CLEAN MX realtime database
public access query for virus URL statistics
Totally watched: Walker is running: 8721(10587) http://www.cliente.gctuga.com/main.exe

you have also some phishing incidents open see: click here for these incidents (19)


you have also some portals incidents open see: click here for these incidents (50)

Subscribe to the VirusWatch Mailing list, updated hourly

This database consists of Virus URI, collected and verified since Feb 2006

If you detect URI'S concerning your netblock, already closed... you have made a good job, otherwise please close them as soon as possible.

to look at some nice charts, there are complete statisticsstatistics for this database
Attention: all URI'S are manually verified, but not cross-checked for real viruses function in this moment you make this query.(Sites may have been closed already..)
Our automatic Viruswalker process is scheduled every hour, so you may see now a incident and this one will be resolved later on.
So please keep on sending close-feedbacks to us...

if you have questions, criticism, wishes or ... do not hesitate to contact us at abuse@clean-mx.de
Our PBX is down you may reach us by cell phone +49 171 4802507 ...
malware impact on country jp
Welcome back, would be fine to get some feedback from your site..
Query as xml: Same query as xml output

Attention: column contributor=oscommerce, this indicates cases shop owners shall update their outdated os commerce installations a.s.a.p
TIMERS: Runtime Query: 3.8867 Seconds
helpLine help#descendigascending helpDatedescendigascending helpCloseddescendigascending helphours helpcontributordescendigascending helpvirusnamedescendigascending helpURLdescendigascending helpip state helpresponsedescendigascending helpIp initialdescendigascending helpAS#descendigascending helpip reviewdescendigascending helpURLdescendigascending helpDomaindescendigascending helpcountrydescendigascending helpsourcedescendigascending helpemaildescendigascending helpinetnumdescendigascending helpnetnamedescendigascending helpdescrdescendigascending helpns1descendigascending helpns2descendigascending helpns3descendigascending helpns4descendigascending helpns5descendigascending helpURLdescendigascending
1 follow up this item(1241850) 1241850 Report false positive Report closed case make a suggestion 2012-02-11 20:51:35     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
28/41 (68.3%) Trojan.Dropper.VBS.Q W32/Ramnit.a!htm Trojan VBS.Ramnit.T Win32/Ramnit.A VBS/Inor.DZ HTML/Ramnit.A VBS:Agent-KZ [Trj] VBS.Agent-62 Trojan-Dropper.VBS.Agent.bp Trojan.Dropper.VBS.Q Virus.VBS.Ramnit!IK TestSignature.VBS.TrojanDropper.Agent.~BP Trojan.Dropp lookup in virustotal.com (60472c8443d8888a60bd5074c3bee62a)-->[http://www.virustotal.com/latest-report.html?resource=60472c8443d8888a60bd5074c3bee62a]follow up this md5sum(60472c8443d8888a60bd5074c3bee62a)follow up this itemfollow up this virusname (HTML%2FRce.Gen) as RSS-FeedBlocked by google safebrowsing malwarelist click for analyse pagelookup Virusname at avirafollow up this malware(HTML%2FRce.Gen) for scanner (avira) in md5 table28/41 (68.3%) HTML/Rce.Gen
 Safe Virus-Viewer and Analyser may take a minute to complete http://intibali.biz/eng_spa/  up No previous evidence recordedSaved evidence (882533 Bytes) of last contact as txt March 13 2011 13:38:59 CET. aliveSaved log of last contact as txt February 11 2012 23:49:54 CET. SenderBaselookup 219.94.203.184 at Rus CERT university stuttgart germanylookup 219.94.203.184 at apnicfollow up this item(ip) in same window 219.94.203.184 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS9371) in networks tablefollow up this itemfollow up this AS (AS9371) as RSS-Feed AS9371 SenderBaselookup 219.94.203.184 at Rus CERT university stuttgart germanylookup 219.94.203.184 at apnicfollow up this item(review) in same window 219.94.203.184 Safe Virus-Viewer and Analyser may take a minute to complete http://intibali.biz/eng_spa/ follow up this domain(intibali.biz) intibali.biz follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (abuse@sakura.ad.jp) as RSS-Feed abuse@sakura.ad.jp follow up this itemfollow up this item 219.94.128.0 - 219.94.255.255 follow up this item SAKURA follow up this item SAKURA Internet Inc.Kyutaro-cho 1-8-15, Chuo-kuOsaka 541-0056, JapanSAKURA Internet Inc. follow up this item ns1.xserver.jp follow up this item ns2.xserver.jp follow up this item ns3.xserver.jp follow up this item ns4.xserver.jp follow up this item ns5.xserver.jp Safe Virus-Viewer and Analyser may take a minute to complete http://intibali.biz/eng_spa/
2 follow up this item(1240734) 1240734 Report false positive Report closed case make a suggestion 2012-02-11 20:10:31     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
26/40 (65%) VBS/Heur HTML/Rce.Gen VBS:Agent-KZ Trj Trojan.Dropper.VBS.Q VBS.Agent-62 TestSignature.VBS.TrojanDropper.Agent.~BP Trojan.Inor Virus.VBS.Ramnit!IK VBS/Inor.DZ Trojan.Dropper.VBS.Q VBS/Dropper.DL!tr Trojan.Dropper.VBS.Q Virus.VBS.Ramnit Trojan Trojan-Dro lookup in virustotal.com (ab0ed19b8b23679cf3263b6c1168def9)-->[http://www.virustotal.com/latest-report.html?resource=ab0ed19b8b23679cf3263b6c1168def9]follow up this md5sum(ab0ed19b8b23679cf3263b6c1168def9)follow up this itemfollow up this virusname (HTML%2FRce.Gen) as RSS-FeedBlocked by google safebrowsing malwarelist click for analyse pagelookup Virusname at avirafollow up this malware(HTML%2FRce.Gen) for scanner (avira) in md5 table26/40 (65%) HTML/Rce.Gen
 Safe Virus-Viewer and Analyser may take a minute to complete http://intibali.biz/indonesia_eo/  up No previous evidence recordedSaved evidence (1390650 Bytes) of last contact as txt March 13 2011 13:51:52 CET. aliveSaved log of last contact as txt February 12 2012 03:20:56 CET. SenderBaselookup 219.94.203.184 at Rus CERT university stuttgart germanylookup 219.94.203.184 at apnicfollow up this item(ip) in same window 219.94.203.184 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS9371) in networks tablefollow up this itemfollow up this AS (AS9371) as RSS-Feed AS9371 SenderBaselookup 219.94.203.184 at Rus CERT university stuttgart germanylookup 219.94.203.184 at apnicfollow up this item(review) in same window 219.94.203.184 Safe Virus-Viewer and Analyser may take a minute to complete http://intibali.biz/indonesia_eo/ follow up this domain(intibali.biz) intibali.biz follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (abuse@sakura.ad.jp) as RSS-Feed abuse@sakura.ad.jp follow up this itemfollow up this item 219.94.128.0 - 219.94.255.255 follow up this item SAKURA follow up this item SAKURA Internet Inc.Kyutaro-cho 1-8-15, Chuo-kuOsaka 541-0056, JapanSAKURA Internet Inc. follow up this item ns1.xserver.jp follow up this item ns2.xserver.jp follow up this item ns3.xserver.jp follow up this item ns4.xserver.jp follow up this item ns5.xserver.jp Safe Virus-Viewer and Analyser may take a minute to complete http://intibali.biz/indonesia_eo/
3 follow up this item(1240406) 1240406 Report false positive Report closed case make a suggestion 2012-02-11 19:30:30     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
19/40 (47.5%) TR/Dropper.Gen Win32:OnLineGames-GGI Trj Trojan.Generic.KDV.531393 (Suspicious) - DNAScan PUA.Packed.ASPack Trojan.PWS.Gamania.34036 Trojan.Win32.Vundo.AMN!A2 W32/RLPacked.A.gen!Eldorado Trojan.Generic.KDV.531393 Trojan.Generic.KDV.531393 Unwanted-Progr lookup in virustotal.com (59e3791e05efa1b04403349bedba9f7b)-->[http://www.virustotal.com/latest-report.html?resource=59e3791e05efa1b04403349bedba9f7b]lookup in threatexpert.comlookup the sha256(0bb6aba8d222c487ddd7e6381957abe295648c99577cf471c44d8d46e5cb56ac) in comodo.comfollow up this md5sum(59e3791e05efa1b04403349bedba9f7b)follow up this itemfollow up this virusname (TR%2FDropper.Gen) as RSS-Feedlookup Virusname at avirafollow up this malware(TR%2FDropper.Gen) for scanner (avira) in md5 table19/40 (47.5%) TR/Dropper.Gen
 Safe Virus-Viewer and Analyser may take a minute to complete http://lozih.com/css/ly/yyy.exe  up No previous evidence recordedSaved evidence (63108 Bytes) of last contact as txt February 10 2012 14:49:27 CET. aliveSaved log of last contact as txt February 12 2012 06:36:51 CET. SenderBaselookup 126.117.65.146 at Rus CERT university stuttgart germanylookup 126.117.65.146 at apnicfollow up this item(ip) in same window 126.117.65.146 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS17676) in networks tablefollow up this itemfollow up this AS (AS17676) as RSS-Feed AS17676 SenderBaselookup 126.117.65.146 at Rus CERT university stuttgart germanylookup 126.117.65.146 at apnicfollow up this item(review) in same window 126.117.65.146 Safe Virus-Viewer and Analyser may take a minute to complete http://lozih.com/css/ly/yyy.exe follow up this domain(lozih.com) lozih.com follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (hostmaster@bbtec.net) as RSS-Feed hostmaster@bbtec.net follow up this itemfollow up this item 126.0.0.0 - 126.255.255.255 follow up this item BBTEC follow up this item Japan Nation-wide Network of Softbank BB Corp. follow up this item ns66.domaincontrol.com follow up this item ns65.domaincontrol.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://lozih.com/css/ly/yyy.exe
4 follow up this item(1240386) 1240386 Report false positive Report closed case make a suggestion 2012-02-11 19:20:03     follow up this itemfollow up this contributor (Paretologic.com) as RSS-Feed sub10possible lookup Evidence at malwaredomainlist.com
24/40 (60%) Win-Trojan/Pincav.28672.AV TR/Pincav.agsd Trojan/Win32.Pincav.gen TrojWare.Win32.Agent.~jdw Win32.HLLW.Riplip.94 Trojan.Win32.Pincav!IK W32/Pincav.AGSD!tr Trojan.Win32.Pincav Trojan/Pincav.ijv Trojan Trojan.Win32.Pincav.agsd Generic.dx!vjc Generic.dx!vj lookup in virustotal.com (642ef29e0194075c830d0f2a418d8fce)-->[http://www.virustotal.com/latest-report.html?resource=642ef29e0194075c830d0f2a418d8fce]lookup in threatexpert.comlookup the sha256(50cc09617912edf3a5077fb09fe540803e6c467a7bff6417bc41d02d60c39d76) in comodo.comfollow up this md5sum(642ef29e0194075c830d0f2a418d8fce)follow up this itemfollow up this virusname (TR%2FPincav.agsd) as RSS-Feedlookup Virusname at avirafollow up this malware(TR%2FPincav.agsd) for scanner (avira) in md5 table24/40 (60%) TR/Pincav.agsd
 Safe Virus-Viewer and Analyser may take a minute to complete http://211.121.253.132/vct/set.rar  up No previous evidence recordedSaved evidence (28672 Bytes) of last contact as txt May 28 2010 09:57:06 CEST. aliveSaved log of last contact as txt February 12 2012 06:39:32 CET. SenderBaselookup 211.121.253.132 at Rus CERT university stuttgart germanylookup 211.121.253.132 at apnicfollow up this item(ip) in same window 211.121.253.132 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4694) in networks tablefollow up this itemfollow up this AS (AS4694) as RSS-Feed AS4694 SenderBaselookup 211.121.253.132 at Rus CERT university stuttgart germanylookup 211.121.253.132 at apnicfollow up this item(review) in same window 211.121.253.132 Safe Virus-Viewer and Analyser may take a minute to complete http://211.121.253.132/vct/set.rar follow up this domain(211.121.253.132) 211.121.253.132 follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (tokamoto@sbidc.jp) as RSS-Feed tokamoto@sbidc.jp follow up this itemfollow up this item 211.120.0.0 - 211.135.255.255 follow up this item JPNIC-NET-JP follow up this item Japan Network Information CenterGlobal Media Online inc. follow up this item  follow up this item  follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://211.121.253.132/vct/set.rar
5 follow up this item(1240387) 1240387 Report false positive Report closed case make a suggestion 2012-02-11 19:20:03     follow up this itemfollow up this contributor (Paretologic.com) as RSS-Feed sub10possible lookup Evidence at malwaredomainlist.com
39/43 (90.7%) Trojan/W32.Agent.73728.BEV Worm.Autorun.ZJ5 W32/Autorun.worm.bbt EmailWorm Trojan/AutoRun.Agent.ym Worm.Autorun.Gen.25 Win32/AutoRun.Agent.YM W32/AutoRun.P.gen!Eldorado Trojan.KillAV W32/SmallTroj.ZNSY WORM_RIPLIP.SMI Win32:AutoRun-BRN [Trj] Trojan.Autor lookup in virustotal.com (18e5da59b683484730243b307f299092)-->[http://www.virustotal.com/latest-report.html?resource=18e5da59b683484730243b307f299092]lookup in threatexpert.comlookup the sha256(8af47ec4fd1d14e492ff15d10a106db8eb23a2f4e98d081c0b38c819723a75e2) in comodo.comfollow up this md5sum(18e5da59b683484730243b307f299092)follow up this itemfollow up this virusname (DIAL%2FDialer.Gen) as RSS-Feedlookup Virusname at avirafollow up this malware(DIAL%2FDialer.Gen) for scanner (avira) in md5 table39/43 (90.7%) DIAL/Dialer.Gen
 Safe Virus-Viewer and Analyser may take a minute to complete http://211.121.253.132/vct/vel19.rar  up No previous evidence recordedSaved evidence (73728 Bytes) of last contact as txt February 12 2012 06:38:02 CET. aliveSaved log of last contact as txt February 12 2012 06:39:24 CET. SenderBaselookup 211.121.253.132 at Rus CERT university stuttgart germanylookup 211.121.253.132 at apnicfollow up this item(ip) in same window 211.121.253.132 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4694) in networks tablefollow up this itemfollow up this AS (AS4694) as RSS-Feed AS4694 SenderBaselookup 211.121.253.132 at Rus CERT university stuttgart germanylookup 211.121.253.132 at apnicfollow up this item(review) in same window 211.121.253.132 Safe Virus-Viewer and Analyser may take a minute to complete http://211.121.253.132/vct/vel19.rar follow up this domain(211.121.253.132) 211.121.253.132 follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (tokamoto@sbidc.jp) as RSS-Feed tokamoto@sbidc.jp follow up this itemfollow up this item 211.120.0.0 - 211.135.255.255 follow up this item JPNIC-NET-JP follow up this item Japan Network Information CenterGlobal Media Online inc. follow up this item  follow up this item  follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://211.121.253.132/vct/vel19.rar
6 follow up this item(1235036) 1235036 Report false positive Report closed case make a suggestion 2012-02-11 09:53:47     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
27/40 (67.5%) JS/Redir.AU HTML/FakeAlert.I HTML:Iframe-LH Trj Trojan.Redirector.JS.AG TestSignature.JS.Downloader.Agent.KA Trojan-Downloader.HTML.Renos!IK JS/Crypted.Q.gen Trojan.Redirector.JS.AG JS/Agent.NVV!tr Trojan.Redirector.JS.AG Trojan-Downloader.HTML.Renos Tr lookup in virustotal.com (d67d1f006c3123b1e8b773b580fdcf24)-->[http://www.virustotal.com/latest-report.html?resource=d67d1f006c3123b1e8b773b580fdcf24]follow up this md5sum(d67d1f006c3123b1e8b773b580fdcf24)follow up this itemfollow up this virusname (HTML%2FFakeAlert.I) as RSS-FeedBlocked by google safebrowsing malwarelist click for analyse pagelookup Virusname at avirafollow up this malware(HTML%2FFakeAlert.I) for scanner (avira) in md5 table27/40 (67.5%) HTML/FakeAlert.I
 Safe Virus-Viewer and Analyser may take a minute to complete http://hogratie.searchnavi.jp/idy2na3wz/ ...  up No previous evidence recordedSaved evidence (12841 Bytes) of last contact as txt May 19 2009 14:45:03 CEST. aliveSaved log of last contact as txt February 11 2012 13:18:24 CET. SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(ip) in same window 61.194.62.161 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS2514) in networks tablefollow up this itemfollow up this AS (AS2514) as RSS-Feed AS2514 SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(review) in same window 61.194.62.161 Safe Virus-Viewer and Analyser may take a minute to complete http://hogratie.searchnavi.jp/idy2na3wz/ ... follow up this domain(searchnavi.jp) searchnavi.jp follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (higuchim@nttpc.co.jp) as RSS-Feed higuchim@nttpc.co.jp follow up this itemfollow up this item 61.194.56.0 - 61.194.63.255 follow up this item INFOSPHERE follow up this item InfoSphere (NTTPC Communications, Inc.) follow up this item ns2.muryou-rs.jp follow up this item ns.muryou-rs.jp follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://hogratie.searchnavi.jp/idy2na3wz/ ...
