Gen | 23/40 (57.5%) | AS3786 | 211.234.111.50 | kidc@hanbiro.com | KR | APNIC | KIDC-KR | eb06ef5d4b25052036f4dcc681f788be | http://queensbelfast.co.kr/zboard/css/comment51.htm || 2012-02-01 09:00:31 | sub16 | avira | HTML/Modifo.K | 11/40 (27.5%) | AS3269 | 173.45.14.111 | abuse@business.telecomitalia.it | US | ARIN | INFORELAY-NETBLOCK04 | 87f1011c0e0bbd9e054fbb45eb5855fc | http://raidinfo.ru/index.asp?mode=3087 || 2012-02-01 09:00:31 | sub16 | avira | HTML/Modifo.K | 12/43 (27.9%) | AS3269 | 173.45.14.111 | abuse@business.telecomitalia.it | US | ARIN | INFORELAY-NETBLOCK04 | 20e152d1d42272ed01091a9b4ec12ecf | http://raidinfo.ru/index.asp?mode=390&materid=5299&arc=1 || 2012-02-01 09:00:31 | sub16 | avira | HTML/Modifo.K | 10/40 (25%) | AS3269 | 173.45.14.111 | abuse@business.telecomitalia.it | US | ARIN | INFORELAY-NETBLOCK04 | a7c032d353c1c8865773aa6cd5009515 | http://raidinfo.ru/index.asp?mode=390&materid=5331&arc=1 || 2012-02-01 09:00:31 | sub16 | avira | HTML/Modifo.K | 10/38 (26.3%) | AS3269 | 173.45.14.111 | abuse@business.telecomitalia.it | US | ARIN | INFORELAY-NETBLOCK04 | 9fb9a75f78b8fc7e9b8691f6a24c61bb | http://raidinfo.ru/index.asp?mode=390&materid=5487&arc=1 || 2012-02-01 09:20:07 | sub16 | undef | unknown_html_RFI_shell | 0/40 (0.0%) | AS26496 | 72.167.183.55 | noc@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 450ce145bd11af4b744fa55e8af0eacd | http://landentools.com/bbpoeb.php?cebjidname=99 || 2012-02-01 09:20:19 | sub16 | K7AntiVirus | Trojan | 5/38 (13.2%) | AS32475 | 69.175.71.50 | netops@singlehop.com | US | ARIN | SINGLEHOP | ad27e57711ac1b6f3e6aa41698896615 | http://registry-fix-softwares.com/games/downloadpspmovies/downloadpspmovies.exe || 2012-02-01 09:20:19 | sub16 | avira | JS/Illredir.AJ.1 | 14/40 (35%) | AS35540 | 87.98.239.48 | abuse@ovh.net | PL | RIPE | PL-OVH | 6aa72cae92b0be6a619b6e9cccaa84fe | http://rejestartor.info/forum/viewtopic.php?p=83&sid=c24910d4e635f506c011d2b8f7d0f28f || 2012-02-01 09:20:19 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 22/38 (57.9%) | AS25973, AS35937, AS15244 | 67.210.120.30 | hostmaster@lunarpages.com | US | ARIN | ADD2NET-DOT-COM | 81dcceae00bf52f509fc69fa6e563ae3 | http://relaywriter.com/perl/admin/mastrabating-party-girls/3d-young-sex.html || 2012-02-01 09:20:19 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 22/38 (57.9%) | AS25973, AS35937, AS15244 | 67.210.120.30 | hostmaster@lunarpages.com | US | ARIN | ADD2NET-DOT-COM | 491c2825642e5e9eb28d2a7d7f9f89b0 | http://relaywriter.com/perl/admin/mastrabating-party-girls/lyndsey-dawn-mckenzie-video.html || 2012-02-01 09:20:19 | sub16 | avira | JS/iFrame.KH | 15/40 (37.5%) | AS42331 | 194.0.200.16 | boss@freehost.com.ua | UA | RIPE | FREEHOST | 873db427d18054e128d7c2365b9c528d | http://remont-service.com/forum/search.php?st=0&sk=t&sd=d&sr=topics&sid=1d3777d3a1e9054e9025b8a357b7ee3b&search_id=unanswered&start=850 || 2012-02-01 09:20:19 | sub16 | avira | HTML/Crypted.Gen | 23/39 (59%) | AS29611 | 217.68.241.140 | noc@elite.net.uk | GB | RIPE | ELITE-UK-NETWORK | c0fe100b3239351f2593f0d3695625b2 | http://rentalspecialists.co.uk/photos/thumbs/news-2101-2008-10-20.html || 2012-02-01 09:20:19 | sub16 | avira | HTML/Crypted.Gen | 24/41 (58.5%) | AS29611 | 217.68.241.140 | noc@elite.net.uk | GB | RIPE | ELITE-UK-NETWORK | 612bbfc2b69a51c3bb3e63abda1be8aa | http://rentalspecialists.co.uk/photos/thumbs/news-571-2008-10-18.html || 2012-02-01 09:20:19 | sub16 | avira | HTML/Modifo.A | 21/40 (52.5%) | AS30266 | 216.17.106.207 | poc@a1colo.com | US | ARIN | A1COLO | 8015354ecd29b81583ba29815ef84df7 | http://ringsandbarbells.com/piercings/videos/index.php?search=star || 2012-02-01 09:20:19 | sub16 | avira | HTML/IFrame.era | 16/40 (40%) | AS3786 | 118.129.167.61 | shkim082@chol.com | KR | APNIC | BORANET-KR | 84d4c3e5098be39f8c167619af5284ec | http://rodem-house.com/zeroboard/del_comment.php?id=qna&page=1&sn1=on&divpage=1&sn=on&ss=off&sc=off&keyword=%B9%CC%C8%AD&select_arrange=headnum&desc=asc&no=5097&c_no=6020%22 || 2012-02-01 09:20:19 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 32/40 (80%) | AS24940 | 85.10.200.143 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET | 633a1b05cb5d284b1d2cc5e0690dc520 | http://root.sturzis.com/contrexx/index.php?section=calendar&cmd=eventlist&printview=1 || 2012-02-01 09:20:19 | sub16 | trendmicro | HTML_CLICKR.SMB | 32/40 (80%) | AS24940 | 85.10.200.143 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET | cac1c5303e5a18845e02e0152b0293c3 | http://root.sturzis.com/fdhk/index.php?section=privacy&printview=1 || 2012-02-01 09:30:20 | sub16 | undef | unknown_html_RFI_eval | 0/40 (0.0%) | AS32613 | 209.172.45.145 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-01 | cf11f8612b3bc015f6a83b8e3fbbe02e | http://rss.awardsex.juicynetwork.com/(S(5zql3sm5khtwyge0cpsax3im) || 2012-02-01 09:30:20 | sub16 | undef | unknown_html_RFI_eval | 0/39 (0.0%) | AS32613 | 209.172.45.145 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-01 | b72c85a8f2a2be4e56dce4d5ad930451 | http://rss.awardsex.juicynetwork.com/(S(m0kmjruput25cf45kup2tf55) || 2012-02-01 09:30:20 | sub16 | undef | unknown_html_RFI_eval | 0/40 (0.0%) | AS32613 | 209.172.45.145 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-01 | 6949ca93ef28fedbad465ead92ae9d63 | http://rss.awardsex.juicynetwork.com/(S(wh5lixn1jkeigf554ygpajen) || 2012-02-01 09:30:20 | sub16 | avira | HTML/FakeAlert.I | 28/40 (70%) | AS15699 | 212.36.82.131 | joan.ventura@adam.es | ES | RIPE | ADAM | 984fdff595bfa72afca0abfee9651188 | http://rutacero.com/includes/lightbox/pics/resource-27.html || 2012-02-01 09:30:20 | sub16 | avira | HTML/Small.AQ | 23/40 (57.5%) | AS2856 | 213.171.219.4 | abuse@fasthosts.co.uk | GB | RIPE | FASTHOSTS-UK-NETWORK | 