analyzing file: tazerweb-malware-reports/5712b05dca33c575bc588ff10e1082c5.txt |victoryltd.net|Standard query response A 95.168.177.58 | |imagehut4.cn |Standard query response A 63.251.179.57 A 64.158.56.57| |63.251.179.57 |imagehut4.cn |/update/utu.dat |Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.2; SV1)|0x06 | |15:09:56|2010-10-28|6 |10.10.10.7|95.168.177.58 |-> |e |88 |80 |9 |1749 | |15:09:58|2010-10-28|6 |10.10.10.7|95.168.177.58 |-> |e |100 |80 |9 |2213 | |15:09:59|2010-10-28|6 |10.10.10.7|63.251.179.57 |-> |e |101 |80 |9 |932 | |15:15:36|2010-10-28|17 |10.10.10.7|239.255.255.250|-> |e |8 |1900 |2 |350 | analyzing file: tazerweb-malware-reports/6e4f168b202bcae89ab6c5d60638b2a0.txt |middlechrist.com|Standard query response A 78.159.100.32 | |imagehut4.cn |Standard query response A 64.158.56.57 A 63.251.179.57| |64.158.56.57|imagehut4.cn|/update/utu.dat |Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.2; SV1)|0x06 | |14:12:13|2011-10-07|6 |10.10.10.7|78.159.100.32|-> |e |520 |80 |9 |1751 | |14:12:14|2011-10-07|6 |10.10.10.7|78.159.100.32|-> |e |521 |80 |9 |2211 | |14:12:15|2011-10-07|6 |10.10.10.7|64.158.56.57 |-> |e |522 |80 |9 |932 | analyzing file: tazerweb-malware-reports/881e21645e5ffe1ffb959835f8fdf71d.txt |modified|c:/Documents and Settings/dmc73144/Application Data/Mozilla/Firefox/Profiles/ektregxy.default|prefs.js | |onlinebizdirectory.com|Standard query response A 173.203.101.8 | |freshmediaportal.com |Standard query response A 63.251.179.57 A 64.158.56.57 | |contactfriendly.com |Standard query response A 95.211.130.162 | |aeravine.com |Standard query response A 193.27.246.60 | |imagehut4.cn |Standard query response A 64.158.56.57 A 63.251.179.57 | |resetmymemory.com |Standard query response A 64.158.56.57 A 63.251.179.57 | |zonedg.com |Standard query response A 96.9.169.85 | |www.google.com |Standard query response CNAME www.l.google.com A 72.14.204.99 A 72.14.204.103 A 72.14.204.104 A 72.14.204.105 A 72.14.204.147| |freshmediaportal.com |Standard query response A 64.158.56.57 A 63.251.179.57 | |64.158.56.57 |imagehut4.cn |/update/utu.dat |Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.2; SV1) |0x06 | |193.27.246.60|aeravine.com |/dpxezto/ubsnltn.php?adv=adv610&id=82799957&c=10331881 |Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)ver76|0x06 | |193.27.246.60|aeravine.com |/dpxezto/ctbidkjq.php?adv=adv610&id=82799957&c=10331881 |Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)ver76|0x06 | |193.27.246.60|aeravine.com |/dpxezto/zdlfahcaip.php?adv=adv610&id=82799957&c=10331881 |Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)ver76|0x06 | |193.27.246.60|aeravine.com |/dpxezto/dhpjelxr.php?adv=adv610&code1=HOLC&code2=3201&id=82799957&p=1&b=1&c=10331881 |Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)ver76|0x06 | |18:23:32|2011-10-10|6 |10.10.10.7|173.203.101.8 |-> |e |469 |80 |14 |2727 | |18:23:32|2011-10-10|6 |10.10.10.7|95.211.130.162|-> |e |598 |80 |9 |1752 | |18:23:34|2011-10-10|6 |10.10.10.7|95.211.130.162|-> |e |600 |80 |9 |2216 | |18:23:35|2011-10-10|6 |10.10.10.7|64.158.56.57 |-> |e |256 |80 |9 |932 | |18:23:35|2011-10-10|6 |10.10.10.7|193.27.246.60 |-> |e |255 |80 |13 |1781 | |18:23:36|2011-10-10|6 |10.10.10.7|193.27.246.60 |-> |e |602 |80 |13 |1784 | |18:23:37|2011-10-10|6 |10.10.10.7|173.203.101.8 |-> |e |469 |80 |10 |1965 | |18:23:42|2011-10-10|6 |10.10.10.7|64.158.56.57 |-> |e |605 |80 |13 |2059 | |18:23:42|2011-10-10|6 |10.10.10.7|173.203.101.8 |-> |e |469 |80 |5 |300 | |18:23:43|2011-10-10|6 |10.10.10.7|96.9.169.85 |-> |e |606 |80 |9 |1131 | |18:23:47|2011-10-10|6 |10.10.10.7|64.158.56.57 |-> |e |605 |80 |10 |1965 | |18:23:52|2011-10-10|6 |10.10.10.7|64.158.56.57 |-> |e |605 |80 |4 |513 | |18:24:33|2011-10-10|6 |10.10.10.7|72.14.204.99 |-> |e |148 |80 |13 |1942 | |18:24:38|2011-10-10|6 |10.10.10.7|72.14.204.99 |-> |e |148 |80 |11 |2298 | |18:24:43|2011-10-10|6 |10.10.10.7|72.14.204.99 |-> |e |148 |80 |5 |300 | |18:24:44|2011-10-10|6 |10.10.10.7|72.14.204.99 |-> |e |611 |80 |14 |2280 | |18:24:49|2011-10-10|6 |10.10.10.7|72.14.204.99 |-> |e |611 |80 |10 |1965 | |18:24:54|2011-10-10|6 |10.10.10.7|72.14.204.99 |-> |e |611 |80 |5 |300 | |18:25:58|2011-10-10|6 |10.10.10.7|64.158.56.57 |-> |e |624 |80 |13 |2062 | |18:25:58|2011-10-10|6 |10.10.10.7|96.9.169.85 |-> |e |162 |80 |9 |1133 | |18:25:59|2011-10-10|6 |10.10.10.7|96.9.169.85 |-> |e |625 |80 |9 |1131 | |18:26:03|2011-10-10|6 |10.10.10.7|64.158.56.57 |-> |e |624 |80 |11 |2298 | |18:26:08|2011-10-10|6 |10.10.10.7|64.158.56.57 |-> |e |624 |80 |3 |180 | analyzing file: tazerweb-malware-reports/ac46fbcfbbd1bc0f511847909ea2738d.txt |victoryltd.net|Standard query response A 95.168.177.58 | |imagehut4.cn |Standard query response A 64.158.56.57 A 63.251.179.57| |64.158.56.57 |imagehut4.cn |/update/utu.dat |Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.2; SV1)|0x06 | |19:06:19|2010-12-09|6 |10.10.10.7|95.168.177.58 |-> |e |115 |80 |9 |1751 | |19:06:20|2010-12-09|6 |10.10.10.7|95.168.177.58 |-> |e |12 |80 |9 |2219 | |19:06:22|2010-12-09|6 |10.10.10.7|64.158.56.57 |-> |e |169 |80 |9 |932 | |19:11:55|2010-12-09|17 |10.10.10.7|239.255.255.250|-> |e |8 |1900 |1 |175 | analyzing file: tazerweb-malware-reports/f5b373648b2502bcb54abfb5aaf48b25.txt |ultrafastsearch.com|Standard query response A 95.211.8.195 | |imagehut4.cn |Standard query response A 64.158.56.57 A 63.251.179.57| |64.158.56.57 |imagehut4.cn |/update/utu.dat |Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.2; SV1)|0x06 | |05:02:08|2011-06-26|6 |10.10.10.7|95.211.8.195 |-> |e |108 |80 |9 |1752 | |05:02:10|2011-06-26|6 |10.10.10.7|95.211.8.195 |-> |e |316 |80 |9 |2218 | |05:02:11|2011-06-26|6 |10.10.10.7|64.158.56.57 |-> |e |311 |80 |9 |932 | |05:07:45|2011-06-26|17 |10.10.10.7|239.255.255.250|-> |e |8 |1900 |2 |350 |