7 follow up this item(1235025) 1235025 Report false positive Report closed case make a suggestion 2012-02-11 09:53:44     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
23/40 (57.5%) JS/Downloader.Agent HTML/Crypted.Gen HTML:Iframe-EP Trj JS:Exploit.JS.Redirector.F JS.Agent-119 JS.Redirector.53 Trojan.JS.Agent!IK JS/Linker.BK.gen JS:Exploit.JS.Redirector.F JS/ObRedirect.B!tr JS:Exploit.JS.Redirector.F Trojan.JS.Agent Trojan Trojan.J lookup in virustotal.com (e0f6eca78043fe519a24a22843032827)-->[http://www.virustotal.com/latest-report.html?resource=e0f6eca78043fe519a24a22843032827]follow up this md5sum(e0f6eca78043fe519a24a22843032827)follow up this itemfollow up this virusname (HTML%2FCrypted.Gen) as RSS-Feedlookup Virusname at avirafollow up this malware(HTML%2FCrypted.Gen) for scanner (avira) in md5 table23/40 (57.5%) HTML/Crypted.Gen
 Safe Virus-Viewer and Analyser may take a minute to complete http://gamechariot.com/guestbook/public/ ...  up No previous evidence recordedSaved evidence (8034 Bytes) of last contact as txt September 17 2008 18:41:18 CEST. aliveSaved log of last contact as txt February 11 2012 13:19:37 CET. SenderBaselookup 61.115.228.131 at Rus CERT university stuttgart germanylookup 61.115.228.131 at apnicfollow up this item(ip) in same window 61.115.228.131 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4713) in networks tablefollow up this itemfollow up this AS (AS4713) as RSS-Feed AS4713 SenderBaselookup 61.115.228.131 at Rus CERT university stuttgart germanylookup 61.115.228.131 at apnicfollow up this item(review) in same window 61.115.228.131 Safe Virus-Viewer and Analyser may take a minute to complete http://gamechariot.com/guestbook/public/ ... follow up this domain(gamechariot.com) gamechariot.com follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (jpnictech@ocn.ad.jp) as RSS-Feed jpnictech@ocn.ad.jp follow up this itemfollow up this item 61.112.0.0 - 61.127.255.255 follow up this item JPNIC-NET-JP follow up this item Japan Network Information CenterOpen Computer Network follow up this item ns08.joeswebhosting.net follow up this item ns99.joeswebhosting.net follow up this item ns04.joeswebhosting.net follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://gamechariot.com/guestbook/public/ ...
8 follow up this item(1234152) 1234152 Report false positive Report closed case make a suggestion 2012-02-11 08:50:51     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
27/40 (67.5%) JS/Redir.AU HTML/FakeAlert.I HTML:Iframe-LH Trj Trojan.Redirector.JS.AG TestSignature.JS.Downloader.Agent.KA Trojan-Downloader.HTML.Renos!IK JS/Crypted.Q.gen Trojan.Redirector.JS.AG JS/Agent.NVV!tr Trojan.Redirector.JS.AG Trojan-Downloader.HTML.Renos Tr lookup in virustotal.com (4210f1541d9d16772d82c2d0aae1c512)-->[http://www.virustotal.com/latest-report.html?resource=4210f1541d9d16772d82c2d0aae1c512]follow up this md5sum(4210f1541d9d16772d82c2d0aae1c512)follow up this itemfollow up this virusname (HTML%2FFakeAlert.I) as RSS-Feedlookup Virusname at avirafollow up this malware(HTML%2FFakeAlert.I) for scanner (avira) in md5 table27/40 (67.5%) HTML/FakeAlert.I
 Safe Virus-Viewer and Analyser may take a minute to complete http://hathomas.searchnavi.jp/dup1rt7it/ ...  up No previous evidence recordedSaved evidence (6791 Bytes) of last contact as txt May 14 2009 21:54:45 CEST. aliveSaved log of last contact as txt February 11 2012 15:55:57 CET. SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(ip) in same window 61.194.62.161 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS2514) in networks tablefollow up this itemfollow up this AS (AS2514) as RSS-Feed AS2514 SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(review) in same window 61.194.62.161 Safe Virus-Viewer and Analyser may take a minute to complete http://hathomas.searchnavi.jp/dup1rt7it/ ... follow up this domain(searchnavi.jp) searchnavi.jp follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (higuchim@nttpc.co.jp) as RSS-Feed higuchim@nttpc.co.jp follow up this itemfollow up this item 61.194.56.0 - 61.194.63.255 follow up this item INFOSPHERE follow up this item InfoSphere (NTTPC Communications, Inc.) follow up this item ns2.muryou-rs.jp follow up this item ns.muryou-rs.jp follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://hathomas.searchnavi.jp/dup1rt7it/ ...
9 follow up this item(1233649) 1233649 Report false positive Report closed case make a suggestion 2012-02-11 08:14:28     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
30/38 (78.9%) HTML/Framer HTML/Agent HTML/Dldr.Agent.LA HTML:Iframe-NR Trj Trojan.Script.18369 VirTool.JS/Obfuscator JS.Redirect-2 UnclassifiedMalware JS.Redirector.20 Trojan-Downloader.JS.Iframe!IK JS/Redir.N Trojan.Script.18369 HTML/IFrame.XA!tr.dldr Trojan.Script. lookup in virustotal.com (48c72bb9e7bed5363c83cf6f6ffc270c)-->[http://www.virustotal.com/latest-report.html?resource=48c72bb9e7bed5363c83cf6f6ffc270c]follow up this md5sum(48c72bb9e7bed5363c83cf6f6ffc270c)follow up this itemfollow up this virusname (HTML%2FDldr.Agent.LA) as RSS-FeedBlocked by google safebrowsing malwarelist click for analyse pagelookup Virusname at avirafollow up this malware(HTML%2FDldr.Agent.LA) for scanner (avira) in md5 table30/38 (78.9%) HTML/Dldr.Agent.LA
 Safe Virus-Viewer and Analyser may take a minute to complete http://ss2music.com/  up No previous evidence recordedSaved evidence (32086 Bytes) of last contact as txt June 23 2009 12:46:14 CEST. aliveSaved log of last contact as txt February 11 2012 17:25:24 CET. SenderBaselookup 220.151.238.227 at Rus CERT university stuttgart germanylookup 220.151.238.227 at apnicfollow up this item(ip) in same window 220.151.238.227 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS17506) in networks tablefollow up this itemfollow up this AS (AS17506) as RSS-Feed AS17506 SenderBaselookup 220.151.238.227 at Rus CERT university stuttgart germanylookup 220.151.238.227 at apnicfollow up this item(review) in same window 220.151.238.227 Safe Virus-Viewer and Analyser may take a minute to complete http://ss2music.com/ follow up this domain(ss2music.com) ss2music.com follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (abuse@ucom.ne.jp) as RSS-Feed abuse@ucom.ne.jp follow up this itemfollow up this item 220.151.0.0 - 220.151.255.255 follow up this item usen follow up this item UCOM Corp.4-4-5 Aobadai, Meguro-ku, Tokyobroadgate follow up this item dns1.name-services.com follow up this item dns2.name-services.com follow up this item dns3.name-services.com follow up this item dns4.name-services.com follow up this item dns5.name-services.com Safe Virus-Viewer and Analyser may take a minute to complete http://ss2music.com/
10 follow up this item(1229002) 1229002 Report false positive Report closed case make a suggestion 2012-02-10 22:32:36     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
26/42 (61.9%) JS:Exploit.JS.Redirector.F Trojan JS.Crypt.UQLH JS/TrojanDownloader.Agent.NUE JS/Linker.BK.gen JS/Agent.VD HTML:Iframe-EP [Trj] JS.Agent-119 Trojan.JS.Agent.bpb JS:Exploit.JS.Redirector.F Mal/Badsrc-C UnclassifiedMalware JS:Exploit.JS.Redirector.F JS.Red lookup in virustotal.com (2d40198f85adb1eff2d051f3d8df3175)-->[http://www.virustotal.com/latest-report.html?resource=2d40198f85adb1eff2d051f3d8df3175]follow up this md5sum(2d40198f85adb1eff2d051f3d8df3175)follow up this itemfollow up this virusname (HTML%2FCrypted.Gen) as RSS-Feedlookup Virusname at avirafollow up this malware(HTML%2FCrypted.Gen) for scanner (avira) in md5 table26/42 (61.9%) HTML/Crypted.Gen
 Safe Virus-Viewer and Analyser may take a minute to complete http://remifasolasi.com/klavier/css/styl ...  up No previous evidence recordedSaved evidence (8042 Bytes) of last contact as txt September 24 2008 19:05:09 CEST. aliveSaved log of last contact as txt February 10 2012 23:45:55 CET. SenderBaselookup 61.115.228.131 at Rus CERT university stuttgart germanylookup 61.115.228.131 at apnicfollow up this item(ip) in same window 61.115.228.131 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4713) in networks tablefollow up this itemfollow up this AS (AS4713) as RSS-Feed AS4713 SenderBaselookup 61.115.228.131 at Rus CERT university stuttgart germanylookup 61.115.228.131 at apnicfollow up this item(review) in same window 61.115.228.131 Safe Virus-Viewer and Analyser may take a minute to complete http://remifasolasi.com/klavier/css/styl ... follow up this domain(remifasolasi.com) remifasolasi.com follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (jpnictech@ocn.ad.jp) as RSS-Feed jpnictech@ocn.ad.jp follow up this itemfollow up this item 61.112.0.0 - 61.127.255.255 follow up this item JPNIC-NET-JP follow up this item Japan Network Information CenterOpen Computer Network follow up this item ns08.joeswebhosting.net follow up this item ns99.joeswebhosting.net follow up this item ns04.joeswebhosting.net follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://remifasolasi.com/klavier/css/styl ...
11 follow up this item(1227689) 1227689 Report false positive Report closed case make a suggestion 2012-02-10 21:05:20     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
0/43 (0.0%) lookup in virustotal.com (585d2f9f185aa0b73f19d2f5df4552b9)-->[http://www.virustotal.com/latest-report.html?resource=585d2f9f185aa0b73f19d2f5df4552b9]follow up this md5sum(585d2f9f185aa0b73f19d2f5df4552b9)follow up this itemfollow up this virusname (unknown_html) as RSS-Feedfollow up this malware(unknown_html) for scanner (undef) in md5 table0/43 (0.0%) unknown_html
 Safe Virus-Viewer and Analyser may take a minute to complete http://www.loadcash.biz/adverts/soft/blo ...  up No previous evidence recordedSaved evidence (1666 Bytes) of last contact as txt February 10 2012 21:42:31 CET. aliveSaved log of last contact as txt February 10 2012 21:42:31 CET. SenderBaselookup 210.157.1.134 at Rus CERT university stuttgart germanylookup 210.157.1.134 at apnicfollow up this item(ip) in same window 210.157.1.134 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS7506) in networks tablefollow up this itemfollow up this AS (AS7506) as RSS-Feed AS7506 SenderBaselookup 210.157.1.134 at Rus CERT university stuttgart germanylookup 210.157.1.134 at apnicfollow up this item(review) in same window 210.157.1.134 Safe Virus-Viewer and Analyser may take a minute to complete http://www.loadcash.biz/adverts/soft/blo ... follow up this domain(loadcash.biz) loadcash.biz follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (warita@gmo.jp) as RSS-Feed warita@gmo.jp follow up this itemfollow up this item 210.157.0.0 - 210.157.15.255 follow up this item INTERQ follow up this item Global Media Online inc. follow up this item  follow up this item  follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://www.loadcash.biz/adverts/soft/blo ...
