0 Members and 4 Guests are viewing this topic.
+---------------------+-------------+------------------+----------------------------------------------+---------------+------------------------------------+-----------------+----------------------------------+---------+--------+----------------------------+----------------------------------+----------------------------------------------------------------------------------------------------------------------+| date | contributor | scanner | virusname | vt_score | AS | review | email | country | source | netname | md5sum | url |+---------------------+-------------+------------------+----------------------------------------------+---------------+------------------------------------+-----------------+----------------------------------+---------+--------+----------------------------+----------------------------------+----------------------------------------------------------------------------------------------------------------------+| 2012-02-02 19:20:05 | sub10 | avira | TR/Dropper.Gen | 21/41 (51.2%) | AS16276 | 176.31.78.58 | abuse@ovh.net | FR | RIPE | FR-OVH-20110520 | 4ebaef37591fa8e246003925fbda213b | http://176.31.78.58/nm.exe || 2012-02-02 19:20:05 | sub10 | avira | HTML/Dldr.Agent.OB | 29/42 (69%) | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 46205ac9389514bc197e177b696711fe | http://wuya10.199138.com/image/wuya10/index1.asp || 2012-02-02 19:20:06 | sub16 | undef | unknown_html_google_malware | 0/42 (0.0%) | AS1680 | 212.143.244.203 | nvabuse@013netvision.co.il | IL | RIPE | IL-NETVISION-990329 | 6dea0ab747f21fc049140db389fa97da | http://moshiko.net/ || 2012-02-02 19:20:06 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS17494 | 123.49.59.153 | detelex@btcl.net.bd | BD | APNIC | BTTB | 03ce0cca7936b4b6c13226738d5bc566 | http://www.dpe.gov.bd/pdf/primaryWrittenResult_final.pdf || 2012-02-02 19:20:07 | sub16 | eSafe | Win32.Artemis | 7/43 (16.3%) | AS32475 | 69.175.66.250 | netops@singlehop.com | US | ARIN | SINGLEHOP | 3834bbbee82a428f58516f2c08e9bb86 | http://www.jupitersoftwares.com/downloads/game/My-Game-Downloader.exe || 2012-02-02 19:20:07 | sub16 | avira | ADSPY/NaviPromo.J | 12/42 (28.6%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | c7e3846bcde66ce6357f293647a52d7d | http://www.toptenreport.com/download/axmm-pdf-encryption-s.exe || 2012-02-02 17:38:27 | sub17 | avira | HTML/Crypted.Gen | 2/42 (4.8%) | AS36420, AS30315, AS13749, AS21844 | 174.120.203.91 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 60d3ec93fd917e1809870b9d8a8659a5 | http://brandshowrooms.com/topbanners/img48_10xccbf.html || 2012-02-02 19:29:41 | sub1 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS13618 | 76.76.15.190 | abuse@carohosting.com | US | ARIN | CARO-NET-ARIN-2 | b6e80e3623594cce31dc0066a2737334 | http://patentgenius.com/temp/head.png?sv=473&tq=gHZutDyMv5rJfiG1J8K%2B1MWCJbP4lltXIA%3D%3D || 2012-02-02 19:29:41 | sub1 | undef | unknown_html_RFI_shell | 0/42 (0.0%) | AS13618 | 76.76.15.190 | abuse@carohosting.com | US | ARIN | CARO-NET-ARIN-2 | 395dc9147f243d8afc4d46ca90ca6e6f | http://patentgenius.com/temp/head.png?sv=758&tq=gJ4WK%2FSUh6zGkER8oY%2BQrMWTUj26kJHjyZJTNbqVyaBqtUn5CGFYVw%3D%3D || 2012-02-02 19:29:41 | sub10 | avira | TR/Spy.286781.1 | 32/41 (78%) | AS33182 | 64.37.52.109 | abuse@dimenoc.com | US | ARIN | DIMENOC-NETWORK | 494980d062a6718af18b860444ec750f | http://64.37.52.109/%7efreemusi/Software.exe || 2012-02-02 19:29:42 | sub10 | avira | TR/Spy.ZBot.HU.453 | 15/43 (34.9%) | AS36420, AS30315, AS13749, AS21844 | 174.120.200.62 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 0facce4f790c3ecfea408939d302ad08 | http://abmahnschutz.info/smtp31jan.exe || 2012-02-02 19:30:05 | sub17 | avira | HTML/Infected.WebPage.Gen2 | 26/43 (60.5%) | AS51559 | 94.102.2.247 | netadmin@ni.net.tr | TR | RIPE | TR-NETINTERNET | 1d10c7e2598cabc0617d5420f58606ee | http://www.nokiafrm.com/archive/index.php/f-3.html || 2012-02-02 19:30:05 | sub17 | avira | JS/iFrame.psa.4 | 26/43 (60.5%) | AS35662 | 31.3.230.130 | abuse@dedicatedservercontact.com | GB | RIPE | DSC-CNMGPAKP | e1a730de36c66b37eb21f5b211576730 | http://www.pelinkarahan.org/archive/index.php/f-7.html || 2012-02-02 19:40:06 | sub16 | avira | PHP/IRCBOT.EF | 19/40 (47.5%) | AS7506 | 210.172.144.27 | warita@gmo.jp | JP | APNIC | INTERQ | fcccdb4fb0eea30c029724c1eb60bafe | http://asakusa-kagetudo.com/modules/shop/10.jpg || 2012-02-02 19:40:07 | sub16 | Ikarus | Trojan.Redirect | 2/40 (5%) | AS3216 | 194.186.88.38 | abuse@relax.ru | RU | RIPE | RU-SOVINTEL-MSK-RokVel-NET | ac6627ee19c3e26d691bd3f36125fed2 | http://dimosc.krovatka.su/ || 2012-02-02 19:40:08 | sub16 | undef | unknown_file_setup.exe | | AS32475 | 184.154.160.129 | abuse@singlehop.com | US | ARIN | SINGLEHOP | 72506b937c5b8e858bd88d2351800d43 | http://villemobile.com/binary/a1807_PSPConvert.zip || 2012-02-02 19:40:08 | sub16 | avira | TR/Buzus.fhul.1 | 34/43 (79.1%) | AS46216 | 216.52.115.51 | abuse@internap.com | US | ARIN | PNAP-8-98 | a992655d2f01690e3f24fd24468ca1c0 | http://www.elfbotcrack.webs.com/elfbotcrack.rar || 2012-02-02 19:40:47 | sub16 | avira | PHP/IRCBOT.EF | 19/43 (44.2%) | AS7506 | 210.172.144.27 | warita@gmo.jp | JP | APNIC | INTERQ | e192a8b06f3606eb5b4438d96b4289f2 | http://asakusa-kagetudo.com/modules/shop/11.jpg || 2012-02-02 19:40:48 | sub16 | undef | unknown_file_$PLUGINSDIR/Download_Energy.exe | | AS15133 | 93.184.220.20 | noc@edgecast.com | EU | RIPE | EDGECAST-NETBLK-04 | 62fbcad48f0c806036ebbe0b97c15554 | http://www.bestwebsharing.com/downloads/groovy-media-player-setup.exe || 2012-02-02 19:40:49 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS8560 | 82.165.119.125 | abuse@1and1.com | DE | RIPE | SCHLUND-SHARED | 2c6f552f491e63db8ce10af3aae77a7f | http://www.worldofanimals.de/html/world_of_animals_-_webcams_sto.html || 2012-02-02 19:40:49 | sub16 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS32613 | 72.55.186.5 | abuse@panelboxmanager.com | CA | ARIN | PANELBOX-01 | 407c37d9782608f295217026c904bcd2 | http://yukikan.ca/logs/secure_data_set.co.za/index.php || 2012-02-02 18:52:04 | sub8 | undef | WebToolbar.Win32.RK.cb | 0/43 (0.0%) | AS16276 | 46.105.174.26 | abuse@ovh.net | FR | RIPE | FR-OVH-20101129 | 05a2967bbf244b908a9ac6d616151c9e | http://dfr.eorezo.com/clib/eorezo/fr/earth/ || 2012-02-02 19:50:09 | sub10 | avira | TR/Spy.Gen | 32/42 (76.2%) | AS24940 | 78.46.18.66 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ10 | 628b2d0f7299823cef55d6a6e899463a | http://ww.homepage.com.nu/java.exe || 2012-02-02 19:59:39 | sub1 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS8612 | 62.10.189.173 | abuse@tiscali.it | IT | RIPE | TISCALINET | 2a410e352d5137af6e651365228eebbd | http://1910specialefinanziamenti.dnsdynamic.net/res/jquery.js || 2012-02-02 19:59:39 | sub1 | undef | unknown_html_google_malware | 0/42 (0.0%) | AS8612 | 62.10.189.173 | abuse@tiscali.it | IT | RIPE | TISCALINET | fb58890b81f3928a9636111200fee670 | http://1910specialefinanziamenti.dnsdynamic.net/res/l10n.js || 2012-02-02 19:59:39 | sub1 | undef | unknown_html_google_malware | 0/41 (0.0%) | AS8612 | 62.10.189.173 | abuse@tiscali.it | IT | RIPE | TISCALINET | d934c2cafe3a33e12fe865931eaf82e6 | http://1910specialefinanziamenti.dnsdynamic.net/res/swfobject.js || 2012-02-02 19:59:39 | sub1 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS8612 | 62.10.189.173 | abuse@tiscali.it | IT | RIPE | TISCALINET | ef77c3b5f09e2bdcd0bbe2d8675c86aa | http://1910specialefinanziamenti.dnsdynamic.net/res/x5cartengine.js || 2012-02-02 19:59:39 | sub1 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS8612 | 62.10.189.173 | abuse@tiscali.it | IT | RIPE | TISCALINET | 6c51b7ad0b91c2997fa383a288a303e5 | http://1910specialefinanziamenti.dnsdynamic.net/res/x5engine.js || 2012-02-02 19:59:39 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS8612 | 62.10.189.173 | abuse@tiscali.it | IT | RIPE | TISCALINET | 0f89c8049b05e264605f6e156ae14dbc | http://1910specialefinanziamenti.dnsdynamic.net/res/x5settings.js || 2012-02-02 19:59:39 | sub1 | McAfee_GW_Editio | Heuristic.BehavesLike.JS.Infected.A | 2/43 (4.7%) | AS25532 | 90.156.201.26 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-HOSTING | 8b53a9a3790e1ec69a9feb6c957e0dbd | http://acme-shop.ru//catalog/index.php || 2012-02-02 19:59:39 | sub1 | ClamAV | PUA.JS.Obfus-10 | 1/43 (2.3%) | AS45400 | 210.90.34.98 | changis1@kidp.or.kr | KR | APNIC | PUBNET-KR | c4cc4a76f3192cb0626d077ed472e405 | http://amcdrrkorea.org//include/flash/flash.js || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS45400 | 210.90.34.98 | changis1@kidp.or.kr | KR | APNIC | PUBNET-KR | 2efe7eb57459699e5fe9cd2a49199215 | http://amcdrrkorea.org//include/function/ajax.js || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS45400 | 210.90.34.98 | changis1@kidp.or.kr | KR | APNIC | PUBNET-KR | ca9562fb17f6f5c073867ef9e4efe64d | http://amcdrrkorea.org//include/function/base.js || 2012-02-02 19:59:40 | sub1 | ClamAV | HTML.URL.Crypt | 1/41 (2.4%) | AS45400 | 210.90.34.98 | changis1@kidp.or.kr | KR | APNIC | PUBNET-KR | 8f53c0f0c374c975f3498d4c0e10f331 | http://amcdrrkorea.org/Scripts/AC_RunActiveContent.js || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | 59989a41fafbd39ffefc11e805964329 | http://antivirusdo.com/chatrpad.php || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | 8f952b12997a5ef90e09ee12ff054e14 | http://antivirusim.com/chatrpad.php || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | f493100f2635286455c7f5029dc38f51 | http://antivirustown.com/chatrpad.php || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | 6c33cf93b84644443002dcdb6fb1791b | http://antivirysmonde.com/chatrpad.php || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | 982f7020497ac11947420aa1928b3c19 | http://antivirysprojet.com/chatrpad.php || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | 36125959e49acb300d72f5ff743fa56c | http://antiviryssuperbe.com/chatrpad.php || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | c1ab33e7450f4ada73abdfa7388a79b1 | http://antivirysvirtuel.com/chatrpad.php || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS25653 | 69.72.252.222 | abuse@fortressitx.com | US | ARIN | FORTRESSITX | bf42809bb083dcd6c575c82f34d99fc3 | http://assntitties.com/st/css/css.js || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | c245e7433f1312e17520df357f690651 | http://bioantiviral.com/chatrpad.php || 2012-02-02 19:59:40 | sub1 | avira | HTML/Infected.WebPage.Gen2 | 22/43 (51.2%) | AS41535 | 89.253.247.10 | abuse@rusonyx.ru | RU | RIPE | RU-RUSONYX-20060829 | 25859b5d5cb3e252b595516a4f9a3180 | http://blog.metko.ru/xmlrpc.php?rsd || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/42 (0.0%) | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | f0689503390fdc5d39cb185888e61fd8 | http://bonantivirys.com/chatrpad.php || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | f492d3dcf15d97e29cfda93702cf482b | http://chaudantivirys.com/chatrpad.php || 2012-02-02 19:59:40 | sub1 | avira | JS/iFrame.KH | 16/43 (37.2%) | AS13039 | 217.14.120.74 | admin@argonsoft.de | DE | RIPE | HOSTHOUSINGNET | 38c9c0ffd5d6d675036855ba2244c7d0 | http://cockplay.de/cockplay/xtcommerce/shopping_cart.php || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS44128 | 91.201.52.47 | info@netangels.ru | RU | RIPE | INTERNET-PRO-NET | 07b97cd989b6a76d00e81b8c08015e2b | http://emetro.ru/assets/snippets/AjaxSearch/AjaxSearch.js || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_RFI_eval | 0/42 (0.0%) | AS44128 | 91.201.52.47 | info@netangels.ru | RU | RIPE | INTERNET-PRO-NET | 79a3a26ce0cf36da1e16d7eac3e43cdd | http://emetro.ru/manager/media/script/scriptaculous/prototype.js || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS44128 | 91.201.52.47 | info@netangels.ru | RU | RIPE | INTERNET-PRO-NET | 2379e43931989fba9c4837631ff36493 | http://emetro.ru/manager/media/script/scriptaculous/scriptaculous.js || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | 1a61135c7d0df2d713a52e176b525017 | http://gadzhetsaver8.com/chatrpad.php || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | 1953e136e8110e01a8e3a3fab2fd06ba | http://gizprotect5.com/chatrpad.php || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | 1dfb67286745b0c12a25efb3f167c776 | http://gizzosecure10.com/chatrpad.php || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | 834eaf8b746807661579b5b43ffd6432 | http://justeantivirys.com/chatrpad.php || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | bf4a5294b683dfbc52e1b70ea718c08b | http://mailantivirus.com/chatrpad.php || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | 5828b83d5682ecbb5add6c544f131998 | http://mayatek.info/chatrpad.php || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/41 (0.0%) | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | a1d2431db6143af039b399a1b7da165e | http://nuclear3.com/chatrpad.php || 2012-02-02 19:59:40 | sub1 | avira | JS/iFrame.GT.5 | 21/43 (48.8%) | AS31034 | 62.149.128.160 | hostmaster@technorail.com | IT | RIPE | TECHNORAIL-NET | 6f33809e8b9ef1c5a92eea3e9919c042 | http://pmristrutturazioni.it/files/mail_p001_8_00.php || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS31034 | 62.149.128.160 | hostmaster@technorail.com | IT | RIPE | TECHNORAIL-NET | 4394e975729e9a014bfd7f24e2dfa9f5 | http://pmristrutturazioni.it/res/x5engine.js || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS26496 | 208.109.14.133 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 34dfcfd259bd855be798cca4c5b5548b | http://preventsweating.com/playLFOW.js || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/41 (0.0%) | AS36444, AS2828 | 68.171.213.193 | noc@acenet-inc.net | US | ARIN | ACENETMI | f9d979d8b1face898d451af1226c848c | http://pvaphotos.com/S/scripts/AC_RunActiveContent.js || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS36444, AS2828 | 68.171.213.193 | noc@acenet-inc.net | US | ARIN | ACENETMI | 0c9084a2edb0604cb384c980ed855cd8 | http://pvaphotos.com/S/scripts/global.js || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/41 (0.0%) | AS36444, AS2828 | 68.171.213.193 | noc@acenet-inc.net | US | ARIN | ACENETMI | f9d979d8b1face898d451af1226c848c | http://pvaphotos.com/Z/scripts/AC_RunActiveContent.js || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS36444, AS2828 | 68.171.213.193 | noc@acenet-inc.net | US | ARIN | ACENETMI | 0c9084a2edb0604cb384c980ed855cd8 | http://pvaphotos.com/Z/scripts/global.js || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | 1f3f6c042279cdda1287a55ccbeba98c | http://realtubeonline.net/chatrpad.php || 2012-02-02 19:59:40 | sub1 | avira | JS/Gamburl.U | 7/42 (16.7%) | AS5384 | 194.170.187.47 | abuse@emirates.net.ae | AE | RIPE | EXCHANGE-EMIRNET | fd42becb27d7620fd21c02283fb776f2 | http://shebaintl.ae/Scripts/AC_RunActiveContent.js || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS16276 | 188.165.196.78 | abuse@ovh.net | FR | RIPE | OVH | 4bd1a4e96562fade108e7adfa472ae7e | http://simpleanuncios.es/wp-login.php || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS16276 | 188.165.196.78 | abuse@ovh.net | FR | RIPE | OVH | 71f62004e34e7a022dcaad11b1659571 | http://simpleanuncios.es/xmlrpc.php?rsd || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | 879f99a6c4d25d34dc14a861db530af8 | http://sood.info/chatrpad.php || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/40 (0.0%) | AS36351 | 174.37.170.106 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-7 | dcb78d56a134f188616752d953f3c6fb | http://sows.org.au/go.php || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS32592 | 173.212.56.249 | khunt@huntbrothers.com | US | ARIN | HB3 | 2023ca3b55e624def01e1eb2c75b65d1 | http://spysheriff.com//js/adframe.js || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/42 (0.0%) | AS32592 | 173.212.56.249 | khunt@huntbrothers.com | US | ARIN | HB3 | 4bc243241436576f6b11dd74c69be705 | http://spysheriff.com/search.php || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/42 (0.0%) | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | efeb01333dbe623a32f630b3391e3af9 | http://spyware-file.info/chatrpad.php || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | 72f8e723dceb5e9ffc6f57ea38d96842 | http://spyware-soft.info/chatrpad.php || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS24940 | 46.4.78.133 | abuse@hetzner.de | DE | RIPE | DE-HETZNER-20100819 | 6d3a4de0e5739bfd2177a887c0b8d587 | http://starsbiz.ru/blog/content/library/ || 2012-02-02 19:59:40 | sub1 | Avast | HTML:Iframe-inf | 13/43 (30.2%) | AS36420, AS30315, AS13749, AS21844 | 70.86.1.194 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-13 | 8966b62cfadac68815575d58daec65f3 | http://stomailco.be/gallery/index.php || 2012-02-02 19:59:40 | sub1 | trendmicro | HTML_IFRAME.BJN | 15/41 (36.6%) | AS36420, AS30315, AS13749, AS21844 | 70.86.1.194 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-13 | 866cec6a59282b71422323d7abfc7725 | http://stomailco.be/gallery/search.php || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS32311 | 69.6.27.100 | abuse@wholesalebandwidth.com | US | ARIN | WHOLE-2 | 4198f70ca741980fd7a7b207986769aa | http://transfertplus.com/.sys//js/l/alert.js || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS32311 | 69.6.27.100 | abuse@wholesalebandwidth.com | US | ARIN | WHOLE-2 | 8184bcb675e64ba905bab0467d6f1b4e | http://transfertplus.com/.sys//js/l/date.js || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/41 (0.0%) | AS32311 | 69.6.27.100 | abuse@wholesalebandwidth.com | US | ARIN | WHOLE-2 | 5ac231b63f0284d7629d012138af1e4a | http://transfertplus.com/.sys//js/l/ep.js || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS32311 | 69.6.27.100 | abuse@wholesalebandwidth.com | US | ARIN | WHOLE-2 | 0e58ed16c971e2b89d811f399245a308 | http://transfertplus.com/.sys//js/l/flash_title.js || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS32311 | 69.6.27.100 | abuse@wholesalebandwidth.com | US | ARIN | WHOLE-2 | f68a5118766c11b8a0f345c40c7a6e86 | http://transfertplus.com/.sys//js/l/timer.1b.js || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_RFI_php | 0/42 (0.0%) | AS26496 | 72.167.183.41 | noc@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 2880ba93ee29753b39b13ed91d6bdc3b | http://venturedefinite.com/xmlrpc.php?rsd || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | aa32508cccf33f4468172d8199daa45d | http://videovixens.net/chatrpad.php || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | b24a38e243d2e6572bec7fe7fe149397 | http://virgilguard5.com/chatrpad.php || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS20738 | 94.136.40.103 | abuse@webfusion.com | GB | RIPE | UK-WEBFUSION-LEEDS | f4b971e54c7c5fa49b437ea0d7c5dfa0 | http://woc.uk.net/res/x5engine.js || 2012-02-02 19:59:40 | sub1 | Fortinet | JS/Obfuscus.AACB!tr | 1/42 (2.4%) | AS30475 | 173.248.143.40 | noc@wehostwebsites.com | US | ARIN | NET-WEHOST-3 | b5dffde71bb0da6bda7ac597c89fbb61 | http://www.2009taxfiling.com/counter.php || 2012-02-02 19:59:40 | sub1 | avira | JS/Redir.jea | 8/42 (19%) | AS2914 | 198.106.113.135 | abuse@ntt.net | US | ARIN | NTTA-198-106 | 98f8ee48cdd717944c5a49b04047959b | http://www.arthousecomunicacao.com.br/AC_RunActiveContent.js || 2012-02-02 19:59:40 | sub1 | undef | unknown_html_RFI_php | 0/34 (0.0%) | AS6245 | 206.188.192.41 | ipadmin@monstercommerce.com | US | ARIN | MONSTERCOMMERCE | 2d51ad5bccc905af0b8525c39adf0d99 | http://www.atechnews.com/blog/xmlrpc.php?rsd || 2012-02-02 19:59:41 | sub1 | clamav | PUA.Script.Packed-2 | 1/43 (2.3%) | AS21844 | 74.52.77.98 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 61baa5a36e1b7b86ca7d83f0ec86f724 | http://www.carpetliquidatorswarehouse.com/wp-content/plugins/carousel-gallery-jquery/jcarousel.js || 2012-02-02 19:59:41 | sub1 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS21844 | 74.52.77.98 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 10092eee563dec2dca82b77d2cf5a1ae | http://www.carpetliquidatorswarehouse.com/wp-content/themes/twentyten/js/jquery-light.js || 2012-02-02 19:59:41 | sub1 | undef | unknown_html_RFI_php | 0/42 (0.0%) | AS21844 | 74.52.77.98 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | c5b10ef128c863a95cd5155b0e2fc41e | http://www.carpetliquidatorswarehouse.com/xmlrpc.php?rsd || 2012-02-02 19:59:41 | sub1 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS44497 | 92.43.17.11 | abuse@redcoruna.com | ES | RIPE | ES-REDCORUNA-20080103 | 10092eee563dec2dca82b77d2cf5a1ae | http://www.casadeespiritualidadubeda.es//templates/casaespi9/jquery.js || 2012-02-02 19:59:41 | sub1 | avira | JS/Gamburl.U | 13/43 (30.2%) | AS5384 | 194.170.187.46 | abuse@emirates.net.ae | AE | RIPE | EXCHANGE-EMIRNET | ce157f61729ae051442ebe9e3816389c | http://www.cleanco.ae/mm_menu.js || 2012-02-02 19:59:41 | sub1 | avira | JS/Gamburl.U | 16/43 (37.2%) | AS5384 | 194.170.187.46 | abuse@emirates.net.ae | AE | RIPE | EXCHANGE-EMIRNET | 1029cb280c7289d6aba8ebe6cc0b35ec | http://www.cleanco.ae/validation.js || 2012-02-02 19:59:41 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS18747 | 216.241.0.171 | netadmin@ifxnw.cl | CL | LACNIC | CL-INCS-LACNIC | dcb78d56a134f188616752d953f3c6fb | http://www.delytruz.cl/go.php || 2012-02-02 19:59:41 | sub1 | Avast | JS:Redirector-NH [Trj] | 14/43 (32.6%) | AS34788 | 85.13.130.36 | ip@all-inkl.com | DE | RIPE | DE-ALL-INKL-20050405 | 2419ce81cfc94738d5b1945ff94c1ce7 | http://www.DigitalSuche.de/branchenverzeichnis/index.php || 2012-02-02 19:59:41 | sub1 | Avast | JS:Redirector-NH [Trj] | 14/43 (32.6%) | AS34788 | 85.13.130.36 | ip@all-inkl.com | DE | RIPE | DE-ALL-INKL-20050405 | 24bb1781ae1b1dbbab53b9c8e3b34e7b | http://www.digitalsuche.de/index.php || 2012-02-02 19:59:41 | sub1 | avira | HTML/Rce.Gen | 26/43 (60.5%) | AS33182 | 72.29.74.23 | abuse@dimenoc.com | US | ARIN | HOSTDIME-PI-1 | db81857e7ce56515778a11f0c8324c15 | http://www.fotosdesalta.com.ar/index.php || 2012-02-02 19:59:41 | sub1 | avira | HTML/Rce.Gen | 26/43 (60.5%) | AS33182 | 72.29.74.23 | abuse@dimenoc.com | US | ARIN | HOSTDIME-PI-1 | db1d6bd1a8d5d9f553a33c4f235ccf67 | http://www.fotosdesalta.com.ar/register.php || 2012-02-02 19:59:41 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS33182 | 72.29.74.23 | abuse@dimenoc.com | US | ARIN | HOSTDIME-PI-1 | d767486bd4ef9d491412f71e507e9205 | http://www.fotosdesalta.com.ar/scripts.js || 2012-02-02 19:59:41 | sub1 | avira | HTML/Rce.Gen | 26/42 (61.9%) | AS33182 | 72.29.74.23 | abuse@dimenoc.com | US | ARIN | HOSTDIME-PI-1 | ef6ae2678a5c18a3b5f92908e9066c00 | http://www.fotosdesalta.com.ar/search.php || 2012-02-02 19:59:41 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS8560 | 217.160.124.59 | abuse@1and1.com | DE | RIPE | SCHLUND-CUSTOMERS | 2e174e6c5699cf8d407e92d93c157afd | http://www.laboutiquemayorista.es/index.php || 2012-02-02 19:59:41 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | e7082969edc365f1e4afde15a4d9f2db | http://www.p2psharing.biz/aresgalaxyplus/files/chatrpad.php || 2012-02-02 19:59:41 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | 61723e75a2b60c9c476d5c6138f0d4c1 | http://www.p2psharing.biz/mp3edsearch/mp3edsearch_files/chatrpad.php || 2012-02-02 19:59:41 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS26496 | 208.109.14.133 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 34dfcfd259bd855be798cca4c5b5548b | http://www.preventsweating.com/playLFOW.js || 2012-02-02 19:59:41 | sub1 | avira | JS/Redirector.QA | 10/42 (23.8%) | AS17547 | 203.211.141.132 | noc@qala.com.sg | SG | APNIC | QALA-SG | 194329503615753796ea9a6a4702039d | http://www.server4sale.com.sg/index.php || 2012-02-02 19:59:41 | sub1 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS34702 | 80.79.120.194 | abuse@wavecom.ee | EE | RIPE | EE-WAVECOM-20050318 | df0ff7fe7cd0e9795a02c58de82f6d69 | http://www.sharmsalon.eu/modules/mod_swmenufree/jquery-1.2.6.pack.js || 2012-02-02 19:59:41 | sub1 | avira | JS/Gamburl.U | 7/43 (16.3%) | AS5384 | 194.170.187.47 | abuse@emirates.net.ae | AE | RIPE | EXCHANGE-EMIRNET | fd42becb27d7620fd21c02283fb776f2 | http://www.shebaintl.ae/Scripts/AC_RunActiveContent.js || 2012-02-02 19:59:41 | sub1 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS36420, AS30315, AS13749, AS21844 | 174.120.119.62 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 1c1a853d2b0c39eef277b31137e9c12b | http://www.tamilv2.com/js/foldeing/prototype.js || 2012-02-02 19:59:41 | sub1 | clamav | PUA.Script.Packed-2 | 1/43 (2.3%) | AS36420, AS30315, AS13749, AS21844 | 174.120.119.62 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | fb49bb7a70d7be19cc6a145146ca7d44 | http://www.tamilv2.com/js/jquery-1.2.3.pack.js || 2012-02-02 19:59:41 | sub1 | clamav | PUA.Script.Packed-2 | 1/43 (2.3%) | AS36420, AS30315, AS13749, AS21844 | 174.120.119.62 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 61baa5a36e1b7b86ca7d83f0ec86f724 | http://www.tamilv2.com/js/jquery.jcarousel.pack.js || 2012-02-02 19:59:41 | sub1 | undef | unknown_html_RFI_php | 0/42 (0.0%) | AS12083 | 76.73.230.7 | ipadmin@knology.net | US | ARIN | KNOW03212007 | 92b2560c1217f5a4e2013dd6b4cdb11b | http://www.tawah.org/xmlrpc.php?rsd || 2012-02-02 19:59:41 | sub1 | undef | unknown_html_google_malware | 0/42 (0.0%) | AS17858 | 125.186.83.141 | ip@lgpwc.com | KR | APNIC | Xpeed-KR | 7860a5c4d6b84b9e41e13a1a9936170f | http://www.toshare.kr/./addons/resize_image/js/resize_image.min.js || 2012-02-02 19:59:41 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS17858 | 125.186.83.141 | ip@lgpwc.com | KR | APNIC | Xpeed-KR | a6a1654c3742a68bf84948ce56a726d0 | http://www.toshare.kr/./common/js/common.js || 2012-02-02 19:59:41 | sub1 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS17858 | 125.186.83.141 | ip@lgpwc.com | KR | APNIC | Xpeed-KR | 67c5aa793a87ace74cc929ae9ac44020 | http://www.toshare.kr/./common/js/jquery.js || 2012-02-02 19:59:41 | sub1 | undef | unknown_html_google_malware | 0/42 (0.0%) | AS17858 | 125.186.83.141 | ip@lgpwc.com | KR | APNIC | Xpeed-KR | f83c8107625bb38efda4293f349f259e | http://www.toshare.kr/./common/js/js_app.js || 2012-02-02 19:59:41 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS17858 | 125.186.83.141 | ip@lgpwc.com | KR | APNIC | Xpeed-KR | 6f6d69e8580b90827fbd5139c90ec0a1 | http://www.toshare.kr/./common/js/plugins/ui/jquery.ui.datepicker-ko.js || 2012-02-02 19:59:41 | sub1 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS17858 | 125.186.83.141 | ip@lgpwc.com | KR | APNIC | Xpeed-KR | 509a32dd0ee6454e2cd8fc4b27d2490a | http://www.toshare.kr/./common/js/plugins/ui/jquery-ui.packed.js || 2012-02-02 19:59:41 | sub1 | undef | unknown_html_RFI_eval | 0/44 (0.0%) | AS17858 | 125.186.83.141 | ip@lgpwc.com | KR | APNIC | Xpeed-KR | 4defd8830f77ccd585b92b9bea1e07e2 | http://www.toshare.kr/./common/js/x.js || 2012-02-02 19:59:41 | sub1 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS17858 | 125.186.83.141 | ip@lgpwc.com | KR | APNIC | Xpeed-KR | e6ea4038d48d971930d39adad42cefea | http://www.toshare.kr/./common/js/xml_handler.js || 2012-02-02 19:59:41 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS17858 | 125.186.83.141 | ip@lgpwc.com | KR | APNIC | Xpeed-KR | e78676fe3dfbdc0ad9e9158d94d2f3cd | http://www.toshare.kr/./common/js/xml_js_filter.js || 2012-02-02 19:59:41 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS17858 | 125.186.83.141 | ip@lgpwc.com | KR | APNIC | Xpeed-KR | 91636467ceb343169f1e68dd71bdca58 | http://www.toshare.kr/./files/cache/js_filter_compiled/4957dd8a76b94fc7fa95ce1cf34786e0.ko.compiled.js || 2012-02-02 19:59:41 | sub1 | Kaspersky | HEUR:Trojan.Script.Iframer | 1/43 (2.3%) | AS17858 | 125.186.83.141 | ip@lgpwc.com | KR | APNIC | Xpeed-KR | 7c45eb5cbbb31410026a2570cebfd990 | http://www.toshare.kr/./files/cache/js_filter_compiled/7aa23485d2872acdd9246b6e1d30728a.ko.compiled.js || 2012-02-02 19:59:41 | sub1 | undef | unknown_html_google_malware | 0/42 (0.0%) | AS17858 | 125.186.83.141 | ip@lgpwc.com | KR | APNIC | Xpeed-KR | d3a835a687c4c73ddb03714ed4d16602 | http://www.toshare.kr/./layouts/wowbj_main/js/xe_official.js || 2012-02-02 19:59:41 | sub1 | undef | unknown_html_google_malware | 0/41 (0.0%) | AS17858 | 125.186.83.141 | ip@lgpwc.com | KR | APNIC | Xpeed-KR | 4f1957c3b6f1a2853385fc1114850655 | http://www.toshare.kr/./widgets/login_info_kim/skins/xe_official/js/login.js || 2012-02-02 19:59:41 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS17858 | 125.186.83.141 | ip@lgpwc.com | KR | APNIC | Xpeed-KR | a03f3227717e69b0cc3b5a7d55db346f | http://www.toshare.kr/./widgets/tab_newest_document/skins/xe_official/js/tab.js || 2012-02-02 19:59:41 | sub1 | undef | unknown_html_google_malware | 0/41 (0.0%) | AS21844 | 74.52.77.242 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 6b162b6295385d9e0178277cb1955c77 | http://www.tricksofgraphics.com/tutorials/37-adobe-photoshop//index.php || 2012-02-02 19:59:41 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS21844 | 74.52.77.242 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 36cdae233e81356b6bc2c7cc1c042006 | http://www.tricksofgraphics.com/tutorials/37-adobe-photoshop/index.php || 2012-02-02 19:59:41 | sub1 | Kaspersky | HEUR:Trojan-Downloader.Script.Generic | 1/43 (2.3%) | AS44112 | 77.222.40.27 | abuse@sweb.ru | RU | RIPE | SpaceWeb | 1c6b567411418e6929053e3121474e0c | http://www.vedrussia.ru//7d4b61a49358e11770d85428109da198/effects_.js || 2012-02-02 19:59:41 | sub1 | avira | JS/Crops.A | 26/43 (60.5%) | AS17971 | 112.137.164.6 | abuse@netmyne.com | MY | APNIC | TM-IDC | dbe3248d208574103708cf594c6bf831 | http://www.yeohhs.com/index.php || 2012-02-02 19:59:41 | sub1 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS12083 | 76.73.230.7 | ipadmin@knology.net | US | ARIN | KNOW03212007 | b94b97ef2697e16552c9e0b9f10bfa57 | http://www.yunsaisociety.com/xmlrpc.php?rsd || 2012-02-02 19:59:42 | sub10 | Avast | Win32:Malware-gen | 27/42 (64.3%) | AS9808 | 221.180.22.194 | hostmaster@chinamobile.com | CN | APNIC | CMNET | f6cbb6f0847c8c03a689946375238821 | http://221.180.22.194:82/down/1219078194_955557ea.zip || 2012-02-02 19:59:42 | sub10 | trendmicro | WORM_SDBOT.CFJ | 31/43 (72.1%) | AS4134 | 218.75.159.210 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-HN-CD | 35f343a3d7e72496ffa789f13321f04b | http://47.duote.com.cn/miniqq.exe || 2012-02-02 19:59:42 | sub10 | avira | TR/ADH.2.12204 | 8/43 (18.6%) | AS22384 | 69.50.130.219 | abuse@nationalnet.com | US | ARIN | NATL-MACH10-NET | 45c802b3f12c83ada7687b32b82a3116 | http://69.50.130.219/MediaPlayerInstall.exe || 2012-02-02 19:59:42 | sub10 | avira | TR/Dropper.Gen | 33/43 (76.7%) | AS34946 | 80.244.200.111 | kristoffer@wetternet.se | SE | RIPE | SE-JENAB-20011105 | f66365e2d633342a1b8c1e0ad6849d65 | http://80.244.200.111/BINDERS/UD_FileBinder.rar || 2012-02-02 19:59:45 | sub16 | Avast | JS:Redirector-NH [Trj] | 8/42 (19%) | AS8560 | 82.165.119.125 | abuse@1and1.com | DE | RIPE | SCHLUND-SHARED | 8b0f2cd0c4856e1964e40beafe92a755 | http://www.worldofanimals.de/assets/rollover.js || 2012-02-02 20:00:07 | sub11 | avira | PHP/RemoteAdmi.6444 | 28/42 (66.7%) | AS31815 | 64.207.155.171 | abuse@mediatemple.net | US | ARIN | MEDIATEMPLE-100 | 1bc61927a92f670ef0023e060909e142 | http://64.207.155.171/shop/images/thumb.jpg || 2012-02-02 20:00:08 | sub11 | avira | PHP/A.4307 | 7/43 (16.3%) | AS33182 | 66.7.194.193 | abuse@dimenoc.com | US | ARIN | DIMECNET | 21636f78f296d30245a0cbe8eb54d7f7 | http://fidelidade2012.hd1.com.br/01/CIELO.txt || 2012-02-02 20:00:08 | sub11 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS8972 | 188.138.91.102 | abuse@plusserver.de | DE | RIPE | DE-INTERGENIA-20090508 | 5c5ff048a30bd5531f7089b47a06e2ff | http://hacktivistas.com.br/dos.txt || 2012-02-02 20:00:08 | sub11 | avira | PHP/Shellbot.7642 | 33/43 (76.7%) | AS30083 | 173.224.123.99 | abuse@hostingsolutionsint.com | US | ARIN | S4Y-3 | 1b736b057940f92ee3e9ff535ae44bc5 | http://negociol.com/file/f1775/pbot1.txt. || 2012-02-02 20:00:08 | sub11 | avira | BDS/PHP.WebShell.AV | 13/40 (32.5%) | AS9848 | 66.232.143.238 | abuse@hostway.co.kr | KR | ARIN | HW-66-232-136-22 | f9ebd9c869dfa634be6977155f0c65b7 | http://www.acoc.co.kr/cocboard/id1.jpg || 2012-02-02 20:00:08 | sub11 | avira | PHP/Pbot.A | 29/41 (70.7%) | AS14141 | 98.142.215.182 | wnoc@wiresix.com | US | ARIN | WIRESIX | c7f628c5d8a2093c037d1fbf1775b986 | http://www.fileden.com/files/2012/1/31/3257757//teucmd.txt || 2012-02-02 20:00:08 | sub11 | avira | PHP/Pbot.A | 28/42 (66.7%) | AS14141 | 98.142.215.182 | wnoc@wiresix.com | US | ARIN | WIRESIX | 36417dea1f6507c01b60a20038ee6d2b | http://www.fileden.com/files/2012/2/1/3258436/pbot.txt || 2012-02-02 20:00:08 | sub11 | avira | PHP/Shellbot.7642 | 33/43 (76.7%) | AS14141 | 98.142.215.182 | wnoc@wiresix.com | US | ARIN | WIRESIX | 4fa4fffc2447373c35419edab38264d0 | http://www.fileden.com/files/2012/2/1/3258461//zero.txt || 2012-02-02 20:00:08 | sub11 | avira | PHP/Pbot.A | 29/43 (67.4%) | AS14141 | 98.142.215.182 | wnoc@wiresix.com | US | ARIN | WIRESIX | 87cbc306ee715d2076791c78752dd490 | http://www.fileden.com/files/2012/2/1/3258462/pbot.txt || 2012-02-02 20:00:08 | sub11 | avira | PHP/Pbot.A | 29/43 (67.4%) | AS14141 | 98.142.215.182 | wnoc@wiresix.com | US | ARIN | WIRESIX | 87cbc306ee715d2076791c78752dd490 | http://www.fileden.com/files/2012/2/1/3258462/pbot.txt.txt || 2012-02-02 20:00:08 | sub11 | avira | PHP/RemoteAdmi.5398 | 29/42 (69%) | AS36351 | 216.172.173.88 | ipadmin@websitewelcome.com | US | ARIN | HGBLOCK-2 | 4a90c7ffbdf3b7f65b4acbe9b1c0f702 | http://www.flingyourway.com//forum/myid.flv || 2012-02-02 20:00:08 | sub11 | avira | PHP/IRCBOT.A | 26/43 (60.5%) | AS31034 | 217.73.227.10 | ced@consultingweb.it | IT | RIPE | ALICOM | 5b8c3739e159c76209e1f4e6ff75e13e | http://www.giancarlomalandra.it//stats/inc/allnet.jpg || 2012-02-02 20:00:08 | sub11 | avira | PHP/IRCBOT.F.1 | 31/43 (72.1%) | AS31034 | 217.73.227.10 | ced@consultingweb.it | IT | RIPE | ALICOM | 190460b763b787aa19ce6466ae0f155a | http://www.giancarlomalandra.it//stats/inc/byroe.jpg || 2012-02-02 20:00:07 | sub17 | avira | HTML/IFrame.Inje.1 | 27/43 (62.8%) | AS3561 | 64.70.19.52 | coler@website.ws | US | ARIN | SAVV-S235073-7 | 82508f6173407a9de145ab8935012d02 | http://acoty.ws/indexcz.php || 2012-02-02 20:00:07 | sub17 | avira | HTML/IFrame.Inje.1 | 27/43 (62.8%) | AS3561 | 64.70.19.52 | coler@website.ws | US | ARIN | SAVV-S235073-7 | 63d8a72241d59d7dcd4eb57db4d0c833 | http://acoty.ws/indexsk.php || 2012-02-02 20:13:16 | sub1 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS13618 | 76.76.15.190 | abuse@carohosting.com | US | ARIN | CARO-NET-ARIN-2 | d741ba1ac4452f4046b25dc613a2bf4b | http://patentgenius.com/temp/head.png?sv=276&tq=gJ4WK%2FSUh7TFlkR8oY%2BQtMWTUj26kJH7yZJTNbqVybhqtUn5CGFATA%3D%3D || 2012-02-02 20:13:17 | sub10 | avira | TR/Agent.1565455 | 5/43 (11.6%) | AS34221 | 217.199.217.8 | dn@quickline.ru | RU | RIPE | UCOZ | 3d3ba059eab9432e4b422aee87d64eb9 | http://csexe.com.ua/_ld/40/4044_RussianCStrike.rar || 2012-02-02 20:13:18 | sub16 | undef | unknown_html_RFI_shell | 0/41 (0.0%) | AS26496 | 188.121.46.1 | support@godaddy.com | NL | RIPE | NL-GODADDYCOM-20090506 | 663dd34433b126a45be791a3a779ef76 | http://lol-tv.info/wp-includes/css/app/do/personas/289302294350311363178310441412402464323394411438376403437407/ || 2012-02-02 20:20:05 | sub10 | avira | ADWARE/FineTop.A.9 | 29/42 (69%) | AS9318 | 180.71.56.240 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | ab9403919144c1d4f9dd2d4378a452c8 | http://finetop.topguide.co.kr/update/FT33/FTU1004.exe || 2012-02-02 20:20:05 | sub10 | avira | TR/Dldr.Banload.agt.17 | 17/43 (39.5%) | AS8972 | 85.25.91.168 | abuse@plusserver.de | DE | RIPE | DE-INTERGENIA-20050301 | 729317294cfd98de18167aa43bd5a7f6 | http://fotolog08.beepworld.it/files/fotos-slide01.exe || 2012-02-02 20:20:05 | sub10 | Comodo | UnclassifiedMalware | 6/43 (14%) | AS47506 | 93.174.186.35 | info@nexanet.ch | CH | RIPE | NEXANET-CH | 110110f9b2a7b1c80069ad2ee24fe95d | http://funnypage.ch/images/animationen/programs/vicxmasp.exe || 2012-02-02 20:20:05 | sub10 | avira | TR/Virtl.7064 | 31/42 (73.8%) | AS16276 | 91.121.164.139 | abuse@ovh.net | FR | RIPE | OVH | dcca98c81a911a5d3f2006474a083fdf | http://gratisgames24.de/s24/138/Titansave.zip || 2012-02-02 20:20:05 | sub10 | avira | WORM/IrcBot.lwn | 19/41 (46.3%) | AS35662 | 109.73.79.87 | abuse@dedicatedservercontact.com | GB | RIPE | DSC-JDGBDEHC | 3338f0be430ee3861653566119e38f1c | http://izlesex.info/Sex.exe || 2012-02-02 20:20:05 | sub10 | trendmicro | TROJ_SPNR.03CT11 | 30/42 (71.4%) | AS29649 | 86.111.244.4 | abuse@iq.pl | PL | RIPE | IQPL | 7c9276e5a5d14e60e637eda9955cc378 | http://kokosoftware.pl/download/GG8Proto-1.2.exe || 2012-02-02 20:20:05 | sub10 | Avast | MSIL:Crypt-EM [Trj] | 8/43 (18.6%) | AS29131 | 78.129.205.2 | abuse_rs@altervista.it | IT | RIPE | AlterVista_1 | d31c336f48f258e92c8e83453e8bb4d6 | http://lupetta85.altervista.org/documentacion.doc.exe || 2012-02-02 20:20:05 | sub10 | avira | TR/Dldr.Banload.AHP | 18/42 (42.9%) | AS16265 | 95.211.111.82 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20080724 | fc477b3f645b2e56ae4b53cec639589e | http://netosdesalim.com.br/protetor/aew.exe || 2012-02-02 20:20:05 | sub10 | avira | TR/Hook.P | 27/43 (62.8%) | AS13768 | 66.135.33.33 | ipadmin@serverbeach.com | US | ARIN | SERVER-ALLOC-1 | 83649798f4db7be9ec99051ea286cff0 | http://nikt.zog.net.au/SAPT3.zip || 2012-02-02 20:20:05 | sub10 | avira | TR/Renaz.10416 | 28/43 (65.1%) | AS16265 | 85.17.147.6 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20050311 | 6653b2cafe6bdd21ed50600628397924 | http://oocities.org/enemy_territory_aimbot/Ebola.zip || 2012-02-02 20:20:05 | sub10 | avira | BDS/Agent.XN.39 | 35/43 (81.4%) | AS16265 | 85.17.147.6 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20050311 | 9765343f392f2fed6d754b837ef80f5c | http://oocities.org/enemy_territory_aimbot/UBot_V.2.zip || 2012-02-02 20:25:53 | sub10 | trendmicro | TROJ_BUZUS.BCI | 27/40 (67.5%) | AS20773 | 46.163.77.137 | net-abuse@hosteurope.de | DE | RIPE | DE-HE-LVPS-46-163-72-NET | 1aefb730ff907cdca8ffd2fbe34257e1 | http://pc-cheats.de/tt/Mass_Effect_Trainer+11.zip || 2012-02-02 20:25:53 | sub10 | avira | ADWARE/BHO.WTP.8 | 28/43 (65.1%) | AS9318 | 180.71.56.240 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | af2b91030421cf749748a4d6499554db | http://plustab.co.kr/update/PT29/PTU1005.exe || 2012-02-02 20:30:14 | sub10 | avira | ADWARE/Agent.165984.1 | 32/43 (74.4%) | AS9318 | 180.71.56.240 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | b165c4746bba936a2c4aa9c4202a0468 | http://sm.plustab.co.kr/update/SM31/SMU1007.exe || 2012-02-02 20:30:14 | sub10 | avira | SPR/UltraSurf.bq | 14/43 (32.6%) | AS33774 | 174.34.243.129 | abuse@carohosting.com | US | ARIN | CARO-NET-ARIN-5 | bd2a3038ca8b73a7ce47077b121e9ef4 | http://upload20.ir/upload/13145545771307978912.zip || 2012-02-02 20:31:24 | sub1 | undef | unknown_html_google_malware | 0/41 (0.0%) | AS41535 | 89.253.247.10 | abuse@rusonyx.ru | RU | RIPE | RU-RUSONYX-20060829 | b5f877b34455ed8507711c5df7e7f99a | http://blog.metko.ru/wp-content/plugins/wp-lightbox2/js/effects.js || 2012-02-02 20:31:24 | sub1 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS41535 | 89.253.247.10 | abuse@rusonyx.ru | RU | RIPE | RU-RUSONYX-20060829 | 92b22f013e5c53946fbaee4e7ddcc0b1 | http://blog.metko.ru/wp-content/plugins/wp-lightbox2/js/lightbox.js || 2012-02-02 20:31:24 | sub1 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS41535 | 89.253.247.10 | abuse@rusonyx.ru | RU | RIPE | RU-RUSONYX-20060829 | 176272bb01bb424dbf0b36d722cec5fd | http://blog.metko.ru/wp-content/plugins/wp-lightbox2/js/prototype.js || 2012-02-02 20:31:24 | sub1 | clamav | PUA.Script.Packed-2 | 1/43 (2.3%) | AS41535 | 89.253.247.10 | abuse@rusonyx.ru | RU | RIPE | RU-RUSONYX-20060829 | 5308064654748a85218f8cf04ac5f8e8 | http://blog.metko.ru//wp-includes/js/jquery/jquery.js || 2012-02-02 20:31:25 | sub1 | avira | JS/Pegel.1854 | 27/42 (64.3%) | AS20738 | 94.136.56.140 | abuse@webfusion.com | GB | RIPE | UK-WEBFUSION-LEEDS | e7966c50a7131688ef3fd25c97193e73 | http://networkelements.co.uk/pages/web_and_design//index.php || 2012-02-02 20:31:25 | sub1 | avira | JS/Pegel.1854 | 22/43 (51.2%) | AS20738 | 94.136.56.140 | abuse@webfusion.com | GB | RIPE | UK-WEBFUSION-LEEDS | 72c4a599d8bd22cd8076a32f82fa792b | http://networkelements.co.uk/pages/web_and_design/../../pages/network_services/firewall.php || 2012-02-02 20:31:25 | sub1 | avira | JS/Pegel.1854 | 22/43 (51.2%) | AS20738 | 94.136.56.140 | abuse@webfusion.com | GB | RIPE | UK-WEBFUSION-LEEDS | 4016c87e80cee9fcf9d87ebaa7e757e3 | http://networkelements.co.uk/pages/web_and_design/../../pages/network_services/lan.php || 2012-02-02 20:31:25 | sub1 | avira | JS/Pegel.1854 | 21/42 (50%) | AS20738 | 94.136.56.140 | abuse@webfusion.com | GB | RIPE | UK-WEBFUSION-LEEDS | 086194dc36637a12ca3b80754bdcd47e | http://networkelements.co.uk/pages/web_and_design/../../pages/network_services/vpn_remote_access.php || 2012-02-02 20:31:25 | sub1 | avira | JS/Pegel.1854 | 21/42 (50%) | AS20738 | 94.136.56.140 | abuse@webfusion.com | GB | RIPE | UK-WEBFUSION-LEEDS | 2864300a2be2457dea8f19597f05ce56 | http://networkelements.co.uk/pages/web_and_design/../../pages/network_services/wireless.php || 2012-02-02 20:31:25 | sub1 | avira | JS/Pegel.1854 | 22/43 (51.2%) | AS20738 | 94.136.56.140 | abuse@webfusion.com | GB | RIPE | UK-WEBFUSION-LEEDS | e4e42d94bece3a96d7b32d3203fdd733 | http://networkelements.co.uk/pages/web_and_design/../../pages/support/network_faq.php || 2012-02-02 20:31:25 | sub1 | avira | JS/Pegel.1854 | 22/43 (51.2%) | AS20738 | 94.136.56.140 | abuse@webfusion.com | GB | RIPE | UK-WEBFUSION-LEEDS | 0ef503e317952c87beab667aee903513 | http://networkelements.co.uk/pages/web_and_design/../../pages/support/support.php || 2012-02-02 20:31:25 | sub1 | avira | JS/Pegel.1854 | 22/43 (51.2%) | AS20738 | 94.136.56.140 | abuse@webfusion.com | GB | RIPE | UK-WEBFUSION-LEEDS | 8aa0f95205f6ba872c99e2e961448d88 | http://networkelements.co.uk/pages/web_and_design/../../pages/web_and_design/print_design.php || 2012-02-02 20:31:25 | sub1 | avira | JS/Pegel.1854 | 22/43 (51.2%) | AS20738 | 94.136.56.140 | abuse@webfusion.com | GB | RIPE | UK-WEBFUSION-LEEDS | 5960e0311d65a0c39e0dd0c24096dd20 | http://networkelements.co.uk/pages/web_and_design/../../pages/web_and_design/web_design.php || 2012-02-02 20:31:25 | sub1 | avira | JS/Pegel.1854 | 22/43 (51.2%) | AS20738 | 94.136.56.140 | abuse@webfusion.com | GB | RIPE | UK-WEBFUSION-LEEDS | 22beeb39f4d791fa8cbe33282fe9003a | http://networkelements.co.uk/pages/web_and_design/../../pages/web_and_design/web_hosting.php || 2012-02-02 20:31:25 | sub1 | avira | JS/Pegel.1854 | 22/43 (51.2%) | AS20738 | 94.136.56.140 | abuse@webfusion.com | GB | RIPE | UK-WEBFUSION-LEEDS | 8aa0f95205f6ba872c99e2e961448d88 | http://networkelements.co.uk/pages/web_and_design/print_design.php || 2012-02-02 20:31:25 | sub1 | avira | JS/Pegel.1854 | 22/43 (51.2%) | AS20738 | 94.136.56.140 | abuse@webfusion.com | GB | RIPE | UK-WEBFUSION-LEEDS | 5960e0311d65a0c39e0dd0c24096dd20 | http://networkelements.co.uk/pages/web_and_design/web_design.php || 2012-02-02 20:31:25 | sub1 | avira | JS/Pegel.1854 | 22/43 (51.2%) | AS20738 | 94.136.56.140 | abuse@webfusion.com | GB | RIPE | UK-WEBFUSION-LEEDS | 22beeb39f4d791fa8cbe33282fe9003a | http://networkelements.co.uk/pages/web_and_design/web_hosting.php || 2012-02-02 20:31:25 | sub1 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS42331 | 194.0.200.16 | boss@freehost.com.ua | UA | RIPE | FREEHOST | 48a9d5a06df174674a55a4c9ab19788f | http://remont-service.com/forum/./styles/prosilver/template/forum_fn.js || 2012-02-02 20:31:25 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS21844 | 74.52.77.242 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | f38cb358269aeecda6b2c5977febdf8d | http://tricksofgraphics.com/tutorials/37-adobe-photoshop//index.php || 2012-02-02 20:31:25 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS21844 | 74.52.77.242 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 0c28fa8c0c6fbeec66f8183b130493c9 | http://tricksofgraphics.com/tutorials/37-adobe-photoshop/index.php || 2012-02-02 20:31:28 | sub9 | avira | EXP/Pidief.atj | 22/41 (53.7%) | AS16265 | 83.149.112.116 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20040309 | 9219cd3d832ce98d2bab49443866d9f6 | http://qago.in/content/fdp1.php?f=27 || 2012-02-02 20:31:29 | sub9 | avira | EXP/Pidief.att | 22/43 (51.2%) | AS48964 | 193.19.242.198 | abuse@comfoplace.com | UA | RIPE | ENTERRA-PI | c4a689e94f629feb3c6112f2501e71f5 | http://ww.hanbokdress.com/content/adfp1.php?f=16 || 2012-02-02 20:31:30 | sub10 | avira | TR/Crypt.XPACK.Gen | 28/43 (65.1%) | AS16626 | 74.81.82.226 | abuse@gnax.net | US | ARIN | GNAXNET | 7b7c54b03b6d8fc605ff5f989175d744 | http://ysina.org/up/uploads/files/domain-fab2378300.exe || 2012-02-02 20:31:30 | sub16 | DrWeb | Adware.Downware.113 | 2/43 (4.7%) | AS46281 | 94.127.76.190 | ripeadmin@cotendo.com | US | RIPE | IL-CTNDO-20081008 | 62378c9fb107755c1db372faa9d797d8 | http://cdn01.bcdn.info/geo/downloads/VLC/geo/NO/setup.exe || 2012-02-02 20:31:31 | sub16 | Avast | Win32:Banker-JAP [Trj] | 16/42 (38.1%) | AS6764 | 195.246.12.28 | uros@rezar.biz | SI | RIPE | SI-EXIT | 9cb34831b9fc58af42087f674dc697cc | http://www.pornovanje.si/wp-includes/Instalador.exe || 2012-02-02 20:31:31 | sub16 | undef | unknown_html_RFI_shell | 0/41 (0.0%) | AS44514 | 93.157.100.46 | admin@ogicom.pl | PL | RIPE | OGICOM | 1d7ea2b4fb8f0e90ca391a8f4bdcec67 | http://www.radioi.pl/images/banners/4234/345345/45645/system654612161316516351.php/ || 2012-02-02 20:31:36 | sub1 | trendmicro | Possible_Virus | 19/43 (44.2%) | AS44112 | 77.222.56.56 | abuse@sweb.ru | RU | RIPE | Spaceweb-DC2 | b484c5a9a197e3428607ddf2338e0834 | http://domodedovo-teplo.ru/independentecobrancas.com.br/boleto-mes11-01.exe || 2012-02-02 20:31:36 | sub1 | avira | TR/Offend.KD.519963 | 23/42 (54.8%) | AS6760 | 77.75.251.205 | abuse@ripe.net | EU | RIPE | EU-ZZ-80-93 | f47b7965240feb107233432aee172b92 | http://www.wellness-oase-schwarzwald.de/JavaUpload.exe || 2012-02-02 20:31:37 | sub1 | Antiy_AVL | Trojan/Win32.Vapsup.gen | 3/42 (7.1%) | AS25577 | 84.45.55.11 | enquiries@hi-velocity.ltd.uk | GB | RIPE | UK-C4L-20040922 | 497e5c4de8345bf442dff3778583cf44 | http://www.ripaudiocd.com/ripcdwiz19.exe || 2012-02-02 20:31:37 | sub1 | Antiy_AVL | Trojan/Win32.Vapsup.gen | 3/42 (7.1%) | AS25577 | 84.45.55.11 | enquiries@hi-velocity.ltd.uk | GB | RIPE | UK-C4L-20040922 | 497e5c4de8345bf442dff3778583cf44 | http://www.ripaudiocd.com//ripcdwiz113.exe |+---------------------+-------------+------------------+----------------------------------------------+---------------+------------------------------------+-----------------+----------------------------------+---------+--------+----------------------------+----------------------------------+----------------------------------------------------------------------------------------------------------------------+200 rows in set (0.03 sec)
+---------------------+-------------+-----------+--------------------------------------+---------------+---------+-----------------+----------------------------------+---------+--------+---------------------------+----------------------------------+-------------------------------------------------------------------------------------------------------+| date | contributor | scanner | virusname | vt_score | AS | review | email | country | source | netname | md5sum | url |+---------------------+-------------+-----------+--------------------------------------+---------------+---------+-----------------+----------------------------------+---------+--------+---------------------------+----------------------------------+-------------------------------------------------------------------------------------------------------+| 2012-02-02 20:31:37 | sub1 | Antiy_AVL | Trojan/Win32.Vapsup.gen | 3/42 (7.1%) | AS25577 | 84.45.55.11 | enquiries@hi-velocity.ltd.uk | GB | RIPE | UK-C4L-20040922 | 497e5c4de8345bf442dff3778583cf44 | http://www.ripaudiocd.com//ripcdwiz18.exe || 2012-02-02 20:31:37 | sub1 | Antiy_AVL | Trojan/Win32.Vapsup.gen | 14/42 (33.3%) | AS25577 | 84.45.55.11 | enquiries@hi-velocity.ltd.uk | GB | RIPE | UK-C4L-20040922 | 0c0065a54b59da7121f908f8d0e8dd27 | http://www.ripaudiocd.com//cdripper19.exe || 2012-02-02 20:31:37 | sub1 | Antiy_AVL | Trojan/Win32.Vapsup.gen | 14/42 (33.3%) | AS25577 | 84.45.55.11 | enquiries@hi-velocity.ltd.uk | GB | RIPE | UK-C4L-20040922 | 0c0065a54b59da7121f908f8d0e8dd27 | http://www.ripaudiocd.com//cdripper113.exe || 2012-02-02 20:31:37 | sub1 | Antiy_AVL | Trojan/Win32.Vapsup.gen | 14/42 (33.3%) | AS25577 | 84.45.55.11 | enquiries@hi-velocity.ltd.uk | GB | RIPE | UK-C4L-20040922 | 0c0065a54b59da7121f908f8d0e8dd27 | http://www.ripaudiocd.com//cdripper112.exe || 2012-02-02 20:31:37 | sub1 | Antiy_AVL | Trojan/Win32.Vapsup.gen | 14/42 (33.3%) | AS25577 | 84.45.55.11 | enquiries@hi-velocity.ltd.uk | GB | RIPE | UK-C4L-20040922 | 0c0065a54b59da7121f908f8d0e8dd27 | http://www.ripaudiocd.com/cdconv14.exe || 2012-02-02 20:31:37 | sub1 | undef | unknown_exe | 0/41 (0.0%) | AS25577 | 84.45.55.11 | enquiries@hi-velocity.ltd.uk | GB | RIPE | UK-C4L-20040922 | 2617a97a5d8cf552eb245a8a6402e1d7 | http://www.ripaudiocd.com//cdconv15.exe || 2012-02-02 20:31:37 | sub1 | avira | TR/Agent.egfi | 23/43 (53.5%) | AS36351 | 173.192.111.15 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-8 | 3e50dc6e506c3090b87124608a176383 | http://www.registryrecords.org/download/Criminal-Records.exe || 2012-02-02 20:31:37 | sub1 | avira | TR/Agent.egfi | 23/43 (53.5%) | AS36351 | 173.192.111.15 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-8 | 3e50dc6e506c3090b87124608a176383 | http://www.registryrecords.org/download/BackgroundCheck.exe || 2012-02-02 20:31:37 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS30968 | 77.221.130.39 | abuse@infobox.ru | RU | RIPE | INFOBOX-NET1 | fb85eff3fa9ad126c5b66dbc91eeb67e | http://www.prava-servise.ru/zakaz.php || 2012-02-02 20:31:37 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS30968 | 77.221.130.39 | abuse@infobox.ru | RU | RIPE | INFOBOX-NET1 | 131b517ff0143f3e8f1143439d217770 | http://www.prava-servise.ru/info.php || 2012-02-02 20:31:37 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS30968 | 77.221.130.39 | abuse@infobox.ru | RU | RIPE | INFOBOX-NET1 | 175578442f4d4f0f3f573e92101174f1 | http://www.prava-servise.ru/kupit-udostoverenie.php || 2012-02-02 20:31:37 | sub1 | undef | unknown_html_google_malware | 0/41 (0.0%) | AS30968 | 77.221.130.39 | abuse@infobox.ru | RU | RIPE | INFOBOX-NET1 | 7745a674c5031b38aa19bb873f011646 | http://www.prava-servise.ru/index.php || 2012-02-02 20:31:37 | sub1 | avira | TR/Gendal.476409 | 5/43 (11.6%) | AS4250 | 64.40.153.4 | abuse@alentus.com | US | ARIN | ALENT-NBLK-2 | b51cca9872735f9e9d6e12658cde2e4b | http://www.paqtool.com/product/pass/images/dialup.exe || 2012-02-02 20:31:37 | sub1 | AhnLab_V3 | Trojan/Win32.Banbra | 18/43 (41.9%) | AS2914 | 209.238.160.57 | abuse@ntt.net | US | ARIN | NTTA-209-238 | 3afe2f4d1e15d9e68c702c0482845b53 | http://www.lwaplasticos.com.br/thoose/www.lwaplasticos.com.br/thoose/Habilita-Token.exe || 2012-02-02 20:31:37 | sub1 | DrWeb | Adware.Searcher.1222 | 1/43 (2.3%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | 7380cc278ae95fc83375e2761354343e | http://www.kcsoftwares.com/files/zero_nork.exe || 2012-02-02 20:31:37 | sub1 | DrWeb | Adware.Searcher.1222 | 1/43 (2.3%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | fd82ca860aa9535abceebb34802a9010 | http://www.kcsoftwares.com/files/zero.exe || 2012-02-02 20:31:37 | sub1 | undef | unknown_exe | 0/43 (0.0%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | a5d9bfccb4704062b7cc8eb6fd283142 | http://www.kcsoftwares.com/files/zero_lite.exe || 2012-02-02 20:31:37 | sub1 | DrWeb | Adware.Searcher.1222 | 2/43 (4.7%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | f11fa9644086eb5f28786a1ca59a41c5 | http://www.kcsoftwares.com/files/vampix_nork.exe || 2012-02-02 20:31:37 | sub1 | DrWeb | Adware.Searcher.1222 | 3/43 (7%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | 12ec3be5c35e44cc4bfb89a8511c22c5 | http://www.kcsoftwares.com/files/videoinspector.exe || 2012-02-02 20:31:37 | sub1 | Fortinet | Adware/Relevant | 1/43 (2.3%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | cdef867d81a4c6c587c89d5fccc0215e | http://www.kcsoftwares.com/files/videoinspector_lite.exe || 2012-02-02 20:31:37 | sub1 | DrWeb | Adware.Searcher.1222 | 4/43 (9.3%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | f716f77bc75d7169af656c9466e60637 | http://www.kcsoftwares.com/files/videoinspector_nork.exe || 2012-02-02 20:31:37 | sub1 | DrWeb | Adware.Searcher.1222 | 2/43 (4.7%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | e04a9980ac98852140afd7f3229040c1 | http://www.kcsoftwares.com/files/sumo_nork.exe || 2012-02-02 20:31:37 | sub1 | DrWeb | Adware.Searcher.1222 | 2/43 (4.7%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | f11fa9644086eb5f28786a1ca59a41c5 | http://www.kcsoftwares.com/files/vampix.exe || 2012-02-02 20:31:37 | sub1 | Fortinet | Adware/Relevant | 1/42 (2.4%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | c51c0eb456ff0eb46873f03131d3eccb | http://www.kcsoftwares.com/files/vampix_lite.exe || 2012-02-02 20:31:37 | sub1 | undef | unknown_exe | 0/43 (0.0%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | baebb9a07889f259b8dbcb3b0fa082d6 | http://www.kcsoftwares.com/files/sumo_lite.exe || 2012-02-02 20:31:37 | sub1 | undef | unknown_exe | 0/43 (0.0%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | e07d337e23c149b650dceb5be594010a | http://www.kcsoftwares.com/files/sumo_FF.exe || 2012-02-02 20:31:37 | sub1 | DrWeb | Adware.Searcher.1222 | 1/43 (2.3%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | 2f293c561ab585207ac8e8a4df626765 | http://www.kcsoftwares.com/files/phototofilm_nork.exe || 2012-02-02 20:31:37 | sub1 | undef | unknown_exe | 0/43 (0.0%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | 2053dac650ce737e4cbc4098041a45c2 | http://www.kcsoftwares.com/files/phototofilm_lite.exe || 2012-02-02 20:31:37 | sub1 | undef | unknown_exe | 0/43 (0.0%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | 7ffac587197cd7d00f7092cd3bf04dc8 | http://www.kcsoftwares.com/files/kmail.exe || 2012-02-02 20:31:37 | sub1 | undef | unknown_exe | 0/41 (0.0%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | 48ef9c58e6c1e15e1229fce8908e5664 | http://www.kcsoftwares.com/files/kml.exe || 2012-02-02 20:31:37 | sub1 | DrWeb | Adware.Searcher.1222 | 1/43 (2.3%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | aa6522150b5d2b5faf56d7a5b2af3e94 | http://www.kcsoftwares.com/files/phototofilm.exe || 2012-02-02 20:31:37 | sub1 | avira | ADSPY/NaviPromo.J | 8/43 (18.6%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | 1802f888310b0315ce66a20f560b7e55 | http://www.kcsoftwares.com/files/phototofilm_free.exe || 2012-02-02 20:31:37 | sub1 | Fortinet | Adware/Relevant | 1/43 (2.3%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | cc0aa7f55454e2770c389a6a1debabcf | http://www.kcsoftwares.com/files/kfk_lite.exe || 2012-02-02 20:31:37 | sub1 | DrWeb | Adware.Searcher.1222 | 3/43 (7%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | 741a57a417538489e33ba80e1a80911c | http://www.kcsoftwares.com/files/kfk_nork.exe || 2012-02-02 20:31:37 | sub1 | Fortinet | Adware/Relevant | 1/41 (2.4%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | 685a2da79f3a0ce0e1e40c078e4f21fe | http://www.kcsoftwares.com/files/kcleaner_nork.exe || 2012-02-02 20:31:37 | sub1 | DrWeb | Adware.Searcher.1222 | 2/43 (4.7%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | 8a65e5de3e1228e681e9c3bf0d05d16e | http://www.kcsoftwares.com/files/ignition.exe || 2012-02-02 20:31:37 | sub1 | Fortinet | Misc/RK | 1/42 (2.4%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | 0da9805b33a48298b60dbbddabd31e22 | http://www.kcsoftwares.com/files/ignition_lite.exe || 2012-02-02 20:31:37 | sub1 | DrWeb | Adware.Searcher.1222 | 3/43 (7%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | aae410d43e06625b385e73687bc8fa54 | http://www.kcsoftwares.com/files/ignition_nork.exe || 2012-02-02 20:31:37 | sub1 | DrWeb | Adware.Searcher.1222 | 2/43 (4.7%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | 47b43759b74e20c3cf6dcb861ca51446 | http://www.kcsoftwares.com/files/kcleaner.exe || 2012-02-02 20:31:37 | sub1 | DrWeb | Adware.Searcher.1222 | 1/43 (2.3%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | fbbca6d233576409eae17b49fb98af39 | http://www.kcsoftwares.com/files/IDPS.exe || 2012-02-02 20:31:37 | sub1 | undef | unknown_exe | 0/43 (0.0%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | f14d5f21c0a789b7cc12626ebdbe39f1 | http://www.kcsoftwares.com/files/IDPS_lite.exe || 2012-02-02 20:31:37 | sub1 | DrWeb | Adware.Searcher.1222 | 3/42 (7.1%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | beef692212ec123d51d8c71048ca8a55 | http://www.kcsoftwares.com/files/IDPS_nork.exe || 2012-02-02 20:31:37 | sub1 | DrWeb | Adware.Searcher.1222 | 3/43 (7%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | 27e3e11ec47103d122bbe7231c72d3fc | http://www.kcsoftwares.com/files/audiograil_nork.exe || 2012-02-02 20:31:37 | sub1 | DrWeb | Adware.Searcher.1222 | 1/43 (2.3%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | 685980f23b0c9243a88d29416255cc9c | http://www.kcsoftwares.com/files/avitoolbox.exe || 2012-02-02 20:31:37 | sub1 | undef | unknown_exe | 0/43 (0.0%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | 8a32e3efbdf66ddf5a84a37f96bf8da5 | http://www.kcsoftwares.com/files/avitoolbox_lite.exe || 2012-02-02 20:31:37 | sub1 | DrWeb | Adware.Searcher.1222 | 2/41 (4.9%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | 65dd1dea3cd1e5a6538f68aa466090f0 | http://www.kcsoftwares.com/files/avitoolbox_nork.exe || 2012-02-02 20:31:37 | sub1 | undef | unknown_exe | 0/42 (0.0%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | 414571450a248977a1b3be8443061f50 | http://www.kcsoftwares.com/files/audiograil_lite.exe || 2012-02-02 20:31:37 | sub1 | avira | ADSPY/NaviPromo.J | 8/43 (18.6%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | 6c6c79127b2d3c24bf9fffbd6cf2319d | http://www.kcsoftwares.com/files/audiograil_free.exe || 2012-02-02 20:31:37 | sub1 | DrWeb | Adware.Searcher.1222 | 1/43 (2.3%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | d967df5950b464eeb6c040ba64f77d24 | http://www.kcsoftwares.com/files/audiograil.exe || 2012-02-02 20:31:37 | sub1 | undef | unknown_exe | 0/43 (0.0%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | 5fc160246f975b0db29e65675842c924 | http://www.kcsoftwares.com/files/aphemo.exe || 2012-02-02 20:31:37 | sub1 | Avast | Win32:Mirc-Z [PUP] | 4/43 (9.3%) | AS42910 | 31.210.46.187 | noc@marsglobaldatacenter.com | TR | RIPE | Mars-Customer31 | e0ca72141ddb00673a8ce1ed7004eea5 | http://www.islami-sohbet.gen.tr/mircte.exe || 2012-02-02 20:31:37 | sub1 | avira | TR/Crypt.CFI.Gen | 28/43 (65.1%) | AS15201 | 200.98.246.202 | l-registrobr-uol@corp.uol.com.br | BR | LACNIC | 001.109.184/0001-95 | 72af644a4768d3ffcf610d410e9ce8c5 | http://www.gloriainforma.com.br/images/extrato-serasa-pedencia-0.75237.exe || 2012-02-02 20:31:37 | sub1 | undef | unknown_exe | 0/43 (0.0%) | AS32392 | 98.130.146.12 | abuse@ecommerce.com | US | ARIN | ECOMMERCE-HOSTING | 0adfb39667ea9c8951b2e2e923e64c73 | http://www.elongsoft.com/Download/EFYDSetup.exe || 2012-02-02 20:31:37 | sub1 | avira | TR/Spy.Banker.acsh.7 | 33/43 (76.7%) | AS35612 | 88.149.174.74 | abuse@ngi.it | IT | RIPE | IT-NGI-20060120 | ba9ac06896008c7e6274e64ad53d5c51 | http://www.consultingsolutions.it/templates/js/www.consultingsolutions.it/templates/js/sincroniza.exe || 2012-02-02 20:31:37 | sub1 | undef | unknown_exe | 0/43 (0.0%) | AS25577 | 84.45.55.11 | enquiries@hi-velocity.ltd.uk | GB | RIPE | UK-C4L-20040922 | bfb08cf02f55246d3fee04c8192279e8 | http://www.audioconverters.net/ocaconv313v.exe || 2012-02-02 20:31:37 | sub1 | ClamAV | BC.Heuristic.Trojan.SusPacked.BF-6.A | 7/43 (16.3%) | AS17638 | 211.100.97.201 | hlqian@ns.cnc.ac.cn | CN | APNIC | CNNIC | 1f01a329ee9e1a9cc8c43545894e6335 | http://www.92taojin.com/soft-taojin/TaoJin2.exe || 2012-02-02 20:31:52 | sub1 | avira | ADWARE/Adware.417272 | 26/42 (61.9%) | AS38676 | 111.67.216.10 | post@clunet.co.kr | KR | APNIC | WIZCDN | 6832741b4524e80b0a6360e5ab3d0978 | http://u.minisearch.co.kr/Update158/gsoupdater.exe || 2012-02-02 20:31:52 | sub1 | avira | TR/Dldr.Delf.qrl.1 | 13/42 (31%) | AS38676 | 111.67.216.10 | post@clunet.co.kr | KR | APNIC | WIZCDN | 6faadb3bfc961081b4213d478a8cb098 | http://u.minisearch.co.kr/Update158/SearchOnInstall158(gamesum2).exe || 2012-02-02 20:31:52 | sub1 | avira | TR/Dldr.Delf.qrl.1 | 13/42 (31%) | AS3786 | 112.220.210.44 | shkim082@chol.com | KR | APNIC | BORANET-KR | 6faadb3bfc961081b4213d478a8cb098 | http://u9.search-on.co.kr/Update158/SearchOnInstall158(gamesum2).exe || 2012-02-02 20:31:52 | sub1 | AVG | AdSearcher.AC | 1/41 (2.4%) | AS38676 | 111.67.216.10 | post@clunet.co.kr | KR | APNIC | WIZCDN | 053cb0191ad601351b90bafa860e1de6 | http://u.minisearch.co.kr/Update158/delex.exe || 2012-02-02 20:31:52 | sub1 | AVG | AdSearcher.AC | 1/41 (2.4%) | AS3786 | 112.220.210.44 | shkim082@chol.com | KR | APNIC | BORANET-KR | 053cb0191ad601351b90bafa860e1de6 | http://u9.search-on.co.kr/Update158/delex.exe || 2012-02-02 20:31:52 | sub1 | avira | TR/Dldr.Delf.qrl.1 | 14/43 (32.6%) | AS38676 | 111.67.216.45 | post@clunet.co.kr | KR | APNIC | WIZCDN | 6faadb3bfc961081b4213d478a8cb098 | http://u7.search-on.co.kr/Update158/SearchOnInstall158(gamesum2).exe || 2012-02-02 20:31:52 | sub1 | AVG | AdSearcher.AC | 2/43 (4.7%) | AS38676 | 111.67.216.45 | post@clunet.co.kr | KR | APNIC | WIZCDN | 053cb0191ad601351b90bafa860e1de6 | http://u7.search-on.co.kr/Update158/delex.exe || 2012-02-02 20:31:52 | sub1 | avira | ADWARE/Adware.417272 | 26/41 (63.4%) | AS38676 | 111.67.216.45 | post@clunet.co.kr | KR | APNIC | WIZCDN | 6832741b4524e80b0a6360e5ab3d0978 | http://u7.search-on.co.kr/Update158/gsoupdater.exe || 2012-02-02 20:31:52 | sub1 | avira | TR/Dldr.Delf.qrl.1 | 14/43 (32.6%) | AS3786 | 61.32.70.227 | shkim082@chol.com | KR | APNIC | BORANET-KR | 6faadb3bfc961081b4213d478a8cb098 | http://u6.search-on.co.kr/Update158/SearchOnInstall158(gamesum2).exe || 2012-02-02 20:31:52 | sub1 | avira | TR/Dldr.Delf.qrl.1 | 14/43 (32.6%) | AS38676 | 111.67.216.43 | post@clunet.co.kr | KR | APNIC | WIZCDN | 6faadb3bfc961081b4213d478a8cb098 | http://u5.search-on.co.kr/Update158/SearchOnInstall158(gamesum2).exe || 2012-02-02 20:31:52 | sub1 | avira | ADWARE/Adware.417272 | 26/41 (63.4%) | AS38676 | 111.67.216.43 | post@clunet.co.kr | KR | APNIC | WIZCDN | 6832741b4524e80b0a6360e5ab3d0978 | http://u5.search-on.co.kr/Update158/gsoupdater.exe || 2012-02-02 20:31:52 | sub1 | AVG | AdSearcher.AC | 1/41 (2.4%) | AS38676 | 111.67.216.43 | post@clunet.co.kr | KR | APNIC | WIZCDN | 053cb0191ad601351b90bafa860e1de6 | http://u5.search-on.co.kr/Update158/delex.exe || 2012-02-02 20:31:52 | sub1 | avira | TR/Dldr.Delf.qrl.1 | 14/43 (32.6%) | AS3786 | 112.220.210.43 | shkim082@chol.com | KR | APNIC | BORANET-KR | 6faadb3bfc961081b4213d478a8cb098 | http://u4.search-on.co.kr/Update158/SearchOnInstall158(gamesum2).exe || 2012-02-02 20:31:52 | sub1 | AVG | AdSearcher.AC | 1/41 (2.4%) | AS3786 | 112.220.210.43 | shkim082@chol.com | KR | APNIC | BORANET-KR | 053cb0191ad601351b90bafa860e1de6 | http://u4.search-on.co.kr/Update158/delex.exe || 2012-02-02 20:31:52 | sub1 | avira | TR/Dldr.Delf.qrl.1 | 14/43 (32.6%) | AS3786 | 112.220.210.45 | shkim082@chol.com | KR | APNIC | BORANET-KR | 6faadb3bfc961081b4213d478a8cb098 | http://u3.search-on.co.kr/Update158/SearchOnInstall158(gamesum2).exe || 2012-02-02 20:31:52 | sub1 | avira | ADWARE/Adware.417272 | 26/41 (63.4%) | AS3786 | 112.220.210.45 | shkim082@chol.com | KR | APNIC | BORANET-KR | 6832741b4524e80b0a6360e5ab3d0978 | http://u3.search-on.co.kr/Update158/gsoupdater.exe || 2012-02-02 20:31:52 | sub1 | AVG | AdSearcher.AC | 1/41 (2.4%) | AS3786 | 112.220.210.45 | shkim082@chol.com | KR | APNIC | BORANET-KR | 053cb0191ad601351b90bafa860e1de6 | http://u3.search-on.co.kr/Update158/delex.exe || 2012-02-02 20:31:52 | sub1 | avira | TR/Dldr.Delf.qrl.1 | 14/43 (32.6%) | AS38676 | 111.67.216.42 | post@clunet.co.kr | KR | APNIC | WIZCDN | 6faadb3bfc961081b4213d478a8cb098 | http://u2.search-on.co.kr/Update158/SearchOnInstall158(gamesum2).exe || 2012-02-02 20:31:52 | sub1 | avira | ADWARE/Adware.417272 | 26/41 (63.4%) | AS38676 | 111.67.216.42 | post@clunet.co.kr | KR | APNIC | WIZCDN | 6832741b4524e80b0a6360e5ab3d0978 | http://u2.search-on.co.kr/Update158/gsoupdater.exe || 2012-02-02 20:31:52 | sub1 | AVG | AdSearcher.AC | 1/41 (2.4%) | AS38676 | 111.67.216.42 | post@clunet.co.kr | KR | APNIC | WIZCDN | 053cb0191ad601351b90bafa860e1de6 | http://u2.search-on.co.kr/Update158/delex.exe || 2012-02-02 20:31:52 | sub1 | avira | TR/Dldr.Delf.qrl.1 | 14/43 (32.6%) | AS38676 | 111.67.216.41 | post@clunet.co.kr | KR | APNIC | WIZCDN | 6faadb3bfc961081b4213d478a8cb098 | http://u1.search-on.co.kr/Update158/SearchOnInstall158(gamesum2).exe || 2012-02-02 20:31:52 | sub1 | avira | ADWARE/Adware.417272 | 26/41 (63.4%) | AS38676 | 111.67.216.41 | post@clunet.co.kr | KR | APNIC | WIZCDN | 6832741b4524e80b0a6360e5ab3d0978 | http://u1.search-on.co.kr/Update158/gsoupdater.exe || 2012-02-02 20:31:52 | sub1 | AVG | AdSearcher.AC | 1/41 (2.4%) | AS38676 | 111.67.216.41 | post@clunet.co.kr | KR | APNIC | WIZCDN | 053cb0191ad601351b90bafa860e1de6 | http://u1.search-on.co.kr/Update158/delex.exe || 2012-02-02 20:31:52 | sub1 | avira | TR/Dldr.Delf.qrl.1 | 14/43 (32.6%) | AS38676 | 111.67.216.46 | post@clunet.co.kr | KR | APNIC | WIZCDN | 6faadb3bfc961081b4213d478a8cb098 | http://u11.search-on.co.kr/Update158/SearchOnInstall158(gamesum2).exe || 2012-02-02 20:31:52 | sub1 | avira | ADWARE/Adware.417272 | 26/41 (63.4%) | AS38676 | 111.67.216.46 | post@clunet.co.kr | KR | APNIC | WIZCDN | 6832741b4524e80b0a6360e5ab3d0978 | http://u11.search-on.co.kr/Update158/gsoupdater.exe || 2012-02-02 20:31:52 | sub1 | AVG | AdSearcher.AC | 1/41 (2.4%) | AS38676 | 111.67.216.46 | post@clunet.co.kr | KR | APNIC | WIZCDN | 053cb0191ad601351b90bafa860e1de6 | http://u11.search-on.co.kr/Update158/delex.exe || 2012-02-02 20:31:52 | sub1 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS26496 | 208.109.78.128 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 1ca075b59a7b04eb850e55d696000a86 | http://regtool.software-phile.com/setup.exe || 2012-02-02 20:31:52 | sub1 | undef | unknown_html_google_malware | 0/41 (0.0%) | AS30968 | 77.221.130.39 | abuse@infobox.ru | RU | RIPE | INFOBOX-NET1 | 175578442f4d4f0f3f573e92101174f1 | http://prava-servise.ru/kupit-udostoverenie.php || 2012-02-02 20:31:52 | sub1 | undef | unknown_html_google_malware | 0/41 (0.0%) | AS30968 | 77.221.130.39 | abuse@infobox.ru | RU | RIPE | INFOBOX-NET1 | fb85eff3fa9ad126c5b66dbc91eeb67e | http://prava-servise.ru/zakaz.php || 2012-02-02 20:31:53 | sub1 | undef | unknown_html_google_malware | 0/41 (0.0%) | AS30968 | 77.221.130.39 | abuse@infobox.ru | RU | RIPE | INFOBOX-NET1 | 7745a674c5031b38aa19bb873f011646 | http://prava-servise.ru/index.php || 2012-02-02 20:31:53 | sub1 | undef | unknown_html_google_malware | 0/41 (0.0%) | AS30968 | 77.221.130.39 | abuse@infobox.ru | RU | RIPE | INFOBOX-NET1 | 131b517ff0143f3e8f1143439d217770 | http://prava-servise.ru/info.php || 2012-02-02 20:31:53 | sub1 | Antiy_AVL | Trojan/win32.agent.gen | 1/41 (2.4%) | AS9318 | 218.38.15.85 | abuse@skbroadband.com | kr | APNIC | HANANET-INFRA | fce8d1cc664ccc44fcd9ab58d780ef42 | http://pc-medic.pe.kr/app/files/PCMedicUp.exe || 2012-02-02 20:31:53 | sub1 | avira | TR/FraudPack.O.5 | 22/43 (51.2%) | AS9318 | 218.38.15.85 | abuse@skbroadband.com | kr | APNIC | HANANET-INFRA | 2e37b3652f5d401a1d301cc17422b496 | http://pc-medic.pe.kr/app/files/PCMedic.exe || 2012-02-02 20:31:54 | sub1 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS24940 | 78.46.48.227 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET | f4331171033e9fc74084f7debab9a1db | http://mirror1.upwap.ru/d/1981952/4b0b56e2a7497c40ef7694004f26e2d0/Project.exe || 2012-02-02 20:31:55 | sub1 | avira | TR/Graftor.9379.1 | 32/43 (74.4%) | AS23650 | 61.147.115.210 | abuse@jsinfo.net | CN | APNIC | CHINANET-JS | a16c972d094318c4f9cc6e9550daeb53 | http://down.92taojin.com/soft-taojin/Starsonline_20120106_1.exe || 2012-02-02 20:31:55 | sub1 | eSafe | Win32.Artemis | 3/41 (7.3%) | AS3561 | 64.70.19.52 | coler@website.ws | US | ARIN | SAVV-S235073-7 | 54d1c9467e67785bcbb23e2f8980eddf | http://aureus.ws/download/tcmdr656.exe || 2012-02-02 20:31:55 | sub1 | undef | unknown_exe | 0/43 (0.0%) | AS3561 | 64.70.19.52 | coler@website.ws | US | ARIN | SAVV-S235073-7 | a98a02ddf6ff7df2a41f3222ef69fb57 | http://aureus.ws/download/wrar362cz.exe || 2012-02-02 20:31:55 | sub1 | avira | DIAL/60928.A.22 | 34/43 (79.1%) | AS8455 | 95.142.101.247 | abuse@cybertechnology.net | BE | RIPE | CYBERTECHNOLOGY | 8691d697c4c683fbb397f18f0ab443e2 | http://95.142.101.247/tour/files/99930223.exe || 2012-02-02 20:31:56 | sub1 | avira | ADWARE/Eorezo.GP | 28/41 (68.3%) | AS16276 | 46.105.174.28 | abuse@ovh.net | FR | RIPE | FR-OVH-20101129 | 9c44889325fa8c81aabf6553c50482a7 | http://46.105.174.28/clib/usrf.exe || 2012-02-02 20:31:56 | sub1 | undef | unknown_exe | 0/41 (0.0%) | AS35649 | 194.187.228.133 | ripe@dilines.net | UA | RIPE | DILINES-NET | 23768fc9330966d812134881ed1d5e21 | http://4-links.net/files/1/HostingClient/4_Links_Client.exe || 2012-02-02 20:31:56 | sub1 | avira | ADWARE/EoRezo.A.69 | 31/41 (75.6%) | AS16276 | 46.105.174.28 | abuse@ovh.net | FR | RIPE | FR-OVH-20101129 | 29ecabb82aa8cbfd1e49f8483a4da168 | http://46.105.174.28/clib/frsu.exe || 2012-02-02 20:31:56 | sub1 | avira | TR/Dropper.Gen | 35/41 (85.4%) | AS16276 | 46.105.174.28 | abuse@ovh.net | FR | RIPE | FR-OVH-20101129 | 7095323517f2318c1951fef021c07ab0 | http://46.105.174.28/clib/fs.exe || 2012-02-02 20:31:56 | sub1 | avira | ADWARE/Eorezo.GP | 29/43 (67.4%) | AS16276 | 46.105.174.28 | abuse@ovh.net | FR | RIPE | FR-OVH-20101129 | 58b4f698e73dbf4a256c9933054a326a | http://46.105.174.28/clib/fus.exe || 2012-02-02 20:31:56 | sub1 | avira | ADWARE/Eorezo.GP | 28/41 (68.3%) | AS16276 | 46.105.174.28 | abuse@ovh.net | FR | RIPE | FR-OVH-20101129 | 9c44889325fa8c81aabf6553c50482a7 | http://46.105.174.28/clib/2011usrf.exe || 2012-02-02 20:31:56 | sub1 | undef | unknown_file_Rar.exe | 0/43 (0.0%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | f67222d4dfab3fb08ec17a3cf9dddae7 | http://241746787.3322.org:7708/WinRAR.exe || 2012-02-02 20:31:56 | sub1 | avira | TR/Crypt.ULPM.Gen | 23/42 (54.8%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 910ebe4ae63f7b685e33cb228ce5fd10 | http://241746787.3322.org:7708/VVIP.exe || 2012-02-02 20:31:56 | sub1 | avira | TR/Dldr.Streamto.A.21 | 27/41 (65.9%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | bad15419478824e571ac5958f726062c | http://241746787.3322.org:7708/svchost.exe || 2012-02-02 20:31:56 | sub1 | avira | TR/Dldr.Streamto.A.14 | 26/43 (60.5%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 4f2f2105277db63bab15a372b5c2cfbe | http://241746787.3322.org:7708/7xx.exe || 2012-02-02 20:31:56 | sub1 | avira | BDS/Farfli.klam | 32/41 (78%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 439b7d14099944cfc24291c4a0719a28 | http://241746787.3322.org:7708/8787.exe || 2012-02-02 20:31:56 | sub1 | avira | TR/Crypt.TPM.Gen | 21/41 (51.2%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 2fed19eadf854d8070a8963d08ee35de | http://241746787.3322.org:7708/88a.exe || 2012-02-02 20:31:56 | sub1 | AhnLab_V3 | Downloader/Win32.Small | 16/43 (37.2%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 014da27da59149e4e36369fcc5e757b6 | http://241746787.3322.org:7708/88x.exe || 2012-02-02 20:31:56 | sub1 | avira | BDS/Farfli.klam | 35/41 (85.4%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | ccf5944e77a3869c3d823eb5445bc576 | http://241746787.3322.org:7708/98989.exe || 2012-02-02 20:31:56 | sub1 | avira | TR/Spy.Gen | 33/43 (76.7%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | f08c2f84db09693bdb54808b524a63d3 | http://241746787.3322.org:7708/9VIP2.exe || 2012-02-02 20:31:56 | sub1 | Avast | JS:ADODB-CA [Expl] | 12/41 (29.3%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 74c7ccf78f7484f93c0d781d806aaebe | http://241746787.3322.org:7708/9xxx.exe || 2012-02-02 20:31:56 | sub1 | avira | BDS/Farfli.klam | 34/41 (82.9%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | e4c64bc0e57ff04a8127dd832b9ecd4c | http://241746787.3322.org:7708/ceshi.exe || 2012-02-02 20:31:56 | sub1 | avira | TR/Crypt.XPACK.Gen | 36/43 (83.7%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 614667aa586cc9ce4d2c4fa493d08f92 | http://241746787.3322.org:7708/Down.exe || 2012-02-02 20:31:56 | sub1 | DrWeb | Trojan.SpyBot.324 | 5/43 (11.6%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | b570d46cb952ac8ac3b4c4762b50eee4 | http://241746787.3322.org:7708/guonei.exe || 2012-02-02 20:31:56 | sub1 | avira | TR/Dialer.ageu | 16/41 (39%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 17c8d9c7f76acc50cac30d75c7cca099 | http://241746787.3322.org:7708/laowai.exe || 2012-02-02 20:31:56 | sub1 | undef | unknown_exe | | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 93a13358898a54643adbca67d1533462 | http://241746787.3322.org:7708/Microsoft_DotNetFXCHS2.0.exe || 2012-02-02 20:31:56 | sub1 | avira | TR/Crypt.ULPM.Gen | 20/41 (48.8%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | ddb6de67b539875269ce2c002690dec1 | http://241746787.3322.org:7708/NET.exe || 2012-02-02 20:31:56 | sub1 | avira | TR/Crypt.TPM.Gen | 6/41 (14.6%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 582fa78d1a7db4483ed88a541c3d1f3b | http://241746787.3322.org:7708/sa.exe || 2012-02-02 20:31:56 | sub1 | avira | TR/Crypt.ULPM.Gen | 28/41 (68.3%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 1814acabcac6cf818d100153a6171891 | http://241746787.3322.org:7708/777.exe || 2012-02-02 20:31:56 | sub1 | avira | TR/Dldr.Streamto.A.4 | 21/41 (51.2%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 119e5d5c7b2c41c3e4789a9e7400260a | http://241746787.3322.org:7708/5xx.exe || 2012-02-02 20:31:56 | sub1 | avira | TR/Crypt.ULPM.Gen | 28/41 (68.3%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | b56620f5618a727f0a3e712a76b0ae3d | http://241746787.3322.org:7708/555.exe || 2012-02-02 20:31:56 | sub1 | avira | TR/Dldr.Streamto.A.13 | 26/41 (63.4%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 77602d35db31040424d3208bcfa96ee1 | http://241746787.3322.org:7708/4xx.exe || 2012-02-02 20:31:56 | sub1 | avira | TR/Crypt.ULPM.Gen | 30/40 (75%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | e01de01f145d70427e80191fe6bdeede | http://241746787.3322.org:7708/444.exe || 2012-02-02 20:31:56 | sub1 | AhnLab_V3 | Downloader/Win32.Small | 15/43 (34.9%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | db540b11e8314b496a2948b0a8f1258c | http://241746787.3322.org:7708/3xx.exe || 2012-02-02 20:31:56 | sub1 | avira | TR/Crypt.TPM.Gen | 29/43 (67.4%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 67dc83a37fa9537a71421485d470a1c5 | http://241746787.3322.org:7708/3hcc.exe || 2012-02-02 20:31:56 | sub1 | Avast | JS:ADODB-CA [Expl] | 15/43 (34.9%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | d46f44811f7bbb298cdd4d68f484b701 | http://241746787.3322.org:7708/3hccc.exe || 2012-02-02 20:31:56 | sub1 | avira | TR/Dialer.aghr | 15/41 (36.6%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 8c2170eaad7dcca4c8f57cd203c4608d | http://241746787.3322.org:7708/3306.exe || 2012-02-02 20:31:56 | sub1 | avira | TR/Crypt.ULPM.Gen | 20/41 (48.8%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | f754e14b78a08d747db395441faa9dcd | http://241746787.3322.org:7708/333.exe || 2012-02-02 20:31:56 | sub1 | avira | TR/Crypt.XPACK.Gen | 34/41 (82.9%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | d14d1a846720ccdb32f7cc2aa3e7d75d | http://241746787.3322.org:7708/1.exe || 2012-02-02 20:31:56 | sub1 | DrWeb | Trojan.SpyBot.324 | 5/43 (11.6%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 15bd236e05f26ad0c58e9d70f0f253c7 | http://241746787.3322.org:7708/222.exe || 2012-02-02 20:31:56 | sub1 | avira | TR/Magania.gbtwa | 33/43 (76.7%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | b5cbedf2313fc23428906798370c17ed | http://241746787.3322.org:7708/222xxx.exe || 2012-02-02 20:31:56 | sub1 | DrWeb | Trojan.SpyBot.324 | 5/43 (11.6%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 15bd236e05f26ad0c58e9d70f0f253c7 | http://241746787.3322.org:7708/22a.exe || 2012-02-02 20:31:56 | sub1 | DrWeb | Trojan.SpyBot.324 | 5/43 (11.6%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 15bd236e05f26ad0c58e9d70f0f253c7 | http://241746787.3322.org:7708/22x.exe || 2012-02-02 20:31:56 | sub1 | avira | TR/Dldr.Streamto.A.16 | 30/43 (69.8%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | ed2f21d78a2bc05b08ca3c9cdd5bb79c | http://241746787.3322.org:7708/29xxx.exe || 2012-02-02 20:31:56 | sub1 | AntiVir | PCK/Enigma | 9/41 (22%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 0f10f4475fbf8b4b1f489ccf24cd0d8f | http://241746787.3322.org:7708/111.exe || 2012-02-02 20:31:56 | sub1 | avira | TR/Spy.Gen | 27/43 (62.8%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | a817e13e06f5294a29cd3a2dfa6c885f | http://241746787.3322.org:7708/0111h.exe || 2012-02-02 20:31:56 | sub1 | avira | TR/Dialer.agpg | 12/41 (29.3%) | AS4134 | 60.173.26.188 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 9c51db07ef8f0ea8a5f2b576bb2398b4 | http://241746787.3322.org:7708/0111M.exe || 2012-02-02 20:31:56 | sub1 | avira | W32/Parite.B.4 | 38/42 (90.5%) | AS23387 | 168.150.251.105 | steve@dcn.org | US | ARIN | DCN-B1 | 7c7e714d0a85c6e1508fbceb1ac3eb5d | http://168.150.251.105/~phelix/dnr/68.162.236.27/NeroASM.exe || 2012-02-02 20:31:56 | sub1 | avira | W32/Alman.BB | 38/43 (88.4%) | AS4134 | 119.145.97.109 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-GD | 729af0eb4f1d6fbae1cab4ad44d20a7b | http://119.145.97.109/install/include/xxoo.exe || 2012-02-02 20:31:56 | sub1 | avira | W32/Alman.BB | 38/43 (88.4%) | AS4134 | 119.145.97.109 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-GD | 47721fcb89c7fec018b437463a4fe50b | http://119.145.97.109/install/include/xcb.exe || 2012-02-02 20:31:56 | sub1 | avira | TR/ATRAPS.Gen | 36/43 (83.7%) | AS4134 | 119.145.97.109 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-GD | db17ee6cc513473fc77eb8f4ee351ad4 | http://119.145.97.109/install/include/wow.exe || 2012-02-02 20:31:56 | sub1 | avira | TR/Spy.Gen | 39/43 (90.7%) | AS4134 | 119.145.97.109 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-GD | 98a4aab46e7964a3a465c8c803ac0042 | http://119.145.97.109/install/include/qn.exe || 2012-02-02 20:31:56 | sub1 | avira | W32/Alman.BB | 38/43 (88.4%) | AS4134 | 119.145.97.109 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-GD | c98182d8fcefaeaab6479ddf1250b538 | http://119.145.97.109/install/include/wd.exe || 2012-02-02 20:31:56 | sub1 | avira | W32/Alman.BB | 40/43 (93%) | AS4134 | 119.145.97.109 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-GD | 104f737238dfc7cfd3a46a2f8085de96 | http://119.145.97.109/install/include/smdl.exe || 2012-02-02 20:31:56 | sub1 | avira | W32/Alman.BB | 38/41 (92.7%) | AS4134 | 119.145.97.109 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-GD | 022ac137541c4b3e8f911df4cae44056 | http://119.145.97.109/install/include/smdl1.exe || 2012-02-02 20:31:56 | sub1 | avira | W32/Alman.BB | 39/43 (90.7%) | AS4134 | 119.145.97.109 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-GD | e722d5d2e988de007d0f34a8555f67b6 | http://119.145.97.109/install/include/pr.exe || 2012-02-02 20:31:57 | sub1 | avira | W32/Alman.BB | 36/41 (87.8%) | AS4134 | 119.145.97.109 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-GD | d9ef108d8ce4d23dfb41d1964b809a09 | http://119.145.97.109/install/include/net.exe || 2012-02-02 20:31:57 | sub1 | avira | W32/Alman.BB | 39/43 (90.7%) | AS4134 | 119.145.97.109 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-GD | 9f34d367794175eaafde02405c589bb2 | http://119.145.97.109/install/include/lzg.exe || 2012-02-02 20:31:57 | sub1 | avira | W32/Alman.BB | 37/41 (90.2%) | AS4134 | 119.145.97.109 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-GD | f3884931451327a16f9040582d86f92a | http://119.145.97.109/install/include/ldj.exe || 2012-02-02 20:31:57 | sub1 | avira | W32/Alman.BB | 37/41 (90.2%) | AS4134 | 119.145.97.109 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-GD | 6bfcbe68ad5ac5c89bbd39a0f6122362 | http://119.145.97.109/install/include/ldj1.exe || 2012-02-02 20:31:57 | sub1 | avira | DR/PSW.Kykymber.JZ | 38/43 (88.4%) | AS4134 | 119.145.97.109 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-GD | 911789f8043bd67e67af650c826a193e | http://119.145.97.109/install/include/hx.exe || 2012-02-02 20:31:57 | sub1 | avira | W32/Alman.BB | 36/41 (87.8%) | AS4134 | 119.145.97.109 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-GD | a5bd76134337967136f48e3ef3404e01 | http://119.145.97.109/install/include/h3.exe || 2012-02-02 20:31:57 | sub1 | avira | W32/Alman.BB | 36/41 (87.8%) | AS4134 | 119.145.97.109 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-GD | 313b57a338b982787719c0613040237d | http://119.145.97.109/install/include/cmd.exe || 2012-02-02 20:31:57 | sub1 | avira | W32/Alman.BB | 38/43 (88.4%) | AS4134 | 119.145.97.109 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-GD | cf0a19d82fe07d1eee0d68632afb38d8 | http://119.145.97.109/install/include/Churrasco.exe || 2012-02-02 20:31:57 | sub1 | avira | W32/Alman.BB | 38/42 (90.5%) | AS4134 | 119.145.97.109 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-GD | 21a78e487ff9a41b7ed4f4957ce76435 | http://119.145.97.109/install/include/calc.exe || 2012-02-02 20:31:57 | sub1 | avira | W32/Alman.BB | 39/42 (92.9%) | AS4134 | 119.145.97.109 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-GD | 11699c45c12db795ca3dbfd64fdf1c30 | http://119.145.97.109/install/include/c9.exe || 2012-02-02 20:31:57 | sub1 | undef | unknown_file_Rar.exe | 0/42 (0.0%) | AS4847 | 114.113.149.217 | lcc@topnew.cn | CN | APNIC | TopnewNET | d63ac048497074a5229015887bf1adc6 | http://114.113.149.217:280/winrar.exe || 2012-02-02 20:31:57 | sub1 | avira | TR/Crypt.NSPM.Gen | 29/43 (67.4%) | AS4847 | 114.113.149.217 | lcc@topnew.cn | CN | APNIC | TopnewNET | d70a7fb0f7338cd3ee975845de21f258 | http://114.113.149.217:280/adsl.exe || 2012-02-02 19:48:17 | sub8 | undef | Trojan-FakeAV.Win32.FakeRecovery.pi | 0/43 (0.0%) | AS26496 | 173.201.233.47 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | d2084280a96c958cf00935d7c7e285a2 | http://173.201.233.47/ || 2012-02-02 19:49:17 | sub8 | undef | Adware.Kraddare.BB | 0/43 (0.0%) | AS35662 | 109.73.75.3 | abuse@dedicatedservercontact.com | GB | RIPE | DSC-PDGMJGPG | d21666cbf6b79d86eea07ad70422b887 | http://109.73.75.3/video/ || 2012-02-02 20:44:31 | sub10 | avira | EXP/Pidief.atm | 25/42 (59.5%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | d306c54e75018e1677f69a75abab3308 | http://108.59.5.66/content/fdp1.php?f=20 || 2012-02-02 20:44:31 | sub10 | avira | EXP/Pidief.atm | 20/43 (46.5%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 985c45c743d82548fbc205f72f535490 | http://108.59.5.66/content/fdp2.php?f=20 || 2012-02-02 20:44:31 | sub10 | AVG | Cryptic.DWU | 10/43 (23.3%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | f651bd55027d604bdedeee46da27ef0c | http://108.59.5.66/files/109 || 2012-02-02 20:44:31 | sub10 | avira | BDS/Sinowal.6553621 | 31/39 (79.5%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 6271883a931ecd660cba267d2e6f3e16 | http://108.59.5.66/files/111 || 2012-02-02 20:44:31 | sub10 | avira | BDS/Sinowal.655361 | 34/40 (85%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | cbf131ff6efe5faf367d9f7e4ce47593 | http://108.59.5.66/files/112 || 2012-02-02 20:44:31 | sub10 | AVG | Cryptic.DWU | 11/43 (25.6%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 96db9853d49196e3523544473f4b7158 | http://108.59.5.66/files/136 || 2012-02-02 20:44:31 | sub10 | AVG | Cryptic.DWU | 12/42 (28.6%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 6c3aa0ea4ab1074d546496a1b240ed0e | http://108.59.5.66/files/139 || 2012-02-02 20:44:31 | sub10 | avira | BDS/Sinowal.ozzda | 40/43 (93%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 93c2bc0f80feeaf160e87cbe385b1a6c | http://108.59.5.66/files/27 || 2012-02-02 20:44:31 | sub10 | AVG | Cryptic.DWU | 11/43 (25.6%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 69c403f501025b32edba7ad29ece8865 | http://108.59.5.66/files/28 || 2012-02-02 20:44:31 | sub10 | avira | BDS/Sinowal.6553621 | 35/43 (81.4%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | ca3009282bc7f3d45493f4ce00ea5bba | http://108.59.5.66/files/35 || 2012-02-02 20:44:31 | sub10 | avira | BDS/Sinowal.6553621 | 30/42 (71.4%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | d4920ab60232de8ed8569723b3bf0620 | http://108.59.5.66/files/36 || 2012-02-02 20:44:31 | sub10 | avira | BDS/Sinowal.6553621 | 33/42 (78.6%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | cdd751004eb1e63b9b24d95d85c9c654 | http://108.59.5.66/files/64 || 2012-02-02 20:44:31 | sub10 | avira | BDS/Sinowal.6553621 | 36/43 (83.7%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | ff9771364d6b581fcfda73c1b41c4b6a | http://108.59.5.66/files/83 || 2012-02-02 20:44:31 | sub10 | avira | BDS/Sinowal.6553621 | 35/43 (81.4%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 60d2541c525885146b9a058599a5bb4a | http://108.59.5.66/files/88 || 2012-02-02 20:44:32 | sub10 | avira | JS/Crops.A | 20/40 (50%) | AS12996 | 194.63.248.47 | abuse@domeneshop.no | NO | RIPE | NO-DOMENESHOP | 73956cb16de0f54e23c9f61936395296 | http://advokat-viken.no/Speed/Web/resultatfiler/resklubber.htm || 2012-02-02 20:50:27 | sub10 | avira | JS/Infected.C | 17/43 (39.5%) | AS39556 | 81.26.219.109 | karsten@easyhosting.nl | NL | RIPE | NL-EASYHOSTING-EVOSWITCH1 | 0f3f7a14daeee983a49ddc83c4f5892c | http://annelodewijks.nl/hs/jquery.hoverscroll-0.2.2.js || 2012-02-02 20:50:27 | sub10 | avira | JS/Infected.C | 22/43 (51.2%) | AS39556 | 81.26.219.109 | karsten@easyhosting.nl | NL | RIPE | NL-EASYHOSTING-EVOSWITCH1 | 0d634b61d59cbeec5ba7f2960164e8b5 | http://annelodewijks.nl/lib/anne_550.font.js || 2012-02-02 20:50:27 | sub10 | avira | JS/Infected.C | 22/42 (52.4%) | AS39556 | 81.26.219.109 | karsten@easyhosting.nl | NL | RIPE | NL-EASYHOSTING-EVOSWITCH1 | bb895d0d0a7cc906917991e2a7ae4bf5 | http://annelodewijks.nl/lib/cufon-yui.js || 2012-02-02 20:50:27 | sub10 | avira | JS/Infected.C | 20/42 (47.6%) | AS39556 | 81.26.219.109 | karsten@easyhosting.nl | NL | RIPE | NL-EASYHOSTING-EVOSWITCH1 | c42b4f3cc96659172e892022906d7843 | http://annelodewijks.nl/lib/slimbox-2.04/js/slimbox2.js || 2012-02-02 20:50:27 | sub10 | avira | JS/Infected.C | 21/42 (50%) | AS5602 | 94.141.22.36 | abuse@kpnqwest.it | IT | RIPE | K-SUP2-SUPERNOVASRL | 18607d7ff00ffc5047b4e5c9b3521454 | http://autosposa.it/wp-content/plugins/cforms/js/cforms.js || 2012-02-02 20:50:27 | sub10 | avira | JS/Infected.C | 23/43 (53.5%) | AS15967 | 77.55.60.18 | abuse@netart.pl | PL | RIPE | NETART | 008955841cde339eed77ea17ec45b59e | http://belf.pl/wp-includes/js/jquery/jquery.js?ver=1.4.4 || 2012-02-02 21:00:15 | sub10 | avira | HTML/Crypted.Gen | 24/42 (57.1%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | 88fe1bbe5088bf641f662e6a7cf931b1 | http://big-chatter.nl/images/bscreen.html || 2012-02-02 21:00:15 | sub10 | avira | W97M/Tristate.AA | 36/43 (83.7%) | AS15857 | 78.9.172.4 | registry@dialog.net.pl | PL | RIPE | PL-DIALOG-20070226 | 3c6cfd40b2c5d473f03c889a70f0c686 | http://bip.gmina.nowaruda.pl/pliki2/zal%204.doc || 2012-02-02 21:00:15 | sub10 | avira | W97M/Tristate.AA | 36/43 (83.7%) | AS15857 | 78.9.172.4 | registry@dialog.net.pl | PL | RIPE | PL-DIALOG-20070226 | 10eab8f7fd111e86b6d3982ae034c303 | http://bip.gmina.nowaruda.pl/pliki2/zal%206a.doc || 2012-02-02 21:00:15 | sub10 | avira | JS/Infected.C | 23/42 (54.8%) | AS27715 | 187.45.240.103 | regcom@locaweb.com.br | BR | LACNIC | 002.351.877/0001-52 | e990ca163d15aab20aa518d2121acdba | http://caravanserai.com.br/wp-includes/js/l10n.js?ver=20101110 || 2012-02-02 21:00:15 | sub10 | avira | JS/Infected.C | 24/41 (58.5%) | AS27715 | 187.45.240.103 | regcom@locaweb.com.br | BR | LACNIC | 002.351.877/0001-52 | a794756d2e3f1228895f016dbaec4578 | http://caravanserai.com.br/wp-includes/js/swfobject.js?ver=2.2 || 2012-02-02 20:38:34 | sub5 | avira | PHP/Pbot.A.6 | 33/43 (76.7%) | AS4766 | 175.199.25.71 | abuse@kornet.net | KR | APNIC | KORNET-KR | ffab2ef0295465ff15976de784d041e8 | http://muhak.co.kr/bbs//data/wine_chile/1256639989/N7.jpg?? || 2012-02-02 19:03:02 | sub5 | clamav | PHP.Downloader | 7/43 (16.3%) | AS4766 | 175.199.25.71 | abuse@kornet.net | KR | APNIC | KORNET-KR | f62e4a598bb3d8d2764800b87e748ec1 | http://muhak.co.kr/bbs//data/wine_chile/1256639989/N8.jpg?? || 2012-02-02 21:05:33 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS21788 | 173.212.222.192 | nic@hostnoc.net | US | ARIN | HOSTNOC-7BLK | f2694554b88a43fd62c3a035d4ff9f93 | http://173.212.222.192/linea.davivienda/actualizaciones/home.html || 2012-02-02 21:06:08 | sub16 | AhnLab_V3 | Trojan/Win32.CSon | 11/43 (25.6%) | AS11456 | 209.177.198.146 | abuse@nuvox.net | US | ARIN | RHINO-2 | 240eddfd99f08e987b052963183a3d64 | http://209.177.198.146/images/ch.asp? || 2012-02-02 21:06:09 | sub16 | avira | ADWARE/Ito.A | 33/43 (76.7%) | AS9318 | 211.215.18.240 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | 6b7f5892ba0b90e61d1b8676d8c8972c | http://down.nurungzi.co.kr/main/blog/hinnrz.exe || 2012-02-02 21:13:31 | sub10 | avira | JS/Infected.C | 20/43 (46.5%) | AS27715 | 187.45.240.103 | regcom@locaweb.com.br | BR | LACNIC | 002.351.877/0001-52 | 38e5ed2520e29658567d4c51ee3801eb | http://caravanserai.com.br/wp-includes/js/jquery-1.3.2.js || 2012-02-02 21:20:18 | sub10 | Avast | Win32:Regrun-KY [Trj] | 12/43 (27.9%) | AS24961 | 62.141.43.46 | abuse@fibre1.net | DE | RIPE | FASTIT-DE-DUS1-COLO1 | d0aa2323b44ab31286e80000c50a2956 | http://coricalcio.it/ordine/Ordine.zip || 2012-02-02 21:20:18 | sub10 | avira | EXP/CVE-2011-1255.C | 13/41 (31.7%) | AS4134 | 61.159.225.18 | ynipm@126.com | CN | APNIC | CHINANET-YN | 4a23b9d078f981174bfb350d3cd56d85 | http://f45n.js6.in/401/ww/yy.html || 2012-02-02 21:20:18 | sub10 | avira | HTML/Crypted.Gen | 22/43 (51.2%) | AS11798 | 69.89.31.69 | abuse@bluehost.com | US | ARIN | BLUEHOST-NETWORK-1 | 53d5ab4c72c7978b687ce023c6e41beb | http://fourthstreettri.org/wp-includes/js/l10n.js?ver=20101110 || 2012-02-02 21:20:54 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS10439 | 209.126.254.144 | complaints@cari.net | US | ARIN | CARINET-2 | 81fa4de39f61f122f84296942e635648 | http://sehmuzaltin.com/xmlrpc/managementspain/paypal/financial/login.html?cmd=_login-run || 2012-02-02 21:30:22 | sub10 | Avast | JS:Redirector-NH [Trj] | 14/42 (33.3%) | AS6724 | 81.169.145.67 | abuse@strato.de | DE | RIPE | STRATO-RZG-KA | c58f91b3397efe92118e4c1a345cef8f | http://freieseite.de/fotos/2010/trial-day/ || 2012-02-02 21:30:22 | sub10 | Avast | JS:Redirector-NH [Trj] | 14/43 (32.6%) | AS6724 | 81.169.145.67 | abuse@strato.de | DE | RIPE | STRATO-RZG-KA | 44b6300d61e54bf747fdd4eac00bce27 | http://freieseite.de/fotos/2010/triathlon10/ || 2012-02-02 21:30:22 | sub10 | avira | HTML/Agent.adn | 22/42 (52.4%) | AS8560 | 195.20.241.131 | abuse@1and1.com | DE | RIPE | SCHLUND-CUSTOMERS | cb72a3a97472d40b3687ec9d8ee60c0f | http://hahn-linder.pim-gold.de/AGB.html || 2012-02-02 21:30:22 | sub10 | avira | HTML/Agent.adn | 22/43 (51.2%) | AS8560 | 195.20.241.131 | abuse@1and1.com | DE | RIPE | SCHLUND-CUSTOMERS | 96d371d4721f5697ea67a493a48be58c | http://hahn-linder.pim-gold.de/goldinfos.html || 2012-02-02 21:39:07 | sub16 | avira | ADSPY/NaviPromo.J | 15/43 (34.9%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | ebfc5e9ad48d2f4e6aa9cd5e85718dd6 | http://www.toptenreport.com/download/ptfbpro_pad_file.exe |+---------------------+-------------+-----------+--------------------------------------+---------------+---------+-----------------+----------------------------------+---------+--------+---------------------------+----------------------------------+-------------------------------------------------------------------------------------------------------+200 rows in set (0.03 sec)
+---------------------+-------------+-------------+-----------------------------------------------------+---------------+------------------------------------+-----------------+------------------------------------+---------+--------+--------------------------+----------------------------------+-------------------------------------------------------------------------------------------------------------------------------------------------------------+| date | contributor | scanner | virusname | vt_score | AS | review | email | country | source | netname | md5sum | url |+---------------------+-------------+-------------+-----------------------------------------------------+---------------+------------------------------------+-----------------+------------------------------------+---------+--------+--------------------------+----------------------------------+-------------------------------------------------------------------------------------------------------------------------------------------------------------+| 2012-02-02 21:40:14 | sub10 | avira | EXP/CVE-2011-1255.C | 13/41 (31.7%) | AS4134 | 61.159.225.18 | ynipm@126.com | CN | APNIC | CHINANET-YN | 4a23b9d078f981174bfb350d3cd56d85 | http://mw58.js6.in/401/ww/yy.html || 2012-02-02 21:54:26 | sub10 | avira | HTML/Rce.Gen | 29/43 (67.4%) | AS24207 | 222.165.255.248 | arisdh@net2cyber.net | ID | APNIC | EXPRESS-ID | 29018296cb304b22c1b8c7c2d3238eb6 | http://lnc.co.id/cache/ || 2012-02-02 21:54:26 | sub10 | avira | JS/iFrame.KS | 22/43 (51.2%) | AS28907 | 89.184.73.243 | noc@mirohost.net | UA | RIPE | MIROHOST | a61d3fa389b22d3c162496decc7520a0 | http://math.accent.kiev.ua/DELPHI_7/Glava11/Index1.html || 2012-02-02 21:54:26 | sub10 | Avast | JS:Redirector-NH [Trj] | 14/43 (32.6%) | AS24961 | 93.186.196.60 | abuse@fibre1.net | DE | RIPE | FASTIT-DE-DUS2-KHAKI | ce1da22d2449e5864fed0be928d33e31 | http://mhrt.de/plaintext/03c198992a0cd8b01/chris/index.html || 2012-02-02 21:54:26 | sub10 | avira | HTML/Crypted.Gen | 25/42 (59.5%) | AS8685 | 212.58.3.28 | abuse@doruk.net.tr | TR | RIPE | DorukNet | 62bfbb04b6077b970d122c25f3efe089 | http://ontas.com.tr/img/thumbs/article1520.html || 2012-02-02 21:54:26 | sub10 | avira | HTML/Crypted.Gen | 25/43 (58.1%) | AS8685 | 212.58.3.28 | abuse@doruk.net.tr | TR | RIPE | DorukNet | 1c781f84b93c5596945ed90b3bfbaccc | http://ontas.com.tr/img/thumbs/article2224.html || 2012-02-02 21:54:28 | sub16 | avira | TR/Crypt.XPACK.Gen | 16/43 (37.2%) | AS15201 | 200.98.247.10 | l-registrobr-uol@corp.uol.com.br | BR | LACNIC | 001.109.184/0001-95 | 7214c7b97276e424ff0d5f71f8a8eb2b | http://www.energiavitalrc.com/imagens/?videos-bbb12-vidaloca-87yy87yu76yu65yt65yt54re43ew32wq21-hothothto || 2012-02-02 21:54:28 | sub16 | undef | unknown_html_google_malware | 0/41 (0.0%) | AS53665 | 199.59.241.238 | abuse@bodis.com | CN | ARIN | BODIS-COM | 3ce6871a736d86e0f4a2a22c7f6c3b14 | http://www.googleccf.com/ || 2012-02-02 21:29:05 | sub5 | avira | PHP/Shellbot.7642 | 33/43 (76.7%) | AS33597 | 67.208.91.118 | abuse@inforelay.com | US | ARIN | INFORELAY-NETBLOCK01 | b8150978285cdeaa668698a8b24b2978 | http://users9.jabry.com/pretheus1/caiuae.jpg? || 2012-02-02 22:10:05 | sub10 | avira | EXP/CVE-2011-1255.C | 13/41 (31.7%) | AS4134 | 61.159.225.18 | ynipm@126.com | CN | APNIC | CHINANET-YN | 4a23b9d078f981174bfb350d3cd56d85 | http://rd4b.js6.in/401/ww/yy.html || 2012-02-02 22:10:05 | sub10 | avira | SPR/KeyLogger.S.3 | 13/43 (30.2%) | AS18450 | 67.220.217.235 | abuse@webnx.com | US | ARIN | WEBNX | 135b5ea7cf6fdd91780a02682bf45f86 | http://sait.zzl.org/arhivi/autocliker.rar || 2012-02-02 22:10:05 | sub10 | avira | PHP/IRCBOT.21970 | 31/43 (72.1%) | AS8984 | 217.70.32.129 | abuse@levonline.com | SE | RIPE | LEVONLINE-NET-1 | 23b8b456c2ba0b8b5dbbea9327a31278 | http://tonika.nu/catalog/images/config.iny.php.txt || 2012-02-02 22:10:05 | sub18 | avira | TR/Script.77 | 21/41 (51.2%) | AS33182 | 67.23.250.14 | abuse@dimenoc.com | US | ARIN | DIMECNET | dc7b2fd7417f4ea1917ac8b7284fecba | http://www.ultimatebhutantravel.com//wp-content/themes/rt_panacea_wp/cache/id1.txt? || 2012-02-02 22:10:06 | sub16 | Kaspersky | HEUR:Trojan.Script.Generic | 2/43 (4.7%) | AS33070, AS10532, AS19994, AS27357 | 74.205.47.72 | abuse@rackspace.com | US | ARIN | RSCP-NET-4 | 6a56b7fdae1b1ae992f64dcecda92748 | http://anandpower.com/EmNGorgC/index.html || 2012-02-02 22:16:55 | sub10 | Avast | JS:Redirector-NH [Trj] | 13/43 (30.2%) | AS8560 | 82.165.49.35 | abuse@1and1.com | DE | RIPE | SCHLUND-SHARED | 9b32110061590e8a6519ccacfa72cae0 | http://steinlaus.de/brstorm/ || 2012-02-02 22:16:55 | sub10 | avira | HTML/IFrame.enq.34 | 17/43 (39.5%) | AS4538 | 211.87.176.46 | abuse@net.edu.cn | CN | APNIC | QDHDPU-CN | 29c17d710c6687c556008d92bb0822a5 | http://upcnews.hdpu.edu.cn/gbdt/Guestbook.asp?page=72268 || 2012-02-02 22:16:55 | sub10 | avira | JS/Agent.psa.12 | 15/30 (50%) | AS28751 | 62.168.168.185 | ib@caucasus.net | GE | RIPE | CAUCASUS-NET | ef6d68a52efdd1d6339472188246c220 | http://vav.ge/ || 2012-02-02 22:16:55 | sub10 | avira | TR/Spy.Banker.ACF.50 | 23/43 (53.5%) | AS15201 | 200.98.134.223 | l-registrobr-uol@corp.uol.com.br | BR | LACNIC | 001.109.184/0001-95 | 0964a2e2de6487281f1028e55aa214e2 | http://yozzwqr.fotoss.in || 2012-02-02 22:16:56 | sub16 | Avast | HTML:Downloader-BP [Trj] | 2/43 (4.7%) | AS8560 | 74.208.214.43 | abuse@1and1.com | US | ARIN | 1AN1-NETWORK | 5755d6b81cea0d0490d4a07dedeed57e | http://tasteoftibet.net/dd.html || 2012-02-02 22:30:05 | sub10 | avira | SPR/Hoax.Spycar.A.5 | 32/41 (78%) | AS2044 | 198.145.26.134 | abuse@iinet.com | US | ARIN | NET-198-145-0-0-1 | 98a66446e975bb1b4d12e060aacfbd94 | http://spycar.org/Spycar_files/HKLM_RunOnceEx.exe || 2012-02-02 22:30:05 | sub10 | avira | SPR/Hoax.Spycar.A.11 | 32/41 (78%) | AS2044 | 198.145.26.134 | abuse@iinet.com | US | ARIN | NET-198-145-0-0-1 | 9f80ae2482c70b9820139a0e79208ee7 | http://spycar.org/Spycar_files/IE-KillContentTab.exe || 2012-02-02 22:30:05 | sub10 | avira | SPR/Hoax.Spycar.A.14 | 35/43 (81.4%) | AS2044 | 198.145.26.134 | abuse@iinet.com | US | ARIN | NET-198-145-0-0-1 | e52b29f18feb37cdbafb0d5ae1b1c818 | http://spycar.org/Spycar_files/IE-KillProgramsTab.exe || 2012-02-02 22:30:05 | sub10 | AVG | JS/Downloader.Agent | 11/42 (26.2%) | AS24940 | 213.239.204.99 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET2 | 341b0a2b2fa1e0a104331aafe174f3f7 | http://wikipedia.fudschiwawa.de/maintenance/index.htm || 2012-02-02 22:30:05 | sub10 | avira | HTML/Infected.WebPage.Gen2 | 19/43 (44.2%) | AS36420, AS30315, AS13749, AS21844 | 174.132.227.134 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-15 | 835201b8f113ff0c1d11a820c0d474c2 | http://wolfhond.nl/webalizer/usage_200702.html || 2012-02-02 22:30:05 | sub10 | avira | HTML/Infected.WebPage.Gen2 | 21/41 (51.2%) | AS36420, AS30315, AS13749, AS21844 | 174.132.227.134 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-15 | 624cc1bc41bfccb7473e5c992793e306 | http://wolfhond.nl/webalizer/usage_200708.html || 2012-02-02 22:30:05 | sub16 | Kaspersky | HEUR:Trojan.Script.Generic | 3/41 (7.3%) | AS20773 | 178.77.100.186 | net-abuse@hosteurope.de | DE | RIPE | DE-HE-LVPS-CGN3-NET | 56eba180fd68de4e75db34e579b3c690 | http://clubnoa.de/2itiw2or/index.html || 2012-02-02 22:30:06 | sub16 | avira | TR/Graftor.153569 | | AS24940 | 88.198.11.14 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET | aea97c87df36ac622fadfdc125be7b4d | http://garena-game.ru/GarenaRUS.exe || 2012-02-02 22:30:07 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS17494 | 123.49.59.153 | detelex@btcl.net.bd | BD | APNIC | BTTB | fc78fc8e82b45e7ac6d31bc19d122a89 | http://www.dpe.gov.bd/pdf/pterm/113.pdf || 2012-02-02 22:40:12 | sub15 | BitDefender | Gen:Variant.Kazy.54074 | 8/30 (26.7%) | AS16265 | 83.149.112.45 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20040309 | 73b9c8a73786624c1d04c8554acfc3db | http://inter-safecatch.in/ldpatch/softpatch.php?afid=390 || 2012-02-02 22:50:08 | sub16 | avira | ADSPY/NaviPromo.J | 7/43 (16.3%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 5d411ddb80dbd5b358fb46d5311f4ae7 | http://www.sharewaredepo.com/download/soiv.exe || 2012-02-02 23:00:10 | sub16 | avira | HTML/Dldr.Agent.xxa | 10/43 (23.3%) | AS29748 | 66.197.33.190 | abuse@carpathiahost.com | US | ARIN | CIRN-NETBLOCK02 | 56eb2d35db6739922ef9df00907673af | http://espressograag.nl/ || 2012-02-02 23:10:10 | sub10 | Comodo | UnclassifiedMalware | 8/42 (19%) | AS26496 | 173.201.233.47 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | bbaab5df74702741aba1d7fbc0fe4075 | http://173.201.233.47/Flash/Update_FlashPlayer2012.exe || 2012-02-02 23:10:11 | sub10 | avira | TR/Dldr.Banload.agt.15 | 27/43 (62.8%) | AS8972 | 85.25.91.168 | abuse@plusserver.de | DE | RIPE | DE-INTERGENIA-20050301 | de974f1b557761ac49aa36c3afc4a929 | http://fotolog08.beepworld.it/files/slide-fotos16.exe || 2012-02-02 23:10:11 | sub10 | AhnLab_V3 | Trojan/Win32.Banker | 20/43 (46.5%) | AS6764 | 195.246.12.28 | uros@rezar.biz | SI | RIPE | SI-EXIT | 9cb34831b9fc58af42087f674dc697cc | http://pornovanje.si/wp-includes/Instalador.exe || 2012-02-02 23:10:11 | sub20 | trendmicro | TSPY_BANKER.SMAW | 15/43 (34.9%) | AS44112 | 77.222.56.56 | abuse@sweb.ru | RU | RIPE | Spaceweb-DC2 | 53ced8ccb0c1cdba1e74d0a24c1088e1 | http://domodedovo-teplo.ru/components/com_um/smt.exe || 2012-02-02 23:10:11 | sub20 | Rising | Trojan.Win32.Generic.123BF862 | 2/43 (4.7%) | AS25406 | 77.79.12.3 | abuse@aleja.lt | LT | RIPE | LT-ALEJA | 3f53d7be56c2331663307fcba6d857d0 | http://revprox.org/mswinsck.ocx || 2012-02-02 23:30:05 | sub16 | DrWeb | Adware.W3i.9 | 2/43 (4.7%) | AS15133 | 93.184.221.133 | noc@edgecast.com | EU | RIPE | EDGECAST-NETBLK-04 | 5d1cff393a710f45a606167cd584b0c2 | http://dl5.iq6download.com/lm/cdn2/mplayer_tuguu_1275.exe || 2012-02-02 23:50:07 | sub16 | Avast | HTML:Paylap-L [Trj] | 4/43 (9.3%) | AS41078 | 94.102.214.231 | abuse@antagus.de | DE | RIPE | ANTAGUS-HOUSING1-NET | b0184085b3bce7cc6bf21b2b0d8dc6b2 | http://sachsens-stube.de/bgraph/gkat/us/ || 2012-02-02 23:50:09 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | 5976618364d0e4b5bfe3ebfbb7abea10 | http://www.p2psharing.biz/casino/mg/files/SetupCasino.exe || 2012-02-02 23:50:09 | sub16 | avira | ADWARE/Agent.1817611.1 | 13/43 (30.2%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 6167fd2fb30ea86ded8e367972b47b42 | http://www.toptenreport.com/download/advcatalog.exe || 2012-02-02 23:01:29 | sub5 | avira | PHP/Pbot.A.9 | 30/43 (69.8%) | AS43333 | 188.116.52.142 | biuro@nephax.com | PL | RIPE | PL-CIS-NEPHAX-20090529 | 67a187b6e5f6d05642e7d81df93140c8 | http://vuln.pl/pbot.txt? || 2012-02-02 23:29:57 | sub5 | Avast | PHP:Pbot-R [Trj] | 10/42 (23.8%) | AS33597 | 67.208.91.118 | abuse@inforelay.com | US | ARIN | INFORELAY-NETBLOCK01 | 0e58c06573a5abb4dfa4b4c979d26aba | http://users9.jabry.com/udpraphael/xisde.jpeg? || 2012-02-03 00:10:13 | sub16 | avira | PHISH/PostePay.K | 1/43 (2.3%) | AS14361 | 209.160.41.59 | abuse@hopone.net | US | ARIN | HOPONE-MULTI-SITE-1 | 531f84f8739441ca343bf2e8cecd4cb8 | http://sls-ae1p17.sea2.superb.net/poste/login.html || 2012-02-03 00:25:21 | sub1 | undef | unknown_arch_zip | 0/42 (0.0%) | AS15133 | 93.184.220.20 | noc@edgecast.com | EU | RIPE | EDGECAST-NETBLK-04 | 5391837553e1cb35bdce2a89fc39920e | http://dl6.iq6download.com/disclosures/offers/disclosure.iq.chicapasswordmanager_v2.zip || 2012-02-03 00:25:21 | sub1 | undef | unknown_arch_zip | 0/43 (0.0%) | AS27257 | 173.239.4.70 | ipadmin@webair.com | US | ARIN | WEBAIRINTERNET8 | abee6ec9d9dff817fecfa99c6eef7da7 | http://download.speedbit.com/ffmpeg.zip || 2012-02-03 00:25:21 | sub1 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS1680 | 212.143.22.159 | nvabuse@013netvision.co.il | IL | RIPE | IL-NETVISION-990329 | 8496b5f55d435252247bc7f04a62c5dd | http://toolbar.speedbit.com/downloader/xml/grbr.aspx?utbid={E268E13F-413C-45AE-93EE-D54F70C811CF}&aff=va&promocode=0&tbver=3.0.1 || 2012-02-03 00:25:21 | sub1 | clamav | PUA.Script.Packed-2 | 1/43 (2.3%) | AS14618 | 184.73.225.53 | aes-noc@amazon.com | US | ARIN | AMAZON-EC2-7 | def257dbb0ab805c4996fd8abb1a6b49 | http://www.speedbit.com/video/scripts/jquery.easing-1.3.pack.js || 2012-02-03 00:25:21 | sub1 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS14618 | 184.73.225.53 | aes-noc@amazon.com | US | ARIN | AMAZON-EC2-7 | efd54ded59fc3c1690135bc29d9fdd6b | http://www.speedbit.com/video/styles/svc.css || 2012-02-03 00:25:24 | sub16 | avira | ADSPY/AdSpy.Gen2 | 28/43 (65.1%) | AS10912 | 66.150.14.87 | abuse@internap.com | US | ARIN | PNAP-06-2001 | 0d8f116cc862f4d3e19262e68fbb12ff | http://origin-ics.ravenbleu.com/IC/GPLRavenBleu03/31985/2/b43212bd-8390-4d56-967d-e28c95aefde9/RealSetup.exe || 2012-02-03 00:25:25 | sub16 | NOD32 | HTML/ScrInject.B.Gen | 1/43 (2.3%) | AS21788 | 184.22.222.190 | nic@hostnoc.net | US | ARIN | HOSTNOC-9BLK | a562c6c29095c7068e2ca312074dcc36 | http://www.niex.org/forum/attachment.php?aid=18 || 2012-02-03 00:34:58 | sub16 | Avast | HTML:Paylap-L [Trj] | 4/43 (9.3%) | AS41078 | 94.102.214.231 | abuse@antagus.de | DE | RIPE | ANTAGUS-HOUSING1-NET | 3d220f2fea1da7651595b70dd72b51f8 | http://www.ilvy-von-eigenwillig-design.de/us/ || 2012-02-03 00:50:12 | sub16 | DrWeb | Tool.InstallToolbar.48 | 1/43 (2.3%) | AS40824 | 199.101.133.66 | abuse@webazilla.com | US | ARIN | WZCOMM-US | e9f8b207976458896456a4b81c85e0cc | http://dc438.4shared.com/download/aK3Km2yI/4shared_desktop_335.exe || 2012-02-03 00:50:14 | sub16 | NOD32 | Win32/Adware.Yontoo | 1/43 (2.3%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | aecffd9aa5ce9114375d7ed5f3739eda | http://www.cyberipod.com/downloadpr/cicopr10019.exe || 2012-02-03 00:50:17 | sub16 | Avast | JS:Cruzer-B [Trj] | 8/43 (18.6%) | AS6724 | 81.169.145.81 | abuse@strato.de | DE | RIPE | STRATO-RZG-KA | 8c5a78619ceb8a1950abcc84b42fc9d3 | http://www.uedesheim.de/ || 2012-02-03 01:00:07 | sub16 | avira | TR/VB.Downloader.Gen | 18/43 (41.9%) | AS15201 | 200.98.196.16 | l-registrobr-uol@corp.uol.com.br | BR | LACNIC | 001.109.184/0001-95 | 58a95824209f0442e37cc2dedd0ee982 | http://canchimdarainha.com.br/images/r2/?5000212 || 2012-02-03 01:00:31 | sub9 | avira | EXP/Pidief.atj | 23/43 (53.5%) | AS16265 | 83.149.112.116 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20040309 | d0470b5625924b7ec03e0daa77af9da8 | http://qola.in/content/fdp1.php?f=28 || 2012-02-03 01:00:53 | sub16 | avira | PHP/Limworm.172478 | 31/43 (72.1%) | AS7506 | 210.172.144.27 | warita@gmo.jp | JP | APNIC | INTERQ | 387d5bad87d223fc93b4726336c75c67 | http://asakusa-kagetudo.com/modules/shop/c99.txt || 2012-02-03 01:01:00 | sub1 | AVG | Generic26.CKSJ | 9/43 (20.9%) | AS40824 | 199.101.133.29 | abuse@webazilla.com | US | ARIN | WZCOMM-US | b2a51874ae03caff655fb78ac191e6ba | http://dc359.4shared.com/download/UDe05N3T/rakata.exe || 2012-02-03 01:01:02 | sub1 | avira | TR/Crypt.XPACK.Gen | 28/43 (65.1%) | AS14618 | 107.20.132.43 | ec2-abuse@amazon.com | US | ARIN | AMAZON-EC2-8 | 2f84c580dcdceb9fe536129babc5742d | http://dl.dropbox.com/u/60188741/video_conpleto.exe || 2012-02-03 00:52:34 | sub5 | avira | PHP/BackDoor.AR | 33/41 (80.5%) | AS2914 | 161.58.247.151 | abuse@ntt.net | US | ARIN | NTTA-161-58 | b85c6b399bd7d3c7b64ea0e5d06becdc | http://ww.regionnet.de/ftp/FlashChat_v508/chat////inc/cmses/functionCMSphp???? || 2012-02-03 01:10:09 | sub10 | avira | TR/Dldr.Vividi.A.1 | 18/43 (41.9%) | AS13335 | 173.245.60.147 | noc@cloudflare.com | US | ARIN | CLOUDFLARENET | cc2f480b1b9ca5033955b9a99b349e45 | http://googlevid.info:80/VipVideo.exe || 2012-02-03 01:10:10 | sub20 | avira | TR/ATRAPS.Gen | 19/38 (50%) | AS53057 | 187.84.224.234 | flavio@redehost.com.br | BR | LACNIC | 005.323.998/0001-89 | a378944262f3af74e1ab62ea746e3cc1 | http://paragadam.com/v10/rx/l.txt || 2012-02-03 01:20:04 | sub16 | undef | unknown_html_RFI_eval | 0/41 (0.0%) | AS16735 | 187.72.171.167 | wanderleif@ctbc.com.br | BR | LACNIC | 071.208.516/0001-74 | 08ca7794c4a6265d6f0436d696c46afb | http://187.72.171.167/~contabi3/ono/ || 2012-02-03 01:20:07 | sub16 | avira | ADWARE/Vapsup.fxa.8 | 2/41 (4.9%) | AS32475 | 184.154.115.154 | abuse@singlehop.com | US | ARIN | SINGLEHOP | aa9ca853b29c243adcef01f8f3cab0c3 | http://www.bonusbots.com/holdem_bot.exe || 2012-02-03 01:20:08 | sub16 | avira | ADWARE/Agent.1845032.1 | 16/43 (37.2%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 0068065b820839c6052baa624154e787 | http://www.toptenreport.com/download/datarecntfs.exe || 2012-02-03 01:30:12 | sub16 | avira | ADWARE/Relevant.BA.573 | 8/42 (19%) | AS36351 | 173.193.143.250 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-8 | 17746a24c466cad4e21f2d873ee07fb3 | http://www.morpheussoftware.net/morpheuscomposite/download/441/MorpheusPhotoMixer-316.exe || 2012-02-03 01:40:08 | sub16 | avira | PHISH/TAM.A | 4/43 (9.3%) | AS17971 | 202.75.39.216 | abuse@netmyne.com | MY | APNIC | TMIDC-MY | d8e3b942529ec0e85231665903553b08 | http://artistica.com.my/images/inde.html || 2012-02-03 01:50:26 | sub20 | avira | ADWARE/Kraddare.Q | 26/41 (63.4%) | AS9318 | 211.215.18.239 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | 92f77b26d22120c34769b0728a93998f | http://down.nurungzi.co.kr/main/blog/agnrz.exe || 2012-02-03 01:50:26 | sub20 | avira | ADWARE/Adware.317544 | 22/43 (51.2%) | AS9318 | 211.215.18.239 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | 54ee298d32b72a8c556a7965fbe28eff | http://down.nurungzi.co.kr/main/blog/amnrz.exe || 2012-02-03 01:50:26 | sub20 | avira | TR/Agent.huww | 31/41 (75.6%) | AS9318 | 211.215.18.239 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | aa93c005d64efb82322bbdc7aa592c85 | http://down.nurungzi.co.kr/main/blog/audnrz.exe || 2012-02-03 01:50:26 | sub20 | avira | ADWARE/BHO.tdy | 25/41 (61%) | AS9318 | 211.215.18.239 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | 62b45bd21db1dd881f41650b45a9a15b | http://down.nurungzi.co.kr/main/blog/dlnrz.dll || 2012-02-03 01:50:26 | sub20 | avira | ADWARE/Kraddare.W | 26/43 (60.5%) | AS9318 | 211.215.18.239 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | 9e0005ea4d31aeba15c57c7ff73991d1 | http://down.nurungzi.co.kr/main/blog/mnnrz.exe || 2012-02-03 01:50:26 | sub20 | avira | ADSPY/Give2SMS.5 | 28/43 (65.1%) | AS9318 | 211.215.18.239 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | bef2368de76d3aef479771cafbf70fd0 | http://down.nurungzi.co.kr/main/blog/udnrz.exe || 2012-02-03 01:50:26 | sub20 | avira | TR/Kryptik.KY | 28/41 (68.3%) | AS9318 | 211.215.18.239 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | ed13bda111771b96afa4393d6a883c70 | http://down.nurungzi.co.kr/main/blog/updnrz.exe || 2012-02-03 01:52:52 | sub1 | Avast | Win32:Agent-ANPG [PUP] | 11/43 (25.6%) | AS49544 | 188.95.53.70 | abuse@as49544.net | NL | RIPE | SERVERBOOST | 8a9ddc16c7d15f3bd34bd1ae8bdd4b7b | http://2012.qah.org.au/download/96502f83-106e/Skype(%F0%F3%F1%F1%EA%E0%FF%2B%E2%E5%F0%F1%E8%FF%29.exe || 2012-02-03 02:07:42 | sub16 | undef | unknown_html_RFI_eval | 0/42 (0.0%) | AS6760 | 77.79.4.76 | abuse@ripe.net | EU | RIPE | EU-ZZ-80-93 | cef8c4c1b439970450102eb1e70de0f8 | http://www.ucdownloads.com/downloads/downloads.php?do=file&id=6909 || 2012-02-03 02:10:15 | sub20 | NOD32 | HTML/ScrInject.B.Gen | 2/42 (4.8%) | AS9318 | 211.215.18.240 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | e494ed16b4759f721d007e16d26f4e37 | http://down.nurungzi.co.kr/ap_web/sms.php?pid=blog || 2012-02-03 02:20:04 | sub16 | Avast | HTML:Script-inf | 8/42 (19%) | AS26496 | 72.167.29.78 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 9fe917695593d44f71206112a90fafc2 | http://emmick.com/ || 2012-02-03 02:20:08 | sub20 | avira | TR/Belanit.C.45 | 17/43 (39.5%) | AS13335 | 173.245.60.57 | noc@cloudflare.com | US | ARIN | CLOUDFLARENET | a10eaee42d27ea0dab467987b760515d | http://www.googlevid.info/1.exe || 2012-02-03 02:25:45 | sub16 | avira | TR/Redbrowser.B.6 | 28/43 (65.1%) | AS56938 | 31.184.236.42 | hoster@mail.rv.ua | UA | RIPE | BUDKO-HOSTER-NET | cbb1968daf0c8fdd157c3bd56d6c6f6c | http://mms-ka.net/id3459 || 2012-02-03 02:30:25 | sub1 | Jiangmin | TrojanDropper.Injector.ich | 8/43 (18.6%) | AS34619 | 94.73.146.30 | huseyin.caymaz@cizgibilgisayar.com | TR | RIPE | TR-CIZGI-20080710 | f7611a7c4d9c006db757988c6aaabbf9 | http://www.endenter.com/wp-includes/css/update/3upadringr.exe || 2012-02-03 02:50:11 | sub16 | AntiVir | GAME/Casino.Gen | 15/43 (34.9%) | AS17036, AS22653 | 69.61.74.188 | abuse@cyberwurx.com | US | ARIN | NET-GLOBAL-COMPASS | 7151c994c6dd4db390ee30bd087b23aa | http://www.casinoschule.com/downloads/europacasino.exe || 2012-02-03 03:00:02 | sub7 | avira | PHP/Zapchast.X | 10/43 (23.3%) | AS24940 | 78.46.102.86 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET | ccb9e1bbb7dbb46819f54f1639a51621 | http://acomulados.000a.de/resgate/rico.txt? || 2012-02-03 03:00:09 | sub16 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS9389 | 211.166.9.27 | ipas@cnnic.net.cn | CN | APNIC | CGWNET | b8daea8cd0a3546f6df8de9a1eeb41db | http://binghe.org/img/includes/welcomep.html || 2012-02-03 03:00:10 | sub16 | Avast | Win32:OpenInstall-A [PUP] | 6/41 (14.6%) | AS16509 | 207.171.163.24 | noc@amazon.com | US | ARIN | AMAZON-01 | 266e8692755470dd89c09da309bab954 | http://dl02.s3.amazonaws.com/installers/705293/setup_PlayPickle_v25.exe || 2012-02-03 03:00:11 | sub16 | Avast | HTML:Iframe-inf | 5/42 (11.9%) | AS9931 | 122.155.13.130 | support@idc.cattelecom.com | TH | APNIC | CAT-IDC-Service | 9f12d0772e8afaf9d2d8e6b4f41b2abc | http://down.adobe-updates.net/ || 2012-02-03 03:00:12 | sub16 | avira | JS/iFrame.HF.1 | 22/43 (51.2%) | AS29076 | 178.250.240.212 | support@majordomo.ru | RU | RIPE | MAJORDOMO-NETWORK | c94f5f7a99f90d17b4ae7bd789815a0c | http://iwant2.ru/ || 2012-02-03 03:00:13 | sub16 | avira | ADSPY/AdSpy.Gen2 | 28/43 (65.1%) | AS10912 | 66.150.14.86 | abuse@internap.com | US | ARIN | PNAP-06-2001 | 15468ec5175f10979e533abf78c05f97 | http://origin-ics.ravenbleu.com/IC/GPLRavenBleu03/31985/2/ba9dc0e3-19a8-4fcd-bf11-da2d136f7e9b/AresSetup.exe || 2012-02-03 03:00:14 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS18229 | 182.18.181.121 | psreddy@ctrls.in | IN | APNIC | CtrlS | f4e36407e81e4883e2da197e872cd3fc | http://technicalwriting.co.in/index.html || 2012-02-03 03:00:14 | sub16 | Antiy_AVL | Server-FTP/Win32.SFH.gen | 5/43 (11.6%) | AS13649 | 64.78.150.172 | abuse@viawest.net | US | ARIN | VIAWEST-BLK-13 | 3bf393669ff103af92a783be8ad1e7c2 | http://tftpd32.jounin.net/download/tftpd32.400.zip || 2012-02-03 03:00:15 | sub16 | Ikarus | Backdoor.MSIL | 4/43 (9.3%) | AS57010 | 62.76.176.195 | sf@clodo.ru | RU | RIPE | Clodo-Cloud | 887272c1ac9519fd02900440340e93e9 | http://www.algoritm2.ru/httpcompil/compils/IhMshTdJLF.exe || 2012-02-03 03:00:15 | sub16 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS9389 | 211.166.9.27 | ipas@cnnic.net.cn | CN | APNIC | CGWNET | b8daea8cd0a3546f6df8de9a1eeb41db | http://www.binghe.org/img/includes/welcomep.html || 2012-02-03 03:00:45 | sub16 | undef | unknown_html_RFI_shell | 0/41 (0.0%) | AS29076 | 193.109.247.52 | abuse@compubyte.vg | VG | RIPE | UCOZ-NET | 6615586d57d3d130c21b11f1e9e7b374 | http://jumax.ucoz.org/PayPal.htm || 2012-02-03 03:00:47 | sub16 | DrWeb | SCRIPT.Virus | 2/43 (4.7%) | AS27823 | 200.58.111.28 | ipmaster@hostmar.com | AR | LACNIC | AR-DATT-LACNIC | 1feeb556817ff284de7ce0299a39cbb8 | http://www.rrdecoraciones.com.ar/archivos/1309121295/ta/index.php || 2012-02-03 03:00:47 | sub16 | avira | ADSPY/NaviPromo.J | 11/41 (26.8%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | c3c8a496788d26d2ab47d774facbf5f6 | http://www.toptenreport.com/download/out2nc.exe || 2012-02-03 02:12:11 | sub8 | NOD32 | HTML/ScrInject.B.Gen | 1/43 (2.3%) | AS13335 | 173.245.61.111 | noc@cloudflare.com | US | ARIN | CLOUDFLARENET | ab6484a558f3d1ed9eeb8d9682f043e6 | http://massacrescape.com/ || 2012-02-03 02:12:13 | sub8 | undef | WebToolbar.Win32.MyWebSearch.ri | 0/43 (0.0%) | AS36420, AS30315, AS13749, AS21844 | 184.173.78.186 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-17 | bb659b547187fb3ff7e3c7db3b2e453e | http://anorexiaaide.com/imagens/ || 2012-02-03 03:10:14 | sub10 | avira | WM/Concept.X | 22/43 (51.2%) | AS4323 | 162.80.26.25 | dkurukulasuriya@aqmd.gov | US | ARIN | SCAQMDNET | e6ce3f88aa4f59dce9bdd7ee45e20c03 | http://aqmd.gov/hb/attachments/1996/960437.exe || 2012-02-03 03:10:14 | sub10 | avira | TR/SkynetRef.u | 33/42 (78.6%) | AS39743 | 188.211.239.213 | maria.mirabela1980@gmail.com | ro | RIPE | PF-DEACONU-VASILE | ca9adac5b59021d6e1ae4f845709ded3 | http://fvsn.org/!install/install-17000.exe || 2012-02-03 03:30:11 | sub16 | trendmicro | Possible_Virus | 20/43 (46.5%) | AS44112 | 77.222.56.56 | abuse@sweb.ru | RU | RIPE | Spaceweb-DC2 | b484c5a9a197e3428607ddf2338e0834 | http://domodedovo-teplo.ru/independentecobrancas.com.br/acerto11-01.php || 2012-02-03 03:30:12 | sub16 | avira | PHISH/TAM.A | 1/43 (2.3%) | AS26496 | 118.139.186.1 | gschwimer@godaddy.com | SG | APNIC | GODADDY-NET-AS-AP | 032270aa5be9fd721e8b29e25cd240dd | http://frontier.mn/administrator/smtp/pontos/ || 2012-02-03 03:40:05 | sub24 | avira | EXP/Pidief.atj | 23/43 (53.5%) | AS16265 | 83.149.112.116 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20040309 | bd16edc6bfd1bd5166f94015b8a7d1d9 | http://83.149.112.116/content/fdp1.php?f=32 || 2012-02-03 03:40:05 | sub24 | avira | EXP/Pidief.atj | 22/41 (53.7%) | AS16265 | 83.149.112.116 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20040309 | 43ffd0cc63fe142d9041dee5034a3fad | http://83.149.112.116/content/fdp1.php?f=69 || 2012-02-03 03:40:05 | sub24 | avira | TR/Crypt.ULPM.Gen | 3/42 (7.1%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | dfa4eccb04621e43173c2f456d98d193 | http://79.137.237.66/files/1247 || 2012-02-03 03:40:05 | sub24 | avira | EXP/Pidief.atj | 21/43 (48.8%) | AS16265 | 83.149.112.116 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20040309 | f5c2728eace73046969602333913f530 | http://83.149.112.116/content/fdp1.php?f=0 || 2012-02-03 03:40:05 | sub24 | avira | EXP/Pidief.atj | 23/43 (53.5%) | AS16265 | 83.149.112.116 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20040309 | 23d5d371e6dcf77c5d978b718def49b5 | http://83.149.112.116/content/fdp1.php?f=37 || 2012-02-03 03:40:05 | sub24 | avira | EXP/Pidief.atj | 21/43 (48.8%) | AS16265 | 83.149.112.116 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20040309 | 0de1753c81ea1e5631db475238e8abe1 | http://83.149.112.116/content/fdp1.php?f=66 || 2012-02-03 03:40:05 | sub24 | avira | EXP/Pidief.atj | 23/43 (53.5%) | AS16265 | 83.149.112.116 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20040309 | 7cfd0ee8e6c77a3b3fbe4cb73a69cbbc | http://83.149.112.116/content/fdp1.php?f=88 || 2012-02-03 03:40:05 | sub24 | DrWeb | Trojan.Inject.60668 | 1/43 (2.3%) | AS8972 | 85.25.187.10 | abuse@plusserver.de | DE | RIPE | DE-INTERGENIA-20050301 | 1f7e6822e642bfaefa3b8f7a4fc2adf0 | http://85.25.187.10/files/36 || 2012-02-03 03:40:05 | sub24 | avira | TR/Crypt.ULPM.Gen | 3/43 (7%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | dfa4eccb04621e43173c2f456d98d193 | http://os8128.ru/files/1247 || 2012-02-03 03:40:05 | sub16 | DrWeb | Trojan.DownLoader5.42636 | 6/42 (14.3%) | AS15201 | 200.98.136.222 | l-registrobr-uol@corp.uol.com.br | BR | LACNIC | 001.109.184/0001-95 | 2e27467c0e882a26fef9c560e6191dd4 | http://200.98.136.222/Comprovante/attachment.php || 2012-02-03 02:12:15 | sub8 | undef | Trojan.Crypt.Delf.AH | 0/42 (0.0%) | AS10297 | 209.190.24.6 | abuse@ee.net | US | ARIN | ENET-XLHOST | 0422f5582afb62be5b7a75f420b9e113 | http://avivitnir.byethost24.com/install/ || 2012-02-03 03:22:11 | sub17 | avira | HTML/Drop.Agent.AB | 35/43 (81.4%) | AS3786 | 222.231.1.128 | support@kidc.net | KR | APNIC | KIDC-KR | 9dd7f64322effe06fa173df52fa8beaa | http://www.drbrain.kr/shop/images/1.html || 2012-02-03 03:50:07 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS32613 | 174.142.215.122 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-06 | d819453252381714d1736278e68e9f02 | http://cobrancaeletronicarw.com/Fidelidade/index1.php?=c9FCi4riizMX4gTNd2SKSf6HIMULV6Rikhwpu6sFTpsiC4DNKEisZepICIGwxTzVmUuarQVwYXwPvgA7i7RryOGyzBDpmNlzr3Py || 2012-02-03 03:50:09 | sub16 | undef | unknown_file_$[46]/$PLUGINSDIR/qlps-qlipso-sntb.exe | | AS22822 | 95.140.225.75 | guy@llnw.com | GB | RIPE | LLNW-EU-3 | 3b514b00464d0fe8cecd39adc58912a3 | http://ll-appserver.veoh.com/static/downloads/client/VeohWebPlayerSetup_eng.exe || 2012-02-03 03:50:11 | sub16 | avira | ADWARE/Relevant.377472 | 13/43 (30.2%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 67d08e63c768f97a4d6e48c4663aa8ec | http://www.file4me.com/sdownload/art_setup.exe || 2012-02-03 03:50:12 | sub16 | avira | ADSPY/NaviPromo.J | 9/43 (20.9%) | AS31815 | 205.186.187.146 | abuse@mediatemple.net | US | ARIN | MEDIATEMPLE-106 | ab922b1fdff3ce6e695b1ff4636f138e | http://www.ultimatumz.com/downloads/eipckaboom_installer.exe || 2012-02-03 04:00:13 | sub14 | Avast | Win32:MediaGet-B [PUP] | 7/43 (16.3%) | AS41947 | 92.241.182.191 | abuse@wahome.ru | RU | RIPE | WAHOME-COLO | 4b2bd047f601d4e76fbf1e06f22a2b6e | http://download.mediaget.com/download.php?ref_id=mediastore.in.ua || 2012-02-03 04:00:13 | sub16 | avira | HTML/Dldr.Agent.OB | 28/41 (68.3%) | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 0db17f9fe0b9b6ae7294e2a107b34208 | http://0911.oldweek.com/G120B4/index1.asp || 2012-02-03 04:00:13 | sub16 | avira | HTML/Dldr.Agent.OB | 30/43 (69.8%) | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 1ab7c93e4364d1fe29c4a477762008c0 | http://0913.oldweek.com/G120B12/index1.asp || 2012-02-03 04:00:13 | sub16 | avira | HTML/Dldr.Agent.OB | 30/43 (69.8%) | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 1252bbcd77efb18ef410027601da055b | http://0913.oldweek.com/G120B18/index1.asp || 2012-02-03 03:49:03 | sub5 | avira | PHP/Shellbot.7642 | 33/43 (76.7%) | AS15201 | 200.98.141.47 | l-registrobr-uol@corp.uol.com.br | BR | LACNIC | 001.109.184/0001-95 | 80e734ece5b5156ccf989365fb9d882c | http://200.98.141.47/nois.jpg? || 2012-02-03 03:06:17 | sub5 | Avast | PHP:Agent-L [Trj] | 9/43 (20.9%) | AS26496 | 173.201.63.1 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | ba10b2dc36447bdc98ef0dc448ddb995 | http://linkedvideoads.com/google.txt?? || 2012-02-03 04:00:50 | sub16 | undef | unknown_html_RFI_php | 0/42 (0.0%) | AS21788 | 173.212.222.192 | nic@hostnoc.net | US | ARIN | HOSTNOC-7BLK | abe878f03cffe45042130e6077532f91 | http://173.212.222.192/linea.davivienda/actualizaciones/user.html || 2012-02-03 04:00:55 | sub16 | BitDefender | Trojan.Generic.KD.486108 | 5/43 (11.6%) | AS36420, AS30315, AS13749, AS21844 | 69.93.79.171 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-9 | a2d0111ec7019af40dc4440aaf409b10 | http://www.mp3towav.org/download/AV-Voice-Changer-Gold.exe || 2012-02-03 03:22:04 | sub17 | avira | HTML/Drop.Agent.AB | 35/43 (81.4%) | AS9318 | 114.202.2.175 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | 9dd7f64322effe06fa173df52fa8beaa | http://bubu365.net/shop/images/1.html || 2012-02-03 04:20:07 | sub16 | avira | TR/Agent.im.171 | 24/42 (57.1%) | AS16724 | 208.38.187.181 | netadmin@kgix.com | US | ARIN | NET-208-38-186-0 | fd26e9a15af15a92836637b60a524e38 | http://2bta.com/Boleto.exe || 2012-02-03 04:20:07 | sub16 | avira | JS/Redirector.LC | 23/43 (53.5%) | AS6903 | 213.189.197.55 | abuse@zenon.net | RU | RIPE | ZENON | 3d6e6accae1f171122f589a3c7d9be85 | http://5roz.ru/partners/damochka.php?s=2&r=1064955529 || 2012-02-03 04:20:07 | sub16 | avira | JS/Redirector.LC | 23/43 (53.5%) | AS6903 | 213.189.197.55 | abuse@zenon.net | RU | RIPE | ZENON | f8b34e89aa38c5a1d1b0afb44116890c | http://5roz.ru/partners/svadby.php?s=2&r=1021855540 || 2012-02-03 04:20:07 | sub16 | avira | JS/Clicker.CA | 33/43 (76.7%) | AS8560 | 74.208.61.60 | abuse@1and1.com | US | ARIN | 1AN1-NETWORK | 64c79c21c355c9931139f353e2a9ef78 | http://60secondstv.tv/bitesback_blog/?p=29 || 2012-02-03 04:20:14 | sub16 | avira | SPR/Tool.13686.2 | 19/43 (44.2%) | AS36420, AS30315, AS13749, AS21844 | 64.5.41.18 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-5 | fecfc36c1b56c9ea9d5cac6ba4c2830d | http://www.myspatreatment.com/files/unleash-your-psychic-abilities.exe || 2012-02-03 04:20:15 | sub16 | avira | ADWARE/Relevant.377472 | 20/42 (47.6%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 80e74ce20fd6ed0f03c82581921a4c0e | http://www.toptenreport.com/TLKGames/activeharem.exe || 2012-02-03 04:20:15 | sub20 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS15201 | 200.98.134.54 | l-registrobr-uol@corp.uol.com.br | BR | LACNIC | 001.109.184/0001-95 | 4ba705a3b646268d1c7f94abbd404712 | http://camarao.chickenkiller.com/tereza/elemento4.swf || 2012-02-03 04:32:39 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS18450 | 173.231.1.221 | NOC@webnx.com | US | ARIN | WEBNX-BLK-3 | e7eea4215ab03b0145453226f6cada93 | http://aatur.com/90324782347823489734987230890902189038923772382389023890781239/ || 2012-02-03 04:32:39 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS53665 | 199.59.241.238 | abuse@bodis.com | CN | ARIN | BODIS-COM | 3ce6871a736d86e0f4a2a22c7f6c3b14 | http://abtdiagnostic.com/ || 2012-02-03 04:32:39 | sub16 | avira | EXP/Pidief.amp | 30/43 (69.8%) | AS9891 | 203.170.193.102 | ip_admin@csloxinfo.net | TH | APNIC | idc-csloxinfo | c7ea52480774528d599a34282a28c87d | http://adhamon.com/content/1ddfp.php?f=20 || 2012-02-03 04:32:40 | sub16 | avira | EXP/CVE-2010-0840.FI | 31/42 (73.8%) | AS9891 | 203.170.193.102 | ip_admin@csloxinfo.net | TH | APNIC | idc-csloxinfo | 2a5f55e3ad04a8fa83deaba537d3fe5c | http://adhamon.com/content/content.jar || 2012-02-03 04:32:40 | sub16 | avira | EXP/Pidief.atm | 25/43 (58.1%) | AS9891 | 203.170.193.102 | ip_admin@csloxinfo.net | TH | APNIC | idc-csloxinfo | 090aa11e4a214c2b998b13d55064fe24 | http://adhamon.com/content/fdp1.php?f=20 || 2012-02-03 04:32:40 | sub16 | avira | EXP/Pidief.atm | 19/43 (44.2%) | AS9891 | 203.170.193.102 | ip_admin@csloxinfo.net | TH | APNIC | idc-csloxinfo | f60c3572acbde7bfdc893690376d0a29 | http://adhamon.com/content/fdp2.php?f=20 || 2012-02-03 04:32:40 | sub16 | avira | EXP/2010-0840.P | 29/43 (67.4%) | AS9891 | 203.170.193.102 | ip_admin@csloxinfo.net | TH | APNIC | idc-csloxinfo | db27bd4f44dd9116de91ab887b7f4e49 | http://adhamon.com/content/field.jar || 2012-02-03 04:32:40 | sub16 | Ikarus | Exploit.SWF.Blacole | 5/43 (11.6%) | AS9891 | 203.170.193.102 | ip_admin@csloxinfo.net | TH | APNIC | idc-csloxinfo | 8b48c206d6fe9aca6939923172c43f4d | http://adhamon.com/content/field.swf || 2012-02-03 04:32:40 | sub16 | avira | EXP/CVE-2010-0840.FJ | 29/43 (67.4%) | AS9891 | 203.170.193.102 | ip_admin@csloxinfo.net | TH | APNIC | idc-csloxinfo | 1bfd08907a2bf3663b226700147894fb | http://adhamon.com/content/import.jar || 2012-02-03 04:32:40 | sub16 | BitDefender | Exploit.Java.CVE-2011-3544.F | 6/42 (14.3%) | AS9891 | 203.170.193.102 | ip_admin@csloxinfo.net | TH | APNIC | idc-csloxinfo | 68c8a4ec163f081aee8134f0739e85ec | http://adhamon.com/content/rino.jar || 2012-02-03 04:32:40 | sub16 | avira | EXP/SWF.BH | 8/43 (18.6%) | AS9891 | 203.170.193.102 | ip_admin@csloxinfo.net | TH | APNIC | idc-csloxinfo | 0e7d4a3fb2beea602e1476ed5e50c745 | http://adhamon.com/content/score.swf || 2012-02-03 04:32:40 | sub16 | Antiy_AVL | Exploit/Java.CVE-2011-3544 | 14/41 (34.1%) | AS9891 | 203.170.193.102 | ip_admin@csloxinfo.net | TH | APNIC | idc-csloxinfo | 634030a5752947225f492cc1c76ab2ce | http://adhamon.com/content/v1.jar || 2012-02-03 04:32:40 | sub16 | avira | EXP/Java.Blacole.K | 35/43 (81.4%) | AS9891 | 203.170.193.102 | ip_admin@csloxinfo.net | TH | APNIC | idc-csloxinfo | 81c2c61e621348396e6c120665645b51 | http://adhamon.com/content/worms.jar || 2012-02-03 04:32:40 | sub16 | Comodo | UnclassifiedMalware | 4/43 (9.3%) | AS9891 | 203.170.193.102 | ip_admin@csloxinfo.net | TH | APNIC | idc-csloxinfo | 18990a0a65a6fb3f0ffe1106168b4eac | http://adhamon.com/getJavaInfo.jar || 2012-02-03 04:32:40 | sub16 | avira | JS/iFrame.KH | 32/43 (74.4%) | AS30943 | 217.112.42.80 | abuse@valuehost.ru | RU | RIPE | VALUEHOST-MSK1-NET | 8ff079cf7bab8b068a6e99d660494cf7 | http://advokatrus.ru/forums/lofiversion/index.php/t421.html || 2012-02-03 04:32:40 | sub16 | avira | JS/Agent.alf | 21/43 (48.8%) | AS32097 | 173.208.251.114 | abuse@wholesaleinternet.net | US | ARIN | WII-OAK-2 | 704e11607144ec7f090d5f1d8c1e9415 | http://afllivestream2011.com/?ver=3.8.3 || 2012-02-03 04:32:40 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS13213 | 77.92.89.1 | ripe@uk2.net | GB | RIPE | UK2-NET | 30670155b79e66dd40003321f2678efc | http://africanhealthforum.org.uk/wp-content/plugins/simple-forum/resources/jscript/forum/sf-forum.js?ver=5314 || 2012-02-03 04:32:40 | sub16 | avira | PHP/Agent.DQ | 11/42 (26.2%) | AS24989 | 87.238.192.127 | info@evanzo.de | DE | RIPE | DE-EVANZO-20060120 | bb438b505cfa63e1aab2c5adb013537b | http://akm-m.de/phpcms.php?act=ls || 2012-02-03 04:32:40 | sub16 | avira | TR/Offend.kdv.484560 | 22/43 (51.2%) | AS8342 | 217.107.34.231 | info@avguro.com | RU | RIPE | AVGURO-NET | 0bb848cb7f4766c86cf7ac0438179d1f | http://aktivator-windows7.ru/d3dx9_43.rar || 2012-02-03 04:32:40 | sub16 | avira | TR/Crypt.XPACK.Gen | 36/43 (83.7%) | AS41947 | 195.216.243.28 | abuse@compubyte.vg | GB | RIPE | COMPUBYTE-NET | a7696c6600d6734e6e224399e9501180 | http://all-infowow.ru/chity/132_reduX.rar || 2012-02-03 04:32:40 | sub16 | avira | JS/Dldr.Psyme.AB.2 | 26/36 (72.2%) | AS25532 | 90.156.201.112 | abuse@masterhost.ru | RU | RIPE | MASTERHOST-HOSTING | 83b3095faac3ed977538b3f2172c69f7 | http://altiport.ru/forum/profile.php?mode=viewprofile&u=452&sid=138c54c738c8cca25e45b06ffa94c994 || 2012-02-03 04:32:40 | sub16 | avira | TR/Expl.Aluigi.CT | 28/43 (65.1%) | AS24940 | 78.46.69.154 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET | 6b1b59fa862ec8ff0e0fe1e8a4aab7ce | http://aluigi.altervista.org/fakep/atronfp.zip || 2012-02-03 04:32:40 | sub16 | avira | DDOS/Agent.AN.1 | 33/43 (76.7%) | AS24940 | 78.46.69.154 | abuse@hetzner.de | DE | RIPE | HETZNER-RZ-NBG-NET | e3bdac9b2fbb4d5e18c32b486f9ed362 | http://aluigi.altervista.org/fakep/codeaglefp.zip || 2012-02-03 04:32:40 | sub16 | avira | TR/Dropper.Gen | 32/43 (74.4%) | AS4134 | 121.12.172.134 | abuse@gddc.com.cn | CN | APNIC | CHINANET-GD | 05f8c4810eb801eaa1fb2dcc9b5535a5 | http://amg.948i.com:51/Gvod.exe || 2012-02-03 04:32:40 | sub16 | Avast | HTML:Iframe-OO [Trj] | 16/43 (37.2%) | AS44112 | 77.222.56.82 | abuse@sweb.ru | RU | RIPE | Spaceweb-DC2 | 087932c9b16f0226b1e994d07fe7b765 | http://ano-mirdetstva.ru/zemchuzinka/index.html || 2012-02-03 04:32:40 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS39392 | 88.86.100.176 | zdenek@superhosting.cz | CZ | RIPE | CZ-SUPERNETWORK-20060214 | 25563064e927b8285fd9454776a68e78 | http://antikarinklub.tym.sk/uj-1/siriwuier.htm || 2012-02-03 04:32:43 | sub16 | VirusBuster | VBS.AOL.Cardst.B | 1/43 (2.3%) | AS32475 | 184.154.61.178 | abuse@singlehop.com | US | ARIN | SINGLEHOP | 806e41f70bcc124f501aa1dc89ba6a3c | http://mrsushi.mx/modules/BillingCenter/update.php || 2012-02-03 04:32:44 | sub16 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS16810 | 184.80.8.146 | noc@cavtel.net | US | ARIN | CAVTEL-BLK-10 | 5de7a8bd1c4caa8fba113536677dbefa | http://static-184-80-8-146.t1.cavtel.net/RefundFormASB/ASBConsumerBiz/survey%20ASB.html || 2012-02-03 04:50:05 | sub16 | avira | HTML/Dldr.Agent.OB | 30/43 (69.8%) | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 11bf4ccbe8b0481c5837230143cd47fb | http://0911.oldweek.com/G120B10/index1.asp || 2012-02-03 04:50:05 | sub16 | avira | HTML/Dldr.Agent.OB | 30/43 (69.8%) | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 9269d58f231bcfdeefe7628c0029c61c | http://0912.oldweek.com/G120B11/index1.asp || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | ba5486c4ae4d91f038bc82bef9058684 | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/wineries-around-indiana.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 26/42 (61.9%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | 04adbb76e9594e4cd2731f63aa47aeb7 | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/winery-by-the-creek-fairplay.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | 5d3b094b2da09fb059d5c0a507598b31 | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/winery-in-dahlonega.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | dcda73664f2824328258a86a3cc008c0 | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/winery-tours-in-kelowna.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 26/42 (61.9%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | dc3f50941447842b397e03aef29c4f63 | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/winesburg-oh-by-sherwood-anderson.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | 8d5170af26ae2101f578a55b3617678b | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/winesburg-ohio-pedagogy.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | a8f014c694ff7f017d3a24219758594e | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/wines-catembe.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | ed696251f60aa2991f58b6b18b23928f | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/wines-sales-emeryville-premier-cru.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/42 (64.3%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | c2ed73708c0a60402a98825c99db6d28 | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/winexpert-kit.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 22/33 (66.7%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | 0406710a44e53e9308fa566594f6932b | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/winfast-6150bk8mc.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 26/42 (61.9%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | 3ef2a4ae5b52210de9d01242f9b96311 | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/winfast-7800gt-firmware-update.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | 56eab93985d9885c4dc59d7032217cf7 | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/winfast-foxconn-k7s.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | 5de3bff7d398c66969778c4531d9efc8 | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/winfast-k7s741gxmg.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 22/33 (66.7%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | 283d297e6cda1c853f04cd5a076875bc | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/winfast-k7s741gxmg-uk.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | a89ca2d35626b87ae352c1d9d80dda3c | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/winfast-tv2000-xp-drivers.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | 6c9723ced756d693e83b780c6820dc92 | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/winfast-tv-2000xp-expert-drivers.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | e954791da9c794f243074f6ec8d287c4 | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/winfast-tv2000-xp-expert-drivers.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | dc6dda96a1b74b5b971b446ef16f29e8 | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/winfax-pro-canada.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | b37a1436ee6497e9244c560ce0508cef | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/winferd-lee-smith.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/42 (64.3%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | d27d2c4b843ca8312f2733a692bf935b | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/winfield-collections-magazine.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/42 (64.3%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | a7ce81d61ae5f2ba6b047276b833b946 | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/winfield-courier-newpaper.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | 96377d0395e45860903d66b99155fdf4 | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/winfield-gardner-obituary.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | 0b45a6c3a508783037581f8a67ccf597 | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/winfield-mobile-foe-sale-bc.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | 6f831714a50a674640fe75e428f67652 | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/winfiled-scott.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | 8e4113b8ae9dc0d80e7bbedc7f30915a | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/winfile.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | 1e12d02db51852154609d564992073b1 | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/winfix-malware.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | db9e760fa079b059f7fc472f46ac0a78 | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/wingard-rv-antenna.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/42 (64.3%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | 73cea6d7a159c715bf42413ec6feef9f | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/wingate-billings-mt.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | 6f714a0fee3c146bdd24561e032786b5 | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/wingate-by-wyndham-chantilly-va.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 26/42 (61.9%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | d45b3addb0d8872238fc7128978f9a6a | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/wingate-inn-fairburn-ga.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | 38efd0d52949550c5a178fb670de387f | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/wingate-inn-helena.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 25/41 (61%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | d4a3bef46d2fcb83b2e2047ffc502523 | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/wingate-inn-polaris-parkway.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 25/41 (61%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | 181de5d8fe59060d7b8cc0ec7bdf6618 | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/wingate-motes-around-green-bay-wi.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 25/41 (61%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | f770208b89d0d451cc4e5708d04e715e | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/wingate-packaging-inc.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | dbacbc86bf8eb47a41190678f3119bcb | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/wingates-industrial-estate.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | 232cbe328176e9b05db83b8f2c05a911 | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/wingback-recliner-chairs-by-lazyboy.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | c499245debf108341013a26060f7757e | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/wing-chun-home-certification.html |+---------------------+-------------+-------------+-----------------------------------------------------+---------------+------------------------------------+-----------------+------------------------------------+---------+--------+--------------------------+----------------------------------+-------------------------------------------------------------------------------------------------------------------------------------------------------------+200 rows in set (0.04 sec)
