0 Members and 3 Guests are viewing this topic.
+---------------------+-------------+-------------+----------------------------------------+---------------+------------------------------------+-----------------+-------------------------------------+---------+--------+-----------------------------+----------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| date | contributor | scanner | virusname | vt_score | AS | review | email | country | source | netname | md5sum | url |+---------------------+-------------+-------------+----------------------------------------+---------------+------------------------------------+-----------------+-------------------------------------+---------+--------+-----------------------------+----------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| 2011-10-17 02:40:05 | sub24 | avira | TR/ATRAPS.Gen | 11/40 (27.5%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | a663c8f30fa3fea57c9d74385bcd6467 | http://mbcsfckmmcp.com/w.php?e=2&f=47 || 2011-10-17 02:40:05 | sub24 | avira | TR/Dropper.Gen | 19/40 (47.5%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 2d6aa842cc3e2502c371e506e9baafeb | http://mbcsfckmmcp.com/w.php?e=2&f=48 || 2011-10-17 02:40:05 | sub24 | avira | TR/Drop.Yakes.A | 35/40 (87.5%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 26c70d030450ad897aeefbd9027ef18a | http://mbcsfckmmcp.com/w.php?e=2&f=49 || 2011-10-17 02:40:05 | sub24 | BitDefender | Gen:Variant.Kazy.38090 | 5/40 (12.5%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | db738568e9589a7dde340ad706556602 | http://mbcsfckmmcp.com/w.php?e=2&f=50 || 2011-10-17 02:40:05 | sub24 | undef | unknown_exe | | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 2c94cc6cecefe6ab5925d878291e85a4 | http://mbcsfckmmcp.com/w.php?e=2&f=51 || 2011-10-17 02:40:05 | sub24 | BitDefender | Gen:Variant.Kazy.38136 | 4/40 (10%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 70a6379283295e39a400fc67c88c2562 | http://mbcsfckmmcp.com/w.php?e=2&f=52 || 2011-10-17 02:40:05 | sub24 | BitDefender | Gen:Variant.Kazy.38107 | 5/40 (12.5%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 58844898a0a6a4a2c40ed33ee46f252a | http://mbcsfckmmcp.com/w.php?e=2&f=53 || 2011-10-17 02:40:05 | sub24 | undef | unknown_exe | | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 5bed928223673e51a4c2feffea0e424c | http://mbcsfckmmcp.com/w.php?e=2&f=54 || 2011-10-17 02:40:05 | sub24 | undef | unknown_exe | | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 4006d1d48268d6ad4192a53996404aa9 | http://mbcsfckmmcp.com/w.php?e=2&f=55 || 2011-10-17 02:40:05 | sub24 | avira | TR/Dropper.Gen | | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | e0f23b163ec7278bb1c5f959039c70ba | http://mbcsfckmmcp.com/w.php?e=2&f=56 || 2011-10-17 02:40:05 | sub24 | avira | TR/Boigy.4.14 | | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | e1eb0dd276a21dd8d12c15a83e8d3ad5 | http://mbcsfckmmcp.com/w.php?e=2&f=57 || 2011-10-17 02:40:05 | sub24 | undef | unknown_exe | | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | b7ea069581370ae2d9487d9c0e31c837 | http://mbcsfckmmcp.com/w.php?e=2&f=58 || 2011-10-17 02:40:05 | sub24 | undef | unknown_exe | | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 9447f57fdac7620f089866bf7376b8f5 | http://mbcsfckmmcp.com/w.php?e=2&f=59 || 2011-10-17 02:40:05 | sub24 | BitDefender | Gen:Variant.Kazy.38121 | 4/40 (10%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 2cb95fc1a66c6ef17b5eb6cc979454a3 | http://mbcsfckmmcp.com/w.php?e=2&f=60 || 2011-10-17 02:40:05 | sub24 | undef | unknown_exe | | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | bfe776c00f4f647c6566c9df389a3c82 | http://mbcsfckmmcp.com/w.php?e=2&f=61 || 2011-10-17 02:40:05 | sub24 | AhnLab_V3 | Backdoor/Win32.Sinowal | 13/38 (34.2%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 22e5611173c1d3d7bbab24f29617371b | http://mbcsfckmmcp.com/w.php?e=2&f=62 || 2011-10-17 02:40:05 | sub24 | undef | unknown_exe | | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 894cebe70aeea67252758487c41eae44 | http://mbcsfckmmcp.com/w.php?e=2&f=63 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Sinowal.380901 | | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 3b4aea58beba7feb386c1e4962e39deb | http://mbcsfckmmcp.com/w.php?e=2&f=64 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Sinowal.380901 | 16/38 (42.1%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 23e736db59f24c792e3314a1c69450e7 | http://mbcsfckmmcp.com/w.php?e=2&f=65 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Sinowal.380901 | | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | e60a7dbbb8e2c656a02065661c5d73f0 | http://mbcsfckmmcp.com/w.php?e=2&f=66 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Sinowal.380901 | | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 4074cf0b6b6e0b6d6cf6951e2506f6e0 | http://mbcsfckmmcp.com/w.php?e=2&f=67 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Sinowal.380901 | 15/38 (39.5%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 103686d0a90536fe194b6b6342573948 | http://mbcsfckmmcp.com/w.php?e=2&f=68 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Sinowal.380901 | | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 9237cb60f801253e40a1a709b545238e | http://mbcsfckmmcp.com/w.php?e=2&f=69 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Sinowal.380901 | 15/38 (39.5%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 02318f8e6d02b246e7f30b16429afe11 | http://mbcsfckmmcp.com/w.php?e=2&f=70 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Sinowal.380901 | 17/40 (42.5%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 592b86d0ffbff72cdd408e3f24aeefe5 | http://mbcsfckmmcp.com/w.php?e=2&f=71 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Sinowal.380901 | | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | d080233236b8081d693dbdb1cda531cc | http://mbcsfckmmcp.com/w.php?e=2&f=72 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Sinowal.380901 | 16/39 (41%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 7b4ed1cc2a19ee67c9126ca48433353b | http://mbcsfckmmcp.com/w.php?e=2&f=73 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Sinowal.380901 | 16/39 (41%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | eb99a9c05adda79b40ec01cf8f58114b | http://mbcsfckmmcp.com/w.php?e=2&f=74 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Sinowal.380901 | 15/40 (37.5%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 5e885ffcf744f718162192ae16305949 | http://mbcsfckmmcp.com/w.php?e=2&f=75 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Sinowal.380901 | 16/40 (40%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 37527a4f679b0c9db8c87078ffc42a03 | http://mbcsfckmmcp.com/w.php?e=2&f=76 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Sinowal.380901 | 14/39 (35.9%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 88c92bb4b21114d16c2c9132f6c9cca8 | http://mbcsfckmmcp.com/w.php?e=2&f=77 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Sinowal.380901 | 14/39 (35.9%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | f66e6a0d0c4fcdbb3f01b016dd4d0865 | http://mbcsfckmmcp.com/w.php?e=2&f=78 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Sinowal.380901 | 17/39 (43.6%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 508fa65cb07c89751a9ec5fb5df4e9aa | http://mbcsfckmmcp.com/w.php?e=2&f=79 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Sinowal.380901 | | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 64095be26250e7852168a1ad00263919 | http://mbcsfckmmcp.com/w.php?e=2&f=80 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Sinowal.380901 | 15/39 (38.5%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | bb12f8a0eec86ee9660d9566eb02bae9 | http://mbcsfckmmcp.com/w.php?e=2&f=81 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Sinowal.380901 | 16/40 (40%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 13cd6061340b5eb181fb4021815fc9f2 | http://mbcsfckmmcp.com/w.php?e=2&f=82 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Sinowal.380901 | | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 9659a5bdef4cfd9825b47b544416ada2 | http://mbcsfckmmcp.com/w.php?e=2&f=83 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Sinowal.380901 | 17/39 (43.6%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 101572ef209571786d251b24b7e8b499 | http://mbcsfckmmcp.com/w.php?e=2&f=84 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Sinowal.380901 | 17/39 (43.6%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 78f88d06aa737f6f12b88e6b189f8729 | http://mbcsfckmmcp.com/w.php?e=2&f=85 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Sinowal.380901 | 14/40 (35%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | e0bf1db041288dee17a7d10d82517395 | http://mbcsfckmmcp.com/w.php?e=2&f=86 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Sinowal.380901 | 15/40 (37.5%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | b14dfe090c94a4e773fb2fcf8fd64421 | http://mbcsfckmmcp.com/w.php?e=2&f=87 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Sinowal.380901 | 13/40 (32.5%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | c671a668f6f35e22c569d234c2b8623f | http://mbcsfckmmcp.com/w.php?e=2&f=88 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Sinowal.380901 | | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 6ff3035bc56d2951eefd133d0e6ef976 | http://mbcsfckmmcp.com/w.php?e=2&f=89 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Sinowal.380901 | 16/40 (40%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | c57c0b1dc930c841c545e013ec550788 | http://mbcsfckmmcp.com/w.php?e=2&f=90 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Sinowal.380901 | 16/38 (42.1%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 816668a07af36441e8996a6321df002c | http://mbcsfckmmcp.com/w.php?e=2&f=91 || 2011-10-17 02:40:05 | sub24 | avira | TR/Dropper.Gen | 30/37 (81.1%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 5b801dc7448c2763a43f64178d0aa5d6 | http://mbcsfckmmcp.com/w.php?e=2&f=95 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Agent.brve | 32/37 (86.5%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | f996e58393da72d1d54124e1f98f375b | http://mbcsfckmmcp.com/w.php?e=2&f=96 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Sinowal.380901 | 13/38 (34.2%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | c3b71738e795bf205ef8779a62dc13c3 | http://mbcsfckmmcp.com/w.php?e=2&f=98 || 2011-10-17 02:40:05 | sub24 | avira | BDS/Sinowal.380901 | 14/38 (36.8%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 08f26f703f2ebd20c7e325751a4a7758 | http://mbcsfckmmcp.com/w.php?e=2&f=99 || 2011-10-17 02:40:05 | sub24 | BitDefender | Gen:Variant.Kazy.38090 | 4/37 (10.8%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 321defa50211826de192d1375f3d71f8 | http://mbcsfckmmcp.com/w.php?e=4&f=26 || 2011-10-17 02:40:05 | sub24 | BitDefender | Gen:Variant.Kazy.38090 | 4/37 (10.8%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 321defa50211826de192d1375f3d71f8 | http://obcsfnkomcp.com/w.php?e=2&f=26 || 2011-10-17 02:40:05 | sub24 | BitDefender | Gen:Variant.Kazy.38090 | 4/38 (10.5%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 321defa50211826de192d1375f3d71f8 | http://ohjopfgomcp.com/w.php?e=2&f=26 || 2011-10-17 02:40:06 | sub24 | BitDefender | Gen:Variant.Kazy.38090 | 4/37 (10.8%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 321defa50211826de192d1375f3d71f8 | http://sefqkxjsmcp.com/w.php?e=2&f=26 || 2011-10-17 03:00:04 | sub7 | avira | PHP/Small.AA | 4/37 (10.8%) | AS16245 | 217.116.232.217 | abuse@gigahost.dk | DK | RIPE | GIGAHOST-NGDC-NET | 749d7153b87c671531e4a3df71f22f9d | http://www.danskfrieserforbund.dk/Shop1/readme.txt? || 2011-10-17 02:17:09 | sub5 | avira | PHP/Small.AA | | AS16245 | 217.116.232.217 | abuse@gigahost.dk | DK | RIPE | GIGAHOST-NGDC-NET | 749d7153b87c671531e4a3df71f22f9d | http://danskfrieserforbund.dk/Shop1/readme.txt? || 2011-10-17 02:38:26 | sub5 | avira | PHP/Pbot.A.6 | | AS34762 | 217.19.227.142 | abuse@combell.com | BE | RIPE | COMBELL | 18565b66105fffbb965e789e0cd871f5 | http://cocomo.be/cocomo2011/wp-content/plugins//formidable/classes/controllers/cache/byroe.jpg?? || 2011-10-17 04:00:20 | sub10 | avira | TR/Dropper.Gen2 | 18/40 (45%) | AS6939 | 64.62.181.43 | hostmaster@he.net | US | ARIN | HURRICANE-4 | cc7fa63e670e9584630a58886fe4c190 | http://gc1.fileave.com/205.exe || 2011-10-17 04:00:20 | sub10 | undef | unknown_exe | 0/40 (0.0%) | AS16265 | 95.211.100.73 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | dd8fa4a6f0055cf3f0a64c47ff168caf | http://get.downvision.com/get?id=294335 || 2011-10-17 04:10:04 | sub18 | avira | PHP/Agent.HG | 19/38 (50%) | AS24940 | 78.46.101.71 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET | 96d10a49d8d6855c44feaece1ac877cb | http://www.garmonia.if.ua/xmlrpc/id.txt??? || 2011-10-17 04:10:04 | sub18 | avira | PHP/Agent.HG | 20/40 (50%) | AS24940 | 78.46.101.71 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET | 96d10a49d8d6855c44feaece1ac877cb | http://www.garmonia.if.ua/xmlrpc/id.txt???? || 2011-10-17 03:28:08 | sub5 | avira | PHP/Agent.HG | 20/40 (50%) | AS24940 | 78.46.101.71 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET | 96d10a49d8d6855c44feaece1ac877cb | http://garmonia.if.ua/xmlrpc/id.txt???? || 2011-10-17 03:23:40 | sub5 | avira | SPR/PHP.ID | 19/40 (47.5%) | AS24971 | 80.79.25.74 | obchod@axfone.cz | CZ | RIPE | AXFONE-1-MAI-CZ | 05a071144ab4e562792aa026186751a8 | http://kulex.sk/images/cmd.txt?? || 2011-10-17 03:32:13 | sub5 | avira | PHP/Agent.HG | 20/40 (50%) | AS24940 | 78.46.101.71 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET | 96d10a49d8d6855c44feaece1ac877cb | http://garmonia.if.ua/xmlrpc/id.txt??? || 2011-10-17 03:25:51 | sub5 | clamav | PUA.HTML.Crypt-8 | 1/40 (2.5%) | AS32780 | 174.127.106.93 | arin-contact@hostingservicesinc.net | US | ARIN | HOSTINGSERVICES-INC | f86e23328358f0aea2e902db45eb6c7c | http://condoterminators.com/ct/libraries/geshi/geshi/aa.txt? || 2011-10-17 03:24:39 | sub5 | clamav | PUA.HTML.Crypt-8 | 1/40 (2.5%) | AS32780 | 174.127.106.93 | arin-contact@hostingservicesinc.net | US | ARIN | HOSTINGSERVICES-INC | f86e23328358f0aea2e902db45eb6c7c | http://condoterminators.com/ct/libraries/geshi/geshi/aa.txt??? || 2011-10-17 03:25:26 | sub5 | avira | PHP/C99Shell.F | 24/40 (60%) | AS26496 | 72.167.183.41 | noc@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 09b93d8583b4b04c6476d53963e1f959 | http://gcfchurch.org/index.txt? || 2011-10-17 04:50:05 | sub14 | avira | TR/Dldr.Delphi.Gen | 27/39 (69.2%) | AS6939 | 64.62.181.43 | hostmaster@he.net | US | ARIN | HURRICANE-4 | 3f677563734a4b0af236f68cbfbde7a3 | http://sam12288.fileave.com/bot.exe || 2011-10-17 04:50:05 | sub14 | avira | TR/Kazy.9568.14 | 21/40 (52.5%) | AS16276 | 91.121.154.53 | abuse@ovh.net | FR | RIPE | OVH | 29e37f9ffdb790412bc0e92bed7c923f | http://www.firemt2.pl/upload/Launcher.exe || 2011-10-17 04:50:05 | sub14 | clamav | Trojan.Spy-63580 | 5/39 (12.8%) | AS5413 | 194.154.178.229 | abuse@gxn.net | GB | RIPE | UK-PIPEX-INHERITSYS | be06ded2b10e8f610f9261e7d5fbad31 | http://www.mrcophth.com/electronicbooks/Botoxrejuvenation.exe || 2011-10-17 04:50:05 | sub14 | clamav | Trojan.Spy-63580 | 8/40 (20%) | AS5413 | 194.154.178.229 | abuse@gxn.net | GB | RIPE | UK-PIPEX-INHERITSYS | 16ffb4670ad0de2f61ee767de070a7bb | http://www.mrcophth.com/electronicbooks/Eyeofthebeholder.exe || 2011-10-17 04:50:05 | sub14 | clamav | Trojan.Spy-63580 | 8/40 (20%) | AS5413 | 194.154.178.229 | abuse@gxn.net | GB | RIPE | UK-PIPEX-INHERITSYS | 531c4c0e7a5e461ad55cad424dfb26ca | http://www.mrcophth.com/electronicbooks/FFA.exe || 2011-10-17 04:50:05 | sub14 | clamav | Trojan.Spy-63580 | 6/40 (15%) | AS5413 | 194.154.178.229 | abuse@gxn.net | GB | RIPE | UK-PIPEX-INHERITSYS | bae98b835f26fccbd1fc8875b77d9e5c | http://www.mrcophth.com/electronicbooks/Guidelinesforophthalmologist.exe || 2011-10-17 04:50:05 | sub14 | clamav | Trojan.Spy-63580 | 8/40 (20%) | AS5413 | 194.154.178.229 | abuse@gxn.net | GB | RIPE | UK-PIPEX-INHERITSYS | cd4bf731d434055b5f9594554f6592d4 | http://www.mrcophth.com/electronicbooks/Hesschart.exe || 2011-10-17 04:50:05 | sub14 | clamav | Trojan.Spy-63580 | 5/40 (12.5%) | AS5413 | 194.154.178.229 | abuse@gxn.net | GB | RIPE | UK-PIPEX-INHERITSYS | db3c6ee84355473fbc55317c9e4bea5e | http://www.mrcophth.com/electronicbooks/Historyofophthalmology.exe || 2011-10-17 04:50:05 | sub14 | clamav | Trojan.Spy-63580 | 6/40 (15%) | AS5413 | 194.154.178.229 | abuse@gxn.net | GB | RIPE | UK-PIPEX-INHERITSYS | 941d7c7068066ab09f8f5c35a0c72fc1 | http://www.mrcophth.com/electronicbooks/MCQsforfinalMRCOphth.exe || 2011-10-17 04:50:05 | sub14 | clamav | Trojan.Spy-63580 | 7/38 (18.4%) | AS5413 | 194.154.178.229 | abuse@gxn.net | GB | RIPE | UK-PIPEX-INHERITSYS | 5af4e103d910b2e94ef20642eb0da870 | http://www.mrcophth.com/electronicbooks/Neuro-ophthalmology.exe || 2011-10-17 04:50:05 | sub14 | clamav | Trojan.Spy-63580 | | AS5413 | 194.154.178.229 | abuse@gxn.net | GB | RIPE | UK-PIPEX-INHERITSYS | a170e47c6bd47da04dab29c4fcfb2ea8 | http://www.mrcophth.com/electronicbooks/OcularpathologyIII.exe || 2011-10-17 04:50:05 | sub14 | clamav | Trojan.Spy-63580 | 10/40 (25%) | AS5413 | 194.154.178.229 | abuse@gxn.net | GB | RIPE | UK-PIPEX-INHERITSYS | 66a958dfb3830cf89b3229c4c9a3d9ca | http://www.mrcophth.com/electronicbooks/OcularpathologyselftestsI.exe || 2011-10-17 04:50:05 | sub14 | clamav | Trojan.Spy-63580 | 8/40 (20%) | AS5413 | 194.154.178.229 | abuse@gxn.net | GB | RIPE | UK-PIPEX-INHERITSYS | 933bdc5a0da91d58e4b839c2aa4ef12e | http://www.mrcophth.com/electronicbooks/Ocularpathologytwo.exe || 2011-10-17 04:50:05 | sub14 | clamav | Trojan.Spy-63580 | | AS5413 | 194.154.178.229 | abuse@gxn.net | GB | RIPE | UK-PIPEX-INHERITSYS | b882b696f359003d024dfa1fed278371 | http://www.mrcophth.com/electronicbooks/Partoneessaryquestions.exe || 2011-10-17 04:50:05 | sub14 | clamav | Trojan.Spy-63580 | 8/39 (20.5%) | AS5413 | 194.154.178.229 | abuse@gxn.net | GB | RIPE | UK-PIPEX-INHERITSYS | d5e11174ed9be47e7ccfa0e241927e92 | http://www.mrcophth.com/electronicbooks/Studiesyouneedtoknow.exe || 2011-10-17 05:00:25 | sub10 | avira | HTML/Infected.WebPage.Gen2 | | AS17139 | 205.134.238.101 | abuse@corporatecolo.com | US | ARIN | CORPCOLO-NET | ecbad6f5ee4c43905177dd12f44e700e | http://citysports.biz/ppt/ || 2011-10-17 05:00:25 | sub10 | avira | HTML/Badsrc.A.3 | 13/40 (32.5%) | AS35732 | 91.208.99.13 | sales@tsohost.co.uk | GB | RIPE | TSOCLUSTER | a62c10a3396c7dcb14c720629ddd83fd | http://khpac.com/File/product.asp?id=2160&catid=176:tag0 || 2011-10-17 05:00:26 | sub10 | avira | SPR/JS.Crytper.VIP | 25/40 (62.5%) | AS29076 | 62.152.34.215 | abuse@host-telecom.com | RU | RIPE | HOST-TELECOM | fff4f191f7e1849bc8d4f2f2cd43c08a | http://sportgarage.ru/igchamprus1999/index.php-dir=3_1999.htm || 2011-10-17 05:00:35 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS10297 | 173.244.179.171 | hostmaster@ee.net | US | ARIN | ENET-XLHOST-5 | 113cfce8834f6377d9bfa8973e805e0a | http://173.244.179.171/corpbanca%20/coord/ecard.html || 2011-10-17 05:00:37 | sub5 | avira | PHP/Small.Awi.1026 | 20/40 (50%) | AS30968 | 77.221.130.23 | abuse@infobox.ru | RU | RIPE | INFOBOX-NET1 | affc37035cd206cc7595639bdd4c1578 | http://aniko-kadr.ru/id.txt? || 2011-10-17 05:56:03 | sub5 | avira | PHP/Pbot.A.9 | | AS33182 | 66.7.194.193 | abuse@dimenoc.com | US | ARIN | DIMECNET | 888a91441ccb0f022dbdd7152c7b1394 | http://tiagocamara.hdfree.com.br/index.html? || 2011-10-17 06:10:13 | sub24 | clamav | PUA.Script.PDF.EmbeddedJavaScript | 2/40 (5%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 740c65d5ce98a90cfb44ad5a031708f6 | http://95.211.110.229/content/1ddfp.php?f=0 || 2011-10-17 06:10:13 | sub24 | clamav | PUA.Script.PDF.EmbeddedJavaScript | 2/40 (5%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | e0aa9c45198013eb6c6f913152bd4df4 | http://95.211.110.229/content/1ddfp.php?f=30 || 2011-10-17 06:10:13 | sub24 | clamav | PUA.Script.PDF.EmbeddedJavaScript | 2/40 (5%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 796552cc0ec27ba0667b0284096937d4 | http://95.211.110.229/content/1ddfp.php?f=63 || 2011-10-17 06:10:13 | sub24 | clamav | PUA.Script.PDF.EmbeddedJavaScript | 2/40 (5%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 7c669f10f4e6210d42ec77471f7fb386 | http://95.211.110.229/content/1ddfp.php?f=88 || 2011-10-17 06:10:13 | sub24 | avira | EXP/Pidief.ahp | 17/40 (42.5%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | cd8ce2d48820ec73ecdc5cd8859cb384 | http://95.211.110.229/content/1fdp.php?f=25 || 2011-10-17 06:10:13 | sub24 | avira | EXP/Pidief.ahp | 17/40 (42.5%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 40f6083091838d8b1a1330064c82a4d0 | http://95.211.110.229/content/1fdp.php?f=53 || 2011-10-17 06:10:13 | sub24 | avira | EXP/Pidief.ahp | | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | e57cda0d63089ddd66c45f934b154e28 | http://95.211.110.229/content/1fdp.php?f=80 || 2011-10-17 06:10:13 | sub24 | avira | EXP/Pidief.gfa.7 | 27/40 (67.5%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 33ef90b750c94745078fe09f418a65d1 | http://95.211.110.229/games/2fdp.php?f=21 || 2011-10-17 06:10:13 | sub24 | avira | EXP/Pidief.gfa.7 | 27/40 (67.5%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 27b05bcd121cd1402ff6490f801d92dd | http://95.211.110.229/games/2fdp.php?f=41 || 2011-10-17 06:10:13 | sub24 | avira | EXP/Pidief.gfa.7 | 25/38 (65.8%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | fe9c90190aace8da198384ba47dc537f | http://95.211.110.229/games/2fdp.php?f=64 || 2011-10-17 06:10:13 | sub24 | avira | EXP/Pidief.gfa.7 | 27/40 (67.5%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 43a58a9f78ff44e0c4a14e027bf1d0b4 | http://mbcsfckmmcp.com/games/2fdp.php?f=33 || 2011-10-17 06:10:13 | sub24 | avira | EXP/Pidief.gfa.7 | | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 66d8f40c9fd49ba6bef01f7d80657ccf | http://mbcsfckmmcp.com/games/2fdp.php?f=66 || 2011-10-17 06:10:13 | sub24 | avira | EXP/Pidief.gfa.7 | 28/40 (70%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 157b76c6c0abc96aa40d747f5efe3ef7 | http://mbcsfckmmcp.com/games/2fdp.php?f=88 || 2011-10-17 07:00:14 | sub10 | clamav | PUA.PwTool.Pantsoff | 13/40 (32.5%) | AS34788 | 85.13.144.94 | ip@all-inkl.com | DE | RIPE | DE-ALL-INKL-20050405 | b89d91ce13d81e24e43a0cb1ac9fa39d | http://cbuenger.de/pantsoff/pantsoff.exe || 2011-10-17 07:00:15 | sub10 | avira | WORM/Rebhip.A.9877 | 34/40 (85%) | AS14618 | 107.22.251.136 | ec2-abuse@amazon.com | US | ARIN | AMAZON-EC2-8 | bddb7be6d8d492e9859476403f90259e | http://dl.dropbox.com/u/27769014/My%20Picture.exe || 2011-10-17 07:00:15 | sub10 | avira | DR/Delphi.Gen | | AS41947 | 92.241.168.68 | abuse@2x4.ru | RU | RIPE | NET-2X4 | ba3cd19d144aa271e999075666115315 | http://effect.w2c.ru/soundx64.exe || 2011-10-17 06:33:28 | sub5 | clamav | PHP.Id-30 | 8/40 (20%) | AS6939 | 64.62.181.46 | hostmaster@he.net | US | ARIN | HURRICANE-4 | f9ebd9c869dfa634be6977155f0c65b7 | http://h1.ripway.com/die007/aisha.jpg?? || 2011-10-17 07:30:04 | sub1 | undef | unknown_html_google_malware | 0/40 (0.0%) | AS32065 | 216.81.64.81 | support@vortechhosting.com | US | ARIN | VORTECH-BLK-2 | 73c0dad48757d7e67dab086fde472a64 | http://lisafuoco.net/milestones.html || 2011-10-17 07:40:03 | sub1 | Antiy_AVL | Hoax/HTML.Fraud | 5/38 (13.2%) | AS6706 | 88.146.119.90 | abuse@vol.cz | CZ | RIPE | THINLINE | acf801d48028003a792618332d39ecb3 | http://ftp01.expo58.cz/agreed.html || 2011-10-17 07:40:22 | sub14 | avira | TR/Crypt.TPM.Gen | | AS14618 | 75.101.154.189 | ec2-abuse@amazon.com | US | ARIN | AMAZON-EC2-4 | 0922291c1bc03040143ce8f12e2e66c6 | http://dl.dropbox.com/u/42860627/Alternativo.js || 2011-10-17 07:40:22 | sub14 | avira | TR/ATRAPS.Gen | 28/40 (70%) | AS14618 | 75.101.164.125 | ec2-abuse@amazon.com | US | ARIN | AMAZON-EC2-4 | 69e6f0cec3bf33021b9a0be766cc03a2 | http://dl.dropbox.com/u/44178765/winlive.txt || 2011-10-17 07:40:22 | sub14 | AVG | PSW.Delf.GHP | 10/40 (25%) | AS14618 | 75.101.164.125 | ec2-abuse@amazon.com | US | ARIN | AMAZON-EC2-4 | 50368027ce843244444143833a13146b | http://dl.dropbox.com/u/44178948/winlife.txt || 2011-10-17 07:40:22 | sub14 | avira | TR/Crypt.ZPACK.Gen | 11/40 (27.5%) | AS197043 | 31.214.169.50 | abuse@exetel.de | DE | RIPE | EXETEL-ISP | 5e292cb47a0cd5eb6f1206fd92ba9cb6 | http://kfatavistic.info/w.php?f=18%26%26e=6 || 2011-10-17 07:40:22 | sub14 | Avast | Win32:Mirc-Z PUP | 5/40 (12.5%) | AS28753 | 178.162.151.122 | abuse@leaseweb.de | DE | RIPE | DE-NETDIRECT-20100205 | 39f0ea646ce7618da94af71a5f0acedb | http://papatyaonline.net/mIRC-Scriptler/mirc.exe || 2011-10-17 07:40:22 | sub14 | K7AntiVirus | Trojan | 2/38 (5.3%) | AS28753 | 178.162.151.122 | abuse@leaseweb.de | DE | RIPE | DE-NETDIRECT-20100205 | ca32ae27caa45381b3c9a6d222acd860 | http://papatyaonline.net/mIRC-Scriptler/SiberTR_Cloner.exe || 2011-10-17 07:40:22 | sub14 | Antiy_AVL | Backdoor/Win32.Beastdoor.gen | 2/38 (5.3%) | AS28753 | 178.162.151.122 | abuse@leaseweb.de | DE | RIPE | DE-NETDIRECT-20100205 | 2d646c96755976c534ca127fc9d08dff | http://papatyaonline.net/mIRC-Scriptler/SiberTRClonerV2.exe || 2011-10-17 07:40:22 | sub14 | eSafe | Win32.WS.Reputation | 5/38 (13.2%) | AS28753 | 178.162.151.122 | abuse@leaseweb.de | DE | RIPE | DE-NETDIRECT-20100205 | c498efa9e344e3e6cf792ee485e6c63a | http://papatyaonline.net/mIRC-Scriptler/SiberTRhelpsorubotu.exe || 2011-10-17 07:40:22 | sub14 | Jiangmin | Trojan/Small.ikc | 3/38 (7.9%) | AS28753 | 178.162.151.122 | abuse@leaseweb.de | DE | RIPE | DE-NETDIRECT-20100205 | 7c2d9e49c7421d8d4c5fa12031abd3be | http://papatyaonline.net/mIRC-Scriptler/SiberTR_Trivia.exe || 2011-10-17 07:50:02 | sub1 | undef | unknown_html_google_malware | 0/38 (0.0%) | AS11798 | 66.147.244.193 | abuse@bluehost.com | US | ARIN | BLUEHOST-NETWORK-4 | 2759ae2c468dc5e6e317dddd33b25bb5 | http://www.joemyers.net/images.php || 2011-10-17 08:00:18 | sub10 | Avast | JS:Redirector-KK Trj | 9/38 (23.7%) | AS34895 | 83.138.64.199 | sjaeschke@hostnet.de | DE | RIPE | HOSTNET-NOC2 | bea1f7c51330e4528de9686ea0ba0160 | http://assetfilter.com/ || 2011-10-17 08:00:18 | sub10 | avira | DR/Keylogger.AP.1 | 24/38 (63.2%) | AS15244 | 74.50.26.200 | hostmaster@lunarpages.com | US | ARIN | ADDD2NET-DOT-COM | 1d716bf86af76be91ee1db44155069dc | http://key-logger.biz/download/lkinstall.exe || 2011-10-17 08:00:18 | sub10 | AhnLab_V3 | Worm/Win32.Palevo | | AS6939 | 64.62.181.43 | hostmaster@he.net | US | ARIN | HURRICANE-4 | 29f6c73e19ec686caa8e6165d832275a | http://novilol6.fileave.com/Photo-ID0772.jpeg.exe || 2011-10-17 08:50:05 | sub18 | avira | TR/Script.86 | 20/40 (50%) | AS11798 | 74.220.215.239 | support@bluehost.com | US | ARIN | BLUEHOST-NETWORK-2 | 7ab5a3291410db3231141e2818e85318 | http://www.saipansale.com/language/el-GR/sc1??? || 2011-10-17 09:00:20 | sub10 | avira | DR/Infexor.AK | 13/40 (32.5%) | AS8542 | 82.134.21.241 | arnljot@plexcom.no | NO | RIPE | NO-BKKB-PLEX-COMMUNICATIONS | 6990743cb2d22c7f89373fc2de444373 | http://anovasoft.com/trial/SRProTrialsetup.exe || 2011-10-17 09:00:21 | sub10 | clamav | PUA.Packed.ASPack | | AS16044 | 62.73.58.173 | abuse@auria.fi | EE | RIPE | ESTIINETS-NET | 1c541f29abcce291c27d6803014a9f0e | http://aurinkopaikka.net/kuvagalleria/images/Foto_0012.exe || 2011-10-17 09:00:21 | sub10 | avira | SPR/NetCat.A | 22/40 (55%) | AS13335 | 173.245.61.42 | noc@cloudflare.com | US | ARIN | CLOUDFLARENET | 580837638f784491eca21912094d4d63 | http://leethack.info/d/rcat.zip || 2011-10-17 09:00:21 | sub10 | BitDefender | Gen:Variant.Kazy.38107 | 5/40 (12.5%) | AS16265 | 95.211.110.229 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | cd22c176061fcd94fe71d3d242ab7827 | http://mbcsfckmmcp.com/w.php?f=26&e=2 || 2011-10-17 09:00:22 | sub10 | avira | TR/Dropper.Gen | | AS38732 | 115.146.127.12 | | VN | APNIC | datacentercustomer-net | 78e902b2aa4bc1387e2b1916fe38f796 | http://phongcach.us/dowload/Auto-6100.rar || 2011-10-17 09:00:22 | sub10 | avira | TR/Spy.Banker.Gen | 13/40 (32.5%) | AS11798 | 74.220.215.58 | support@bluehost.com | US | ARIN | BLUEHOST-NETWORK-2 | 3430e910c2b095f8dc284041cd289ee4 | http://rampconsulting.com.au/readme/bin/torpedo.php || 2011-10-17 09:10:31 | sub20 | undef | unknown_html_RFI_php | 0/40 (0.0%) | AS16276 | 178.33.55.222 | abuse@ovh.net | PL | RIPE | PL-OVH | d42223b1189d2082a25d71962c4575bc | http://silnikihonda.pl/bck.bck || 2011-10-17 10:00:11 | sub1 | avira | TR/VB.Inject.DM.448 | 26/40 (65%) | AS42926 | 46.45.164.164 | abuse@as42926.net | TR | RIPE | TR-RADORE-20100916 | f2c00144ffed969b135b783805c2f6fc | http://46.45.164.164/xx.exe || 2011-10-17 10:00:11 | sub1 | undef | unknown_file_FP_AX_CAB_INSTALLER64.exe | 0/40 (0.0%) | AS16625 | 2.21.35.191 | abuse@akamai.com | FR | RIPE | AKAMAI-PA | 6d96945f8c2e500e1b503950fba4ae70 | http://active.macromedia.com/pub/shockwave/cabs/flash/swflash.cab || 2011-10-17 10:00:11 | sub1 | AhnLab_V3 | PUP/Win32.Addendum | 12/40 (30%) | AS3786 | 222.231.59.171 | support@kidc.net | KR | APNIC | KIDC-KR | ca60f1f062e5ac344e59d787064f9476 | http://app2.tsmon.co.kr/file/MN/MN02/admrup.exe || 2011-10-17 10:00:11 | sub1 | Avast | Win32:Malware-gen | 7/39 (17.9%) | AS3786 | 222.231.59.162 | support@kidc.net | KR | APNIC | KIDC-KR | 74f8ad13ab910df9c195039fc9d291ab | http://app.searchro.co.kr/isrchro/file/srcroad.exe || 2011-10-17 10:00:11 | sub1 | avira | WORM/Palevo.HG.2 | 30/39 (76.9%) | AS17623 | 220.112.44.174 | speed0822@sina.com | CN | APNIC | GWBN-SHENZHEN | f143269b09162e3646008042c869e1e1 | http://b67.4dq.com/d/t.exe || 2011-10-17 10:00:11 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS3352 | 217.124.184.195 | Bego.aldonza@juntaextremadura.net | ES | RIPE | JUNTAEXTREMADURA | 66e41f7ed688da744cc189fa77fd0ab8 | http://cucha.linex.org/temp2/alfa_sberbank_bss_prbb.bin || 2011-10-17 10:00:11 | sub1 | avira | TR/Dropper.Gen | 30/40 (75%) | AS4837 | 121.22.6.39 | abuse@chinaunicom.cn | CN | APNIC | UNICOM-HE | 55c65d711cfc95dc72ee423c19853c02 | http://djn.ns01.us/o/qx.exe || 2011-10-17 10:00:11 | sub1 | undef | unknown_exe | 0/40 (0.0%) | AS16509 | 72.21.194.23 | noc@amazon.com | US | ARIN | AMAZON-02 | d210ebec3fd237daa03ae3b2715201b8 | http://dl02.s3.amazonaws.com/installers/229129/TucowsDownloader.exe || 2011-10-17 10:00:12 | sub1 | undef | unknown_exe | | AS22822 | 87.248.218.206 | guy@llnw.com | EU | RIPE | LLNW-EU-2 | 858a016acfa24ade77aa475c08b4ac5a | http://dl2.iq5download.com/lm/products/requirements/dxtest/dxtest.exe || 2011-10-17 10:00:12 | sub1 | undef | unknown_arch_zip | 0/40 (0.0%) | AS22822 | 87.248.218.206 | guy@llnw.com | EU | RIPE | LLNW-EU-2 | 17096eb49dbaa69334bea941f41e6b3c | http://dl4.iq5download.com/disclosures/products/product.iq.waterfalls2_2.zip || 2011-10-17 10:00:12 | sub1 | undef | unknown_exe | 0/40 (0.0%) | AS19994 | 173.203.98.33 | abuse@rackspace.com | US | ARIN | RSPC-1260562566545648481268 | 6ef347007b7672edfeb111d5a73a3b66 | http://dnld.openinstall.com/files/VHVjb3dzRG93bmxvYWRlci5tc2k/VHVjb3dzIERvd25sb2FkIE1hbmFnZXI/aHR0cDovL3d3dy50dWNvd3MuY29tL3lnZXQvMTAzODM2Nl82NDU0MTU/70246cd1655bb757bb19323f3248cc8cf9414b2b/TucowsDownloader.msi || 2011-10-17 10:00:12 | sub1 | avira | TR/Dropper.Gen | 19/40 (47.5%) | AS56642 | 91.226.78.16 | sdelanocompletservice@gmail.com | RU | RIPE | kompli-net | 3a8aa43ac3c7e7af8705f774f7e4df13 | http://helgamak.ru/jweifewiff/jqs.exe || 2011-10-17 10:00:12 | sub1 | Avast | Win32:Downloader-KVI Trj | 8/40 (20%) | AS6939 | 64.62.181.43 | hostmaster@he.net | US | ARIN | HURRICANE-4 | d366d67d49865ea5371106aabc2612d9 | http://jebenivozacki3.fileave.com/lolspplol2.exe || 2011-10-17 10:00:12 | sub1 | avira | TR/Spy.Gen | 31/40 (77.5%) | AS4134 | 182.40.244.63 | ipreport@sdtele.com | CN | APNIC | CHINANET-SD | a5de973ca7866a409908b1ef14d20465 | http://luoliao.gnway.net/QQ.exe || 2011-10-17 10:00:13 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 222.168.89.146 | ipmgr@jltele.com | CN | APNIC | CHINANET-JL | 4e7abc3495622dc81cda046505717fa0 | http://tj.yeerey.com:8088/installed.asp?key=installeduusee.exe || 2011-10-17 10:00:13 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 222.168.89.146 | ipmgr@jltele.com | CN | APNIC | CHINANET-JL | bce430c809df3606878ad3b84bf67995 | http://tj.yeerey.com:8088/installed.asp?key=installyy.exe || 2011-10-17 10:00:32 | sub10 | avira | ADWARE/Agent.1031316 | 11/40 (27.5%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 011e39d537d685b3b2c4dd3e4e66e091 | http://cyberipod.com/download/PandoSetup.exe || 2011-10-17 09:54:30 | sub5 | avira | PHP/IRCBOT.E.29297 | 20/40 (50%) | AS36420, AS30315, AS13749, AS21844 | 174.121.148.187 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | fd0e457c32edc1031476fc8b797012c5 | http://kbgoldfree.com/jdb212/archive/dalnet.png?? || 2011-10-17 09:54:36 | sub5 | avira | PHP/Small.C | 28/40 (70%) | AS36420, AS30315, AS13749, AS21844 | 174.121.148.187 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 9e1a6ba50a68447c6f8bba87190bd5db | http://kbgoldfree.com/jdb212/archive/crimecyber.png?? || 2011-10-17 10:10:34 | sub20 | undef | unknown_html | 0/40 (0.0%) | AS3786 | 222.231.59.162 | support@kidc.net | KR | APNIC | KIDC-KR | dc504b442d6e1de5dc6075936b3dcffd | http://app.searchro.co.kr/isrchro/app/inst.asp?MID=10DN || 2011-10-17 10:10:34 | sub20 | undef | unknown_html | 0/40 (0.0%) | AS29076 | 193.109.247.58 | abuse@compubyte.vg | VG | RIPE | UCOZ-NET | 8ef4a9014795fd8bca0b7e36e53faced | http://ghgmhjgjkihgmdm.ucoz.de/l.txt || 2011-10-17 10:10:34 | sub20 | undef | unknown_html_RFI_php | 0/37 (0.0%) | ASNA | 87.240.188.250 | mark.barber@hi-velocity.ltd.uk | GB | RIPE | UK-HI-VELOCITY-20050622 | c22bfdea006ff5376373942d10a3fbaa | http://m.vkontakte.ru/ || 2011-10-17 10:10:34 | sub20 | Norman | HTML/Agent.NJ | 1/40 (2.5%) | AS6939 | 64.62.181.43 | hostmaster@he.net | US | ARIN | HURRICANE-4 | 4b7775669469377b0e6c9640ec8d08ed | http://sat12.fileave.com/msg.txt || 2011-10-17 11:00:37 | sub10 | avira | HTML/Infected.WebPage.Gen2 | 17/37 (45.9%) | AS2914 | 198.170.125.137 | abuse@ntt.net | US | ARIN | NTTA-198-170 | 98d5b728071c57c7f617ee03d3c1cf9d | http://biospecifics.com/DNForum/default.aspx?f=6&m=55642:tag3 || 2011-10-17 11:00:38 | sub10 | AntiVir | GAME/Casino.D | 18/40 (45%) | AS21844 | 96.47.41.36 | support@zipsupport.com | US | ARIN | ZIPSERVERS | 8aac478bb8ba38a3b03a3d30cda9b510 | http://gysh.casino-to-win.eu/CasinoTitan_En.exe || 2011-10-17 11:00:38 | sub10 | avira | TR/DZ.A.1 | 21/37 (56.8%) | AS51559 | 95.173.176.222 | netadmin@ni.net.tr | TR | RIPE | TR-NETINTERNET | 3be20db19d5fa62cf0587eb92ad19fa6 | http://idealask.net/idealask.exe || 2011-10-17 11:00:45 | sub1 | AhnLab_V3 | Trojan/Win32.VBKrypt | 6/40 (15%) | AS11798 | 67.222.36.218 | abuse@bluehost.com | US | ARIN | BLUEHOST-NETWORK-3 | 9364a6f5a1eb55c6c4a40002ba31d20a | http://ezvaneweathervane.com/install/model/W-2form.exe |+---------------------+-------------+-------------+----------------------------------------+---------------+------------------------------------+-----------------+-------------------------------------+---------+--------+-----------------------------+----------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+154 rows in set (0.04 sec)
+---------------------+-------------+---------------+-------------------------------------------+---------------+---------------------------------------+-----------------+-------------------------------------+---------+---------+----------------------------+----------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| date | contributor | scanner | virusname | vt_score | AS | review | email | country | source | netname | md5sum | url |+---------------------+-------------+---------------+-------------------------------------------+---------------+---------------------------------------+-----------------+-------------------------------------+---------+---------+----------------------------+----------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| 2011-10-17 10:13:58 | sub5 | avira | PHP/IRCBOT.EW | 17/39 (43.6%) | AS36420, AS30315, AS13749, AS21844 | 174.120.152.66 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 6830fa170e2201716c3427a53af17246 | http://3daria.com/plugins/linkwords/au.txt?? || 2011-10-17 10:54:48 | sub5 | AntiVir | PHP/C99Shell.F | 26/40 (65%) | AS15244 | 209.200.242.152 | hostmaster@lunarpages.com | US | ARIN | ADDD2NET-DOT-COM | 120e9c0842e0de31e87a8c2e820094a2 | http://blogger.com.apluspocketmedia.com/back/bery.php || 2011-10-17 09:04:02 | sub8 | undef | unknown_html | 0/40 (0.0%) | AS11798 | 67.222.36.218 | abuse@bluehost.com | US | ARIN | BLUEHOST-NETWORK-3 | ff155e2fd575572ce655a8034425f99f | http://ezvaneweathervane.com/install/model/ || 2011-10-17 12:00:14 | sub7 | undef | unknown_html_RFI_php | 0/40 (0.0%) | AS24971 | 80.79.25.74 | obchod@axfone.cz | CZ | RIPE | AXFONE-1-MAI-CZ | 4f6b7b6189a12fdb8ff49c9736cbe864 | http://www.kulex.sk/images/cmd.txt?? || 2011-10-17 12:00:30 | sub10 | avira | HTML/FlashFrame.Gen | 10/40 (25%) | AS17431 | 211.144.33.182 | supeng@bjtelecom.com.cn | CN | APNIC | CNCGROUP-BJ | cb0fc8617e4d08ba27eefa54f0238679 | http://hualian.bookonline.com.cn/logo_up_img/ad1_hualian.swf || 2011-10-17 12:00:31 | sub10 | trendmicro | TROJ_DELF.PUC | 7/40 (17.5%) | AS7859 | 209.197.99.163 | abuse@pair.com | US | ARIN | PAIRNET-BLK-2 | 4cc58d77074f72ab8bcc0eae0ef99597 | http://techsoftpl.com/download/vwridemo.exe || 2011-10-16 18:56:15 | sub17 | AntiVir | HTML/ImgHack.D | 4/38 (10.5%) | AS2609 | 193.95.75.121 | lir@ati.tn | TN | AFRINIC | G-NET1 | daf4fb3e62cecbcda566900cc6405c8a | http://www.mta.tn || 2011-10-16 18:56:13 | sub17 | avira | HTML/ImgHack.D | 4/40 (10%) | AS2609 | 193.95.75.121 | lir@ati.tn | TN | AFRINIC | G-NET1 | 8dd35c15308043497bcc1c1d8df88a6b | http://www.destockit.com || 2011-10-17 13:00:26 | sub10 | AntiVir | GAME/Casino.D | 17/38 (44.7%) | AS21844 | 64.38.208.10 | abuse@cwie.net | US | ARIN | CWIE-BLK-1 | 8aac478bb8ba38a3b03a3d30cda9b510 | http://nqyz.casino-to-win.eu/CasinoTitan_En.exe || 2011-10-17 13:00:26 | sub10 | avira | TR/Dropper.Gen | 29/37 (78.4%) | AS9929 | 210.83.80.218 | abuse@chinaunicom.cn | CN | APNIC | UNICOM-CN | 41d976b0dc283f8aa392ff4fc3fa46a4 | http://ydjiaxiao.net/include/17server.exe || 2011-10-17 14:00:14 | sub9 | undef | unknown_html_RFI_shell | 0/38 (0.0%) | AS33597 | 67.208.74.71 | abuse@inforelay.com | US | ARIN | INFORELAY-NETBLOCK01 | 14e536556070e67f797b56f92780bcdb | http://www1.breades.rr.nu/DfHAJjX.pdf || 2011-10-17 14:00:15 | sub10 | avira | DR/Click.VBiframe.ajp | 14/38 (36.8%) | AS15244 | 209.200.237.139 | hostmaster@lunarpages.com | US | ARIN | ADDD2NET-DOT-COM | de29c8e1cce4ff7c915578cfb85cdc6b | http://ancientsoft.com/downloads/PBubbles-Setup.exe || 2011-10-17 14:00:15 | sub10 | avira | TR/Spy.72704.120 | 23/39 (59%) | AS16265 | 94.75.199.178 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | bb7d551c6b8d2a04685b11ba823ea43b | http://botnet.swissfaking.biz/dj/service.exe || 2011-10-17 14:00:15 | sub10 | avira | BDS/Bifrose.dloq | 14/40 (35%) | AS33182 | 67.23.226.169 | abuse@dimenoc.com | US | ARIN | DIMECNET | e510dbcf533a0dd951c1176fda0b1b55 | http://descargar-juegos-para-pc.com/soft/dragon.exe || 2011-10-17 14:00:15 | sub10 | AhnLab_V3 | Trojan/Win32.Xema | 22/40 (55%) | AS14618 | 50.19.252.241 | aes-noc@amazon.com | US | ARIN | AMAZON-EC2-8 | 3cb5458e885a303781d839b7f2643f14 | http://dl.dropbox.com/u/34895428/raceme_monitor_updated.exe || 2011-10-17 14:00:16 | sub10 | avira | TR/Dropper.Gen | 27/40 (67.5%) | AS13238 | 93.158.134.83 | abuse@yandex.ru | RU | RIPE | YANDEX-134-0 | 00284ace8b7029a31608b65d3da26c22 | http://super-tololo2011.narod2.ru:80/jqs.exe || 2011-10-17 14:00:16 | sub10 | avira | TR/PSW.Sacanph.A.309 | 30/40 (75%) | AS16265 | 94.75.199.178 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | c3149439216ba33218248591347a96f1 | http://tradingcenter.cc/stealer/steal.exe || 2011-10-17 14:00:16 | sub10 | avira | TR/Drop.Agent.65536.5 | 25/40 (62.5%) | AS4766 | 218.146.253.202 | abuse@kornet.net | KR | APNIC | KORNET-KR | 5d5cbecc78f98218ecd34ab2bd10ea63 | http://windowlet.net/_app/prog/Windowlet.exe || 2011-10-17 14:00:16 | sub10 | avira | ADWARE/Winggo.A | 7/40 (17.5%) | AS4766 | 14.63.217.88 | abuse@kornet.net | KR | APNIC | KORNET | ad7fbe71211d71a87994ea58c6d74484 | http://winggo.co.kr/SM/wingggoSetup.exe || 2011-10-17 14:00:26 | sub1 | AhnLab_V3 | Trojan/Win32.Banker | 8/38 (21.1%) | AS32392 | 173.83.122.2 | ipadmin@ecommerce.com | US | ARIN | ECOMM-200912 | a7241540c94496768f49786690f861b7 | http://www.monclerjohanna.com/email/Token_Santander.exe || 2011-10-17 14:38:02 | sub7 | undef | unknown_html_RFI | 0/40 (0.0%) | AS16265 | 82.192.87.51 | abuse@leaseweb.com | NL | RIPE | LEASEWEB | 1ef4847d760e4f8862adab06bf628e72 | http://dailyvideorewards.com/?sov=276635&id=WS7RBX4CNRAN || 2011-10-17 14:56:04 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS19287 | 66.45.56.124 | sas.abuse@sungard.com | US | ARIN | NFLO-AR-2 | 6288344ac8adf271db3598aa6fae30ba | http://113890url.cpvtgt.com/cresults.jsp?p=113890&aid=10036145&partnerMin=0.00&ron=on&ronMin=0.00&url=&context=&default=http://cpvback.onlinelivesearch.com/ads.php&canUseMyIp || 2011-10-17 14:56:04 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS12510 | 155.56.90.102 | netmaster@sap.com | DE | RIPE | SAP-AG | 712a52bc5e7f8dc3cb5de157dbb08151 | http://155.56.90.102/nvserver || 2011-10-17 14:56:04 | sub1 | avira | TR/Crypt.XDR.Gen | 35/38 (92.1%) | AS23650 | 61.147.99.179 | abuse@jsinfo.net | CN | APNIC | CHINANET-JS | 69f32b85f1de3c41948ae51b4ba3f4bb | http://61.147.99.179:81/gggg_r.jpg?t=0.4933588 || 2011-10-17 14:56:04 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS27257 | 174.137.179.54 | ipadmin@webair.com | US | ARIN | WEBAIRINTERNET4 | dc4fb50f0c8181206c5846f57505cab1 | http://internetspooler.biz/cNEMHCUf/dominfo.cfc || 2011-10-17 14:56:04 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS15201 | 200.98.197.88 | l-registrobr-uol@corp.uol.com.br | BR | LACNIC | 001.109.184/0001-95 | 23b58def11b45727d3351702515f86af | http://juntosfiss1.dominiotemporario.com/Juventude_files/tcont.php || 2011-10-17 14:56:04 | sub1 | avira | TR/Dropper.Gen2 | 19/40 (47.5%) | AS27257 | 174.137.179.54 | ipadmin@webair.com | US | ARIN | WEBAIRINTERNET4 | 0d78d74fff8ab3a61b51718c823a22cd | http://nicdwn.biz/files/downloadis.php || 2011-10-17 14:56:04 | sub1 | avira | SPR/Tool.CeeInject.478 | 20/40 (50%) | AS16276 | 188.165.230.91 | abuse@ovh.net | FR | RIPE | OVH | 58ad8b44ac111ccc53cb8f6bea959148 | http://pattinsondaily.ru/NewMoon/newmoon13.jpg || 2011-10-17 14:56:04 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS38700 | 115.68.17.49 | network@smileserv.com | KR | APNIC | SMILESERV-KR | c4ca4238a0b923820dcc509a6f75849b | http://realclean.co.kr/dbk.php || 2011-10-17 14:56:04 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS38700 | 115.68.17.49 | network@smileserv.com | KR | APNIC | SMILESERV-KR | 8c9bb6069afd0eb00ed08e61b2875a67 | http://realclean.co.kr/mbk.php?v1=plusboan&v2=00:0C:29:64:43:0C || 2011-10-17 14:56:04 | sub1 | avira | TR/VBKrypt.dqgn.17 | 37/40 (92.5%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | be505df456a353f6759189736d3c9b82 | http://ru.letmedo.net:2011/ck3.jpg?t=0.6589167 || 2011-10-17 14:56:04 | sub1 | avira | WORM/VBNA.aotb | 37/40 (92.5%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 3420de55b8de4b837c9cc61a8c7a3dd0 | http://ru.letmedo.net:2011/myck.jpg?t=0.7686579 || 2011-10-17 14:56:04 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS15201 | 187.17.71.134 | l-registrobr-uol@corp.uol.com.br | BR | LACNIC | 001.109.184/0001-95 | e59772234a180df791721e9b42e2f8f1 | http://toma.ai/ZCh || 2011-10-17 14:56:04 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | d1be4454efd9f23785b86114773d1d3d | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B2969C0DCE9CA9F5FE5F6CFDFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.6641352 || 2011-10-17 14:56:04 | sub1 | undef | unknown_html | 0/39 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | d1be4454efd9f23785b86114773d1d3d | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B3969C0DCE4CA8D5FF5F6CFDFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.0772211 || 2011-10-17 14:56:04 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | d1be4454efd9f23785b86114773d1d3d | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B3969C1DCEBCA885FFAF6DADFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.4892389 || 2011-10-17 14:56:04 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | d1be4454efd9f23785b86114773d1d3d | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B3969C1DCEBCA885FFAF6DADFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.5384943 || 2011-10-17 15:00:47 | sub10 | avira | HTML/Modifo.A | 17/39 (43.6%) | AS26496 | 68.178.232.57 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | cf951b4085ce5c6222f7bda0af8d9ed7 | http://teohfamily.com || 2011-10-17 15:00:56 | sub1 | DrWeb | Trojan.Click1.59219 | 2/40 (5%) | AS40366 | 174.35.4.134 | support@cdnetworks.com | US | ARIN | CDNET-USA-1 | cc9693a42d7bae5b2d4075105707b0ad | http://www.dlappstream.com/nsi/nsis-2.46/Atomic_Clock_4041.exe || 2011-10-17 15:00:57 | sub1 | McAfee | FakeAlert!grb | 3/40 (7.5%) | AS15884 | 31.44.184.45 | abuse@laveconetworks.co.uk | EU | RIPE | Laveco | f584f03337beaf545126a4ddf0984d8a | http://bitgale.com/britix/a || 2011-10-17 15:00:57 | sub1 | AhnLab_V3 | PUP/Win32.OpenShopper | 9/40 (22.5%) | AS4766 | 221.161.196.76 | abuse@kornet.net | KR | APNIC | KORNET-KR | 6c3f927d81e9b34ac0d559d023bde014 | http://sub.openshopper.co.kr/opapp/is_mk/OPUpdate.exe || 2011-10-17 15:00:57 | sub1 | AhnLab_V3 | PUP/Win32.OpenShopper | 3/40 (7.5%) | AS4766 | 221.161.196.76 | abuse@kornet.net | KR | APNIC | KORNET-KR | 233064d3e6ecc493c94e7fb1dba1837d | http://sub.openshopper.co.kr/opapp/is_mk/opsvc.exe || 2011-10-17 15:00:57 | sub1 | avira | TR/FraudPack.B.1 | 10/40 (25%) | AS38661 | 124.217.218.10 | noc@hclc.co.kr | KR | APNIC | HCLC-KR | 8d8b70d1afcf4f9841990dfa647cb0d8 | http://down.patchup.co.kr/install_2010/PatchUp_fastscan.exe || 2011-10-17 15:00:57 | sub1 | avira | TR/Dldr.FraudPack.B | 22/40 (55%) | AS38661 | 124.217.218.3 | noc@hclc.co.kr | KR | APNIC | HCLC-KR | 995eee15c87a9a57dc600c1caa2978c3 | http://down.pclock.co.kr/pclock/install_2010/pclock_fastscan.exe || 2011-10-17 15:00:57 | sub1 | avira | ADWARE/Adware.4915712 | 30/40 (75%) | AS38661 | 124.217.218.6 | noc@hclc.co.kr | KR | APNIC | HCLC-KR | 3b40184545b2af4b2257f60ea825b9a3 | http://down.selfprivacy.co.kr/app/install_2010/selfprivacy_fastscan.exe || 2011-10-17 15:40:12 | sub14 | Avast | NSIS:StartPage-AL Trj | 11/40 (27.5%) | AS4837 | 221.209.17.168 | abuse@chinaunicom.cn | CN | APNIC | UNICOM-HL | 672e375302f71ec5c5e57c52a2921f4f | http://d1.youxi.31dj.com/sgqyz.exe || 2011-10-17 15:40:12 | sub14 | undef | unknown_file_$INSTDIR/Setup.exe | | AS4837 | 221.209.17.168 | abuse@chinaunicom.cn | CN | APNIC | UNICOM-HL | 32f1481d51c70d5caf6a9d8a38ab98ff | http://d1.youxi.31dj.com/shashou47_duote.exe || 2011-10-17 15:40:12 | sub14 | avira | TR/Constructor.DPOM.18 | 18/40 (45%) | AS4837 | 221.209.17.168 | abuse@chinaunicom.cn | CN | APNIC | UNICOM-HL | cb709d8423c1319dd37118b8916082b0 | http://d1.youxi.31dj.com/shenglishiyirends.exe || 2011-10-17 15:40:12 | sub14 | avira | BDS/Bot.118154 | | AS4837 | 221.209.17.168 | abuse@chinaunicom.cn | CN | APNIC | UNICOM-HL | 991dc20fd8b8ee2329d4cef58df63eb8 | http://d1.youxi.31dj.com/shenmhxiaong.exe || 2011-10-17 15:40:13 | sub14 | avira | TR/Constructor.DPOM.18 | 19/40 (47.5%) | AS4837 | 221.209.17.168 | abuse@chinaunicom.cn | CN | APNIC | UNICOM-HL | 88e0126287c5a5065ada6e02a39a3675 | http://d1.youxi.31dj.com/shijieshumg.exe || 2011-10-17 15:40:13 | sub14 | avira | KIT/Binder.aap.11 | | AS4837 | 221.209.17.168 | abuse@chinaunicom.cn | CN | APNIC | UNICOM-HL | c9824b2e6bd9767e48924f2cbce145a3 | http://d1.youxi.31dj.com/shocktroopers2.exe || 2011-10-17 15:40:13 | sub14 | avira | TR/Constructor.DPOM.18 | | AS4837 | 221.209.17.168 | abuse@chinaunicom.cn | CN | APNIC | UNICOM-HL | 1fead129a1cbdc5fb65fbeb22d528ab9 | http://d1.youxi.31dj.com/shouhuzhe.exe || 2011-10-17 16:00:23 | sub10 | avira | RKIT/Ressdt.PJ | 33/40 (82.5%) | AS4134 | 124.232.161.2 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-HN | 6a0e8abc0eeccae6235b15518a807fdf | http://51ok.cc/3.exe || 2011-10-17 16:00:31 | sub10 | avira | TR/Dropper.Gen | 31/40 (77.5%) | AS9929 | 210.83.80.218 | abuse@chinaunicom.cn | CN | APNIC | UNICOM-CN | 87752a02fa610d555efcb7d2a24b4df2 | http://ydjiaxiao.net/include/7000.exe || 2011-10-17 16:18:08 | sub7 | avira | PHP/PHPShell.BE | 7/40 (17.5%) | AS49544 | 188.95.50.112 | abuse@as49544.net | NL | RIPE | SERVERBOOST | 4dc45fe6eb3ab7fa6052bfc90cf64fa6 | http://babycrew.hexat.com/Ckrid1.txt? || 2011-10-17 16:18:08 | sub7 | avira | PHP/BackDoor.AR | 19/40 (47.5%) | AS49544 | 188.95.50.112 | abuse@as49544.net | NL | RIPE | SERVERBOOST | 0b3ce0467283b33cd8cba6545207e9e5 | http://babycrew.hexat.com/Ckrid2.txt? || 2011-10-17 16:18:08 | sub7 | avira | PERL/Shellbot.W | 20/40 (50%) | AS49544 | 188.95.50.112 | abuse@as49544.net | NL | RIPE | SERVERBOOST | ff7fc3f16b3e6146466e3fdc25c08447 | http://babycrew.hexat.com/scan.txt? || 2011-10-17 16:18:08 | sub7 | undef | unknown_html_RFI | 0/40 (0.0%) | AS49544 | 188.95.50.112 | abuse@as49544.net | NL | RIPE | SERVERBOOST | a576613a9664cbbe65fdcb12a3eb9f55 | http://babycrew.hexat.com/def.txt || 2011-10-17 16:18:08 | sub7 | avira | PERL/Shellbot.W | 20/40 (50%) | AS49544 | 188.95.50.112 | abuse@as49544.net | NL | RIPE | SERVERBOOST | ff7fc3f16b3e6146466e3fdc25c08447 | http://babycrew.hexat.com/scan.txt || 2011-10-17 16:40:10 | sub14 | avira | TR/Dropper.Gen2 | 29/40 (72.5%) | AS7366 | 199.7.177.244 | abuse@lemuriaco.com | US | ARIN | LEMURIA-COMMUNICATIONS | 71648065136a8fb675ec7930ecb8b0da | http://hotfile.com/dl/132117179/c0f297f/index.html || 2011-10-17 16:40:10 | sub14 | undef | unknown_exe | 0/40 (0.0%) | AS13797 | 63.215.202.74 | security@level3.com | US | ARIN | LEVEL4-CIDR | 526fe5c600416385e3b9660b398ea008 | http://www.emjcd.com/so83wktsC/krw/98FFABFE/DCFFF9D/8/9-65jqu7FDGH98ADF79B9GFABFDF8B97-q/9EFBkkEknFGj99m8G9Ak88ABimnn9BCm?c=vfVQ=FFEkArCu%26lt;pw1!51C1-ID4BnE3%26lt;u662:%2F%2F999.wq131pB.p1z:LD%2Fpyvpx-IHKKKEI- || 2011-10-17 16:40:10 | sub14 | avira | DR/Agent.PB | 5/40 (12.5%) | AS36351 | 74.86.205.35 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-4 | fc681a27465b0add47ecd2573514bd73 | http://www.melekyeri.com/mirc.exe || 2011-10-17 16:40:10 | sub14 | undef | unknown_html | 0/40 (0.0%) | AS701 | 209.167.6.220 | canada-abuse@verizonbusiness.com | US | ARIN | UUNETCA5-A | 2617faa6de1bb0ceac464ab4458624d8 | http://x.azjmp.com/c.php?o=10580%26%26a=49627%26%26t=2%26%26p=1%26%26azauxurl=81478%26%26sub= || 2011-10-17 15:47:17 | sub8 | undef | Trojan-Downloader.Win32.Banload.bnli | 0/40 (0.0%) | AS36351 | 208.101.2.216 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-2 | 989ad176603918cf4575bad1a08ef085 | http://filebackupsoftware.com/ || 2011-10-17 17:38:44 | sub5 | avira | PHP/Spy.Wacko.A | 9/40 (22.5%) | AS3786 | 222.231.10.51 | support@kidc.net | KR | APNIC | KIDC-KR | d9815da9b20700eb2e11f211f06ee5df | http://tapsan.co.kr/new2008/bbs/club/Fx29Sh.txt??? || 2011-10-17 15:47:53 | sub8 | undef | Constructor.Win32.Binder.abc | 0/40 (0.0%) | AS24940 | 88.198.156.34 | abuse@hetzner.de | DE | RIPE | DE-HETZNER-20051227 | 779223ce72c23ca9c37c1a5cce224884 | http://www.fastbot.de/toolbar/ || 2011-10-17 18:50:06 | sub18 | avira | PERL/Shellbot.a.6 | 31/40 (77.5%) | AS50901 | 178.22.232.31 | abuse@wireitup.nl | NL | RIPE | NL-WIREITUP-DC | 2d93280fb1280aa5adc8abfcf2628944 | http://wetnwild.nl//img/thumbs/up.jpg?? || 