Author Topic: Conflicting detections?  (Read 1892 times)

0 Members and 1 Guest are viewing this topic.

Offline polonus

  • Avast √úberevangelist
  • Probably Bot
  • *****
  • Posts: 33568
  • malware fighter
Conflicting detections?
« on: May 09, 2013, 09:16:22 PM »
Found this bad host via Bothunter IP search:
At Palevo Tracker I get a conflicting report:
Where the rating was changed here:   to malciious
Going to this interesting info at VT:
(see the detection ratio for the various malware finds)
and various items far from sorted out ->
See recent reports from same IP:
See IDS for MALWARE-CNC Sality logos.gif URL dest IP =  Unverified here:
and what went on really there: because dected as a ET CNC Zeus/Spyeye/Palevo Tracker Reported CnC Server (group 18) -> detected according to these rules in /anti-botnet.20130311_d.txt.htm

Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!