[Viruswatch] Virus-sites with status changes(1): As of 2013-10-19 13:07:41 CEST

root at filter.netpilot.net root at filter.netpilot.net
Sat Oct 19 13:29:18 CEST 2013


Down:	NA	APNIC	LK	aselaeranda at slt.com.lk	222.165.135.195	 to 222.165.135.195	wpc.gov.lk	http://ww1.wpc.gov.lk/images/files/original/icici/
Up(nil):		ARIN	US		68.168.25.45	 to 68.168.25.45	cldmail2.com	http://ww175.cldmail2.com/login.srf?wa=wsignin1.0&rpsnv=18&ct=64233496&rver=6.1.1679.0&wp=MBI&wreply=oGR0BGWNLJ9fYzAioD==&c=US
Up(nil):		ARIN	US		68.168.25.45	 to 68.168.25.45	cldmail2.com	http://ww161.cldmail2.com/login.srf?wa=wsignin1.0&rpsnv=19&ct=48336012&rver=6.1.2425.0&wp=MBI&wreply=F2SfoUIgLJE5ZxOuo2jhL29g&c=US
Up(nil):		ARIN	US		68.168.25.45	 to 68.168.25.45	cldmail2.com	http://ww150.cldmail2.com/login.srf?wa=wsignin1.0&rpsnv=19&ct=78489714&rver=6.1.7815.0&wp=MBI&wreply=qzSlMJkuqzSlp2ShDTSioP5wo20=&c=US
Up(nil):		ARIN	US		68.168.25.45	 to 68.168.25.45	cldmail2.com	http://ww149.cldmail2.com/login.srf?wa=wsignin1.0&rpsnv=17&ct=23361342&rver=6.1.2808.0&wp=MBI&wreply=oJklqKA0nJ5NLJ9fYzAioD==&c=US
Up(nil):		ARIN	US		68.168.25.45	 to 68.168.25.45	cldmail2.com	http://ww113.cldmail2.com/login.srf?wa=wsignin1.0&rpsnv=19&ct=48525719&rver=6.1.1699.0&wp=MBI&wreply=oJymp3yioTyyDTSioP5wo20=&c=US
Up(nil):	Trojan-Spy.HTML.Paylap	APNIC	MY	ipnoc at techavenue.net	202.43.100.125	 to 202.43.100.125	webcombi.com	http://webcombi.com/justdrive/
Down:	NA	ARIN	US	abuse at gigenet.com	66.252.2.90	 to 66.252.2.90	verified-download.com	http://verified-download.com/file/0SFG0
Up(nil):	unknown_html	RIPE	NL	abuse at net-art.cz	46.183.146.166	 to 46.183.146.166	untds.org	http://untds.org/?code=g2z5vs
Up(nil):	unknown_html	RIPE	NL	abuse at net-art.cz	46.183.146.166	 to 46.183.146.166	untds.com	http://untds.com/?code=g2z5vs
Up(nil):	unknown_html	ARIN	US	ipadmin at monstercommerce.com	206.188.192.247	 to 206.188.192.247	tackos.com	http://tackos.com/index.html
Up(nil):	Win.Adware.Agent-2573	RIPE	EU		141.101.116.149	 to 141.101.116.149	superfilesdatak.asia	http://superfilesdatak.asia/v388?installer_file_name=direct+link
Up(nil):		ARIN	US	noc at amazon.com	72.21.214.157	 to 176.32.99.108	mydatastatssrv.com	http://stats.mydatastatssrv.com/installer.gif?action=started&browser=ie&browserver=6&ver=1_29_153&bic=118BBFD8A5E94A2A93560345E3E17B11IE&app=21810&appver=0&verifier=32586ffc8677bc6853b3e26dd2fb1720&srcid=151326&subid=default&zdata=151326&subid=&pid=1428&xpiver=0_92&crxver=1_25_59&default=ie&os=XP32&admin=1&type=192&asw=0&procstarttime=1382167092&rnd=1382167092