2011-10-17 18:50:43 | sub1 | undef | unknown_html_RFI_php | 0/40 (0.0%) | AS39572 | 213.174.137.85 | abuse@advancedhosters.com | US | RIPE | ADVANCEDHOSTERS-NET | 916032ac5cfe4de8717b172bd5d08705 | http://213.174.137.85/xml?a=2003&ip=self&kw= || 2011-10-17 18:50:43 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS30890 | 94.63.240.112 | abuse@evolva.ro | RO | RIPE | RO-EVOLVA-20080623 | fabfba170be35514de24281e65e7246e | http://gfjdyrfcb.net/info.php?rnd=787721 || 2011-10-17 17:47:08 | sub8 | undef | Application.Adware.Softomate | 0/40 (0.0%) | AS5615 | 195.241.77.82 | abuse@tiscali.nl | NL | RIPE | NL-TELFORT-SRVC | dcd9470d87f68d4093025f52b11ddbff | http://home.tiscali.nl/~themi/ || 2011-10-17 19:10:06 | sub24 | trendmicro | TROJ_DLOADR.AAT | 18/40 (45%) | AS3786 | 211.115.80.56 | ip@kidc.net | KR | APNIC | KIDC-KR | a4c82b248d85779bfc48e85d250494d6 | http://alyackorea.com/download/Paladog_apk.exe || 2011-10-17 19:10:06 | sub24 | trendmicro | TROJ_DLOADR.AAT | 18/40 (45%) | AS3786 | 211.115.80.56 | ip@kidc.net | KR | APNIC | KIDC-KR | a4c82b248d85779bfc48e85d250494d6 | http://download.filecook.com/download/Paladog_apk.exe || 2011-10-17 19:10:07 | sub24 | trendmicro | TROJ_DLOADR.AAT | 19/40 (47.5%) | AS3786 | 211.115.80.56 | ip@kidc.net | KR | APNIC | KIDC-KR | a4c82b248d85779bfc48e85d250494d6 | http://www.alyackorea.com/download/Paladog_apk.exe || 2011-10-17 19:40:06 | sub14 | avira | W32/Almanahe.B | 35/40 (87.5%) | AS4837 | 221.209.17.168 | abuse@chinaunicom.cn | CN | APNIC | UNICOM-HL | c64a61ff4fbbc2eca0d141789575759b | http://d1.youxi.31dj.com/streetfgighter.exe || 2011-10-17 19:40:06 | sub14 | avira | W32/Almanahe.B | 36/40 (90%) | AS4837 | 221.209.17.168 | abuse@chinaunicom.cn | CN | APNIC | UNICOM-HL | 6740f0bb75a32c90a99542cf9787f0e6 | http://d1.youxi.31dj.com/streetfighter.exe || 2011-10-17 20:05:10 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS32181 | 69.39.236.36 | abuse@gigenet.com | US | ARIN | IPNAP | 20cd2917a68a13bd068620b4339bd86d | http://adf.ly/2fX9o || 2011-10-17 20:40:23 | sub17 | trendmicro | Mal_Hifrm | 2/40 (5%) | AS8560 | 74.208.239.178 | abuse@1and1.com | US | ARIN | 1AN1-NETWORK | 52e1f8d9ada57cf6002f1e41acaa690f | http://iloveusmc.com || 2011-10-17 21:26:12 | sub1 | avira | JS/iFrame.HF.1 | 1/40 (2.5%) | AS9931 | 122.155.1.45 | support@idc.cattelecom.com | TH | APNIC | CAT-IDC-Service | 145378b7408315a54960a71d8a9e98f8 | http://dontro.go.th/jstools.js || 2011-10-17 21:26:12 | sub1 | undef | unknown_html_google_malware | 0/40 (0.0%) | AS9931 | 122.155.17.183 | abuse@idc.cattelecom.com | TH | APNIC | CAT-IDC-Service | 391c88378b8deaed4a89ca4460298663 | http://goodpremiums.net/tempjs.js || 2011-10-17 21:26:12 | sub1 | undef | unknown_html_google_malware | 0/40 (0.0%) | AS2609 | 193.95.75.121 | lir@ati.tn | TN | AFRINIC | G-NET1 | 29d1546cdffafce23c2d055c664cc83d | http://www.mta.tn/actualites.php || 2011-10-17 21:26:12 | sub1 | undef | unknown_html_RFI_shell | 0/40 (0.0%) | AS2609 | 193.95.75.121 | lir@ati.tn | TN | AFRINIC | G-NET1 | db382b9c0a1deabe903c3ab0f1a920e8 | http://www.mta.tn/contact.php || 2011-10-17 21:26:12 | sub1 | undef | unknown_html_RFI_eval | 0/40 (0.0%) | AS2609 | 193.95.75.121 | lir@ati.tn | TN | AFRINIC | G-NET1 | 52b755fc5547e6903c44b4e03a31e8fd | http://www.mta.tn/css/lytebox.js || 2011-10-17 21:26:12 | sub1 | undef | unknown_html_google_malware | 0/40 (0.0%) | AS2609 | 193.95.75.121 | lir@ati.tn | TN | AFRINIC | G-NET1 | 990c4de4d13086cfc5dc16c870959322 | http://www.mta.tn/expertise.php || 2011-10-17 21:26:12 | sub1 | undef | unknown_html_google_malware | 0/40 (0.0%) | AS2609 | 193.95.75.121 | lir@ati.tn | TN | AFRINIC | G-NET1 | c63635ea0c993c2c1176d6c38f213554 | http://www.mta.tn/galerie.php || 2011-10-17 21:26:12 | sub1 | undef | unknown_html_google_malware | 0/40 (0.0%) | AS2609 | 193.95.75.121 | lir@ati.tn | TN | AFRINIC | G-NET1 | 7bdd598f821cdef778554662600ab201 | http://www.mta.tn/programmes.php || 2011-10-17 21:26:12 | sub1 | undef | unknown_html_google_malware | 0/40 (0.0%) | AS2609 | 193.95.75.121 | lir@ati.tn | TN | AFRINIC | G-NET1 | a0e5fdcaf4eeef40adbf8b8fe8ae0b30 | http://www.mta.tn/qui-sommes-nous.php || 2011-10-17 21:26:12 | sub1 | undef | unknown_html_google_malware | 0/40 (0.0%) | AS2609 | 193.95.75.121 | lir@ati.tn | TN | AFRINIC | G-NET1 | 9b2224a10312f4ef94fca5bcefee5bdb | http://www.mta.tn/Scripts/AC_RunActiveContent.js || 2011-10-17 21:26:12 | sub1 | undef | unknown_html_google_malware | 0/40 (0.0%) | AS2609 | 193.95.75.121 | lir@ati.tn | TN | AFRINIC | G-NET1 | 1409126d3470349354c724daeb2c57f6 | http://www.mta.tn/tunisie.php || 2011-10-17 21:30:17 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS33626 | 204.13.161.109 | abuse@oversee.net | US | ARIN | OVERSEE-NET-01 | 2d2830595f2ce8f70b64d22d769942ea | http://012webpages.com/christian13.jpg?pr=gJ4WK%2FSUh7TFkUR8oY%2BQtMWTUj26kJH7yZJSObqVybhqtUn5CGFATA%3D%3D || 2011-10-17 21:30:17 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 477582c0a9ea1bbb206d9c2b1a7c4cda | http://ds.lookadd.com:88/cc/x.txt || 2011-10-17 21:30:17 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | d5230625d29e8aeb22f4c358fdd72e8c | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B3969C0DCE4CA8D5FF5F6CFDFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.8241541 || 2011-10-17 21:30:17 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | d5230625d29e8aeb22f4c358fdd72e8c | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B3B69C1DCEDCA835FF3F6D1DFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.4884302 || 2011-10-17 21:30:17 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | d5230625d29e8aeb22f4c358fdd72e8c | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B3B69C1DCEDCA835FF3F6D1DFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.9647486 || 2011-10-17 21:30:17 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4766 | 218.146.253.202 | abuse@kornet.net | KR | APNIC | KORNET-KR | 72ddfc1c11e5ff73aa0e331399331646 | http://www.windowlet.net/_app/cnt_boot.php || 2011-10-17 21:30:17 | sub1 | DrWeb | Trojan.BhoSiggen.5178 | 7/40 (17.5%) | AS4766 | 218.146.253.202 | abuse@kornet.net | KR | APNIC | KORNET-KR | caaebca19501d14b09572ade5ee0567b | http://www.windowlet.net/_app/prog/Windowlets.dll || 2011-10-17 21:16:09 | sub17 | trendmicro | Mal_Hifrm | 2/40 (5%) | AS9198 | 92.46.52.39 | support@idhost.kz | KZ | RIPE | IDCNET-KZ | 52e1f8d9ada57cf6002f1e41acaa690f | http://d1054198.idhost.kz || 2011-10-17 21:29:22 | sub5 | avira | PHP/IRCBOT.21970 | 27/38 (71.1%) | AS41186 | 195.114.18.148 | abuse@ispfr.net | FR | RIPE | ISPFR | e56c251b9ea919d8259a07b7522b437e | http://groopez.fr/osc_2_2rc2/star.jpg?? || 2011-10-17 21:28:54 | sub17 | TrendMicro | Mal_Hifrm | 2/40 (5%) | AS14141 | 98.142.221.132 | wnoc@wiresix.com | US | ARIN | WIRESIX | b1e58a7f8c760ff9611aa538a8ec70f9 | http://bspi.gov.bd || 2011-10-17 22:28:27 | sub5 | avira | PHP/Loader.9852 | 17/38 (44.7%) | AS29314 | 88.156.77.232 | abuse@stk.net.pl | PL | RIPE | VECTRANET | c8958b9c4f2263cf34bd19f5f8dac768 | http://w.duszki.pl/classifieds/pictures/listings/ec.txt?? || 2011-10-17 22:40:06 | sub14 | undef | unknown_exe | 0/40 (0.0%) | AS17139 | 205.134.238.101 | abuse@corporatecolo.com | US | ARIN | CORPCOLO-NET | 1facc59a11680d1f828ed5118a0270b1 | http://citysports.biz/ppt/ppviewer.exe || 2011-10-17 21:47:24 | sub8 | undef | Trojan.Win32.Generic | 0/40 (0.0%) | AS34788 | 85.13.144.94 | ip@all-inkl.com | DE | RIPE | DE-ALL-INKL-20050405 | a08e9d5ba57e27735a788f55731a6163 | http://cbuenger.de/pantsoff/ || 2011-10-17 23:00:18 | sub10 | AntiVir | Joke/ArchSMS.miv | 20/40 (50%) | AS38661 | 124.217.199.197 | noc@hclc.co.kr | KR | APNIC | HCLC-KR | 29204d80f92bf0ba91f5a02d9d74641d | http://aralgood.com/update_files/Algorithm/Kirikiri.zip || 2011-10-17 23:00:18 | sub10 | avira | TR/Gendal.6239811 | 20/40 (50%) | AS26347 | 173.236.239.247 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | 5436c75b27f87f28dbe8c7dd2ef4806d | http://asiturk.com/usko/OsmanliBot_1875.zip || 2011-10-17 23:00:18 | sub10 | avira | TR/Spy.Duffi.A | 16/40 (40%) | AS42612 | 82.98.160.169 | ripe@dinahosting.com | ES | RIPE | DH-J3-NET | 3619cb86ed50260b51b5a36577e67e33 | http://autosjcastro.com/informazioni/Ordine.zip || 2011-10-17 23:00:18 | sub10 | avira | HTML/FlashFrame.Gen | 20/40 (50%) | AS17431 | 211.144.33.182 | supeng@bjtelecom.com.cn | CN | APNIC | CNCGROUP-BJ | 50015d6f3961316776af3a2f3dd41c0f | http://cgsd.bookonline.com.cn/freepage/pubimg/download.swf || 2011-10-17 23:00:18 | sub10 | avira | TR/Dldr.FraudPack.B | 26/40 (65%) | AS38661 | 124.217.218.2 | noc@hclc.co.kr | KR | APNIC | HCLC-KR | b12d2d0c1656fdd291f889c96437253d | http://down.fileeye.co.kr/2010_updater/linkdirect_fileeye.exe || 2011-10-17 23:00:18 | sub10 | avira | TR/Dldr.FraudPack.B | 24/40 (60%) | AS38661 | 124.217.218.2 | noc@hclc.co.kr | KR | APNIC | HCLC-KR | 9186f6c870fd309ebff24dea2968770b | http://down.fileeye.co.kr/2010_updater/pclock_fileeye.exe || 2011-10-17 23:00:18 | sub10 | avira | TR/Dldr.FraudPack.B | 28/40 (70%) | AS38661 | 124.217.218.2 | noc@hclc.co.kr | KR | APNIC | HCLC-KR | d0ad58a560920d1516577b829472069f | http://down.fileeye.co.kr/2010_updater/rclean_fileeye.exe || 2011-10-17 23:00:18 | sub10 | CAT_QuickHeal | (Suspicious) - DNAScan | 3/38 (7.9%) | AS32613 | 209.172.34.106 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-01 | 3f5d4220216eaecb09ea23318e1038b7 | http://downloads.filecart.com/cpmoney.exe || 2011-10-17 23:00:18 | sub10 | avira | TR/Dldr.Delphi.Gen | 34/40 (85%) | AS9318 | 115.68.13.118 | network@smileserv.com | KR | APNIC | SMILESERV-KR | 7c5dbb4b53c2775bd12d8f57bfcff035 | http://dwn.ucsee.co.kr/dawiner.exe || 2011-10-17 23:00:18 | sub10 | avira | TR/VB.Downloader.Gen | 18/40 (45%) | AS40430 | 68.234.3.98 | ac@aeori.com | US | ARIN | AEORI | 7cea5e7ba5d6c5c3bcc867b8144af37e | http://failshark.com/js/FlashPlay.exe || 2011-10-17 23:00:18 | sub10 | avira | BDS/Delf.kwy | 24/40 (60%) | AS27611 | 38.101.236.63 | abuse@cogentco.com | US | ARIN | PSINETA | 7ba0ea7bf375b64161849a8d0712c6ad | http://gpass1.com/download/OldVersions/GPass-3.0.10.exe || 2011-10-17 23:00:18 | sub10 | avira | HTML/FlashFrame.Gen | 20/40 (50%) | AS17431 | 211.144.33.182 | supeng@bjtelecom.com.cn | CN | APNIC | CNCGROUP-BJ | 50015d6f3961316776af3a2f3dd41c0f | http://hncxycom.bookonline.com.cn/freepage/pubimg/download.swf || 2011-10-17 23:00:18 | sub10 | avira | DR/Kidlogger.A.1 | 27/40 (67.5%) | AS9125 | 77.105.38.64 | abuse.hosting@oriontelekom.rs | RS | RIPE | ORIONTELEKOMTIMHOSTING-NET | 9b8d269eb265d78a875155c8a0a2c50d | http://interfejs.tv/InterfejsDL/kidlogger.exe || 2011-10-17 23:00:18 | sub10 | avira | TR/PSW.Zbot.AF.670 | 23/40 (57.5%) | AS4323 | 66.147.237.115 | abuse@hostrocket.com | US | ARIN | HRWEBSERVICES-2 | 58cecae73d98aa465a4234f8cf7f5573 | http://latinholdings.com.mx/xji1g.exe || 2011-10-17 23:00:18 | sub10 | avira | TR/Injector.270336.10 | 19/40 (47.5%) | AS25532 | 87.242.73.73 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-COLOCATION | 7fc4d5c2a7820d5d14646ad63d5feee0 | http://loads4sale.cc/bitcoin-miner.exe || 2011-10-17 23:00:18 | sub10 | avira | BDS/Cycbot.B.512 | 33/40 (82.5%) | AS8972 | 188.138.60.149 | abuse@plusserver.de | DE | RIPE | DE-INTERGENIA-20090508 | cee7d9f3d45333b66f32ad719bb15765 | http://magictop.biz/m/giga.exe || 2011-10-17 23:00:18 | sub10 | avira | ADWARE/BHO.rvc | 14/40 (35%) | AS6760 | 77.79.13.229 | abuse@ripe.net | EU | RIPE | EU-ZZ-80-93 | 53297ad178e627c9ad1a8126cad1ee5b | http://megauploadzz.com/userfiles/setup_sm.exe || 2011-10-17 23:00:18 | sub10 | avira | WORM/IrcBot.1207896 | 16/34 (47.1%) | AS13335 | 199.27.134.88 | sri@cloudflare.com | US | ARIN | CLOUDFLARENET | 044745c480355e7a40fa67d0ce05dcc3 | http://mircindir.com/mirc.exe || 2011-10-17 23:00:18 | sub10 | avira | TR/Dldr.Delf.PS.1 | 29/38 (76.3%) | AS30083 | 69.64.56.30 | abuse@hostingsolutionsint.com | US | ARIN | S4Y-3 | 59239dcbf664892204fd187dc0146ad4 | http://netosdesalim.com.br/religiao/ManualParaDownload.PDF.exe || 2011-10-17 23:00:19 | sub10 | avira | SPR/Reboot.A | 19/40 (47.5%) | AS10692 | 216.145.243.132 | netops@noc.dls.net | US | ARIN | DLS-CIDR-2 | ff3548393a6a2d7e1e9e0cf918c9df0b | http://rjlsoftware.com/download/exe/shutdown.exe || 2011-10-17 23:00:19 | sub10 | avira | TR/ATRAPS.Gen | 19/40 (47.5%) | AS9318 | 116.122.135.43 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | 49e32160a020b718b3416c505c04bda3 | http://rocks.kr/Laun/prog/set/pcshortcut.exe || 2011-10-17 23:00:19 | sub10 | avira | TR/Dropper.Gen | 22/40 (55%) | AS42910 | 31.210.36.226 | noc@marsglobaldatacenter.com | TR | RIPE | Mars-Customer77 | 6c3e17d4ef335ec472e26844967fb656 | http://sexhord.tk/JavaRun.exe || 2011-10-17 23:00:19 | sub10 | avira | ADWARE/Relevant.BA.482 | 18/40 (45%) | AS29789 | 208.99.66.85 | hostmaster@reflected.net | US | ARIN | REFLECTED-3 | 6b1e285c01895f85a85530648127e9a6 | http://sexy-screen-savers.com/downloads/male07.exe || 2011-10-17 23:00:19 | sub10 | avira | ADWARE/Relevant.BA.471 | 16/40 (40%) | AS29789 | 208.99.66.85 | hostmaster@reflected.net | US | ARIN | REFLECTED-3 | 2376a6eee7ea9169fd48e1196d663421 | http://sexy-screen-savers.com/downloads/other02.exe || 2011-10-17 23:00:19 | sub10 | avira | TR/Dldr.KTD | 15/40 (37.5%) | AS41665 | 194.54.88.93 | abuse@hosting.ua | UA | RIPE | hostingua | 2cece8b21262cc523528b28dacf5636d | http://skachat-vksaver.ru/VKSaver-2.2.2.exe || 2011-10-17 23:00:19 | sub10 | clamav | PUA.Packed.ASPack | 9/40 (22.5%) | AS8972 | 217.172.163.11 | abuse@plusserver.de | DE | RIPE | PLUSSERVER-1 | d38163315e295b464abdecd3ac19af73 | http://thiecom.com/ftp/software/audio/win/no23_recorder.exe || 2011-10-17 23:00:19 | sub10 | avira | ADWARE/SMSHoax.59.138 | 19/40 (47.5%) | AS39743 | 93.115.81.144 | noc@voxility.com | ro | RIPE | VOXILITY-SRL | bf022e57bc3084c8aa928092f9e63646 | http://todownloadfiles.com/Skype.exe || 2011-10-17 23:00:19 | sub10 | clamav | PUA.Packed.PECompact-1 | 14/40 (35%) | AS38676 | 111.67.216.41 | post@clunet.co.kr | KR | APNIC | WIZCDN | 6677770c5d45c166d849831491e02d14 | http://update1.ucclink.com/PF3/PCFree.exe || 2011-10-17 23:00:19 | sub10 | avira | TR/Agent.410112.A | 23/40 (57.5%) | AS38676 | 111.67.216.41 | post@clunet.co.kr | KR | APNIC | WIZCDN | d9b7061716d67ac987aea255e2cb0bc5 | http://update1.ucclink.com/PF3/PCFreeMon.exe || 2011-10-17 23:00:19 | sub10 | avira | DR/Delphi.Gen | 11/40 (27.5%) | AS9318 | 116.125.124.244 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | b78aa99a2696cdaa827bd36bbb80d6ad | http://update.boankorea.com/setup/setup_boankorea.exe || 2011-10-17 23:00:19 | sub10 | avira | TR/Spy.Webmoner.ayv | 17/40 (42.5%) | AS9116 | 84.95.241.54 | abuse@012.net.il | IL | RIPE | IL-GOLDENLINES-20040525 | 08840aba82bfc38441fffe37a9a28187 | http://update.muonline.co.il/wz_scx2.exe || 2011-10-17 23:00:19 | sub10 | avira | TR/Gendal.65344 | 29/38 (76.3%) | AS51659 | 46.17.40.18 | noc@baxet.ru | RU | RIPE | BX-NETWORK | c2fb583a91a398cde4bd0706ff1c44b2 | http://vkontakte-vhod.ru/uploads/Ice_Clock_3D_activator.exe || 2011-10-17 23:00:19 | sub10 | trendmicro | TROJ_ADLOAD.VTG | 13/40 (32.5%) | AS4766 | 14.63.217.88 | abuse@kornet.net | KR | APNIC | KORNET | 855c4c8bef6166dc44032d18c8c4e917 | http://winggo.co.kr/SM3/winggoSetup.exe || 2011-10-17 23:00:19 | sub10 | avira | TR/Agent.219699.1 | 23/38 (60.5%) | AS42926 | 46.45.136.234 | abuse@istanbuldc.com | TR | RIPE | ISTANBUL-DC | 06776becf74559c8bfeab3f7023a162d | http://zermt2.com/patch//pack/troy.exe || 2011-10-17 23:00:19 | sub10 | avira | ADSPY/Webdir.A | 27/39 (69.2%) | AS196866 | 195.191.232.30 | abuse@iv.net.pl | PL | RIPE | InnerVision-net | 481540954ef8fb3b281c223d6cb62896 | http://z.nf.pl/downloads/475.exe || 2011-10-17 23:00:19 | sub10 | avira | BDS/Bifrose.EO.139 | 15/38 (39.5%) | AS25761 | 72.20.37.125 | abuse@staminus.net | US | ARIN | STAMINUS-COMMUNICATIONS | 410d21462cc1354d6e7770eda1f03848 | http://zurnateam.com/zurna.exe || 2011-10-17 23:00:32 | sub1 | avira | ADWARE/PinGuide.d | 23/40 (57.5%) | AS9318 | 180.71.56.233 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | 61b2a9396a1bb7ab5df72f51f2e6b2b7 | http://file.sidegreen.com/dst/GuideOn_GO61.exe || 2011-10-17 23:00:32 | sub1 | undef | unknown_file_$INSTDIR/ReimageReminder.exe | 0/40 (0.0%) | AS22822 | 87.248.217.253 | guy@llnw.com | EU | RIPE | LLNW-EU-2 | e5451a9edf43a6a25da20f7be6bdfc8f | http://cdnrep.reimage.com/ReimagePackage1600.exe || 2011-10-17 23:00:32 | sub1 | undef | unknown_html | | AS4134 | 202.100.73.190 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-GS | e0b1354f071bd7a3248301208cde8945 | http://dl_dir.qq.com:80/qqfile/qq/QQ2009/QQ2009SP3.exe || 2011-10-17 23:00:32 | sub1 | Sophos | Mal/Generic-L | 2/40 (5%) | AS4766 | 218.146.253.202 | abuse@kornet.net | KR | APNIC | KORNET-KR | c8ab3c5e8c7a29d45bab1038cce845c3 | http://www.windowlet.net/_app/prog/Uninstall.exe || 2011-10-17 23:00:32 | sub1 | avira | SPR/Tool.24576.46 | 14/40 (35%) | AS4766 | 218.146.253.202 | abuse@kornet.net | KR | APNIC | KORNET-KR | 3aecb048df53dfac7558366b914d55b9 | http://www.windowlet.net/_app/prog/Windowset.exe || 2011-10-17 23:10:11 | sub20 | undef | unknown_html | 0/38 (0.0%) | AS13335 | 173.245.61.86 | noc@cloudflare.com | US | ARIN | CLOUDFLARENET | 27e344ccec19d1c7b9180409fd62c9f8 | http://www.refillntime.com/sweet.txt || 2011-10-17 22:44:02 | sub17 | trendmicro | Mal_Hifrm | 1/38 (2.6%) | AS26496 | 97.74.144.145 | noc@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 52e1f8d9ada57cf6002f1e41acaa690f | http://alphaegypt.com.eg || 2011-10-17 22:40:05 | sub8 | undef | Backdoor.Win32.Krafcot.tv | 0/38 (0.0%) | AS21788 | 182.18.151.71 | psridharreddy@hotmail.com | IN | APNIC | PIONEER_ELABS | 0bf0363a1f32b7bc19646965eb1ac502 | http://wiztechautomationsolutions.com/ || 2011-10-17 22:40:07 | sub8 | undef | Backdoor.Win32.Yoddos.an | 0/38 (0.0%) | AS36420, AS30315, AS13749, AS21844 | 174.123.24.59 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | df204fd0b707ce1ea53929f14a80a654 | http://www.melhorsoft.com/download/ || 2011-10-17 23:51:03 | sub20 | undef | unknown_html_RFI_php | 0/38 (0.0%) | AS15418 | 88.208.209.157 | mark.wood@fasthosts.co.uk | GB | RIPE | UK-FASTHOSTS-20051102 | eb768f10d20819c7027f92d1bd06399b | http://install.ticno.com/feed/feed_ru.xml || 2011-10-17 23:51:03 | sub20 | undef | unknown_html | 0/38 (0.0%) | AS9318 | 116.122.135.43 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | 0b23fe5f7221c2d1e36fd5b31621e984 | http://rocks.kr/Laun/createicon.php || 2011-10-17 23:51:03 | sub20 | avira | TR/Dropper.Gen | 2/38 (5.3%) | AS49544 | 188.95.53.65 | abuse@as49544.net | NL | RIPE | SERVERBOOST | 8c36daaf8bcc02bb7f413661d5433072 | http://wp-stats-php.info/file51638 || 2011-10-17 23:51:03 | sub20 | avira | TR/Gendal.KD.379925 | 6/40 (15%) | AS8473 | 213.136.36.222 | abuse@bahnhof.net | SE | RIPE | DEDICATED-SERVERS-NET | 2e138888553ce494ad0ca6d86a208172 | http://www.kitembudigital.st/images/stories/scrabs.exe || 2011-10-18 01:00:24 | sub10 | avira | PHP/IRCBOT.EW | 17/40 (42.5%) | AS36420, AS30315, AS13749, AS21844 | 174.120.152.66 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 6830fa170e2201716c3427a53af17246 | http://3daria.com/plugins/linkwords/au.txt?%3F || 2011-10-18 01:00:26 | sub10 | avira | PHP/Small.C | 28/40 (70%) | AS36420, AS30315, AS13749, AS21844 | 174.121.148.187 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 9e1a6ba50a68447c6f8bba87190bd5db | http://kbgoldfree.com/jdb212/archive/crimecyber.png?%3F || 2011-10-18 01:00:27 | sub10 | Antiy_AVL | Trojan/JS.Twetti | 23/40 (57.5%) | AS45762 | 202.176.14.137 | glen.hastings@accessnetworks.com.au | AU | APNIC | ACCESSNETWORKS | 6664517300c887f22ac58f1103bc232e | http://pinklilycreative.com.au || 2011-10-18 01:00:27 | sub10 | avira | JS/Agent.zbh | 19/40 (47.5%) | AS33182 | 66.7.221.96 | abuse@dimenoc.com | US | ARIN | DIMECNET | 1e6717435754b098a8a6ccef7706f841 | http://solutionzgroup.com/ || 2011-10-18 01:00:27 | sub10 | avira | PHP/C99Shell.L | 27/38 (71.1%) | AS3786 | 222.231.10.51 | support@kidc.net | KR | APNIC | KIDC-KR | 35457cb718ba8980fd642a6b790a5152 | http://tapsan.co.kr/new2008/bbs/club/fx29id2.txt?%3F%3F%3F || 2011-10-18 01:00:27 | sub10 | avira | JS/Redirect.TU | 25/40 (62.5%) | AS40244 | 67.231.253.81 | abuse@turnkeyinternet.net | US | ARIN | TURNKEY-INTERNET | 9011a5533350ba9ae6833f7d1ed4bcd0 | http://triphome.forabettertomorrow.org/ || 2011-10-18 01:00:27 | sub10 | avira | HTML/Silly.Gen | 26/38 (68.4%) | AS4134 | 219.148.38.189 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-HE | 09c9534b00520bb6026e7bbe9def7f2c | http://unionmedgroup.com/templates/met007/IE.htm || 2011-10-18 01:00:28 | sub10 | avira | BDS/Hupigon.A.581 | 24/38 (63.2%) | AS4837 | 218.28.170.132 | abuse@public.zz.ha.cn | CN | APNIC | UNICOM-HA | ab93aa2bd7bec6f066c4aa252a8fa083 | http://wt2.soft168.com/download/bxexam.rar || 2011-10-18 01:00:28 | sub10 | avira | JS/Redirector.JM | 18/38 (47.4%) | AS2914 | 198.171.51.76 | abuse@ntt.net | US | ARIN | NTTA-198-170 | 771518b3e947731320528b00db019e3b | http://wtaustin.com/ || 2011-10-18 01:00:28 | sub10 | avira | TR/Agent.219699.1 | 23/38 (60.5%) | AS42926 | 46.45.136.234 | abuse@istanbuldc.com | TR | RIPE | ISTANBUL-DC | 06776becf74559c8bfeab3f7023a162d | http://zermt2.com/patch/pack/troy.exe || 2011-10-18 01:00:28 | sub10 | avira | JS/iFrame.psa.22 | 20/38 (52.6%) | AS9931 | 122.155.5.76 | support@idc.cattelecom.com | TH | APNIC | CAT-IDC-Service | 7ec4036d5ad097f00103820844dd1017 | http://zouliyonghotel.com/ || 2011-10-17 23:03:06 | sub8 | undef | Trojan.Agent/Gen-NumTemp | 0/40 (0.0%) | AS42926 | 46.45.136.234 | abuse@istanbuldc.com | TR | RIPE | ISTANBUL-DC | 5f7e9fe2a8aef05f1b0e429eb8600739 | http://zermt2.com/patch/pack/ || 2011-10-18 03:00:20 | sub10 | avira | TR/Dldr.Gefunk.A | 10/38 (26.3%) | AS14112 | 8.23.224.90 | abuse@level3.com | US | ARIN | LVLT-ORG-8-8 | 5ad095a475ede75df294d7fa6b4acc59 | http://conversa.serveblog.net/atua.exe || 2011-10-18 03:00:20 | sub10 | avira | PHP/IRCBOT.JB.1 | 22/38 (57.9%) | AS11798 | 67.20.104.88 | support@bluehost.com | US | ARIN | BLUEHOST-NETWORK-6 | 956649bed8af42ddf83b155f3e6d4c35 | http://guttermagazine.com/blog/cache/a.txt?