+---------------------+-------------+------------+-----------------------------+---------------+------------------------------------------------------------------+-----------------+-------------------------------------+---------+--------+----------------------------+----------------------------------+--------------------------------------------------------------------------------------------------------------------------------------------------------+| date | contributor | scanner | virusname | vt_score | AS | review | email | country | source | netname | md5sum | url |+---------------------+-------------+------------+-----------------------------+---------------+------------------------------------------------------------------+-----------------+-------------------------------------+---------+--------+----------------------------+----------------------------------+--------------------------------------------------------------------------------------------------------------------------------------------------------+| 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | c24a66042c6517242c33e0728f509b1e | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/wing-chun-laurel-md.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | 445106e0b8b7614daeee024dd0ae5ae6 | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/wing-chun-training-arm.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | 8e37c35353d9fddfab18ac42de7f601c | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/wing-ding-2006-rockford-illinois.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 25/41 (61%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | b26c8ab1ce9ab0ce0e6aa84f53c54780 | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/winged-heart-pen-and-ink-drawings.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/42 (64.3%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | eaf5b73428233e11357d511fe142d578 | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/winged-heart-pen-and-ink-illustrations.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | 36b61bc9292ea2b0fca24758445e101d | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/winged-nazgul.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | c2c92bb0c2d5498e9af35ecdd5aaa0bc | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/winged-skull-jpg.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | 8d0f213c093abf66f480ac3eacfdc195 | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/winged-upholstered-headboard.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | 2b133fd1595bf4ff1293c18dc700dfbe | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/wingello-real-estate.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | a3a0b9dd89bf8d1aed45163f5d524dbd | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/wing-emporium-toronto.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 25/41 (61%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | 5fd3be21a45c70519b0a3d0f2e77e2ed | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/wingenfelder.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 26/42 (61.9%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | 58faf6b22e3fc11528582cafbe55fe81 | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/wingers-townsville.html || 2012-02-03 04:50:09 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | 6789b912e593f0daa596d5d995191acd | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/wing-tech.html || 2012-02-03 04:50:10 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | 3097fdbd8b7900c76eb2ede5d7334f0e | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/wing-wham-hotel-litchfield-az.html || 2012-02-03 04:50:10 | sub16 | avira | HTML/Crypted.Gen | 26/42 (61.9%) | AS50930 | 91.216.34.117 | info@alkeninternet.nl | NL | RIPE | Alken-Internet | 9433b8605d85c5e7bda37bbc06669df6 | http://big-chatter.nl/Forums/styles/_images/winerack-humidor/wing-workd-magazine.html || 2012-02-03 04:50:10 | sub16 | avira | JS/Pegel.BR.51139 | 25/40 (62.5%) | AS25973, AS35937, AS15244 | 67.210.126.80 | hostmaster@lunarpages.com | US | ARIN | ADD2NET-DOT-COM | 5fc99a561a02f21a782640a6b1c0e56e | http://billflyfisherman.com/FinalSite/admin/farmyard-fun-porn-free/annabel-chong-sex-marathon.html || 2012-02-03 04:50:10 | sub16 | avira | HTML/Crypted.Gen | 25/40 (62.5%) | AS34788 | 85.13.130.162 | ip@all-inkl.com | DE | RIPE | DE-ALL-INKL-20050405 | 7ee67d46252c647cc8b5d3d516675d02 | http://birkenparty.werl-holtum.de/_img/microcore-instructions/microe-mulsion.html || 2012-02-03 04:50:10 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS34788 | 85.13.130.162 | ip@all-inkl.com | DE | RIPE | DE-ALL-INKL-20050405 | 60a23bb450fa1d8ad9baf94b4c280245 | http://birkenparty.werl-holtum.de/_img/microcore-instructions/microfiber-upholstered-dining-chair.html || 2012-02-03 04:50:10 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS34788 | 85.13.130.162 | ip@all-inkl.com | DE | RIPE | DE-ALL-INKL-20050405 | 3ec9682113fdcc759bcf25a6d4ae5ffb | http://birkenparty.werl-holtum.de/_img/microcore-instructions/microfiber-upholstery-stain-removal.html || 2012-02-03 04:50:10 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS34788 | 85.13.130.162 | ip@all-inkl.com | DE | RIPE | DE-ALL-INKL-20050405 | a12c4a96212d2994279bedec4cae17b2 | http://birkenparty.werl-holtum.de/_img/microcore-instructions/microfinance-and-the-nigerian-economy.html || 2012-02-03 04:50:10 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS34788 | 85.13.130.162 | ip@all-inkl.com | DE | RIPE | DE-ALL-INKL-20050405 | 5af6a06364c5d35b446547a14097c581 | http://birkenparty.werl-holtum.de/_img/microcore-instructions/microgen-engine-corporation.html || 2012-02-03 04:50:10 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS34788 | 85.13.130.162 | ip@all-inkl.com | DE | RIPE | DE-ALL-INKL-20050405 | 2f663e4d4e9af4af86c46c5af7e9ba82 | http://birkenparty.werl-holtum.de/_img/microcore-instructions/micrognathia-hemolytic-anemia.html || 2012-02-03 04:50:10 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS34788 | 85.13.130.162 | ip@all-inkl.com | DE | RIPE | DE-ALL-INKL-20050405 | 0e19c3a4d5d907d35f724ea0dd04bba6 | http://birkenparty.werl-holtum.de/_img/microcore-instructions/micrograph-legend-writing.html || 2012-02-03 04:50:10 | sub16 | avira | HTML/Crypted.Gen | 27/42 (64.3%) | AS34788 | 85.13.130.162 | ip@all-inkl.com | DE | RIPE | DE-ALL-INKL-20050405 | ab233f5e489454d58a3e2d01c08eb745 | http://birkenparty.werl-holtum.de/_img/microcore-instructions/micrologic-back-up-battery.html || 2012-02-03 04:50:10 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS34788 | 85.13.130.162 | ip@all-inkl.com | DE | RIPE | DE-ALL-INKL-20050405 | 464f7297a01ae7023250ae613e1a1367 | http://birkenparty.werl-holtum.de/_img/microcore-instructions/micromega-and-rivista-and-espresso.html || 2012-02-03 04:50:10 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS34788 | 85.13.130.162 | ip@all-inkl.com | DE | RIPE | DE-ALL-INKL-20050405 | 733f8a7dc6a0835dbb423a2fa46a6974 | http://birkenparty.werl-holtum.de/_img/microcore-instructions/micrometer-repair-nist.html || 2012-02-03 04:50:10 | sub16 | avira | HTML/Crypted.Gen | 26/42 (61.9%) | AS34788 | 85.13.130.162 | ip@all-inkl.com | DE | RIPE | DE-ALL-INKL-20050405 | eadbd482fb6467e947bc9505cc07cf7a | http://birkenparty.werl-holtum.de/_img/microcore-instructions/micromotion-coriolis.html || 2012-02-03 04:50:10 | sub16 | avira | HTML/Crypted.Gen | 27/42 (64.3%) | AS34788 | 85.13.130.162 | ip@all-inkl.com | DE | RIPE | DE-ALL-INKL-20050405 | af10ced634a4fe27772d228f003544b8 | http://birkenparty.werl-holtum.de/_img/microcore-instructions/micron-grit-conversion.html || 2012-02-03 04:50:10 | sub16 | avira | TR/Offend.7116540.9 | 25/43 (58.1%) | AS16276 | 178.32.28.118 | abuse@ovh.net | FR | RIPE | FR-OVH-20100119 | 51d50d2f17a38bd4ae75835b6bbfa958 | http://bkav.alwaysdata.net/anti/1.exe || 2012-02-03 04:50:10 | sub16 | avira | JS/Agent.psa.12 | 17/43 (39.5%) | AS16265 | 92.114.87.156 | office@globehosting.com | ro | RIPE | SC-GLOBE-HOSTING-SRL | d320c4ea225a15350d428b75ffc03f7a | http://brebu.ro/forum/viewtopic.php?f=54&t=87&sid=f4d3ece3523ae80bb2c918889ad178ce&start=50 || 2012-02-03 04:50:10 | sub16 | avira | PHP/C99Shell.F | 32/43 (74.4%) | AS11798 | 74.220.219.53 | support@bluehost.com | US | ARIN | BLUEHOST-NETWORK-2 | f1947a19b6f998780b71e6645be3e3be | http://buchsbaumtax.com/site/media/system/ipays.jpg || 2012-02-03 04:50:10 | sub16 | avira | HTML/Dldr.Agent.OB | 30/42 (71.4%) | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 1b13716f41564f6aeedc7e5a0759d918 | http://buji1.0516zufang.com/article/13/index1.asp || 2012-02-03 04:50:10 | sub16 | avira | HTML/Dldr.Agent.OB | 30/42 (71.4%) | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 7ce3b22a5dec62d0909b966cc48d2af6 | http://buji1.0516zufang.com/article/15/index1.asp || 2012-02-03 04:50:10 | sub16 | avira | HTML/Dldr.Agent.OB | 30/43 (69.8%) | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 15f6e5ada2399626012afcf1998b1722 | http://buji2.0516zufang.com/article/4/index1.asp || 2012-02-03 04:50:10 | sub16 | AntiVir | HEUR/HTML.Malware | 9/42 (21.4%) | AS34989 | 83.143.81.86 | abuse@fasthost.no | NO | RIPE | NO-SERVETHEWORLD | 301fc2702be990ea297856c94da3a5d9 | http://buss.lanpro.no/phpBB2/viewtopic.php?p=92352 || 2012-02-03 04:50:10 | sub16 | avira | JS/Infected.C | 22/43 (51.2%) | AS27715 | 187.45.240.103 | regcom@locaweb.com.br | BR | LACNIC | 002.351.877/0001-52 | cda8f2c71313d860bc1d9ee0bdb72866 | http://caravanserai.com.br/wp-content/plugins/event-calendar/ec3.js || 2012-02-03 04:50:10 | sub16 | avira | JS/Infected.C | 22/41 (53.7%) | AS27715 | 187.45.240.103 | regcom@locaweb.com.br | BR | LACNIC | 002.351.877/0001-52 | fb750ca0a410d0bea774086666b2c224 | http://caravanserai.com.br/wp-content/plugins/nextgen-gallery/js/ngg.slideshow.min.js?ver=1.05 || 2012-02-03 04:50:10 | sub16 | avira | JS/Infected.C | 22/42 (52.4%) | AS27715 | 187.45.240.103 | regcom@locaweb.com.br | BR | LACNIC | 002.351.877/0001-52 | 1b721c09cde3d898c2d2809fc28d6e52 | http://caravanserai.com.br/wp-content/themes/InStyle/epanel/shortcodes/js/et_shortcodes_frontend.js?ver=1.6 || 2012-02-03 04:50:10 | sub16 | avira | JS/Infected.C | 20/41 (48.8%) | AS27715 | 187.45.240.103 | regcom@locaweb.com.br | BR | LACNIC | 002.351.877/0001-52 | a00212dbda0f6457d55cd13866ed7f5e | http://caravanserai.com.br/wp-includes/js/comment-reply.js?ver=20090102 || 2012-02-03 04:50:10 | sub16 | avira | JS/Infected.C | 23/42 (54.8%) | AS27715 | 187.45.240.103 | regcom@locaweb.com.br | BR | LACNIC | 002.351.877/0001-52 | 4a46d8abec8389be246bc483b7355b48 | http://caravanserai.com.br/wp-includes/js/jquery/jquery.js?ver=1.4.4 || 2012-02-03 04:50:10 | sub16 | avira | JS/Infected.C | 21/43 (48.8%) | AS27715 | 187.45.193.215 | regcom@locaweb.com.br | BR | LACNIC | 002.351.877/0001-52 | 36d51888de4cf4da4f79df4bd1562a77 | http://casadopercussionista.com.br/wp-content/plugins/nextgen-gallery/js/ngg.slideshow.min.js?ver=1.01 || 2012-02-03 04:50:10 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS27715 | 187.45.193.215 | regcom@locaweb.com.br | BR | LACNIC | 002.351.877/0001-52 | 9edadabfd4a7725b8d784441531d1974 | http://casadopercussionista.com.br/wp-content/plugins/nextgen-gallery/shutter/shutter-reloaded.js?ver=1.3.0 || 2012-02-03 04:50:10 | sub16 | avira | JS/Infected.C | 22/43 (51.2%) | AS27715 | 187.45.193.215 | regcom@locaweb.com.br | BR | LACNIC | 002.351.877/0001-52 | f65f5e6b037b553eac987bfde5152fc1 | http://casadopercussionista.com.br/wp-content/themes/boldy/js/cufon-yui.js || 2012-02-03 04:50:10 | sub16 | avira | JS/Infected.C | 20/43 (46.5%) | AS27715 | 187.45.193.215 | regcom@locaweb.com.br | BR | LACNIC | 002.351.877/0001-52 | 0b7d22a407497ddd502ec4c7547ffce2 | http://casadopercussionista.com.br/wp-content/themes/boldy/js/custom.js || 2012-02-03 04:50:10 | sub16 | avira | JS/Infected.C | 20/41 (48.8%) | AS27715 | 187.45.193.215 | regcom@locaweb.com.br | BR | LACNIC | 002.351.877/0001-52 | 5c716bc3d9e17a52f5c2be800b33791d | http://casadopercussionista.com.br/wp-content/themes/boldy/js/jquery.form.js || 2012-02-03 04:50:10 | sub16 | avira | JS/Infected.C | 17/43 (39.5%) | AS27715 | 187.45.193.215 | regcom@locaweb.com.br | BR | LACNIC | 002.351.877/0001-52 | 667ad6b28ed1864a5470ad3bc0b4b527 | http://casadopercussionista.com.br/wp-content/themes/boldy/js/jquery.prettyPhoto.js || 2012-02-03 04:50:10 | sub16 | avira | JS/Infected.C | 20/43 (46.5%) | AS27715 | 187.45.193.215 | regcom@locaweb.com.br | BR | LACNIC | 002.351.877/0001-52 | d37cd0a3a52d3bb052e8673d497ff56c | http://casadopercussionista.com.br/wp-includes/js/jquery/jquery.js?ver=1.4.2 || 2012-02-03 04:50:10 | sub16 | avira | JS/Infected.C | 23/43 (53.5%) | AS27715 | 187.45.193.215 | regcom@locaweb.com.br | BR | LACNIC | 002.351.877/0001-52 | 8b1e6216fe07dd0643382a63165d9bf7 | http://casadopercussionista.com.br/wp-includes/js/tw-sack.js?ver=1.6.1 || 2012-02-03 04:50:10 | sub16 | clamav | PUA.Game.Casino-2 | 13/42 (31%) | AS17036, AS22653 | 69.61.74.188 | abuse@cyberwurx.com | US | ARIN | NET-GLOBAL-COMPASS | 67ec5fc650eb6ba654443aa22d1bbc8f | http://casinoschule.com/downloads/primecasino.exe || 2012-02-03 04:04:15 | sub5 | avira | PHP/Shellbot.7642 | 35/43 (81.4%) | AS28666 | 189.1.164.87 | abuse@hospedagemdesite.com | BR | LACNIC | 006.943.198/0001-23 | 2f985a737c0bb6ca1a50b6f76ad5814b | http://189.1.164.87/tirr_stf/daskdlaskldasdsad.txt? || 2012-02-03 04:01:16 | sub5 | avira | PHP/Shellbot.7642 | 32/42 (76.2%) | AS14141 | 98.142.215.184 | wnoc@wiresix.com | US | ARIN | WIRESIX | d41b26bca8016773f5c18ac72ed01cd6 | http://fileden.com/files/2012/2/2/3259064//ZeroBochala.txt? || 2012-02-03 05:01:02 | sub16 | avira | PHP/IRCBOT.EF | 19/43 (44.2%) | AS7506 | 210.172.144.27 | warita@gmo.jp | JP | APNIC | INTERQ | fcccdb4fb0eea30c029724c1eb60bafe | http://asakusa-kagetudo.com/modules/shop/10.jpg?%3F || 2012-02-03 05:01:02 | sub16 | avira | PHP/IRCBOT.EF | 19/42 (45.2%) | AS7506 | 210.172.144.27 | warita@gmo.jp | JP | APNIC | INTERQ | e192a8b06f3606eb5b4438d96b4289f2 | http://asakusa-kagetudo.com/modules/shop/11.jpg?%3F || 2012-02-03 05:01:02 | sub16 | avira | PERL/Shellbot.B.3 | 27/43 (62.8%) | AS7506 | 210.172.144.27 | warita@gmo.jp | JP | APNIC | INTERQ | ad5cefd64ef0db9186f4d9a72ffb079f | http://asakusa-kagetudo.com/modules/shop/es.txt?%3F || 2012-02-03 05:01:02 | sub16 | avira | HTML/IFrame.era | 18/43 (41.9%) | AS38661 | 124.217.198.201 | noc@hclc.co.kr | KR | APNIC | HCLC-KR | ff279f283e7252fe4ad356568ad0254e | http://asanlivingtel.com/new/bbs/del_comment.php?id=reserv || 2012-02-03 05:01:02 | sub16 | avira | PHP/Small.C | 32/43 (74.4%) | AS30071, AS3356, AS29117, AS3549, AS1239, AS3561, AS6461, AS4436 | 173.214.178.24 | webmaster@kvchosting.com | US | ARIN | KVCHO | c9e3aae2dda1c32cc6b76af053bbccf6 | http://asgpp.com/images/logos/allnet.jpg || 2012-02-03 05:01:02 | sub16 | avira | PHP/Small.C | 29/41 (70.7%) | AS30071, AS3356, AS29117, AS3549, AS1239, AS3561, AS6461, AS4436 | 173.214.178.24 | webmaster@kvchosting.com | US | ARIN | KVCHO | 43bba5024f1a5fdf8e7add1072661d5d | http://asgpp.com/images/logos/byroe.jpg || 2012-02-03 05:01:02 | sub16 | avira | JS/Redirector.DC | 22/43 (51.2%) | AS32475 | 173.236.48.82 | netops@singlehop.com | US | ARIN | SINGLEHOP | 6d2a30cc29edf2d99a558a20290c6591 | http://asia1x1.net/HOME_PAGE/modules/weblinks/visit.php?lid=447 || 2012-02-03 05:01:02 | sub16 | Avast | JS:Illredir-BP [Trj] | 9/42 (21.4%) | AS4618 | 203.150.230.79 | noc@inet.co.th | TH | APNIC | INET-TH | b9504b9cf960e6db7f3542e8982619b2 | http://asialamp.com/pro-bar-delux.htm || 2012-02-03 05:01:02 | sub16 | avira | W97M/Marker.BR | 40/43 (93%) | AS33210 | 69.41.187.226 | hostmaster@800hosting.com | US | ARIN | 800-NET1 | 1fa1dfec9255fbefd4fa989d3247df24 | http://atlantaperforms.biz/uploaddir/39bc7fcbMaria%20Sager%20theatre%20resume.doc || 2012-02-03 05:01:02 | sub16 | avira | HTML/Drop.Agent.AB | 36/43 (83.7%) | AS23352 | 204.93.193.141 | support@servercentral.net | US | ARIN | SCNET-204-93-193-0-24 | 63acad49cfc743339b7f6f902e4e5bcf | http://atleticoarroios.com/ || 2012-02-03 05:01:02 | sub16 | avira | HTML/Dldr.Agent.IW | 25/43 (58.1%) | AS3595 | 69.73.138.162 | abuse@jaguarpc.com | US | ARIN | LH-GOLD-NETWORK | 179eded43adb19cda1ce10a536b5864d | http://attachments.innisdale.ca/broadcast/pages/DSC01015.htm || 2012-02-03 05:01:02 | sub16 | avira | JS/iFrame.GM.8 | 25/43 (58.1%) | AS3595 | 69.73.138.162 | abuse@jaguarpc.com | US | ARIN | LH-GOLD-NETWORK | f0f8e4db0e56cd611bb36217d60be0df | http://attachments.innisdale.ca/march5snow/pages/IMG_4990.htm || 2012-02-03 05:01:02 | sub16 | avira | JS/iFrame.GM.8 | 25/43 (58.1%) | AS3595 | 69.73.138.162 | abuse@jaguarpc.com | US | ARIN | LH-GOLD-NETWORK | ebdbcee7a23e999cdb4eea8697294262 | http://attachments.innisdale.ca/nightlights/pages/Copy%20of%20DSC_0759.htm || 2012-02-03 05:01:02 | sub16 | avira | JS/iFrame.GM.8 | 21/43 (48.8%) | AS3595 | 69.73.138.162 | abuse@jaguarpc.com | US | ARIN | LH-GOLD-NETWORK | 030a645ac35b123a955d3f91041d5782 | http://attachments.innisdale.ca/santaweb/pages/DSCN2450.htm || 2012-02-03 05:01:02 | sub16 | avira | JS/iFrame.GM.8 | 21/43 (48.8%) | AS3595 | 69.73.138.162 | abuse@jaguarpc.com | US | ARIN | LH-GOLD-NETWORK | 36da5f512304b4922cc02655f5dbd2f9 | http://attachments.innisdale.ca/soccer/pages/DSC04416.htm || 2012-02-03 05:01:02 | sub16 | avira | JS/iFrame.GM.8 | 21/43 (48.8%) | AS3595 | 69.73.138.162 | abuse@jaguarpc.com | US | ARIN | LH-GOLD-NETWORK | 19bd9eaaae855dd708980f700a56f88e | http://attachments.innisdale.ca/webfamily/pages/DSC01336.htm || 2012-02-03 05:01:02 | sub16 | avira | JS/iFrame.GM.8 | 21/43 (48.8%) | AS3595 | 69.73.138.162 | abuse@jaguarpc.com | US | ARIN | LH-GOLD-NETWORK | 07475cde8f43b5fb1875925b496feaea | http://attachments.innisdale.ca/webfamily/pages/DSC01338.htm || 2012-02-03 05:01:02 | sub16 | avira | JS/iFrame.GM.8 | 20/41 (48.8%) | AS3595 | 69.73.138.162 | abuse@jaguarpc.com | US | ARIN | LH-GOLD-NETWORK | 6e170407c918fbdb581e537c327da0e3 | http://attachments.innisdale.ca/webfamily/pages/DSC01370.htm || 2012-02-03 05:01:02 | sub16 | avira | JS/iFrame.GM.8 | 21/43 (48.8%) | AS3595 | 69.73.138.162 | abuse@jaguarpc.com | US | ARIN | LH-GOLD-NETWORK | 6885f8c54c96bed94afba0cdc205da1b | http://attachments.innisdale.ca/webtrip/pages/Air%20Canada%20Centre2.htm || 2012-02-03 05:01:02 | sub16 | avira | JS/iFrame.GM.8 | 20/41 (48.8%) | AS3595 | 69.73.138.162 | abuse@jaguarpc.com | US | ARIN | LH-GOLD-NETWORK | 7405f92b2fc1203d1d3b1e3a89dbc562 | http://attachments.innisdale.ca/webtrip/pages/keeping%20the%20audience%20happy.htm || 2012-02-03 05:01:02 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 27/42 (64.3%) | AS29671 | 77.232.66.93 | abuse@servage.net | EU | RIPE | SRVG-NET-FL1-H1 | 54dfe7bda2bac886ea495d729985225a | http://ausit.com/archive/photos/archive/page~9844.html || 2012-02-03 05:01:02 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 25/41 (61%) | AS49505 | 91.219.194.15 | michelin@best-hoster.ru | RU | RIPE | BEST-HOSTER-NET | ed33afcc4482eb1bd9dce4e5085f126f | http://automedia.ru/articles/?limit=80&markID=62 || 2012-02-03 05:01:02 | sub16 | undef | unknown_html_RFI_php | 0/42 (0.0%) | AS32613 | 184.107.53.150 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-07 | 21f836de89068241d3dafb89529df27a | http://awkwe.osa.pl/index.html || 2012-02-03 05:01:02 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 25/42 (59.5%) | AS25973, AS35937, AS36025, AS6130, AS15244 | 216.97.231.220 | hostmaster@lunarpages.com | US | ARIN | ADD2NET-DOT-COM | 2fa76c19609b6108eea6e1c7fc673fa5 | http://axlemachine.com/linkmachine/admin/ficeb-stars/rilly-la-montagne.html || 2012-02-03 05:01:02 | sub16 | avira | JS/Clicker.CA | 31/41 (75.6%) | AS26101 | 98.139.134.174 | network-abuse@cc.yahoo-inc.com | US | ARIN | A-YAHOO-US9 | 30dd264888fabe08db30ccdf8647dddc | http://barrowmechanical.com/blog/?p=34%3Ascript5 || 2012-02-03 05:01:02 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS53665 | 199.59.241.238 | abuse@bodis.com | CN | ARIN | BODIS-COM | 3ce6871a736d86e0f4a2a22c7f6c3b14 | http://bastocks.com/ || 2012-02-03 05:01:02 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 26/42 (61.9%) | AS25973, AS35937, AS15244 | 67.210.126.85 | hostmaster@lunarpages.com | US | ARIN | ADD2NET-DOT-COM | e0ef5ed937d27119ab782d0064c56ac7 | http://bestlightimages.com/photos/admin/compaq-evo-audio-drivers/liquid-anodrol-t.html || 2012-02-03 05:01:07 | sub16 | avira | HTML/IFrame.era | 19/40 (47.5%) | AS9318 | 218.38.12.243 | abuse@skbroadband.com | kr | APNIC | HANANET-INFRA | c9304e2f1890763c3d2d11230915ddb7 | http://chalna.net/bbs/?id=3D3d3dfree || 2012-02-03 05:01:07 | sub16 | avira | HTML/IFrame.era | 19/40 (47.5%) | AS9318 | 218.38.12.243 | abuse@skbroadband.com | kr | APNIC | HANANET-INFRA | c9304e2f1890763c3d2d11230915ddb7 | http://chalna.net/bbs/?id=3D3d3dfree<o:p></ || 2012-02-03 05:01:07 | sub16 | avira | HTML/IFrame.era | 19/40 (47.5%) | AS9318 | 218.38.12.243 | abuse@skbroadband.com | kr | APNIC | HANANET-INFRA | c9304e2f1890763c3d2d11230915ddb7 | http://chalna.net/bbs/?id=3d3dfree || 2012-02-03 05:01:07 | sub16 | avira | JS/Infected.C | 24/41 (58.5%) | AS29873 | 66.96.145.106 | bnbrock@maileig.com | US | ARIN | BIZLAND-FC01 | 88701c4104f290514c5a2f0b2d797521 | http://chekotapiablog.com/wp-content/themes/Envisioned/js/cufon-yui.js || 2012-02-03 05:01:07 | sub16 | avira | HTML/Drop.Agent.AB | 35/43 (81.4%) | AS23352 | 204.93.193.141 | support@servercentral.net | US | ARIN | SCNET-204-93-193-0-24 | 63acad49cfc743339b7f6f902e4e5bcf | http://chem-elements.com/ || 2012-02-03 05:01:07 | sub16 | undef | unknown_html_google_malware | 0/42 (0.0%) | AS6697 | 91.149.157.134 | dis@tutby.com | BY | RIPE | TUTBY | 4eaab3d1cc187a0b7d7db726f1f8683b | http://chemi.by/images/&co_partnerId=2&pUserId=&siteid=0&pageType=&pa1.htm || 2012-02-03 05:01:07 | sub16 | avira | HTML/IFrame.AN | 25/43 (58.1%) | AS4847 | 122.200.77.60 | sophiawang@longtelchina.com | CN | APNIC | LTEL | bc5cdec0bcb4ec727d8a6fef287e5c3b | http://ciarta.com/bbsxp/Default.asp?GroupID=1 || 2012-02-03 05:01:07 | sub16 | AntiVir | HEUR/Crypted | 15/43 (34.9%) | AS36351 | 173.192.122.68 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-8 | 4f3cf20034c6d0f6fcce79f1591160b8 | http://club-3t.com/download/file.php?id=597 || 2012-02-03 05:01:07 | sub16 | avira | HTML/IFrame.ztd | 13/43 (30.2%) | AS32475 | 69.175.69.250 | netops@singlehop.com | US | ARIN | SINGLEHOP | 171f2803e896c418174eb3b769da28ec | http://clubnett.com/ || 2012-02-03 05:01:07 | sub16 | avira | JS/iFrame.KH | 16/43 (37.2%) | AS13039 | 217.14.120.74 | admin@argonsoft.de | DE | RIPE | HOSTHOUSINGNET | d7b2f5a4bab4ce9cc3bb4972bb9236cf | http://cockplay.de/cockplay/xtcommerce/product_info.php?info=p2430_Ballstretcher---3-4-cm---Breite-3-0-cm.html&XTCsid=95ef505814c82d66ea4e18874aaca83d || 2012-02-03 05:01:07 | sub16 | avira | HTML/Crypted.Gen | 27/42 (64.3%) | AS262672 | 187.73.33.28 | network@digirati.com.br | BR | LACNIC | 004.371.843/0001-55 | 593bb969ff30035e73cfcd447a013563 | http://construmaxempreendimentos.com.br/Clinica/thumbs/etc/comedian-arnez-jay/r32-interceptor-pocket-bike-parts.html || 2012-02-03 05:01:07 | sub16 | avira | PHP/IRCBOT.F.1 | 30/43 (69.8%) | AS16276 | 176.31.245.65 | abuse@ovh.net | FR | RIPE | OVH | bbe94028b2b7a1d33393cd99d92248ef | http://coolscakes.nl/wp-content/themes/invictus/cache/link2.jpg?? || 2012-02-03 05:01:08 | sub16 | Avast | HTML:Iframe-HF [Trj] | 16/41 (39%) | AS36420, AS30315, AS13749, AS21844 | 174.133.68.74 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-15 | 4362a8fed97cccb303c21e64c96207cc | http://corporacionsaito.com/insurance/insurance/auto-direct-insurance.html || 2012-02-03 05:01:08 | sub16 | Avast | HTML:Iframe-HF [Trj] | 17/43 (39.5%) | AS36420, AS30315, AS13749, AS21844 | 174.133.68.74 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-15 | 911dcfc9c7cad8b89c45a23f7402ab62 | http://corporacionsaito.com/insurance/insurance/free-stock-investment.html || 2012-02-03 05:01:08 | sub16 | Avast | HTML:Iframe-HF [Trj] | 17/43 (39.5%) | AS36420, AS30315, AS13749, AS21844 | 174.133.68.74 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-15 | e554a6f9da249d1fa95358d7e22de410 | http://corporacionsaito.com/insurance/insurance/hampton-insurance.html || 2012-02-03 05:01:08 | sub16 | Avast | HTML:Iframe-HF [Trj] | 14/43 (32.6%) | AS36420, AS30315, AS13749, AS21844 | 174.133.68.74 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-15 | 267c8a28369ddfbd00f5a01d07e25301 | http://corporacionsaito.com/insurance/insurance/hotel-investment.html || 2012-02-03 05:01:08 | sub16 | Avast | HTML:Iframe-HF [Trj] | 17/43 (39.5%) | AS36420, AS30315, AS13749, AS21844 | 174.133.68.74 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-15 | a4fe72d9d8d29028ddbaba905af6c2a5 | http://corporacionsaito.com/insurance/insurance/re-investments.html || 2012-02-03 05:01:08 | sub16 | Avast | HTML:Iframe-HF [Trj] | 17/43 (39.5%) | AS36420, AS30315, AS13749, AS21844 | 174.133.68.74 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-15 | d807877d0379154564bb69cf56d5cc79 | http://corporacionsaito.com/insurance/insurance/securities-investment.html || 2012-02-03 05:01:08 | sub16 | Avast | HTML:Iframe-HF [Trj] | 17/42 (40.5%) | AS36420, AS30315, AS13749, AS21844 | 174.133.68.74 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-15 | 2d27014a0ef4e49d2bb131c38ece98eb | http://corporacionsaito.com/insurance/insurance/seven-investment-management.html || 2012-02-03 05:01:08 | sub16 | Avast | HTML:Iframe-HF [Trj] | 17/43 (39.5%) | AS36420, AS30315, AS13749, AS21844 | 174.133.68.74 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-15 | 8bdc3894219b5b2406037d589a9274fc | http://corporacionsaito.com/insurance/insurance/silver-investments.html || 2012-02-03 05:01:08 | sub16 | Avast | HTML:Iframe-HF [Trj] | 14/43 (32.6%) | AS36420, AS30315, AS13749, AS21844 | 174.133.68.74 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-15 | becfd290fbce460b18c0284be093605d | http://corporacionsaito.com/insurance/insurance/the-return-on-investment.html || 2012-02-03 05:01:08 | sub16 | Avast | HTML:Iframe-HF [Trj] | 17/43 (39.5%) | AS36420, AS30315, AS13749, AS21844 | 174.133.68.74 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-15 | 0aa2a506a9a835a1b05797e51cef89b2 | http://corporacionsaito.com/insurance/insurance/west-investment.html || 2012-02-03 05:01:08 | sub16 | avira | TR/Dropper.Gen | 8/42 (19%) | AS36351 | 50.22.107.93 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-9 | e969aeb58bf616701a67c15b6f2dca01 | http://creatucurso.net/nnn.exe || 2012-02-03 02:16:58 | sub8 | avira | TR/Spy.Ardamax.btpb | 29/43 (67.4%) | AS36351 | 75.126.203.132 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-3 | 179ac12647476e510079de5f63cf8149 | http://netinternetweb.com/mmast/ || 2012-02-03 05:20:18 | sub16 | avira | TR/Dldr.Delf.Nps.1 | 29/43 (67.4%) | AS41947 | 195.216.243.41 | abuse@compubyte.vg | GB | RIPE | COMPUBYTE-NET | 082ef599983bdfe53f6d542afc3a381d | http://cs-noob.3dn.ru/_ld/0/14_CDHack_7.1.rar || 2012-02-03 05:20:18 | sub16 | avira | JS/Infected.C | 23/43 (53.5%) | AS38719 | 203.170.86.33 | admin@syra.com.au | AU | APNIC | Syra Networks | 73615499d897bfbdedc8e9639602f05f | http://cwnews.com.au/wp-content/plugins/ajax-login-widget/ajax_login_widget.js || 2012-02-03 05:20:18 | sub16 | avira | JS/Infected.C | 22/43 (51.2%) | AS38719 | 203.170.86.33 | admin@syra.com.au | AU | APNIC | Syra Networks | 1dcefc30d9c44b419bab301904ada928 | http://cwnews.com.au/wp-content/plugins/another-wordpress-classifieds-plugin/js/checkuncheckboxes.js?ver=3.0.4 || 2012-02-03 05:20:18 | sub16 | avira | JS/Infected.C | 17/43 (39.5%) | AS38719 | 203.170.86.33 | admin@syra.com.au | AU | APNIC | Syra Networks | a66ec952490fb8c468a82343a89a3dad | http://cwnews.com.au/wp-content/themes/Linepress/inc/js/contentslider.js?ver=3.0.4 || 2012-02-03 05:20:18 | sub16 | avira | JS/Infected.C | 18/43 (41.9%) | AS38719 | 203.170.86.33 | admin@syra.com.au | AU | APNIC | Syra Networks | 4c82400a6b1af169a1a8f0d12bd2e438 | http://cwnews.com.au/wp-content/themes/Linepress/inc/js/flowplayer/flowplayer-3.2.6.min.js?ver=3.0.4 || 2012-02-03 05:20:18 | sub16 | avira | JS/Infected.C | 22/43 (51.2%) | AS38719 | 203.170.86.33 | admin@syra.com.au | AU | APNIC | Syra Networks | 3b8a063841f4e728324f58ece5e14725 | http://cwnews.com.au/wp-content/themes/Linepress/inc/js/jCarouselLite.js?ver=3.0.4 || 2012-02-03 05:20:18 | sub16 | avira | JS/Infected.C | 23/43 (53.5%) | AS38719 | 203.170.86.33 | admin@syra.com.au | AU | APNIC | Syra Networks | 48d7f3a2f2bc507fd7dde783cb9de971 | http://cwnews.com.au/wp-content/themes/Linepress/inc/js/slides.min.jquery.js?ver=3.0.4 || 2012-02-03 05:20:18 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS38719 | 203.170.86.33 | admin@syra.com.au | AU | APNIC | Syra Networks | 2008d32f807259ced4778c48588a72d1 | http://cwnews.com.au/wp-content/themes/Linepress/inc/js/superfish-1.4.8.js?ver=3.0.4 || 2012-02-03 05:20:18 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 22/42 (52.4%) | AS45544 | 112.213.89.19 | pa@pavietnam.vn | VN | APNIC | PAVIETNAM-VNNIC-VN | beac7b4362036ee5cf5b4a3287b1bb70 | http://dayconlamgiau.com/archive/index.php/t-36628.html || 2012-02-03 05:20:18 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 23/43 (53.5%) | AS45544 | 112.213.89.19 | pa@pavietnam.vn | VN | APNIC | PAVIETNAM-VNNIC-VN | f5c533e2a9195ff7b2ef7514cc9a9711 | http://dayconlamgiau.com/archive/index.php/t-55647.html || 2012-02-03 05:20:18 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS5048 | 209.90.98.234 | hostmaster@fiber.net | US | ARIN | FIBERNET-209-90-BLK-1 | 85422df79a3184ab70b5f46e59d91c45 | http://dittberner.com/images/topbargreenish/39481238941328523958235/412941230528395102548213952385/ || 2012-02-03 05:20:18 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS5048 | 209.90.98.234 | hostmaster@fiber.net | US | ARIN | FIBERNET-209-90-BLK-1 | 85422df79a3184ab70b5f46e59d91c45 | http://dittberner.com/images/topbargreenish/421492158329583159124812052831952385/2093129540219523509235/ || 2012-02-03 05:20:19 | sub16 | Avast | Win32:Banload-HNI [Trj] | 17/42 (40.5%) | AS14618 | 107.22.240.104 | ec2-abuse@amazon.com | US | ARIN | AMAZON-EC2-8 | e6ed0cc21ba030486bf296910c8afe1a | http://dl.dropbox.com/u/59436210/download29012012.exe || 2012-02-03 05:20:19 | sub16 | avira | HTML/Crypted.Gen | 25/42 (59.5%) | AS43006 | 188.93.231.50 | abuse@cgest.com | PT | RIPE | PT-IBERWEB | 1baf360432e46a17e79ec29a44e22dda | http://dominiumonline.com/forum/includes/sql/dump/resource-346.html || 2012-02-03 05:20:19 | sub16 | avira | HTML/Crypted.Gen | 23/42 (54.8%) | AS43006 | 188.93.231.50 | abuse@cgest.com | PT | RIPE | PT-IBERWEB | f7e72c4a98648bf85b9f15209fa2a9dd | http://dominiumonline.com/forum/includes/sql/dump/resource-600.html || 2012-02-03 05:20:19 | sub16 | avira | HTML/Crypted.Gen | 25/43 (58.1%) | AS43006 | 188.93.231.50 | abuse@cgest.com | PT | RIPE | PT-IBERWEB | fc91c5fd684b00831f7d67d6612a1cfa | http://dominiumonline.com/forum/includes/sql/dump/resource-913.html || 2012-02-03 05:20:19 | sub16 | avira | ADWARE/Adware.1499508 | 15/38 (39.5%) | AS19318 | 209.159.146.144 | network@interserver.net | US | ARIN | INTERSERVER | 3293cace2ac355676329424e5b71725c | http://download.xvidcodec.org/dm-ddd-xvid.exe?filename=xvidsetup.ex<br/>&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&&<br/>&&&< || 2012-02-03 05:20:19 | sub16 | avira | HTML/Crypted.Gen | 24/41 (58.5%) | AS32392 | 50.118.15.106 | abuse@ecommerce.com | US | ARIN | ECOMM-201111 | f4295435df2195954d542aa5025fe35d | http://dshorophotohost.com/cp/scripts/_image/m__s_age_200705_004_002.html || 2012-02-03 05:20:19 | sub16 | avira | HTML/Crypted.Gen | 25/43 (58.1%) | AS28753 | 178.162.190.135 | abuse@leaseweb.de | DE | RIPE | NETDIRECT-NET | 98ba94ccc2a83af6b1f5633040611403 | http://eftaa-aleppo.com/editorimages/icons/topic-1629.html || 2012-02-03 05:20:23 | sub16 | Ikarus | Trojan-Banker.Win32.Banker | 3/43 (7%) | AS26496 | 97.74.27.105 | noc@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 834d3d3ebee62ebc81f62d5f4d848e7d | http://www.drmsoft.com/encryption-tool/Video-Packer.zip || 2012-02-03 05:20:24 | sub16 | avira | ADWARE/Relevant.AY.14 | | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | cf80af35b47c1a8b5a03ebda5b743ad2 | http://www.sharewarepile.com/download/slmw.exe || 2012-02-03 05:20:24 | sub16 | avira | ADWARE/SaveNow.FN | 20/43 (46.5%) | AS36420, AS30315, AS13749, AS21844, AS13884 | 64.246.3.226 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-EV1-7 | f2b4f1ea36e15f52b60baaf54c83c3ad | http://www.space-screensavers.com/files/free/freemilkyway.exe || 2012-02-03 05:30:14 | sub16 | avira | TR/ATRAPS.Gen | 12/43 (27.9%) | AS34619 | 94.73.146.30 | huseyin.caymaz@cizgibilgisayar.com | TR | RIPE | TR-CIZGI-20080710 | 1e955b1019d875f8ba9347d831518e9f | http://endenter.com/claroclub.claro.com/PromoBlackberry8520.exe || 2012-02-03 05:30:14 | sub16 | avira | TR/Zusy.Elzob.424 | 12/43 (27.9%) | AS34619 | 94.73.146.30 | huseyin.caymaz@cizgibilgisayar.com | TR | RIPE | TR-CIZGI-20080710 | ab7ddf19de425e6439160dd343b391e1 | http://endenter.com/wp-includes/css/update/30upjmrlzz.exe || 2012-02-03 05:30:14 | sub16 | avira | HTML/IFrame.era | 18/43 (41.9%) | AS9848 | 61.109.250.202 | abuse@sejongtelecom.net | kr | APNIC | ENTERPRISENET-NEXTLINE | 75919cd4a7fe0db92e0e828715c1bfdd | http://englishcode.com/bbs/view.php?id=rnh_8&page=1&sn1=&divpage=1&sn=off&ss=on&sc=on&select_arrange=name&desc=desc&no=192 || 2012-02-03 05:30:14 | sub16 | trendmicro | HTML_IFRAME.AZ | 7/42 (16.7%) | AS4134 | 222.92.254.66 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-JS | ae50e8a11a2b5d5b54203a290f91d70f | http://en.njsunpower.com/forum/default.aspx?g=login&ReturnUrl=/forum/default.aspx?g=login&ReturnUrl=%2fforum%2fdefault.aspx%3fg%3dforum%26c%3d21 || 2012-02-03 05:30:15 | sub16 | avira | HTML/IFrame.pht | 14/42 (33.3%) | AS3356 | 216.55.97.155 | noc@iservice.net | CA | ARIN | SMSV-BLK-1 | ceaf063ca829f783909b125b3e3b6766 | http://fantasyforums.com/forums/search.php?search_id=mini_cal&d=1293562800 || 2012-02-03 05:30:15 | sub16 | avira | HTML/IFrame.pht | 13/43 (30.2%) | AS3356 | 216.55.97.155 | noc@iservice.net | CA | ARIN | SMSV-BLK-1 | b03a82a4a423a39878dda9ca3a57878f | http://fantasyforums.com/forums/viewtopic.php?p=1732&lofi=1 || 2012-02-03 05:30:15 | sub16 | NOD32 | Win32/Adware.Yontoo | 2/43 (4.7%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | aaeed4d0b723a5285c0b5871f69f9988 | http://file4me.com/download/fairy_demo.exe || 2012-02-03 05:30:15 | sub16 | avira | PHP/Shellbot.7642 | 33/43 (76.7%) | AS14141 | 98.142.215.184 | wnoc@wiresix.com | US | ARIN | WIRESIX | 74d3f38951921406019cbbf03fc4489f | http://fileden.com/files/2012/1/31/3257642/upbot.txt? || 2012-02-03 05:30:16 | sub16 | ClamAV | PUA.JS.Obfus-7 | 1/43 (2.3%) | AS21788 | 96.9.160.96 | nic@hostnoc.net | US | ARIN | HOSTNOC-4BLK | 30742a400f69922e1869cc5f50c4e5d5 | http://flayin.be/ || 2012-02-03 05:30:16 | sub16 | avira | HTML/Crypted.Gen | 26/42 (61.9%) | AS25973, AS35937, AS15244 | 67.210.120.30 | hostmaster@lunarpages.com | US | ARIN | ADD2NET-DOT-COM | 14a8a00fee1905835edd0bb514b25c68 | http://flybynightradio.org/richieandemily/EL_MONTE_PHOTOS/admin/lirik-lagu-drama-korea-full-house/great-lolita-bbs.html || 2012-02-03 05:30:16 | sub16 | avira | TR/Crypt.TPM.Gen | 27/43 (62.8%) | AS41947 | 195.216.243.31 | abuse@compubyte.vg | GB | RIPE | COMPUBYTE-NET | d510eed7e1c8e70f8613e342fb1e66b1 | http://for-css.ru/_ld/11/1168_KFG.rar || 2012-02-03 05:30:16 | sub16 | Avast | JS:Illredir-CH [Trj] | 9/42 (21.4%) | AS32244 | 69.16.205.116 | abuse@liquidweb.com | US | ARIN | LIQUIDWEB-4 | 2808b78fc51a0f3ea83320b1afc8f205 | http://forums.dealdetectives.com/archive/index.php/t-328.html || 2012-02-03 05:30:16 | sub16 | undef | unknown_html_RFI_eval | 0/40 (0.0%) | AS11798 | 69.89.31.69 | abuse@bluehost.com | US | ARIN | BLUEHOST-NETWORK-1 | 6f79194a85c68f4e3c325aba0eeebd63 | http://fourthstreettri.org/wp-includes/js/jquery/jquery.js?ver=1.6.1 || 2012-02-03 05:30:16 | sub16 | avira | PHP/Small.C | 27/43 (62.8%) | AS12129 | 75.98.174.130 | support@a2hosting.com | US | ARIN | INTERNET-BLK-A2HOS-2 | 94fca56bae1c6a8a42a80831745fb00a | http://freshlycooked.info/wp-content/themes/mambu/java.jpg || 2012-02-03 05:30:16 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS26496 | 118.139.186.1 | gschwimer@godaddy.com | SG | APNIC | GODADDY-NET-AS-AP | f3cdf93f1d5a6b221d480c94caac673c | http://frontier.mn/administrator/Ponnto/pontos/ || 2012-02-03 05:30:16 | sub16 | avira | HTML/Dldr.Agent.OB | 30/42 (71.4%) | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 3a19e73c4e5d39e5715522ab49b58471 | http://gd1.0516zufang.com/article/11/index1.asp || 2012-02-03 05:30:16 | sub16 | avira | HTML/Dldr.Agent.OB | 30/42 (71.4%) | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 6de0337ca31f2eea0af873f1286f36f8 | http://gd2.0516zufang.com/article/2/index1.asp || 2012-02-03 05:30:16 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS32613 | 184.107.53.150 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-07 | 83ff8a5d957cf359a456ef81a0f68cc5 | http://ghdfhand.osa.pl/forum/viewtopic.php?f=11&t=270&sid=1c5d6e7f8091d6e7f809b408192d6e7f || 2012-02-03 05:30:16 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS32613 | 184.107.53.150 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-07 | 83ff8a5d957cf359a456ef81a0f68cc5 | http://ghdfhand.osa.pl/forum/viewtopic.php?f=13&t=270&sid=1c5d6e7f8091d6e7f809b408192d6e7f || 2012-02-03 05:30:16 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS32613 | 184.107.53.150 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-07 | 83ff8a5d957cf359a456ef81a0f68cc5 | http://ghdfhand.osa.pl/forum/viewtopic.php?f=15&t=270&sid=1c5d6e7f8091d6e7f809b408192d6e7f || 2012-02-03 05:30:16 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS32613 | 184.107.53.150 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-07 | 83ff8a5d957cf359a456ef81a0f68cc5 | http://ghdfhand.osa.pl/forum/viewtopic.php?f=16&t=270&sid=1c5d6e7f8091d6e7f809b408192d6e7f || 2012-02-03 05:30:16 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS32613 | 184.107.53.150 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-07 | 83ff8a5d957cf359a456ef81a0f68cc5 | http://ghdfhand.osa.pl/forum/viewtopic.php?f=19&t=270&sid=1c5d6e7f8091d6e7f809b408192d6e7f || 2012-02-03 05:30:16 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS32613 | 184.107.53.150 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-07 | 83ff8a5d957cf359a456ef81a0f68cc5 | http://ghdfhand.osa.pl/forum/viewtopic.php?f=20&t=270&sid=1c5d6e7f8091d6e7f809b408192d6e7f || 2012-02-03 05:30:16 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS32613 | 184.107.53.150 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-07 | 83ff8a5d957cf359a456ef81a0f68cc5 | http://ghdfhand.osa.pl/forum/viewtopic.php?f=22&t=270&sid=1c5d6e7f8091d6e7f809b408192d6e7f || 2012-02-03 05:30:16 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS32613 | 184.107.53.150 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-07 | 83ff8a5d957cf359a456ef81a0f68cc5 | http://ghdfhand.osa.pl/forum/viewtopic.php?f=23&t=270&sid=1c5d6e7f8091d6e7f809b408192d6e7f || 2012-02-03 05:30:16 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS32613 | 184.107.53.150 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-07 | 83ff8a5d957cf359a456ef81a0f68cc5 | http://ghdfhand.osa.pl/forum/viewtopic.php?f=26&t=270&sid=1c5d6e7f8091d6e7f809b408192d6e7f || 2012-02-03 05:30:16 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS32613 | 184.107.53.150 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-07 | 83ff8a5d957cf359a456ef81a0f68cc5 | http://ghdfhand.osa.pl/forum/viewtopic.php?f=3&t=270&sid=1c5d6e7f8091d6e7f809b408192d6e7f || 2012-02-03 05:30:16 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS32613 | 184.107.53.150 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-07 | 83ff8a5d957cf359a456ef81a0f68cc5 | http://ghdfhand.osa.pl/forum/viewtopic.php?f=49&t=270&sid=1c5d6e7f8091d6e7f809b408192d6e7f || 2012-02-03 05:30:16 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS32613 | 184.107.53.150 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-07 | 7ebf4114f86a140dec1758072f967107 | http://ghdfhand.osa.pl/forum/viewtopic.php?f=52&t=270&sid=1c5d6e7f8091d6e7f809b408192d6e7f || 2012-02-03 05:30:16 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS32613 | 184.107.53.150 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-07 | 7ebf4114f86a140dec1758072f967107 | http://ghdfhand.osa.pl/forum/viewtopic.php?f=5&t=270&sid=1c5d6e7f8091d6e7f809b408192d6e7f || 2012-02-03 05:30:16 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS32613 | 184.107.53.150 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-07 | 7ebf4114f86a140dec1758072f967107 | http://ghdfhand.osa.pl/forum/viewtopic.php?f=6&t=270&sid=1c5d6e7f8091d6e7f809b408192d6e7f || 2012-02-03 05:30:16 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS32613 | 184.107.53.150 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-07 | 7ebf4114f86a140dec1758072f967107 | http://ghdfhand.osa.pl/forum/viewtopic.php?f=82&t=270&sid=1c5d6e7f8091d6e7f809b408192d6e7f || 2012-02-03 05:30:16 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS32613 | 184.107.53.150 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-07 | 7ebf4114f86a140dec1758072f967107 | http://ghdfhand.osa.pl/forum/viewtopic.php?f=85&t=270&sid=1c5d6e7f8091d6e7f809b408192d6e7f || 2012-02-03 05:30:16 | sub16 | AhnLab_V3 | JS/Mult | 8/42 (19%) | AS4837 | 121.22.6.39 | abuse@chinaunicom.cn | CN | APNIC | UNICOM-HE | f792d1db644301d586ded68cb43b3d56 | http://glk.ns02.us/99/7.htm || 2012-02-03 05:30:16 | sub16 | AhnLab_V3 | JS/Mult | 8/42 (19%) | AS4837 | 121.22.6.39 | abuse@chinaunicom.cn | CN | APNIC | UNICOM-HE | f792d1db644301d586ded68cb43b3d56 | http://gll.ns02.us/99/7.htm || 2012-02-03 05:30:16 | sub16 | AhnLab_V3 | JS/Mult | 8/42 (19%) | AS4837 | 121.22.6.39 | abuse@chinaunicom.cn | CN | APNIC | UNICOM-HE | f792d1db644301d586ded68cb43b3d56 | http://gln.ns02.us/99/7.htm || 2012-02-03 05:30:16 | sub16 | Avast | HTML:Paylap-L [Trj] | 4/41 (9.8%) | AS32475 | 69.175.97.154 | netops@singlehop.com | US | ARIN | SINGLEHOP | 71fd557af9e172ecab355e0fc4d81d94 | http://global-reinigung.at/paypal-it/it/ || 2012-02-03 05:30:16 | sub16 | AhnLab_V3 | JS/Mult | 8/42 (19%) | AS4837 | 121.22.6.39 | abuse@chinaunicom.cn | CN | APNIC | UNICOM-HE | f792d1db644301d586ded68cb43b3d56 | http://glo.ns02.us/99/7.htm || 2012-02-03 05:30:16 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS32780 | 174.127.66.192 | arin-contact@hostingservicesinc.net | US | ARIN | HOSTINGSERVICES-INC | acf20d69cc6376b06c4fc0710f135aa3 | http://gold.perfurtorkerhortar.com/ || 2012-02-03 05:30:16 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS53665 | 199.59.241.238 | abuse@bodis.com | CN | ARIN | BODIS-COM | 3ce6871a736d86e0f4a2a22c7f6c3b14 | http://goodgirlsbadguys.com/zan/load.php?spl=mdac&b=ie&o=xp&i=mdac || 2012-02-03 05:30:16 | sub16 | undef | unknown_html_google_malware | 0/42 (0.0%) | AS24971 | 178.238.36.6 | abuse@master.cz | CZ | RIPE | DC1-4D-HOUSING-10-CZ-MAI | f58b69218594bd3b0df0bea590b413ff | http://govnozhest.cz.cc/ || 2012-02-03 05:30:16 | sub16 | Avast | JS:Small-C [Trj] | 20/43 (46.5%) | AS41947 | 195.216.243.38 | abuse@compubyte.vg | GB | RIPE | COMPUBYTE-NET | d3658a489957c20a5a099522d21fe4c0 | http://gurdstudio.net/load/shablon_quot_limansk_team_quot/1-1-0-22 || 2012-02-03 05:30:16 | sub16 | Avast | JS:Small-C [Trj] | 20/43 (46.5%) | AS41947 | 195.216.243.38 | abuse@compubyte.vg | GB | RIPE | COMPUBYTE-NET | 65dfce5f99e6c79215edba2016e385bb | http://gurdstudio.net/stuff/0-0-1-256-20 || 2012-02-03 05:30:21 | sub20 | undef | unknown_exe | 0/43 (0.0%) | AS47856 | 67.211.97.12 | abuse@mohawk.ca | CA | ARIN | MIT-BLK-02 | e90cd9dc20f77fbc37def0d750c4cd37 | http://prime.mgsmup.com/mupp/prime/prime.cab || 2012-02-03 05:40:10 | sub14 | avira | TR/Downloader.Gen | 20/43 (46.5%) | AS9318 | 118.218.136.19 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | e0c0c02af5787c3c063f3beb85d96295 | http://filefinder.kr/filefinder/download/partner/setup.hotclip.s.exe || 2012-02-03 05:40:22 | sub16 | Avast | JS:Small-C [Trj] | 20/42 (47.6%) | AS41947 | 195.216.243.38 | abuse@compubyte.vg | GB | RIPE | COMPUBYTE-NET | be5d83f95ed2d3883ee4564a2035411c | http://gurdstudio.net/stuff/action_arcade/alien_shuter_nachalo_vtorzhenija/1-1-0-214 || 2012-02-03 05:40:23 | sub16 | avira | JS/Crops.A | 27/43 (62.8%) | AS8455 | 95.142.101.11 | abuse@cybertechnology.net | BE | RIPE | CYBERTECHNOLOGY | df8b9905da8f0b2d4cc15dfaf25247f4 | http://harmonisproduction.com/chris/ || 2012-02-03 05:40:23 | sub16 | avira | JS/Redirector.MR | 8/43 (18.6%) | AS10297 | 209.190.7.66 | abuse@ee.net | US | ARIN | ENET-XLHOST | 7936d7a7900e7402e9857a82fdf7d875 | http://henslinsociology.excellent-price.com/best-prices-henslin-sociology-down-to-earth-sociology-introductory-readings-fifteenth-edition/ || 2012-02-03 05:40:23 | sub16 | avira | HTML/IFrame.igma | 22/43 (51.2%) | AS3786 | 210.115.225.13 | hskwang@hallym.ac.kr | kr | APNIC | HALLYM-NET | aed76f80fc3c42dc966616c05ac17ced | http://hiais.hallym.ac.kr/bbs/zboard.php?id=board14&page=11&sn1=&divpage=9&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=40653 || 2012-02-03 05:40:23 | sub16 | avira | HTML/IFrame.igma | 21/41 (51.2%) | AS3786 | 210.115.225.13 | hskwang@hallym.ac.kr | kr | APNIC | HALLYM-NET | 87c506fab11a1905d6b3e67fc7fea7d7 | http://hiais.hallym.ac.kr/bbs/zboard.php?id=board14&page=16&sn1=&divpage=9&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=40714 || 2012-02-03 05:40:23 | sub16 | avira | HTML/IFrame.igma | 22/43 (51.2%) | AS3786 | 210.115.225.13 | hskwang@hallym.ac.kr | kr | APNIC | HALLYM-NET | 90c6689ae22b1fbdb6902fc20880cc30 | http://hiais.hallym.ac.kr/bbs/zboard.php?id=board14&page=1&sn1=&divpage=9&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=41059 || 2012-02-03 05:40:23 | sub16 | avira | HTML/IFrame.igma | 22/43 (51.2%) | AS3786 | 210.115.225.13 | hskwang@hallym.ac.kr | kr | APNIC | HALLYM-NET | 23361fdc582fd5b878dc74d3a114c301 | http://hiais.hallym.ac.kr/bbs/zboard.php?id=board14&page=20&sn1=&divpage=9&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=40674 || 2012-02-03 05:40:23 | sub16 | avira | HTML/IFrame.igma | 22/43 (51.2%) | AS3786 | 210.115.225.13 | hskwang@hallym.ac.kr | kr | APNIC | HALLYM-NET | d34fbe534c2ee148c3a2dfd141a64cc3 | http://hiais.hallym.ac.kr/bbs/zboard.php?id=board14&page=21&sn1=&divpage=9&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=40630 || 2012-02-03 05:40:23 | sub16 | avira | HTML/IFrame.igma | 22/43 (51.2%) | AS3786 | 210.115.225.13 | hskwang@hallym.ac.kr | kr | APNIC | HALLYM-NET | 408a30d27a91f49ae9f0404bdc9dea5b | http://hiais.hallym.ac.kr/bbs/zboard.php?id=board14&page=26&sn1=&divpage=9&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=40517 || 2012-02-03 05:40:23 | sub16 | avira | HTML/IFrame.igma | 22/43 (51.2%) | AS3786 | 210.115.225.13 | hskwang@hallym.ac.kr | kr | APNIC | HALLYM-NET | 01c3c556dbf82bf8effb9747ef914cdd | http://hiais.hallym.ac.kr/bbs/zboard.php?id=board14&page=26&sn1=&divpage=9&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=40553 || 2012-02-03 05:40:23 | sub16 | avira | HTML/IFrame.igma | 22/43 (51.2%) | AS3786 | 210.115.225.13 | hskwang@hallym.ac.kr | kr | APNIC | HALLYM-NET | 662333478aae1197ea40914b97fee515 | http://hiais.hallym.ac.kr/bbs/zboard.php?id=board14&page=27&sn1=&divpage=9&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=40539 || 2012-02-03 05:40:23 | sub16 | avira | HTML/IFrame.igma | 22/43 (51.2%) | AS3786 | 210.115.225.13 | hskwang@hallym.ac.kr | kr | APNIC | HALLYM-NET | f487c1b223a1eb6d1850bf33185cd6f3 | http://hiais.hallym.ac.kr/bbs/zboard.php?id=board14&page=33&sn1=&divpage=9&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=40413 || 2012-02-03 05:40:23 | sub16 | avira | HTML/IFrame.igma | 22/43 (51.2%) | AS3786 | 210.115.225.13 | hskwang@hallym.ac.kr | kr | APNIC | HALLYM-NET | 8d15867b7d3c7ac705725807800b55d4 | http://hiais.hallym.ac.kr/bbs/zboard.php?id=board14&page=38&sn1=&divpage=9&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=40304 || 2012-02-03 05:40:23 | sub16 | avira | HTML/IFrame.igma | 22/42 (52.4%) | AS3786 | 210.115.225.13 | hskwang@hallym.ac.kr | kr | APNIC | HALLYM-NET | 1d64b7738045e1851ac498621b7c8752 | http://hiais.hallym.ac.kr/bbs/zboard.php?id=board14&page=39&sn1=&divpage=9&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=40302 || 2012-02-03 05:40:23 | sub16 | avira | HTML/IFrame.igma | 22/42 (52.4%) | AS3786 | 210.115.225.13 | hskwang@hallym.ac.kr | kr | APNIC | HALLYM-NET | ecddc117493c205f89c518b7e0d0fab2 | http://hiais.hallym.ac.kr/bbs/zboard.php?id=board14&page=7&sn1=&divpage=9&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=40927 || 2012-02-03 05:40:23 | sub16 | avira | HTML/IFrame.igma | 22/42 (52.4%) | AS3786 | 210.115.225.13 | hskwang@hallym.ac.kr | kr | APNIC | HALLYM-NET | 60043b0235d9776112d20371099c7f50 | http://hiais.hallym.ac.kr/bbs/zboard.php?id=board14&page=8&sn1=&divpage=9&sn=off&ss=on&sc=on&select_arrange=headnum&desc=asc&no=40751 || 2012-02-03 05:40:23 | sub16 | avira | HTML/Crypted.Gen | 24/43 (55.8%) | AS32780 | 174.127.110.239 | arin-contact@hostingservicesinc.net | US | ARIN | HOSTINGSERVICES-INC | 46845c73bb09f9f329bd278dae1c87aa | http://hkclassical.com/20070914/js/_image/in_dex4.html || 2012-02-03 05:40:24 | sub16 | avira | ADWARE/Agent.Gaba.379 | 28/42 (66.7%) | AS32209 | 69.172.204.99 | net-admin@peer1.net | US | ARIN | PEER1-BLK-14 | 7c2a7730adad08cc6ad413cb23162989 | http://i.tanogtech.com/f3/N32JOBEXE-876994-WL.cab || 2012-02-03 05:40:28 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS34762 | 217.21.180.162 | abuse@combell.com | BE | RIPE | COMBELL | adc437a212dab4dc458c70280b150892 | http://www.eyckenmolen.be/img/nl/1/js/index1.php?=BA8SHtFMULw5mSwEcPjePGpj2nrktqPwAkFQvQ9r3W8ZvQ6OlDAwWXlezczbvrnuxsIIDhShKlofZTVs1UfwQ6tXLnkg2IcFZe5U || 2012-02-03 03:47:32 | sub8 | undef | W32/Casino.F.gen!Eldorado | 0/40 (0.0%) | AS15244 | 216.227.214.76 | hostmaster@lunarpages.com | US | ARIN | ADDD2NET-DOT-COM | 6f5d9f6aa600757dc36088d79623ae4f | http://vgvheihsk.casino2win.eu/ || 2012-02-03 03:47:35 | sub8 | undef | W32/Buzus.J.gen!Eldorado | 0/40 (0.0%) | AS15244 | 216.227.214.76 | hostmaster@lunarpages.com | US | ARIN | ADDD2NET-DOT-COM | 6f5d9f6aa600757dc36088d79623ae4f | http://egotagupr.casino2win.eu/ || 2012-02-03 05:50:11 | sub16 | avira | HTML/IFrame.era | 20/43 (46.5%) | AS9318 | 218.38.12.243 | abuse@skbroadband.com | kr | APNIC | HANANET-INFRA | c9304e2f1890763c3d2d11230915ddb7 | http://chalna.net/bbs/?id=3D3d3dfreeo:p/ || 2012-02-03 05:50:18 | sub16 | avira | HTML/Rce.Gen | 16/43 (37.2%) | AS8001 | 82.146.53.85 | abuse@ispserver.com | BE | RIPE | ISPSYSTEM | 4e38427e4031c2b38abca5236a7f9898 | http://imbo.ru/forum/profile.php?mode=viewprofile&u=1010&sid=3225063f822b3fa1ecca766eca4729b0 || 2012-02-03 05:50:18 | sub16 | avira | HTML/Rce.Gen | 16/43 (37.2%) | AS8001 | 82.146.53.85 | abuse@ispserver.com | BE | RIPE | ISPSYSTEM | 41dcca5e72b0a88fc542bdc5b2dc24e2 | http://imbo.ru/forum/profile.php?mode=viewprofile&u=354&sid=444ef087ba383e864a13a05cf4f41573 || 2012-02-03 05:50:18 | sub16 | avira | HTML/Rce.Gen | 16/43 (37.2%) | AS8001 | 82.146.53.85 | abuse@ispserver.com | BE | RIPE | ISPSYSTEM | edb8c59d06dbd6d1a92e6f8abdc124b6 | http://imbo.ru/forum/profile.php?mode=viewprofile&u=398&sid=444ef087ba383e864a13a05cf4f41573 || 2012-02-03 05:50:18 | sub16 | avira | HTML/Rce.Gen | 16/43 (37.2%) | AS8001 | 82.146.53.85 | abuse@ispserver.com | BE | RIPE | ISPSYSTEM | 2f499476615b2491a2d25b8bc24b2542 | http://imbo.ru/forum/profile.php?mode=viewprofile&u=42&sid=3225063f822b3fa1ecca766eca4729b0 || 2012-02-03 05:50:18 | sub16 | avira | HTML/Rce.Gen | 16/43 (37.2%) | AS8001 | 82.146.53.85 | abuse@ispserver.com | BE | RIPE | ISPSYSTEM | 19d2b75c5128e228d98b5276ffd46196 | http://imbo.ru/forum/profile.php?mode=viewprofile&u=70&sid=3225063f822b3fa1ecca766eca4729b0 || 2012-02-03 05:50:18 | sub16 | avira | HTML/Rce.Gen | 16/43 (37.2%) | AS8001 | 82.146.53.85 | abuse@ispserver.com | BE | RIPE | ISPSYSTEM | d923b29f274858748972d9f03f30b557 | http://imbo.ru/forum/profile.php?mode=viewprofile&u=82&sid=3225063f822b3fa1ecca766eca4729b0 || 2012-02-03 05:50:18 | sub16 | avira | HTML/Rce.Gen | 16/41 (39%) | AS8001 | 82.146.53.85 | abuse@ispserver.com | BE | RIPE | ISPSYSTEM | bf0b8e5cfb8ce1d74aeb07e842f8e515 | http://imbo.ru/forum/profile.php?mode=viewprofile&u=867&sid=3225063f822b3fa1ecca766eca4729b0 || 2012-02-03 05:50:18 | sub16 | avira | HTML/Rce.Gen | 15/41 (36.6%) | AS8001 | 82.146.53.85 | abuse@ispserver.com | BE | RIPE | ISPSYSTEM | d13d1379b31fad8f9e318b09e6449d3b | http://imbo.ru/forum/profile.php?mode=viewprofile&u=925&sid=3225063f822b3fa1ecca766eca4729b0 || 2012-02-03 05:50:18 | sub16 | avira | HTML/Rce.Gen | 15/41 (36.6%) | AS8001 | 82.146.53.85 | abuse@ispserver.com | BE | RIPE | ISPSYSTEM | 0d89c6a4ca2871176d0112c9ea30061c | http://imbo.ru/forum/profile.php?mode=viewprofile&u=933&sid=3225063f822b3fa1ecca766eca4729b0 |+---------------------+-------------+------------+-----------------------------+---------------+------------------------------------------------------------------+-----------------+-------------------------------------+---------+--------+----------------------------+----------------------------------+--------------------------------------------------------------------------------------------------------------------------------------------------------+200 rows in set (0.05 sec)
+---------------------+-------------+-------------+------------------------------------------------------+---------------+---------------------------------------------+-----------------+------------------------------+---------+--------+----------------------------------+----------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------+| date | contributor | scanner | virusname | vt_score | AS | review | email | country | source | netname | md5sum | url |+---------------------+-------------+-------------+------------------------------------------------------+---------------+---------------------------------------------+-----------------+------------------------------+---------+--------+----------------------------------+----------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------+| 2012-02-03 05:50:18 | sub16 | avira | HTML/Crypted.Gen | 25/41 (61%) | AS36420, AS30315, AS13749, AS21844 | 184.172.173.161 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-17 | 8f62f1b202cc76fd4df9e3d7bb7bacac | http://inspirationforlife.com/1800gospel/wp-images/admin/cmn-home-sheets/amber-elise-forum.html || 2012-02-03 05:50:18 | sub16 | avira | HTML/Crypted.Gen | 25/41 (61%) | AS36420, AS30315, AS13749, AS21844 | 184.172.173.161 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-17 | 04d674b1c45e41ecaf69eb8e41178836 | http://inspirationforlife.com/1800gospel/wp-images/admin/cmn-home-sheets/gianna-food-network.html || 2012-02-03 05:50:18 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS36420, AS30315, AS13749, AS21844 | 184.172.173.161 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-17 | 88de501b46cc357cefeda4bd319e6d16 | http://inspirationforlife.com/1800gospel/wp-images/admin/cmn-home-sheets/remove-urine-stains-from-toilet-seats.html || 2012-02-03 05:50:18 | sub16 | avira | HTML/Crypted.Gen | 28/43 (65.1%) | AS36420, AS30315, AS13749, AS21844 | 184.172.173.161 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-17 | a960c9ca5c986f95651dc62c0e1efee8 | http://inspirationforlife.com/1800gospel/wp-images/admin/cmn-home-sheets/specs-nvidia-geforce-6150se.html || 2012-02-03 05:50:18 | sub16 | avira | HTML/Crypted.Gen | 25/41 (61%) | AS36420, AS30315, AS13749, AS21844 | 184.172.173.161 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-17 | c5ac681417492fe43d9466af783f1c13 | http://inspirationforlife.com/1800gospel/wp-images/admin/cmn-home-sheets/used-timberking-portable-sawmills.html || 2012-02-03 05:50:21 | sub16 | avira | TR/Dropper.Gen | 6/43 (14%) | AS17036, AS22653 | 69.61.74.189 | abuse@cyberwurx.com | US | ARIN | NET-GLOBAL-COMPASS | 9edeaacf7221fa9210de19dbdd95d66e | http://www.onlinecasinoextra.com/downloads/platinumplaycasino.exe || 2012-02-03 05:45:04 | sub5 | avira | PHP/Pbot.A | 30/43 (69.8%) | AS14141 | 98.142.215.184 | wnoc@wiresix.com | US | ARIN | WIRESIX | c7f628c5d8a2093c037d1fbf1775b986 | http://fileden.com/files/2012/1/31/3257757//teucmd.txt? || 2012-02-03 06:00:36 | sub16 | avira | JS/iFrame.KT | 22/43 (51.2%) | AS19994 | 184.106.55.25 | abuse@rackspace.com | US | ARIN | RACKS-8-NET-4 | 6aa99f4be1247fce44c1501074ae2b82 | http://islesblogger.com/gallery/main.php?g2_itemId=1732&g2_imageViewsIndex=2 || 2012-02-03 06:00:36 | sub16 | avira | JS/iFrame.KT | 21/42 (50%) | AS19994 | 184.106.55.25 | abuse@rackspace.com | US | ARIN | RACKS-8-NET-4 | 8e5131ed1c8a0d7c84a22e377ece6aa6 | http://islesblogger.com/gallery/main.php?g2_itemId=2294&g2_imageViewsIndex=2 || 2012-02-03 06:00:36 | sub16 | avira | JS/iFrame.KT | 22/43 (51.2%) | AS19994 | 184.106.55.25 | abuse@rackspace.com | US | ARIN | RACKS-8-NET-4 | d123a88c95e6049aeb725e28e2b1de07 | http://islesblogger.com/gallery/main.php?g2_itemId=2300 || 2012-02-03 06:00:36 | sub16 | avira | JS/iFrame.KT | 22/43 (51.2%) | AS19994 | 184.106.55.25 | abuse@rackspace.com | US | ARIN | RACKS-8-NET-4 | c9d7bf4dbe98b5b95adbbdc5a101f89a | http://islesblogger.com/gallery/main.php?g2_itemId=5758 || 2012-02-03 06:00:36 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 24/41 (58.5%) | AS25973, AS35937, AS36025, AS6130, AS15244 | 216.97.225.208 | hostmaster@lunarpages.com | US | ARIN | ADD2NET-DOT-COM | 61ab3acfbda598492237f637bd42e368 | http://jrezk.com/allworx/admin/thai-food-in-chico-ca/feed-mealy-worms-to-birds.html || 2012-02-03 06:00:36 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 26/43 (60.5%) | AS25973, AS35937, AS36025, AS6130, AS15244 | 216.97.225.208 | hostmaster@lunarpages.com | US | ARIN | ADD2NET-DOT-COM | 37838c4d7d9025324e0b5d649804d771 | http://jrezk.com/allworx/admin/thai-food-in-chico-ca/nvidia-g4000-pro.html || 2012-02-03 06:00:36 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 26/43 (60.5%) | AS25973, AS35937, AS36025, AS6130, AS15244 | 216.97.225.208 | hostmaster@lunarpages.com | US | ARIN | ADD2NET-DOT-COM | 3466d05f91e04b21d0ed19ca6f642aab | http://jrezk.com/allworx/admin/thai-food-in-chico-ca/oak-express-in-syracuse.html || 2012-02-03 06:00:36 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 24/41 (58.5%) | AS25973, AS35937, AS36025, AS6130, AS15244 | 216.97.225.208 | hostmaster@lunarpages.com | US | ARIN | ADD2NET-DOT-COM | 51859b52ace2670ca83d154105839585 | http://jrezk.com/allworx/admin/thai-food-in-chico-ca/pecan-turtles-recipe.html || 2012-02-03 06:00:36 | sub16 | undef | unknown_html_RFI_eval | 0/41 (0.0%) | AS4766 | 112.175.243.22 | abuse@kornet.net | KR | APNIC | KORNET-KR | b057e60f3908c9b78e31229e71750517 | http://juratozasicocyl.co.cc/ || 2012-02-03 06:00:36 | sub16 | Avast | JS:Redirector-HX [Trj] | 10/42 (23.8%) | AS33055 | 65.182.101.165 | tparadiso@brinkster.com | US | ARIN | ORF-BRINKSTER-COM | 1473180603582f6fe58c1785e135c56a | http://justinejablonska.com/?cat=135 || 2012-02-03 06:00:36 | sub16 | Avast | JS:Redirector-HX [Trj] | 10/42 (23.8%) | AS33055 | 65.182.101.165 | tparadiso@brinkster.com | US | ARIN | ORF-BRINKSTER-COM | 1473180603582f6fe58c1785e135c56a | http://justinejablonska.com/?p=565 || 2012-02-03 06:00:36 | sub16 | Avast | JS:Redirector-HX [Trj] | 10/42 (23.8%) | AS33055 | 65.182.101.165 | tparadiso@brinkster.com | US | ARIN | ORF-BRINKSTER-COM | 1473180603582f6fe58c1785e135c56a | http://justinejablonska.com/?p=570 || 2012-02-03 06:00:36 | sub16 | Avast | JS:Redirector-HX [Trj] | 10/42 (23.8%) | AS33055 | 65.182.101.165 | tparadiso@brinkster.com | US | ARIN | ORF-BRINKSTER-COM | 1473180603582f6fe58c1785e135c56a | http://justinejablonska.com/?tag=happy-hour || 2012-02-03 06:00:36 | sub16 | Avast | JS:Redirector-HX [Trj] | 10/42 (23.8%) | AS33055 | 65.182.101.165 | tparadiso@brinkster.com | US | ARIN | ORF-BRINKSTER-COM | 1473180603582f6fe58c1785e135c56a | http://justinejablonska.com/?tag=irena-sendler || 2012-02-03 06:00:36 | sub16 | Avast | JS:Redirector-HX [Trj] | 10/42 (23.8%) | AS33055 | 65.182.101.165 | tparadiso@brinkster.com | US | ARIN | ORF-BRINKSTER-COM | 1473180603582f6fe58c1785e135c56a | http://justinejablonska.com/?tag=polish-american-heritage-month || 2012-02-03 06:00:36 | sub16 | Avast | JS:Redirector-HX [Trj] | 10/42 (23.8%) | AS33055 | 65.182.101.165 | tparadiso@brinkster.com | US | ARIN | ORF-BRINKSTER-COM | 1473180603582f6fe58c1785e135c56a | http://justinejablonska.com/?tag=tv || 2012-02-03 06:00:36 | sub16 | avira | JS/iFrame.AOX | 17/42 (40.5%) | AS10297 | 209.190.85.35 | abuse@ee.net | US | ARIN | ENET-XLHOST | decd39c9cd20fdb3b7cf57546b76f73b | http://kevaqaka.habibye.net/ || 2012-02-03 06:00:36 | sub16 | undef | unknown_exe | 0/42 (0.0%) | AS2578 | 194.87.50.148 | abuse@demos.net | RU | RIPE | RU-DEMOS-940901 | 1fac5ea0b7eaccf83a1e7d17ed992221 | http://keylogger.ru/s/?f=sonar_net_en.exe || 2012-02-03 06:00:37 | sub16 | avira | HTML/Rce.Gen | 20/43 (46.5%) | AS49189 | 188.120.40.95 | abuse@ruweb.net | RU | RIPE | RUWEB | 28536a3878d81d3f1fd41b8d7a01e3be | http://ks-professional.ru/forum/index.php/style.php?id=1&lang=en&sid=275045c398d0c870f4a8f9b919c4d44c || 2012-02-03 06:00:37 | sub16 | avira | HTML/Rce.Gen | 17/43 (39.5%) | AS49189 | 188.120.40.95 | abuse@ruweb.net | RU | RIPE | RUWEB | 6b4ac6c41dfdb9399c1246918440a0b1 | http://ks-professional.ru/forum/index.php/style.php?id=1&lang=en&sid=2ab66fa85527a7c8b711aa7d77b5047f || 2012-02-03 06:00:37 | sub16 | avira | HTML/Rce.Gen | 20/42 (47.6%) | AS49189 | 188.120.40.95 | abuse@ruweb.net | RU | RIPE | RUWEB | 3ca712dcfe5393962f1ea5916587b3c4 | http://ks-professional.ru/forum/index.php/style.php?id=1&lang=en&sid=6cc79b29d6ec7b4b76526092e03c1b5e || 2012-02-03 06:00:37 | sub16 | avira | HTML/Rce.Gen | 20/42 (47.6%) | AS49189 | 188.120.40.95 | abuse@ruweb.net | RU | RIPE | RUWEB | 62207cfced81a8f449ae05177d0e86a6 | http://ks-professional.ru/forum/index.php/style.php?id=1&lang=en&sid=79d2c3e1ace73bb2686a5967049a912f || 2012-02-03 06:00:37 | sub16 | avira | HTML/Rce.Gen | 17/43 (39.5%) | AS49189 | 188.120.40.95 | abuse@ruweb.net | RU | RIPE | RUWEB | af6332c821d927ea75643aeb3233ce7c | http://ks-professional.ru/forum/index.php/style.php?id=1&lang=en&sid=9d13920d0cca3def8710399ac9bd539a || 2012-02-03 06:00:37 | sub16 | avira | HTML/Rce.Gen | 20/43 (46.5%) | AS49189 | 188.120.40.95 | abuse@ruweb.net | RU | RIPE | RUWEB | d943f14a95a552d54c655c4b1fe80775 | http://ks-professional.ru/forum/index.php?topic=29.0; || 2012-02-03 06:00:37 | sub16 | avira | HTML/Crypted.Gen | 25/43 (58.1%) | AS4780 | 61.56.213.174 | hostmaster@twnic.net.tw | TW | APNIC | TWNIC-TW | 242b27580260a36d7524a778e6626bd1 | http://leaderjs.com/twc/images/banner/small/topic-1839.htm || 2012-02-03 06:00:38 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS25229 | 77.120.123.11 | abuse@volia.net | UA | RIPE | UA-VOLIA-20061124 | 88daa465cd120e7cf32a247fac57f1f1 | http://m-analytics.net/ || 2012-02-03 06:00:38 | sub16 | undef | unknown_html_RFI_eval | 0/42 (0.0%) | AS4766 | 112.175.243.21 | abuse@kornet.net | KR | APNIC | KORNET-KR | 066332f73339b7752a225fb669f969c1 | http://maraxovyvyjutop.co.cc/ || 2012-02-03 06:00:38 | sub16 | ClamAV | PUA.JS.Obfus-7 | 1/40 (2.5%) | AS21788 | 96.9.160.96 | nic@hostnoc.net | US | ARIN | HOSTNOC-4BLK | 30742a400f69922e1869cc5f50c4e5d5 | http://masteks.be/ || 2012-02-03 06:00:38 | sub16 | undef | unknown_html_google_blacklist | 0/42 (0.0%) | AS4134 | 218.2.31.199 | abuse@jsinfo.net | CN | APNIC | CHINANET-JS | db2552dc46e75079d1ccea97489cf6f7 | http://mastj.net/kefu/img/ || 2012-02-03 06:00:42 | sub16 | avira | DR/Delphi.Gen | 12/43 (27.9%) | AS26496 | 97.74.27.105 | noc@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 47ff36ef7dec64a41d85374a480a471f | http://www.drmsoft.com/encryption-tool/pdf-to-exe-encrypter.zip || 2012-02-03 06:01:45 | sub16 | avira | HTML/Dldr.Agent.OB | 30/43 (69.8%) | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 2de058dec2f2d2d3008581f16ca6a1ec | http://me4.qingluo.net/files/Me122015/index1.asp || 2012-02-03 06:01:46 | sub16 | avira | HTML/Dldr.Agent.OB | 29/42 (69%) | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | e36676ba115f6e23283174e6be1a86b9 | http://me4.qingluo.net/files/Me12206/index1.asp || 2012-02-03 06:01:46 | sub16 | avira | HTML/Dldr.Agent.OB | 29/42 (69%) | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 117d7fd7d8661e995b405395d3fb911d | http://me6.qingluo.net/files/Me122017/index1.asp || 2012-02-03 06:01:46 | sub16 | avira | HTML/Dldr.Agent.OB | 28/41 (68.3%) | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 37a99bc6f16f14b71388695f36f88000 | http://me7.qingluo.net/files/Me12209/index1.asp || 2012-02-03 06:01:46 | sub16 | Avast | JS:Iframe-DW [Trj] | 9/43 (20.9%) | AS32475 | 65.60.11.114 | abuse@singlehop.com | US | ARIN | SINGLEHOP | d07dd94006747c565c12d2010e44e380 | http://meteorafelfoios.com/ || 2012-02-03 06:01:46 | sub16 | Ikarus | Exploit.SWF.Blacole | 5/43 (11.6%) | AS9891 | 203.170.193.102 | ip_admin@csloxinfo.net | TH | APNIC | idc-csloxinfo | 8b48c206d6fe9aca6939923172c43f4d | http://mob.buildingnicheaffiliatewebsites.com/content/field.swf || 2012-02-03 06:01:46 | sub16 | avira | JS/Clicker.CA | 32/41 (78%) | AS36420, AS30315, AS13749, AS21844 | 184.173.207.130 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-17 | d4893ccbfccdeaff838a29397169c8a0 | http://msbs.ca/trainforpower/?p=42 || 2012-02-03 06:01:46 | sub16 | avira | HTML/Infected.B | 23/41 (56.1%) | AS36420, AS30315, AS13749, AS21844 | 174.123.32.42 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 38872b7964845ba5178b5d0467555a13 | http://musicclick.com/bands/12/index.php || 2012-02-03 06:01:46 | sub16 | avira | JS/iFrame.HF.2 | 24/43 (55.8%) | AS33182 | 64.37.52.211 | abuse@dimenoc.com | US | ARIN | DIMENOC-NETWORK | 2cab4126b8ebede120ef0531c4f0ee1d | http://network.senssilk.com/prove/bmw-endurance-k1200lt.html || 2012-02-03 06:01:46 | sub16 | avira | HTML/Afriem.D | 22/43 (51.2%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | e12e91b18b9e75461ceb14e16c67ad0a | http://neutronbot.com/jonesy/?m=tank&n=3 || 2012-02-03 06:01:46 | sub16 | avira | HTML/Afriem.D | 22/43 (51.2%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | 7f103eb6299d0f565f07d922b6399e22 | http://neutronbot.com/jonesy/?m=vespa&n=-1 || 2012-02-03 06:01:46 | sub16 | avira | HTML/Afriem.D | 22/43 (51.2%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | 2331b9da7d37445fcebe7a9d6ee000bc | http://neutronbot.com/kevin/?m=barrow&n=2 || 2012-02-03 06:01:46 | sub16 | avira | HTML/Afriem.D | 22/41 (53.7%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | efd6980a3d1be6ffef3c0e10821ac70c | http://neutronbot.com/kevin/?m=cycloplin&n=1 || 2012-02-03 06:01:46 | sub16 | avira | HTML/Afriem.D | 22/41 (53.7%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | 7ac60e29da16a1b33a773468e1d28203 | http://neutronbot.com/kevin/?m=earthflower&n=16 || 2012-02-03 06:01:46 | sub16 | avira | HTML/Afriem.D | 22/43 (51.2%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | 5a2f628d6ec34d73f041fc43cc96344d | http://neutronbot.com/kevin/?m=earthflower&n=36 || 2012-02-03 06:01:46 | sub16 | avira | HTML/Afriem.D | 22/43 (51.2%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | 448dfa5e6964e467784e59fd8e69d488 | http://neutronbot.com/kevin/?m=earthflower&n=45 || 2012-02-03 06:01:46 | sub16 | avira | HTML/Afriem.D | 22/43 (51.2%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | 58810799555e077d154561ba07f2eb7f | http://neutronbot.com/kevin/?m=earthflower&n=7 || 2012-02-03 06:01:46 | sub16 | avira | HTML/Afriem.D | 22/43 (51.2%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | de92fd2adb1a9948f240f0a260ef7c75 | http://neutronbot.com/kevin/?m=fingobbins&n=3 || 2012-02-03 06:01:46 | sub16 | avira | HTML/Afriem.D | 22/43 (51.2%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | 7cb65551aa84a421efb30e98f5d9be2f | http://neutronbot.com/kevin/?m=gong&n=3 || 2012-02-03 06:01:46 | sub16 | avira | HTML/Afriem.D | 21/42 (50%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | 40329b96e52d6453f24ee5093ba5ed94 | http://neutronbot.com/kevin/?m=kidbot&n=4 || 2012-02-03 06:01:46 | sub16 | avira | HTML/Afriem.D | 22/43 (51.2%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | 2ef97386967e1366cc676f1b5860f879 | http://neutronbot.com/kevin/?m=microfloat&n=4 || 2012-02-03 06:01:46 | sub16 | avira | HTML/Afriem.D | 21/42 (50%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | 0f2afbd95e066a3baf823c46348c5c7c | http://neutronbot.com/kevin/?m=monkey&n=1 || 2012-02-03 06:01:46 | sub16 | avira | HTML/Afriem.D | 22/43 (51.2%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | e5dbb8998b2c6b177c656e7f75ca7b7a | http://neutronbot.com/kevin/?m=origins&n=0 || 2012-02-03 06:01:46 | sub16 | avira | HTML/Afriem.D | 22/42 (52.4%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | 8b36cc3d4300fba4605b4a462f2e10cb | http://neutronbot.com/kevin/?m=origins&n=15 || 2012-02-03 06:01:46 | sub16 | avira | HTML/Afriem.D | 22/43 (51.2%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | 3b6f309fcc330ac33b4dd31e951e53d8 | http://neutronbot.com/kevin/?m=origins&n=4 || 2012-02-03 06:01:46 | sub16 | avira | HTML/Afriem.D | 22/43 (51.2%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | ba7201af40c07b06e0cf0b550479ffd5 | http://neutronbot.com/kevin/?m=profu2&n=13 || 2012-02-03 06:01:46 | sub16 | avira | HTML/Afriem.D | 22/43 (51.2%) | AS26347 | 173.236.128.176 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | 15d86085968cfa0b7feabfb6816b103e | http://neutronbot.com/kevin/?m=profusuits&n=0 || 2012-02-03 06:01:46 | sub16 | Avast | JS:Iframe-AL [Trj] | 7/43 (16.3%) | AS36351 | 173.192.141.68 | abuse@softlayer.com | US | ARIN | SOFTLAYER-4-8 | 7bf757a3284fc55ac97c588ec3dc3e4b | http://ngfssaket.com/home.htm || 2012-02-03 06:01:46 | sub16 | trendmicro | HTML_IFRAME.KHC | 20/43 (46.5%) | AS36476 | 209.237.151.16 | abuse@corp.web.com | US | ARIN | WEB-COM-BLK1 | 7ae69c2761292afa356f1e7dedf8b883 | http://nisx.com/default.asp?c=218& || 2012-02-03 06:01:46 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 25/43 (58.1%) | AS51559 | 94.102.2.247 | netadmin@ni.net.tr | TR | RIPE | TR-NETINTERNET | 3895d399ebde2637c67c1b83a1f2d619 | http://nokiafrm.com/archive/index.php/f-6-p-3.html || 2012-02-03 06:01:46 | sub16 | avira | HTML/Crypted.Gen | 27/43 (62.8%) | AS25973, AS35937, AS36025, AS6130, AS15244 | 216.97.230.80 | hostmaster@lunarpages.com | US | ARIN | ADD2NET-DOT-COM | 1ddde868c285004e359b301047575106 | http://noronha.ca/photos/bridge/admin/sportsmen-naked-steven-gerrard/mature-sleep-tgp.html || 2012-02-03 06:01:46 | sub16 | avira | HTML/Crypted.Gen | 26/43 (60.5%) | AS8717 | 212.36.9.1 | support@tophost.bg | BG | RIPE | OTELNET | effcc5396e3495fd401c5e1d370560ab | http://novonachalo.com/forum/images/avatars/pics/aldarol.html || 2012-02-03 06:01:46 | sub16 | avira | HTML/Crypted.Gen | 25/43 (58.1%) | AS8717 | 212.36.9.1 | support@tophost.bg | BG | RIPE | OTELNET | 8639b5cdf35227a88e41f0b5b9536204 | http://novonachalo.com/forum/images/avatars/pics/brsedd.html || 2012-02-03 06:01:46 | sub16 | avira | HTML/Crypted.Gen | 25/43 (58.1%) | AS8717 | 212.36.9.1 | support@tophost.bg | BG | RIPE | OTELNET | 522649f0d4f9b421502825368859d063 | http://novonachalo.com/forum/images/avatars/pics/getree.html || 2012-02-03 06:01:46 | sub16 | avira | HTML/Crypted.Gen | 26/43 (60.5%) | AS8717 | 212.36.9.1 | support@tophost.bg | BG | RIPE | OTELNET | c9c0e626ebd4acb426d0eac3e80f591b | http://novonachalo.com/forum/images/avatars/pics/laalzarh.html || 2012-02-03 06:01:46 | sub16 | avira | HTML/Crypted.Gen | 26/43 (60.5%) | AS8717 | 212.36.9.1 | support@tophost.bg | BG | RIPE | OTELNET | 11e6d9b1b6f524011ec2285c7357d748 | http://novonachalo.com/forum/images/avatars/pics/mexkorel.html || 2012-02-03 06:01:47 | sub16 | avira | JS/Agent.abx.2 | 26/43 (60.5%) | AS15699 | 212.36.75.65 | info@datahouse.es | ES | RIPE | ADAM | 0e24513723ea45523193388ace129fe8 | http://ofertaydemanda.net/inc/loc.php?loc=00 || 2012-02-03 06:01:47 | sub16 | avira | HTML/IFrame.era | 18/43 (41.9%) | AS3786 | 180.150.228.152 | ljy1258@ehostidc.co.kr | KR | APNIC | EHOSTIDC-KR | 43d79eca4dd1c2786b79e0ce16f03deb | http://oksul38.80port.net/zb41pl5/view.php?id=board || 2012-02-03 06:01:47 | sub16 | avira | HTML/Dldr.Agent.OB | 30/43 (69.8%) | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | b0aac5d9367f76bcfa1d4e244a447e93 | http://oldtest.qingluo.net/files/Me122011/index1.asp || 2012-02-03 06:01:47 | sub16 | undef | unknown_exe | 1/42 (2.4%) | AS17036, AS22653 | 69.61.74.189 | abuse@cyberwurx.com | US | ARIN | NET-GLOBAL-COMPASS | 8bc28c2922f5348ed017ddd32b1a2f42 | http://onlinecasinoextra.com/downloads/yukongoldcasino.exe || 2012-02-03 06:01:47 | sub16 | undef | unknown_arch_zip | 0/43 (0.0%) | AS18866 | 69.50.209.95 | abuse@atjeuhosting.com | US | ARIN | ATJEU | 6d951535cea93e81bcf52130bf4d3785 | http://optinsecretsexposed.com/abs/abs.zip || 2012-02-03 06:01:47 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS18866 | 69.50.209.95 | abuse@atjeuhosting.com | US | ARIN | ATJEU | ef9a4f7471e06bc676a12a8a830e9b6f | http://optinsecretsexposed.com/muscle/ || 2012-02-03 06:01:47 | sub16 | F_Prot | File is damaged | 1/42 (2.4%) | AS36420, AS30315, AS13749, AS21844 | 174.120.202.34 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 3bdd9aa6441290b463e39b72bfcc02b7 | http://orchidstoresecrets.com/Orchid_Types_Toolbar.exe || 2012-02-03 06:01:47 | sub16 | avira | JS/Redirector.LC | 24/43 (55.8%) | AS53628 | 173.0.140.49 | abuse@jdnextgen.com | US | ARIN | APYLI-AS | 4ec70c56ca866b55453f16c1c23982ca | http://org-san.org/on_sayfa.php?id=2_11175_18602 || 2012-02-03 06:01:47 | sub16 | avira | ADWARE/Adware.Gen | 24/43 (55.8%) | AS10912 | 66.150.14.88 | abuse@internap.com | US | ARIN | PNAP-06-2001 | 301c9bb1a1587349d21a20a33daa72c3 | http://origin-ics.fivemillionfriends.com/IC/GPLAppBundler68/32050/0/0039a8d7-f33a-46d6-989f-bdb8d8417f19/xvidsetup.exe?rnd=90062 || 2012-02-03 06:01:47 | sub16 | avira | ADWARE/Adware.Gen | 23/40 (57.5%) | AS10912 | 66.150.14.88 | abuse@internap.com | US | ARIN | PNAP-06-2001 | d09044ebd5d1910e5ba84ea7c20ad742 | http://origin-ics.fivemillionfriends.com/IC/GPLAppBundler68/32050/0/0e64ab93-6b45-4438-92aa-f84571d942aa/XvidSetup.exe?rnd=55406 || 2012-02-03 06:01:47 | sub16 | avira | ADWARE/Adware.Gen | 24/43 (55.8%) | AS10912 | 66.150.14.86 | abuse@internap.com | US | ARIN | PNAP-06-2001 | 3e1dbe3d288d65efd9e9a93a23915c03 | http://origin-ics.fivemillionfriends.com/IC/GPLAppBundler68/32050/0/682cd48e-c838-428c-9698-b09c656a35a2/xvidsetup.exe?rnd=61828 || 2012-02-03 06:01:47 | sub16 | avira | ADWARE/Adware.Gen | 24/43 (55.8%) | AS10912 | 66.150.14.86 | abuse@internap.com | US | ARIN | PNAP-06-2001 | 588743f92527d996c120e2640f78745c | http://origin-ics.fivemillionfriends.com/IC/GPLAppBundler68/32050/0/71c153ab-04c5-4916-90a7-441e9fe25725/XvidSetup.exe?rnd=49406 || 2012-02-03 06:01:47 | sub16 | avira | ADWARE/Adware.Gen | 24/43 (55.8%) | AS10912 | 66.150.14.86 | abuse@internap.com | US | ARIN | PNAP-06-2001 | a85b91f39bf35ab54156136f995f93b9 | http://origin-ics.fivemillionfriends.com/IC/GPLAppBundler68/32050/0/78ab3ac5-4bb6-42b5-b525-d1f94fecf431/RealSetup.exe?rnd=48250 || 2012-02-03 06:10:12 | sub10 | avira | TR/Crypt.XPACK.Gen | 33/43 (76.7%) | AS29169 | 95.142.164.214 | abuse@gandi.net | FR | RIPE | GANDI-NET1 | 5de0c86879bb8b9351fd5ca42da967ef | http://95.142.164.214/update.exe || 2012-02-03 06:20:09 | sub16 | avira | JS/Redirector.DC | 21/42 (50%) | AS32475 | 173.236.48.82 | netops@singlehop.com | US | ARIN | SINGLEHOP | d9ebc9339b4ebf82f97a84e814d921dc | http://asia1x1.net/HOME_PAGE/modules/weblinks/myheader--may24.nogifs.php?lid=447 || 2012-02-03 06:20:11 | sub16 | DrWeb | Adware.Downware.113 | 2/41 (4.9%) | AS46281 | 94.127.76.190 | ripeadmin@cotendo.com | US | RIPE | IL-CTNDO-20081008 | 670caf0d1ebebe0159f243814636d334 | http://cdn01.bcdn.info/geo/downloads/VLC/geo/DE/setup.exe || 2012-02-03 06:20:21 | sub16 | avira | ADWARE/Adware.Gen | 24/43 (55.8%) | AS10912 | 66.150.14.88 | abuse@internap.com | US | ARIN | PNAP-06-2001 | 47b6ae58eaa9441cb1fe97fda8cb8bcc | http://origin-ics.fivemillionfriends.com/IC/GPLAppBundler68/32050/0/1446285a-181b-42ef-95b6-4a644f802f74/XvidSetup.exe?rnd=50953 || 2012-02-03 06:20:21 | sub16 | avira | ADWARE/Adware.Gen | 23/41 (56.1%) | AS10912 | 66.150.14.88 | abuse@internap.com | US | ARIN | PNAP-06-2001 | ca596407b31227888fa95852c53b8d24 | http://origin-ics.fivemillionfriends.com/IC/GPLAppBundler68/32050/0/4c7022d8-5874-464a-87c2-50c1e490cb5e/xvidsetup.exe?rnd=88218 || 2012-02-03 06:20:21 | sub16 | avira | ADWARE/Adware.Gen | 24/42 (57.1%) | AS10912 | 66.150.14.88 | abuse@internap.com | US | ARIN | PNAP-06-2001 | 994eb654e626e0733097f8ff22f0245c | http://origin-ics.fivemillionfriends.com/IC/GPLAppBundler68/32050/0/7a5389fa-30d2-4171-ae11-bbfa7236def8/xvidsetup.exe?rnd=61468 || 2012-02-03 06:20:21 | sub16 | avira | ADWARE/Adware.Gen | 25/43 (58.1%) | AS10912 | 66.150.14.88 | abuse@internap.com | US | ARIN | PNAP-06-2001 | 2c0c14796fadef60d554e3698ff7832d | http://origin-ics.fivemillionfriends.com/IC/GPLAppBundler68/32050/0/7c3bd4c2-7a58-48b1-b9ce-99cc871f6b4e/XvidSetup.exe?rnd=48343 || 2012-02-03 06:20:21 | sub16 | avira | ADWARE/Adware.Gen | 25/43 (58.1%) | AS10912 | 66.150.14.87 | abuse@internap.com | US | ARIN | PNAP-06-2001 | 94356747376c51304748c2c67cdff127 | http://origin-ics.fivemillionfriends.com/IC/GPLAppBundler68/32050/0/940c7c54-60f0-46e8-b8cf-799b65437bcf/eMuleSetup.exe?rnd=84968 || 2012-02-03 06:20:21 | sub16 | avira | ADWARE/Adware.Gen | 24/43 (55.8%) | AS10912 | 66.150.14.87 | abuse@internap.com | US | ARIN | PNAP-06-2001 | 250251f4dad85db8963203857cecea72 | http://origin-ics.fivemillionfriends.com/IC/GPLAppBundler68/32050/0/9dcf0232-aeb0-4fea-9eea-e95c97c1781f/RealSetup.exe?rnd=51359 || 2012-02-03 06:20:21 | sub16 | avira | ADWARE/Adware.Gen | 24/43 (55.8%) | AS10912 | 66.150.14.87 | abuse@internap.com | US | ARIN | PNAP-06-2001 | 0e892b9cecb55f82481fc6b8878e38a8 | http://origin-ics.fivemillionfriends.com/IC/GPLAppBundler68/32050/0/a3b07918-4276-40a9-8dba-e5355a1aa6b4/XvidSetup.exe?rnd=46593 || 2012-02-03 06:20:21 | sub16 | avira | ADWARE/Adware.Gen | 23/43 (53.5%) | AS10912 | 66.150.14.87 | abuse@internap.com | US | ARIN | PNAP-06-2001 | 62e422b395be17d7d92a75f77003be33 | http://origin-ics.fivemillionfriends.com/IC/GPLAppBundler68/32050/0/ba8dd32c-d831-47e2-b8d5-44a5e9c0de9f/RealSetup.exe?rnd=63625 || 2012-02-03 06:20:21 | sub16 | avira | ADWARE/Adware.Gen | 24/43 (55.8%) | AS10912 | 66.150.14.87 | abuse@internap.com | US | ARIN | PNAP-06-2001 | 46d1122eb737981e90a66fdb0883fae6 | http://origin-ics.fivemillionfriends.com/IC/GPLAppBundler68/32050/0/c8b7823c-79a4-41a2-a273-25101833910d/RealSetup.exe?rnd=60453 || 2012-02-03 06:20:21 | sub16 | avira | ADWARE/Adware.Gen | 24/43 (55.8%) | AS10912 | 66.150.14.87 | abuse@internap.com | US | ARIN | PNAP-06-2001 | 5a6841504a66d4f95a653e8c17674a46 | http://origin-ics.fivemillionfriends.com/IC/GPLAppBundler68/32050/0/cc6e68cf-98dc-41f9-9402-e482869a61e5/XvidSetup.exe?rnd=58546 || 2012-02-03 06:20:21 | sub16 | avira | ADWARE/Adware.Gen | 25/43 (58.1%) | AS10912 | 66.150.14.86 | abuse@internap.com | US | ARIN | PNAP-06-2001 | 1ed128c500a2d7194b877ecd67cde256 | http://origin-ics.fivemillionfriends.com/IC/GPLAppBundler68/32050/0/ce8acd23-6c92-4b0a-b3a2-d071676a3678/xvidsetup.exe?rnd=112750 || 2012-02-03 06:20:21 | sub16 | avira | ADWARE/Adware.Gen | 23/41 (56.1%) | AS10912 | 66.150.14.86 | abuse@internap.com | US | ARIN | PNAP-06-2001 | dc151126b050bfce59de689c16371dd7 | http://origin-ics.fivemillionfriends.com/IC/GPLAppBundler68/32050/0/dd5435ae-9689-40a3-9841-2f556c7d487c/xvidsetup.exe?rnd=49078 || 2012-02-03 06:20:21 | sub16 | avira | ADWARE/Adware.Gen | 24/43 (55.8%) | AS10912 | 66.150.14.86 | abuse@internap.com | US | ARIN | PNAP-06-2001 | 259fb3c7bb3d38a6b2e613def8391c64 | http://origin-ics.fivemillionfriends.com/IC/GPLAppBundler68/32050/0/fe1dd7ca-3505-48d3-ae16-31ceea8a2bed/xvidsetup.exe?rnd=101062 || 2012-02-03 06:20:21 | sub16 | avira | ADSPY/AdSpy.Gen2 | 28/42 (66.7%) | AS10912 | 66.150.14.87 | abuse@internap.com | US | ARIN | PNAP-06-2001 | 98740d4993b77d0b7a9f4db5ba7372c7 | http://origin-ics.hotbar.com/IC/GPLHBLite58/31996/0/202894d5-8956-40e5-af74-991d546846c0/XvidSetup.exe?rnd=47312 || 2012-02-03 06:20:21 | sub16 | avira | ADSPY/AdSpy.Gen2 | 28/42 (66.7%) | AS10912 | 66.150.14.87 | abuse@internap.com | US | ARIN | PNAP-06-2001 | 0be4fd6e6d7f3688177b435f60a83e3d | http://origin-ics.hotbar.com/IC/GPLHBLite58/31996/0/381721e8-5e82-4260-ba91-613ec058f8c7/XvidSetup.exe?rnd=88234 || 2012-02-03 06:20:21 | sub16 | avira | ADSPY/AdSpy.Gen2 | 28/43 (65.1%) | AS10912 | 66.150.14.87 | abuse@internap.com | US | ARIN | PNAP-06-2001 | 8ee692c0bc404f58c5c77058b6d7bc06 | http://origin-ics.hotbar.com/IC/GPLHBLite58/31996/0/4b13c0ec-6f9e-4466-a77b-026d0735d9bb/XvidSetup.exe?rnd=49578 || 2012-02-03 06:20:21 | sub16 | avira | ADSPY/AdSpy.Gen2 | 28/43 (65.1%) | AS10912 | 66.150.14.88 | abuse@internap.com | US | ARIN | PNAP-06-2001 | ab390ed3bd38cdbf638cc9d039608a8f | http://origin-ics.hotbar.com/IC/GPLHBLite58/31996/0/5fc61d9d-cd18-48ba-a5b3-7d1732f9739d/XvidSetup.exe?rnd=89062 || 2012-02-03 06:20:21 | sub16 | avira | ADSPY/AdSpy.Gen2 | 28/43 (65.1%) | AS10912 | 66.150.14.88 | abuse@internap.com | US | ARIN | PNAP-06-2001 | b1a81f13666aa4ae8c879743823a9ed1 | http://origin-ics.hotbar.com/IC/GPLHBLite58/31996/0/64a68b99-7072-4315-8db0-b468963c9f09/XvidSetup.exe?rnd=52890 || 2012-02-03 06:20:21 | sub16 | avira | ADSPY/AdSpy.Gen2 | 28/43 (65.1%) | AS10912 | 66.150.14.88 | abuse@internap.com | US | ARIN | PNAP-06-2001 | 4f41a7079d09ee9d344862d1c9507de7 | http://origin-ics.hotbar.com/IC/GPLHBLite58/31996/0/6f6b293c-ab9f-46b4-99d0-620c120dec35/XvidSetup.exe?rnd=49218 || 2012-02-03 06:20:21 | sub16 | avira | ADSPY/AdSpy.Gen2 | 28/43 (65.1%) | AS10912 | 66.150.14.86 | abuse@internap.com | US | ARIN | PNAP-06-2001 | 1728640042daaffd4dba7c3d58a0393e | http://origin-ics.hotbar.com/IC/GPLHBLite58/31996/0/9bb3e925-405b-45fb-b3e7-ac923e027a7f/XvidSetup.exe?rnd=49906 || 2012-02-03 06:20:21 | sub16 | avira | ADSPY/AdSpy.Gen2 | 28/43 (65.1%) | AS10912 | 66.150.14.86 | abuse@internap.com | US | ARIN | PNAP-06-2001 | 360d38afeab33d05250afba5e8eb8f90 | http://origin-ics.hotbar.com/IC/GPLHBLite58/31996/0/a94bccc5-1958-40ec-b681-6730ea656912/XvidSetup.exe?rnd=105515 || 2012-02-03 06:20:21 | sub16 | avira | ADSPY/AdSpy.Gen2 | 28/43 (65.1%) | AS10912 | 66.150.14.88 | abuse@internap.com | US | ARIN | PNAP-06-2001 | d038aa380abc82bf21f37de520a19c3b | http://origin-ics.hotbar.com/IC/GPLHBLite58/31996/0/c59b8a40-68f8-493b-a39a-92be83a0df40/XvidSetup.exe?rnd=45843 || 2012-02-03 06:20:21 | sub16 | avira | ADSPY/AdSpy.Gen2 | 28/42 (66.7%) | AS10912 | 66.150.14.88 | abuse@internap.com | US | ARIN | PNAP-06-2001 | 4b0ef8fb2dcb184387a375f1054bf3cc | http://origin-ics.hotbar.com/IC/GPLHBLite58/31996/0/cbf3acb7-a598-4ab6-ac33-0438a87aacae/XvidSetup.exe?rnd=50468 || 2012-02-03 06:20:21 | sub16 | avira | ADSPY/AdSpy.Gen2 | 28/43 (65.1%) | AS10912 | 66.150.14.88 | abuse@internap.com | US | ARIN | PNAP-06-2001 | 4454a96bda8ffc8aeb751f6dad6f7f39 | http://origin-ics.hotbar.com/IC/GPLHBLite58/31996/0/e576146e-0977-46d2-a215-ffb55212ba65/XvidSetup.exe?rnd=57687 || 2012-02-03 06:20:23 | sub16 | DrWeb | Trojan.PWS.Banker.64031 | 1/43 (2.3%) | AS53057 | 187.84.224.234 | flavio@redehost.com.br | BR | LACNIC | 005.323.998/0001-89 | 2ea38a6890800403bfb3211d2d06e2f4 | http://paragadam.com/v10/rx/pjct1.jpg || 2012-02-03 06:20:23 | sub16 | avira | JS/Agent.alf | 18/41 (43.9%) | AS18042 | 61.67.242.57 | maxchang@kbtelecom.net | TW | APNIC | KBT-NET | 7db6064a4861eb54fcf5955eed0d6ca2 | http://perdormire.com.tw/ || 2012-02-03 06:20:23 | sub16 | avira | JS/Dldr.Agent.BJZ | 20/43 (46.5%) | AS12322 | 212.27.63.123 | abuse@proxad.net | FR | RIPE | FR-PROXAD | a8ef3005553c532931ab7334baa733cc | http://pierrealex2.free.fr/wedding/journee || 2012-02-03 06:20:25 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS34762 | 217.21.180.162 | abuse@combell.com | BE | RIPE | COMBELL | adc437a212dab4dc458c70280b150892 | http://www.eyckenmolen.be/img/nl/1/js/index1.php?=bJHzkF7cSjxnwJNHVVDFyUAo9fkIHwhfKt7oKt5RxHwvUqsEVNmwTaafb2Xf3p1zgN3ueBAbDDA3DVyOX5A9YXDrvIjHKOpyUEdO || 2012-02-03 06:30:06 | sub10 | avira | TR/Crypt.XPACK.Gen | 13/42 (31%) | AS10318 | 201.235.253.65 | noc@fibertel.com.ar | AR | LACNIC | AR-CASA10-LACNIC | 6aa6bef74fd023ca308915b73634e09d | http://randomparty.com.ar/s.exe || 2012-02-03 06:30:06 | sub10 | avira | TR/Fraud.Gen4 | 18/42 (42.9%) | AS9318 | 211.49.99.45 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | 6bacdd920face7b9700a7a1a98c0c0cf | http://upstat.best-pc.co.kr/P/reservereset.exe || 2012-02-03 06:40:11 | sub14 | avira | TR/VB.rjo | 36/43 (83.7%) | AS15003 | 108.62.114.141 | abuse@nobistech.net | US | ARIN | NETBLK-NOBIS-TECHNOLOGY-GROUP-09 | 04ff727fa7b11f8dfea4717c37feee1d | http://pic.watersb.com/az/tssqj.php?bd=ef8js0998737eufh389su32jd992j29302fwuwus283&&&&qid=CzHYBYhdwyehu887378299s || 2012-02-03 06:40:11 | sub14 | avira | TR/Downloader.Gen | 20/43 (46.5%) | AS9318 | 118.218.136.18 | abuse@skbroadband.com | KR | APNIC | broadNnet-KR | 73f9b3b9cf158579dd159821b136d76a | http://privacyguard.co.kr/privacy/download/partner/installcheck_jjanggame.exe || 2012-02-03 06:40:30 | sub16 | avira | JS/iFrame.oce | 21/42 (50%) | AS32244 | 72.52.136.4 | abuse@liquidweb.com | US | ARIN | LIQUIDWEB-6 | af5dc78799eaabe37773ede89d0a8539 | http://sdtheatrescene.com/phpbb/cron.php?cron_type=tidy_cache&sid=0c9626e59e7bb50ecdc08ce8885893f2 || 2012-02-03 06:40:30 | sub16 | avira | JS/iFrame.oce | 21/42 (50%) | AS32244 | 72.52.136.4 | abuse@liquidweb.com | US | ARIN | LIQUIDWEB-6 | af5dc78799eaabe37773ede89d0a8539 | http://sdtheatrescene.com/phpbb/cron.php?cron_type=tidy_cache&sid=4b0b9ffe8666ff416e80de745255b9a8 || 2012-02-03 06:40:30 | sub16 | avira | JS/iFrame.oce | 21/42 (50%) | AS32244 | 72.52.136.4 | abuse@liquidweb.com | US | ARIN | LIQUIDWEB-6 | af5dc78799eaabe37773ede89d0a8539 | http://sdtheatrescene.com/phpbb/cron.php?cron_type=tidy_cache&sid=4fb3fbf15fe7addce6eba262b2fc97b6 || 2012-02-03 06:40:30 | sub16 | avira | JS/iFrame.oce | 21/42 (50%) | AS32244 | 72.52.136.4 | abuse@liquidweb.com | US | ARIN | LIQUIDWEB-6 | af5dc78799eaabe37773ede89d0a8539 | http://sdtheatrescene.com/phpbb/cron.php?cron_type=tidy_cache&sid=9000ef7e3c81ca314582142c00cb850f || 2012-02-03 06:40:30 | sub16 | avira | JS/iFrame.oce | 21/42 (50%) | AS32244 | 72.52.136.4 | abuse@liquidweb.com | US | ARIN | LIQUIDWEB-6 | af5dc78799eaabe37773ede89d0a8539 | http://sdtheatrescene.com/phpbb/cron.php?cron_type=tidy_cache&sid=ba232356a5a8ca5301b97ef18349fb92 || 2012-02-03 06:40:30 | sub16 | avira | JS/iFrame.oce | 21/42 (50%) | AS32244 | 72.52.136.4 | abuse@liquidweb.com | US | ARIN | LIQUIDWEB-6 | af5dc78799eaabe37773ede89d0a8539 | http://sdtheatrescene.com/phpbb/cron.php?cron_type=tidy_cache&sid=e4b433bb022079bdac3a61d9a4a53218 || 2012-02-03 06:40:30 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS22489 | 69.43.161.176 | abuse@castleaccess.com | US | ARIN | ARIN-CASTLE-ALLOC | c13354b39b368ab8005b743d48eca387 | http://searchbad.org/ || 2012-02-03 06:40:30 | sub16 | avira | JS/Dldr.Pegel.G.5 | 27/41 (65.9%) | AS36420, AS30315, AS13749, AS21844, AS13884 | 75.125.247.50 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-EV1-17 | 00e9fd8d6dd0e6e2376fe4ae7288d174 | http://sevenpage.com.ar/clar/ || 2012-02-03 06:40:30 | sub16 | avira | JS/Agent.aln | 24/43 (55.8%) | AS16276 | 213.186.33.18 | abuse@ovh.net | FR | RIPE | OVH | 5feca1c437e5c5a6b5082d278f9832bf | http://sfcpefc.org/liste/Lismemb02.html || 2012-02-03 06:40:30 | sub16 | Fortinet | JS/Obfuscus.AACB!tr | 1/41 (2.4%) | AS42331 | 194.0.200.13 | boss@freehost.com.ua | UA | RIPE | FREEHOST | a60e66805104a623dd95163a07fa6d62 | http://sfult.org/gallery || 2012-02-03 06:40:30 | sub16 | Fortinet | JS/Obfuscus.AACB!tr | 1/43 (2.3%) | AS42331 | 194.0.200.13 | boss@freehost.com.ua | UA | RIPE | FREEHOST | 4d5c2d5df2b55d16758fd851472f0068 | http://sfult.org/kalachuba || 2012-02-03 06:40:30 | sub16 | Fortinet | JS/Obfuscus.AACB!tr | 1/43 (2.3%) | AS42331 | 194.0.200.13 | boss@freehost.com.ua | UA | RIPE | FREEHOST | 237db411177f297f609429f70bb75876 | http://sfult.org/koncepciya || 2012-02-03 06:40:30 | sub16 | Fortinet | JS/Obfuscus.AACB!tr | 1/42 (2.4%) | AS42331 | 194.0.200.13 | boss@freehost.com.ua | UA | RIPE | FREEHOST | e0e10e37ddfb9e10a1f76e551d6a3ec4 | http://sfult.org/zvernennya-iniciativnoi-gr || 2012-02-03 06:40:30 | sub16 | undef | unknown_html_RFI_shell | 0/42 (0.0%) | AS16276 | 91.121.188.70 | abuse@ovh.net | FR | RIPE | OVH | 8c56ca78dffca1971c8b3c42966aa3e4 | http://share-finder.com/ || 2012-02-03 06:40:30 | sub16 | avira | HTML/Dldr.Agent.OB | 28/42 (66.7%) | AS4837 | 116.255.137.139 | abuse@cnc-noc.net | CN | APNIC | GIANT | 59f2e349085e81029fad87ed39d5e9b9 | http://sinojava.com/News/tc.html || 2012-02-03 06:40:30 | sub16 | BitDefender | Trojan.IFrame.ABP | 10/43 (23.3%) | AS26347 | 173.236.135.236 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK10 | 968b97e89331890dac729893eb25507a | http://sjoerdv.com/tag/24/feed/ || 2012-02-03 06:40:30 | sub16 | avira | TR/StartPage.aqmt.9 | 13/43 (30.2%) | AS31815 | 64.13.192.180 | abuse@mediatemple.net | US | ARIN | MEDIATEMPLE-103 | a95a4b82767217bb984145116f4bfd13 | http://snipfiles.com/files/halloween_screensaver.exe || 2012-02-03 06:40:31 | sub16 | Avast | JS:Iframe-Y [Trj] | 18/43 (41.9%) | AS33182 | 72.29.67.122 | abuse@dimenoc.com | US | ARIN | HOSTDIME-PI-1 | 319a6c34799f1442d7850648375a5e8e | http://spreadtheseed.com/bilder/index.php?file=./Party%20Pics/Midsommar%202006/DSC04013.JPG || 2012-02-03 06:40:31 | sub16 | avira | VBS/Small.W.1 | 35/43 (81.4%) | AS9121 | 88.255.156.150 | hasan@istanbulhost.com | tr | RIPE | TEZGEL_BILISIM | 83ea67695d0e415e25d01e393a50f0fc | http://surmelikoyu.com/eski/ktml2/includes/ktedit/help/english/cleanup.html || 2012-02-03 06:40:31 | sub16 | avira | VBS/Small.W.1 | 35/42 (83.3%) | AS9121 | 88.255.156.150 | hasan@istanbulhost.com | tr | RIPE | TEZGEL_BILISIM | f2b19a91f1cc6c329cd4fbefc99ec3dc | http://surmelikoyu.com/eski/ktml2/includes/ktedit/help/english/html_tags.html || 2012-02-03 06:40:31 | sub16 | avira | VBS/Small.W.1 | 34/42 (81%) | AS9121 | 88.255.156.150 | hasan@istanbulhost.com | tr | RIPE | TEZGEL_BILISIM | 7fb7692e3c3b16a808d89a4d260dde86 | http://surmelikoyu.com/eski/ktml2/includes/ktedit/help/english/imageupload.html || 2012-02-03 06:40:31 | sub16 | avira | VBS/Small.W.1 | 34/42 (81%) | AS9121 | 88.255.156.150 | hasan@istanbulhost.com | tr | RIPE | TEZGEL_BILISIM | 982ff5fd35749edf568e007ca1ebc2ff | http://surmelikoyu.com/eski/ktml2/includes/ktedit/help/english/insertimage.html || 2012-02-03 06:40:31 | sub16 | avira | VBS/Small.W.1 | 35/43 (81.4%) | AS9121 | 88.255.156.150 | hasan@istanbulhost.com | tr | RIPE | TEZGEL_BILISIM | 98f01445439a2a620b722f8bfaf15b56 | http://surmelikoyu.com/eski/ktml2/includes/ktedit/help/english/toggleedit.html || 2012-02-03 06:40:31 | sub16 | avira | VBS/Small.W.1 | 35/43 (81.4%) | AS9121 | 88.255.156.150 | hasan@istanbulhost.com | tr | RIPE | TEZGEL_BILISIM | b49267fa99c44e5d059f71de9eb41ff3 | http://surmelikoyu.com/eski/ktml2/includes/ktedit/help/english/toggleinvis.html || 2012-02-03 06:40:32 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS33597 | 67.208.74.71 | abuse@inforelay.com | US | ARIN | INFORELAY-NETBLOCK01 | 6b2bd294325bb9903989c3e4e5d1d988 | http://www1.lightprotectoris.rr.nu/iuyaab107_8006.php || 2012-02-03 06:40:32 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS16276 | 213.186.33.2 | abuse@ovh.net | FR | RIPE | OVH | adc437a212dab4dc458c70280b150892 | http://www.carrosseriebriot.com/templates/beez/images/js/link/Sorteado.php || 2012-02-03 06:40:33 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS34762 | 217.21.180.162 | abuse@combell.com | BE | RIPE | COMBELL | adc437a212dab4dc458c70280b150892 | http://www.eyckenmolen.be/img/nl/1/js/index1.php?=81xiifSEZxgeNjpkcmBFHgGZ5Qpo2EBqrkia5LDnfw1dlW4Tq11HUhOaHLlk5hk88mOrk5267ZOH4s35RZxlpe4NCFhmr7BWBUTh || 2012-02-03 06:40:33 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS34762 | 217.21.180.162 | abuse@combell.com | BE | RIPE | COMBELL | adc437a212dab4dc458c70280b150892 | http://www.eyckenmolen.be/img/nl/1/js/index1.php?