Up(nil):		RIPE	DE	abuse at hetzner.de	46.4.100.142	 to 46.4.100.142	cubi.me	http://stats.cubi.me/piwik.php?idsite=43&rec=1&action_name=000&url=http://instalador.exe/000&_cvar={"2":["ref","v2.pdf.nouvelleversion.com"],"3":["PAYM","4"],"4":["PAYV",""]}&cvar={"1":["producto","PDF+Creator%22%5D%7D
Down:	NA	RIPE	DE	abuse at hetzner.de	46.4.100.142	 to 46.4.100.142	cubi.me	http://stats.cubi.me/piwik.php?idsite=37&rec=1&action_name=998+Instalar+ofertas%26url%3Dhttp%3A%2F%2Finstalador.exe%2F998+Instalar+ofertas%26cvar%3D%7B%221%22%3A%5B%22Instalador%22%2C%222013-09-24%3A10%3A25%3A21%22%5D%2C%222%22%3A%5B%22referer%22%2C%22v2.pdf.nouvelleversion.com%22%5D%7D
Up(nil):		RIPE	DE	abuse at hetzner.de	46.4.100.142	 to 46.4.100.142	cubi.me	http://stats.cubi.me/piwik.php?cvar={"1":["Instalador","2013-10-03:16:07:16"],"2":["url","http://files.gooofull.com/resources/binaries/0000000079_dl.exe"],"3":["referer","gooofull.net"]}&_cvar={"2":["AVFamily","--"],"3":["Antivirus","--/--"],"4":["Firewall","--"],"5":["Antispyware","--"]}&action_name=000+Ejecutar+instalador%26idsite%3D18%26rec%3D1%26url%3Dhttp%3A%2F%2Finstalador.exe%2F000+Ejecutar+instalador
Up(nil):		RIPE	DE	abuse at hetzner.de	46.4.100.142	 to 46.4.100.142	cubi.me	http://stats.cubi.me/piwik.php?cvar={"1":["Instalador","2013-09-24:10:25:21"],"2":["url","http://cdn.circu.me/pdfcreator/PDFCreator-1_5_1_setup.exe"],"3":["referer","v2.pdf.nouvelleversion.com"]}&_cvar={"2":["AVFamily","--"],"3":["Antivirus","--/--"],"4":["Firewall","--"],"5":["Antispyware","--"]}&action_name=000+Ejecutar+instalador%26idsite%3D37%26rec%3D1%26url%3Dhttp%3A%2F%2Finstalador.exe%2F000+Ejecutar+instalador
Up(nil):		ARIN	US	abuse at singlehop.com	184.154.27.232	 to 184.154.27.232	info-stream.net	http://stat.info-stream.net/report.php?no_policy=1&source=uninstaller&stage=2&ver=9.1.2.2&wvr=501&mntrId=6C78080027FE1498
Up(nil):	unknown_html	ARIN	US	network-abuse at cc.yahoo-inc.com	98.139.135.21	 to 98.139.135.21	heavycargo-ltd.com	http://sl.allegrounds.pl.accounts.heavycargo-ltd.com/fnd/authentication/response_type/code_client_id/tb5SFf3cRxEyspDNredirect_url/enter_login.html
Up(nil):		RIPE	FR	abuse at proxad.net	88.190.253.248	 to 88.190.253.248	skizooinfomaniak.com	http://skizooinfomaniak.com/ag/roxyservice_france_monelib_q0np/
Down:	NA	RIPE	NL	abuse at leaseweb.com	95.211.178.221	 to 95.211.178.221	drbarisgursoy.com	http://service-account.drbarisgursoy.com/service/a6cc400881a9c720e7c5f877c4513557/?cmd=_home&dispatch=0f88c0eabfd43f28485a7bdc29b9ecbb0f88c0eabfd43f28485a7bdc29b9ecbb
Up(nil):	unknown_html	RIPE	NL	abuse at leaseweb.com	95.211.178.221	 to 95.211.178.221	drbarisgursoy.com	http://service-account.drbarisgursoy.com/service/a6cc400881a9c720e7c5f877c4513557/