12 follow up this item(1224262) 1224262 Report false positive Report closed case make a suggestion 2012-02-10 18:08:20     follow up this itemfollow up this contributor (clean-mx.de) as RSS-Feed sub1possible lookup Evidence at malwaredomainlist.com
0/40 (0.0%) virustotal no evidence lookup in virustotal.com (76ce4a45d0826a598c5ad66c3f3fee8d)-->[http://www.virustotal.com/latest-report.html?resource=76ce4a45d0826a598c5ad66c3f3fee8d]follow up this md5sum(76ce4a45d0826a598c5ad66c3f3fee8d)follow up this itemfollow up this virusname (unknown_html) as RSS-Feedfollow up this malware(unknown_html) for scanner (undef) in md5 table0/40 (0.0%) unknown_html
 Safe Virus-Viewer and Analyser may take a minute to complete http://bmj.sakura.ne.jp/n2.html  up No previous evidence recordedSaved evidence (73 Bytes) of last contact as txt February 10 2012 08:27:08 CET. aliveSaved log of last contact as txt February 10 2012 18:48:39 CET. SenderBaselookup 219.94.160.163 at Rus CERT university stuttgart germanylookup 219.94.160.163 at apnicfollow up this item(ip) in same window 219.94.160.163 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS9371) in networks tablefollow up this itemfollow up this AS (AS9371) as RSS-Feed AS9371 SenderBaselookup 219.94.160.163 at Rus CERT university stuttgart germanylookup 219.94.160.163 at apnicfollow up this item(review) in same window 219.94.160.163 Safe Virus-Viewer and Analyser may take a minute to complete http://bmj.sakura.ne.jp/n2.html follow up this domain(sakura.ne.jp) sakura.ne.jp follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (abuse@sakura.ad.jp) as RSS-Feed abuse@sakura.ad.jp follow up this itemfollow up this item 219.94.128.0 - 219.94.255.255 follow up this item SAKURA follow up this item SAKURA Internet Inc.Kyutaro-cho 1-8-15, Chuo-kuOsaka 541-0056, JapanSAKURA Internet Inc. follow up this item ns1.dns.ne.jp follow up this item ns2.dns.ne.jp follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://bmj.sakura.ne.jp/n2.html
13 follow up this item(1223979) 1223979 Report false positive Report closed case make a suggestion 2012-02-10 12:50:06     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
19/40 (47.5%) JS/Agent.alf JS:Iframe-DV Trj Trojan.JS.QNC PUA.HTML.Crypt TestSignature.JS.iframe.YU JS.IFrame.178 Trojan.IframeRef!IK Trojan.JS.QNC JS/Kryptik.EG!tr Trojan.JS.QNC Trojan.IframeRef Trojan:JS/Iframe.AC JS/Kryptik.EG JS/Exploit.MC Mal/Iframe-Gen JS_IFRAM lookup in virustotal.com (1ef20d0d89f33374a43972f4091a70f7)-->[http://www.virustotal.com/latest-report.html?resource=1ef20d0d89f33374a43972f4091a70f7]follow up this md5sum(1ef20d0d89f33374a43972f4091a70f7)follow up this itemfollow up this virusname (JS%2FAgent.alf) as RSS-Feedlookup Virusname at avirafollow up this malware(JS%2FAgent.alf) for scanner (avira) in md5 table19/40 (47.5%) JS/Agent.alf
 Safe Virus-Viewer and Analyser may take a minute to complete http://elanjapan.co.jp/ski/index.html  up No previous evidence recordedSaved evidence (4768 Bytes) of last contact as txt January 03 2012 23:41:17 CET. aliveSaved log of last contact as txt February 10 2012 13:38:06 CET. SenderBaselookup 210.157.5.15 at Rus CERT university stuttgart germanylookup 210.157.5.15 at apnicfollow up this item(ip) in same window 210.157.5.15 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS7506) in networks tablefollow up this itemfollow up this AS (AS7506) as RSS-Feed AS7506 SenderBaselookup 210.157.5.15 at Rus CERT university stuttgart germanylookup 210.157.5.15 at apnicfollow up this item(review) in same window 210.157.5.15 Safe Virus-Viewer and Analyser may take a minute to complete http://elanjapan.co.jp/ski/index.html follow up this domain(elanjapan.co.jp) elanjapan.co.jp follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (warita@gmo.jp) as RSS-Feed warita@gmo.jp follow up this itemfollow up this item 210.157.0.0 - 210.157.15.255 follow up this item INTERQ follow up this item Global Media Online inc. follow up this item dns01.gmoserver.jp follow up this item dns02.gmoserver.jp follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://elanjapan.co.jp/ski/index.html
14 follow up this item(1222634) 1222634 Report false positive Report closed case make a suggestion 2012-02-09 15:00:05     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
0/40 (0.0%) virustotal no evidence lookup in virustotal.com (fafa86ef849d8dfbd5a69af2fc80995c)-->[http://www.virustotal.com/latest-report.html?resource=fafa86ef849d8dfbd5a69af2fc80995c]follow up this md5sum(fafa86ef849d8dfbd5a69af2fc80995c)follow up this itemfollow up this virusname (unknown_html_RFI_php) as RSS-Feedfollow up this malware(unknown_html_RFI_php) for scanner (undef) in md5 table0/40 (0.0%) unknown_html_RFI_php
 Safe Virus-Viewer and Analyser may take a minute to complete http://asakusa-kagetudo.com/  up No previous evidence recordedSaved evidence (30875 Bytes) of last contact as txt February 09 2012 15:15:59 CET. aliveSaved log of last contact as txt February 09 2012 15:16:00 CET. SenderBaselookup 210.172.144.27 at Rus CERT university stuttgart germanylookup 210.172.144.27 at apnicfollow up this item(ip) in same window 210.172.144.27 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS7506) in networks tablefollow up this itemfollow up this AS (AS7506) as RSS-Feed AS7506 SenderBaselookup 210.172.144.27 at Rus CERT university stuttgart germanylookup 210.172.144.27 at apnicfollow up this item(review) in same window 210.172.144.27 Safe Virus-Viewer and Analyser may take a minute to complete http://asakusa-kagetudo.com/ follow up this domain(asakusa-kagetudo.com) asakusa-kagetudo.com follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (warita@gmo.jp) as RSS-Feed warita@gmo.jp follow up this itemfollow up this item 210.172.128.0 - 210.172.191.255 follow up this item INTERQ follow up this item Global Media Online inc. follow up this item uns01.lolipop.jp follow up this item uns02.lolipop.jp follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://asakusa-kagetudo.com/
15 follow up this item(1221761) 1221761 Report false positive Report closed case make a suggestion 2012-02-09 08:20:42     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
30/42 (71.4%) Trojan.Redirector.JS.AG Generic FakeAlert.ai Trojan JS.Redirector.Gen.6 JS/TrojanDownloader.Agent.NVV JS/Crypted.Q.gen Trojan.Malscript!html JS/Agent.WB HTML_AGENT.SCP HTML:Iframe-LH [Trj] Trojan.Redirector.JS.AG Troj/JSRedir-S TestSignature.JS.Downloade lookup in virustotal.com (a17fb9388c103f2a0705602b18905ef3)-->[http://www.virustotal.com/latest-report.html?resource=a17fb9388c103f2a0705602b18905ef3]follow up this md5sum(a17fb9388c103f2a0705602b18905ef3)follow up this itemfollow up this virusname (HTML%2FFakeAlert.I) as RSS-FeedBlocked by google safebrowsing malwarelist click for analyse pagelookup Virusname at avirafollow up this malware(HTML%2FFakeAlert.I) for scanner (avira) in md5 table30/42 (71.4%) HTML/FakeAlert.I
 Safe Virus-Viewer and Analyser may take a minute to complete http://muvreela.searchnavi.jp/3jy4hxu1d/ ...  up No previous evidence recordedSaved evidence (15168 Bytes) of last contact as txt May 13 2009 00:50:29 CEST. aliveSaved log of last contact as txt February 09 2012 09:35:42 CET. SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(ip) in same window 61.194.62.161 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS2514) in networks tablefollow up this itemfollow up this AS (AS2514) as RSS-Feed AS2514 SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(review) in same window 61.194.62.161 Safe Virus-Viewer and Analyser may take a minute to complete http://muvreela.searchnavi.jp/3jy4hxu1d/ ... follow up this domain(searchnavi.jp) searchnavi.jp follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (higuchim@nttpc.co.jp) as RSS-Feed higuchim@nttpc.co.jp follow up this itemfollow up this item 61.194.56.0 - 61.194.63.255 follow up this item INFOSPHERE follow up this item InfoSphere (NTTPC Communications, Inc.) follow up this item ns.muryou-rs.jp follow up this item ns2.muryou-rs.jp follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://muvreela.searchnavi.jp/3jy4hxu1d/ ...
16 follow up this item(1221405) 1221405 Report false positive Report closed case make a suggestion 2012-02-09 07:46:00     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
28/40 (70%) JS/Redir.AT HTML/FakeAlert.I HTML:Iframe-LH Trj Trojan.Redirector.JS.AG TestSignature.JS.Downloader.Agent.KA JS.Click.76 Trojan-Downloader.HTML.Renos!IK JS/Crypted.Q.gen Trojan.Redirector.JS.AG JS/Agent.NVV!tr Trojan.Redirector.JS.AG Trojan-Downloader.H lookup in virustotal.com (e9e99f24f79dd565ca528c030117a134)-->[http://www.virustotal.com/latest-report.html?resource=e9e99f24f79dd565ca528c030117a134]follow up this md5sum(e9e99f24f79dd565ca528c030117a134)follow up this itemfollow up this virusname (HTML%2FFakeAlert.I) as RSS-Feedlookup Virusname at avirafollow up this malware(HTML%2FFakeAlert.I) for scanner (avira) in md5 table28/40 (70%) HTML/FakeAlert.I
 Safe Virus-Viewer and Analyser may take a minute to complete http://izpe4.searchnavi.jp/gygp84bex/  up No previous evidence recordedSaved evidence (18104 Bytes) of last contact as txt May 09 2009 01:11:53 CEST. aliveSaved log of last contact as txt February 09 2012 12:17:29 CET. SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(ip) in same window 61.194.62.161 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS2514) in networks tablefollow up this itemfollow up this AS (AS2514) as RSS-Feed AS2514 SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(review) in same window 61.194.62.161 Safe Virus-Viewer and Analyser may take a minute to complete http://izpe4.searchnavi.jp/gygp84bex/ follow up this domain(searchnavi.jp) searchnavi.jp follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (higuchim@nttpc.co.jp) as RSS-Feed higuchim@nttpc.co.jp follow up this itemfollow up this item 61.194.56.0 - 61.194.63.255 follow up this item INFOSPHERE follow up this item InfoSphere (NTTPC Communications, Inc.) follow up this item ns.muryou-rs.jp follow up this item ns2.muryou-rs.jp follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://izpe4.searchnavi.jp/gygp84bex/
17 follow up this item(1221407) 1221407 Report false positive Report closed case make a suggestion 2012-02-09 07:46:00     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
26/38 (68.4%) JS/Redir.AU HTML/FakeAlert.I HTML:Iframe-LH Trj Trojan.Redirector.JS.AG TestSignature.JS.Downloader.Agent.KA JS.Click.81 Trojan-Downloader.HTML.Renos!IK JS/Crypted.Q.gen Trojan.Redirector.JS.AG JS/Agent.NVV!tr Trojan.Redirector.JS.AG Trojan-Downloader.H lookup in virustotal.com (19887f91cbd3820e8da1ab13267762a8)-->[http://www.virustotal.com/latest-report.html?resource=19887f91cbd3820e8da1ab13267762a8]follow up this md5sum(19887f91cbd3820e8da1ab13267762a8)follow up this itemfollow up this virusname (HTML%2FFakeAlert.I) as RSS-Feedlookup Virusname at avirafollow up this malware(HTML%2FFakeAlert.I) for scanner (avira) in md5 table26/38 (68.4%) HTML/FakeAlert.I
 Safe Virus-Viewer and Analyser may take a minute to complete http://jakemonky.searchnavi.jp/hgvml1jjx ...  up No previous evidence recordedSaved evidence (18818 Bytes) of last contact as txt May 11 2009 12:15:28 CEST. aliveSaved log of last contact as txt February 09 2012 12:17:17 CET. SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(ip) in same window 61.194.62.161 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS2514) in networks tablefollow up this itemfollow up this AS (AS2514) as RSS-Feed AS2514 SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(review) in same window 61.194.62.161 Safe Virus-Viewer and Analyser may take a minute to complete http://jakemonky.searchnavi.jp/hgvml1jjx ... follow up this domain(searchnavi.jp) searchnavi.jp follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (higuchim@nttpc.co.jp) as RSS-Feed higuchim@nttpc.co.jp follow up this itemfollow up this item 61.194.56.0 - 61.194.63.255 follow up this item INFOSPHERE follow up this item InfoSphere (NTTPC Communications, Inc.) follow up this item ns.muryou-rs.jp follow up this item ns2.muryou-rs.jp follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://jakemonky.searchnavi.jp/hgvml1jjx ...
18 follow up this item(1221361) 1221361 Report false positive Report closed case make a suggestion 2012-02-09 07:45:49     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
28/40 (70%) JS/Redir.AT HTML/FakeAlert.I HTML:Iframe-LH Trj Trojan.Redirector.JS.AG TestSignature.JS.Downloader.Agent.KA JS.Click.80 Trojan-Downloader.HTML.Renos!IK JS/Crypted.Q.gen Trojan.Redirector.JS.AG JS/Agent.NVV!tr Trojan.Redirector.JS.AG Trojan-Downloader.H lookup in virustotal.com (9d3de8be9babc73af3de034de45270e0)-->[http://www.virustotal.com/latest-report.html?resource=9d3de8be9babc73af3de034de45270e0]follow up this md5sum(9d3de8be9babc73af3de034de45270e0)follow up this itemfollow up this virusname (HTML%2FFakeAlert.I) as RSS-Feedlookup Virusname at avirafollow up this malware(HTML%2FFakeAlert.I) for scanner (avira) in md5 table28/40 (70%) HTML/FakeAlert.I
 Safe Virus-Viewer and Analyser may take a minute to complete http://bosaxton.searchnavi.jp/nvw1dzjom/ ...  up No previous evidence recordedSaved evidence (12967 Bytes) of last contact as txt May 19 2009 15:42:34 CEST. aliveSaved log of last contact as txt February 09 2012 12:29:47 CET. SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(ip) in same window 61.194.62.161 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS2514) in networks tablefollow up this itemfollow up this AS (AS2514) as RSS-Feed AS2514 SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(review) in same window 61.194.62.161 Safe Virus-Viewer and Analyser may take a minute to complete http://bosaxton.searchnavi.jp/nvw1dzjom/ ... follow up this domain(searchnavi.jp) searchnavi.jp follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (higuchim@nttpc.co.jp) as RSS-Feed higuchim@nttpc.co.jp follow up this itemfollow up this item 61.194.56.0 - 61.194.63.255 follow up this item INFOSPHERE follow up this item InfoSphere (NTTPC Communications, Inc.) follow up this item ns.muryou-rs.jp follow up this item ns2.muryou-rs.jp follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://bosaxton.searchnavi.jp/nvw1dzjom/ ...
19 follow up this item(1221242) 1221242 Report false positive Report closed case make a suggestion 2012-02-09 06:57:06     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
28/40 (70%) JS/Redir.AU HTML/FakeAlert.I HTML:Iframe-LH Trj Trojan.Redirector.JS.AG TestSignature.JS.Downloader.Agent.KA JS.Click.77 Trojan-Downloader.HTML.Renos!IK JS/Crypted.Q.gen Trojan.Redirector.JS.AG JS/Agent.NVV!tr Trojan.Redirector.JS.AG Trojan-Downloader.H lookup in virustotal.com (e613bd7374c02f36b32f62a9977ba706)-->[http://www.virustotal.com/latest-report.html?resource=e613bd7374c02f36b32f62a9977ba706]follow up this md5sum(e613bd7374c02f36b32f62a9977ba706)follow up this itemfollow up this virusname (HTML%2FFakeAlert.I) as RSS-FeedBlocked by google safebrowsing malwarelist click for analyse pagelookup Virusname at avirafollow up this malware(HTML%2FFakeAlert.I) for scanner (avira) in md5 table28/40 (70%) HTML/FakeAlert.I
 Safe Virus-Viewer and Analyser may take a minute to complete http://hogratie.searchnavi.jp/f3iug6l68/ ...  up No previous evidence recordedSaved evidence (13483 Bytes) of last contact as txt May 19 2009 14:34:08 CEST. aliveSaved log of last contact as txt February 09 2012 12:46:49 CET. SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(ip) in same window 61.194.62.161 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS2514) in networks tablefollow up this itemfollow up this AS (AS2514) as RSS-Feed AS2514 SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(review) in same window 61.194.62.161 Safe Virus-Viewer and Analyser may take a minute to complete http://hogratie.searchnavi.jp/f3iug6l68/ ... follow up this domain(searchnavi.jp) searchnavi.jp follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (higuchim@nttpc.co.jp) as RSS-Feed higuchim@nttpc.co.jp follow up this itemfollow up this item 61.194.56.0 - 61.194.63.255 follow up this item INFOSPHERE follow up this item InfoSphere (NTTPC Communications, Inc.) follow up this item ns.muryou-rs.jp follow up this item ns2.muryou-rs.jp follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://hogratie.searchnavi.jp/f3iug6l68/ ...