=iLojqXhNdnYehM1GtxvqD8MmgcHWIBzHH3yJvxH9A5EM4rG9ns9aA8WNX1QEbX1fv6tPKZlWbXWLBm1cWq7x8oz39ZtVF5apwgZL || 2012-02-03 05:38:04 | sub8 | undef | W32/Casino.F.gen!Eldorado | 0/41 (0.0%) | AS16276 | 178.32.28.118 | abuse@ovh.net | FR | RIPE | FR-OVH-20100119 | 99da21aaa64b92eb4d7bf0207ec81b46 | http://bkav.alwaysdata.net/anti/ || 2012-02-03 06:50:15 | sub16 | avira | ADSPY/AdSpy.Gen | 34/43 (79.1%) | AS14744 | 64.94.137.97 | abuse@internap.com | US | ARIN | INAP-SEF-PINBALL-35242 | dc9167100e66934785317f5de84d4644 | http://downloads.zango.com/zangogames/library/setuplibrary2100.exe || 2012-02-03 06:50:20 | sub16 | avira | VBS/Malware.HSF | 10/42 (23.8%) | AS7136 | 140.99.61.21 | darin@deru.net | US | ARIN | DSS1 | 13b5a33df1baf275e5c8902a1ced82ef | http://magicinkgraphics.com/uploads/mail/index.html || 2012-02-03 06:50:21 | sub16 | Avast | JS:Redirector-NQ [Trj] | 16/43 (37.2%) | AS13238 | 213.180.199.7 | abuse@yandex.ru | RU | RIPE | YANDEX-199 | 6ce5c234c81bbe26cc644258bf4a86d0 | http://malenkiyprinc.narod.ru/ || 2012-02-03 06:50:24 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 32/43 (74.4%) | AS26347 | 69.163.136.156 | abuse@dreamhost.com | US | ARIN | DREAMHOST-BLK9 | 794a460fbb614503a18d324ca70b3758 | http://pokerista.info/bb/ucp.php?mode=delete_cookies || 2012-02-03 06:50:26 | sub16 | avira | JS/Infected.C | 24/43 (55.8%) | AS32475 | 184.154.1.107 | abuse@singlehop.com | US | ARIN | SINGLEHOP | b511ace6fe010413b3bbd3f827f98499 | http://talkinfunny.com/wp-content/themes/polaris/js/cufon.js || 2012-02-03 06:50:27 | sub16 | avira | HTML/Crypted.Gen | 25/41 (61%) | AS42926 | 176.53.18.45 | abuse@as42926.net | TR | RIPE | TR-RADORE-20110526 | 9f214f2c5683bee601c5fadaf9ead610 | http://temagt.com/images/pics/page1305.html || 2012-02-03 06:50:27 | sub16 | avira | HTML/Crypted.Gen | 24/43 (55.8%) | AS42926 | 176.53.18.45 | abuse@as42926.net | TR | RIPE | TR-RADORE-20110526 | 545422a5b7102266eb1fba816be9bb8b | http://temagt.com/images/pics/page2292.html || 2012-02-03 06:50:27 | sub16 | avira | HTML/Crypted.Gen | 25/43 (58.1%) | AS42926 | 176.53.18.45 | abuse@as42926.net | TR | RIPE | TR-RADORE-20110526 | 8c1e065f281347abd55ab711b1a00164 | http://temagt.com/images/pics/page2331.html || 2012-02-03 06:50:27 | sub16 | avira | HTML/Crypted.Gen | 25/41 (61%) | AS42926 | 176.53.18.45 | abuse@as42926.net | TR | RIPE | TR-RADORE-20110526 | 6c3635a05699e26829bf8a7f5595ce4c | http://temagt.com/images/pics/page547.html || 2012-02-03 06:50:27 | sub16 | avira | HTML/Crypted.Gen | 25/43 (58.1%) | AS42926 | 176.53.18.45 | abuse@as42926.net | TR | RIPE | TR-RADORE-20110526 | 0fb311608b52dbcc2e3d4485dbd35296 | http://temagt.com/images/pics/page571.html || 2012-02-03 06:50:27 | sub16 | avira | W32/Chir.B | 36/41 (87.8%) | AS36420, AS30315, AS13749, AS21844 | 174.120.155.158 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 55c39f6b8be8dde49a4261233d3efb29 | http://thaikdiamondshop.com/ || 2012-02-03 06:50:27 | sub16 | avira | JS/Crops.A | 21/42 (50%) | AS6245 | 206.188.192.27 | ipadmin@monstercommerce.com | US | ARIN | MONSTERCOMMERCE | 098117e29d759d8f332914daaaa4cce3 | http://timemachinehobby.com/index.php?option=com_eventlist&view=details&id=485:train-layouts-running&pop=1&tmpl=component&Itemid=18 || 2012-02-03 06:50:29 | sub16 | avira | ADSPY/NaviPromo.J | 13/43 (30.2%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | d3bb44d4265ca640e3499f33ac326d2c | http://www.file4me.com/recoverdeleteditems/recostemail.exe || 2012-02-03 06:17:12 | sub5 | undef | unknown_html_RFI_php | 0/42 (0.0%) | AS28666 | 189.1.164.87 | abuse@hospedagemdesite.com | BR | LACNIC | 006.943.198/0001-23 | 47b18c45df128a16b03b6d26a810c2c8 | http://189.1.164.87/tirr_stf/dsadds.txt? || 2012-02-03 07:00:30 | sub16 | eSafe | Win32.Banker | 2/43 (4.7%) | AS32475 | 69.175.66.250 | netops@singlehop.com | US | ARIN | SINGLEHOP | b32fb8566a9cda1964eae76abde0cb5d | http://driverbackup.antispywareconsumerreport.com/as/SpywareRemoverSoftware/Run-WindowsAdwareUtility.exe || 2012-02-03 07:00:42 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | 1e50a417fbd2c1cab011a39bf1049d9a | http://newantispywaresoft.com/ || 2012-02-03 07:00:46 | sub16 | AVG | Downloader.Generic12.AXIY.dropper | 17/43 (39.5%) | AS31147 | 178.18.243.172 | abuse@inline.de | DE | RIPE | DE-INLINE-20100427 | 529664981ec263d63dbe311f2ea57121 | http://psesinda.in/l.exe?rwmid=1&amp;wmid=284 || 2012-02-03 07:00:47 | sub16 | avira | JS/iFrame.psa.22 | 24/42 (57.1%) | AS34221 | 217.199.218.172 | dn@quickline.ru | RU | RIPE | QL-LAN-LL1 | 546b5d239e2192a128a5acfc9a344c0b | http://qaqalar.net/oxu/index.php?file=1-APREL-ZARAFATI-HAQQINDA.txt&kat=Maraqli-Melumatlar&view=2 || 2012-02-03 07:00:47 | sub16 | avira | JS/iFrame.psa.22 | 24/43 (55.8%) | AS34221 | 217.199.218.172 | dn@quickline.ru | RU | RIPE | QL-LAN-LL1 | 337c9ff74e4eb16edda08f10a6a2991d | http://qaqalar.net/oxu/index.php?file=QIYAMET-GUNUNUN-TESVIRI.txt&kat=Islam-Dini&view=2 || 2012-02-03 07:00:47 | sub16 | avira | JS/iFrame.psa.22 | 24/43 (55.8%) | AS34221 | 217.199.218.172 | dn@quickline.ru | RU | RIPE | QL-LAN-LL1 | bb4a97ecd7856ea2be91180d5e1a4d66 | http://qaqalar.net/oxu/index.php?kat=Letifeler&view=1 || 2012-02-03 07:00:47 | sub16 | undef | unknown_html_RFI_shell | 0/41 (0.0%) | AS18450 | 173.231.34.2 | NOC@webnx.com | US | ARIN | WEBNX-BLK-3 | a197ea184f98f1f81fe763e0ee31a91d | http://qatarsc.net/vb/archive/index.php?t-4630.html= || 2012-02-03 07:00:47 | sub16 | undef | unknown_file_$INSTDIR/GoogleTalkPasswordRecovery.exe | 0/43 (0.0%) | AS26496 | 184.168.229.155 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | 981e43c9f2c3ef4677484415d4f6e630 | http://recoverlostpassword.com/downloads/google_talk_password_recovery_trial.exe || 2012-02-03 07:00:47 | sub16 | avira | JS/Illredir.AJ.1 | 15/43 (34.9%) | AS35540 | 87.98.239.48 | abuse@ovh.net | PL | RIPE | PL-OVH | 2042c95af1cfd6b526176c6050574e0e | http://rejestartor.info/forum/viewtopic.php?f=9&t=33&start=0&st=0&sk=t&sd=a&sid=0d4678702e5018067f4128902c03d658&view=print || 2012-02-03 07:00:47 | sub16 | undef | unknown_html_RFI_shell | 0/42 (0.0%) | AS27823 | 200.58.111.28 | ipmaster@hostmar.com | AR | LACNIC | AR-DATT-LACNIC | f5d051a212e4d4ab2e335a79d840af66 | http://rrdecoraciones.com.ar/archivos/1309912776/js/index.php || 2012-02-03 07:00:47 | sub16 | undef | unknown_html_RFI_shell | 0/42 (0.0%) | AS27823 | 200.58.111.28 | ipmaster@hostmar.com | AR | LACNIC | AR-DATT-LACNIC | f5d051a212e4d4ab2e335a79d840af66 | http://rrdecoraciones.com.ar/archivos/1309912776/js/tam.php || 2012-02-03 07:00:47 | sub16 | DrWeb | SCRIPT.Virus | 2/43 (4.7%) | AS27823 | 200.58.111.28 | ipmaster@hostmar.com | AR | LACNIC | AR-DATT-LACNIC | 1feeb556817ff284de7ce0299a39cbb8 | http://rrdecoraciones.com.ar/archivos/1309913608/js/index.php || 2012-02-03 07:00:48 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 22/43 (51.2%) | AS2820 | 212.114.10.1 | abuse@telekom.ru | RU | RIPE | APREC-NET | f4dd654cf7814e84d506470c94a10c6e | http://rusmagistr.ru/forum/profile.php?mode=viewprofile&u=1360&sid=bbefe1553ad2514631aaf8a0a57dbb5d || 2012-02-03 07:00:48 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 22/43 (51.2%) | AS2820 | 212.114.10.1 | abuse@telekom.ru | RU | RIPE | APREC-NET | 923189650940014edfa52ef7de2b6f1f | http://rusmagistr.ru/forum/profile.php?mode=viewprofile&u=3489&sid=0b1aa0eefe8bc4feae7874ee82d4a288 || 2012-02-03 07:00:48 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 22/43 (51.2%) | AS2820 | 212.114.10.1 | abuse@telekom.ru | RU | RIPE | APREC-NET | de20416083505f3bf907b478a5afb339 | http://rusmagistr.ru/forum/profile.php?mode=viewprofile&u=3514&sid=07009680d785f4b3a41e55d4cc365413 || 2012-02-03 07:00:48 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 22/43 (51.2%) | AS2820 | 212.114.10.1 | abuse@telekom.ru | RU | RIPE | APREC-NET | bd4fe2280a259e4370658ad318d23b5a | http://rusmagistr.ru/forum/profile.php?mode=viewprofile&u=3536&sid=07009680d785f4b3a41e55d4cc365413 || 2012-02-03 07:00:48 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 22/43 (51.2%) | AS2820 | 212.114.10.1 | abuse@telekom.ru | RU | RIPE | APREC-NET | 5a5c8b8b24ce80a95ad2df374827c940 | http://rusmagistr.ru/forum/profile.php?mode=viewprofile&u=3541&sid=07009680d785f4b3a41e55d4cc365413 || 2012-02-03 07:00:48 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 21/42 (50%) | AS2820 | 212.114.10.1 | abuse@telekom.ru | RU | RIPE | APREC-NET | e865f1012dd50419477c0f123ac214e2 | http://rusmagistr.ru/forum/profile.php?mode=viewprofile&u=3548&sid=07009680d785f4b3a41e55d4cc365413 || 2012-02-03 07:00:48 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 22/43 (51.2%) | AS2820 | 212.114.10.1 | abuse@telekom.ru | RU | RIPE | APREC-NET | fe9bd831ddf8eada2d924152870f2425 | http://rusmagistr.ru/forum/profile.php?mode=viewprofile&u=3549&sid=15c9397be817d80b41996e4be99cbca9 || 2012-02-03 07:00:48 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 22/43 (51.2%) | AS2820 | 212.114.10.1 | abuse@telekom.ru | RU | RIPE | APREC-NET | 1f007b9000888f5769231fc80da9dfd9 | http://rusmagistr.ru/forum/profile.php?mode=viewprofile&u=3553&sid=c5f74acd3361f0efda62073f7dc0b766 || 2012-02-03 07:00:48 | sub16 | avira | JS/Agent.Bay.1 | 29/43 (67.4%) | AS26496 | 208.109.78.5 | abuse@godaddy.com | US | ARIN | GO-DADDY-SOFTWARE-INC | c56cbcdf68d21ff89627dfe099585c90 | http://safety-procedures.co.uk/ || 2012-02-03 07:00:48 | sub16 | avira | PHP/C99Shell.F | 30/42 (71.4%) | AS4812 | 116.228.169.69 | wengwq@online.sh.cn | CN | APNIC | CHINANET-SH | 4b7cf880d6786fe5e8139a8c085646ea | http://salimhome.com/bsxc/ipays.jpg || 2012-02-03 07:00:53 | sub16 | AntiVir | HTML/Crypted.Gen | 21/43 (48.8%) | AS9931 | 61.19.250.212 | abuse@idc.cattelecom.com | TH | APNIC | CAT-IDC-Service | 4f9ea7ac6cf819841ccac033629dbc8f | http://tupp.org/tupp2/modules.php?name=Private_Messages&file=index&mode=post&u=61%3Ascript30 || 2012-02-03 07:00:53 | sub16 | AntiVir | HTML/Crypted.Gen | 21/43 (48.8%) | AS9931 | 61.19.250.212 | abuse@idc.cattelecom.com | TH | APNIC | CAT-IDC-Service | 4f9ea7ac6cf819841ccac033629dbc8f | http://tupp.org/tupp2/modules.php?name=Private_Messages&file=index&mode=post&u=61%3Ascript33 || 2012-02-03 07:00:53 | sub16 | AntiVir | HTML/Crypted.Gen | 21/43 (48.8%) | AS9931 | 61.19.250.212 | abuse@idc.cattelecom.com | TH | APNIC | CAT-IDC-Service | 4f9ea7ac6cf819841ccac033629dbc8f | http://tupp.org/tupp2/modules.php?name=Private_Messages&file=index&mode=post&u=61%3Ascript37 || 2012-02-03 07:00:53 | sub16 | AntiVir | HTML/Crypted.Gen | 21/43 (48.8%) | AS9931 | 61.19.250.212 | abuse@idc.cattelecom.com | TH | APNIC | CAT-IDC-Service | 4f9ea7ac6cf819841ccac033629dbc8f | http://tupp.org/tupp2/modules.php?name=Private_Messages&file=index&mode=post&u=61%3Ascript38 || 2012-02-03 07:00:53 | sub16 | AntiVir | HTML/Crypted.Gen | 21/43 (48.8%) | AS9931 | 61.19.250.212 | abuse@idc.cattelecom.com | TH | APNIC | CAT-IDC-Service | 4f9ea7ac6cf819841ccac033629dbc8f | http://tupp.org/tupp2/modules.php?name=Private_Messages&file=index&mode=post&u=61%3Ascript40 || 2012-02-03 07:00:53 | sub16 | AntiVir | HTML/Crypted.Gen | 21/43 (48.8%) | AS9931 | 61.19.250.212 | abuse@idc.cattelecom.com | TH | APNIC | CAT-IDC-Service | 4f9ea7ac6cf819841ccac033629dbc8f | http://tupp.org/tupp2/modules.php?name=Private_Messages&file=index&mode=post&u=61%3Ascript41 || 2012-02-03 07:00:53 | sub16 | AntiVir | HTML/Crypted.Gen | 21/43 (48.8%) | AS9931 | 61.19.250.212 | abuse@idc.cattelecom.com | TH | APNIC | CAT-IDC-Service | 4f9ea7ac6cf819841ccac033629dbc8f | http://tupp.org/tupp2/modules.php?name=Private_Messages&file=index&mode=post&u=61%3Ascript43 || 2012-02-03 07:00:53 | sub16 | AntiVir | HTML/Crypted.Gen | 21/43 (48.8%) | AS9931 | 61.19.250.212 | abuse@idc.cattelecom.com | TH | APNIC | CAT-IDC-Service | 4f9ea7ac6cf819841ccac033629dbc8f | http://tupp.org/tupp2/modules.php?name=Private_Messages&file=index&mode=post&u=61%3Ascript47 || 2012-02-03 07:00:53 | sub16 | AntiVir | HTML/Crypted.Gen | 21/43 (48.8%) | AS9931 | 61.19.250.212 | abuse@idc.cattelecom.com | TH | APNIC | CAT-IDC-Service | 4f9ea7ac6cf819841ccac033629dbc8f | http://tupp.org/tupp2/modules.php?name=Private_Messages&file=index&mode=post&u=61%3Ascript55 || 2012-02-03 07:00:53 | sub16 | AntiVir | HTML/Crypted.Gen | 21/43 (48.8%) | AS9931 | 61.19.250.212 | abuse@idc.cattelecom.com | TH | APNIC | CAT-IDC-Service | 4f9ea7ac6cf819841ccac033629dbc8f | http://tupp.org/tupp2/modules.php?name=Private_Messages&file=index&mode=post&u=61%3Ascript67 || 2012-02-03 07:00:53 | sub16 | AntiVir | HTML/Crypted.Gen | 21/43 (48.8%) | AS9931 | 61.19.250.212 | abuse@idc.cattelecom.com | TH | APNIC | CAT-IDC-Service | 4f9ea7ac6cf819841ccac033629dbc8f | http://tupp.org/tupp2/modules.php?name=Private_Messages&file=index&mode=post&u=61%3Ascript70 || 2012-02-03 07:00:53 | sub16 | AntiVir | HTML/Crypted.Gen | 21/43 (48.8%) | AS9931 | 61.19.250.212 | abuse@idc.cattelecom.com | TH | APNIC | CAT-IDC-Service | 4f9ea7ac6cf819841ccac033629dbc8f | http://tupp.org/tupp2/modules.php?name=Private_Messages&file=index&mode=post&u=61%3Ascript73 || 2012-02-03 07:00:53 | sub16 | AntiVir | HTML/Crypted.Gen | 21/43 (48.8%) | AS9931 | 61.19.250.212 | abuse@idc.cattelecom.com | TH | APNIC | CAT-IDC-Service | 4f9ea7ac6cf819841ccac033629dbc8f | http://tupp.org/tupp2/modules.php?name=Private_Messages&file=index&mode=post&u=61%3Ascript74 || 2012-02-03 07:00:53 | sub16 | AntiVir | HTML/Crypted.Gen | 21/43 (48.8%) | AS9931 | 61.19.250.212 | abuse@idc.cattelecom.com | TH | APNIC | CAT-IDC-Service | 4f9ea7ac6cf819841ccac033629dbc8f | http://tupp.org/tupp2/modules.php?name=Private_Messages&file=index&mode=post&u=61%3Ascript75 |+---------------------+-------------+-------------+------------------------------------------------------+---------------+---------------------------------------------+-----------------+------------------------------+---------+--------+----------------------------------+----------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------+200 rows in set (0.03 sec)
+---------------------+-------------+-------------+-----------------------------------+---------------+------------------------------------+-----------------+------------------------------+---------+--------+-------------------------+----------------------------------+-------------------------------------------------------------------------------------------------------------------------------------------------------------+| date | contributor | scanner | virusname | vt_score | AS | review | email | country | source | netname | md5sum | url |+---------------------+-------------+-------------+-----------------------------------+---------------+------------------------------------+-----------------+------------------------------+---------+--------+-------------------------+----------------------------------+-------------------------------------------------------------------------------------------------------------------------------------------------------------+| 2012-02-03 07:00:53 | sub16 | AntiVir | HTML/Crypted.Gen | 21/43 (48.8%) | AS9931 | 61.19.250.212 | abuse@idc.cattelecom.com | TH | APNIC | CAT-IDC-Service | 4f9ea7ac6cf819841ccac033629dbc8f | http://tupp.org/tupp2/modules.php?name=Private_Messages&file=index&mode=post&u=61%3Ascript76 || 2012-02-03 07:00:53 | sub16 | AntiVir | HTML/Crypted.Gen | 21/43 (48.8%) | AS9931 | 61.19.250.212 | abuse@idc.cattelecom.com | TH | APNIC | CAT-IDC-Service | 4f9ea7ac6cf819841ccac033629dbc8f | http://tupp.org/tupp2/modules.php?name=Private_Messages&file=index&mode=post&u=61%3Ascript80 || 2012-02-03 07:00:53 | sub16 | AntiVir | HTML/Crypted.Gen | 21/43 (48.8%) | AS9931 | 61.19.250.212 | abuse@idc.cattelecom.com | TH | APNIC | CAT-IDC-Service | 4f9ea7ac6cf819841ccac033629dbc8f | http://tupp.org/tupp2/modules.php?name=Private_Messages&file=index&mode=post&ua%3Ascript0 || 2012-02-03 07:00:53 | sub16 | AntiVir | HTML/Crypted.Gen | 21/42 (50%) | AS9931 | 61.19.250.212 | abuse@idc.cattelecom.com | TH | APNIC | CAT-IDC-Service | 4f9ea7ac6cf819841ccac033629dbc8f | http://tupp.org/tupp2/modules.php?name=Private_Messages&file=index&mode=post&ua%3Ascript10 || 2012-02-03 07:00:53 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS21844 | 74.53.227.146 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 046760b14fa54181d958eed5a635d9dc | http://turquaz.com/en/A3/Shahnaz/Shahnaz/A4/A6/MT/A3/A4/A6/A6/A5/A5/Shahnaz/A6/A5/Shahnaz/A5 || 2012-02-03 07:00:53 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS21844 | 74.53.227.146 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 046760b14fa54181d958eed5a635d9dc | http://turquaz.com/en/A3/Shahnaz/Shahnaz/A4/A6/MT/A3/A4/A6/A6/A5/A5/Shahnaz/A6/A6/F6/Shahnaz || 2012-02-03 07:00:53 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS21844 | 74.53.227.146 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 046760b14fa54181d958eed5a635d9dc | http://turquaz.com/en/A3/Shahnaz/Shahnaz/A4/A6/MT/A3/A4/A6/A6/A5/A5/Shahnaz/F6/A4/A3/Shahnaz/Shahnaz || 2012-02-03 07:00:53 | sub16 | undef | unknown_html_RFI_php | 0/43 (0.0%) | AS21844 | 74.53.227.146 | abuse@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-14 | 046760b14fa54181d958eed5a635d9dc | http://turquaz.com/en/A3/Shahnaz/Shahnaz/A4/A6/MT/A3/A4/A6/A6/A5/A5/Shahnaz/MT/A6/A5/A6/A3 || 2012-02-03 07:00:53 | sub16 | avira | PHISH/TAM.A | 1/43 (2.3%) | AS9146 | 195.222.33.175 | routing@bih.net.ba | BA | RIPE | BA-BIHNET-970730 | 87cd809b66143071b28321043ebc0654 | http://tuzlataxi.com.ba/images/programa/ || 2012-02-03 07:00:54 | sub16 | avira | TR/Horse.BNK | 25/41 (61%) | AS13238 | 213.180.199.23 | abuse@yandex.ru | RU | RIPE | YANDEX-199 | 4ab9f4d4d768c0763d81107a0a612fd3 | http://uhfybn2005.narod.ru/nono-rus.rar || 2012-02-03 07:00:54 | sub16 | avira | ADWARE/Adware.Gen2 | 33/43 (76.7%) | AS48445 | 91.209.163.171 | abuse@favorit-network.com | ES | RIPE | FAVN-ES1 | 7480d7b777d25ea26f7a59d3f43833cc | http://updates.advert-network.com/binaries/bin.php?id=3D3D0&up=3D3D1&v=3D3D1×tamp=3D3D1309440068&checksum=3D3DF78D2D6BCC8C650004898589D5F9AEDF || 2012-02-03 07:00:54 | sub16 | Avast | HTML:Paylap-L [Trj] | 4/43 (9.3%) | AS3786 | 112.216.56.70 | shkim082@chol.com | KR | APNIC | BORANET-KR | 1a8024874d131f02120f9644cc6cc258 | http://us.ecitylife.net/imgs/pp/ || 2012-02-03 07:00:55 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 11/43 (25.6%) | AS32392 | 98.130.75.125 | abuse@ecommerce.com | US | ARIN | ECOMMERCE-HOSTING | 11731391f6b5a9d255d52534249dcb2f | http://vopac.org/pictures/building/window.php?15 || 2012-02-03 07:00:55 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 11/43 (25.6%) | AS32392 | 98.130.75.125 | abuse@ecommerce.com | US | ARIN | ECOMMERCE-HOSTING | b4d41757c20080637bddd062834ffa1f | http://vopac.org/pictures/building/window.php?7 || 2012-02-03 07:00:56 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS30058 | 74.63.113.227 | NOC@fdcservers.net | US | ARIN | FDCSERVERS | 9d8452d7adec2994491b89e91d1e2319 | http://www.cdhes.org.sv/consulta/aspnet_client/system_web/actualizacion/FB0481C5T5S8545F8H7H9S9DS/genDoc2.html || 2012-02-03 07:00:59 | sub16 | undef | unknown_exe | 0/43 (0.0%) | AS25489 | 62.93.5.110 | abuse@aquatix.de | DE | RIPE | DE-AQUATIX-20100106 | eca9245645c362900cf14dae4e20da7a | http://www.skullbyte.com/download/scynse-man-2.exe || 2012-02-03 07:01:39 | sub16 | undef | unknown_html_RFI_eval | 0/43 (0.0%) | AS4766 | 112.175.243.22 | abuse@kornet.net | KR | APNIC | KORNET-KR | b004df64ef7af195d47c801c28b33655 | http://wixihiqofanecud.co.cc/ || 2012-02-03 07:01:39 | sub16 | avira | HTML/Crypted.Gen | 22/43 (51.2%) | AS29073 | 80.82.69.148 | admin@ecatel.net | NL | RIPE | NL-ECATEL-20100816 | edd6f45ab36df5f9df8ee50209c39c45 | http://wtata.com/chat/blune/ || 2012-02-03 07:01:39 | sub16 | avira | HTML/Dldr.Agent.OB | 30/43 (69.8%) | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 1b5f4400e5a2d72bb483d7fc37b254d0 | http://wuya10.199138.com/image/wuya9/index1.asp || 2012-02-03 07:01:39 | sub16 | avira | HTML/Dldr.Agent.OB | 30/43 (69.8%) | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 44117347c1a8d233d469a5e853ba535b | http://wuya12.199138.com/image/wuya4/index1.asp || 2012-02-03 07:01:39 | sub16 | avira | HTML/Dldr.Agent.OB | 30/43 (69.8%) | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | f9705ded4dd0d1a0dca73ff563645caa | http://wuya13.199138.com/image/wuya5/index1.asp || 2012-02-03 07:01:39 | sub16 | avira | HTML/Dldr.Agent.OB | 29/42 (69%) | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 55b2b96d34063c3770acb8d9285eb898 | http://wuya14.199138.com/image/wuya14/index1.asp || 2012-02-03 07:01:39 | sub16 | avira | HTML/Dldr.Agent.OB | 30/43 (69.8%) | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 36225ad6a871067207cc1b5036e6bd04 | http://wuya14.199138.com/image/wuya6/index1.asp || 2012-02-03 07:01:39 | sub16 | avira | HTML/Dldr.Agent.OB | 30/43 (69.8%) | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 51d854f29b5e40d0a2f89f2f6fc84609 | http://wuya15.199138.com/image/wuya18/index1.asp || 2012-02-03 07:01:39 | sub16 | avira | HTML/Dldr.Agent.OB | 30/43 (69.8%) | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | c01f57c2f9cc6750f912d8966c816f5b | http://wuya15.199138.com/image/wuya7/index1.asp || 2012-02-03 07:01:43 | sub16 | avira | HTML/Dldr.Agent.OB | 30/43 (69.8%) | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 2e644946755cc8ced2a667dcc468a780 | http://y11.qingluo.net/files/Me122010/index1.asp || 2012-02-03 07:01:43 | sub16 | avira | HTML/Dldr.Agent.OB | 30/43 (69.8%) | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 370e648af28c3bee4b0ea028331530ac | http://y12.qingluo.net/G120B13/index1.asp || 2012-02-03 07:01:43 | sub16 | avira | HTML/Dldr.Agent.OB | 28/41 (68.3%) | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | ea78b5d8efa8d131107c9a1c007b5df0 | http://y13.qingluo.net/G120B20/index1.asp || 2012-02-03 07:01:43 | sub16 | avira | HTML/Dldr.Agent.OB | 30/43 (69.8%) | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 2549d4300dd253cd27f5038bfe40a4b4 | http://y13.qingluo.net/G120B2/index1.asp || 2012-02-03 07:01:43 | sub16 | avira | HTML/Dldr.Agent.OB | 30/43 (69.8%) | AS4134 | 60.173.9.58 | anti-spam@ns.chinanet.cn.net | CN | APNIC | CHINANET-AH | 259500a88649b23b251815f153bd642a | http://y14.qingluo.net/G120B9/index1.asp || 2012-02-03 07:20:34 | sub16 | avira | ADWARE/Agent.1892447.1 | 11/43 (25.6%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | 4a5af8bf2c26b391388eddd60b21d4d3 | http://toptenreport.com/download/systools-export-notes20.exe || 2012-02-03 07:20:40 | sub16 | avira | HTML/Infected.WebPage.Gen2 | 19/41 (46.3%) | AS48619 | 91.209.206.52 | abuse@so.ua | UA | RIPE | SOUA-NET | 0beff390e1ab348a67b12e275f34a757 | http://ycd-ru.hrworld.ru/guest/?22940 || 2012-02-03 07:30:18 | sub16 | avira | TR/Virtool.MSIL.Injector.8 | 9/43 (20.9%) | AS14618 | 23.21.194.218 | abuse@iana.org | US | ARIN | RESERVED-23 | 972aa4d3f5fcb52dd0aa12c53f1a59ca | http://dl.dropbox.com/u/52324326/MW3%20Level%20hack%20by%20Blackmetalcinema.rar || 2012-02-01 21:49:04 | sub17 | avira | HTML/Rce.Gen | 37/42 (88.1%) | AS33182 | 199.168.186.154 | abuse@dimenoc.com | US | ARIN | DIMENOC | e79bbf5180c48f2a2cc0bea41b4234d9 | http://om-gee.co.za || 2012-02-03 07:40:18 | sub16 | undef | unknown_html_RFI_shell | 0/43 (0.0%) | AS32613 | 174.142.215.122 | abuse@noc.privatedns.com | CA | ARIN | IWEB-BLK-06 | d819453252381714d1736278e68e9f02 | http://cobrancaeletronicarw.com/Fidelidade/index1.php?=eESTSnSjaLRbHZTbnc9CGTS7cycs43KFIDnv3CrWvXCpdR5fWmIWfYHphNma3QHuPG3he4nmqiLzOaNqPIkCyqp8nAKXH7t9AdFN || 2012-02-03 07:40:35 | sub16 | Avast | JS:Downloader-AZF [Trj] | 9/42 (21.4%) | AS577, AS6327, AS14366, AS19835 | 208.83.210.10 | SUPPORT@millenniumdata.com | CA | ARIN | MDS-CORE-VAUGHAN | 55cd9371889de64baa4d8e3c9f1736fa | http://www.crveneberetke.com/ || 2012-02-03 07:40:36 | sub16 | trendmicro | Mal_Hifrm | 11/42 (26.2%) | AS9394 | 122.70.138.208 | liujun66@sina.vip.com | CN | APNIC | Gold-Computer | ecb25e369f5312a758838c395510584c | http://www.newpartyworld.com/ || 2012-02-03 07:50:22 | sub16 | undef | unknown_html_google_malware | 0/43 (0.0%) | AS15146 | 208.87.35.103 | abuse@securehost.com | BS | ARIN | SECUREHOST | d187ffcb4c085dbcefdf296688178acd | http://oplanet.info/ || 2012-02-03 07:50:33 | sub16 | eSafe | Win32.PossibleThreat | 16/43 (37.2%) | AS32475 | 69.175.71.50 | netops@singlehop.com | US | ARIN | SINGLEHOP | b228af974dd17974a8901f5c387f09a5 | http://www.forex-signal-reviews.com/033/forex-signals-software/forex-signals-software.exe || 2012-02-03 07:50:33 | sub16 | trendmicro | TROJ_SPNR.15L411 | 29/43 (67.4%) | AS4908 | 207.155.253.114 | abuse@concentric.com | US | ARIN | XOXO-207-155-248-0 | a33bee047c0acfd4919ee1fabdc2dea3 | http://www.iron-condor.com/downloads/stsetup.exe || 2012-02-03 07:50:33 | sub16 | ClamAV | PUA.JS.Obfus-7 | 1/43 (2.3%) | AS30058 | 204.45.39.181 | abuse@fdcservers.net | US | ARIN | FDCSERVERS | 30742a400f69922e1869cc5f50c4e5d5 | http://www.kvixt07.com/player.exe || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.atm | 19/43 (44.2%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 74a24b0a7dd28c65eb7cb65da02f8e31 | http://108.59.5.66/content/fdp1.php?f=27 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.atm | 25/42 (59.5%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | ecd06215891189241cf12ea179b70f7c | http://108.59.5.66/content/fdp1.php?f=61 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.atm | 20/43 (46.5%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 55ef19388055defe8eb44070a14b0292 | http://108.59.5.66/content/fdp2.php?f=33 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.atm | 20/42 (47.6%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 131cd2c8e1366c07936fba6510d3c678 | http://108.59.5.66/content/fdp2.php?f=70 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.atm | 19/41 (46.3%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 3c4f2948d9e9f41e784076506145cd03 | http://108.59.5.66/content/fdp2.php?f=96 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.aou | 25/41 (61%) | AS21788 | 184.82.87.83 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | 0999d8d629ddc0e4ff491844dcc3ac3d | http://184.82.87.83/content/fdp1.php?f=0 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.aou | 20/36 (55.6%) | AS21788 | 184.82.87.83 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | b1d7f69cf7a236c8c82b342d988a4126 | http://184.82.87.83/content/fdp1.php?f=26 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.aou | 20/36 (55.6%) | AS21788 | 184.82.87.83 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | 7628030266bea21d2cc1bfd58d3fca45 | http://184.82.87.83/content/fdp1.php?f=38 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.aou | 26/43 (60.5%) | AS21788 | 184.82.87.83 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | 2cbdc9b42033a9d1938877be24959541 | http://184.82.87.83/content/fdp1.php?f=62 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.aou | 26/43 (60.5%) | AS21788 | 184.82.87.83 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | 9c33043c08d9c0eea15fd96036a3730a | http://184.82.87.83/content/fdp1.php?f=92 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Java.Blacole.K | 29/40 (72.5%) | AS21788 | 184.82.87.83 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | c69fcaa876e809a61d74e6a1d7fe822d | http://184.82.87.83/content/worms.jar || 2012-02-03 08:20:06 | sub24 | avira | TR/Crypt.ULPM.Gen | 8/43 (18.6%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | d115b90ff8ef479ac4934c963f2f57df | http://79.137.237.66/files/1248 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.atj | 23/43 (53.5%) | AS16265 | 83.149.112.116 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20040309 | f3fe3585b768724341c6b8d6e5f4857f | http://83.149.112.116/content/fdp1.php?f=29 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.atj | 23/43 (53.5%) | AS16265 | 83.149.112.116 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20040309 | 358db1b9b40b5e35e200099f41126f41 | http://83.149.112.116/content/fdp1.php?f=60 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.atj | 23/43 (53.5%) | AS16265 | 83.149.112.116 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20040309 | 03ae65ce98ed6f28fc5d59592cf652be | http://83.149.112.116/content/fdp1.php?f=87 || 2012-02-03 08:20:06 | sub24 | avira | TR/Crypt.ULPM.Gen | 8/43 (18.6%) | AS12695 | 79.137.237.66 | noc@msm.ru | RU | RIPE | DINETHOSTING | d115b90ff8ef479ac4934c963f2f57df | http://os8128.ru/files/1248 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.atm | 25/43 (58.1%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 1bde21fe76247362c4bb651e39591166 | http://108.59.5.66/content/fdp1.php?f=35 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.atm | 25/42 (59.5%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 0bc5ee07b69510d8e79b1ae98d17685b | http://108.59.5.66/content/fdp1.php?f=64 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.atm | 25/42 (59.5%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | f960cf944d8120f2fe6224dcc955a031 | http://108.59.5.66/content/fdp1.php?f=98 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.atm | 20/43 (46.5%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 0328660eefe74b4cc36faa7453ebbe7d | http://108.59.5.66/content/fdp2.php?f=30 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.atm | 20/43 (46.5%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 08b9b06da7b19750a5fa7e54c570668e | http://108.59.5.66/content/fdp2.php?f=60 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.atm | 18/41 (43.9%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 65cbc2e7ee7bd9090481daff6af95d53 | http://108.59.5.66/content/fdp2.php?f=97 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.aou | 26/43 (60.5%) | AS21788 | 184.82.87.83 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | d20b17acccbd44984326831abde2d6d2 | http://184.82.87.83/content/fdp1.php?f=68 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.atj | 23/43 (53.5%) | AS16265 | 83.149.112.116 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20040309 | 55550871efd7f303d619dcc68232702c | http://83.149.112.116/content/fdp1.php?f=68 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.atj | 23/43 (53.5%) | AS16265 | 83.149.112.116 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20040309 | 1df27ada3cc197aaceb2d1fc50712eb3 | http://83.149.112.116/content/fdp1.php?f=96 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.atm | 25/43 (58.1%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 2ff0c453a1bcd36f0500a16426a909cb | http://108.59.5.66/content/fdp1.php?f=26 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.atm | 25/43 (58.1%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 2f0fa82ddeb34fb958f6e9d3b2931122 | http://108.59.5.66/content/fdp1.php?f=51 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.atm | 25/43 (58.1%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | ba220e86aad3a3f81f7a763f34f0c377 | http://108.59.5.66/content/fdp1.php?f=77 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.atm | 20/42 (47.6%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | d3ebba8dca612c65813f9fa6690ae6e0 | http://108.59.5.66/content/fdp2.php?f=29 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.atm | 20/43 (46.5%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 0cac009c603a95b9cac74904c8c2e1fd | http://108.59.5.66/content/fdp2.php?f=53 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.atm | 20/42 (47.6%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 1a92e14769fb2e55b82c3975bbd8eecb | http://108.59.5.66/content/fdp2.php?f=78 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.aou | 26/43 (60.5%) | AS21788 | 184.82.87.83 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | 33eb3f470eea704fa0b2b5c35d1daa37 | http://184.82.87.83/content/fdp1.php?f=27 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.aou | 26/43 (60.5%) | AS21788 | 184.82.87.83 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | ddd7afc2f37c082746bf04812da74f37 | http://184.82.87.83/content/fdp1.php?f=48 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.aou | 26/43 (60.5%) | AS21788 | 184.82.87.83 | nic@hostnoc.net | US | ARIN | HOSTNOC-8BLK | 6e0e346a7ec07920c8c082b13977d453 | http://184.82.87.83/content/fdp1.php?f=77 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.atj | 23/43 (53.5%) | AS16265 | 83.149.112.116 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20040309 | cacf925cc2f4575746dd59d3ad2b882f | http://83.149.112.116/content/fdp1.php?f=33 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.atj | 23/43 (53.5%) | AS16265 | 83.149.112.116 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20040309 | b36d2b2f6e11e2bb82d0259f8c31f935 | http://83.149.112.116/content/fdp1.php?f=53 || 2012-02-03 08:20:06 | sub24 | avira | EXP/Pidief.atj | 23/43 (53.5%) | AS16265 | 83.149.112.116 | abuse@leaseweb.com | NL | RIPE | NL-LEASEWEB-20040309 | ed36e21e1d65d8f843156bdaab865fba | http://83.149.112.116/content/fdp1.php?f=89 || 2012-02-03 08:20:29 | sub16 | Avast | JS:Redirector-NH [Trj] | 14/43 (32.6%) | AS16276 | 213.186.33.87 | abuse@ovh.net | FR | RIPE | OVH | 7935d4efd3fafe560cbae692ed812378 | http://reserone.com/category/webdesign/ || 2012-02-03 08:20:29 | sub16 | avira | JS/Twetti.A | 20/42 (47.6%) | AS8560 | 74.208.42.100 | abuse@1and1.com | US | ARIN | 1AN1-NETWORK | 1ae458aa4068f01e20b889bb2734117d | http://richiet.com/blog/page/2/ || 2012-02-03 08:20:37 | sub16 | K7AntiVirus | Trojan | 5/43 (11.6%) | AS32475 | 69.175.71.50 | netops@singlehop.com | US | ARIN | SINGLEHOP | cb6045a502f084df4316b4f9de824d86 | http://www.virus-reporter.com/psp/pspdownloads/pspdownloads.exe || 2012-02-03 07:59:26 | sub5 | avira | TR/Agent.ehz.2 | 11/43 (25.6%) | AS15967 | 85.128.209.89 | abuse@netart.pl | PL | RIPE | NETART | 8002fa9a258820635b9966bd4321e7ba | http://emarkecik.pl/ksiegarnia/pub/id1.txt?? || 2012-02-03 08:40:54 | sub16 | avira | ADWARE/Relevant.G.1 | 7/43 (16.3%) | AS36351 | 74.86.54.224 | abuse@softlayer.com | US | ARIN | SOFTLAYER-NETBLOCK5 | b828b68a024720e556959fc62715d513 | http://www.dvdbackupexpress.com/gdownload/turtleodyssey.exe || 2012-02-03 05:49:44 | sub8 | undef | Trojan-Downloader.Win32.AutoIt.tm | 0/42 (0.0%) | AS36420, AS30315, AS13749, AS21844 | 174.120.202.34 | noc@theplanet.com | US | ARIN | NETBLK-THEPLANET-BLK-16 | 793bfe2693aadb9fa7f833a961ea7044 | http://orchidstoresecrets.com/ || 2012-01-31 17:45:15 | sub17 | avira | HTML/Drop.Agent.AB | 35/43 (81.4%) | AS27823 | 200.58.113.155 | ipmaster@hostmar.com | AR | LACNIC | AR-DATT-LACNIC | 879cdb87bd5fb62c5a9ac5174433b68b | http://h2solido.com.ar || 2012-02-03 09:00:32 | sub16 | AntiVir | GAME/Casino.Gen | 7/42 (16.7%) | AS852 | 207.34.202.12 | abuse@telus.com | CA | ARIN | TELUS-207-34-192-0 | 35b653810ce9011785ca15bed440a66e | http://download1.casinoaction.com/download/download.asp?file_name=casinoaction.exe&banner_tag=aff98347&casinoid=1650&lang=ES || 2012-02-03 09:10:30 | sub16 | avira | HTML/IFrame.pht | 14/43 (32.6%) | AS3356 | 216.55.97.155 | noc@iservice.net | CA | ARIN | SMSV-BLK-1 | 8f83adfb240913481f8de458f007a9dd | http://fantasyforums.com/forums/search.php?search_id=mini_cal || 2012-02-03 09:10:30 | sub16 | avira | HTML/IFrame.pht | 14/42 (33.3%) | AS3356 | 216.55.97.155 | noc@iservice.net | CA | ARIN | SMSV-BLK-1 | 5c2e95f67f3319e18f5fc7bc2fc760cc | http://fantasyforums.com/forums/viewtopic.php?p=1732 || 2012-02-03 09:10:31 | sub16 | avira | PHP/Shellbot.7642 | 32/42 (76.2%) | AS14141 | 98.142.215.182 | wnoc@wiresix.com | US | ARIN | WIRESIX | 4fa4fffc2447373c35419edab38264d0 | http://fileden.com/files/2012/2/1/3258461/zero.txt? || 2012-02-03 09:25:21 | sub5 | avira | HTML/Zones.Gen | 7/43 (16.3%) | AS11798 | 69.89.31.244 | abuse@bluehost.com | US | ARIN | BLUEHOST-NETWORK-1 | 3097c039c0d3c153fbac5c208f538673 | http://karainagar.com/images/bogel.php || 2012-02-03 09:31:18 | sub9 | avira | EXP/Pidief.att | 22/43 (51.2%) | AS31103 | 84.19.161.157 | abuse@vdswin.com | DE | RIPE | VDSWIN-I | 7c14b6fe73b483d6e2bf6257e84e5906 | http://84.19.161.157/content/adfp1.php?f=37 || 2012-02-03 09:31:36 | sub1 | AVG | Generic26.CJNO | 6/42 (14.3%) | AS32107 | 24.113.8.147 | wavecable@wavecable.com | US | ARIN | WAVEBROADBAND1 | 5a0d4ede96406a35b6dd553dffdd0827 | http://www.activelink.net/plugins/system/atualizacao201/Santander-v_2.01.exe || 2012-02-03 09:40:11 | sub24 | avira | EXP/Pidief.atm | | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | f4287151b45452b37928f2fa59414573 | http://108.59.5.66/content/fdp1.php?f=30 || 2012-02-03 09:40:11 | sub24 | avira | EXP/Pidief.atm | 25/42 (59.5%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 63dfd1343cfaba402fc11a5f75b81212 | http://108.59.5.66/content/fdp1.php?f=60 || 2012-02-03 09:40:11 | sub24 | avira | EXP/Pidief.atm | 25/43 (58.1%) | AS30633 | 108.59.5.66 | arin@leaseweb.com | US | ARIN | LEASEWEB-US | 815f4193aecd76b3b05cd11f17822f4e | http://108.59.5.66/content/fdp1.php?f=94 || 2012-02-03 09:40:11 | sub24
Topic: clean mx's daily dirt (Read 4065379 times)
