What missed detection here?

Avast WEBforum »
Other »
Viruses and worms (Moderators: Maxx_original, misak) »
What missed detection here?

« previous next »

Print

Pages: [1] Go Down

Author Topic: What missed detection here? (Read 1392 times)

0 Members and 1 Guest are viewing this topic.

polonus

Avast Überevangelist
Probably Bot
Posts: 33900
malware fighter

What missed detection here?

« on: April 24, 2013, 05:53:30 PM »

See: https://www.virustotal.com/en/url/76ca453547fd1d135a7881c31a9140e63fa39aec12c8a9f121de24a256ed6fdd/analysis/1366817628/
and accordingly: https://www.virustotal.com/en/file/42fbe292a344699e42ea62d30483805c8ab2446c1d372a32eb50853cef2a539c/analysis/1366621934/
Zeus Palevo connected? see: http://urlquery.net/report.php?id=2148417
But not listed here: https://palevotracker.abuse.ch/?ipaddress=199.59.243.106
IP has a 10% chance of being malicious - also consider the passive DNS data via VT:
https://www.virustotal.com/en/ip-address/199.59.243.106/information/
See analysis here: http://anubis.iseclab.org/?action=result&task_id=16ab3cb64b6460d0429a59fae818d7663&format=html
Vulnerabilty within Adobe Flash with keylogger because of -> Extensible Cache\ MSHist012011021420110221 that is IE's Super History
read what is stored there: http://www.wbaudisch.de/DeletingHistory/index.html link article author = Wolfgang Baudisch
domainpark[1].com&kw= in the Anubis analysis could be linked to Trojan.Win32 activity...

polonus

Logged

Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Print

Pages: [1] Go Up

« previous next »

Avast WEBforum »
Other »
Viruses and worms (Moderators: Maxx_original, misak) »
What missed detection here?

SMF 2.0.18 | SMF © 2015, Simple Machines
XHTML
RSS
WAP2

Page created in 0.099 seconds with 21 queries.