%3F%3F || 2011-10-18 03:00:20 | sub10 | avira | HTML/Crypted.Gen | 17/39 (43.6%) | AS27473 | 64.182.177.88 | security@constellate.com | US | ARIN | CIHS | 53d5ab4c72c7978b687ce023c6e41beb | http://techmento.com/wp-includes/js/l10n.js?ver=20101110 || 2011-10-18 03:10:06 | sub20 | avira | TR/Spy.Banker.Gen | 7/39 (17.9%) | AS31034 | 62.149.130.229 | hostmaster@technorail.com | IT | RIPE | TECHNORAIL-NET | bdb3bb2318063f2e68fe3b4cf3bbcd98 | http://www.palmettodatabase.com/g1.zip || 2011-10-18 03:10:06 | sub20 | avira | TR/Crypt.XPACK.Gen3 | 6/39 (15.4%) | AS31034 | 62.149.130.229 | hostmaster@technorail.com | IT | RIPE | TECHNORAIL-NET | 398adc5684162bdf20e9c4d0964cabff | http://www.palmettodatabase.com/g2.zip || 2011-10-18 03:05:41 | sub5 | avira | PHP/Small.539 | 21/39 (53.8%) | AS34762 | 217.19.227.142 | abuse@combell.com | BE | RIPE | COMBELL | 51d010720af2bf57f6df7ed63aecacc1 | http://cocomo.be/cocomo2011/wp-content/plugins//formidable/classes/controllers/.etc/myid.jpg || 2011-10-18 03:05:57 | sub5 | avira | PHP/Loader.9852 | 14/39 (35.9%) | AS34762 | 217.19.227.142 | abuse@combell.com | BE | RIPE | COMBELL | 23fe599866f870cf894025c758e8333e | http://cocomo.be/cocomo2011/wp-content/plugins//formidable/classes/controllers/.etc/jc.jpg? || 2011-10-18 03:07:42 | sub5 | avira | PHP/C99Shell.F | 24/39 (61.5%) | AS34762 | 217.19.227.142 | abuse@combell.com | BE | RIPE | COMBELL | 0504ef0e3ff9a122a2b464c886276178 | http://cocomo.be/cocomo2011/wp-content/plugins//formidable/classes/controllers/.etc/bom2.jpg?? || 2011-10-18 01:48:02 | sub8 | undef | Backdoor:W32/Agent.DOSH | 0/39 (0.0%) | AS14112 | 8.23.224.90 | abuse@level3.com | US | ARIN | LVLT-ORG-8-8 | 95cf3739d515075edc954e1613a2d5a7 | http://conversa.serveblog.net/ || 2011-10-18 04:00:34 | sub10 | BitDefender | Trojan.JS.Redirector.GK | 8/39 (20.5%) | AS32065 | 216.81.64.82 | support@vortechhosting.com | US | ARIN | VORTECH-BLK-2 | 09a0024483f4a9689f4a0eec0905719f | http://rawcon.com.au || 2011-10-18 04:00:34 | sub10 | undef | unknown_html_google_malware | 0/39 (0.0%) | AS209 | 74.86.13.100 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | ccd7b467bd6c8e3dc6f6c2500afcd268 | http://summitbankaz.com/ || 2011-10-18 04:00:34 | sub10 | avira | TR/Gendal.6691215 | 25/39 (64.1%) | AS42926 | 213.128.85.10 | abuse@istanbuldc.com | TR | RIPE | Istanbul-DC | 5f8e1d2c9930ecfc4e0e564a13d097b5 | http://taarruz.com/TaarruzKoxp1881.rar || 2011-10-18 03:39:35 | sub17 | AntiVir | JS/Agent.zbh | 20/40 (50%) | AS36351 | 173.193.3.184 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-8 | 4f49354f558a2fd9e4235a1526eb1b10 | http://jcfoundry.com || 2011-10-18 04:20:03 | sub1 | undef | unknown_html_google_malware | 0/40 (0.0%) | AS10778 | 200.14.80.154 | dlotina@NETGLOBALIS.NET | CL | LACNIC | CL-NESA-LACNIC | fe522c7c16fb6420d3f9e51fdacb6b98 | http://mail.chile.com/src/compose.php?send_to=ahorroenergetico%40chile.com || 2011-10-18 03:47:19 | sub8 | undef | unknown_html | 0/38 (0.0%) | AS16265 | 94.75.199.178 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | 44b973ddfad2abc04d14a0398fb63d40 | http://tradingcenter.cc/stealer/ || 2011-10-18 03:48:18 | sub8 | undef | WebToolbar.Win32.RK.cb | 0/39 (0.0%) | AS42926 | 213.128.85.10 | abuse@istanbuldc.com | TR | RIPE | Istanbul-DC | 34f50322aef9f3a54be6cc563659b4a5 | http://taarruz.com/ || 2011-10-18 05:00:18 | sub10 | avira | JAVA/SMS.Wire.A | 26/40 (65%) | AS7643 | 123.30.174.49 | abuse@vnn.vn | vn | APNIC | VDC-NET | 46347a7bd7d51a4796b52a2258381f07 | http://123.30.174.49/~m123a/up/jar/Thu_thuat_36_.jar || 2011-10-18 05:00:18 | sub10 | avira | JS/iFrame.psa.22 | 20/40 (50%) | AS36351 | 173.192.219.32 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-8 | 1c642a71a67deb2b0819e7efbf1c6360 | http://ashokcomputer.com/ashok/index.asp || 2011-10-18 05:00:18 | sub10 | avira | JS/iFrame.HD | 11/40 (27.5%) | AS2914 | 199.238.176.174 | abuse@ntt.net | US | ARIN | NTTA-199-236 | 05075becc5955ca8ffaa75bee67dfeb7 | http://etiquettepro.com/clients.htm || 2011-10-18 05:00:18 | sub10 | avira | JS/iFrame.GX | 14/39 (35.9%) | AS13749, AS21844, AS30315, AS36420 | 74.54.216.34 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 2c1770f10eea0c22618db5e0729a6c41 | http://flooring.inmetroatlanta.com || 2011-10-18 05:00:18 | sub10 | BitDefender | Trojan.Generic.6727757 | 14/39 (35.9%) | AS12695 | 92.38.209.180 | abuse@di-net.ru | RU | RIPE | DINETHOSTING-NEXT2 | 9f0316b5cd27a2f0b2149785ae49d614 | http://gitar.pgvn.net/Guests/Guests1.1.exe || 2011-10-18 05:00:18 | sub10 | avira | HTML/Dldr.Agent.OB | 21/39 (53.8%) | AS4134 | 117.41.228.200 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-JX | 024ea80b85664285a9afbcb3c1abaee5 | http://gt868.com || 2011-10-18 05:00:18 | sub10 | avira | JS/iFrame.GX | 13/39 (33.3%) | AS13749, AS21844, AS30315, AS36420 | 74.54.216.34 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 15b3bd2e22fd96a9c7b10c7e9eb6a19b | http://healthfood.inmetroatlanta.com || 2011-10-18 05:00:18 | sub10 | avira | JS/iFrame.GX | 13/39 (33.3%) | AS13749, AS21844, AS30315, AS36420 | 74.54.216.34 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 21a1776252ea4c15046460bd2be90a5b | http://homesforsale.inmetroatlanta.com || 2011-10-18 05:00:18 | sub10 | avira | JS/iFrame.GM | 22/40 (55%) | AS15685 | 77.78.100.41 | abuse@casablanca.cz | CZ | RIPE | CZ-CASABLANCA-20070227 | 0d2f47c712955ac72f4411cd1911ea7c | http://kampet.cz/shop1/index.php || 2011-10-18 05:00:18 | sub10 | avira | TR/Gendal.6693140.1 | 27/40 (67.5%) | AS8972 | 188.138.91.113 | abuse@plusserver.de | DE | RIPE | DE-INTERGENIA-20090508 | 5d7759a13cc7b715da85dfcf27f2505b | http://ni3ma-chat.com/Speakchatsettap.exe || 2011-10-18 05:00:19 | sub10 | avira | HTML/Shellcode.Gen | 13/40 (32.5%) | AS4134 | 219.148.38.189 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-HE | 236ac6338ecc8407e5e8d235f24f5ade | http://unionmedgroup.com/templates/met007/party.js || 2011-10-18 05:10:03 | sub8 | undef | Trojan.Generic.6691215 | 0/40 (0.0%) | AS8972 | 188.138.91.113 | abuse@plusserver.de | DE | RIPE | DE-INTERGENIA-20090508 | 85454c04476a26e13ced4fc330ccbfa4 | http://ni3ma-chat.com/ || 2011-10-18 05:10:03 | sub8 | undef | Packed.Multi.MultiPacked.gen | 15/39 (38.5%) | AS12695 | 92.38.209.180 | abuse@di-net.ru | RU | RIPE | DINETHOSTING-NEXT2 | 9f0316b5cd27a2f0b2149785ae49d614 | http://gitar.pgvn.net/Guests/ || 2011-10-18 06:00:37 | sub10 | undef | unknown_html_RFI_eval | 0/40 (0.0%) | AS32613 | 209.172.45.145 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-01 | 72e26de8c2eb6ec158854e0ab2f544c9 | http://awardsex.juicynetwork.com/(S(0esk0ozffsqs2b55sqc4awbu) || 2011-10-18 06:00:37 | sub10 | undef | unknown_html_RFI_eval | 0/39 (0.0%) | AS32613 | 209.172.45.145 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-01 | 5d10a33d14f7229b25e52e8fa4a92a8d | http://awardsex.juicynetwork.com/(S(1o45j1vknpc3yeyhy2idfofd) || 2011-10-18 06:00:37 | sub10 | undef | unknown_html_RFI_eval | 0/39 (0.0%) | AS32613 | 209.172.45.145 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-01 | 75024c884e0038622e4254c7e1e736fc | http://awardsex.juicynetwork.com/(S(bxwuwk55qp5cee45h1f0dp55) || 2011-10-18 06:00:37 | sub10 | AntiVir | TR/Meredrop.A.8307 | 29/39 (74.4%) | AS42484 | 91.227.16.18 | admin@host-food.ru | RU | RIPE | Eximius-net | fe8899c9676061c68aff641ff4242a1f | http://dservers.in/wp-content/uploads/2011/02/vnc.1.2.zip || 2011-10-18 06:00:37 | sub10 | avira | EXP/C-2010-0806.BB | 23/39 (59%) | AS9394 | 122.70.145.59 | liujun66@sina.vip.com | CN | APNIC | Gold-Computer | 202851e9a5530328ae1fae3f8f438e54 | http://e-tshow.net/19.htm || 2011-10-18 06:00:37 | sub10 | avira | JS/iFrame.GX | 14/39 (35.9%) | AS13749, AS21844, AS30315, AS36420 | 74.54.216.34 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 2c5589d6bde09d8195bd239b147223e4 | http://homeloans.inmetroatlanta.com || 2011-10-18 06:00:38 | sub10 | avira | TR/Spy.5173248 | 18/40 (45%) | AS34221 | 217.199.217.9 | dn@quickline.ru | RU | RIPE | UCOZ | 2b1faacb64be0caad07b99467b292077 | http://nodvd.ucoz.ru/_ld/3/332_CPCW_Crack.rar || 2011-10-18 06:00:38 | sub10 | avira | TR/Crypt.XPACK.Gen3 | 6/40 (15%) | AS31034 | 62.149.128.154 | hostmaster@technorail.com | IT | RIPE | TECHNORAIL-NET | 398adc5684162bdf20e9c4d0964cabff | http://palmettodatabase.com/g2.zip || 2011-10-18 06:00:38 | sub10 | avira | SPR/Tool.SMShoax.AH | 20/40 (50%) | AS16276 | 178.33.142.202 | abuse@ovh.net | FR | RIPE | FR-OVH-20100119 | 5bd2b9cb9220105ea783ee8195783dc0 | http://programa.com/download/pdf_decrypter_pro_3_0.exe |+---------------------+-------------+---------------+-------------------------------------------+---------------+---------------------------------------+-----------------+-------------------------------------+---------+---------+----------------------------+----------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+200 rows in set (0.02 sec)
+---------------------+-------------+---------------+--------------------------------------+---------------+---------------------------------------------+-----------------+-------------------------------------------+---------+---------+----------------------------------+----------------------------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| date | contributor | scanner | virusname | vt_score | AS | review | email | country | source | netname | md5sum | url |+---------------------+-------------+---------------+--------------------------------------+---------------+---------------------------------------------+-----------------+-------------------------------------------+---------+---------+----------------------------------+----------------------------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| 2011-10-18 06:00:38 | sub10 | AhnLab_V3 | Downloader/Win32.Nsdown | 30/40 (75%) | AS38700 | 115.68.4.116 | network@smileserv.com | KR | APNIC | SMILESERV-KR | 497b01e3e4f58a049741515cd8d78d67 | http://save21.pe.kr/a/download/exe/ver32/update.exe || 2011-10-18 06:00:38 | sub10 | avira | WORM/WBNA.aoe | 33/39 (84.6%) | AS38700 | 115.68.4.116 | network@smileserv.com | KR | APNIC | SMILESERV-KR | 28980c53ff9cef4685d10cea9e8e4187 | http://save21.pe.kr/c/download/exe/ver18/install.exe || 2011-10-18 06:00:38 | sub10 | avira | SPR/Tool.24576.46 | 13/39 (33.3%) | AS4766 | 218.146.253.202 | abuse@kornet.net | KR | APNIC | KORNET-KR | 3aecb048df53dfac7558366b914d55b9 | http://windowlet.net/_app/prog/Windowset.exe || 2011-10-18 05:47:14 | sub17 | AntiVir | HTML/Drop.Agent.AB | 30/39 (76.9%) | AS50517 | 212.57.192.158 | mohie@ksu.edu.sa | SA | RIPE | SA-KING-SAUD-UNIVERSITY-20100112 | 992d298282696fa458b35c590e23adbd | http://staff.ksu.edu.sa || 2011-10-18 06:10:07 | sub20 | avira | TR/Dldr.VB.aikc.20 | 31/39 (79.5%) | AS38700 | 115.68.4.116 | network@smileserv.com | KR | APNIC | SMILESERV-KR | ce95f326661c22834724ca1f6fcbdb43 | http://www.save21.pe.kr/a/download/exe/ver32/uninstall_v32.exe || 2011-10-18 06:10:07 | sub20 | AhnLab_V3 | Downloader/Win32.Nsdown | 14/39 (35.9%) | AS38700 | 115.68.4.116 | network@smileserv.com | KR | APNIC | SMILESERV-KR | 1ec4889dacdb2f9fd33f0c295561bad3 | http://www.save21.pe.kr/c/download/exe/ver18/pomer_v18_8.exe || 2011-10-18 06:10:07 | sub20 | avira | TR/Dldr.VB.aikc.17 | 29/39 (74.4%) | AS38700 | 115.68.4.116 | network@smileserv.com | KR | APNIC | SMILESERV-KR | 0dc90a60cb5d208a29d0e162069f6385 | http://www.save21.pe.kr/c/download/exe/ver18/uninstall.exe || 2011-10-18 07:00:16 | sub10 | avira | TR/Spy.224256.29 | 19/39 (48.7%) | AS42576 | 91.192.224.71 | gausus@gausus.net | PL | RIPE | INTRSC-NET | 1c541f29abcce291c27d6803014a9f0e | http://hrskills.pl/gfx/index.php || 2011-10-18 07:00:16 | sub10 | avira | JS/iFrame.AE.1 | 23/39 (59%) | AS4043 | 206.127.64.134 | forrestc@imach.com | US | ARIN | MIC-18-01 | 2c7cd2197f1660adbd282f8c07d9a294 | http://olvmt.org/uploads/bulletin/bulletin_files/page0002.htm || 2011-10-18 07:00:16 | sub10 | avira | TR/Spy.Banker.Gen | 7/40 (17.5%) | AS31034 | 62.149.128.154 | hostmaster@technorail.com | IT | RIPE | TECHNORAIL-NET | bdb3bb2318063f2e68fe3b4cf3bbcd98 | http://palmettodatabase.com/g1.zip || 2011-10-18 07:00:17 | sub10 | avira | JS/Dldr.IFrame.bsg | 20/39 (51.3%) | AS16814 | 200.68.65.245 | abuse@IPLAN.COM.AR | AR | LACNIC | AR-NSSA-LACNIC | 2854f54dbaa3991f118ad87048f7f949 | http://sfa.com.ar || 2011-10-18 07:00:17 | sub10 | avira | HTML/IFrame.zbw.1 | 6/39 (15.4%) | AS25537 | 195.24.65.30 | abuse@gpt.ru | RU | RIPE | PARKLINE-1-WEB | 2f7bf0650332ed05e9ab065a8d4570c8 | http://tlk-auto.ru || 2011-10-18 07:50:03 | sub11 | avira | PHP/C99Shell.F | 25/40 (62.5%) | AS19262 | 108.27.254.167 | abuse@verizon.net | US | ARIN | VIS-BLOCK | bd584f0a660b98b86fb67237a30cca57 | http://fivestartravel.us/images/sarung.jpg || 2011-10-18 07:50:03 | sub11 | avira | PHP/IRCBOT.K | 17/39 (43.6%) | AS53628 | 173.0.132.252 | abuse@jdnextgen.com | US | ARIN | APYLI-AS | ec3ed50d5f4c52b710b4f8db67f0d014 | http://www.doctorsandmedicines.com/dandmstore/dandmstore/images/topi.jpg || 2011-10-18 07:50:03 | sub11 | avira | PHP/C99Shell.F | 26/40 (65%) | AS13284 | 62.48.32.139 | abuse@playnet.it | IT | RIPE | BRT-NET | 0b82171f55e49df61245a4d51fad1af8 | http://www.framarcabine.it/downloads/ipays.jpg || 2011-10-18 07:50:03 | sub11 | avira | PHP/C99Shell.B | 21/39 (53.8%) | AS28753 | 91.191.165.229 | abuse@netdirekt.com.tr | DE | RIPE | TEKNOAS-DE-1 | 119b0cc905764bbefe55f544fc6d01ac | http://www.hackerbox.net/c99.txt || 2011-10-18 07:50:03 | sub11 | avira | PHP/C99Shell.F | 26/40 (65%) | AS36914 | 41.204.161.16 | noc@kenet.or.ke | KE | AFRINIC | KENET-KENETHQ | 7a8310fb04544280bfc1731bc9d1ede7 | http://www.muk.ac.ke/muvlir//e107_plugins/sgallery/pics/jvh/ipays.jpg || 2011-10-18 07:50:03 | sub11 | avira | PHP/IRCBOT.EW | 22/40 (55%) | AS11798 | 69.89.27.223 | abuse@bluehost.com | US | ARIN | BLUEHOST-NETWORK-1 | 7755b61700ab224cba75a10a99ffdb8a | http://www.sidekickcomicsuk.com/store/cache/host/j1.txt || 2011-10-18 07:50:03 | sub11 | avira | PHP/IRCBOT.EW | 22/40 (55%) | AS11798 | 69.89.27.223 | abuse@bluehost.com | US | ARIN | BLUEHOST-NETWORK-1 | 5bd556891dff77a63adb1231d4d35438 | http://www.sidekickcomicsuk.com/store/cache/host/j2.txt || 2011-10-18 07:50:03 | sub11 | avira | PHP/C99Shell.F | 28/40 (70%) | AS11798 | 69.89.27.223 | abuse@bluehost.com | US | ARIN | BLUEHOST-NETWORK-1 | ec51393f9e41c534819dedfef6fa28a4 | http://www.sidekickcomicsuk.com/store/cache/host/sarung.jpg || 2011-10-18 07:50:03 | sub11 | avira | PHP/Small.C | 26/39 (66.7%) | AS11798 | 69.89.27.223 | abuse@bluehost.com | US | ARIN | BLUEHOST-NETWORK-1 | 909a93bd6c6f5f4d211e13e62e0ac693 | http://www.sidekickcomicsuk.com/store/cache/host/topi.jpg || 2011-10-18 07:50:03 | sub11 | avira | PHP/Small.C | 28/39 (71.8%) | AS13213 | 83.170.101.46 | abuse@uk2.net | GB | RIPE | UK2-NET | 55ea57e528e78cdc810fd58a7d7ccdc9 | http://www.spiramus.com/css/.etc/9991.jpg || 2011-10-18 07:50:03 | sub11 | avira | SPR/PHPInfo.Ag.1 | 20/39 (51.3%) | AS13213 | 83.170.101.46 | abuse@uk2.net | GB | RIPE | UK2-NET | c42ba5f52e31f7571679a3c21509d9c7 | http://www.spiramus.com/css/.etc/byz9991.jpg || 2011-10-18 08:50:06 | sub14 | undef | unknown_html | 0/39 (0.0%) | AS10912 | 92.122.50.185 | abuse@akamai.com | EU | RIPE | EU-AKAMAI-20071113 | 9b333e6f66afc99a08980fa41647410c | http://cfgi.5millionfriends.com/gi.aspx?chid=176366%26cid=1315332%26con=n%26v.method=software%26ix=gplappbundler%26v.installerName=XvidSetup.exe || 2011-10-18 08:50:06 | sub14 | undef | unknown_exe | 0/39 (0.0%) | AS19994 | 173.203.98.33 | abuse@rackspace.com | US | ARIN | RSPC-1260562566545648481268 | 6ef347007b7672edfeb111d5a73a3b66 | http://dnld.openinstall.com/files/VHVjb3dzRG93bmxvYWRlci5tc2k/VHVjb3dzIERvd25sb2FkIE1hbmFnZXI/aHR0cDovL3d3dy50dWNvd3MuY29tL3lnZXQvMTAzODM2Nl82NDU0MTU/70246cd1655bb757bb19323f3248cc8cf9414b2b/TucowsDownloader || 2011-10-18 08:50:06 | sub14 | undef | unknown_exe | 0/39 (0.0%) | AS5615 | 195.241.77.82 | abuse@tiscali.nl | NL | RIPE | NL-TELFORT-SRVC | af7b8bcf8ca8044c94451f6a2956c738 | http://home.tiscali.nl/~themi/Baas.exe || 2011-10-18 08:50:06 | sub14 | Panda | Joke/Bean | 1/39 (2.6%) | AS5615 | 195.241.77.82 | abuse@tiscali.nl | NL | RIPE | NL-TELFORT-SRVC | 4ab84005e4b2d81a75c933afbaacf146 | http://home.tiscali.nl/~themi/Bean.exe || 2011-10-18 08:50:06 | sub14 | Comodo | UnclassifiedMalware | 3/39 (7.7%) | AS5615 | 195.241.77.82 | abuse@tiscali.nl | NL | RIPE | NL-TELFORT-SRVC | 868d85c2029ff9facae7335cb15c9f9d | http://home.tiscali.nl/~themi/berichtrobot.exe || 2011-10-18 08:50:06 | sub14 | AntiVir | JOKE/CokeGift.A | 18/40 (45%) | AS5615 | 195.241.77.82 | abuse@tiscali.nl | NL | RIPE | NL-TELFORT-SRVC | 6f1c40a1f95cf8b3dc41c3cff25e923d | http://home.tiscali.nl/~themi/CocaCola.exe || 2011-10-18 08:50:06 | sub14 | TheHacker | Trojan/Diple.vvj | 1/40 (2.5%) | AS5615 | 195.241.77.82 | abuse@tiscali.nl | NL | RIPE | NL-TELFORT-SRVC | 130368dcac9cf8171b792bb164b1cd1c | http://home.tiscali.nl/~themi/combo.exe || 2011-10-18 08:50:06 | sub14 | undef | unknown_exe | 0/40 (0.0%) | AS5615 | 195.241.77.82 | abuse@tiscali.nl | NL | RIPE | NL-TELFORT-SRVC | 14bc5136ff1a9e998853070ca163d4d0 | http://home.tiscali.nl/~themi/desmurfe.exe || 2011-10-18 08:50:06 | sub14 | undef | unknown_exe | 0/39 (0.0%) | AS5615 | 195.241.77.82 | abuse@tiscali.nl | NL | RIPE | NL-TELFORT-SRVC | 05c2e7e48e0fa90b17710e105e26f971 | http://home.tiscali.nl/~themi/dobbelen.exe || 2011-10-18 08:50:06 | sub14 | trendmicro | JOKE_WINAVOID.A | 22/40 (55%) | AS5615 | 195.241.77.82 | abuse@tiscali.nl | NL | RIPE | NL-TELFORT-SRVC | 6e6a7e7e40fa2f8434146c1902cb44de | http://home.tiscali.nl/~themi/drunk.exe || 2011-10-18 08:50:06 | sub14 | undef | unknown_exe | 0/39 (0.0%) | AS5615 | 195.241.77.82 | abuse@tiscali.nl | NL | RIPE | NL-TELFORT-SRVC | bca170904100f492ae3194863775a26f | http://home.tiscali.nl/~themi/famous.exe || 2011-10-18 08:50:06 | sub14 | undef | unknown_exe | 0/39 (0.0%) | AS5615 | 195.241.77.82 | abuse@tiscali.nl | NL | RIPE | NL-TELFORT-SRVC | b36915077c0a460b4c0003e3494fae50 | http://home.tiscali.nl/~themi/flyovermars.exe || 2011-10-18 08:50:06 | sub14 | undef | unknown_exe | 0/39 (0.0%) | AS5615 | 195.241.77.82 | abuse@tiscali.nl | NL | RIPE | NL-TELFORT-SRVC | 7a8a939d54fbbefbb3700aafb0731859 | http://home.tiscali.nl/~themi/gluren.exe || 2011-10-18 08:50:06 | sub14 | undef | unknown_exe | 0/39 (0.0%) | AS5615 | 195.241.77.82 | abuse@tiscali.nl | NL | RIPE | NL-TELFORT-SRVC | 6cc053d68c738be2dee3fceb5b90294f | http://home.tiscali.nl/~themi/goedinbed.exe || 2011-10-18 08:50:06 | sub14 | clamav | Joke.Winshoot.A | 19/39 (48.7%) | AS5615 | 195.241.77.82 | abuse@tiscali.nl | NL | RIPE | NL-TELFORT-SRVC | d8bb92e85901253bcec99af08a33efb8 | http://home.tiscali.nl/~themi/Gu0.exe || 2011-10-18 08:50:06 | sub14 | trendmicro | JOKE_DELAYPRNK.A | 25/39 (64.1%) | AS5615 | 195.241.77.82 | abuse@tiscali.nl | NL | RIPE | NL-TELFORT-SRVC | 17b72e49c8385c93800ad3584af2918f | http://home.tiscali.nl/~themi/haha.exe || 2011-10-18 08:50:07 | sub14 | eSafe | Win32.TrojanHorse | 1/39 (2.6%) | AS5615 | 195.241.77.82 | abuse@tiscali.nl | NL | RIPE | NL-TELFORT-SRVC | a077e2caa44bc6e44addd31f5a9fa551 | http://home.tiscali.nl/~themi/hypnotize.exe || 2011-10-18 08:50:07 | sub14 | CAT_QuickHeal | (Suspicious) - DNAScan | 3/39 (7.7%) | AS5615 | 195.241.77.82 | abuse@tiscali.nl | NL | RIPE | NL-TELFORT-SRVC | 8471bd9e81dc97c5127fa9dd8b5c10b2 | http://home.tiscali.nl/~themi/iview315.exe || 2011-10-18 08:50:07 | sub14 | undef | unknown_exe | 0/39 (0.0%) | AS5615 | 195.241.77.82 | abuse@tiscali.nl | NL | RIPE | NL-TELFORT-SRVC | 550efe1191b19379408a6527d344e4c7 | http://home.tiscali.nl/~themi/JesusTest.exe || 2011-10-18 08:50:07 | sub14 | Antiy_AVL | Trojan/Win32.Refroso.gen | 4/39 (10.3%) | AS5615 | 195.241.77.82 | abuse@tiscali.nl | NL | RIPE | NL-TELFORT-SRVC | 5ff723473a2ccc578415d7e680b6b370 | http://home.tiscali.nl/~themi/kamikazekat.exe || 2011-10-18 08:50:07 | sub14 | undef | unknown_exe | 0/40 (0.0%) | AS5615 | 195.241.77.82 | abuse@tiscali.nl | NL | RIPE | NL-TELFORT-SRVC | 0ab18dc8fc8d273b343f10a7bc179fde | http://home.tiscali.nl/~themi/Ltrgame.exe || 2011-10-18 08:50:07 | sub14 | TheHacker | Trojan/Diple.vvj | 1/40 (2.5%) | AS5615 | 195.241.77.82 | abuse@tiscali.nl | NL | RIPE | NL-TELFORT-SRVC | 94989751d338be71cd9632aa7e7ecaa0 | http://home.tiscali.nl/~themi/mammary.exe || 2011-10-18 08:50:07 | sub14 | AhnLab_V3 | Win-Joke/Oups | 3/40 (7.5%) | AS5615 | 195.241.77.82 | abuse@tiscali.nl | NL | RIPE | NL-TELFORT-SRVC | f10696a06f38d6b5da0d5c745bfdc614 | http://home.tiscali.nl/~themi/Oups.exe || 2011-10-18 08:50:07 | sub14 | AntiVir | JOKE/Pornas | 8/40 (20%) | AS5615 | 195.241.77.82 | abuse@tiscali.nl | NL | RIPE | NL-TELFORT-SRVC | 7504638de13c91d3de4701bc5eba895e | http://home.tiscali.nl/~themi/porno.exe || 2011-10-18 08:50:07 | sub14 | undef | unknown_exe | 0/40 (0.0%) | AS5615 | 195.241.77.82 | abuse@tiscali.nl | NL | RIPE | NL-TELFORT-SRVC | e8a862a985799b3f6ff33f4f4a535541 | http://home.tiscali.nl/~themi/saddam.exe || 2011-10-18 08:50:07 | sub14 | Norman | W32/VBInject.P!genr | 1/40 (2.5%) | AS5615 | 195.241.77.82 | abuse@tiscali.nl | NL | RIPE | NL-TELFORT-SRVC | 4872206c11fdc9157d98aa8f66918057 | http://home.tiscali.nl/~themi/schermpoesje.exe || 2011-10-18 08:50:07 | sub14 | trendmicro | JOKE_IDIOMA | 32/40 (80%) | AS5615 | 195.241.77.82 | abuse@tiscali.nl | NL | RIPE | NL-TELFORT-SRVC | 97105cb5b2b62269bf41ab0b248a9a68 | http://home.tiscali.nl/~themi/schrik.exe || 2011-10-18 08:50:07 | sub14 | clamav | Joke.Cursor | 18/40 (45%) | AS5615 | 195.241.77.82 | abuse@tiscali.nl | NL | RIPE | NL-TELFORT-SRVC | a9c4774dc1c3704b2a7f1a0d9d999680 | http://home.tiscali.nl/~themi/Stalker.exe || 2011-10-18 08:50:07 | sub14 | undef | unknown_exe | 0/40 (0.0%) | AS5615 | 195.241.77.82 | abuse@tiscali.nl | NL | RIPE | NL-TELFORT-SRVC | af4e3c63177bee58c6c6e141e4fef2b8 | http://home.tiscali.nl/~themi/tetrisjr95.exe || 2011-10-18 08:50:07 | sub14 | undef | unknown_exe | 0/39 (0.0%) | AS5615 | 195.241.77.82 | abuse@tiscali.nl | NL | RIPE | NL-TELFORT-SRVC | 4016c7983c4a7d4255b01bd80ab78ba8 | http://home.tiscali.nl/~themi/vlieg.exe || 2011-10-18 08:50:07 | sub14 | undef | unknown_exe | 0/34 (0.0%) | AS5615 | 195.241.77.82 | abuse@tiscali.nl | NL | RIPE | NL-TELFORT-SRVC | b9f47399422e8b673fd6cf6a1679f157 | http://home.tiscali.nl/~themi/water~in~je~monitor.scr || 2011-10-18 08:50:07 | sub14 | undef | unknown_html | 0/34 (0.0%) | AS7366 | 199.7.177.244 | abuse@lemuriaco.com | US | ARIN | LEMURIA-COMMUNICATIONS | 1506595bbee659d41a75bd05efedc8e7 | http://hotfile.com/dl/132452854/f692688/dd.dat || 2011-10-18 08:50:07 | sub14 | avira | TR/Dropper.Gen | 29/40 (72.5%) | AS32613 | 70.38.98.238 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-05 | 584980f0a34cd854dea2268b2dd972e1 | http://img104.herosh.com/2011/10/16/876345700.gif || 2011-10-18 08:50:07 | sub14 | avira | TR/Crypt.PEPM.Gen | 12/40 (30%) | AS38732 | 115.146.127.12 | | VN | APNIC | datacentercustomer-net | fc3eea1424e17d75cadc42033f141938 | http://vcf.vietclan.com.vn/dowload/MasterAction_fix.exe || 2011-10-18 08:50:07 | sub14 | avira | TR/Crypt.PEPM.Gen | 7/40 (17.5%) | AS38732 | 115.146.127.12 | | VN | APNIC | datacentercustomer-net | 3287f22b4003ca301a836d636cd6aea8 | http://vcf.vietclan.com.vn/dowload/MasterModz_fix.exe || 2011-10-18 08:50:07 | sub14 | avira | ADSPY/SearchIt.C.16 | 30/40 (75%) | AS24940 | 88.198.156.34 | abuse@hetzner.de | DE | RIPE | DE-HETZNER-20051227 | 943e32367d6bebb2c19e04cf3687bbc3 | http://www.fastbot.de/toolbar/fastbot.exe || 2011-10-18 09:00:29 | sub10 | avira | ADSPY/SearchIt.C.16 | 30/40 (75%) | AS24940 | 88.198.156.34 | abuse@hetzner.de | DE | RIPE | DE-HETZNER-20051227 | 943e32367d6bebb2c19e04cf3687bbc3 | http://fastbot.de/toolbar/fastbot.exe || 2011-10-18 09:00:31 | sub10 | avira | JS/iFrame.GX | 14/40 (35%) | AS13749, AS21844, AS30315, AS36420 | 74.54.216.34 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 4e65e9c8c3dd13e58a845ee284bd153e | http://limousine.inmetroatlanta.com || 2011-10-18 09:00:31 | sub10 | Avast | JS:Downloader-LP Trj | 15/39 (38.5%) | AS1267 | 146.185.248.3 | bitbucket@ripe.net | EU | AFRINIC | IANA-BLK | 4387f9be5af4087d21c4b44b969a870f | http://nbnjki.com/urchin.js || 2011-10-18 08:50:21 | sub5 | avira | PHP/IRCBOT.21970 | 19/39 (48.7%) | AS3595 | 69.73.181.159 | abuse@jaguarpc.com | US | ARIN | LH-GOLD-NETWORK | f7756735f748224455bc80dd33d3cc02 | http://jocsinfantils.cat/english/star.jpg?? || 2011-10-18 08:50:27 | sub5 | avira | PHP/C99Shell.C | 27/39 (69.2%) | AS3595 | 69.73.181.159 | abuse@jaguarpc.com | US | ARIN | LH-GOLD-NETWORK | eb497fb9532efdf071524c8a8afa90cd | http://jocsinfantils.cat/english/indo.jpg?? || 2011-10-18 09:13:03 | sub8 | undef | Trojan-Downloader.Win32.VB.aikc | 0/40 (0.0%) | AS24940 | 88.198.156.34 | abuse@hetzner.de | DE | RIPE | DE-HETZNER-20051227 | 779223ce72c23ca9c37c1a5cce224884 | http://fastbot.de/toolbar/ || 2011-10-18 10:00:32 | sub10 | avira | TR/Crypt.XPACK.Gen | 33/40 (82.5%) | AS12200 | 67.207.136.79 | noc@rackspace.com | US | ARIN | SLICE-STL-SE | e4346d0acb6135188279157d0641d231 | http://bhfiles.com/files/StarCraft/1.16.1/Drophack.zip || 2011-10-18 10:00:32 | sub10 | avira | TR/Dldr.VB.aikc.20 | 32/40 (80%) | AS38700 | 115.68.4.116 | network@smileserv.com | KR | APNIC | SMILESERV-KR | ce95f326661c22834724ca1f6fcbdb43 | http://save21.pe.kr/a/download/exe/ver32/uninstall_v32.exe || 2011-10-18 10:00:32 | sub10 | AhnLab_V3 | Downloader/Win32.Nsdown | 14/40 (35%) | AS38700 | 115.68.4.116 | network@smileserv.com | KR | APNIC | SMILESERV-KR | 1ec4889dacdb2f9fd33f0c295561bad3 | http://save21.pe.kr/c/download/exe/ver18/pomer_v18_8.exe || 2011-10-18 10:00:32 | sub10 | AhnLab_V3 | Downloader/Win32.VB | 29/40 (72.5%) | AS38700 | 115.68.4.116 | network@smileserv.com | KR | APNIC | SMILESERV-KR | 0dc90a60cb5d208a29d0e162069f6385 | http://save21.pe.kr/c/download/exe/ver18/uninstall.exe || 2011-10-18 11:00:26 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS36420, AS30315, AS13749, AS21844 | 174.120.21.188 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | a0e816a8161f32a575cfd8a7a7cf8fb9 | http://174.120.21.188/~sitephpc/sms/css/style.css || 2011-10-18 11:00:56 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS36420, AS30315, AS13749, AS21844 | 174.120.21.188 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 7e095b8c41f4d1371507dc6b0c54abba | http://174.120.21.188/~sitephpc/sms/home/ || 2011-10-18 11:00:56 | sub1 | avira | TR/Crypt.XDR.Gen | 37/40 (92.5%) | AS23650 | 61.147.99.179 | abuse@jsinfo.net | CN | APNIC | CHINANET-JS | 69f32b85f1de3c41948ae51b4ba3f4bb | http://61.147.99.179:81/gggg_r.jpg?t=0.1918756 || 2011-10-18 11:00:56 | sub1 | avira | TR/Crypt.XDR.Gen | 37/40 (92.5%) | AS23650 | 61.147.99.179 | abuse@jsinfo.net | CN | APNIC | CHINANET-JS | 69f32b85f1de3c41948ae51b4ba3f4bb | http://61.147.99.179:81/gggg_r.jpg?t=0.3359796 || 2011-10-18 11:00:56 | sub1 | avira | TR/Crypt.XDR.Gen | 37/40 (92.5%) | AS23650 | 61.147.99.179 | abuse@jsinfo.net | CN | APNIC | CHINANET-JS | 69f32b85f1de3c41948ae51b4ba3f4bb | http://61.147.99.179:81/gggg_r.jpg?t=0.5209314 || 2011-10-18 11:00:56 | sub1 | undef | unknown_html_RFI_php | 0/40 (0.0%) | AS15169 | 74.125.47.103 | arin-contact@google.com | US | ARIN | GOOGLE | b3288b67489b2f25703580f157987224 | http://74.125.47.103/gwt/n?u=http://rss.236z.info/N2RjZjUwMjYU/MKeW-hSsIEw/NF2lH2i/LvTZyzh/1z6Czx0ojDLri/T1HEDIra/SN5g || 2011-10-18 11:00:56 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS16265 | 94.75.208.145 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | d784fa8b6d98d27699781bd9a7cf19f0 | http://94.75.208.145/oi.php || 2011-10-18 11:00:56 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS36420, AS30315, AS13749, AS21844 | 70.86.82.20 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-13 | 4effc9431de8c0e95ec0dfb1454954ff | http://battleon.com/132.gif?pr=gHZutDyMv5rJejbia9nrmsl6giWz%2BJZbVyA%3D || 2011-10-18 11:00:57 | sub1 | AhnLab_V3 | Backdoor/Win32.Buterat | 20/40 (50%) | AS33139 | 66.49.205.222 | paul@canaca.com | CA | ARIN | CANACA-COM | 51dc08bef02b9cda973d4a96512fb59a | http://elegantweddingdecor.com/log || 2011-10-18 11:00:57 | sub1 | undef | unknown_html | 0/39 (0.0%) | AS39003 | 194.140.230.247 | hostmaster-ripe@blinck.net | NL | RIPE | NL-Blinck | f45e4b3bdef850cbb61e7f7fe00817b9 | http://orts.wixawin.com/orts/view?adid=1332326927&trackid=2034476680&publisherid=26591 || 2011-10-18 11:00:57 | sub1 | undef | unknown_html_google_malware | 0/40 (0.0%) | AS12695 | 92.38.199.150 | abuse@di-net.ru | RU | RIPE | DINETHOSTING-NEXT2 | bd9f219064dc08a37bf713b331572089 | http://vegaszoid.net//././getcmd.php?id=13441600&traff=0 || 2011-10-18 11:00:57 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 0a895c01d22eb0130e2c48fd7fc2ba3c | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B1669F2DCEACA885FE5F6C1DFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.6910517 || 2011-10-18 11:00:57 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 0a895c01d22eb0130e2c48fd7fc2ba3c | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B1669F2DCEACA885FE5F6C1DFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.6980097 || 2011-10-18 11:00:57 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 0a895c01d22eb0130e2c48fd7fc2ba3c | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B2F69C0DCE5CA9F5FF3F6CFDFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.9306604 || 2011-10-18 11:00:57 | sub1 | undef | unknown_html | 0/39 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 0a895c01d22eb0130e2c48fd7fc2ba3c | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B2F69C0DCE5CA9F5FF3F6CFDFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=3.214663E-02 || 2011-10-18 11:00:57 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 0a895c01d22eb0130e2c48fd7fc2ba3c | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B3969C0DCE4CA8D5FF5F6CFDFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.8421137 || 2011-10-18 11:00:57 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS30890 | 94.63.240.22 | abuse@evolva.ro | RO | RIPE | RO-EVOLVA-20080623 | 456749766100186d08296d9454d07870 | http://wooody27.com/x2NgvQurmY9OUe3PrlV+/FSZah1hhgaUCVKaiiyGyonFC4rw6vbtjSjVSX8yo+5Nq35VyJ3z/VxWRW8= || 2011-10-18 11:00:57 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS30890 | 94.63.240.22 | abuse@evolva.ro | RO | RIPE | RO-EVOLVA-20080623 | bbf58d376ea48d21aea2ab6d04abfe17 | http://wooody27.com/x2NgvQurmZEBVOvOt1Zhr0uePhlguA2LWzzK3A== || 2011-10-18 11:00:58 | sub10 | avira | PHP/C99Shell.F | 26/40 (65%) | AS13284 | 62.48.32.139 | abuse@playnet.it | IT | RIPE | BRT-NET | 0b82171f55e49df61245a4d51fad1af8 | http://framarcabine.it/downloads/ipays.jpg || 2011-10-18 11:00:59 | sub10 | avira | PHP/C99Shell.B | 22/40 (55%) | AS28753 | 91.191.165.229 | abuse@netdirekt.com.tr | DE | RIPE | TEKNOAS-DE-1 | 119b0cc905764bbefe55f544fc6d01ac | http://hackerbox.net/c99.txt || 2011-10-18 11:00:59 | sub10 | avira | HTML/Drop.Agent.AB | 28/40 (70%) | AS49544 | 188.95.50.112 | abuse@as49544.net | NL | RIPE | SERVERBOOST | 4bef364f3724d5175b863d12bec4e3ed | http://heartmylove.xtgem.com || 2011-10-18 11:00:59 | sub10 | avira | HTML/Crypted.Gen | 23/40 (57.5%) | AS15915 | 213.195.69.128 | info@irnetco.net | ES | RIPE | IBERCOMNET | 247580b87e0da541747cc89ed875f928 | http://ikor.es/tinymce/examples/hom9.html || 2011-10-18 11:00:59 | sub10 | avira | PHP/Small.C | 29/40 (72.5%) | AS13213 | 83.170.101.46 | abuse@uk2.net | GB | RIPE | UK2-NET | 55ea57e528e78cdc810fd58a7d7ccdc9 | http://spiramus.com/css/.etc/9991.jpg || 2011-10-18 11:00:59 | sub10 | avira | SPR/PHPInfo.Ag.1 | 21/40 (52.5%) | AS13213 | 83.170.101.46 | abuse@uk2.net | GB | RIPE | UK2-NET | c42ba5f52e31f7571679a3c21509d9c7 | http://spiramus.com/css/.etc/byz9991.jpg || 2011-10-18 11:00:59 | sub10 | AntiVir | TR/Dropper.Gen | 9/40 (22.5%) | AS29182 | 188.120.229.241 | abuse@ispserver.com | RU | RIPE | ISPSYSTEM-WEBDC | 5e4f744beeb211bba238f108f2ea7d00 | http://vzlom-turyaga.ru/Bag_na_shapki_i_talanty.rar || 2011-10-18 11:01:18 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS6939 | 66.220.17.154 | abuse@he.net | US | ARIN | HURRICANE-3 | ed20d984b757ad5291963389fc209864 | http://ayb.host127-0-0-1.com/abt?udata=WWW_7MSN:5.60msn:%20242692617:United%20States:program_started:129dc06d1f210ce3 || 2011-10-18 11:01:18 | sub1 | avira | TR/Malagent.A.2312 | 14/40 (35%) | AS12695 | 92.38.199.150 | abuse@di-net.ru | RU | RIPE | DINETHOSTING-NEXT2 | 953374f96093aee59270308e7b0331fe | http://vegaszoid.net/bin.exe || 2011-10-18 11:38:37 | sub1 | avira | TR/VBKrypt.dqgn.17 | 38/40 (95%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | be505df456a353f6759189736d3c9b82 | http://ru.letmedo.net:2011/ck3.jpg?t=0.9408686 || 2011-10-18 11:38:37 | sub1 | avira | WORM/VBNA.aotb | 38/40 (95%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 3420de55b8de4b837c9cc61a8c7a3dd0 | http://ru.letmedo.net:2011/myck.jpg?t=0.3754999 || 2011-10-18 11:38:37 | sub1 | avira | WORM/VBNA.aotb | 38/40 (95%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 3420de55b8de4b837c9cc61a8c7a3dd0 | http://ru.letmedo.net:2011/myck.jpg?t=0.4037592 || 2011-10-18 11:38:37 | sub1 | avira | WORM/VBNA.aotb | 38/40 (95%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 3420de55b8de4b837c9cc61a8c7a3dd0 | http://ru.letmedo.net:2011/myck.jpg?t=0.5793726 || 2011-10-18 11:38:37 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS15201 | 200.147.1.176 | l-registrobr-uol@corp.uol.com.br | BR | LACNIC | 001.109.184/0001-95 | efa2e86521a2924e0d8fe59f1ff8b7cf | http://smsfree.zip.net/js/jquery.prettyPhoto.js || 2011-10-18 11:38:37 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS24940 | 88.198.156.34 | abuse@hetzner.de | DE | RIPE | DE-HETZNER-20051227 | dd2708394071922626e6f12ac09410f9 | http://www.fastbot.de/index.php || 2011-10-18 11:38:37 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS24940 | 88.198.156.34 | abuse@hetzner.de | DE | RIPE | DE-HETZNER-20051227 | c83301425b2ad1d496473a5ff3d9ecca | http://www.fastbot.de/leer.html || 2011-10-18 12:00:38 | sub10 | Avast | JS:Agent-OG Trj | 15/40 (37.5%) | AS26347 | 67.205.0.90 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK7 | 6305e5f37b8f39c550db4d5ffb5c67b0 | http://kchohensee.com || 2011-10-18 12:00:38 | sub10 | avira | HTML/IFrame.adz | 13/40 (32.5%) | AS49635 | 213.192.233.217 | ripeadmin@bt-igs.es | ES | RIPE | BTIGS-SILICONTO-NET | 20e7a86ebd7132e7b1a7574e9c0c50c0 | http://serveislinguistics.es/ || 2011-10-18 12:00:48 | sub1 | undef | unknown_exe | 0/40 (0.0%) | AS8560 | 87.106.58.12 | abuse@1and1.com | DE | RIPE | SCHLUND-CUSTOMERS | edcbf64e0c5619d00221523bc9e00906 | http://www.online-usv.de/downloads/software/setup_gblconf.exe || 2011-10-18 12:00:48 | sub1 | Fortinet | W32/Yakes.B!tr | 2/40 (5%) | AS21788 | 173.212.240.130 | nic@hostnoc.net | US | ARIN | HOSTNOC-7BLK | 9b6dd7edd2b82976bc43ce033371015e | http://program.newsphoto.com/sssss.exe || 2011-10-18 12:00:48 | sub1 | CAT_QuickHeal | (Suspicious) - DNAScan | 5/40 (12.5%) | AS21788 | 173.212.240.130 | nic@hostnoc.net | US | ARIN | HOSTNOC-7BLK | c04da9f6d06a0cd88df7558b73d736bd | http://program.newsphoto.com/574-01.exe || 2011-10-18 12:00:48 | sub1 | avira | TR/Dropper.Gen2 | 17/40 (42.5%) | AS7366 | 199.7.177.244 | abuse@lemuriaco.com | US | ARIN | LEMURIA-COMMUNICATIONS | e010bbddcee55671cee7158cce3a8d58 | http://hotfile.com/dl/132393775/6d0af7e/xDx8.exe || 2011-10-18 12:00:48 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS7366 | 74.120.10.95 | abuse@lemuriaco.com | US | ARIN | LEMURIA-NET | d895e60d171d7579e836d475ee282f48 | http://s306.hotfile.com/get/fa8834b2a7864e8e3b0b29858aa8abe08890acdb/4e9d3bd9/2/67817cf3c6ba9385/7e42b2f/xDx8.exe || 2011-10-18 10:06:04 | sub8 | avira | TR/Dropper.Gen2 | 17/40 (42.5%) | AS7366 | 199.7.177.244 | abuse@lemuriaco.com | US | ARIN | LEMURIA-COMMUNICATIONS | e010bbddcee55671cee7158cce3a8d58 | http://hotfile.com/dl/132393775/6d0af7e/ || 2011-10-18 13:00:22 | sub10 | Avast | JS:Agent-KE Trj | 14/40 (35%) | AS38719 | 203.170.82.73 | admin@syra.com.au | AU | APNIC | Syra Networks | a77175358b7fa88c6a3b0a65334ebc77 | http://benjarongthairestaurant.com.au/ || 2011-10-18 13:00:23 | sub10 | avira | SPR/PHP.ID | 26/40 (65%) | AS26496 | 97.74.144.90 | noc@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 431a239a1f3c349ed1b1ea19597cd614 | http://comnetinc.net/images/id.txt?%3F%3F || 2011-10-18 13:00:23 | sub10 | BitDefender | JS:Trojan.JS.Agent.D | 7/40 (17.5%) | AS14935 | 199.102.46.131 | info@n-connect.net | US | ARIN | MONTI-NET-1 | 65cf9989990c770cd85c7d35c2d5c0e3 | http://labufadoradive.com/ || 2011-10-18 13:00:23 | sub10 | CAT_QuickHeal | (Suspicious) - DNAScan | 9/40 (22.5%) | AS35415 | 78.140.160.180 | ripe@webazilla.com | NL | RIPE | NL-WEBAZILLA-20070629 | 8068f6de1383f5d337367b7c1c4a89da | http://letitbit.net/skymonk_21933528_38.exe || 2011-10-18 13:26:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS9121 | 85.98.206.30 | abuse@ttnet.net.tr | tr | RIPE | TurkTelekom | deb61f7b9377e2c72692e63f02135908 | http://livejasminci.no-ip.biz:4444/123456.functions || 2011-10-18 13:26:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS49544 | 79.142.64.37 | abuse@nelux.net | NL | RIPE | ALTUSHOST-NET | a603464133ad854f971a635b2721337e | http://pajerolive.com/xscreen.php || 2011-10-18 13:35:33 | sub1 | avira | TR/Kazy.39445.2 | 32/40 (80%) | ASNA | 200.6.74.51 | claudio.concha@sonda.com | CL | LACNIC | CL-SOSA-LACNIC | 1b2b08b257dec77d7425435e85418aaf | http://200.6.74.51/images/index.asp || 2011-10-18 13:35:33 | sub1 | avira | TR/Kazy.39280.1 | 31/40 (77.5%) | AS803 | 206.163.231.222 | abuse@sasktel.net | CA | ARIN | SASK004 | f0cde02275929c8d09b6d70ac83ee4cd | http://206-163-231-222.msjw.static.sasknet.sk.ca/images/manger/index.asp?cliente=302930294343 || 2011-10-18 13:35:34 | sub1 | undef | unknown_html_RFI_php | 0/40 (0.0%) | AS11993 | 170.66.52.28 | csirt@BB.COM.BR | BR | LACNIC | BR-BBSA-LACNIC | 1bb2edd80ee72501947c8f378319f1b0 | http://aapj.bb.com.br/aapj/loginpfe.bb?seguranca.ID=sim || 2011-10-18 13:35:34 | sub1 | clamav | BC.Heuristic.Trojan.SusPacked.BF-6.A | 32/40 (80%) | AS30083 | 50.30.46.196 | s.wintz@hostingsolutionsinternational.com | US | ARIN | HSI-4 | 6ba77f273ab48c9958dc3c6ba812b62b | http://acessoriajpt.com/oes/cig/bot/frag/gost/fick/plot/ptos/arquivo.php || 2011-10-18 13:35:34 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS2914 | 209.157.71.213 | abuse@ntt.net | US | ARIN | NTTA-209-157 | 0e34c837ebed61965be709756323d38c | http://beyondbass.homestead.com/~site/javascript/site_statistics.ffhtml?RTK=%3famp%3bHSGOTOURL%3dhttp%253a%252f%252fweb4%252erealtracker%252ecom%252fnetpoll%252fjs%252fibc90006%252ejs || 2011-10-18 13:35:34 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS2914 | 209.157.71.213 | abuse@ntt.net | US | ARIN | NTTA-209-157 | f83e9bc43f108c73a68a62fb0b8ec723 | http://beyondbass.homestead.com/~site/javascript/site_statistics.ffhtml?RTK=?amp;HSGOTOURL=http%3a%2f%2fweb4%2erealtracker%2ecom%2fnetpoll%2fjs%2fibc90006%2ejs || 2011-10-18 13:35:34 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS2914 | 209.157.71.213 | abuse@ntt.net | US | ARIN | NTTA-209-157 | f83e9bc43f108c73a68a62fb0b8ec723 | http://beyondbass.homestead.com/~site/javascript/site_statistics.ffhtml?RTK=?amp;HSGOTOURL=http://web4.realtracker.com/netpoll/js/ibc90006.js || 2011-10-18 13:35:34 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS2914 | 209.157.71.213 | abuse@ntt.net | US | ARIN | NTTA-209-157 | dcdfb11bd844e19d5ab491f0d290c37c | http://beyondbass.homestead.com/~site/javascript/site_statistics.ffhtml?RTK=http%3a%2f%2fweb4%2erealtracker%2ecom%2fnetpoll%2fjs%2fibc90006%2ejs || 2011-10-18 13:35:34 | sub1 | avira | TR/Dldr.Banload.bnzk | 30/40 (75%) | AS38220 | 122.252.9.98 | system@ausweb.net.au | AU | APNIC | ausweb-syd | e875ba7be86600478c57b8d635b48ac5 | http://curiousmedia.com.au/components/com_ls/asscliente0492.php || 2011-10-18 13:35:35 | sub1 | AntiVir | TR/VB.Downloader.Gen | 13/40 (32.5%) | AS14618 | 107.20.207.62 | ec2-abuse@amazon.com | US | ARIN | AMAZON-EC2-8 | 7ea825f139c45bd3ede9da2103733a37 | http://dl.dropbox.com/u/43582291/Emotion.Card.cmd || 2011-10-18 13:35:35 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS2914 | 209.157.71.25 | abuse@ntt.net | US | ARIN | NTTA-209-157 | 0e34c837ebed61965be709756323d38c | http://free-genealogy-search.com/~site/javascript/site_statistics.ffhtml?RTK=%3famp%3bHSGOTOURL%3dhttp%253a%252f%252fweb4%252erealtracker%252ecom%252fnetpoll%252fjs%252fibc90006%252ejs || 2011-10-18 13:35:35 | sub1 | undef | unknown_html | 0/39 (0.0%) | AS2914 | 209.157.71.25 | abuse@ntt.net | US | ARIN | NTTA-209-157 | dcdfb11bd844e19d5ab491f0d290c37c | http://free-genealogy-search.com/~site/javascript/site_statistics.ffhtml?RTK=http%3a%2f%2fweb4%2erealtracker%2ecom%2fnetpoll%2fjs%2fibc90006%2ejs || 2011-10-18 13:35:35 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS2914 | 209.157.71.25 | abuse@ntt.net | US | ARIN | NTTA-209-157 | dcdfb11bd844e19d5ab491f0d290c37c | http://free-genealogy-search.com/~site/javascript/site_statistics.ffhtml?RTK=http://web4.realtracker.com/netpoll/js/ibc90006.js || 2011-10-18 13:35:35 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS3216 | 194.186.88.56 | abuse@gldn.net | RU | RIPE | RU-SOVINTEL-951205 | 999abaa3b5cbd41f6d8bbdb754df179c | http://gofi.nm.ru/Uk || 2011-10-18 13:35:35 | sub1 | avira | TR/Kazy.39280.1 | 31/40 (77.5%) | AS11486 | 206.112.117.25 | abuse-mail@verizonbusiness.com | US | ARIN | NETBLK-UUNETCBLK-112 | f0cde02275929c8d09b6d70ac83ee4cd | http://hardhat.mvista.com/images/manger/index.asp?cliente=233k0902 || 2011-10-18 13:35:35 | sub1 | avira | TR/Crypt.CFI.Gen | 36/39 (92.3%) | AS28271 | 201.33.17.119 | contato@datacorpore.com.br | BR | LACNIC | 008.210.265/0001-26 | 7138d90618f0d4a7bb75701ecd818255 | http://infodsccom.sitebr.net/Fotos001.JPG/ || 2011-10-18 13:35:35 | sub1 | undef | unknown_html | 0/39 (0.0%) | AS32392 | 98.131.41.96 | ipadmin@ecommerce.com | US | ARIN | ECOMMERCE-HOSTING | 14abaf932b9b7f48982da79bd1baffb2 | http://inventg.com/preview.htm || 2011-10-18 13:35:36 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS3216 | 194.186.88.37 | abuse@gldn.net | RU | RIPE | RU-SOVINTEL-951205 | 999abaa3b5cbd41f6d8bbdb754df179c | http://orcamento.pochta.ru/orcamento.com || 2011-10-18 13:35:36 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS3216 | 194.186.88.58 | abuse@gldn.net | RU | RIPE | RU-SOVINTEL-951205 | 999abaa3b5cbd41f6d8bbdb754df179c | http://pedidos.hotmail.ru/Aprovado__________JPG_________u4iui5-fotospages.Abir.Mensagem9887784485445.com || 2011-10-18 13:35:36 | sub1 | undef | unknown_html | 0/39 (0.0%) | AS41186 | 94.247.177.97 | abuse@ispfr.net | FR | RIPE | ISPFR | f6db4177b16a04ae1efb209f9334509d | http://ramesguyane.com/cache/page/paypal/formulaire/Formulaire_de_Paypal.html || 2011-10-18 13:35:37 | sub1 | F_Prot | HTML/Redir.C | 1/40 (2.5%) | AS32392 | 98.131.35.2 | ipadmin@ecommerce.com | US | ARIN | ECOMMERCE-HOSTING | a17d5254a1cec881eb5af59a2bb69980 | http://swathilands.com/home.htm || 2011-10-18 13:35:37 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS19404 | 208.67.179.167 | mike_dillon@questsys.com | US | ARIN | QUEST-MANAGED-SERVICES | e2cb6aaa2737bb8d3f342ce70159c0ac | http://webbox.com/download/streamer.asp?f=46142084&ses=11314049&p=741423&fn=230556782668[1] || 2011-10-18 13:35:37 | sub1 | avira | TR/Dldr.Delphi.Gen | 36/40 (90%) | AS33182 | 66.7.210.23 | abuse@dimenoc.com | US | ARIN | DIMECNET | 27a0de0ca8d80cbbcd4fa7c04c545c85 | http://www.3neek.com/Comprovantes.com || 2011-10-18 13:35:37 | sub1 | clamav | BC.Heuristic.Trojan.SusPacked.BF-6.A | 32/40 (80%) | AS30083 | 50.30.46.196 | s.wintz@hostingsolutionsinternational.com | US | ARIN | HSI-4 | 6ba77f273ab48c9958dc3c6ba812b62b | http://www.acessoriajpt.com/oes/cig/bot/frag/gost/fick/plot/ptos/arquivo.php || 2011-10-18 13:35:38 | sub1 | BitDefender | Trojan.Crypt.Delf.AG | 15/40 (37.5%) | AS16276 | 213.186.33.19 | abuse@ovh.net | FR | RIPE | OVH | 46a3c84fcfd99bfbba0309c917fe7da5 | http://www.bdsfrance.org/plus/cobranca/emissor.php?Boleto=Vencimento18102011_cliente/?id=cliente_devedor || 2011-10-18 13:35:38 | sub1 | avira | TR/Gendal.KD.358727 | 32/40 (80%) | AS32613 | 67.205.67.105 | abuse@noc.privatedns.com | CA | ARIN | IWEB-CL-T035-01SH | f3fbe37b60b9ebc289ccae45c3e1ccf0 | http://www.beijing.net.br/news/_notes/cb/MProtecao.php || 2011-10-18 13:35:38 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS2914 | 209.157.71.119 | abuse@ntt.net | US | ARIN | NTTA-209-157 | 0e34c837ebed61965be709756323d38c | http://www.criminal-info.com/~site/javascript/site_statistics.ffhtml?RTK=%3famp%3bHSGOTOURL%3dhttp%253a%252f%252fweb4%252erealtracker%252ecom%252fnetpoll%252fjs%252fibc90006%252ejs || 2011-10-18 13:35:38 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS2914 | 209.157.71.119 | abuse@ntt.net | US | ARIN | NTTA-209-157 | f83e9bc43f108c73a68a62fb0b8ec723 | http://www.criminal-info.com/~site/javascript/site_statistics.ffhtml?RTK=?amp;HSGOTOURL=http%3a%2f%2fweb4%2erealtracker%2ecom%2fnetpoll%2fjs%2fibc90006%2ejs || 2011-10-18 13:35:38 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS2914 | 209.157.71.119 | abuse@ntt.net | US | ARIN | NTTA-209-157 | dcdfb11bd844e19d5ab491f0d290c37c | http://www.criminal-info.com/~site/javascript/site_statistics.ffhtml?RTK=http%3a%2f%2fweb4%2erealtracker%2ecom%2fnetpoll%2fjs%2fibc90006%2ejs || 2011-10-18 13:35:38 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS2914 | 209.157.71.119 | abuse@ntt.net | US | ARIN | NTTA-209-157 | dcdfb11bd844e19d5ab491f0d290c37c | http://www.criminal-info.com/~site/javascript/site_statistics.ffhtml?RTK=http://web4.realtracker.com/netpoll/js/ibc90006.js || 2011-10-18 13:35:38 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS2914 | 209.157.71.118 | abuse@ntt.net | US | ARIN | NTTA-209-157 | 0e34c837ebed61965be709756323d38c | http://www.easyvirginiadivorce.com/~site/javascript/site_statistics.ffhtml?RTK=%3famp%3bHSGOTOURL%3dhttp%253a%252f%252fweb4%252erealtracker%252ecom%252fnetpoll%252fjs%252fibc90006%252ejs || 2011-10-18 13:35:38 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS2914 | 209.157.71.118 | abuse@ntt.net | US | ARIN | NTTA-209-157 | dcdfb11bd844e19d5ab491f0d290c37c | http://www.easyvirginiadivorce.com/~site/javascript/site_statistics.ffhtml?RTK=http%3a%2f%2fweb4%2erealtracker%2ecom%2fnetpoll%2fjs%2fibc90006%2ejs || 2011-10-18 13:35:38 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS2914 | 209.157.71.118 | abuse@ntt.net | US | ARIN | NTTA-209-157 | dcdfb11bd844e19d5ab491f0d290c37c | http://www.easyvirginiadivorce.com/~site/javascript/site_statistics.ffhtml?RTK=http://web4.realtracker.com/netpoll/js/ibc90006.js || 2011-10-18 13:35:39 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS2914 | 209.157.71.120 | abuse@ntt.net | US | ARIN | NTTA-209-157 | a89b30f43761acf09f774c163c25597a | http://www.guitare-nstructor.com/~site/javascript/site_statistics.ffhtml?RTK=%3famp%3bHSGOTOURL%3dhttp%253a%252f%252flayout1%252erealtracker%252ecom%252fincludes%252frt%255fs90022a%252ejs || 2011-10-18 13:35:39 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS2914 | 209.157.71.120 | abuse@ntt.net | US | ARIN | NTTA-209-157 | 86ec6fcddc657fa318bd2ee7c56697b7 | http://www.guitare-nstructor.com/~site/javascript/site_statistics.ffhtml?RTK=http%3a%2f%2flayout1%2erealtracker%2ecom%2fincludes%2frt%5fs90022a%2ejs || 2011-10-18 13:35:39 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS2914 | 209.157.71.120 | abuse@ntt.net | US | ARIN | NTTA-209-157 | 86ec6fcddc657fa318bd2ee7c56697b7 | http://www.guitare-nstructor.com/~site/javascript/site_statistics.ffhtml?RTK=http://layout1.realtracker.com/includes/rt_s90022a.js || 2011-10-18 13:35:39 | sub1 | avira | TR/Crypt.Delf.AG.248 | 15/40 (37.5%) | AS26347 | 69.163.199.5 | netops@dreamhost.com | US | ARIN | DREAMHOST-BLK9 | 7a17e4ae62bb1ec1786f72b79d74e393 | http://www.heng-ao.com/plugins/search/user_logout_SMPV.php??Boleto-16-10-2011 || 2011-10-18 13:35:39 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS2914 | 209.157.71.117 | abuse@ntt.net | US | ARIN | NTTA-209-157 | dcdfb11bd844e19d5ab491f0d290c37c | http://www.lawleybooks.com/~site/javascript/site_statistics.ffhtml?RTK=http%3a%2f%2fweb4%2erealtracker%2ecom%2fnetpoll%2fjs%2fibc90006%2ejs || 2011-10-18 13:35:40 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | a3154d4ad73ddb3747c0bb56e62f0294 | http://www.paris-update.com/fr/components/com_ws/atu06092011.php || 2011-10-18 13:35:40 | sub1 | avira | TR/Spy.Banker.256512.6 | 25/40 (62.5%) | AS46664 | 173.242.116.230 | info@volumedrive.com | US | ARIN | VOLUMEDRIVE | e119c61e2b0581233714aa64bbd1f47d | http://www.revel.inf.br/site2007/_pdf/virtual/sistemaseguro_/local/entrar/novo/cadastro/www.visa.com.br/vaidevisa/ || 2011-10-18 13:35:41 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS3216 | 194.186.88.37 | abuse@gldn.net | RU | RIPE | RU-SOVINTEL-951205 | 999abaa3b5cbd41f6d8bbdb754df179c | http://www.singin.ehay.comg.pochta.ru/webscr/identityconfirmation.asp || 2011-10-18 12:14:05 | sub8 | undef | unknown_html | 0/40 (0.0%) | AS15201 | 200.98.128.165 | l-registrobr-uol@corp.uol.com.br | BR | LACNIC | 001.109.184/0001-95 | 6180a70a435c49d5abb5915fc1e334c8 | http://200.98.128.165/plugins-youtube/ || 2011-10-18 13:12:10 | sub8 | AhnLab_V3 | Trojan/Win32.Qhost | 27/40 (67.5%) | AS41390 | 91.217.153.200 | abuse@uahoster.org | UA | RIPE | UAHOSTER-NET | a7369c754134a8f24744a2d8f69d2ecf | http://6lena43128.lexablog.ru/image/ || 2011-10-18 13:12:14 | sub8 | undef | Trojan.Generic.KDV.376697 | 0/39 (0.0%) | AS43470 | 91.203.223.38 | abuse@ncgroup.pl | PL | RIPE | NETWORK-COMMUNICATION | f0e8ed3c6c5dcb81263abcb9b6a023bb | http://91.203.223.38/ || 2011-10-18 14:00:22 | sub10 | avira | TR/Script.75 | 25/40 (62.5%) | AS8672 | 212.95.180.86 | ady@orbitel.bg | BG | RIPE | ORBITEL-SOF-POP | a05dfd7cca7771a7565a154d65f05ea2 | http://212.95.180.86:8080/web-console/tmp.txt?%3F || 2011-10-18 14:00:28 | sub10 | avira | EXP/CVE-2010-0806.Q | 9/39 (23.1%) | AS35908 | 174.139.2.186 | admin-arin@vpls.net | US | ARIN | VPLSNET | d5352f2795387cc8121a9147ba6ac450 | http://bak.iktuan.com/i.html || 2011-10-18 14:00:28 | sub10 | trendmicro | BKDR_PHP.SMM | 17/39 (43.6%) | AS32748 | 208.100.61.101 | noc@steadfast.net | US | ARIN | STEADFAST-2 | 508b97daf331487551e33506c79dcdee | http://bo.ucoz.com/image/tmp/x/david.txt?%3F || 2011-10-18 14:00:28 | sub10 | avira | PHP/Bot.A | 18/38 (47.4%) | AS32748 | 208.100.61.101 | noc@steadfast.net | US | ARIN | STEADFAST-2 | 2080b8424e37d633d0189399e35a9a1e | http://bo.ucoz.com/image/tmp/x/parepare.txt?%3F || 2011-10-18 14:00:28 | sub10 | avira | PHP/Bot.A | 18/39 (46.2%) | AS32748 | 208.100.61.101 | noc@steadfast.net | US | ARIN | STEADFAST-2 | de0a16d50b66958248a17d34a5cc9f79 | http://bo.ucoz.com/image/tmp/x/sangatta.txt?%3F || 2011-10-18 14:00:28 | sub10 | Avast | Win32:Malware-gen | 17/39 (43.6%) | AS45753 | 112.121.183.189 | ipadmin@simcentric.com | HK | APNIC | SIMCENT-HKG | 38ee482ce0464bee04fab8393c2a7fb9 | http://chengzhibing.com/2ch-library/viploda.jpg.lzh || 2011-10-18 14:00:28 | sub10 | Avast | HTML:Iframe-inf | 10/40 (25%) | AS18101 | 220.226.204.253 | Antiabuse.support@relianceada.com | IN | APNIC | RCOM | 765088fa7a9b6f03a65dff43405a54fd | http://dte.org.in/poly || 2011-10-18 14:00:29 | sub10 | BitDefender | JS:Trojan.JS.Agent.D | 7/40 (17.5%) | AS26496 | 72.167.232.202 | noc@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 1c2b3d5a8305283ce5103b6bed38001f | http://guadalajaravb.com/ || 2011-10-18 14:00:29 | sub10 | avira | JS/iFrame.GX | 14/40 (35%) | AS13749, AS21844, AS30315, AS36420 | 74.54.216.34 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 2c5589d6bde09d8195bd239b147223e4 | http://homeloans.inmetroatlanta.com/ || 2011-10-18 14:00:29 | sub10 | avira | HTML/Rce.Gen | 13/40 (32.5%) | AS12653 | 110.76.39.41 | helpdesk@apnic.net | AU | APNIC | APNIC-AP | d0bc007f8f8a9a467685dde6bc6c12cc | http://xingzuo.235m.com/data/xuexing/zt/yt.jpg || 2011-10-18 13:12:18 | sub8 | avira | HTML/Agent.adn | 19/40 (47.5%) | AS29587 | 193.109.184.81 | ops@schedom.be | BE | RIPE | SCHEDOM-EUR | 230e7290bd8c5beab057246943142313 | http://demulder.dommel.be/ || 2011-10-18 13:34:43 | sub17 | avira | HTML/Infected.WebPage.Gen2 | 6/40 (15%) | AS36420, AS30315, AS13749, AS21844, AS13884 | 67.15.50.35 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-EV1-14 | 568410db528776e35494623e02c8c1e6 | http://www.lphu.com/Ar/ || 2011-10-18 15:00:26 | sub10 | BitDefender | JS:Trojan.JS.Agent.D | 7/40 (17.5%) | AS26496 | 184.168.193.112 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | bc4c163fff58192385f9f1188053dcd9 | http://atlanticafghans.com/ || 2011-10-18 15:00:26 | sub10 | AntiVir | TR/Spy.35840.115 | 13/40 (32.5%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | 26b783b24919c44d0665b874fc7cca19 | http://mgeditions.fr/.sys/doc.php || 2011-10-18 15:00:26 | sub10 | avira | HTML/Agent.adn | 17/40 (42.5%) | AS47165 | 217.25.215.228 | | RU | RIPE | cityadmin | 04babfc875785136463d54a32e422b88 | http://mou119.omsk.edu.ru/ || 2011-10-18 14:30:38 | sub17 | avira | HTML/SrcInject.R.1 | 19/40 (47.5%) | AS26347 | 173.236.130.70 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | 748eb64c5e1af9ce48de245895e7abd3 | http://dushu.tietai.net/zaizai.html || 2011-10-18 16:40:04 | sub18 | avira | SPR/PHP.ID | 11/40 (27.5%) | AS9318 | 221.141.2.6 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | 54e3d089f7a0e93907c06a3341029b5c | http://show.ideatree.kr//test/flexupload/main.txt??? || 2011-10-18 13:12:33 | sub8 | undef | Trojan.Win32.Patched.lm | 0/40 (0.0%) | AS27611 | 38.101.236.63 | abuse@cogentco.com | US | ARIN | PSINETA | 35ff8f67cbc364bd82437e04f155fb9e | http://gpass1.com/download/OldVersions/ || 2011-10-18 16:41:50 | sub1 | AhnLab_V3 | Downloader/Win32.Homa | 14/40 (35%) | AS30060 | 69.58.188.40 | netadmin@verisign.com | US | ARIN | VRSNNETBLK-3 | 4daaa448a2ec2e1446d568d48bc419eb | http://bit.ly/flash_urgente?11:26?11:26:54 || 2011-10-18 16:42:23 | sub7 | undef | unknown_html_RFI | 0/40 (0.0%) | AS13335 | 173.245.61.120 | noc@cloudflare.com | US | ARIN | CLOUDFLARENET | a2f96b8907cba70c5f6806bd24e15479 | http://www.explorotel.com/doodads/loadhtml.php? || 2011-10-18 16:48:24 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS15169 | 209.85.148.141 | arin-contact@google.com | US | ARIN | GOOGLE | 43c7971140400bcf44d0537c2a9282b9 | http://sdesapio-conversiontracker.appspot.com/client/1.0.2/client.min.js || 2011-10-18 16:48:24 | sub1 | undef | unknown_exe | 0/40 (0.0%) | AS16276 | 213.186.33.87 | abuse@ovh.net | FR | RIPE | OVH | 340b1340275f6b54e7ac4dd186fa97a2 | http://www.meteo-labrise.fr || 2011-10-18 16:48:24 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4935 | 74.117.220.206 | nocl@directnic.com | KY | ARIN | DIRECTNIC-AMERICAS | 86823ee876bf50c3f1e0dea5a8890d1d | http://area-tsusho.com/killer.htm || 2011-10-18 16:48:24 | sub1 | AhnLab_V3 | Trojan/Win32.Jorik | 19/40 (47.5%) | AS30060 | 69.58.188.40 | netadmin@verisign.com | US | ARIN | VRSNNETBLK-3 | 7855a4a2f3f85421642b36b405cb1676 | http://bit.ly/qa9eXq || 2011-10-18 16:48:24 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS12871 | 94.229.51.29 | abuse@concepts.nl | NL | RIPE | CONCEPTS-CUST-ADSL | c3f913f6a83b152cf8261bab44361715 | http://brakeoutradio.nl || 2011-10-18 16:55:20 | sub1 | avira | TR/Crypt.XDR.Gen | 36/40 (90%) | AS23650 | 61.147.99.179 | abuse@jsinfo.net | CN | APNIC | CHINANET-JS | 69f32b85f1de3c41948ae51b4ba3f4bb | http://61.147.99.179:81/gggg_r.jpg?t=0.4045374 || 2011-10-18 16:55:20 | sub1 | avira | TR/Crypt.XDR.Gen | 37/40 (92.5%) | AS23650 | 61.147.99.179 | abuse@jsinfo.net | CN | APNIC | CHINANET-JS | 69f32b85f1de3c41948ae51b4ba3f4bb | http://61.147.99.179:81/gggg_r.jpg?t=0.5340692 || 2011-10-18 16:55:20 | sub1 | avira | TR/Crypt.XDR.Gen | 37/40 (92.5%) | AS23650 | 61.147.99.179 | abuse@jsinfo.net | CN | APNIC | CHINANET-JS | 69f32b85f1de3c41948ae51b4ba3f4bb | http://61.147.99.179:81/gggg_r.jpg?t=0.6294062 || 2011-10-18 16:55:20 | sub1 | avira | TR/Crypt.XDR.Gen | 37/40 (92.5%) | AS23650 | 61.147.99.179 | abuse@jsinfo.net | CN | APNIC | CHINANET-JS | 69f32b85f1de3c41948ae51b4ba3f4bb | http://61.147.99.179:81/gggg_r.jpg?t=0.9493372 || 2011-10-18 16:55:20 | sub1 | avira | TR/Crypt.XDR.Gen | 37/40 (92.5%) | AS23650 | 61.147.99.179 | abuse@jsinfo.net | CN | APNIC | CHINANET-JS | 69f32b85f1de3c41948ae51b4ba3f4bb | http://61.147.99.179:81/gggg_r.jpg?t=2.117556E-02 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS21740 | 69.64.147.243 | dmnoc@demandmedia.com | US | ARIN | ENOM-BLOCK | d0aa9d004a9431c68925945808b5775e | http://outstandingtaxpro.com/outstandingtaxpro.com.js || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS38732 | 115.146.127.12 | | VN | APNIC | datacentercustomer-net | c0f4c6a0a1e63d40d96447218ad6ebb1 | http://phongcach.us/ || 2011-10-18 16:55:20 | sub1 | avira | TR/VBKrypt.dqgn.17 | 39/40 (97.5%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | be505df456a353f6759189736d3c9b82 | http://ru.letmedo.net:2011/ck3.jpg?t=0.2226526 || 2011-10-18 16:55:20 | sub1 | avira | TR/VBKrypt.dqgn.17 | 39/40 (97.5%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | be505df456a353f6759189736d3c9b82 | http://ru.letmedo.net:2011/ck3.jpg?t=0.9616053 || 2011-10-18 16:55:20 | sub1 | avira | WORM/VBNA.aotb | 38/40 (95%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 3420de55b8de4b837c9cc61a8c7a3dd0 | http://ru.letmedo.net:2011/myck.jpg?t=0.2781336 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS3462 | 61.220.228.138 | network-adm@hinet.net | TW | APNIC | HINET | 05f60b9c3ca8212c8ebeb166d58bc937 | http://tdupdates.freeddns.com/000C/b151343.jpg || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS3462 | 61.220.228.138 | network-adm@hinet.net | TW | APNIC | HINET | 05f60b9c3ca8212c8ebeb166d58bc937 | http://tdupdates.freeddns.com/000C/c148656.asp || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 5a421a0c82d61ae51471ac24ac2353b8 | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B1669F2DCEACA885FE5F6C1DFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=6.946963E-02 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 5a421a0c82d61ae51471ac24ac2353b8 | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B2469C2DCEFCA9C5FF8F6C1DFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.2068445 |+---------------------+-------------+---------------+--------------------------------------+---------------+---------------------------------------------+-----------------+-------------------------------------------+---------+---------+----------------------------------+----------------------------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+200 rows in set (0.01 sec)