06ad4cd4b27f1759779a83ff9fbeb33e | http://salesjobsinternational.co.uk/indexadvertising_02_01_2009_NYT___Business_ADVERTISING__Going_Straight_to.html || 2012-02-01 09:30:20 | sub16 | avira | EXP/Agent.zib | 31/40 (77.5%) | AS2118 | 194.135.22.233 | advt@relcom.ru | RU | RIPE | relcom | e227ef82be7c9ae289d3ded7bfa9065e | http://salvage.ru/dir-catalogue/dizajn || 2012-02-01 09:30:20 | sub16 | avira | EXP/Agent.zib | 33/43 (76.7%) | AS2118 | 194.135.22.233 | advt@relcom.ru | RU | RIPE | relcom | 414cd69f62be69018f83048d9badc657 | http://salvage.ru/dir-catalogue/dizajn/id-6/sd-1 || 2012-02-01 09:30:20 | sub16 | avira | EXP/Agent.zib | 31/39 (79.5%) | AS2118 | 194.135.22.233 | advt@relcom.ru | RU | RIPE | relcom | 8780b7ce671f7025f8bf9a4e103ea0f5 | http://salvage.ru/dir-catalogue/internet/sd-1 || 2012-02-01 09:30:20 | sub16 | AVG | JS/Heur | 5/39 (12.8%) | AS9286 | 121.78.114.7 | kwlee@actela.com | KR | APNIC | KINXINC-KR | 2fa8fe64a125a9d87e637b6d1eb78afd | http://sanyac.firstmall.kr/skin/photo.vbe || 2012-02-01 09:30:20 | sub16 | avira | HTML/IFrame.1011 | 20/39 (51.3%) | AS26347 | 69.163.176.61 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK9 | 05d88a77255046195cebaf5126125ce3 | http://saxophonestocollect.com/gallery_old/index.php?cat=0 || 2012-02-01 09:39:08 | sub1 | Avast | JS:ScriptIP-inf [Trj] | 2/40 (5%) | AS13287 | 213.162.209.217 | abuse@gruposys4net.com | ES | RIPE | SYS4NET | f0f566ab3849706b0800dbe3bd6fd952 | http://213.162.209.217/ || 2012-02-01 09:39:08 | sub1 | undef | unknown_arch_rar | 0/40 (0.0%) | AS47583 | 31.170.161.116 | abuse@main-hosting.com | US | RIPE | MAIN-HOSTING-SERVERS | 5ed9ab1ad7091c997ee42a87eef3c2e9 | http://meta.netai.net/meta.rar || 2012-02-01 09:39:08 | sub1 | Kaspersky | HEUR:Trojan.Script.Generic | 2/40 (5%) | AS36953 | 196.201.6.11 | eugene@snowball.co.za | ZA | AFRINIC | SNOWBALL | 7653ce67cb844c055d9e5467fed3a250 | http://pixleykaseme.gov.za/components/com_phocagallery/assets/images/icon-info.txt || 2012-02-01 09:39:25 | sub16 | avira | PHP/Shellbot.7642 | 30/40 (75%) | AS15418 | 109.228.22.211 | abuse@fasthosts.co.uk | GB | RIPE | UK-FASTHOSTS-20100202 | a5a05679db77aec2ab4e95aaea4c2aa9 | http://scarboroughcollege.co.uk/wp-content/themes/arras/images/facebook.jpg || 2012-02-01 09:39:25 | sub16 | avira | JS/iFrame.HF.1 | 17/40 (42.5%) | AS3216 | 194.186.208.8 | support@centre.ru | RU | RIPE | WCENTRE | b6a914314a6d2ec552564f12d3204f9f | http://school24.far.ru/zagolovok.html || 2012-02-01 09:39:25 | sub16 | avira | HTML/Modifo.A | 21/40 (52.5%) | AS30266 | 216.17.106.207 | poc@a1colo.com | US | ARIN | A1COLO | 527950ef83cc065b0bab5843a9b8f154 | http://scuba-diving-gear.com/store/view.php?asin=B000ELWGD4 || 2012-02-01 09:39:25 | sub16 | avira | JS/iFrame.oce | 15/38 (39.5%) | AS32244 | 72.52.136.4 | abuse@liquidweb.com | US | ARIN | LIQUIDWEB-6 | 6590214971565b7d9ada18a97deea3cb | http://sdtheatrescene.com/phpbb/viewtopic.php?f=4&t=238 || 2012-02-01 09:39:25 | sub16 | avira | HTML/FakeAlert.I | 28/40 (70%) | AS2514 | 61.194.62.161 | higuchim@nttpc.co.jp | JP | APNIC | INFOSPHERE | 9ba9fa40cea68d2b274277305b5b0bb9 | http://sea0tter12.searchnavi.jp/aixownyns/ || 2012-02-01 09:39:25 | sub16 | avira | HTML/FakeAlert.I | 28/40 (70%) | AS2514 | 61.194.62.161 | higuchim@nttpc.co.jp | JP | APNIC | INFOSPHERE | 196ccea72592e36bfa57c29c691d7a73 | http://sea0tter12.searchnavi.jp/opzqlkmuc/ || 2012-02-01 09:39:25 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 31/40 (77.5%) | AS24785 | 217.170.2.226 | abuse@cyso.net | NL | RIPE | CYSO-NL | f2f1486acd76000b1e6e463e616a3023 | http://sexpenner.nl/sexfilm-sexfoto/start/linkex/index.php?page=about || 2012-02-01 09:39:25 | sub16 | undef | unknown_html_RFI_eval | 0/40 (0.0%) | AS21844 | 209.62.12.90 | abuse@theplanet.com | US | ARIN | EVRY-BLK-16 | 701f8cbbdc2125c4ca59740e81509c1a | http://sexxx-sites.net/adoras/tgp/paypal-accounts/?wam/login_jsp-redirect=/wam/index=jsp&x=-1198647253 || 2012-02-01 09:39:25 | sub16 | avira | ADWARE/Relevant.BA.775 | 19/39 (48.7%) | AS29789 | 66.254.123.32 | hostmaster@reflected.net | US | ARIN | REFLECTED-1 | 35ba9a463f0cc010bdb2e790d7c7482d | http://sexy-screen-savers.com/downloads/sexys103.exe || 2012-02-01 09:39:25 | sub16 | avira | JS/Agent.zbh | 27/40 (67.5%) | AS32780 | 174.127.107.164 | arin-contact@hostingservicesinc.net | US | ARIN | HOSTINGSERVICES-INC | 89316cf6a8155309571d8158cb9398ac | http://shining.com/index.php?option=com_content&task=category§ionid=4&id=35&Itemid=99 || 2012-02-01 09:39:25 | sub16 | avira | HTML/Infected.WebPage.Gen | 15/38 (39.5%) | AS4847 | 118.145.17.78 | bill.pang@bj.datadragon.net | CN | APNIC | BITNET | de8b1d5bd274a30425bc9f7b2aba1ecf | http://shuhuatd.com/untitled3.htm || 2012-02-01 09:39:25 | sub16 | avira | HTML/Infected.WebPage.Gen | 16/40 (40%) | AS4847 | 118.145.17.78 | bill.pang@bj.datadragon.net | CN | APNIC | BITNET | 33936778fa284555c1871b8429088446 | http://shuhuatd.com/untitled4.htm || 2012-02-01 09:39:26 | sub16 | avira | JS/iFrame.IS | 13/43 (30.2%) | AS16276 | 188.165.196.78 | abuse@ovh.net | FR | RIPE | OVH | 4591e5e7086c9692208292990e4bcbf4 | http://simpleanuncios.es/pagina-ejemplo/ || 2012-02-01 09:39:26 | sub16 | avira | EXP/JS.Blacole.U | 23/40 (57.5%) | AS25653 | 69.72.217.74 | abuse@fortressitx.com | US | ARIN | FORTRESSITX | 89567135854ca5ca0a2ec4ce320b6a9e | http://sistemaselectricos.com/cpe/iebdn4/tnw/ra.php || 2012-02-01 09:39:26 | sub16 | avira | HTML/FakeAlert.I | 26/40 (65%) | AS33774 | 174.34.252.24 | abuse@carohosting.com | US | ARIN | CARO-NET-ARIN-5 | 4e52ed82c90418074f6d6ac2baa5559c | http://sk8skates.com/uploads/banners/small/text1054.htm || 2012-02-01 09:39:26 | sub16 | avira | HTML/FakeAlert.I | 26/40 (65%) | AS33774 | 174.34.252.24 | abuse@carohosting.com | US | ARIN | CARO-NET-ARIN-5 | 7a0a9a807e50ede58005ccdc623f5af0 | http://sk8skates.com/uploads/banners/small/text147.htm || 2012-02-01 09:50:22 | sub16 | avira | HTML/SrcInject.U | 16/40 (40%) | AS5606 | 193.226.163.129 | abuse@kpnqwest.ro | RO | RIPE | RO-KPNQWEST-930901 | f0e9600c3d55dd18625cbbfff02af763 | http://solarshop.ro/images/psiqo.htm || 2012-02-01 09:50:22 | sub16 | AVG | JS/FBspam.A | 1/40 (2.5%) | AS32475 | 108.163.224.18 | abuse@singlehop.com | US | ARIN | SINGLEHOP | 2750d6a90dec735731d3a38838968c83 | http://sousay.info/install.php || 2012-02-01 09:50:22 | sub16 | avira | HTML/Crypted.Gen | 24/39 (61.5%) | AS21844 | 74.52.59.194 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | a364984a4a59d160258841522824c3b2 | http://spartco.net/SPTNet-FlashExe/_images/4SPCNet-BRANDMgmt-001.html || 2012-02-01 09:50:22 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 24/40 (60%) | AS15244 | 74.50.25.91 | hostmaster@lunarpages.com | US | ARIN | ADDD2NET-DOT-COM | e24056f333148cb84b8740a0eb9befcb | http://sportpharm.com/newsletter2/admin/barbie-q-by-sandra-cisneros/texas-star-cb-linears.html || 2012-02-01 09:50:22 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 31/40 (77.5%) | AS8001 | 209.123.8.24 | network@nac.net | US | ARIN | NAC-NETBLK02 | c224c4acab099a5edec3e5217b9f1ff4 | http://sposervice.od.ua/cat/& || 2012-02-01 09:50:22 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 29/38 (76.3%) | AS8001 | 209.123.8.24 | network@nac.net | US | ARIN | NAC-NETBLK02 | d1cc88a2b056910a233f2a3ab442470c | http://sposervice.od.ua/cat/cat/20/& || 2012-02-01 09:50:22 | sub16 | avira | HTML/IFrame.act.2 | 20/42 (47.6%) | AS19066 | 96.30.44.137 | noc@wiredtree.com | US | ARIN | WIREDTREE | 3a2f3be2602c547270b889d74652cc4f | http://srhdpc.org/homeport/modules/piCal/index.php?cid=0&smode=Daily&caldate=2010-4-13 || 2012-02-01 09:50:22 | sub16 | BitDefender | Trojan.Script.419300 | 8/40 (20%) | AS4134 | 122.225.32.12 | anti-spam@mail.jxptt.zj.cn | CN | APNIC | JIAXING-TELECOM-LTD | 31c431cc44dd1db563f207b39364266d | http://stat1.vipstat.com/stat/IEBarInstall_TC.htm?pid=27902&unionid=4&sid=18458&ktime=24 || 2012-02-01 10:00:03 | sub15 | Kaspersky | UDS:DangerousObject.Multi.Generic | 11/38 (28.9%) | AS15836 | 87.255.73.20 | abuse@araxinfo.com | MD | RIPE | MD-ARAXCOM-20051108 | 040a43a53026d1eb8a1b39fb1216e716 | http://87.255.73.20/files/70 || 2012-02-01 10:00:13 | sub7 | avira | PHP/IRCBOT.F.1 | 29/42 (69%) | AS16276 | 176.31.245.65 | abuse@ovh.net | FR | RIPE | OVH | 4692e21cf55a9cfb60b892e117939202 | http://coolscakes.nl//wp-content/themes/invictus/cache/link1.jpg?? || 2012-02-01 10:00:13 | sub7 | avira | PHP/IRCBOT.F.1 | 28/40 (70%) | AS16276 | 176.31.245.65 | abuse@ovh.net | FR | RIPE | OVH | 4692e21cf55a9cfb60b892e117939202 | http://coolscakes.nl//wp-content/themes/invictus/cache/link2.jpg?? || 2012-02-01 10:00:13 | sub1 | undef | unknown_html_RFI_eval | 0/40 (0.0%) | AS13238 | 95.108.135.145 | abuse@yandex.ru | RU | RIPE | YANDEX-95-108-135-128 | 395227df809d489c5c487ec9dd8ed2ea | http://02.dl2e-narod.yandex.ru/disk/31657754001/h985e17cd544718a6ac11ba0c0a319568/SR3_fix1.rar || 2012-02-01 10:00:14 | sub1 | undef | unknown_arch_zip | 0/40 (0.0%) | AS38661 | 180.210.40.2 | luvyong@hclc.co.kr | KR | APNIC | HCLC-KR | 1664ecdf7b5d15516743977b01ad7d10 | http://download.barosearch.co.kr/bacon2/_autofile/_icon/A40238848.zip || 2012-02-01 10:00:15 | sub1 | avira | ADWARE/Adware.Gen | 31/40 (77.5%) | AS4812 | 61.152.239.21 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-SH | 271e7787847ca56c44ed454b5f3c1c77 | http://gkx.ns02.us/d/6.exe || 2012-02-01 10:00:15 | sub1 | avira | TR/Dropper.Gen | 31/40 (77.5%) | AS4812 | 61.152.239.21 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-SH | a8b5f400b902ca185d0cbc247f9b8b67 | http://gkx.ns02.us/d/q.exe || 2012-02-01 10:00:15 | sub1 | avira | TR/Dropper.Gen | 24/39 (61.5%) | AS4812 | 61.152.239.21 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-SH | e3d823a321bf83ece6e839bc165c0e25 | http://gkx.ns02.us/d/r.exe || 2012-02-01 10:00:15 | sub1 | avira | WORM/Palevo.HG.2 | 28/40 (70%) | AS4812 | 61.152.239.21 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-SH | ce5240012de611dab4ffb677606633cd | http://gkx.ns02.us/d/t.exe || 2012-02-01 10:00:15 | sub1 | undef | unknown_html_RFI_eval | 0/40 (0.0%) | AS13238 | 213.180.204.46 | abuse@yandex.ru | RU | RIPE | YANDEX-204-32 | 064fa58fcd89fe64bb3c65913d1fa636 | http://narod.ru/disk/start/02.dl2e-narod.yandex.ru/31657754001/h985e17cd544718a6ac11ba0c0a319568/SR3_fix1.rar || 2012-02-01 10:00:15 | sub1 | undef | unknown_html_RFI_eval | 0/40 (0.0%) | AS13238 | 213.180.204.46 | abuse@yandex.ru | RU | RIPE | YANDEX-204-32 | 4dd0c5bf5e85cc8b4fc8f0ea5bc915e1 | http://narod.yandex.ru/disk/start/02.dl2e-narod.yandex.ru/31657754001/h985e17cd544718a6ac11ba0c0a319568/SR3_fix1.rar || 2012-02-01 10:00:16 | sub1 | TheHacker | Backdoor/VB.geqs | 1/40 (2.5%) | AS6939 | 64.62.158.147 | hostmaster@he.net | US | ARIN | HURRICANE-4 | 3d8fd62d17a44221e07d5c535950449b | http://www.ascentive.com/support/new/images/lib/MSWINSCK.OCX || 2012-02-01 10:00:55 | sub1 | avira | TR/Agent.anym.1 | 14/40 (35%) | AS4766 | 203.249.66.5 | lyk1004@kt.com | KR | APNIC | PUBNET-KR | 34871cb37c694014cc5fe2aadde846c1 | http://www.jdkim.com//bbs/data/date/1upadringr.exe || 2012-02-01 10:00:55 | sub1 | DrWeb | Trojan.VbCrypt.66 | 12/40 (30%) | AS35415 | 78.140.186.25 | ripe@webazilla.com | NL | RIPE | NL-WEBAZILLA-20070629 | c07dc8a0eb913efc27dd7a174835735a | http://dc471.4shared.com/download/rpjhOSV5/dady.exe || 2012-02-01 10:00:55 | sub1 | DrWeb | Trojan.VbCrypt.66 | 9/40 (22.5%) | AS40824 | 199.101.133.9 | abuse@webazilla.com | US | ARIN | WZCOMM-US | eab965bb0e9c9538d730d948ffc07476 | http://dc339.4shared.com/download/IpY9NADz/jomnn.exe || 2012-02-01 10:00:55 | sub1 | VBA32 | Trojan-Downloader.Autoit.gen | 2/38 (5.3%) | AS26496 | 173.201.233.47 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 6398bd51ff29114964c34d5dc1860697 | http://173.201.233.47/yahoo.exe || 2012-02-01 10:00:55 | sub1 | clamav | Trojan.Banker-3073 | 1/40 (2.5%) | AS7224, AS16509, AS39111 | 205.251.215.64 | ipmanage@rogers.wave.ca | CA | ARIN | ROGERS-CAB-99 | 05feca1b4b1f7f9d924191716ad3f0ba | http://cdn.bigspeedpro.com/mirror/incredimail/incredibar_install.exe || 2012-02-01 10:01:28 | sub16 | avira | HTML/Crypted.Gen | 23/40 (57.5%) | AS42926 | 176.53.18.45 | abuse@as42926.net | TR | RIPE | TR-RADORE-20110526 | f0b8198775297778234093fc2c346876 | http://temagt.com/images/pics/page1232.html || 2012-02-01 10:01:28 | sub16 | avira | HTML/Crypted.Gen | 22/40 (55%) | AS42926 | 176.53.18.45 | abuse@as42926.net | TR | RIPE | TR-RADORE-20110526 | a4c8e6aa46de17ae3b7bd51e252221fc | http://temagt.com/images/pics/page2048.html || 2012-02-01 10:01:28 | sub16 | avira | HTML/Crypted.Gen | 23/40 (57.5%) | AS42926 | 176.53.18.45 | abuse@as42926.net | TR | RIPE | TR-RADORE-20110526 | abf529e4540bbdd5c34ae3257597caab | http://temagt.com/images/pics/page837.html |+---------------------+-------------+-------------+-----------------------------------+---------------+--------------------------------------------+-----------------+-------------------------------------+---------+---------+-------------------------+----------------------------------+--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+182 rows in set (0.11 sec)
+---------------------+-------------+-------------+-----------------------------+---------------+------------------------------------------------------------------+-----------------+-------------------------------------+---------+---------+-------------------------+----------------------------------+-------------------------------------------------------------------------------------------------------------------------------------+| date | contributor | scanner | virusname | vt_score | AS | review | email | country | source | netname | md5sum | url |+---------------------+-------------+-------------+-----------------------------+---------------+------------------------------------------------------------------+-----------------+-------------------------------------+---------+---------+-------------------------+----------------------------------+-------------------------------------------------------------------------------------------------------------------------------------+| 2012-02-01 10:20:07 | sub10 | avira | WORM/Rbot.Gen | 32/40 (80%) | AS35908 | 174.139.209.156 | admin-arin@vpls.net | US | ARIN | VPLSNET | 440737dcdda06a0698ecfff52c39bdd2 | http://174.139.209.156/521515151.exe || 2012-02-01 10:20:07 | sub10 | DrWeb | Trojan.KillProc.14333 | 15/38 (39.5%) | AS21788 | 184.82.36.205 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | f4ffee4e6bcd91d8508fd9f7fb88dc57 | http://184.82.36.205/f/88.exe || 2012-02-01 10:20:25 | sub16 | undef | unknown_html_google_malware | 0/40 (0.0%) | AS22489 | 69.43.161.164 | abuse@castleaccess.com | US | ARIN | ARIN-CASTLE-ALLOC | 70c01a1a08c81b8b49c0fe1d5baeb139 | http://thetoolsbargain.com/in.php?affid=30005&url=5&win=Windows%20XP+3.0 || 2012-02-01 10:20:25 | sub16 | avira | HMTL/iFrame.mce | 15/38 (39.5%) | AS4766 | 222.122.49.24 | abuse@kornet.net | KR | APNIC | KORNET-KR | d7c411bae90e3e648b4ba5726e69e611 | http://tkmb.com/bbs/del_comment.php?id=moldinfo&page=1&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=hit&desc=asc&no=1&c_no=3978 || 2012-02-01 10:20:25 | sub16 | Avast | Win32:Spyware-gen [Spy] | 14/40 (35%) | AS29873 | 66.96.130.7 | bnbrock@maileig.com | US | ARIN | BIZLAND-FC01 | 710c8a227b6275ecc28f0179b0de6732 | http://tlxsoft.net/ausrrec.zip || 2012-02-01 10:20:25 | sub16 | avira | HMTL/iFrame.mce | 17/40 (42.5%) | AS9848 | 211.239.157.100 | abuse@sejongtelecom.net | KR | APNIC | SEJONGNET-KR | d36eb2d7131e9bea7fad7a92e83783ec | http://tnnsolution.com/zb41/zboard.php?id=fboard&page=111&sn1=&divpage=2&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=4055 || 2012-02-01 10:20:26 | sub16 | avira | ADSPY/NaviPromo.J | 13/40 (32.5%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | eb771cb550f5c63b3fbe0bfb10cc97e7 | http://toptenreport.com/download/mn2ost.exe || 2012-02-01 10:20:26 | sub16 | avira | ADSPY/NaviPromo.J | 13/40 (32.5%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 0fcf0d85b49c65e3a9bf423178f4aef5 | http://toptenreport.com/download/print2pdf.exe || 2012-02-01 10:20:26 | sub16 | avira | ADSPY/NaviPromo.J | 18/39 (46.2%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 8f183abaae8c63f86866ee7b3b3b73f7 | http://toptenreport.com/download/sidco.exe || 2012-02-01 10:20:26 | sub16 | avira | W97M/Mxfile.F | 38/40 (95%) | AS21109 | 62.84.103.80 | noc@dubna.ru | RU | RIPE | RU-CONTACT-20010824 | 48f436e31252ace2fd7e19d3696989b8 | http://torgi.yanao.ru/docs/88/1725/4119/ || 2012-02-01 10:20:26 | sub16 | undef | unknown_html_RFI_eval | 0/40 (0.0%) | AS21788 | 64.120.168.185 | abuse@hostnoc.net | US | ARIN | HOSTNOC-5BLK | dc42da5909ee4905a5b7e68ac8aadd15 | http://tubequ.com/tds/in.cgi?6 || 2012-02-01 10:20:26 | sub16 | avira | JS/Pegel.BR.51139 | 28/40 (70%) | AS30058 | 66.90.68.166 | abuse@fdcservers.net | US | ARIN | FDCSERVERS | e16b3e2e0e2c280c0ebc7b238210ce72 | http://tunga.uuuq.com/kisinh/2/9.htm || 2012-02-01 10:20:26 | sub16 | avira | ZRK-2968/2970 | 35/39 (89.7%) | AS21844 | 74.52.2.2 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | c1d633d1f2b995e1bc84362c59c17f37 | http://turktekno.net/program/455VIREN.zip &nb
Topic: clean mx's daily dirt (Read 4064094 times)