20 follow up this item(1221243) 1221243 Report false positive Report closed case make a suggestion 2012-02-09 06:57:06     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
27/40 (67.5%) JS/Redir.AR HTML/FakeAlert.I HTML:Iframe-LH Trj Trojan.Redirector.JS.AG TestSignature.JS.Downloader.Agent.KA Trojan-Downloader.HTML.Renos!IK JS/Crypted.Q.gen Trojan.Redirector.JS.AG JS/Agent.NVV!tr Trojan.Redirector.JS.AG Trojan-Downloader.HTML.Renos Tr lookup in virustotal.com (537491277f46b85563596046d8881b75)-->[http://www.virustotal.com/latest-report.html?resource=537491277f46b85563596046d8881b75]follow up this md5sum(537491277f46b85563596046d8881b75)follow up this itemfollow up this virusname (HTML%2FFakeAlert.I) as RSS-FeedBlocked by google safebrowsing malwarelist click for analyse pagelookup Virusname at avirafollow up this malware(HTML%2FFakeAlert.I) for scanner (avira) in md5 table27/40 (67.5%) HTML/FakeAlert.I
 Safe Virus-Viewer and Analyser may take a minute to complete http://hogratie.searchnavi.jp/xdo3fhn34/ ...  up No previous evidence recordedSaved evidence (13315 Bytes) of last contact as txt May 19 2009 14:47:25 CEST. aliveSaved log of last contact as txt February 09 2012 12:46:42 CET. SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(ip) in same window 61.194.62.161 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS2514) in networks tablefollow up this itemfollow up this AS (AS2514) as RSS-Feed AS2514 SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(review) in same window 61.194.62.161 Safe Virus-Viewer and Analyser may take a minute to complete http://hogratie.searchnavi.jp/xdo3fhn34/ ... follow up this domain(searchnavi.jp) searchnavi.jp follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (higuchim@nttpc.co.jp) as RSS-Feed higuchim@nttpc.co.jp follow up this itemfollow up this item 61.194.56.0 - 61.194.63.255 follow up this item INFOSPHERE follow up this item InfoSphere (NTTPC Communications, Inc.) follow up this item ns.muryou-rs.jp follow up this item ns2.muryou-rs.jp follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://hogratie.searchnavi.jp/xdo3fhn34/ ...
21 follow up this item(1221244) 1221244 Report false positive Report closed case make a suggestion 2012-02-09 06:57:06     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
27/40 (67.5%) JS/Redir.AU HTML/FakeAlert.I HTML:Iframe-LH Trj Trojan.Redirector.JS.AG TestSignature.JS.Downloader.Agent.KA Trojan-Downloader.HTML.Renos!IK JS/Crypted.Q.gen Trojan.Redirector.JS.AG JS/Agent.NVV!tr Trojan.Redirector.JS.AG Trojan-Downloader.HTML.Renos Tr lookup in virustotal.com (7270247ff5e13e36821b7a87695d0fb2)-->[http://www.virustotal.com/latest-report.html?resource=7270247ff5e13e36821b7a87695d0fb2]follow up this md5sum(7270247ff5e13e36821b7a87695d0fb2)follow up this itemfollow up this virusname (HTML%2FFakeAlert.I) as RSS-FeedBlocked by google safebrowsing malwarelist click for analyse pagelookup Virusname at avirafollow up this malware(HTML%2FFakeAlert.I) for scanner (avira) in md5 table27/40 (67.5%) HTML/FakeAlert.I
 Safe Virus-Viewer and Analyser may take a minute to complete http://hogratie.searchnavi.jp/y1t4u39px/ ...  up No previous evidence recordedSaved evidence (13476 Bytes) of last contact as txt May 19 2009 14:42:56 CEST. aliveSaved log of last contact as txt February 09 2012 12:46:31 CET. SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(ip) in same window 61.194.62.161 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS2514) in networks tablefollow up this itemfollow up this AS (AS2514) as RSS-Feed AS2514 SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(review) in same window 61.194.62.161 Safe Virus-Viewer and Analyser may take a minute to complete http://hogratie.searchnavi.jp/y1t4u39px/ ... follow up this domain(searchnavi.jp) searchnavi.jp follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (higuchim@nttpc.co.jp) as RSS-Feed higuchim@nttpc.co.jp follow up this itemfollow up this item 61.194.56.0 - 61.194.63.255 follow up this item INFOSPHERE follow up this item InfoSphere (NTTPC Communications, Inc.) follow up this item ns.muryou-rs.jp follow up this item ns2.muryou-rs.jp follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://hogratie.searchnavi.jp/y1t4u39px/ ...
22 follow up this item(1221077) 1221077 Report false positive Report closed case make a suggestion 2012-02-09 06:47:06     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
22/40 (55%) JS/Downloader.Agent HTML/Crypted.Gen HTML:Iframe-EP Trj JS:Exploit.JS.Redirector.F JS.Agent-119 JS.Redirector.53 Trojan.JS.Agent!IK JS/Linker.BK.gen JS:Exploit.JS.Redirector.F JS:Exploit.JS.Redirector.F Trojan.JS.Agent Trojan Trojan.JS.Agent.bpb Heurist lookup in virustotal.com (de1a2582248743b68d848d77dc466483)-->[http://www.virustotal.com/latest-report.html?resource=de1a2582248743b68d848d77dc466483]follow up this md5sum(de1a2582248743b68d848d77dc466483)follow up this itemfollow up this virusname (HTML%2FCrypted.Gen) as RSS-Feedlookup Virusname at avirafollow up this malware(HTML%2FCrypted.Gen) for scanner (avira) in md5 table22/40 (55%) HTML/Crypted.Gen
 Safe Virus-Viewer and Analyser may take a minute to complete http://ftkmusic.com/guestbook/public/ima ...  up No previous evidence recordedSaved evidence (7678 Bytes) of last contact as txt February 09 2012 13:17:06 CET. aliveSaved log of last contact as txt February 09 2012 13:17:06 CET. SenderBaselookup 61.115.228.131 at Rus CERT university stuttgart germanylookup 61.115.228.131 at apnicfollow up this item(ip) in same window 61.115.228.131 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4713) in networks tablefollow up this itemfollow up this AS (AS4713) as RSS-Feed AS4713 SenderBaselookup 61.115.228.131 at Rus CERT university stuttgart germanylookup 61.115.228.131 at apnicfollow up this item(review) in same window 61.115.228.131 Safe Virus-Viewer and Analyser may take a minute to complete http://ftkmusic.com/guestbook/public/ima ... follow up this domain(ftkmusic.com) ftkmusic.com follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (jpnictech@ocn.ad.jp) as RSS-Feed jpnictech@ocn.ad.jp follow up this itemfollow up this item 61.112.0.0 - 61.127.255.255 follow up this item JPNIC-NET-JP follow up this item Japan Network Information CenterOpen Computer Network follow up this item ns08.joeswebhosting.net follow up this item ns99.joeswebhosting.net follow up this item ns04.joeswebhosting.net follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://ftkmusic.com/guestbook/public/ima ...
23 follow up this item(1221021) 1221021 Report false positive Report closed case make a suggestion 2012-02-09 06:47:03     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
28/40 (70%) JS/Redir.AR HTML/FakeAlert.I HTML:Iframe-LH Trj Trojan.Redirector.JS.AG TestSignature.JS.Downloader.Agent.KA JS.Click.81 Trojan-Downloader.HTML.Renos!IK JS/Crypted.Q.gen Trojan.Redirector.JS.AG JS/Agent.NVV!tr Trojan.Redirector.JS.AG Trojan-Downloader.H lookup in virustotal.com (dcb62ce73a34ad037135b4c0e34b14e5)-->[http://www.virustotal.com/latest-report.html?resource=dcb62ce73a34ad037135b4c0e34b14e5]follow up this md5sum(dcb62ce73a34ad037135b4c0e34b14e5)follow up this itemfollow up this virusname (HTML%2FFakeAlert.I) as RSS-Feedlookup Virusname at avirafollow up this malware(HTML%2FFakeAlert.I) for scanner (avira) in md5 table28/40 (70%) HTML/FakeAlert.I
 Safe Virus-Viewer and Analyser may take a minute to complete http://dirtyrulenta.searchnavi.jp/zvtomi ...  up No previous evidence recordedSaved evidence (15714 Bytes) of last contact as txt May 08 2009 00:11:15 CEST. aliveSaved log of last contact as txt February 09 2012 13:27:19 CET. SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(ip) in same window 61.194.62.161 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS2514) in networks tablefollow up this itemfollow up this AS (AS2514) as RSS-Feed AS2514 SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(review) in same window 61.194.62.161 Safe Virus-Viewer and Analyser may take a minute to complete http://dirtyrulenta.searchnavi.jp/zvtomi ... follow up this domain(searchnavi.jp) searchnavi.jp follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (higuchim@nttpc.co.jp) as RSS-Feed higuchim@nttpc.co.jp follow up this itemfollow up this item 61.194.56.0 - 61.194.63.255 follow up this item INFOSPHERE follow up this item InfoSphere (NTTPC Communications, Inc.) follow up this item ns.muryou-rs.jp follow up this item ns2.muryou-rs.jp follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://dirtyrulenta.searchnavi.jp/zvtomi ...
24 follow up this item(1217700) 1217700 Report false positive Report closed case make a suggestion 2012-02-08 10:57:22     follow up this itemfollow up this contributor (clean-mx.de) as RSS-Feed sub1possible lookup Evidence at malwaredomainlist.com
1/38 (2.6%) TrojanDownloader:Win32/Banload.ACI lookup in virustotal.com (125310f950e3b53193d64c2a48922030)-->[http://www.virustotal.com/latest-report.html?resource=125310f950e3b53193d64c2a48922030]lookup in threatexpert.comlookup the sha256(307064271fe6d5dc3ad46656bef4a7fac9bab4cd9b59596317eb2a8cd9b6f559) in comodo.comfollow up this md5sum(125310f950e3b53193d64c2a48922030)follow up this itemfollow up this virusname (TrojanDownloader%3AWin32%2FBanload.ACI) as RSS-Feedfollow up this malware(TrojanDownloader%3AWin32%2FBanload.ACI) for scanner (Microsoft) in md5 table1/38 (2.6%) TrojanDownloader:Win32/Banload.ACI
 Safe Virus-Viewer and Analyser may take a minute to complete http://146.141.221.202.bf.2iij.net/inc/v ...  up No previous evidence recordedSaved evidence (642560 Bytes) of last contact as txt February 08 2012 03:31:34 CET. aliveSaved log of last contact as txt February 08 2012 11:46:50 CET. SenderBaselookup 202.221.141.146 at Rus CERT university stuttgart germanylookup 202.221.141.146 at apnicfollow up this item(ip) in same window 202.221.141.146 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS2503) in networks tablefollow up this itemfollow up this AS (AS2503) as RSS-Feed AS2503 SenderBaselookup 202.221.141.146 at Rus CERT university stuttgart germanylookup 202.221.141.146 at apnicfollow up this item(review) in same window 202.221.141.146 Safe Virus-Viewer and Analyser may take a minute to complete http://146.141.221.202.bf.2iij.net/inc/v ... follow up this domain(2iij.net) 2iij.net follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (jin@ipc.akita-nct.ac.jp) as RSS-Feed jin@ipc.akita-nct.ac.jp follow up this itemfollow up this item 202.220.0.0 - 202.225.255.255 follow up this item JPNIC-NET-JP follow up this item Japan Network Information CenterC&C Internet Service mesh (NEC Corporation) follow up this item dns0.iij.ad.jp follow up this item dns1.iij.ad.jp follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://146.141.221.202.bf.2iij.net/inc/v ...
25 follow up this item(1217105) 1217105 Report false positive Report closed case make a suggestion 2012-02-08 07:10:06     follow up this itemfollow up this contributor (commodo results) as RSS-Feed sub20possible lookup Evidence at malwaredomainlist.com
0/43 (0.0%) lookup in virustotal.com (e4cb56f3fc11e2fa693bf35a530cfc14)-->[http://www.virustotal.com/latest-report.html?resource=e4cb56f3fc11e2fa693bf35a530cfc14]follow up this md5sum(e4cb56f3fc11e2fa693bf35a530cfc14)follow up this itemfollow up this virusname (unknown_html) as RSS-Feedfollow up this malware(unknown_html) for scanner (undef) in md5 table0/43 (0.0%) unknown_html
 Safe Virus-Viewer and Analyser may take a minute to complete http://ulie.me/bot/getcmd.php?uid=517250 ...  up No previous evidence recordedSaved evidence (4 Bytes) of last contact as txt February 08 2012 08:06:42 CET. aliveSaved log of last contact as txt February 08 2012 08:06:42 CET. SenderBaselookup 49.212.24.40 at Rus CERT university stuttgart germanylookup 49.212.24.40 at apnicfollow up this item(ip) in same window 49.212.24.40 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS9371) in networks tablefollow up this itemfollow up this AS (AS9371) as RSS-Feed AS9371 SenderBaselookup 49.212.24.40 at Rus CERT university stuttgart germanylookup 49.212.24.40 at apnicfollow up this item(review) in same window 49.212.24.40 Safe Virus-Viewer and Analyser may take a minute to complete http://ulie.me/bot/getcmd.php?uid=517250 ... follow up this domain(ulie.me) ulie.me follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (tanaka-nic@sakura.ad.jp) as RSS-Feed tanaka-nic@sakura.ad.jp follow up this itemfollow up this item 49.212.24.0 - 49.212.24.255 follow up this item SAKURA-NET follow up this item SAKURA Internet Inc. follow up this item ns1.hover.com follow up this item ns2.hover.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://ulie.me/bot/getcmd.php?uid=517250 ...
helpLine help#descendigascending helpDatedescendigascending helpCloseddescendigascending helphours helpcontributordescendigascending helpvirusnamedescendigascending helpURLdescendigascending helpip state helpresponsedescendigascending helpIp initialdescendigascending helpAS#descendigascending helpip reviewdescendigascending helpURLdescendigascending helpDomaindescendigascending helpcountrydescendigascending helpsourcedescendigascending helpemaildescendigascending helpinetnumdescendigascending helpnetnamedescendigascending helpdescrdescendigascending helpns1descendigascending helpns2descendigascending helpns3descendigascending helpns4descendigascending helpns5descendigascending helpURLdescendigascending
26 follow up this item(1216929) 1216929 Report false positive Report closed case make a suggestion 2012-02-08 06:20:16     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
22/40 (55%) JS/Downloader.Agent HTML/Crypted.Gen HTML:Iframe-EP Trj JS:Exploit.JS.Redirector.F JS.Agent-119 JS.Redirector.53 Trojan.JS.Agent!IK JS/Linker.BK.gen JS:Exploit.JS.Redirector.F JS/ObRedirect.B!tr JS:Exploit.JS.Redirector.F Trojan.JS.Agent Trojan Heuristi lookup in virustotal.com (ed15b4d1ad69174bf29b3e209dd5da8b)-->[http://www.virustotal.com/latest-report.html?resource=ed15b4d1ad69174bf29b3e209dd5da8b]follow up this md5sum(ed15b4d1ad69174bf29b3e209dd5da8b)follow up this itemfollow up this virusname (HTML%2FCrypted.Gen) as RSS-Feedlookup Virusname at avirafollow up this malware(HTML%2FCrypted.Gen) for scanner (avira) in md5 table22/40 (55%) HTML/Crypted.Gen
 Safe Virus-Viewer and Analyser may take a minute to complete http://n-robo.com/skin/images/pics/text1 ...  up No previous evidence recordedSaved evidence (8175 Bytes) of last contact as txt September 23 2008 22:00:42 CEST. aliveSaved log of last contact as txt February 08 2012 08:38:43 CET. SenderBaselookup 61.115.228.131 at Rus CERT university stuttgart germanylookup 61.115.228.131 at apnicfollow up this item(ip) in same window 61.115.228.131 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4713) in networks tablefollow up this itemfollow up this AS (AS4713) as RSS-Feed AS4713 SenderBaselookup 61.115.228.131 at Rus CERT university stuttgart germanylookup 61.115.228.131 at apnicfollow up this item(review) in same window 61.115.228.131 Safe Virus-Viewer and Analyser may take a minute to complete http://n-robo.com/skin/images/pics/text1 ... follow up this domain(n-robo.com) n-robo.com follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (jpnictech@ocn.ad.jp) as RSS-Feed jpnictech@ocn.ad.jp follow up this itemfollow up this item 61.112.0.0 - 61.127.255.255 follow up this item JPNIC-NET-JP follow up this item Japan Network Information CenterOpen Computer Network follow up this item ns99.joeswebhosting.net follow up this item ns04.joeswebhosting.net follow up this item ns08.joeswebhosting.net follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://n-robo.com/skin/images/pics/text1 ...