Up(nil):		APNIC	JP	hm-changed at apnic.net	59.133.109.70	 to 59.133.109.70	jacc.cn.com	http://secure.square-enix.com.jacc.cn.com/account/app/svc/Login.htm?cont
Up(nil):	unknown_html	ARIN	US	ip-admin at coloquest.com	66.55.92.88	 to 66.55.92.88	securejava.org	http://securejava.org/new/
Up(nil):		ARIN	US	admin at internetnamesforbusiness.com	209.235.144.9	 to 209.235.144.9	sarabeaumontphotography.com	http://sarabeaumontphotography.com/plugins/search/maybank2u/sslactivate/M2ULogin.doaction=Login.html
Down:	NA	RIPE	GB	abuse at telecity.com	213.52.252.105	 to 213.52.252.105	random-logic.com	http://reportinstaller.random-logic.com/logs.asp?MSGID=10053&DATA=778186339\x04a9ed8302-610b-41e4-9fb1-a9127d02b8\x041\x040\x04http://setupspoker.images4us.com/setups/LuckyAce/EN/p-7-en-0-6.12-0/18/SetupFiles/GIB/SDL/text.txt
Down:	NA	RIPE	GB	abuse at telecity.com	213.52.252.105	 to 213.52.252.105	random-logic.com	http://reportinstaller.random-logic.com/logs.asp?MSGID=10051&DATA=778186339\x04a9ed8302-610b-41e4-9fb1-a9127d02b8\x042\x040\x04http://setupspoker.images4us.com/setups/LuckyAce/EN/p-7-en-0-6.12-0/18/SetupFiles/GIB/SDL/installer.gif
Down:	NA	RIPE	GB	abuse at telecity.com	213.52.252.105	 to 213.52.252.105	random-logic.com	http://reportinstaller.random-logic.com/logs.asp?MSGID=10001&DATA=778186339\x04a9ed8302-610b-41e4-9fb1-a9127d02b8\x040\x040\x043,+7%2C+0%2C+25%5Cx040%5Cx04178.33.236.186%5Cx041016424%5Cx04Whistler%5Cx041024768%5Cx04314707968%5Cx04082241700674519708%5Cx047%5Cx04st%3D0_dl%3D0_bc%3D0_anid%3D0_se%3D165003_testver%3D_ic%3D0%5Cx040
Up(nil):	unknown_html	ARIN	US	aes-noc at amazon.com	54.245.233.100	 to 54.245.233.100	secureddownloadcdn.com	http://os.secureddownloadcdn.com/SecuredDownload/?v=3.0&c=475163252
Up(nil):	unknown_html	ARIN	US	aes-noc at amazon.com	54.245.235.34	 to 54.245.233.100	secureddownloadcdn.com	http://os.secureddownloadcdn.com/SecuredDownload/?v=3.0&c=2092426157
Up(nil):	unknown_html	ARIN	US	aes-noc at amazon.com	54.244.230.64	 to 54.245.233.100	secureddownloadcdn.com	http://os.secureddownloadcdn.com/SecuredDownload/?v=3.0&c=1693909041
Up(nil):	unknown_html	ARIN	US	aes-noc at amazon.com	54.245.233.100	 to 54.245.233.100	secureddownloadcdn.com	http://os.secureddownloadcdn.com/SecuredDownload/?v=3.0&c=1547720825
Up(nil):	unknown_html	ARIN	US	aes-noc at amazon.com	54.245.235.34	 to 54.245.233.100	secureddownloadcdn.com	http://os.secureddownloadcdn.com/SecuredDownload/?v=3.0&c=1428675055
Up(nil):	unknown_html	ARIN	US	aes-noc at amazon.com	54.244.230.64	 to 54.245.233.100	secureddownloadcdn.com	http://os.secureddownloadcdn.com/SecuredDownload/?v=3.0&c=1264361501