+---------------------+-------------+---------------+---------------------------------------+---------------+---------------------------------------+-----------------+-----------------------------------+---------+--------+---------------------------------+----------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| date | contributor | scanner | virusname | vt_score | AS | review | email | country | source | netname | md5sum | url |+---------------------+-------------+---------------+---------------------------------------+---------------+---------------------------------------+-----------------+-----------------------------------+---------+--------+---------------------------------+----------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+| 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 5a421a0c82d61ae51471ac24ac2353b8 | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B2469C2DCEFCA9C5FF8F6C1DFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.4357263 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 5a421a0c82d61ae51471ac24ac2353b8 | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B2469C2DCEFCA9C5FF8F6C1DFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.5443231 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 5a421a0c82d61ae51471ac24ac2353b8 | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B2469C2DCEFCA9C5FF8F6C1DFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.6471063 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 5a421a0c82d61ae51471ac24ac2353b8 | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B2469C2DCEFCA9C5FF8F6C1DFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.7555506 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 5a421a0c82d61ae51471ac24ac2353b8 | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B2469C2DCEFCA9C5FF8F6C1DFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.7779657 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 5a421a0c82d61ae51471ac24ac2353b8 | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B2869F1DCE8CA835FF2F6D9DFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.2874872 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 5a421a0c82d61ae51471ac24ac2353b8 | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B2869F1DCE8CA835FF2F6D9DFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.3176844 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 5a421a0c82d61ae51471ac24ac2353b8 | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B2869F1DCE8CA835FF2F6D9DFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.3228876 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 5a421a0c82d61ae51471ac24ac2353b8 | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B2B69F4DC9ECA8C5FF1F6DADFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.335705 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 5a421a0c82d61ae51471ac24ac2353b8 | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B2B69F4DC9ECA8C5FF1F6DADFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.5367548 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 5a421a0c82d61ae51471ac24ac2353b8 | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B2B69F4DC9ECA8C5FF1F6DADFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.9548456 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 5a421a0c82d61ae51471ac24ac2353b8 | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B2F69C0DCE5CA9F5FF3F6CFDFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.2304956 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 5a421a0c82d61ae51471ac24ac2353b8 | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B2F69C0DCE5CA9F5FF3F6CFDFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.4058039 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 5a421a0c82d61ae51471ac24ac2353b8 | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B2F69C0DCE5CA9F5FF3F6CFDFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.5506403 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 5a421a0c82d61ae51471ac24ac2353b8 | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B2F69C0DCE5CA9F5FF3F6CFDFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.7026026 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 5a421a0c82d61ae51471ac24ac2353b8 | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B2F69C0DCE5CA9F5FF3F6CFDFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.8947565 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 5a421a0c82d61ae51471ac24ac2353b8 | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B3969C0DCE4CA8D5FF5F6CFDFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.1478845 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 5a421a0c82d61ae51471ac24ac2353b8 | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B3969C0DCE4CA8D5FF5F6CFDFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.3716852 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 5a421a0c82d61ae51471ac24ac2353b8 | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B3969C0DCE4CA8D5FF5F6CFDFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.4773828 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 5a421a0c82d61ae51471ac24ac2353b8 | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B3969C0DCE4CA8D5FF5F6CFDFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.581875 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 5a421a0c82d61ae51471ac24ac2353b8 | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B3969C0DCE4CA8D5FF5F6CFDFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.9492304 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 5a421a0c82d61ae51471ac24ac2353b8 | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B3969C0DCE4CA8D5FF5F6CFDFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=3.162783E-02 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 5a421a0c82d61ae51471ac24ac2353b8 | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B3969C1DCEBCA885FFAF6DADFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.1061975 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 5a421a0c82d61ae51471ac24ac2353b8 | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B3969C1DCEBCA885FFAF6DADFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.3756067 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 5a421a0c82d61ae51471ac24ac2353b8 | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B3B69C1DCEDCA835FF3F6D1DFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.4074213 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 5a421a0c82d61ae51471ac24ac2353b8 | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B3B69C1DCEDCA835FF3F6D1DFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.4871332 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 5a421a0c82d61ae51471ac24ac2353b8 | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B3B69C1DCEDCA835FF3F6D1DFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.8511316 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS4134 | 60.190.223.60 | anti-spam@mail.sxptt.zj.cn | CN | APNIC | NINBO-LANZHONG-LTD | 5a421a0c82d61ae51471ac24ac2353b8 | http://w.nucleardiscover.com:888/list.php?c=B4AC885F94224AE64DAAC6EE0346C213D049B58E0B3B69C1DCEDCA835FF3F6D1DFE10E13F3845D3386FFC45E0D4897B5778D4CBB9FE6A5FF432C&v=2&t=0.8706324 || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS8551 | 82.80.204.63 | abuse@bezeqint.net | IL | RIPE | IL-BEZEQ-INTERNATIONAL-20030512 | e45e8d541d0d8f2aadac0832634fb484 | http://www5.photojoy.com/photojoy/pjsetup/201110180613/affiliates/ironsource/installer/setupscript.7z || 2011-10-18 16:55:20 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS46664 | 173.242.116.230 | info@volumedrive.com | US | ARIN | VOLUMEDRIVE | 4477ee3b5ddf30b9cfe143054d3c5121 | http://www.revel.inf.br/site2007/_pdf/1/sv/da/logo_peq.bmp || 2011-10-18 17:00:28 | sub1 | avira | TR/Crypt.XPACK.Gen | 12/40 (30%) | AS21788 | 173.212.240.130 | nic@hostnoc.net | US | ARIN | HOSTNOC-7BLK | 30bb645648807ff3e5716f441ef84a29 | http://program.newsphoto.com/sl18.exe || 2011-10-18 18:00:16 | sub7 | avira | PHP/IRCBOT.AO | 24/40 (60%) | AS11798 | 74.220.207.151 | abuse@bluehost.com | US | ARIN | BLUEHOST-NETWORK-2 | 53cf345faad82a2dfb72c4528aab2271 | http://musicclubs.net/libraries/pear/rfiid.txt? || 2011-10-18 18:40:09 | sub18 | avira | PHP/Spy.SysInfo.C | | AS25137 | 82.102.6.103 | abuse@nfsi.pt | PT | RIPE | PT-NFSI-20020801 | 0e028c1820df44d5985b95b0eb7ce296 | http://www.joca.com.pt/images/id.jpg? || 2011-10-18 18:40:10 | sub14 | avira | TR/Dldr.Small.AO.66 | | AS4766 | 121.175.17.67 | abuse@kornet.net | KR | APNIC | KORNET-KR | 7878c85c4244890404a2a87c8f530a0c | http://www.highestcc.co.kr/bbs/images/titlebar.gif || 2011-10-18 18:40:10 | sub14 | avira | TR/DZ.A.1 | | AS51559 | 95.173.176.222 | netadmin@ni.net.tr | TR | RIPE | TR-NETINTERNET | 3be20db19d5fa62cf0587eb92ad19fa6 | http://www.idealask.net/idealask.exe || 2011-10-18 19:00:55 | sub10 | undef | unknown_html_google_malware | | AS26496 | 72.167.232.83 | noc@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | a0c4348a73baf2bf0fbb6ca12541498b | http://consumercalculator.org/ || 2011-10-18 19:00:56 | sub10 | undef | unknown_html_RFI_shell | | AS4323 | 207.250.188.144 | abuse@twtelecom.net | US | ARIN | TWTC-NETBLK-6 | edf2ccfa6fa7ce0a9e4463015ca861c3 | http://icpatlanta.com/ || 2011-10-18 19:01:11 | sub1 | avira | ADWARE/Adware.Gen | | AS40366 | 174.35.5.5 | support@cdnetworks.com | US | ARIN | CDNET-USA-1 | 2c969afbe71f35571d11e30f1e854b29 | http://upgrade.questscantwo.com/download/questscan/1_92/questscan-setup.exe || 2011-10-18 18:23:26 | sub5 | avira | PHP/Spy.SysInfo.C | | AS25137 | 82.102.6.103 | abuse@nfsi.pt | PT | RIPE | PT-NFSI-20020801 | 0e028c1820df44d5985b95b0eb7ce296 | http://joca.com.pt/images/id.jpg? || 2011-10-18 19:13:21 | sub1 | undef | unknown_html | | AS52201 | 109.68.191.207 | alexander.kondrat@tel.ru | RU | RIPE | TCTEL-191 | b3f7d9c9c0c21a5f6ba79871baf6f5fc | http://109.68.191.207/red/1.jpg || 2011-10-18 19:13:21 | sub1 | undef | unknown_html | | AS15201 | 187.17.98.7 | l-registrobr-uol@corp.uol.com.br | BR | LACNIC | 001.109.184/0001-95 | c47905181ba5191fb88da3343323002e | http://analisescl.dominiotemporario.com/arquivos/md10.swf || 2011-10-18 19:13:21 | sub1 | undef | unknown_html | | AS15201 | 187.17.98.7 | l-registrobr-uol@corp.uol.com.br | BR | LACNIC | 001.109.184/0001-95 | 3ef00c4f15240152777773e07c2f0c48 | http://analisescl.dominiotemporario.com/arquivos/md20.swf || 2011-10-18 19:13:21 | sub1 | undef | unknown_html_RFI_php | | AS15201 | 187.17.98.7 | l-registrobr-uol@corp.uol.com.br | BR | LACNIC | 001.109.184/0001-95 | 71c20b17024ac4d5d741e567033dbe68 | http://analisescl.dominiotemporario.com/arquivos/md30.swf || 2011-10-18 19:13:21 | sub1 | undef | unknown_html | | AS15201 | 187.17.98.7 | l-registrobr-uol@corp.uol.com.br | BR | LACNIC | 001.109.184/0001-95 | e183e956ef03c25df72a03ccbaf83679 | http://analisescl.dominiotemporario.com/arquivos/md40.swf || 2011-10-18 19:13:21 | sub1 | undef | unknown_html | | AS15201 | 187.17.98.7 | l-registrobr-uol@corp.uol.com.br | BR | LACNIC | 001.109.184/0001-95 | ec0753f373d51fa678e3d1be85f02e62 | http://analisescl.dominiotemporario.com/arquivos/md50.swf || 2011-10-18 19:13:21 | sub1 | undef | unknown_html | | AS15201 | 187.17.98.7 | l-registrobr-uol@corp.uol.com.br | BR | LACNIC | 001.109.184/0001-95 | 9ef2374f0d38a47bab67e9cf82080a31 | http://analisescl.dominiotemporario.com/arquivos/md60.swf || 2011-10-18 19:13:21 | sub1 | undef | unknown_html | | AS15201 | 187.17.98.7 | l-registrobr-uol@corp.uol.com.br | BR | LACNIC | 001.109.184/0001-95 | 48d65752a44fd5d5ce34f3cb6948a1a2 | http://analisescl.dominiotemporario.com/arquivos/md70.swf || 2011-10-18 19:13:21 | sub1 | undef | unknown_html | | AS32613 | 70.38.8.148 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-05 | 24efa2ff87e7e52f722030e19268faf0 | http://clients.newbrandtest.com/./data/configs_micro_by_network/1302/US/config.cfg.ac4db5f8 || 2011-10-18 19:13:21 | sub1 | undef | unknown_html | | AS33182 | 66.7.204.188 | abuse@dimenoc.com | US | ARIN | DIMECNET | ceaabb4f9dabfb15d14dc4edd98870c3 | http://policlinicodelsur.com/ostia.txt || 2011-10-18 19:13:21 | sub1 | undef | unknown_html | | AS36420, AS30315, AS13749, AS21844 | 174.133.204.122 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-15 | 1589ae6efd5ce48f9d777e470bdbfa1c | http://st1.freeonlineusers.com/on2.php?id=336717 || 2011-10-18 19:30:12 | sub1 | undef | unknown_html_google_malware | | AS32244 | 69.167.173.91 | abuse@liquidweb.com | US | ARIN | LIQUIDWEB-9 | 49afa7c3402ac00bc47830bb27609ae6 | http://www.littlefire.in/m0dp0.html || 2011-10-18 13:12:54 | sub8 | undef | Trojan-Downloader.Win32.Murlo.lnf | | AS51377 | 31.193.1.10 | nic@hostnoc.net | GB | RIPE | UK-BURSTNET-20110421 | 57652e2c976cf2885395579c3a95ad1c | http://just-skype.ru/ || 2011-10-18 13:13:03 | sub8 | undef | Monitor.Win32.Perflogger.fq | | AS16276 | 178.33.142.202 | abuse@ovh.net | FR | RIPE | FR-OVH-20100119 | e7b2e09cf392502c5a3a617bded6bfb9 | http://programa.com/download/ || 2011-10-18 19:59:29 | sub1 | undef | unknown_html | | AS32613 | 70.38.12.239 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-05 | ee0e1145aaae76894b49faa49ed4959e | http://blogsurfistinha.com.br/act/leo.php || 2011-10-18 20:00:15 | sub10 | undef | unknown_html | | AS25151 | 85.158.203.127 | abuse@cyso.net | NL | RIPE | NL-CYSO-YOURHOSTING | bc65b0cd759d5cea4508609192cb2887 | http://hobbywol.nl/ || 2011-10-18 20:00:16 | sub10 | undef | unknown_html_RFI_eval | | AS25532 | 83.222.20.157 | abuse@masterhost.ru | RU | RIPE | Seo-Servis-dot-ru | c9a402a9d28fe3e7c707e77e80251eae | http://malin-library.by.ru/menu.js || 2011-10-18 20:35:25 | sub1 | undef | unknown_html | | AS4134 | 222.88.93.170 | ip@hntele.com | CN | APNIC | CHINANET-HA | b63a1767c771045d0d42b2ae5f959eba | http://shared.ydstatic.com/wand/dictwandblank.html?t=2011.10.18.19.13.09.147 || 2011-10-18 20:35:25 | sub1 | undef | unknown_html | | AS4766 | 14.63.217.88 | abuse@kornet.net | KR | APNIC | KORNET | b300028c51ee4f63d611c392d5436a81 | http://s.winggo.co.kr/SM2/sm00101.dat || 2011-10-18 20:35:25 | sub1 | undef | unknown_html | | AS4766 | 14.63.217.88 | abuse@kornet.net | KR | APNIC | KORNET | b300028c51ee4f63d611c392d5436a81 | http://s.winggo.co.kr/SM4/sm00000.dat || 2011-10-18 20:35:25 | sub1 | undef | unknown_html | | AS9318 | 222.234.2.58 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | 97950f30892bc89463f495590f32982d | http://up.enterpop.co.kr/projelist3.php || 2011-10-18 20:35:25 | sub1 | undef | unknown_html | | AS38700 | 115.68.4.189 | network@smileserv.com | KR | APNIC | SMILESERV-KR | 3ca0e09b624b4fab13c13d9f82ceb6f9 | http://up.finalget.co.kr/finalget.zip || 2011-10-18 20:35:25 | sub1 | avira | ADWARE/Adware.Gen | | AS40366 | 174.35.5.11 | support@cdnetworks.com | US | ARIN | CDNET-USA-1 | 5f6c46cca0dd63eba8a830c5de297da2 | http://upgrade.questscantwo.com/download/QuestScan/1_93/upgrade.cab?upg=path || 2011-10-18 20:35:25 | sub1 | undef | unknown_html | | AS196763 | 109.234.111.134 | bkolodziejczyk@az.pl | PL | RIPE | AZPL-1 | c1af2c24f016ff795184c659044828c5 | http://www.katolicki.eu/images/top-domenya00.jpg || 2011-10-18 20:39:46 | sub11 | trendmicro | BKDR_PHPBOT.SM | | AS9931 | 122.155.0.20 | support@idc.cattelecom.com | TH | APNIC | CAT-IDC-Service | ba1eabc14a9c797c0bbee82583dd36c6 | http://rvsa.org/images/icon/images/daster.jpg || 2011-10-18 20:39:46 | sub11 | avira | PERL/Shellbot.B.3 | | AS9931 | 122.155.0.20 | support@idc.cattelecom.com | TH | APNIC | CAT-IDC-Service | 0f469d01aabdc41eb3133787251d7118 | http://rvsa.org/images/icon/images/topi.jpg || 2011-10-18 20:39:46 | sub11 | avira | PHP/Spy.SysInfo.C | | AS25137 | 82.102.6.103 | abuse@nfsi.pt | PT | RIPE | PT-NFSI-20020801 | 0e028c1820df44d5985b95b0eb7ce296 | http://www.joca.com.pt/images/id.jpg || 2011-10-18 20:39:46 | sub11 | avira | PHP/C99Shell.F | | AS13213 | 83.170.101.46 | abuse@uk2.net | GB | RIPE | UK2-NET | 136c55995f28e98a1cd789dd986b0113 | http://www.spiramus.com/css/.etc/byz.jpg || 2011-10-18 13:13:07 | sub8 | undef | W32/SMShoax.H2.gen!Eldorado | | AS33182 | 199.168.184.154 | abuse@dimenoc.com | US | ARIN | DIMENOC | 4d210ab852bcb4d0b942db8ab99aa4c7 | http://sitedejogosonlines.com.br/download/ || 2011-10-18 13:13:18 | sub8 | undef | HEUR:Trojan-Downloader.Win32.Generic | | AS41665 | 194.54.88.93 | abuse@hosting.ua | UA | RIPE | hostingua | b107d86641c9c24024412f0b791b0418 | http://skachat-vksaver.ru/ || 2011-10-18 13:13:18 | sub8 | undef | Trojan.Generic.KD.377299 | | AS41671 | 194.54.80.222 | noc@server.ua | UA | RIPE | DC-SERVER-UKRAINE | 2e21ec166489e48b39cb25d935e3da0b | http://skypesoft.net/ || 2011-10-18 21:00:16 | sub10 | avira | TR/Dldr.Delphi.Gen | | AS33182 | 66.7.210.23 | abuse@dimenoc.com | US | ARIN | DIMECNET | 27a0de0ca8d80cbbcd4fa7c04c545c85 | http://3neek.com/Comprovantes.com || 2011-10-18 21:00:16 | sub10 | undef | unknown_html_RFI_shell | | AS3595 | 209.217.225.149 | greg@jaguarpc.com | US | ARIN | LH-GOLD-NETWORK | 940b4eeee82a29d8bce131441932ee0d | http://4-sterne-hotel-italien.de/ || 2011-10-18 21:00:16 | sub10 | avira | TR/Gendal.KD.358727 | | AS32613 | 67.205.67.105 | abuse@noc.privatedns.com | CA | ARIN | IWEB-CL-T035-01SH | f3fbe37b60b9ebc289ccae45c3e1ccf0 | http://beijing.net.br/news/_notes/cb/MProtecao.php || 2011-10-18 21:00:16 | sub10 | avira | TR/ATRAPS.Gen | | AS8660 | 212.48.16.236 | abuse@matrix.it | IT | RIPE | IT-MATRIX-980216 | 934412d6b215778d0325af1ad517ba0c | http://comprascoletiva.xoom.it/gvr/promotion.php || 2011-10-18 21:00:16 | sub10 | avira | HTML/Dldr.Agent.KH | | AS32613 | 70.38.77.49 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-05 | dfa8587c6d7682f391b4d4c600b09631 | http://dgkpolice.gov.pk/ || 2011-10-18 21:00:16 | sub10 | avira | TR/Delf.Inject.262656.3 | | AS27715 | 187.45.195.184 | regcom@locaweb.com.br | BR | LACNIC | 002.351.877/0001-52 | 859417d235acd31f56c8a2d6d3ffc717 | http://digi-center.net/admin/backups/moduloa.swf || 2011-10-18 21:00:16 | sub10 | undef | unknown_file_$[170]/AskSearchAsst.exe | | AS26496 | 46.252.192.172 | abuse@godaddy.com | NL | RIPE | GDNL-46-252-192-0-TO-199-255 | 23b40ae68f22ff9c0634ef740de595b3 | http://flash-player-free.net/download/Flash-Player-Setup.exe || 2011-10-18 21:00:16 | sub10 | avira | HTML/Dldr.Agent.OB | | AS4134 | 117.41.228.200 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-JX | 024ea80b85664285a9afbcb3c1abaee5 | http://gt868.com/ || 2011-10-18 21:00:16 | sub10 | avira | JS/iFrame.GX | | AS13749, AS21844, AS30315, AS36420 | 74.54.216.34 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 15b3bd2e22fd96a9c7b10c7e9eb6a19b | http://healthfood.inmetroatlanta.com/ || 2011-10-18 21:00:16 | sub10 | avira | JS/iFrame.GX | | AS13749, AS21844, AS30315, AS36420 | 74.54.216.34 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 21a1776252ea4c15046460bd2be90a5b | http://homesforsale.inmetroatlanta.com/ || 2011-10-18 21:00:16 | sub10 | avira | TR/Crypt.XPACK.Gen | | AS31147 | 93.186.170.59 | abuse@inline.de | DE | RIPE | VPS4LESS-CUSTOMERS | 96d827f9ceffd2e58fa7092f7e424dff | http://inware.in/aslpatch10.exe || 2011-10-18 21:00:16 | sub10 | undef | unknown_html_RFI_eval | | AS25532 | 83.222.20.157 | abuse@masterhost.ru | RU | RIPE | Seo-Servis-dot-ru | 1b99840d93b776f76bb52b30e5ca51ad | http://kisastar.by.ru/viktor.js || 2011-10-18 21:00:16 | sub10 | avira | JS/Dldr.Pegel.BG | | AS13238 | 213.180.199.46 | abuse@yandex.ru | RU | RIPE | YANDEX-199 | 1bf30d89dfcbbf02e738b040d0d1ceb3 | http://lichodeev24.narod.ru/swfobject.js || 2011-10-18 21:00:16 | sub10 | undef | unknown_html | | AS38700 | 115.68.4.116 | network@smileserv.com | KR | APNIC | SMILESERV-KR | 1af3bf46d7db663f8cbd5d2fb4c65e7a | http://save21.pe.kr/a/download/exe/ver21/riaover_6.exe || 2011-10-18 21:00:16 | sub10 | undef | unknown_html | | AS38700 | 115.68.4.116 | network@smileserv.com | KR | APNIC | SMILESERV-KR | 7e777980e85387b481be33ac22d6377e | http://save21.pe.kr/a/download/exe/ver21/update.exe || 2011-10-18 21:00:17 | sub10 | avira | JS/Redirector.JM | | AS23352 | 205.234.129.218 | support@servercentral.net | US | ARIN | SCN-4 | 66010d1aacd956d0a4909f5a828132b4 | http://totocastro.com/ || 2011-10-18 21:00:17 | sub10 | avira | TR/Dldr.Banload.aci.33 | | AS3216 | 194.186.88.58 | abuse@gldn.net | RU | RIPE | RU-SOVINTEL-951205 | 4066475157964053a290394d2bc3e9c5 | http://voxcard2011.hotmail.ru/top.txt || 2011-10-18 21:00:17 | sub10 | avira | HTML/Infected.WebPage.Gen2 | | AS24544 | 182.237.3.153 | admin@pangintl.com | HK | APNIC | PANGNET-AS-AP | 587e56613d2ffe2c0ac738196f99bb86 | http://wuwmz.biz/ || 2011-10-18 21:00:17 | sub10 | undef | unknown_exe | | AS21013 | 85.31.1.45 | hostmaster@itandtel.at | AT | RIPE | NETZPIONIER-AT-NET-03 | ae7cf3e10cd4fc5249a6cbc4a99e772b | http://zigarrenclub.at/fotos.exe || 2011-10-18 21:00:17 | sub10 | avira | JS/Agent.zbh | | AS36420, AS30315, AS13749, AS21844 | 174.132.166.226 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-15 | b86b54bdb2168d796b170cb01d8d0a41 | http://zyprexa-lawyer.com/ || 2011-10-18 21:00:26 | sub1 | undef | unknown_html | | AS2914 | 207.56.151.111 | abuse@ntt.net | US | ARIN | NTTA-207-56 | 06346df906d0de3ce4b98ea3b8cf4cdb | http://www.beastropicaldesign.com/http://www.paypal.com/index2.html || 2011-10-18 21:10:26 | sub20 | undef | unknown_html | | AS11172 | 201.151.191.146 | inetadmin@alestra.net.mx | MX | LACNIC | MX-ALES-LACNIC | 1247bed7f36e1826c483aa58d06197f4 | http://201.151.191.146/.system/system || 2011-10-18 21:10:26 | sub20 | undef | unknown_html_RFI_shell | | AS8660 | 212.48.16.132 | abuse@matrix.it | IT | RIPE | IT-MATRIX-980216 | 4e3d38f3202995ad3db66953c1994b9d | http://bariloche.xoom.it/.logs/index.php || 2011-10-18 21:10:26 | sub20 | undef | unknown_html | | AS262707 | 187.109.161.14 | joaomartins2000@hotmail.com | BR | LACNIC | 007.303.646/0001-97 | 44a1e117c7675c4644809afe1feff6b9 | http://www.gbandeirante.com.br/server.php || 2011-10-18 21:10:26 | sub20 | undef | unknown_html | | AS38700 | 115.68.4.116 | network@smileserv.com | KR | APNIC | SMILESERV-KR | 6b1b2da9476325e2b01f56a1c88e0772 | http://www.save21.pe.kr/a/download/exe/ver21/uninstall_v21.exe || 2011-10-18 13:14:22 | sub8 | undef | W32/-210!Eldorado | | AS22576 | 72.232.201.138 | abuse@layeredtech.com | US | ARIN | LAYERED-TECH- | dd5d02cc750d2855cf6f6c5bf5bea587 | http://www.contt.com.br/images/stories/fruit/ || 2011-10-18 22:00:17 | sub10 | avira | TR/Crypt.XPACK.Gen | | AS46475 | 69.162.92.174 | abuse@limestonenetworks.com | US | ARIN | LSN-DLLSTX-2 | 52ce7dffd031b2b8c57a0db4edcf1cbf | http://69.162.92.174/~luna/docxenv070411.cpl || 2011-10-18 22:00:18 | sub10 | clamav | PUA.Packed.ASPack | | AS6760 | 77.68.68.238 | abuse@ripe.net | EU | RIPE | EU-ZZ-80-93 | 3696c10a9492210764aaa172720d85be | http://bunchacunce.org/stash/patch.exe || 2011-10-18 22:00:18 | sub10 | avira | ADWARE/SMSHoax.29.9 | | AS42831 | 78.110.160.194 | abuse@ukservers.com | GB | RIPE | UK-UKSERVERS-20070814 | 33f85e67b1b4da2835b5bcdb26d8e797 | http://codec-download.ru/WinRAR%204.0.exe || 2011-10-18 22:00:19 | sub10 | CAT_QuickHeal | (Suspicious) - DNAScan | | AS35415 | 78.140.145.84 | ripe@webazilla.com | NL | RIPE | NL-WEBAZILLA-20070629 | 8068f6de1383f5d337367b7c1c4a89da | http://letitbit.net/skymonk_21400058_80.exe || 2011-10-18 22:00:19 | sub10 | avira | JS/Agent.akj.1 | | AS29944, AS174 | 208.85.243.136 | admin@fast-serv.com | US | ARIN | FSNL-NET-1 | 4546837bc5fcffb951cbf55d3259581b | http://offnet.cl/sms_masivo.html || 2011-10-18 22:00:19 | sub10 | avira | JS/Agent.akj.1 | | AS29944, AS174 | 208.85.243.136 | admin@fast-serv.com | US | ARIN | FSNL-NET-1 | 33f568d58afcd7f28b9a22298fa21182 | http://offnet.cl/ || 2011-10-18 22:00:19 | sub10 | avira | TR/Dldr.NSIS.Adload.v.1 | | AS26228 | 216.121.65.147 | abuse@gogrid.com | US | ARIN | GOGRID-1 | 48359b2363917de324921f577bd01cec | http://setup.install-finder.com/mxt.php/data0001 || 2011-10-18 22:00:30 | sub1 | undef | unknown_html | | AS2914 | 207.56.151.111 | abuse@ntt.net | US | ARIN | NTTA-207-56 | 09c5d4107e58e7d5e9cbabcc87c5f46e | http://www.beastropicaldesign.com/http:/www.paypal.com/index2.html || 2011-10-18 13:14:31 | sub8 | avira | TR/Dldr.Delf.PS.1 | | AS30083 | 69.64.56.30 | abuse@hostingsolutionsint.com | US | ARIN | S4Y-3 | 59239dcbf664892204fd187dc0146ad4 | http://www.netosdesalim.com.br/religiao/ || 2011-10-18 13:14:33 | sub8 | undef | Trojan-Downloader.Win32.Delf.beeq | | AS8972 | 188.138.91.113 | abuse@plusserver.de | DE | RIPE | DE-INTERGENIA-20090508 | fd78265bb3e745a0b5067ec6ee419aac | http://www.ni3ma-chat.com/ || 2011-10-18 13:14:34 | sub8 | undef | Trojan-Banker.Win32.Agent.exb | | AS8972 | 217.172.163.11 | abuse@plusserver.de | DE | RIPE | PLUSSERVER-1 | 4421cfe7342d531ce49dd733ccf376e1 | http://www.thiecom.com/ftp/software/audio/win/ || 2011-10-18 22:11:14 | sub1 | undef | unknown_html_google_malware | | AS20738 | 212.67.202.56 | abuse@webfusion.com | GB | RIPE | UK-WEBFUSION-LEEDS | 640dfa7e4ae481676b77e31b36ad56cc | http://www3.blib.com/easier.html || 2011-10-18 22:11:14 | sub20 | undef | unknown_html | | AS32613 | 184.107.233.60 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-07 | a0a8c7db6234cc843e28589d5cf5a500 | http://184.107.233.60/eula.cgi?BUILDNAME=477104&a || 2011-10-18 13:14:35 | sub8 | undef | Backdoor/W32.Agent.1317888 | | AS42926 | 46.45.136.234 | abuse@istanbuldc.com | TR | RIPE | ISTANBUL-DC | 45143ae46817c304c38ea3d212824ac4 | http://www.zermt2.com/patch//pack/ || 2011-10-18 23:00:17 | sub10 | avira | LINUX/Verned.1 | | AS23387 | 168.150.251.105 | steve@dcn.org | US | ARIN | DCN-B1 | a4c250d2e4c6330d6d11f3161de6906d | http://168.150.251.105/~phelix/dnr/flood.tgz || 2011-10-18 23:00:17 | sub10 | avira | LINUX/Explorexp | | AS23387 | 168.150.251.105 | steve@dcn.org | US | ARIN | DCN-B1 | 2f6fd3ffab0dba9db8405076cc2eff09 | http://168.150.251.105/~phelix/dnr/uselib || 2011-10-18 23:00:17 | sub10 | avira | SPR/Tool.Sshscan.a | | AS23387 | 168.150.251.105 | steve@dcn.org | US | ARIN | DCN-B1 | f56c0b1d2f835349e8e7ab6ad3954751 | http://168.150.251.105/~phelix/dnr/whiper.tgz || 2011-10-18 23:00:17 | sub10 | undef | unknown_html | | AS30968 | 92.243.84.118 | abuse@infobox.ru | RU | RIPE | DATAPOINT-NET3-HYPER-V | 134a431965c71f8fb093c60d0714efaf | http://92.243.84.118/install_skype.exe || 2011-10-18 23:00:17 | sub10 | avira | TR/Dropper.Gen | | AS9371 | 49.212.33.63 | tanaka-nic@sakura.ad.jp | JP | APNIC | SAKURA-NET | 07ffd59ca611a1a449cc8e87c6da9d6a | http://autovolam.org/Downloads/LCTool2.4.zip || 2011-10-18 23:00:17 | sub10 | avira | TR/Dropper.Gen | | AS9371 | 49.212.33.63 | tanaka-nic@sakura.ad.jp | JP | APNIC | SAKURA-NET | 0bf61db75734986e5dbf8e2f10300a8b | http://autovolam.org/Downloads/VulanProF9.6_Cracked.zip || 2011-10-18 23:00:17 | sub10 | avira | HTML/IFrame.adz | | AS27715 | 201.76.59.93 | regcom@locaweb.com.br | BR | LACNIC | 002.351.877/0001-52 | 049ccfc41000d2c84e910528fa465811 | http://bolichepiratininga.com.br/ || 2011-10-18 23:00:17 | sub10 | avira | JS/Agent.akj | | AS26496 | 173.201.93.1 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 44a6f8414797afffdc20057171bb0319 | http://chandrakneeclinics.net/media/system/js || 2011-10-18 23:00:17 | sub10 | avira | BDS/Pcclient.ebhv | | AS4134 | 202.103.218.45 | hostmaster@gx163.net | CN | APNIC | CHINANET-GX | 16b53ff7e820b1d054aaa35711bccdc0 | http://c.nmgsrgsgg.com/zz.exe || 2011-10-18 23:00:18 | sub10 | undef | unknown_html_google_malware | | AS14618 | 107.22.250.182 | ec2-abuse@amazon.com | US | ARIN | AMAZON-EC2-8 | 490bec4eb1a22a41bc33a441eb13dc33 | http://dl.dropbox.com/u/24545597/Emotion.Card.Bat || 2011-10-18 23:00:18 | sub10 | undef | unknown_html_google_malware | | AS14618 | 107.22.250.182 | ec2-abuse@amazon.com | US | ARIN | AMAZON-EC2-8 | d9acc4638f6b4de3a79f0a81c48251f7 | http://dl.dropbox.com/u/39135413/IMAGENS-JPEG.COM || 2011-10-18 23:00:18 | sub10 | undef | unknown_html_google_malware | | AS14618 | 107.22.250.182 | ec2-abuse@amazon.com | US | ARIN | AMAZON-EC2-8 | 1bddc9f0e7a7697667c2699fd74d4446 | http://dl.dropbox.com/u/40041170/slide-video.scr || 2011-10-18 23:00:18 | sub10 | undef | unknown_html_google_malware | | AS14618 | 107.22.250.182 | ec2-abuse@amazon.com | US | ARIN | AMAZON-EC2-8 | 4e1f1de7f76a69b6ebc6b2401b4941cd | http://dl.dropbox.com/u/44710410/file108.visualizar.com || 2011-10-18 23:00:18 | sub10 | undef | unknown_html_google_malware | | AS14618 | 107.22.250.182 | ec2-abuse@amazon.com | US | ARIN | AMAZON-EC2-8 | f3249e52a5714e6ae8d4c960b836f0d3 | http://dl.dropbox.com/u/45567019/FACEBOOK-FOTOS.COM || 2011-10-18 23:00:18 | sub10 | avira | WORM/Gamarue.B.27 | | AS4837 | 60.19.30.135 | abuse@online.ln.cn | CN | APNIC | UNICOM-LN | 03e662753b2c4a05c40ad3525eeef903 | http://dzmeritelshop.ru/dbs/loadera5.exe || 2011-10-18 23:00:18 | sub10 | avira | TR/Dldr.gcs.1 | | AS17964 | 218.247.226.106 | bill.pang@bj.datadragon.net | CN | APNIC | BITNET | dec61fde896276cb05bcb3caa0220aea | http://ftp.my33home.com/a.exe || 2011-10-18 23:00:18 | sub10 | avira | TR/PSW.Dybalom.bkh.1 | | AS16265 | 85.17.25.217 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20050311 | 4f3c1e0a22ee9c3fe47a498acf57a5e3 | http://ggandfbhack.cba.pl/gghack_v_1_4_PL.rar || 2011-10-18 23:00:18 | sub10 | avira | TR/Dldr.Small.AO.66 | | AS4766 | 121.175.17.67 | abuse@kornet.net | KR | APNIC | KORNET-KR | 7878c85c4244890404a2a87c8f530a0c | http://highestcc.co.kr/bbs/images/titlebar.gif || 2011-10-18 23:00:18 | sub10 | avira | TR/Dropper.Gen | | AS32613 | 70.38.98.238 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-05 | e45b8ece74395052a36706a3f5d59cc0 | http://img104.herosh.com/2011/10/12/399109761.gif || 2011-10-18 23:00:18 | sub10 | avira | TR/Dropper.Gen | | AS51377 | 31.193.1.10 | nic@hostnoc.net | GB | RIPE | UK-BURSTNET-20110421 | ef0f1f574363de6e17dc88e3bbb4f19d | http://just-skype.ru/skype-setup.exe || 2011-10-18 23:00:18 | sub10 | undef | unknown_file_cvznvnBMBM4342.exe | | AS12695 | 92.38.209.180 | abuse@di-net.ru | RU | RIPE | DINETHOSTING-NEXT2 | f3cc5e99dc74b196735a1a868acd6dc9 | http://miktilar.continent.kz/Guests/Guests1.1.exe || 2011-10-18 23:00:18 | sub10 | undef | unknown_html | | AS14366 | 67.230.181.242 | noc@caratnetworks.com | CA | ARIN | CLEARANCE-RACK | c4ca4238a0b923820dcc509a6f75849b | http://only-youtube.com/watch/setup.exe || 2011-10-18 23:00:18 | sub10 | avira | DR/PSW.Kykymber.JZ | | AS46844 | 67.21.93.62 | abuse@rr.com | US | ARIN | COUDERSPORT-1 | b75e0ada77871d940dec77f8c4835600 | http://qhuc1.51vip.biz:120/dx/17.exe || 2011-10-18 23:00:18 | sub10 | avira | TR/Spy.Gen | | AS46844 | 67.21.93.62 | abuse@rr.com | US | ARIN | COUDERSPORT-1 | 031ab7fc6519b4d4968de68880c2e183 | http://qhuc1.51vip.biz:120/dx/19.exe || 2011-10-18 23:00:18 | sub10 | avira | TR/Drop.Agent.26112.1 | | AS15418 | 88.208.217.167 | mark.wood@fasthosts.co.uk | GB | RIPE | UK-FASTHOSTS-20051102 | 160f3fb393906027d5e1977ad25a57a5 | http://sabira.zyns.com/nvidsrv.exe || 2011-10-18 23:00:18 | sub10 | avira | TR/Dldr.Delphi.Gen | | AS33182 | 199.168.184.154 | abuse@dimenoc.com | US | ARIN | DIMENOC | 4f3df52050130dcfabd39fbe4860b981 | http://sitedejogosonlines.com.br/download/Jogar.exe || 2011-10-18 23:00:18 | sub10 | avira | TR/Dldr.KTD | | AS41665 | 194.54.88.93 | abuse@hosting.ua | UA | RIPE | hostingua | 2cece8b21262cc523528b28dacf5636d | http://skachat-vksaver.ru/VKSaver-3.1.exe || 2011-10-18 23:00:18 | sub10 | trendmicro | Cryp_Morphine | | AS3786 | 121.254.168.31 | ip@kidc.net | KR | APNIC | KIDC-KR | 97131265ff34980b1b79a442e324dc79 | http://softnsoft.com/update/nbav/pbcon.dll || 2011-10-18 23:00:18 | sub10 | avira | TR/Spy.Gen | | AS21844 | 74.52.121.157 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 0cf28ffc857e15c34a57787e12040034 | http://topnotchgalena.com/.sys.php?getexe=imgparser.4.exe || 2011-10-18 23:00:18 | sub10 | avira | WORM/Koobface.AW.6 | | AS21844 | 74.52.121.157 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 3071a2ea864c262b608c09ccd6416cf4 | http://topnotchgalena.com/.sys.php?getexe=poster.11.exe || 2011-10-18 23:00:18 | sub10 | avira | TR/Spy.Gen | | AS21844 | 74.52.121.157 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 0e8250ccdd02b7a23f42f897961bcfba | http://topnotchgalena.com/.sys.php?getexe=twreg.15.exe || 2011-10-18 23:00:18 | sub10 | avira | TR/Gendal.5627039 | | AS34012 | 217.195.122.51 | abuse@mediamonks.net | NL | RIPE | MEDIAMONKS-EU1-AMS1 | 636a970750b7ed2129d40562d8f2e148 | http://try2hack.nl/levels/level6.zip || 2011-10-18 23:00:18 | sub10 | avira | TR/Fraud.Gen4 | | AS38700 | 115.68.15.240 | network@smileserv.com | KR | APNIC | SMILESERV-KR | bb94df026f660b28bc1a5707f0e1669f | http://update.uprotect.co.kr/version/bina/uprotect.exe || 2011-10-18 23:00:18 | sub10 | avira | TR/Crypt.XPACK.Gen | | AS4134 | 121.12.119.179 | abuse@gddc.com.cn | CN | APNIC | CHINANET-GD | 14cc5a3d17267d1d62cc6860f3245e82 | http://zh.mckueo.com:7898/Best/saobiwuji3.exe || 2011-10-18 23:00:18 | sub10 | avira | DR/MicroJoiner.Gen | | AS33387 | 63.141.250.229 | security@datashack.net | US | ARIN | DSV4-2 | 359dca8ec9b6c1b988a1dd1f93c87a15 | http://zip.b8jg.com:1888/sexplayer.exe || 2011-10-18 13:14:41 | sub8 | undef | Trojan-Dropper.Win32.Injector.ftr | | AS4766 | 14.63.217.88 | abuse@kornet.net | KR | APNIC | KORNET | 6b680f1259f5cf48800c553ab2bf51d9 | http://s.winggo.co.kr/SM4/ || 2011-10-18 15:47:19 | sub8 | undef | Application.Reboot | | AS26496 | 208.109.78.137 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | dd5d02cc750d2855cf6f6c5bf5bea587 | http://revistamas.pe/images/stories/ || 2011-10-19 00:00:06 | sub7 | undef | unknown_html_RFI | | AS8560 | 74.208.12.124 | abuse@1and1.com | US | ARIN | 1AN1-NETWORK | 896d12db690f038adf4145125971945f | http://www.samputi.com/app_av/css.jpg? || 2011-10-19 00:03:03 | sub1 | undef | unknown_html_RFI_php | | AS36351 | 50.23.134.34 | ipadmin@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK-4-9 | 253deb85dd3decbc503e49dba36130d2 | http://megaimp001.com//modx.zip || 2011-10-19 00:03:03 | sub1 | undef | unknown_html | | AS4134 | 122.225.115.149 | anti_spam@mail.huptt.zj.cn | CN | APNIC | BJ-INTERNET-DATA-CENTER | 617c4866ac38ff01177d1aede3061d27 | http://stats.kuaiwan.com/c/box/install/?uid=48583068C038802068D0B8C0487890184878F8A8&v=2.406&site=kuaibo || 2011-10-19 00:03:03 | sub1 | undef | unknown_html | | AS35000 | 78.111.80.23 | info@replay.ru | RU | RIPE | netfox-3 | 4c115bb1c0d83c9048431b41a09b46e6 | http://www.showbanners.ru/gate/ingate.php?id=58 || 2011-10-19 00:05:40 | sub1 | undef | unknown_html | | AS15201 | 200.98.197.107 | l-registrobr-uol@corp.uol.com.br | BR | LACNIC | 001.109.184/0001-95 | 92126632a827bd70737f2e77c9bed8b6 | http://sofiaguimaraesconsultoria.com.br/acessos/keke/index.php || 2011-10-18 23:35:48 | sub5 | avira | TR/Script.86 | | AS36420, AS30315, AS13749, AS21844 | 174.121.78.226 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 7ab5a3291410db3231141e2818e85318 | http://erimkus.com/troop890/data/sc1.txt?? || 2011-10-18 23:35:52 | sub5 | avira | PHP/BackDoor.AR | | AS36420, AS30315, AS13749, AS21844 | 174.121.78.226 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | dcc55d73dae5326abb4f00d9313a7e70 | http://erimkus.com/troop890/data/sc2.txt??? || 2011-10-19 01:00:29 | sub1 | undef | unknown_file_$PLUGINSDIR/ApStub.exe | | AS40366 | 174.35.6.7 | support@cdnetworks.com | US | ARIN | CDNET-USA-1 | 2b798d14d634b94380414129e68e3626 | http://www.dlappstream.com/nsi/nsis-2.46/siw_auto_4796.exe || 2011-10-19 01:00:29 | sub1 | undef | unknown_file_$PLUGINSDIR/ApStub.exe | | AS40366 | 174.35.6.7 | support@cdnetworks.com | US | ARIN | CDNET-USA-1 | 5c336289c261e50026b056fc969060aa | http://www.dlappstream.com/nsi/nsis-2.46/USInternationalShop_3091.exe || 2011-10-18 17:47:17 | sub8 | undef | Backdoor/W32.Agent.1317888 | 0/40 (0.0%) | AS8972 | 217.172.163.11 | abuse@plusserver.de | DE | RIPE | PLUSSERVER-1 | fd995eca171310a61ea1676f851652ff | http://thiecom.com/ftp/software/audio/win/ || 2011-10-18 17:47:19 | sub8 | avira | TR/Dldr.Delf.PS.1 | 30/40 (75%) | AS30083 | 69.64.56.30 | abuse@hostingsolutionsint.com | US | ARIN | S4Y-3 | 59239dcbf664892204fd187dc0146ad4 | http://netosdesalim.com.br/religiao/ || 2011-10-18 17:47:28 | sub8 | undef | Trojan-Downloader.Win32.Delf.beeq | 0/40 (0.0%) | AS13335 | 173.245.61.23 | noc@cloudflare.com | US | ARIN | CLOUDFLARENET | 8f990d06e8cba5cfb91f5b96be4749dc | http://mircindir.com/ || 2011-10-18 17:47:31 | sub8 | undef | HEUR:Trojan.Win32.Generic | 0/40 (0.0%) | AS4323 | 66.147.237.115 | abuse@hostrocket.com | US | ARIN | HRWEBSERVICES-2 | 0ae5a6fe707ee08fd2353231aa9e36aa | http://latinholdings.com.mx/ || 2011-10-18 17:47:33 | sub8 | undef | Monitor.Win32.Kidlogger.a | 0/40 (0.0%) | AS15244 | 209.200.237.139 | hostmaster@lunarpages.com | US | ARIN | ADDD2NET-DOT-COM | a8d063a746ceaf1a2d47b72e9eb9c3e3 | http://ancientsoft.com/downloads/ || 2011-10-19 02:00:22 | sub10 | BitDefender | JS:Trojan.JS.Agent.D | 7/40 (17.5%) | AS23352 | 216.246.2.35 | alex.k@hostforweb.com | US | ARIN | SCNET-216-246-2-0 | 7b6a5b05a8a84dadf3d215279eceef14 | http://hsinfosys.com/ || 2011-10-19 02:40:06 | sub18 | avira | PHP/IRCBOT.K | 23/39 (59%) | AS32475 | 69.175.75.82 | netops@singlehop.com | US | ARIN | SINGLEHOP | 416e690c30e4593d09db8530c3573bc5 | http://dampshorts.com//wp-content/themes/tarnished/lib/scripts/cache/byroe.jpg?? || 2011-10-18 19:05:02 | sub8 | undef | Variant.Graftor.264 | 0/39 (0.0%) | AS42926 | 46.45.164.164 | abuse@as42926.net | TR | RIPE | TR-RADORE-20100916 | 0ad6c18031720d853c94f7501cbbb6df | http://46.45.164.164/ || 2011-10-19 01:48:41 | sub8 | undef | Backdoor.Win32.IRCBot.zmd | 1/40 (2.5%) | AS9394 | 122.70.145.59 | liujun66@sina.vip.com | CN | APNIC | Gold-Computer | d99e9b5864cc97436d37cb72ab678431 | http://e-tshow.net/ || 2011-10-19 03:00:17 | sub10 | avira | TR/Agent.ASUE | 15/39 (38.5%) | AS21788 | 64.120.152.213 | abuse@hostnoc.net | US | ARIN | HOSTNOC-5BLK | b1a71db6af5b3165a16caba18a3d518f | http://m4st3r.com/download/click.php?id=1 || 2011-10-19 03:00:05 | sub17 | AntiVir | TR/Crypt.CFI.Gen | 17/40 (42.5%) | AS30060 | 69.58.188.39 | netadmin@verisign.com | US | ARIN | VRSNNETBLK-3 | 037400511a81bdebbca222dfc5cb9c89 | http://bit.ly/oYth4y || 2011-10-19 04:00:15 | sub10 | AntiVir | JS/Agent.zbh | 21/40 (52.5%) | AS36420, AS30315, AS13749, AS21844 | 174.132.166.226 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-15 | cfe329bd85511b0864b4507117fdacde | http://amstudio.us/ || 2011-10-19 03:47:14 | sub8 | undef | Trojan.Agent/Gen-NumTemp | 0/39 (0.0%) | AS12695 | 92.38.199.150 | abuse@di-net.ru | RU | RIPE | DINETHOSTING-NEXT2 | cc58c0e853e417d9e9e23fd0087d2b98 | http://vegaszoid.net/ || 2011-10-19 05:00:15 | sub10 | avira | TR/ATRAPS.Gen2 | 29/40 (72.5%) | AS4134 | 58.221.36.245 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-JS | f552829d92822b3cbc7cd42ee7ea46af | http://dl.qxoc.info:8896/QvodSetupPlusXu05.exe || 2011-10-19 04:53:31 | sub5 | avira | PHP/RemoteAdmi.6444 | 17/40 (42.5%) | AS20738 | 109.104.68.5 | abuse@webfusion.com | ES | RIPE | UK-WEBFUSION-LEEDS | 7f3cf4cb720673994fe5e5c8d83e6b31 | http://feminicidio.net/modules/mod_spo/plaid.txt?? || 2011-10-19 06:00:46 | sub10 | avira | JS/Agent.zbh | 20/40 (50%) | AS21740 | 69.64.156.56 | dmnoc@demandmedia.com | US | ARIN | ENOM-BLOCK | f4650c47810829bf5b3f4142acf02e3e | http://abdullaalawadi.com/ || 2011-10-19 05:50:38 | sub5 | avira | PHP/RemoteAdmi.6444 | 17/40 (42.5%) | AS20738 | 109.104.68.5 | abuse@webfusion.com | ES | RIPE | UK-WEBFUSION-LEEDS | 7f3cf4cb720673994fe5e5c8d83e6b31 | http://feminicidio.net/modules/mod_spo/plaid.txt? || 2011-10-19 06:19:17 | sub5 | avira | PERL/Shellbot.B.3 | 25/40 (62.5%) | AS11798 | 74.220.207.151 | abuse@bluehost.com | US | ARIN | BLUEHOST-NETWORK-2 | 53eb5b459f2d073cfbaa9a6e37affabc | http://musicclubs.net/libraries/pear/spred.txt? || 2011-10-18 12:00:08 | sub17 | avira | TR/Spy.35840.115 | 25/40 (62.5%) | AS30060 | 69.58.188.39 | netadmin@verisign.com | US | ARIN | VRSNNETBLK-3 | 26b783b24919c44d0665b874fc7cca19 | http://bit.ly/pog1wx || 2011-10-19 07:00:27 | sub1 | undef | unknown_exe | 0/40 (0.0%) | AS19994 | 50.57.106.194 | abuse@rackspace.com | US | ARIN | RACKS-8-NET-4 | 7348fdb1b2dc32290b5545ce4738595b | http://www.dll-files.com/dffsetup.exe || 2011-10-19 06:44:40 | sub5 | undef | unknown_html_RFI_php | 0/40 (0.0%) | AS33182 | 66.7.221.48 | abuse@dimenoc.com | US | ARIN | DIMECNET | 5b280a06fb93bf202e66780bbefa73ae | http://baluarte.biz/bot/Ckrid1.txt?? || 2011-10-17 21:04:52 | sub17 | avira | HTML/Infected.WebPage.Gen | 18/39 (46.2%) | AS32475 | 184.154.165.249 | abuse@singlehop.com | US | ARIN | SINGLEHOP | ba318f41d8035be9a057ba120c01103d | http://sahamcareer.com || 2011-10-19 08:00:16 | sub10 | avira | ADWARE/EoRezo.A.35 | 22/39 (56.4%) | AS16276 | 188.165.192.211 | abuse@ovh.net | FR | RIPE | OVH | e2205a7b99f38f482f9e4841f144e90d | http://188.165.192.211/clib/asf.exe || 2011-10-19 08:00:16 | sub10 | avira | TR/Crypt.XPACK.Gen | 19/40 (47.5%) | AS4134 | 61.136.153.179 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-HB | b3675d69f562e05396ce40ea23abcb37 | http://61.136.153.179:11474/phpmyadmin/abc/ra2.exe || 2011-10-19 08:00:16 | sub10 | avira | TR/Dldr.Delphi.Gen | 11/40 (27.5%) | AS32613 | 184.107.154.98 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-07 | fa91f037c59de4abddebab8a387959f2 | http://paqto.com/plugins/system/IMG1510EJPG.zip || 2011-10-19 08:10:07 | sub20 | undef | unknown_html | 0/40 (0.0%) | AS16276 | 94.23.31.75 | abuse@ovh.net | FR | RIPE | OVH | c504b13146833fae0ba6bae1e0847740 | http://ads.alpha00001.com/cgi-bin/advert/getads?did=1075 || 2011-10-19 07:52:59 | sub5 | avira | PHP/Agent.DZ | 21/40 (52.5%) | AS38393 | 125.247.145.20 | jjh83@dacom.net | KR | APNIC | PUBNETPLUS | 7710ea4c7b723fafa02d62289207420c | http://gerimasil.com/board/data/rfi/injek.txt???%20] || 2011-10-19 09:00:16 | sub10 | avira | HTML/Crypted.Gen | 17/40 (42.5%) | AS11798 | 66.147.244.215 | abuse@bluehost.com | US | ARIN | BLUEHOST-NETWORK-4 | 53d5ab4c72c7978b687ce023c6e41beb | http://booksvalley.com/wp-includes/js/l10n.js?ver=20101110 || 2011-10-19 09:01:03 | sub10 | avira | JS/Decdec.psc | 30/39 (76.9%) | AS29522 | 195.149.227.157 | abuse@kei.pl | PL | RIPE | KEI-KRAKOW-PL | 87160a98c7951427fbeeb8b31d5a1181 | http://caracas.com.pl/anim/?00e475 || 2011-10-19 09:01:03 | sub10 | avira | TR/Click.Stixo.E.1 | 28/40 (70%) | AS8342 | 217.107.34.101 | info@avguro.com | RU | RIPE | AVGURO-NET | f1ae0ccedb5c804c5be436dd0d08c336 | http://cav.ru/download/stixo.zip || 2011-10-19 09:01:03 | sub10 | avira | TR/Vundo.FLX | 22/40 (55%) | AS7643 | 123.30.108.35 | abuse@vnn.vn | vn | APNIC | VDC-NET | 9a54ed3a9a257b94e648596beaf946e8 | http://cuong.tgs.vn/soft/Teleport.Pro.v1.42.rar || 2011-10-19 09:01:03 | sub10 | avira | PHP/IRCBOT.E.29297 | 21/40 (52.5%) | AS36420, AS30315, AS13749, AS21844 | 174.121.148.187 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | fd0e457c32edc1031476fc8b797012c5 | http://kbgoldfree.com/jdb212/archive/dalnet.png?%3F || 2011-10-19 09:01:46 | sub5 | avira | PHP/Pbot.A | 28/39 (71.8%) | AS9452 | 163.152.165.89 | cgc1@korea.ac.kr | KR | APNIC | KUCCNET-KR | 4f4ef64da61ecacc56fbae1eabb35b54 | http://cist.korea.ac.kr//zboard/data/__zbSessionTMP/dd.txt?&modez=shellz || 2011-10-19 09:01:52 | sub5 | avira | PHP/Pbot.A | 28/39 (71.8%) | AS9452 | 163.152.165.89 | cgc1@korea.ac.kr | KR | APNIC | KUCCNET-KR | 4f4ef64da61ecacc56fbae1eabb35b54 | http://cist.korea.ac.kr//zboard/data/__zbSessionTMP/dd.txt?&modez=scannerz || 2011-10-19 09:06:01 | sub8 | undef | HEUR:Trojan.Win32.Generic | 0/40 (0.0%) | AS7643 | 123.30.108.35 | abuse@vnn.vn | vn | APNIC | VDC-NET | 1c6c2ed91149df5c5a1a60024b94f4fc | http://cuong.tgs.vn/soft/ || 2011-10-19 10:00:11 | sub1 | undef | unknown_exe | 0/40 (0.0%) | AS4134 | 61.150.91.31 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-SN | 6f1fecd87fbd7a5b7b3ed665f914c3e2 | http://175yo.com/UserProfile/SoftUpdata/WarZxx/ManaBars.dll || 2011-10-19 10:00:11 | sub1 | avira | TR/Crypt.XPACK.Gen | 7/40 (17.5%) | AS4134 | 61.150.91.31 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-SN | 8ef005b17c345a7d37a0362879aed089 | http://175yo.com/UserProfile/SoftUpdata/WarZxx/WarZxx.exe || 2011-10-19 10:00:11 | sub1 | avira | TR/Rootkit.Gen | 34/40 (85%) | AS17623 | 220.112.44.174 | speed0822@sina.com | CN | APNIC | GWBN-SHENZHEN | 9b11d655763d98d0537f073fe7307531 | http://b67.4dq.com/d/d.exe || 2011-10-19 10:00:11 | sub1 | avira | TR/Hijacker.Gen | 35/40 (87.5%) | AS17623 | 220.112.44.174 | speed0822@sina.com | CN | APNIC | GWBN-SHENZHEN | 9f8ee94a4e7c8687895f3e53c726ac2a | http://b67.4dq.com/d/q.exe || 2011-10-19 10:00:11 | sub1 | avira | TR/Dropper.Gen | 24/40 (60%) | AS17623 | 220.112.44.174 | speed0822@sina.com | CN | APNIC | GWBN-SHENZHEN | 3cb313a88cbfc784b50860ceb24373bd | http://b67.4dq.com/d/r.exe || 2011-10-19 10:00:11 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS3352 | 217.124.184.195 | Bego.aldonza@juntaextremadura.net | ES | RIPE | JUNTAEXTREMADURA | da16afa3dc60476fa42d1031d40d70c4 | http://cucha.linex.org/temp2/alfa_sberbank_bss_prbb_tb.bin || 2011-10-19 10:00:11 | sub1 | undef | unknown_exe | 0/40 (0.0%) | AS9929 | 210.51.33.60 | abuse@cnc-noc.net | CN | APNIC | CNC-SH-IDC | 88215cccf2b952eff4b1c023bed73a88 | http://dlc2.sdo.com/FTP/kuaizip/20111013/2/KuaiZip_setup.exe || 2011-10-19 10:00:11 | sub1 | avira | TR/Dropper.Gen | 32/40 (80%) | AS4837 | 121.22.6.39 | abuse@chinaunicom.cn | CN | APNIC | UNICOM-HE | e39c1706b67897c8d86feed8d92d29d7 | http://dlg.ns01.us/o/qz.exe || 2011-10-19 10:00:12 | sub1 | undef | unknown_html | 0/40 (0.0%) | AS15836 | 87.255.73.7 | abuse@araxinfo.com | MD | RIPE | MD-ARAXCOM-20051108 | 473a4731c89077be7bcc07f098a60406 | http://viherami.info/key.bin |+---------------------+-------------+---------------+---------------------------------------+---------------+---------------------------------------+-----------------+-----------------------------------+---------+--------+---------------------------------+----------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+200 rows in set (0.02 sec)