27 follow up this item(1216701) 1216701 Report false positive Report closed case make a suggestion 2012-02-08 05:30:07     follow up this itemfollow up this contributor (Paretologic.com) as RSS-Feed sub10possible lookup Evidence at malwaredomainlist.com
26/40 (65%) unknown virus Win32/DH.00000000{00008008-02000000-00000000} Trojan/Win32.Agent TR/Dldr.Delphi.Gen Win32:Trojan-gen Trojan.Generic.6733563 Trojan.Malex.E7 TrojWare.Win32.TrojanDownloader.Delf.gen Trojan.DownLoader3.43839 Trojan.SuspectCRC!IK Trojan.Gener lookup in virustotal.com (0c3bf1206803910579f42cf768d51181)-->[http://www.virustotal.com/latest-report.html?resource=0c3bf1206803910579f42cf768d51181]lookup in threatexpert.comlookup the sha256(f0b79c68ca90000d13f85868c9a79832f4c472ff35e41573047b045b3c7d6add) in comodo.comfollow up this md5sum(0c3bf1206803910579f42cf768d51181)follow up this itemfollow up this virusname (TR%2FDldr.Delphi.Gen) as RSS-Feedlookup Virusname at avirafollow up this malware(TR%2FDldr.Delphi.Gen) for scanner (avira) in md5 table26/40 (65%) TR/Dldr.Delphi.Gen
 Safe Virus-Viewer and Analyser may take a minute to complete http://ulie.me/fighter.exe  up No previous evidence recordedSaved evidence (94720 Bytes) of last contact as txt February 08 2012 03:16:48 CET. aliveSaved log of last contact as txt February 08 2012 07:06:39 CET. SenderBaselookup 49.212.24.40 at Rus CERT university stuttgart germanylookup 49.212.24.40 at apnicfollow up this item(ip) in same window 49.212.24.40 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS9371) in networks tablefollow up this itemfollow up this AS (AS9371) as RSS-Feed AS9371 SenderBaselookup 49.212.24.40 at Rus CERT university stuttgart germanylookup 49.212.24.40 at apnicfollow up this item(review) in same window 49.212.24.40 Safe Virus-Viewer and Analyser may take a minute to complete http://ulie.me/fighter.exe follow up this domain(ulie.me) ulie.me follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (tanaka-nic@sakura.ad.jp) as RSS-Feed tanaka-nic@sakura.ad.jp follow up this itemfollow up this item 49.212.24.0 - 49.212.24.255 follow up this item SAKURA-NET follow up this item SAKURA Internet Inc. follow up this item ns1.hover.com follow up this item ns2.hover.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://ulie.me/fighter.exe
28 follow up this item(1216673) 1216673 Report false positive Report closed case make a suggestion 2012-02-08 05:20:12     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
22/40 (55%) JS/Downloader.Agent HTML/Crypted.Gen HTML:Iframe-EP Trj JS:Exploit.JS.Redirector.F JS.Agent-119 JS.Redirector.53 Trojan.JS.Agent!IK JS/Linker.BK.gen JS:Exploit.JS.Redirector.F JS/ObRedirect.B!tr JS:Exploit.JS.Redirector.F Trojan.JS.Agent Trojan Heuristi lookup in virustotal.com (c30722498c29e9b78a732c9dc616f8ab)-->[http://www.virustotal.com/latest-report.html?resource=c30722498c29e9b78a732c9dc616f8ab]follow up this md5sum(c30722498c29e9b78a732c9dc616f8ab)follow up this itemfollow up this virusname (HTML%2FCrypted.Gen) as RSS-Feedlookup Virusname at avirafollow up this malware(HTML%2FCrypted.Gen) for scanner (avira) in md5 table22/40 (55%) HTML/Crypted.Gen
 Safe Virus-Viewer and Analyser may take a minute to complete http://gamechariot.com/guestbook/public/ ...  up No previous evidence recordedSaved evidence (7968 Bytes) of last contact as txt September 17 2008 18:42:12 CEST. aliveSaved log of last contact as txt February 08 2012 07:10:54 CET. SenderBaselookup 61.115.228.131 at Rus CERT university stuttgart germanylookup 61.115.228.131 at apnicfollow up this item(ip) in same window 61.115.228.131 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4713) in networks tablefollow up this itemfollow up this AS (AS4713) as RSS-Feed AS4713 SenderBaselookup 61.115.228.131 at Rus CERT university stuttgart germanylookup 61.115.228.131 at apnicfollow up this item(review) in same window 61.115.228.131 Safe Virus-Viewer and Analyser may take a minute to complete http://gamechariot.com/guestbook/public/ ... follow up this domain(gamechariot.com) gamechariot.com follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (jpnictech@ocn.ad.jp) as RSS-Feed jpnictech@ocn.ad.jp follow up this itemfollow up this item 61.112.0.0 - 61.127.255.255 follow up this item JPNIC-NET-JP follow up this item Japan Network Information CenterOpen Computer Network follow up this item ns04.joeswebhosting.net follow up this item ns08.joeswebhosting.net follow up this item ns99.joeswebhosting.net follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://gamechariot.com/guestbook/public/ ...
29 follow up this item(1216674) 1216674 Report false positive Report closed case make a suggestion 2012-02-08 05:20:12     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
23/40 (57.5%) JS/Downloader.Agent HTML/Crypted.Gen HTML:Iframe-EP Trj JS:Exploit.JS.Redirector.F JS.Agent-119 JS.Redirector.53 Trojan.JS.Agent!IK JS/Linker.BK.gen JS:Exploit.JS.Redirector.F JS/ObRedirect.B!tr JS:Exploit.JS.Redirector.F Trojan.JS.Agent Trojan Trojan.J lookup in virustotal.com (f3cec3b12337dc364e44a6b798015796)-->[http://www.virustotal.com/latest-report.html?resource=f3cec3b12337dc364e44a6b798015796]follow up this md5sum(f3cec3b12337dc364e44a6b798015796)follow up this itemfollow up this virusname (HTML%2FCrypted.Gen) as RSS-Feedlookup Virusname at avirafollow up this malware(HTML%2FCrypted.Gen) for scanner (avira) in md5 table23/40 (57.5%) HTML/Crypted.Gen
 Safe Virus-Viewer and Analyser may take a minute to complete http://gamechariot.com/guestbook/public/ ...  up No previous evidence recordedSaved evidence (7989 Bytes) of last contact as txt September 17 2008 18:41:06 CEST. aliveSaved log of last contact as txt February 08 2012 07:10:48 CET. SenderBaselookup 61.115.228.131 at Rus CERT university stuttgart germanylookup 61.115.228.131 at apnicfollow up this item(ip) in same window 61.115.228.131 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4713) in networks tablefollow up this itemfollow up this AS (AS4713) as RSS-Feed AS4713 SenderBaselookup 61.115.228.131 at Rus CERT university stuttgart germanylookup 61.115.228.131 at apnicfollow up this item(review) in same window 61.115.228.131 Safe Virus-Viewer and Analyser may take a minute to complete http://gamechariot.com/guestbook/public/ ... follow up this domain(gamechariot.com) gamechariot.com follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (jpnictech@ocn.ad.jp) as RSS-Feed jpnictech@ocn.ad.jp follow up this itemfollow up this item 61.112.0.0 - 61.127.255.255 follow up this item JPNIC-NET-JP follow up this item Japan Network Information CenterOpen Computer Network follow up this item ns04.joeswebhosting.net follow up this item ns08.joeswebhosting.net follow up this item ns99.joeswebhosting.net follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://gamechariot.com/guestbook/public/ ...
30 follow up this item(1215920) 1215920 Report false positive Report closed case make a suggestion 2012-02-07 15:50:05     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
19/40 (47.5%) JS/Agent.alf JS:Iframe-DV Trj Trojan.JS.QNC PUA.HTML.Crypt TestSignature.JS.iframe.YU JS.IFrame.178 Trojan.IframeRef!IK Trojan.JS.QNC JS/Kryptik.EG!tr Trojan.JS.QNC Trojan.IframeRef Trojan:JS/Iframe.AC JS/Kryptik.EG JS/Exploit.MC Mal/Iframe-Gen JS_IFRAM lookup in virustotal.com (34172d1e2e978641171443315179c594)-->[http://www.virustotal.com/latest-report.html?resource=34172d1e2e978641171443315179c594]follow up this md5sum(34172d1e2e978641171443315179c594)follow up this itemfollow up this virusname (JS%2FAgent.alf) as RSS-FeedBlocked by google safebrowsing malwarelist click for analyse pagelookup Virusname at avirafollow up this malware(JS%2FAgent.alf) for scanner (avira) in md5 table19/40 (47.5%) JS/Agent.alf
 Safe Virus-Viewer and Analyser may take a minute to complete http://www.z-cre.jp/  up No previous evidence recordedSaved evidence (8177 Bytes) of last contact as txt April 26 2010 12:02:29 CEST. aliveSaved log of last contact as txt February 08 2012 00:49:08 CET. SenderBaselookup 210.172.144.27 at Rus CERT university stuttgart germanylookup 210.172.144.27 at apnicfollow up this item(ip) in same window 210.172.144.27 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS7506) in networks tablefollow up this itemfollow up this AS (AS7506) as RSS-Feed AS7506 SenderBaselookup 210.172.144.27 at Rus CERT university stuttgart germanylookup 210.172.144.27 at apnicfollow up this item(review) in same window 210.172.144.27 Safe Virus-Viewer and Analyser may take a minute to complete http://www.z-cre.jp/ follow up this domain(z-cre.jp) z-cre.jp follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (warita@gmo.jp) as RSS-Feed warita@gmo.jp follow up this itemfollow up this item 210.172.128.0 - 210.172.191.255 follow up this item INTERQ follow up this item Global Media Online inc. follow up this item uns01.lolipop.jp follow up this item uns02.lolipop.jp follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://www.z-cre.jp/
31 follow up this item(1213391) 1213391 Report false positive Report closed case make a suggestion 2012-02-06 12:34:09     follow up this itemfollow up this contributor (clean-mx.de) as RSS-Feed sub1possible lookup Evidence at malwaredomainlist.com
20/43 (46.5%) Trojan JS/Redir.FB HTML/Redir.HF HTML_REDIREC.SMM JS:ScriptIP-inf [Trj] Trojan.JS.Redirector.pt Trojan.JS.Redirector.ED Trojan.JS.Redirector!IK UnclassifiedMalware Trojan.JS.Redirector.ED HTML/SrcInject.P HTML_REDIREC.SMM Trojan/win32.agent Trojan.JS.Red lookup in virustotal.com (94068651eae95f2561eb5e1a2c580c7f)-->[http://www.virustotal.com/latest-report.html?resource=94068651eae95f2561eb5e1a2c580c7f]follow up this md5sum(94068651eae95f2561eb5e1a2c580c7f)follow up this itemfollow up this virusname (HTML%2FSrcInject.P) as RSS-Feedlookup Virusname at avirafollow up this malware(HTML%2FSrcInject.P) for scanner (avira) in md5 table20/43 (46.5%) HTML/SrcInject.P
 Safe Virus-Viewer and Analyser may take a minute to complete http://magimm.s316.xrea.com/floe32.html  up No previous evidence recordedSaved evidence (77 Bytes) of last contact as txt February 06 2012 14:39:09 CET. aliveSaved log of last contact as txt February 06 2012 14:39:09 CET. SenderBaselookup 125.53.25.44 at Rus CERT university stuttgart germanylookup 125.53.25.44 at apnicfollow up this item(ip) in same window 125.53.25.44 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS2516) in networks tablefollow up this itemfollow up this AS (AS2516) as RSS-Feed AS2516 SenderBaselookup 125.53.25.44 at Rus CERT university stuttgart germanylookup 125.53.25.44 at apnicfollow up this item(review) in same window 125.53.25.44 Safe Virus-Viewer and Analyser may take a minute to complete http://magimm.s316.xrea.com/floe32.html follow up this domain(xrea.com) xrea.com follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (abuse@dion.ne.jp) as RSS-Feed abuse@dion.ne.jp follow up this itemfollow up this item 125.48.0.0 - 125.55.255.255 follow up this item KDDI follow up this item KDDI CORPORATION2-3-2,Nishishinjuku,Shinjuku-ku,TokyoTESEC Corporation Ina Factory follow up this item ns1.value-domain.com follow up this item ns2.value-domain.com follow up this item ns3.value-domain.com follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://magimm.s316.xrea.com/floe32.html
32 follow up this item(1212524) 1212524 Report false positive Report closed case make a suggestion 2012-02-05 11:33:03     follow up this itemfollow up this contributor (malwarepatrol.com) as RSS-Feed sub8possible lookup Evidence at malwaredomainlist.com
0/40 (0.0%) virustotal no evidence lookup in virustotal.com (d532bb567b14ae8e26bf9f022b80b25b)-->[http://www.virustotal.com/latest-report.html?resource=d532bb567b14ae8e26bf9f022b80b25b]follow up this md5sum(d532bb567b14ae8e26bf9f022b80b25b)follow up this itemfollow up this virusname (Worm.Win32.AutoIt.xl) as RSS-Feedfollow up this malware(Worm.Win32.AutoIt.xl) for scanner (undef) in md5 table0/40 (0.0%) Worm.Win32.AutoIt.xl