Up(nil):	unknown_html	ARIN	US	aes-noc at amazon.com	54.245.233.100	 to 54.245.235.34	secureddownloadcdn.com	http://os.secureddownloadcdn.com/SecuredDownload/?v=3.0&c=1058193857
Down:	NA	RIPE	NL	ripe at webazilla.com	78.140.175.12	 to 78.140.175.12	moreinstalls.ru	http://moreinstalls.ru/launch?info=8653d18c7a6c11cec62dfb324dda0f39
Up(nil):	unknown_html_RFI_php	RIPE	NL	ripe at webazilla.com	78.140.175.12	 to 78.140.175.12	moreinstalls.ru	http://moreinstalls.ru/info?story=cf2bb8d3fff780&file=748823
Up(nil):	unknown_html_RFI_php	RIPE	NL	ripe at webazilla.com	78.140.175.12	 to 78.140.175.12	moreinstalls.ru	http://moreinstalls.ru/info?story=ac7cae3caf008b&file=926761
Down:	NA	RIPE	NL	ripe at webazilla.com	78.140.175.12	 to 78.140.175.12	moreinstalls.ru	http://moreinstalls.ru/info?story=4a85a0216ac000&file=132
Up(nil):	unknown_arch_zip	ARIN	US	abuse at dreamhost.com	67.205.19.161	 to 67.205.19.161	download-center.info	http://mirrord.download-center.info/b9/0/6/399fe6df17f9512efe620634830de4c4/DroidSaver.apk
Up(nil):	unknown_html	ARIN	US	noc at cloudflare.com	108.162.201.23	 to 108.162.202.23	megadown.us	http://megadown.us/wacz9iZY
Down:	NA	ARIN	US	abuse at oversee.net	208.73.211.230	 to 208.73.211.230	ksandrafashion.com	http://ksandrafashion.com/logo.gif?19bd7=316293
Down:	NA	RIPE	NL	ripe at webazilla.com	78.140.165.153	 to 78.140.165.153	goldcentre.ru	http://goldcentre.ru/software_install?guid={FDEC629A-98FC-4E3F-8880-869302096144}&sig=3857575235&hsig=ea04b5113141c696ab485c01dd3762546ebd867358efc84773b203342a853978&ovr=0&file_id=102146384&did=329161317&browser=1
Down:	NA	RIPE	NL	ripe at webazilla.com	78.140.165.153	 to 78.140.165.153	goldcentre.ru	http://goldcentre.ru/software_install?guid={AD0316BD-A1F7-4050-906C-B3D8EAD4FEDE}&sig=878185764&hsig=ea04b5113141c696ab485c01dd3762546ebd867358efc84773b203342a853978&ovr=0&file_id=114045449&did=368076318&browser=1
Down:	NA	RIPE	NL	ripe at webazilla.com	78.140.165.153	 to 78.140.165.153	goldcentre.ru	http://goldcentre.ru/software_install?guid={73397265-AFF1-4E22-81B2-561CF226B656}&sig=3723247092&hsig=ea04b5113141c696ab485c01dd3762546ebd867358efc84773b203342a853978&ovr=0&file_id=78859036&did=330532673&browser=1
Down:	NA	RIPE	NL	ripe at webazilla.com	78.140.165.153	 to 78.140.165.153	goldcentre.ru	http://goldcentre.ru/software_install?guid={554FCB1E-019C-4AE6-9064-955BBF929069}&sig=3375554376&hsig=ea04b5113141c696ab485c01dd3762546ebd867358efc84773b203342a853978&ovr=0&file_id=11456051&did=345619203&browser=1
Down:	NA	RIPE	NL	ripe at webazilla.com	78.140.165.153	 to 78.140.165.153	goldcentre.ru	http://goldcentre.ru/software_install?guid={169AEF34-F874-43A1-BA01-5E2991A0F26D}&sig=568923007&hsig=ea04b5113141c696ab485c01dd3762546ebd867358efc84773b203342a853978&ovr=0&file_id=13037304&did=357889537&browser=1
