0 Members and 1 Guest are viewing this topic.
Hi Pondus,And what about this? Re: https://urlquery.net/report.php?id=1417857971136It was or is launching Win32/Agent.WLY trojan from that IP address: http://www.scumware.org/report/210.151.37.117.htmlThis is a detection for a keylogging trojan.IDS alert for ET INFO EXE IsDebuggerPresent (Used in Malware Anti-Debugging) points out to it may be a FP detection of sorts!While this is setting my mind at ease a bit more: http://totalhash.com/search/ip:210.151.37.90 (all generic detections).polonus