 Safe Virus-Viewer and Analyser may take a minute to complete http://xogml.net/  up Saved evidence (11 Bytes) of first contact as txt February 18 2011 06:05:18 CET.Saved evidence (11 Bytes) of last contact as txt February 18 2011 06:05:18 CET. aliveSaved log of last contact as txt February 05 2012 19:20:35 CET. SenderBaselookup 27.125.204.59 at Rus CERT university stuttgart germanylookup 27.125.204.59 at apnicfollow up this item(ip) in same window 27.125.204.59 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS55383) in networks tablefollow up this itemfollow up this AS (AS55383) as RSS-Feed AS55383 SenderBaselookup 27.125.204.59 at Rus CERT university stuttgart germanylookup 27.125.204.59 at apnicfollow up this item(review) in same window 27.125.204.59 Safe Virus-Viewer and Analyser may take a minute to complete http://xogml.net/ follow up this domain(xogml.net) xogml.net follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (hwang@yyy-group.com) as RSS-Feed hwang@yyy-group.com follow up this itemfollow up this item 27.125.204.0 - 27.125.204.255 follow up this item IDC-JP follow up this item YYY Group, Inc. follow up this item ns.cafe24.com follow up this item ns2.cafe24.com follow up this item ns0.cafe24.com follow up this item ns1.cafe24.com follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://xogml.net/
33 follow up this item(1210654) 1210654 Report false positive Report closed case make a suggestion 2012-02-04 18:16:28     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
27/39 (69.2%) JS/Agent HTML/Infected.WebPage.Gen2 JS:Agent-JC Trj Trojan.JS.QAZ Trojan.Iframe-14 TestSignature.JS.TrojanDownloader.Pegel.~E JS.Click.61 Trojan-Downloader.JS.Pegel!IK JS/Redir.AH Trojan.JS.QAZ JS/JSRedir.AK!tr JS:Agent-JC Trojan-Downloader.JS.Pegel Tr lookup in virustotal.com (97b6880f6fd5db155d320524ad2f1c25)-->[http://www.virustotal.com/latest-report.html?resource=97b6880f6fd5db155d320524ad2f1c25]follow up this md5sum(97b6880f6fd5db155d320524ad2f1c25)follow up this itemfollow up this virusname (HTML%2FInfected.WebPage.Gen2) as RSS-Feedlookup Virusname at avirafollow up this malware(HTML%2FInfected.WebPage.Gen2) for scanner (avira) in md5 table27/39 (69.2%) HTML/Infected.WebPage.Gen2
 Safe Virus-Viewer and Analyser may take a minute to complete http://www.link003.com/  up Saved evidence (9728 Bytes) of first contact as txt February 04 2012 12:00:47 CET.Saved evidence (9728 Bytes) of last contact as txt February 05 2012 20:43:23 CET. aliveSaved log of last contact as txt February 05 2012 21:53:15 CET. SenderBaselookup 60.32.201.109 at Rus CERT university stuttgart germanylookup 60.32.201.109 at apnicfollow up this item(ip) in same window 60.32.201.109 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4713) in networks tablefollow up this itemfollow up this AS (AS4713) as RSS-Feed AS4713 SenderBaselookup 60.32.201.109 at Rus CERT university stuttgart germanylookup 60.32.201.109 at apnicfollow up this item(review) in same window 60.32.201.109 Safe Virus-Viewer and Analyser may take a minute to complete http://www.link003.com/ follow up this domain(link003.com) link003.com follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (jindo@ars.dtinet.or.jp) as RSS-Feed jindo@ars.dtinet.or.jp follow up this itemfollow up this item 60.32.0.0 - 60.47.255.255 follow up this item OCN follow up this item NTT Communications Corporation1-6 Uchisaiwai-cho 1-chome Chiyoda-ku, Tokyo 100-8019 JapanOpen Computer Network follow up this item ns1.value-domain.com follow up this item ns2.value-domain.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://www.link003.com/
34 follow up this item(1209878) 1209878 Report false positive Report closed case make a suggestion 2012-02-04 18:16:22     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
27/40 (67.5%) JS/Redir.AU HTML/FakeAlert.I HTML:Iframe-LH Trj Trojan.Redirector.JS.AG TestSignature.JS.Downloader.Agent.KA Trojan-Downloader.HTML.Renos!IK JS/Crypted.Q.gen Trojan.Redirector.JS.AG JS/Agent.NVV!tr Trojan.Redirector.JS.AG Trojan-Downloader.HTML.Renos Tr lookup in virustotal.com (f20209a95f824b827399fe8572f39778)-->[http://www.virustotal.com/latest-report.html?resource=f20209a95f824b827399fe8572f39778]follow up this md5sum(f20209a95f824b827399fe8572f39778)follow up this itemfollow up this virusname (HTML%2FFakeAlert.I) as RSS-Feedlookup Virusname at avirafollow up this malware(HTML%2FFakeAlert.I) for scanner (avira) in md5 table27/40 (67.5%) HTML/FakeAlert.I
 Safe Virus-Viewer and Analyser may take a minute to complete http://maabraha.searchnavi.jp/gofbmtzr4/ ...  up Saved evidence (13406 Bytes) of first contact as txt May 13 2009 00:20:15 CEST.Saved evidence (13406 Bytes) of last contact as txt May 13 2009 00:20:15 CEST. aliveSaved log of last contact as txt February 05 2012 22:53:08 CET. SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(ip) in same window 61.194.62.161 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS2514) in networks tablefollow up this itemfollow up this AS (AS2514) as RSS-Feed AS2514 SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(review) in same window 61.194.62.161 Safe Virus-Viewer and Analyser may take a minute to complete http://maabraha.searchnavi.jp/gofbmtzr4/ ... follow up this domain(searchnavi.jp) searchnavi.jp follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (higuchim@nttpc.co.jp) as RSS-Feed higuchim@nttpc.co.jp follow up this itemfollow up this item 61.194.56.0 - 61.194.63.255 follow up this item INFOSPHERE follow up this item InfoSphere (NTTPC Communications, Inc.) follow up this item ns2.muryou-rs.jp follow up this item ns.muryou-rs.jp follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://maabraha.searchnavi.jp/gofbmtzr4/ ...
35 follow up this item(1209303) 1209303 Report false positive Report closed case make a suggestion 2012-02-04 18:16:18     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
26/38 (68.4%) JS/Redir.AT HTML/FakeAlert.I HTML:Iframe-LH Trj Trojan.Redirector.JS.AG TestSignature.JS.Downloader.Agent.KA JS.Click.76 Trojan-Downloader.HTML.Renos!IK JS/Crypted.Q.gen Trojan.Redirector.JS.AG JS/Agent.NVV!tr Trojan.Redirector.JS.AG Trojan-Downloader.H lookup in virustotal.com (4421094781242363f3dfb4d28d15b5e7)-->[http://www.virustotal.com/latest-report.html?resource=4421094781242363f3dfb4d28d15b5e7]follow up this md5sum(4421094781242363f3dfb4d28d15b5e7)follow up this itemfollow up this virusname (HTML%2FFakeAlert.I) as RSS-Feedlookup Virusname at avirafollow up this malware(HTML%2FFakeAlert.I) for scanner (avira) in md5 table26/38 (68.4%) HTML/FakeAlert.I
 Safe Virus-Viewer and Analyser may take a minute to complete http://blankpage.searchnavi.jp/mdee1ybpa ...  up Saved evidence (22811 Bytes) of first contact as txt May 07 2009 23:33:44 CEST.Saved evidence (22811 Bytes) of last contact as txt May 07 2009 23:33:44 CEST. aliveSaved log of last contact as txt February 05 2012 23:32:52 CET. SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(ip) in same window 61.194.62.161 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS2514) in networks tablefollow up this itemfollow up this AS (AS2514) as RSS-Feed AS2514 SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(review) in same window 61.194.62.161 Safe Virus-Viewer and Analyser may take a minute to complete http://blankpage.searchnavi.jp/mdee1ybpa ... follow up this domain(searchnavi.jp) searchnavi.jp follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (higuchim@nttpc.co.jp) as RSS-Feed higuchim@nttpc.co.jp follow up this itemfollow up this item 61.194.56.0 - 61.194.63.255 follow up this item INFOSPHERE follow up this item InfoSphere (NTTPC Communications, Inc.) follow up this item ns2.muryou-rs.jp follow up this item ns.muryou-rs.jp follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://blankpage.searchnavi.jp/mdee1ybpa ...
36 follow up this item(1207493) 1207493 Report false positive Report closed case make a suggestion 2012-02-04 08:30:29     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
28/40 (70%) JS/Redir.AU HTML/FakeAlert.I HTML:Iframe-LH Trj Trojan.Redirector.JS.AG TestSignature.JS.Downloader.Agent.KA JS.Click.81 Trojan-Downloader.HTML.Renos!IK JS/Crypted.Q.gen Trojan.Redirector.JS.AG JS/Agent.NVV!tr Trojan.Redirector.JS.AG Trojan-Downloader.H lookup in virustotal.com (2afa5d0ad0bd0303570f5d6527ae556d)-->[http://www.virustotal.com/latest-report.html?resource=2afa5d0ad0bd0303570f5d6527ae556d]follow up this md5sum(2afa5d0ad0bd0303570f5d6527ae556d)follow up this itemfollow up this virusname (HTML%2FFakeAlert.I) as RSS-Feedlookup Virusname at avirafollow up this malware(HTML%2FFakeAlert.I) for scanner (avira) in md5 table28/40 (70%) HTML/FakeAlert.I
 Safe Virus-Viewer and Analyser may take a minute to complete http://maabraha.searchnavi.jp/cv5cjd16i/ ...  up Saved evidence (13477 Bytes) of first contact as txt May 13 2009 00:25:41 CEST.Saved evidence (13477 Bytes) of last contact as txt May 13 2009 00:25:41 CEST. aliveSaved log of last contact as txt February 06 2012 01:23:45 CET. SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(ip) in same window 61.194.62.161 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS2514) in networks tablefollow up this itemfollow up this AS (AS2514) as RSS-Feed AS2514 SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(review) in same window 61.194.62.161 Safe Virus-Viewer and Analyser may take a minute to complete http://maabraha.searchnavi.jp/cv5cjd16i/ ... follow up this domain(searchnavi.jp) searchnavi.jp follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (higuchim@nttpc.co.jp) as RSS-Feed higuchim@nttpc.co.jp follow up this itemfollow up this item 61.194.56.0 - 61.194.63.255 follow up this item INFOSPHERE follow up this item InfoSphere (NTTPC Communications, Inc.) follow up this item ns.muryou-rs.jp follow up this item ns2.muryou-rs.jp follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://maabraha.searchnavi.jp/cv5cjd16i/ ...
37 follow up this item(1205462) 1205462 Report false positive Report closed case make a suggestion 2012-02-04 02:00:11     follow up this itemfollow up this contributor (Paretologic.com) as RSS-Feed sub10possible lookup Evidence at malwaredomainlist.com
21/40 (52.5%) SHeur2.ARVG TR/Gendal.4068319.1 Trojan.Generic.4068319 (Suspicious) - DNAScan Heur.Suspicious Trojan.Win32.SuspectCRC!IK Trojan.Generic.4068319 Trojan.Generic.4068319 Trojan.Win32.SuspectCRC Riskware Generic.dx!ufm Generic.dx!ufm Trojan:Win32/Anomaly W3 lookup in virustotal.com (e3d85c09390fba0b5f71438d1acbb6c6)-->[http://www.virustotal.com/latest-report.html?resource=e3d85c09390fba0b5f71438d1acbb6c6]lookup in threatexpert.comlookup the sha256(8f6689d2e4b02d67bb9db57abe43ebf999c5b0b370c1e9d6917349ade8012770) in comodo.comfollow up this md5sum(e3d85c09390fba0b5f71438d1acbb6c6)follow up this itemfollow up this virusname (TR%2FGendal.4068319.1) as RSS-Feedlookup Virusname at avirafollow up this malware(TR%2FGendal.4068319.1) for scanner (avira) in md5 table21/40 (52.5%) TR/Gendal.4068319.1
 Safe Virus-Viewer and Analyser may take a minute to complete http://nexton-net.jp/~support/data/SHIKI ...  up Saved evidence (798208 Bytes) of first contact as txt November 15 2006 07:16:24 CET.Saved evidence (798208 Bytes) of last contact as txt November 15 2006 07:16:24 CET. aliveSaved log of last contact as txt February 06 2012 04:43:14 CET. SenderBaselookup 210.188.215.232 at Rus CERT university stuttgart germanylookup 210.188.215.232 at apnicfollow up this item(ip) in same window 210.188.215.232 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4725) in networks tablefollow up this itemfollow up this AS (AS4725) as RSS-Feed AS4725 SenderBaselookup 210.188.215.232 at Rus CERT university stuttgart germanylookup 210.188.215.232 at apnicfollow up this item(review) in same window 210.188.215.232 Safe Virus-Viewer and Analyser may take a minute to complete http://nexton-net.jp/~support/data/SHIKI ... follow up this domain(nexton-net.jp) nexton-net.jp follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (abuse@odn.ad.jp) as RSS-Feed abuse@odn.ad.jp follow up this itemfollow up this item 210.188.0.0 - 210.191.255.255 follow up this item JPNIC-NET-JP follow up this item Japan Network Information CenterTOKYO TELECOMMUNICATION NETWORK CO.,INC. follow up this item ns2.hld.co.jp follow up this item ns1.hld.co.jp follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://nexton-net.jp/~support/data/SHIKI ...