Down:	NA	RIPE	NL	ripe at webazilla.com	78.140.165.153	 to 78.140.165.153	goldcentre.ru	http://goldcentre.ru/software_install?guid={14940975-29AB-4F26-8B91-40662C10ABE1}&sig=3273057818&hsig=ea04b5113141c696ab485c01dd3762546ebd867358efc84773b203342a853978&ovr=0&file_id=113159975&did=365170487&browser=1
Down:	NA	RIPE	NL	ripe at webazilla.com	78.140.165.153	 to 78.140.165.153	goldcentre.ru	http://goldcentre.ru/get_xml?file_id=114045449&did=368076318&hsig=0ac9fa9fc3072bd289294af59893fd816ebd867358efc84773b203342a853978
Down:	NA	RIPE	NL	ripe at webazilla.com	78.140.165.153	 to 78.140.165.153	goldcentre.ru	http://goldcentre.ru/get_xml?file_id=102146384&did=329161317&hsig=0ac9fa9fc3072bd289294af59893fd816ebd867358efc84773b203342a853978
Up(nil):	unknown_html_RFI_eval	ARIN	US	abuse at GorillaServers.com	23.29.65.162	 to 23.29.65.162	fileunlckr.com	http://fileunlckr.com/4509
Down:	NA	RIPE	UA		130.0.236.15	 to 130.0.236.15	express-downloader.org	http://express-downloader.org/get_torrent/?pc_id=10193a6e7b6d1fe610b7976819f07188&pid=128&name=Aimbot+-+%D0%B0%D0%B8%D0%BC%D0%B1%D0%BE%D1%82+%D0%B4%D0%BB%D1%8F+css+v80%26type%3Dfile%26lang%3Dru%26ver%3Dexd_1.1%26pk%3Dee8940df678d6b35687523332e6aceae
Down:	NA	RIPE	RU	noc at mnogobyte.ru	146.255.192.10	 to 146.255.192.10	dwmldr.ru	http://dwmldr.ru/install?guid={44EEAA6A-55D9-495E-9842-4C51D410F268}&sig=891372073&hsig=ea04b5113141c696ab485c01dd3762546ebd867358efc84773b203342a853978&ovr=0&file_id=137322042&browser=1
Down:	NA	RIPE	TR	abuse at aerotek.com.tr	37.230.111.52	 to 37.230.111.52	name.tr	http://bayraktar.name.tr/
Down:	unknown_html_google_malware	RIPE	DE	abuse at teaminternet.de	62.116.181.25	 to 199.59.243.105	asmadania.com	http://asmadania.com/images/logo.gif?22ac8=1278216
Down:	NA	RIPE	UA	abuse at uaservers.net	5.34.177.99	 to 5.34.177.99	dns7k.com	http://99278.dns7k.com:443/Fry/?a
Down:	NA	RIPE	UA	abuse at uaservers.net	5.34.177.99	 to 5.34.177.99	dns7k.com	http://99278.dns7k.com:443/Fry?a
Down:	NA	ARIN	US	adhoon at accessitx.com	66.199.227.60	 to 66.199.227.60	66.199.227.60	http://66.199.227.60/4/w.php?f=16
Down:	NA	APNIC	HK	ipadmin at hostcrest.com	175.41.28.157	 to 175.41.28.157	175.41.28.157	http://175.41.28.157/api/urls/?ts=c53807b9&affid=63202

---------------------
for online data visit http://support.clean-mx.de/clean-mx/viruses.php
---------------------
Access is provided for free and subject to these Terms and Conditions: http://support.clean-mx.de/netpilot_TERMS_OF_USE.html


More information about the VirusWatch mailing list