Author Topic: Sometimes researchers have to go the extra mile to get to malicious IP detection  (Read 1287 times)

0 Members and 1 Guest are viewing this topic.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33931
  • malware fighter
Where it was being detected in the first place:
https://viz.greynoise.io/ip/42.239.248.198

Where detection was partly being confirmed: https://maltiverse.com/search;query=42.239.248.198;page=1;sort=query_score

And at VirusTotal which had nothing of these flagged: https://www.virustotal.com/gui/ip-address/42.239.248.198/details
Here it was also missed: https://www.malwareurl.com/ip_listing.php?ASN=AS4837

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!