38 follow up this item(1205255) 1205255 Report false positive Report closed case make a suggestion 2012-02-03 21:20:38     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
31/40 (77.5%) JS/Agent HTML/Infected.WebPage.Gen2 JS:Agent-JC Trj Trojan.JS.QAZ Trojan.Iframe-14 TestSignature.JS.TrojanDownloader.Pegel.~E JS.Click.61 Trojan-Downloader.JS.Pegel!IK JS/Redir.AH Trojan.JS.QAZ JS/JSRedir.AK!tr JS:Agent-JC Trojan-Downloader.JS.Pegel Tr lookup in virustotal.com (f6366b2becd492f7c9958845696795d8)-->[http://www.virustotal.com/latest-report.html?resource=f6366b2becd492f7c9958845696795d8]follow up this md5sum(f6366b2becd492f7c9958845696795d8)follow up this itemfollow up this virusname (HTML%2FInfected.WebPage.Gen2) as RSS-Feedfollow up this malware(HTML%2FInfected.WebPage.Gen2) for scanner (AntiVir) in md5 table31/40 (77.5%) HTML/Infected.WebPage.Gen2
 Safe Virus-Viewer and Analyser may take a minute to complete http://www.ya-ya01.com/  up Saved evidence (49212 Bytes) of first contact as txt February 03 2012 22:04:49 CET.No evidence recorded aliveSaved log of last contact as txt February 06 2012 04:54:33 CET. SenderBaselookup 60.32.201.103 at Rus CERT university stuttgart germanylookup 60.32.201.103 at apnicfollow up this item(ip) in same window 60.32.201.103 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS4713) in networks tablefollow up this itemfollow up this AS (AS4713) as RSS-Feed AS4713 SenderBaselookup 60.32.201.103 at Rus CERT university stuttgart germanylookup 60.32.201.103 at apnicfollow up this item(review) in same window 60.32.201.103 Safe Virus-Viewer and Analyser may take a minute to complete http://www.ya-ya01.com/ follow up this domain(ya-ya01.com) ya-ya01.com follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (jindo@ars.dtinet.or.jp) as RSS-Feed jindo@ars.dtinet.or.jp follow up this itemfollow up this item 60.32.0.0 - 60.47.255.255 follow up this item OCN follow up this item NTT Communications Corporation1-6 Uchisaiwai-cho 1-chome Chiyoda-ku, Tokyo 100-8019 JapanOpen Computer Network follow up this item ns1.value-domain.com follow up this item ns2.value-domain.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://www.ya-ya01.com/
39 follow up this item(1204769) 1204769 Report false positive Report closed case make a suggestion 2012-02-03 15:30:17     follow up this itemfollow up this contributor (clean-mx.de) as RSS-Feed sub1possible lookup Evidence at malwaredomainlist.com
32/43 (74.4%) Backdoor.LQS.c Generic BackDoor!dxk Backdoor Backdoor.LQS!CWfjk+qJvPE Win32/Spy.Agent.NWE Backdoor.Trojan W32/Agent.VEIY TROJ_GEN.R4AC8LR Win32:Malware-gen Win32.TRAgent PUA.Packed.ASPack Backdoor.Win32.LQS.c Trojan.Generic.7050978 Backdoor.Win32.LQS!IK lookup in virustotal.com (229a26c15b3e7afc26f953e43120c723)-->[http://www.virustotal.com/latest-report.html?resource=229a26c15b3e7afc26f953e43120c723]lookup in threatexpert.comlookup the sha256(983362ca49819f9c204288f55d0d35174f32cc214cccad1e66ad9e8e57213204) in comodo.comfollow up this md5sum(229a26c15b3e7afc26f953e43120c723)follow up this itemfollow up this virusname (TR%2FAgent.392192.19) as RSS-Feedlookup Virusname at avirafollow up this malware(TR%2FAgent.392192.19) for scanner (avira) in md5 table32/43 (74.4%) TR/Agent.392192.19
 Safe Virus-Viewer and Analyser may take a minute to complete http://xogml.net/sqlservt.exe  up Saved evidence (392192 Bytes) of first contact as txt August 11 2011 11:23:20 CEST.Saved evidence (392192 Bytes) of last contact as txt August 11 2011 11:23:20 CEST. aliveSaved log of last contact as txt February 06 2012 05:23:10 CET. SenderBaselookup 27.125.204.59 at Rus CERT university stuttgart germanylookup 27.125.204.59 at apnicfollow up this item(ip) in same window 27.125.204.59 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS55383) in networks tablefollow up this itemfollow up this AS (AS55383) as RSS-Feed AS55383 SenderBaselookup 27.125.204.59 at Rus CERT university stuttgart germanylookup 27.125.204.59 at apnicfollow up this item(review) in same window 27.125.204.59 Safe Virus-Viewer and Analyser may take a minute to complete http://xogml.net/sqlservt.exe follow up this domain(xogml.net) xogml.net follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (hwang@yyy-group.com) as RSS-Feed hwang@yyy-group.com follow up this itemfollow up this item 27.125.204.0 - 27.125.204.255 follow up this item IDC-JP follow up this item YYY Group, Inc. follow up this item ns.cafe24.com follow up this item ns0.cafe24.com follow up this item ns1.cafe24.com follow up this item ns2.cafe24.com follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://xogml.net/sqlservt.exe
40 follow up this item(1198560) 1198560 Report false positive Report closed case make a suggestion 2012-02-02 08:20:24     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
25/37 (67.6%) JS/Redir.AU HTML/FakeAlert.I HTML:Iframe-LH Trj Trojan.Redirector.JS.AG TestSignature.JS.Downloader.Agent.KA JS.Click.78 Trojan-Downloader.HTML.Renos!IK JS/Crypted.Q.gen Trojan.Redirector.JS.AG JS/Agent.NVV!tr Trojan.Redirector.JS.AG Trojan-Downloader.H lookup in virustotal.com (7152088ba3fa9ee645ff75a6f55fd584)-->[http://www.virustotal.com/latest-report.html?resource=7152088ba3fa9ee645ff75a6f55fd584]follow up this md5sum(7152088ba3fa9ee645ff75a6f55fd584)follow up this itemfollow up this virusname (HTML%2FFakeAlert.I) as RSS-Feedlookup Virusname at avirafollow up this malware(HTML%2FFakeAlert.I) for scanner (avira) in md5 table25/37 (67.6%) HTML/FakeAlert.I
 Safe Virus-Viewer and Analyser may take a minute to complete http://sea0tter12.searchnavi.jp/gogkefkb ...  up Saved evidence (25659 Bytes) of first contact as txt May 08 2009 00:11:00 CEST.Saved evidence (25659 Bytes) of last contact as txt May 08 2009 00:11:00 CEST. aliveSaved log of last contact as txt February 06 2012 08:49:32 CET. SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(ip) in same window 61.194.62.161 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS2514) in networks tablefollow up this itemfollow up this AS (AS2514) as RSS-Feed AS2514 SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(review) in same window 61.194.62.161 Safe Virus-Viewer and Analyser may take a minute to complete http://sea0tter12.searchnavi.jp/gogkefkb ... follow up this domain(searchnavi.jp) searchnavi.jp follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (higuchim@nttpc.co.jp) as RSS-Feed higuchim@nttpc.co.jp follow up this itemfollow up this item 61.194.56.0 - 61.194.63.255 follow up this item INFOSPHERE follow up this item InfoSphere (NTTPC Communications, Inc.) follow up this item ns2.muryou-rs.jp follow up this item ns.muryou-rs.jp follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://sea0tter12.searchnavi.jp/gogkefkb ...
41 follow up this item(1198561) 1198561 Report false positive Report closed case make a suggestion 2012-02-02 08:20:24     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
24/37 (64.9%) JS/Redir.AU HTML/FakeAlert.I HTML:Iframe-LH Trj Trojan.Redirector.JS.AG TestSignature.JS.Downloader.Agent.KA Trojan-Downloader.HTML.Renos!IK JS/Crypted.Q.gen Trojan.Redirector.JS.AG JS/Agent.NVV!tr Trojan.Redirector.JS.AG Trojan-Downloader.HTML.Renos Tr lookup in virustotal.com (f5141b154c8af938a5583db2fc12150d)-->[http://www.virustotal.com/latest-report.html?resource=f5141b154c8af938a5583db2fc12150d]follow up this md5sum(f5141b154c8af938a5583db2fc12150d)follow up this itemfollow up this virusname (HTML%2FFakeAlert.I) as RSS-Feedlookup Virusname at avirafollow up this malware(HTML%2FFakeAlert.I) for scanner (avira) in md5 table24/37 (64.9%) HTML/FakeAlert.I
 Safe Virus-Viewer and Analyser may take a minute to complete http://sea0tter12.searchnavi.jp/jenrrvdl ...  up Saved evidence (25364 Bytes) of first contact as txt May 08 2009 00:01:07 CEST.Saved evidence (25364 Bytes) of last contact as txt May 08 2009 00:01:07 CEST. aliveSaved log of last contact as txt February 06 2012 08:49:28 CET. SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(ip) in same window 61.194.62.161 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS2514) in networks tablefollow up this itemfollow up this AS (AS2514) as RSS-Feed AS2514 SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(review) in same window 61.194.62.161 Safe Virus-Viewer and Analyser may take a minute to complete http://sea0tter12.searchnavi.jp/jenrrvdl ... follow up this domain(searchnavi.jp) searchnavi.jp follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (higuchim@nttpc.co.jp) as RSS-Feed higuchim@nttpc.co.jp follow up this itemfollow up this item 61.194.56.0 - 61.194.63.255 follow up this item INFOSPHERE follow up this item InfoSphere (NTTPC Communications, Inc.) follow up this item ns2.muryou-rs.jp follow up this item ns.muryou-rs.jp follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://sea0tter12.searchnavi.jp/jenrrvdl ...
42 follow up this item(1198562) 1198562 Report false positive Report closed case make a suggestion 2012-02-02 08:20:24     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
24/37 (64.9%) JS/Redir.AU HTML/FakeAlert.I HTML:Iframe-LH Trj Trojan.Redirector.JS.AG TestSignature.JS.Downloader.Agent.KA Trojan-Downloader.HTML.Renos!IK JS/Crypted.Q.gen Trojan.Redirector.JS.AG JS/Agent.NVV!tr Trojan.Redirector.JS.AG Trojan-Downloader.HTML.Renos Tr lookup in virustotal.com (9b2dd51b51e8ebbc7d99eee1f7399bb1)-->[http://www.virustotal.com/latest-report.html?resource=9b2dd51b51e8ebbc7d99eee1f7399bb1]follow up this md5sum(9b2dd51b51e8ebbc7d99eee1f7399bb1)follow up this itemfollow up this virusname (HTML%2FFakeAlert.I) as RSS-Feedlookup Virusname at avirafollow up this malware(HTML%2FFakeAlert.I) for scanner (avira) in md5 table24/37 (64.9%) HTML/FakeAlert.I
 Safe Virus-Viewer and Analyser may take a minute to complete http://sea0tter12.searchnavi.jp/lbyc4mzm ...  up Saved evidence (25579 Bytes) of first contact as txt May 08 2009 00:05:51 CEST.Saved evidence (25579 Bytes) of last contact as txt May 08 2009 00:05:51 CEST. aliveSaved log of last contact as txt February 06 2012 08:49:25 CET. SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(ip) in same window 61.194.62.161 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS2514) in networks tablefollow up this itemfollow up this AS (AS2514) as RSS-Feed AS2514 SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(review) in same window 61.194.62.161 Safe Virus-Viewer and Analyser may take a minute to complete http://sea0tter12.searchnavi.jp/lbyc4mzm ... follow up this domain(searchnavi.jp) searchnavi.jp follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (higuchim@nttpc.co.jp) as RSS-Feed higuchim@nttpc.co.jp follow up this itemfollow up this item 61.194.56.0 - 61.194.63.255 follow up this item INFOSPHERE follow up this item InfoSphere (NTTPC Communications, Inc.) follow up this item ns2.muryou-rs.jp follow up this item ns.muryou-rs.jp follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://sea0tter12.searchnavi.jp/lbyc4mzm ...
43 follow up this item(1198563) 1198563 Report false positive Report closed case make a suggestion 2012-02-02 08:20:24     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
24/37 (64.9%) JS/Redir.AR HTML/FakeAlert.I HTML:Iframe-LH Trj Trojan.Redirector.JS.AG TestSignature.JS.Downloader.Agent.KA Trojan-Downloader.HTML.Renos!IK JS/Crypted.Q.gen Trojan.Redirector.JS.AG JS/Agent.NVV!tr Trojan.Redirector.JS.AG Trojan-Downloader.HTML.Renos Tr lookup in virustotal.com (353e0e077f86b712768ad410d3d210f8)-->[http://www.virustotal.com/latest-report.html?resource=353e0e077f86b712768ad410d3d210f8]follow up this md5sum(353e0e077f86b712768ad410d3d210f8)follow up this itemfollow up this virusname (HTML%2FFakeAlert.I) as RSS-Feedlookup Virusname at avirafollow up this malware(HTML%2FFakeAlert.I) for scanner (avira) in md5 table24/37 (64.9%) HTML/FakeAlert.I
 Safe Virus-Viewer and Analyser may take a minute to complete http://sea0tter12.searchnavi.jp/prvpkh3i ...  up Saved evidence (25643 Bytes) of first contact as txt May 08 2009 00:03:58 CEST.Saved evidence (25643 Bytes) of last contact as txt May 08 2009 00:03:58 CEST. aliveSaved log of last contact as txt February 06 2012 08:49:21 CET. SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(ip) in same window 61.194.62.161 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS2514) in networks tablefollow up this itemfollow up this AS (AS2514) as RSS-Feed AS2514 SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(review) in same window 61.194.62.161 Safe Virus-Viewer and Analyser may take a minute to complete http://sea0tter12.searchnavi.jp/prvpkh3i ... follow up this domain(searchnavi.jp) searchnavi.jp follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (higuchim@nttpc.co.jp) as RSS-Feed higuchim@nttpc.co.jp follow up this itemfollow up this item 61.194.56.0 - 61.194.63.255 follow up this item INFOSPHERE follow up this item InfoSphere (NTTPC Communications, Inc.) follow up this item ns2.muryou-rs.jp follow up this item ns.muryou-rs.jp follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://sea0tter12.searchnavi.jp/prvpkh3i ...