+---------------------+-------------+------------------+---------------------------------------+---------------+------------------------------------+-----------------+-------------------------------------+---------+--------+------------------------------+----------------------------------+---------------------------------------------------------------------------------------------------------------------+| date | contributor | scanner | virusname | vt_score | AS | review | email | country | source | netname | md5sum | url |+---------------------+-------------+------------------+---------------------------------------+---------------+------------------------------------+-----------------+-------------------------------------+---------+--------+------------------------------+----------------------------------+---------------------------------------------------------------------------------------------------------------------+| 2011-10-19 10:40:16 | sub14 | AntiVir | TR/Crypt.TPM.Gen | 25/40 (62.5%) | AS14618 | 50.19.98.33 | aes-noc@amazon.com | US | ARIN | AMAZON-EC2-8 | ad57f59ebcae8af031b177dd6a612cc6 | http://dl.dropbox.com/u/45308096/Multilazer.js || 2011-10-19 10:40:16 | sub14 | AhnLab_V3 | Backdoor/Win32.Trojan | 20/39 (51.3%) | AS27611 | 38.101.236.63 | abuse@cogentco.com | US | ARIN | PSINETA | f0f5ce7859a3df186ce81fb1c882975f | http://gpass1.com/download/OldVersions/GFltDrv.sys || 2011-10-19 10:40:16 | sub14 | avira | BDS/Delf.cwo.1 | 30/40 (75%) | AS27611 | 38.101.236.63 | abuse@cogentco.com | US | ARIN | PSINETA | 4ada781eb67b43c4ce25dbc4354c98e7 | http://gpass1.com/download/OldVersions/GPass-3.0.12.exe || 2011-10-19 10:40:16 | sub14 | avira | TR/Spy.Gen | 18/39 (46.2%) | AS27611 | 38.101.236.63 | abuse@cogentco.com | US | ARIN | PSINETA | 626d178ae81624327f71c1e9c7557cc1 | http://gpass1.com/download/OldVersions/GPass-3.0.9.exe || 2011-10-19 10:40:16 | sub14 | Antiy_AVL | Server-Proxy/Win32.GPass.gen | 18/39 (46.2%) | AS27611 | 38.101.236.63 | abuse@cogentco.com | US | ARIN | PSINETA | 9c9a60d6e2392c22f58de269485b499a | http://gpass1.com/download/OldVersions/GPass-3.1.2.exe || 2011-10-19 10:40:16 | sub14 | avira | TR/Trufip.A.72 | 21/39 (53.8%) | AS27611 | 38.101.236.63 | abuse@cogentco.com | US | ARIN | PSINETA | da9b3d6d725216c1e520b82cb07850dd | http://gpass1.com/download/OldVersions/GPass-3.1.6.exe || 2011-10-19 10:40:16 | sub14 | avira | BDS/Delf.hqi | 19/39 (48.7%) | AS27611 | 38.101.236.63 | abuse@cogentco.com | US | ARIN | PSINETA | 54949b9a9d866bab5ef299c2a0f8b0ab | http://gpass1.com/download/OldVersions/GPass-3.2.0.exe || 2011-10-19 10:40:16 | sub14 | avira | BDS/Delf.kwg | 7/39 (17.9%) | AS27611 | 38.101.236.63 | abuse@cogentco.com | US | ARIN | PSINETA | c14f0a546941f200c53ad58156edf2fe | http://gpass1.com/download/OldVersions/GPass-3.3.0.exe || 2011-10-19 10:40:16 | sub14 | avira | TR/Gendal.107048 | 16/39 (41%) | AS27611 | 38.101.236.63 | abuse@cogentco.com | US | ARIN | PSINETA | b6682d7e91ed14d6f135d3d87fcfe91c | http://gpass1.com/download/OldVersions/GPass-3.4.2.exe || 2011-10-19 10:40:16 | sub14 | avira | TR/Gendal.4059608 | 11/39 (28.2%) | AS27611 | 38.101.236.63 | abuse@cogentco.com | US | ARIN | PSINETA | 1b67a90d7522591c4fddd6d593abe55f | http://gpass1.com/download/OldVersions/GPass-3.4.3.exe || 2011-10-19 10:40:16 | sub14 | clamav | PUA.Packed.PECompact-1 | 9/39 (23.1%) | AS27611 | 38.101.236.63 | abuse@cogentco.com | US | ARIN | PSINETA | 6da51dc29c0222f475f4ac2c559a893f | http://gpass1.com/download/OldVersions/GPass-3.4.4.exe || 2011-10-19 10:40:16 | sub14 | clamav | PUA.Packed.PECompact-1 | 10/40 (25%) | AS27611 | 38.101.236.63 | abuse@cogentco.com | US | ARIN | PSINETA | 28e258e54b0270c18e046bd19dc3f981 | http://gpass1.com/download/OldVersions/GPass-4.0.0.exe || 2011-10-19 10:40:16 | sub14 | avira | TR/Gendal.107048 | 18/40 (45%) | AS27611 | 38.101.236.63 | abuse@cogentco.com | US | ARIN | PSINETA | 9a67159b038898b198180510ef98e3eb | http://gpass1.com/download/OldVersions/scap.dll || 2011-10-19 10:40:16 | sub14 | avira | TR/Dropper.Gen2 | 20/40 (50%) | AS7366 | 199.7.177.244 | abuse@lemuriaco.com | US | ARIN | LEMURIA-COMMUNICATIONS | e010bbddcee55671cee7158cce3a8d58 | http://hotfile.com/dl/132393775/6d0af7e/index.html || 2011-10-19 10:40:17 | sub14 | BitDefender | Trojan.Crypt.Delf.AG | 15/40 (37.5%) | AS16276 | 213.186.33.19 | abuse@ovh.net | FR | RIPE | OVH | bf9c1b1fcf8ad692daa049510b0ffa4f | http://www.bdsfrance.org/plus/cobranca/emissor.php?Boleto=Vencimento18102011_cliente%2F?id=cliente_devedor || 2011-10-19 10:40:17 | sub14 | Ikarus | Trojan.SuspectCRC | 3/40 (7.5%) | AS36420, AS30315, AS13749, AS21844 | 174.123.24.59 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | bf62d986a53d6ab0b161efd46b25f796 | http://www.melhorsoft.com/download/animais.exe || 2011-10-19 10:40:17 | sub14 | undef | TR/Spy.Banker.Gen | 0/40 (0.0%) | AS36420, AS30315, AS13749, AS21844 | 174.123.24.59 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 8b6e2943d6aa4753cbc3702290f86ca8 | http://www.melhorsoft.com/download/instalarcacaniqueis.exe || 2011-10-19 10:40:17 | sub14 | eSafe | Win32.Artemis | 3/39 (7.7%) | AS36420, AS30315, AS13749, AS21844 | 174.123.24.59 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | caff82602330171770b5caec17317277 | http://www.melhorsoft.com/download/instalarcartaocriativo.exe || 2011-10-19 10:40:17 | sub14 | AVG | PSW.Banker6.HKF | 5/39 (12.8%) | AS36420, AS30315, AS13749, AS21844 | 174.123.24.59 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 2bba08364a919995b9fa5830c6eb6b1c | http://www.melhorsoft.com/download/instalardicionarioderimas_ag.exe || 2011-10-19 10:40:17 | sub14 | eSafe | Win32.Artemis | 2/39 (5.1%) | AS36420, AS30315, AS13749, AS21844 | 174.123.24.59 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 4981c978ce22ad3b044b35544c100a7c | http://www.melhorsoft.com/download/instalardicionarioderimas.exe || 2011-10-19 10:40:17 | sub14 | Sophos | Mal/Behav-105 | 1/40 (2.5%) | AS36420, AS30315, AS13749, AS21844 | 174.123.24.59 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 75e74c8263be3269a2445e38bc91118a | http://www.melhorsoft.com/download/instalaremissorfotos3x4.exe || 2011-10-19 10:40:17 | sub14 | undef | unknown_exe | 0/40 (0.0%) | AS36420, AS30315, AS13749, AS21844 | 174.123.24.59 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 9494164cf948a230892df3de13c61c05 | http://www.melhorsoft.com/download/instalarfotocopia.exe || 2011-10-19 10:40:17 | sub14 | undef | unknown_exe | 0/39 (0.0%) | AS36420, AS30315, AS13749, AS21844 | 174.123.24.59 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 5bb60ffe5e0f9d0d6267e96e46c9d9c1 | http://www.melhorsoft.com/download/instalarmosaico.exe || 2011-10-19 10:40:17 | sub14 | Sophos | Mal/Behav-105 | 1/38 (2.6%) | AS36420, AS30315, AS13749, AS21844 | 174.123.24.59 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 34802cd0b701c3a2b8b5e7a02a7a2be8 | http://www.melhorsoft.com/download/instalartarodoamor.exe || 2011-10-19 10:40:17 | sub14 | undef | TR/Spy.Banker.Gen | 0/39 (0.0%) | AS36420, AS30315, AS13749, AS21844 | 174.123.24.59 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | a27605cea69c8c6e4f57e5b6e688b538 | http://www.melhorsoft.com/download/instalarvisualizadorcad.exe || 2011-10-19 11:00:13 | sub7 | avira | PHP/RemoteAdmi.6444 | 17/40 (42.5%) | AS20738 | 109.104.68.5 | abuse@webfusion.com | ES | RIPE | UK-WEBFUSION-LEEDS | 7f3cf4cb720673994fe5e5c8d83e6b31 | http://www.feminicidio.net/modules/mod_spo/plaid.txt?? || 2011-10-19 10:17:08 | sub8 | undef | Trojan-Dropper.Win32.Agent.eyav | 0/40 (0.0%) | AS2914 | 199.237.248.2 | abuse@ntt.net | US | ARIN | NTTA-199-236 | 0981571000eacc69e8f91584466f3be5 | http://199.237.248.2/imagens/produtos/ || 2011-10-19 11:31:07 | sub8 | undef | HEUR:Trojan.Win32.Generic | 0/40 (0.0%) | AS6939 | 66.220.9.55 | abuse@he.net | US | ARIN | HURRICANE-3 | e3cac6773c80693a114f206a4bfecef1 | http://hardc0re.drivehq.com/ || 2011-10-19 10:33:44 | sub17 | undef | unknown_html | 0/40 (0.0%) | AS36420, AS30315, AS13749, AS21844 | 174.120.9.94 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 3e9b75652191e0adcf8e719c7eb0559a | http://heprec.com || 2011-10-19 13:50:11 | sub20 | undef | unknown_html | 0/40 (0.0%) | AS262471 | 74.55.94.58 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 8a53f657a3b2ca989388339d8ef378cc | http://smsdenoticias.com.br/htp.txt || 2011-10-19 13:50:11 | sub20 | clamav | PUA.Packed.ASPack | 5/35 (14.3%) | AS262471 | 74.55.94.58 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | f0043fdfaf8cec3b72e78d64b3651f28 | http://smsdenoticias.com.br/modulo.txt || 2011-10-19 13:50:11 | sub20 | clamav | PUA.Packed.ASPack | 8/40 (20%) | AS262471 | 74.55.94.58 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | cacf8c511c2b54c6ab91a26cc29dddf8 | http://smsdenoticias.com.br/mshot.txt || 2011-10-19 13:54:13 | sub1 | undef | unknown_html_google_malware | 0/35 (0.0%) | AS24940 | 46.4.108.18 | abuse@hetzner.de | DE | RIPE | DE-HETZNER-20100819 | a7a2dbeaf6b78dbe147136aa5a368f50 | http://broken-chicken.xe.cx/showthread.php?t=302257 || 2011-10-19 13:54:13 | sub1 | undef | unknown_html_google_malware | 0/35 (0.0%) | AS24940 | 46.4.108.18 | abuse@hetzner.de | DE | RIPE | DE-HETZNER-20100819 | a7a2dbeaf6b78dbe147136aa5a368f50 | http://broken-chicken.xe.cx/showthread.php?t=752418 || 2011-10-19 13:54:13 | sub1 | trendmicro | JS_EXPLOYT.VTG | 14/40 (35%) | AS4837 | 121.22.6.39 | abuse@chinaunicom.cn | CN | APNIC | UNICOM-HE | d31eaa3abf032da4fd84cb4417fff931 | http://dlg.ns01.us/55/6.htm || 2011-10-19 13:54:13 | sub1 | Avast | JS:ShellCode-HC Expl | 2/40 (5%) | AS4837 | 121.22.6.39 | abuse@chinaunicom.cn | CN | APNIC | UNICOM-HE | 406028974a5b2e118fe363a014bf68a3 | http://dlg.ns01.us/55/iee.jpg || 2011-10-19 13:54:13 | sub1 | avira | JS/Agent.zbk | 1/40 (2.5%) | AS4837 | 121.22.6.39 | abuse@chinaunicom.cn | CN | APNIC | UNICOM-HE | e04499dcc94ed18d04be41cb2a4ba962 | http://dlg.ns01.us/55/ie.jpg || 2011-10-19 13:54:13 | sub1 | undef | unknown_html_google_malware | 0/40 (0.0%) | AS24940 | 46.4.108.18 | abuse@hetzner.de | DE | RIPE | DE-HETZNER-20100819 | 8b25866b9fa34c7cd23248b0560e9571 | http://leftsoup.xe.cx/showthread.php?t=422810 || 2011-10-19 14:40:03 | sub1 | undef | unknown_html_google_malware | 0/40 (0.0%) | AS26496 | 68.178.162.157 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 4fafee1ae34a4af764fcce9277b10e82 | http://murciaopina.com/0271s.html || 2011-10-19 15:00:16 | sub10 | avira | TR/KarmaHotel.A.1 | 33/40 (82.5%) | AS23387 | 168.150.251.105 | steve@dcn.org | US | ARIN | DCN-B1 | 32108d27e6902227c237c38307aeb204 | http://168.150.251.105/~phelix/dnr/mirc.troj1 || 2011-10-19 15:00:17 | sub10 | avira | VBS/Autorun.F | 30/40 (75%) | AS28667 | 189.1.179.173 | info@netconsultoria.com.br | BR | LACNIC | 005.262.383/0001-90 | 55c45105945f898132fa43fe4eee8b70 | http://189-1-179-173.customer.ntelecom.com.br/HintPwd.htm || 2011-10-19 15:00:17 | sub10 | avira | EXP/Pidief.aht | 21/40 (52.5%) | AS29182 | 62.109.26.133 | abuse@ispsystem.net | RU | RIPE | ISPSYSTEM | 27173a0b4a5f8daae6af1f301f1095da | http://62.109.26.133/w/xvitfmemizeoen3.pdf || 2011-10-19 15:00:17 | sub10 | Avast | HTML:Iframe-BH Trj | 18/40 (45%) | AS22781 | 216.131.66.62 | abuse@reliablehosting.com | US | ARIN | RBLHST | 5eae2c1adf6e8c22e1fa955c00211582 | http://derekanthony.com/babeofmonth/stacylynn/index.htm || 2011-10-19 15:00:17 | sub10 | avira | JS/Agent.elo | 9/40 (22.5%) | AS27823 | 200.58.112.174 | ipmaster@hostmar.com | AR | LACNIC | AR-DATT-LACNIC | 2269ab31573a25a8291646a13744ad39 | http://dicigua.com/osx/js/jquery.simplemodal.js || 2011-10-19 15:00:17 | sub10 | AhnLab_V3 | Trojan/Win32.Xema | 20/40 (50%) | AS14618 | 107.22.250.182 | ec2-abuse@amazon.com | US | ARIN | AMAZON-EC2-8 | 64b16c71de0f1c0cfa3e5a84f7eb8ac5 | http://dl.dropbox.com/u/45765628/videos-88ghf982.exe || 2011-10-19 15:00:17 | sub10 | avira | TR/ATRAPS.Gen | 11/40 (27.5%) | AS9318 | 118.217.183.135 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | 5062024691cb87ab26562beab67de9c2 | http://ds.searchstar.co.kr/s_key/20111014/searchstar.dll || 2011-10-19 15:00:17 | sub10 | avira | TR/Spy.Duffi.A | 17/40 (42.5%) | AS8426 | 195.8.66.1 | abuse@clara.net | GB | RIPE | CLARANET-HSC-CLARAHOST-1 | 360a51254022c97754ef0f4de916f544 | http://epworthpool.co.uk/download/Info.zip?03P94F16DD || 2011-10-19 15:00:17 | sub10 | avira | TR/Spy.Duffi.A | 18/39 (46.2%) | AS8426 | 195.8.66.1 | abuse@clara.net | GB | RIPE | CLARANET-HSC-CLARAHOST-1 | b2e369a969713945cf60971e7f9ea739 | http://epworthpool.co.uk/download/Profiel.zip?16RLT3 || 2011-10-19 15:00:17 | sub10 | avira | JS/Zapchast.AR | 8/40 (20%) | AS9394 | 122.70.145.59 | liujun66@sina.vip.com | CN | APNIC | Gold-Computer | fa63dd44f9d820b96b87ce756b8faabc | http://e-tshow.net/f10.htm || 2011-10-19 15:00:17 | sub10 | avira | HTML/Shellcode.Gen | 10/40 (25%) | AS9394 | 122.70.145.59 | liujun66@sina.vip.com | CN | APNIC | Gold-Computer | 9b3305a1a7b113d4141370bd99999979 | http://e-tshow.net/ff.html || 2011-10-19 15:00:17 | sub10 | avira | JS/Agent.ewv | 12/39 (30.8%) | AS9394 | 122.70.145.59 | liujun66@sina.vip.com | CN | APNIC | Gold-Computer | 0974a005ebadaf71ad97c504b3fee3b9 | http://e-tshow.net/n95.htm || 2011-10-19 15:00:17 | sub10 | AhnLab_V3 | HTML/Exploit-cve | 19/40 (47.5%) | AS9394 | 122.70.145.59 | liujun66@sina.vip.com | CN | APNIC | Gold-Computer | 24e09bc80b281b32f152c57f2e30490f | http://e-tshow.net/of.htm || 2011-10-19 15:00:17 | sub10 | avira | EXP/Win32.CVE-2009-1862.BC | 18/39 (46.2%) | AS9394 | 122.70.145.59 | liujun66@sina.vip.com | CN | APNIC | Gold-Computer | be3bcb0709dfc7a281444e9e00477894 | http://e-tshow.net/xp.swf || 2011-10-19 15:00:17 | sub10 | avira | TR/Delf.spd | 24/39 (61.5%) | AS39869 | 178.19.106.194 | tomek@sitel.net.pl | PL | RIPE | LIVENET | 1e2a61ff8fcbd3c235583185ee2d81a0 | http://evulmastah.ddl2.pl/Avesta.22.02.09.rar || 2011-10-19 15:00:17 | sub10 | avira | TR/Spy.Duffi.A | 18/39 (46.2%) | AS20718 | 217.76.130.214 | abuse@arsys.es | ES | RIPE | NET-ARSYS-EURO-4 | b2e369a969713945cf60971e7f9ea739 | http://kinesbel.com/download/Profiel.zip?20ANY9407 || 2011-10-19 15:00:18 | sub10 | BitDefender | Gen:Variant.Kazy.40442 | 8/39 (20.5%) | AS8455 | 95.142.100.20 | leole@infonie.be | BE | RIPE | CYBERTECHNOLOGY | a1a2cee664774705f44c5151f669330c | http://litecodecupdate.com/play/newmovie.exe || 2011-10-19 15:00:18 | sub10 | avira | TR/Dropper.Gen | 21/39 (53.8%) | AS12695 | 92.38.199.150 | abuse@di-net.ru | RU | RIPE | DINETHOSTING-NEXT2 | 6a00e0216946f02c6ab7dd2adc329eae | http://yovkontakte.ru/file/Flash_Player.exe || 2011-10-19 15:00:18 | sub10 | avira | TR/Dropper.Gen | 17/39 (43.6%) | AS12695 | 92.38.199.150 | abuse@di-net.ru | RU | RIPE | DINETHOSTING-NEXT2 | 3e2ea63fa830747fd25303d3f4b044d4 | http://yovkontakte.ru/file/FvCheat.exe || 2011-10-19 15:00:18 | sub10 | avira | TR/Dropper.Gen | 16/39 (41%) | AS12695 | 92.38.199.150 | abuse@di-net.ru | RU | RIPE | DINETHOSTING-NEXT2 | 57bb4d9852edd30bfdc207194ae1cda3 | http://yovkontakte.ru/file/VKButton.exe || 2011-10-19 15:00:18 | sub10 | avira | TR/Dropper.Gen | 16/39 (41%) | AS12695 | 92.38.199.150 | abuse@di-net.ru | RU | RIPE | DINETHOSTING-NEXT2 | 500f1f4b0e9ebb88c1885d41db0a5e16 | http://yovkontakte.ru/file/Vkracker.exe || 2011-10-19 16:00:17 | sub7 | avira | PHP/RemoteAdmi.6444 | 17/39 (43.6%) | AS20738 | 109.104.68.5 | abuse@webfusion.com | ES | RIPE | UK-WEBFUSION-LEEDS | 7f3cf4cb720673994fe5e5c8d83e6b31 | http://www.feminicidio.net/modules/mod_spo/plaid.txt? || 2011-10-19 16:00:18 | sub14 | avira | TR/Downloader.Gen | 31/40 (77.5%) | AS33182 | 199.168.184.154 | abuse@dimenoc.com | US | ARIN | DIMENOC | 584e855556f7eaa9c5c71532b9e6df2b | http://sitedejogosonlines.com.br/download/Joga2r.exe || 2011-10-19 16:00:19 | sub14 | avira | TR/Downloader.Gen | 29/40 (72.5%) | AS33182 | 199.168.184.154 | abuse@dimenoc.com | US | ARIN | DIMENOC | 2958d23f9864617e7caa21fa4b62fad9 | http://sitedejogosonlines.com.br/download/Joga33r.exe || 2011-10-19 16:00:19 | sub14 | avira | TR/Crypt.NSPM.Gen | 26/40 (65%) | AS33182 | 199.168.184.154 | abuse@dimenoc.com | US | ARIN | DIMENOC | edb51a2af5b5d1d09d56003aac380843 | http://sitedejogosonlines.com.br/download/JogarESSEEEEE.exe || 2011-10-19 16:00:19 | sub14 | avira | TR/Dldr.Delphi.Gen | 29/40 (72.5%) | AS33182 | 199.168.184.154 | abuse@dimenoc.com | US | ARIN | DIMENOC | e8e8dca4bf98ae894ab4db7070e9e49e | http://sitedejogosonlines.com.br/download/Jogaress.exe || 2011-10-19 16:00:19 | sub14 | avira | TR/Downloader.Gen | 28/40 (70%) | AS33182 | 199.168.184.154 | abuse@dimenoc.com | US | ARIN | DIMENOC | 5875ed5630750e70480875948ace6979 | http://sitedejogosonlines.com.br/download/ke.exe || 2011-10-19 16:00:19 | sub14 | avira | TR/Crypt.TPM.Gen | 27/40 (67.5%) | AS33182 | 199.168.184.154 | abuse@dimenoc.com | US | ARIN | DIMENOC | 082e0540e7d45f97005b399b9d195ba3 | http://sitedejogosonlines.com.br/download/ki.exe || 2011-10-19 16:00:19 | sub14 | clamav | PUA.Packed.PECompact-1 | 5/40 (12.5%) | AS4766 | 14.63.217.88 | abuse@kornet.net | KR | APNIC | KORNET | 75188665bd242aefa18827c929a4baaf | http://s.winggo.co.kr/SM4/wfilehamSetup.exe || 2011-10-19 16:00:19 | sub14 | clamav | PUA.Packed.PECompact-1 | 4/40 (10%) | AS4766 | 14.63.217.88 | abuse@kornet.net | KR | APNIC | KORNET | 687a8b627f1e33de9f5e4617bbe4bf3e | http://s.winggo.co.kr/SM4/winggo.dll || 2011-10-19 16:00:19 | sub14 | clamav | PUA.Packed.PECompact-1 | 5/40 (12.5%) | AS4766 | 14.63.217.88 | abuse@kornet.net | KR | APNIC | KORNET | 84194414e624ce3d45ebe3cbfb6283c3 | http://s.winggo.co.kr/SM4/winggom.exe || 2011-10-19 16:00:19 | sub14 | trendmicro | TROJ_ADLOAD.VTG | 14/40 (35%) | AS4766 | 14.63.217.88 | abuse@kornet.net | KR | APNIC | KORNET | 855c4c8bef6166dc44032d18c8c4e917 | http://s.winggo.co.kr/SM4/winggoSetup.exe || 2011-10-19 16:00:19 | sub14 | clamav | PUA.Packed.PECompact-1 | 11/40 (27.5%) | AS4766 | 14.63.217.88 | abuse@kornet.net | KR | APNIC | KORNET | cce2174485534e741fa12cd61c422f62 | http://s.winggo.co.kr/SM4/winggou.exe || 2011-10-19 16:00:19 | sub14 | avira | SPR/Tool.Winggo.B.1 | 19/40 (47.5%) | AS4766 | 14.63.217.88 | abuse@kornet.net | KR | APNIC | KORNET | 74792e97bc1f55fc9dfcc3a7981ebdea | http://s.winggo.co.kr/SM4/wkmplayerSetup.exe || 2011-10-19 16:00:19 | sub14 | clamav | PUA.Packed.PECompact-1 | 12/40 (30%) | AS4766 | 14.63.217.88 | abuse@kornet.net | KR | APNIC | KORNET | e224ed48dd605c825aeeed6276e68347 | http://s.winggo.co.kr/SM4/wnurungziSetup.exe || 2011-10-19 16:00:19 | sub14 | avira | SPR/Tool.Winggo.B.3 | 18/40 (45%) | AS4766 | 14.63.217.88 | abuse@kornet.net | KR | APNIC | KORNET | 15622ab9b52bd3f69b2bfbe80c2655df | http://s.winggo.co.kr/SM4/wpandoraSetup.exe || 2011-10-19 16:00:19 | sub14 | avira | SPR/Tool.Winggo.B | 19/40 (47.5%) | AS4766 | 14.63.217.88 | abuse@kornet.net | KR | APNIC | KORNET | 9c601e4098833ae19980a093c898b810 | http://s.winggo.co.kr/SM4/wpodcornSetup.exe || 2011-10-19 16:00:19 | sub14 | undef | unknown_exe | 0/40 (0.0%) | AS8972 | 217.172.163.11 | abuse@plusserver.de | DE | RIPE | PLUSSERVER-1 | 3d25a25c06c3f6d6386d42bd8297472c | http://www.thiecom.com/ftp/software/audio/win/koolplaya.exe || 2011-10-19 16:00:19 | sub14 | clamav | PUA.Packed.ASPack | 9/40 (22.5%) | AS8972 | 217.172.163.11 | abuse@plusserver.de | DE | RIPE | PLUSSERVER-1 | d38163315e295b464abdecd3ac19af73 | http://www.thiecom.com/ftp/software/audio/win/no23_recorder.exe || 2011-10-19 16:00:19 | sub14 | undef | unknown_html | 0/40 (0.0%) | AS8972 | 217.172.163.11 | abuse@plusserver.de | DE | RIPE | PLUSSERVER-1 | 6c5868bb10492258a683e2fa424c5d62 | http://www.thiecom.com/ftp/software/audio/win/voice || 2011-10-19 16:00:41 | sub10 | AhnLab_V3 | Trojan/Win32.Ruftar | 19/40 (47.5%) | AS32475 | 69.175.97.114 | netops@singlehop.com | US | ARIN | SINGLEHOP | 6d18b2d34b64ebfdd58499eecbb1d556 | http://cosmo-crew.com/img/crew/G6k11303315531.jpg || 2011-10-19 16:00:44 | sub1 | avira | TR/Dldr.Megone.cdmw | 21/40 (52.5%) | AS3786 | 61.32.70.227 | shkim082@chol.com | KR | APNIC | BORANET-KR | bb5d1c5778af5ed9a038dc69f8964cae | http://update6.pointmani.com/common/pupdate.exe || 2011-10-19 16:08:21 | sub5 | avira | PHP/IRCBOT.E.29297 | 25/40 (62.5%) | AS29405 | 109.74.156.2 | abuse@vnet.sk | SK | RIPE | SK-VNET-20091029 | 6ab81bc40d53ed8a461d19b1c790c185 | http://narodniar.sk/images/sierra/dd.jpg?? || 2011-10-19 15:51:52 | sub5 | Avast | PHP:Shell-BA Trj | 6/40 (15%) | AS29405 | 93.184.77.28 | abuse@vnet.sk | SK | RIPE | SK-VNET-20080526 | ca9d8d2e6b1062802a6b060a603f1ecc | http://alarmshop.sk/pdf/byroe.php || 2011-10-19 16:10:13 | sub24 | avira | EXP/Pidief.gfa.7 | 28/40 (70%) | AS14366 | 67.230.173.202 | noc@caratnetworks.com | CA | ARIN | CLEARANCE-RACK | 17c07f34d3aec04a95a2fe9298a09df6 | http://67.230.173.202/games/2fdp.php?f=36 || 2011-10-19 16:10:13 | sub24 | avira | EXP/Pidief.gfa.7 | 29/40 (72.5%) | AS14366 | 67.230.173.202 | noc@caratnetworks.com | CA | ARIN | CLEARANCE-RACK | 63dbccfdb4a6b9bfb7c5146a94380992 | http://67.230.173.202/games/2fdp.php?f=65 || 2011-10-19 16:10:37 | sub23 | AhnLab_V3 | Trojan/Win32.PornoAsset | 17/40 (42.5%) | AS12695 | 89.208.141.171 | lir@di-net.ru | RU | RIPE | RU-DINET-20060418 | 405f5ec3a4f1fd62a5bb2ad3d8d97994 | http://1.vp29uud.ru/c.php?f=632&e=2 || 2011-10-19 16:10:37 | sub23 | BitDefender | Trojan.Generic.KD.381356 | 11/40 (27.5%) | AS12695 | 89.208.141.171 | lir@di-net.ru | RU | RIPE | RU-DINET-20060418 | 1923140f74640dbfa06952dd9b654657 | http://1.vp29uud.ru/c.php?f=635&e=2 || 2011-10-19 16:10:37 | sub23 | BitDefender | Trojan.Generic.KD.381294 | 14/40 (35%) | AS12695 | 89.208.141.171 | lir@di-net.ru | RU | RIPE | RU-DINET-20060418 | 3004da91d61fe120f41c663c35be7672 | http://1.vp29uud.ru/c.php?f=636&e=2 || 2011-10-19 16:10:37 | sub20 | undef | unknown_html | 0/40 (0.0%) | AS4766 | 14.63.217.88 | abuse@kornet.net | KR | APNIC | KORNET | a00604241dfca41bc9f40be84a67d69b | http://s.winggo.co.kr/SM4/smlist.dat || 2011-10-19 16:10:37 | sub20 | undef | unknown_html | 0/39 (0.0%) | AS4766 | 14.63.217.88 | abuse@kornet.net | KR | APNIC | KORNET | 63d7949b311e88725c1e43963d497a5e | http://winggo.co.kr/MIN/log/LogProc.php?mac=00%2D0C%2D29%2D7E%2D85%2D56&mode=IL2&pCode=31&preinstall=N || 2011-10-19 16:10:37 | sub20 | undef | unknown_html | 0/39 (0.0%) | AS4766 | 14.63.217.88 | abuse@kornet.net | KR | APNIC | KORNET | 63d7949b311e88725c1e43963d497a5e | http://winggo.co.kr/MIN/log/LogProc.php?mac=00%2D0C%2D29%2D7E%2D85%2D56&mode=IL2&pCode=32&preinstall=N || 2011-10-19 16:10:37 | sub20 | undef | unknown_html | 0/40 (0.0%) | AS4766 | 14.63.217.88 | abuse@kornet.net | KR | APNIC | KORNET | a00604241dfca41bc9f40be84a67d69b | http://winggo.co.kr/SM4/smlist.dat || 2011-10-19 16:50:07 | sub11 | Avast | PHP:Small-AP Trj | 9/39 (23.1%) | AS9848 | 66.232.143.238 | abuse@hostway.co.kr | KR | ARIN | HW-66-232-136-22 | 4a07656076f5a95015724bdcf326e600 | http://acoc.co.kr/ncoc/jungang/data/guild/id1.txt || 2011-10-19 16:50:07 | sub11 | avira | PHP/Pbot.A.6 | 26/40 (65%) | AS19194 | 63.223.121.212 | supportamerica@sentris.com | US | ARIN | PCCW-SENTRIS | 65d5c5f4274a3580ac2c9d4f8fdc72cd | http://www.4freeimagehost.com/uploads/72d7a50d4d01.jpg || 2011-10-19 16:50:07 | sub11 | avira | PHP/Mailer.tpi | 23/39 (59%) | AS14492 | 209.18.108.223 | abuse@datapipe.com | US | ARIN | DATAPIPE-NETBLK6 | e89696cc1a167da3ad3acb56dbc85ad0 | http://www.summercamptac.com/ookie.inc.txt || 2011-10-19 15:47:27 | sub8 | undef | Packed.Win32.Black.a | 0/40 (0.0%) | AS15418 | 88.208.217.167 | mark.wood@fasthosts.co.uk | GB | RIPE | UK-FASTHOSTS-20051102 | e1ce1bc6c1ac989da1d2d646de8decc5 | http://sabira.zyns.com/ || 2011-10-19 17:10:08 | sub18 | avira | PHP/IRCBOT.E.29297 | 25/40 (62.5%) | AS29405 | 109.74.156.2 | abuse@vnet.sk | SK | RIPE | SK-VNET-20091029 | 3a1bee37cd0aaae9764685966cc50ad7 | http://www.narodniar.sk/images/sierra/ddd.jpg?? || 2011-10-19 17:20:14 | sub24 | avira | EXP/Pidief.gfa.7 | 27/40 (67.5%) | AS14366 | 67.230.173.202 | noc@caratnetworks.com | CA | ARIN | CLEARANCE-RACK | f5c046a87f8d057b1e7f83d1a7e4cab2 | http://67.230.173.202/games/2fdp.php?f=61 || 2011-10-19 17:20:15 | sub24 | avira | EXP/Pidief.gfa.7 | 29/39 (74.4%) | AS14366 | 67.230.173.202 | noc@caratnetworks.com | CA | ARIN | CLEARANCE-RACK | b598631f64831c5ed37f1ab0cf33a1da | http://67.230.173.202/games/2fdp.php?f=94 || 2011-10-19 17:40:09 | sub1 | undef | unknown_html_google_malware | 0/39 (0.0%) | AS33182 | 66.7.220.43 | abuse@dimenoc.com | US | ARIN | DIMECNET | 4fafee1ae34a4af764fcce9277b10e82 | http://www.panelpeople.com/1060.html || 2011-10-19 17:40:09 | sub1 | undef | unknown_html_google_malware | 0/39 (0.0%) | AS33182 | 66.7.220.43 | abuse@dimenoc.com | US | ARIN | DIMECNET | 4fafee1ae34a4af764fcce9277b10e82 | http://www.panelpeople.com/lgk6myc.html || 2011-10-19 17:40:09 | sub14 | avira | TR/Boigy.1.13 | 32/39 (82.1%) | AS14618 | 107.22.250.125 | ec2-abuse@amazon.com | US | ARIN | AMAZON-EC2-8 | 20b2ef2fd753309133cf6be3ce9ebab7 | http://dl.dropbox.com/u/34539690/bins/gbot.exe || 2011-10-19 15:48:00 | sub8 | undef | HEUR:Trojan-Downloader.Win32.Generic | 0/39 (0.0%) | AS33182 | 66.7.210.23 | abuse@dimenoc.com | US | ARIN | DIMECNET | e6c29f93a5a260b3618de591d3935c80 | http://3neek.com/ || 2011-10-19 17:57:34 | sub5 | avira | TR/Script.75 | 25/39 (64.1%) | AS32475 | 173.236.106.148 | netops@singlehop.com | US | ARIN | SINGLEHOP | a05dfd7cca7771a7565a154d65f05ea2 | http://top1sneakers.com/doc/id1.txt? || 2011-10-19 17:57:38 | sub5 | avira | PHP/BackDoor.AR | 31/39 (79.5%) | AS32475 | 173.236.106.148 | netops@singlehop.com | US | ARIN | SINGLEHOP | 8dcad47f3e32e7dc1aee59167e67c601 | http://top1sneakers.com/doc/id2.txt?? || 2011-10-19 18:00:19 | sub5 | avira | PHP/C99Shell.F | 29/39 (74.4%) | AS32475 | 173.236.106.148 | netops@singlehop.com | US | ARIN | SINGLEHOP | 4294fc0ba82375ecd19d26c0b6fd64ec | http://top1sneakers.com/doc/sh.pdf? || 2011-10-19 18:12:18 | sub17 | avira | EXP/CVE-2008-2551 | 10/39 (25.6%) | AS36351 | 174.36.201.140 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-7 | 20e7eda06f172696ea241cee1395f46f | http://shubah.com || 2011-10-19 15:48:08 | sub8 | undef | Trojan-Downloader.Win32.Banload.bgca | 0/39 (0.0%) | AS21013 | 85.31.1.45 | hostmaster@itandtel.at | AT | RIPE | NETZPIONIER-AT-NET-03 | 07e53d615697fefd73b68c5003c3e3c8 | http://zigarrenclub.at/ || 2011-10-19 17:47:05 | sub8 | undef | W32/Adware!f556 | 0/40 (0.0%) | AS42926 | 46.45.136.234 | abuse@istanbuldc.com | TR | RIPE | ISTANBUL-DC | 644a95a68b21f70947910bb313c3f416 | http://www.zermt2.com/patch/pack/ || 2011-10-19 17:48:14 | sub8 | undef | Backdoor.Win32.PcClient.egws | 0/40 (0.0%) | AS6760 | 77.68.68.238 | abuse@ripe.net | EU | RIPE | EU-ZZ-80-93 | 98c15a3db0055eb66da0a637755120a5 | http://bunchacunce.org/stash/ || 2011-10-19 18:50:04 | sub1 | undef | unknown_html_google_malware | 0/40 (0.0%) | AS30277 | 209.236.117.158 | joseq@tailoredservers.com | US | ARIN | TAILORMADESERVERS | 003f0944f586ce1b78a392c7077caa61 | http://sabaonline.ir/sleep.html || 2011-10-19 19:00:15 | sub10 | avira | TR/Wizon.AA | 8/40 (20%) | AS3786 | 222.231.59.171 | support@kidc.net | KR | APNIC | KIDC-KR | 7b79fcb6564f5172c8ca4b4faf2aa146 | http://app2.tsmon.co.kr/file/H1/H101/uninstall.cab || 2011-10-19 19:00:16 | sub10 | avira | EXP/Flash.Gen | 23/40 (57.5%) | AS9394 | 122.70.145.59 | liujun66@sina.vip.com | CN | APNIC | Gold-Computer | 7573aac359aa144f13613aa7b816d4d2 | http://e-tshow.net/i64.swf || 2011-10-19 19:00:16 | sub10 | avira | TR/Dropper.Gen | 30/40 (75%) | AS32613 | 70.38.98.237 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-05 | 84f63c13a1ce99622a0bab7ce28825da | http://img103.herosh.com/2011/10/16/116012248.gif || 2011-10-19 19:00:16 | sub10 | Avast | VBS:Agent-KZ Trj | 25/40 (62.5%) | AS3595 | 205.251.154.117 | engineering@gnax.net | US | ARIN | GNAXNET | 83e93b5991ba3bb38799a8f1f0ba29b8 | http://investandwin.net/magic/ || 2011-10-19 19:00:16 | sub10 | avira | JS/iFrame.HC | 16/40 (40%) | AS4618 | 203.150.230.34 | noc@inet.co.th | TH | APNIC | INET-TH | 3e1e8d4745b5df1bb75176fa976eac59 | http://kawaithemusical.com || 2011-10-19 19:00:17 | sub10 | avira | TR/Spy.Duffi.A | 17/40 (42.5%) | AS20718 | 217.76.130.214 | abuse@arsys.es | ES &
Topic: clean mx's daily dirt (Read 4065379 times)