44 follow up this item(1198460) 1198460 Report false positive Report closed case make a suggestion 2012-02-02 06:01:08     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
29/40 (72.5%) PSW.Banker3.XBI TR/Dropper.Gen Win32:Perflogger-CC Tool Gen:Trojan.Heur.MR.4sZ@aKGeaNbc Trojan.Perflog.arc TrojWare.Win32.Agent.~Wrar Trojan.Peflog.168 Trojan-Spy.Win32.Perfloger!IK W32/Banker.ALWM Gen:Trojan.Heur.MR.4sZ@aKGeaNbc W32/PatchedRarSfx.A Gen lookup in virustotal.com (7ee12270f65c5397431ea398dd2d4cca)-->[http://www.virustotal.com/latest-report.html?resource=7ee12270f65c5397431ea398dd2d4cca]lookup in threatexpert.comlookup the sha256(55f572d2054605978d45b3e6b18ff1e34aac95aa00594da6cb2c7e491ac615cc) in comodo.comfollow up this md5sum(7ee12270f65c5397431ea398dd2d4cca)follow up this itemfollow up this virusname (TR%2FDropper.Gen) as RSS-Feedlookup Virusname at avirafollow up this malware(TR%2FDropper.Gen) for scanner (avira) in md5 table29/40 (72.5%) TR/Dropper.Gen
 Safe Virus-Viewer and Analyser may take a minute to complete http://dl.volamviet.vn/VAutoF2.0.13.zip  up Saved evidence (3006904 Bytes) of first contact as txt January 13 2012 09:14:50 CET.Saved evidence (3006904 Bytes) of last contact as txt January 13 2012 09:14:50 CET. aliveSaved log of last contact as txt February 06 2012 08:56:16 CET. SenderBaselookup 49.212.32.185 at Rus CERT university stuttgart germanylookup 49.212.32.185 at apnicfollow up this item(ip) in same window 49.212.32.185 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS9371) in networks tablefollow up this itemfollow up this AS (AS9371) as RSS-Feed AS9371 SenderBaselookup 49.212.32.185 at Rus CERT university stuttgart germanylookup 49.212.32.185 at apnicfollow up this item(review) in same window 49.212.32.185 Safe Virus-Viewer and Analyser may take a minute to complete http://dl.volamviet.vn/VAutoF2.0.13.zip follow up this domain(volamviet.vn) volamviet.vn follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (tanaka-nic@sakura.ad.jp) as RSS-Feed tanaka-nic@sakura.ad.jp follow up this itemfollow up this item 49.212.32.0 - 49.212.32.255 follow up this item SAKURA-NET follow up this item SAKURA Internet Inc. follow up this item ns4.zoneedit.com follow up this item ns8.zoneedit.com follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://dl.volamviet.vn/VAutoF2.0.13.zip
45 follow up this item(1197732) 1197732 Report false positive Report closed case make a suggestion 2012-02-01 15:40:07     follow up this itemfollow up this contributor (Paretologic.com) as RSS-Feed sub10possible lookup Evidence at malwaredomainlist.com
19/40 (47.5%) JS/Agent.alf JS:Iframe-DV Trj Trojan.JS.QNC PUA.HTML.Crypt TestSignature.JS.iframe.YU JS.IFrame.178 Win32.SuspectCrc!IK Trojan.JS.QNC JS/Kryptik.EG!tr Trojan.JS.QNC Win32.SuspectCrc Trojan:JS/Iframe.AC JS/Kryptik.EG JS/Exploit.MC Mal/Iframe-Gen JS_IFRAM lookup in virustotal.com (1ef20d0d89f33374a43972f4091a70f7)-->[http://www.virustotal.com/latest-report.html?resource=1ef20d0d89f33374a43972f4091a70f7]follow up this md5sum(1ef20d0d89f33374a43972f4091a70f7)follow up this itemfollow up this virusname (JS%2FAgent.alf) as RSS-Feedlookup Virusname at avirafollow up this malware(JS%2FAgent.alf) for scanner (avira) in md5 table19/40 (47.5%) JS/Agent.alf
 Safe Virus-Viewer and Analyser may take a minute to complete http://elanjapan.co.jp/ski/  up Saved evidence (4768 Bytes) of first contact as txt January 03 2012 23:41:17 CET.Saved evidence (4768 Bytes) of last contact as txt January 03 2012 23:41:17 CET. aliveSaved log of last contact as txt February 06 2012 10:16:30 CET. SenderBaselookup 210.157.5.15 at Rus CERT university stuttgart germanylookup 210.157.5.15 at apnicfollow up this item(ip) in same window 210.157.5.15 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS7506) in networks tablefollow up this itemfollow up this AS (AS7506) as RSS-Feed AS7506 SenderBaselookup 210.157.5.15 at Rus CERT university stuttgart germanylookup 210.157.5.15 at apnicfollow up this item(review) in same window 210.157.5.15 Safe Virus-Viewer and Analyser may take a minute to complete http://elanjapan.co.jp/ski/ follow up this domain(elanjapan.co.jp) elanjapan.co.jp follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (warita@gmo.jp) as RSS-Feed warita@gmo.jp follow up this itemfollow up this item 210.157.0.0 - 210.157.15.255 follow up this item INTERQ follow up this item Global Media Online inc. follow up this item dns01.gmoserver.jp follow up this item dns02.gmoserver.jp follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://elanjapan.co.jp/ski/
46 follow up this item(1197688) 1197688 Report false positive Report closed case make a suggestion 2012-02-01 14:04:48     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
19/40 (47.5%) JS/Agent.alf JS:Iframe-DV Trj Trojan.JS.QNC PUA.HTML.Crypt TestSignature.JS.iframe.YU JS.IFrame.178 Trojan.IframeRef!IK Trojan.JS.QNC JS/Kryptik.EG!tr Trojan.JS.QNC Trojan.IframeRef Trojan:JS/Iframe.AC JS/Kryptik.EG JS/Exploit.MC Mal/Iframe-Gen JS_IFRAM lookup in virustotal.com (1ef20d0d89f33374a43972f4091a70f7)-->[http://www.virustotal.com/latest-report.html?resource=1ef20d0d89f33374a43972f4091a70f7]follow up this md5sum(1ef20d0d89f33374a43972f4091a70f7)follow up this itemfollow up this virusname (JS%2FAgent.alf) as RSS-Feedlookup Virusname at avirafollow up this malware(JS%2FAgent.alf) for scanner (avira) in md5 table19/40 (47.5%) JS/Agent.alf
 Safe Virus-Viewer and Analyser may take a minute to complete http://www.elanjapan.co.jp/ski/  up Saved evidence (4768 Bytes) of first contact as txt January 03 2012 23:41:17 CET.Saved evidence (4768 Bytes) of last contact as txt January 03 2012 23:41:17 CET. aliveSaved log of last contact as txt February 06 2012 10:21:30 CET. SenderBaselookup 210.157.5.15 at Rus CERT university stuttgart germanylookup 210.157.5.15 at apnicfollow up this item(ip) in same window 210.157.5.15 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS7506) in networks tablefollow up this itemfollow up this AS (AS7506) as RSS-Feed AS7506 SenderBaselookup 210.157.5.15 at Rus CERT university stuttgart germanylookup 210.157.5.15 at apnicfollow up this item(review) in same window 210.157.5.15 Safe Virus-Viewer and Analyser may take a minute to complete http://www.elanjapan.co.jp/ski/ follow up this domain(elanjapan.co.jp) elanjapan.co.jp follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (warita@gmo.jp) as RSS-Feed warita@gmo.jp follow up this itemfollow up this item 210.157.0.0 - 210.157.15.255 follow up this item INTERQ follow up this item Global Media Online inc. follow up this item dns02.gmoserver.jp follow up this item dns01.gmoserver.jp follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://www.elanjapan.co.jp/ski/
47 follow up this item(1196778) 1196778 Report false positive Report closed case make a suggestion 2012-02-01 09:39:25     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
28/40 (70%) JS/Redir.AU HTML/FakeAlert.I HTML:Iframe-LH Trj Trojan.Redirector.JS.AG TestSignature.JS.Downloader.Agent.KA JS.Click.80 Trojan-Downloader.HTML.Renos!IK JS/Crypted.Q.gen Trojan.Redirector.JS.AG JS/Agent.NVV!tr Trojan.Redirector.JS.AG Trojan-Downloader.H lookup in virustotal.com (9ba9fa40cea68d2b274277305b5b0bb9)-->[http://www.virustotal.com/latest-report.html?resource=9ba9fa40cea68d2b274277305b5b0bb9]follow up this md5sum(9ba9fa40cea68d2b274277305b5b0bb9)follow up this itemfollow up this virusname (HTML%2FFakeAlert.I) as RSS-Feedlookup Virusname at avirafollow up this malware(HTML%2FFakeAlert.I) for scanner (avira) in md5 table28/40 (70%) HTML/FakeAlert.I
 Safe Virus-Viewer and Analyser may take a minute to complete http://sea0tter12.searchnavi.jp/aixownyn ...  up Saved evidence (25474 Bytes) of first contact as txt May 08 2009 00:04:13 CEST.Saved evidence (25474 Bytes) of last contact as txt May 08 2009 00:04:13 CEST. aliveSaved log of last contact as txt February 06 2012 11:03:06 CET. SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(ip) in same window 61.194.62.161 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS2514) in networks tablefollow up this itemfollow up this AS (AS2514) as RSS-Feed AS2514 SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(review) in same window 61.194.62.161 Safe Virus-Viewer and Analyser may take a minute to complete http://sea0tter12.searchnavi.jp/aixownyn ... follow up this domain(searchnavi.jp) searchnavi.jp follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (higuchim@nttpc.co.jp) as RSS-Feed higuchim@nttpc.co.jp follow up this itemfollow up this item 61.194.56.0 - 61.194.63.255 follow up this item INFOSPHERE follow up this item InfoSphere (NTTPC Communications, Inc.) follow up this item ns2.muryou-rs.jp follow up this item ns.muryou-rs.jp follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://sea0tter12.searchnavi.jp/aixownyn ...
48 follow up this item(1196779) 1196779 Report false positive Report closed case make a suggestion 2012-02-01 09:39:25     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
28/40 (70%) JS/Redir.AR HTML/FakeAlert.I HTML:Iframe-LH Trj Trojan.Redirector.JS.AG TestSignature.JS.Downloader.Agent.KA JS.Click.81 Trojan-Downloader.HTML.Renos!IK JS/Crypted.Q.gen Trojan.Redirector.JS.AG JS/Agent.NVV!tr Trojan.Redirector.JS.AG Trojan-Downloader.H lookup in virustotal.com (196ccea72592e36bfa57c29c691d7a73)-->[http://www.virustotal.com/latest-report.html?resource=196ccea72592e36bfa57c29c691d7a73]follow up this md5sum(196ccea72592e36bfa57c29c691d7a73)follow up this itemfollow up this virusname (HTML%2FFakeAlert.I) as RSS-Feedlookup Virusname at avirafollow up this malware(HTML%2FFakeAlert.I) for scanner (avira) in md5 table28/40 (70%) HTML/FakeAlert.I
 Safe Virus-Viewer and Analyser may take a minute to complete http://sea0tter12.searchnavi.jp/opzqlkmu ...  up Saved evidence (25741 Bytes) of first contact as txt May 08 2009 00:06:58 CEST.Saved evidence (25741 Bytes) of last contact as txt May 08 2009 00:06:58 CEST. aliveSaved log of last contact as txt February 06 2012 11:03:02 CET. SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(ip) in same window 61.194.62.161 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS2514) in networks tablefollow up this itemfollow up this AS (AS2514) as RSS-Feed AS2514 SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(review) in same window 61.194.62.161 Safe Virus-Viewer and Analyser may take a minute to complete http://sea0tter12.searchnavi.jp/opzqlkmu ... follow up this domain(searchnavi.jp) searchnavi.jp follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (higuchim@nttpc.co.jp) as RSS-Feed higuchim@nttpc.co.jp follow up this itemfollow up this item 61.194.56.0 - 61.194.63.255 follow up this item INFOSPHERE follow up this item InfoSphere (NTTPC Communications, Inc.) follow up this item ns2.muryou-rs.jp follow up this item ns.muryou-rs.jp follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://sea0tter12.searchnavi.jp/opzqlkmu ...
49 follow up this item(1196227) 1196227 Report false positive Report closed case make a suggestion 2012-02-01 07:30:06     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
28/40 (70%) JS/Redir.AR HTML/FakeAlert.I HTML:Iframe-LH Trj Trojan.Redirector.JS.AG TestSignature.JS.Downloader.Agent.KA JS.Click.74 Trojan-Downloader.HTML.Renos!IK JS/Crypted.Q.gen Trojan.Redirector.JS.AG JS/Agent.NVV!tr Trojan.Redirector.JS.AG Trojan-Downloader.H lookup in virustotal.com (90d62297e26f2a08d3d2fdd6479a8d3b)-->[http://www.virustotal.com/latest-report.html?resource=90d62297e26f2a08d3d2fdd6479a8d3b]follow up this md5sum(90d62297e26f2a08d3d2fdd6479a8d3b)follow up this itemfollow up this virusname (HTML%2FFakeAlert.I) as RSS-Feedlookup Virusname at avirafollow up this malware(HTML%2FFakeAlert.I) for scanner (avira) in md5 table28/40 (70%) HTML/FakeAlert.I
 Safe Virus-Viewer and Analyser may take a minute to complete http://maabraha.searchnavi.jp/hmjg7bjoa/ ...  up Saved evidence (13462 Bytes) of first contact as txt May 13 2009 00:20:49 CEST.Saved evidence (13462 Bytes) of last contact as txt May 13 2009 00:20:49 CEST. aliveSaved log of last contact as txt February 06 2012 11:14:53 CET. SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(ip) in same window 61.194.62.161 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS2514) in networks tablefollow up this itemfollow up this AS (AS2514) as RSS-Feed AS2514 SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(review) in same window 61.194.62.161 Safe Virus-Viewer and Analyser may take a minute to complete http://maabraha.searchnavi.jp/hmjg7bjoa/ ... follow up this domain(searchnavi.jp) searchnavi.jp follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (higuchim@nttpc.co.jp) as RSS-Feed higuchim@nttpc.co.jp follow up this itemfollow up this item 61.194.56.0 - 61.194.63.255 follow up this item INFOSPHERE follow up this item InfoSphere (NTTPC Communications, Inc.) follow up this item ns2.muryou-rs.jp follow up this item ns.muryou-rs.jp follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://maabraha.searchnavi.jp/hmjg7bjoa/ ...
50 follow up this item(1196228) 1196228 Report false positive Report closed case make a suggestion 2012-02-01 07:30:06     follow up this itemfollow up this contributor (test) as RSS-Feed sub16possible lookup Evidence at malwaredomainlist.com
28/40 (70%) JS/Redir.AU HTML/FakeAlert.I HTML:Iframe-LH Trj Trojan.Redirector.JS.AG TestSignature.JS.Downloader.Agent.KA JS.Click.70 Trojan-Downloader.HTML.Renos!IK JS/Crypted.Q.gen Trojan.Redirector.JS.AG JS/Agent.NVV!tr Trojan.Redirector.JS.AG Trojan-Downloader.H lookup in virustotal.com (e262c62177e0fab4cd0d528061401ecc)-->[http://www.virustotal.com/latest-report.html?resource=e262c62177e0fab4cd0d528061401ecc]follow up this md5sum(e262c62177e0fab4cd0d528061401ecc)follow up this itemfollow up this virusname (HTML%2FFakeAlert.I) as RSS-Feedlookup Virusname at avirafollow up this malware(HTML%2FFakeAlert.I) for scanner (avira) in md5 table28/40 (70%) HTML/FakeAlert.I
 Safe Virus-Viewer and Analyser may take a minute to complete http://maabraha.searchnavi.jp/hvhhadih3/ ...  up Saved evidence (13679 Bytes) of first contact as txt May 13 2009 00:19:07 CEST.Saved evidence (13679 Bytes) of last contact as txt May 13 2009 00:19:07 CEST. aliveSaved log of last contact as txt February 06 2012 11:14:49 CET. SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(ip) in same window 61.194.62.161 possible lookup in maliciousnetworks.org (FIRE: FInding RoguE Networks) pagepossible lookup in google safebrowsing pagefollow up this AS (AS2514) in networks tablefollow up this itemfollow up this AS (AS2514) as RSS-Feed AS2514 SenderBaselookup 61.194.62.161 at Rus CERT university stuttgart germanylookup 61.194.62.161 at apnicfollow up this item(review) in same window 61.194.62.161 Safe Virus-Viewer and Analyser may take a minute to complete http://maabraha.searchnavi.jp/hvhhadih3/ ... follow up this domain(searchnavi.jp) searchnavi.jp follow up this itemfollow up this country (JP) as RSS-Feed JP follow up this itemfollow up this region (APNIC) as RSS-Feed APNIC follow up this itemfollow up this enail (higuchim@nttpc.co.jp) as RSS-Feed higuchim@nttpc.co.jp follow up this itemfollow up this item 61.194.56.0 - 61.194.63.255 follow up this item INFOSPHERE follow up this item InfoSphere (NTTPC Communications, Inc.) follow up this item ns2.muryou-rs.jp follow up this item ns.muryou-rs.jp follow up this item  follow up this item  follow up this item  Safe Virus-Viewer and Analyser may take a minute to complete http://maabraha.searchnavi.jp/hvhhadih3/ ...
Click here for other already closed incidents for your country (jp)

Click here for other vital incidents


for query you may use wildcard=% or placeholder=_
response
domain
url
virusname
md5
ip
review
score
as
id
scanner
recent
descr
email
netname
inetnum
source
country
nsx
ns1
ns2
ns3
ns4
ns5
sub
sort
# of items to display

Protected by clean MX [Valid RSS] Valid HTML 4.01 Transitional CSS ist valide!
Access is provided for free and subject to these Terms and Conditions.