Why this search.exe IP is flagged by AbuseIPDB?

Avast WEBforum »
Other »
Viruses and worms (Moderators: Maxx_original, misak) »
Why this search.exe IP is flagged by AbuseIPDB?

« previous next »

Print

Pages: [1] Go Down

Author Topic: Why this search.exe IP is flagged by AbuseIPDB? (Read 536 times)

0 Members and 1 Guest are viewing this topic.

polonus

Avast Überevangelist
Probably Bot
Posts: 33905
malware fighter

Why this search.exe IP is flagged by AbuseIPDB?

« on: November 19, 2023, 03:07:39 PM »

See: https://www.abuseipdb.com/check/204.79.197.200 was found in their database.
Also see: https://www.shodan.io/host/204.79.197.200

See also: https://cleantalk.org/blacklists/204.79.197.200 Detected as spam source (and other attacks).

Low risk according to crowdsourced content-> https://www.virustotal.com/gui/url/7225ba05f003e03d4b126246e348ce92080a6dd25f3b507fc27a082f38c1ce2f
4 vendors give the IP address as malicious.

File analysis gives it the all green here: https://www.virustotal.com/gui/file/c987ec90685c19d24d0fa92a03e3d8675089fe1b14f16eb4228f9062ea75fc40?nocache=1

Also see: https://www.virustotal.com/gui/url/d1bc71de7ce1902d402517eb9da782086ffe5c1230b314ad83befba9f4d8e699

IP is being abused for port-probing, phishing, router scanning and bot activity,

But insecure connection to: -https://a-0001.a-msedge.net/ -> (index):1540 crbug/1173575, non-JS module files deprecated.
Site cannot be reached ....

polonus

« Last Edit: November 19, 2023, 05:25:40 PM by polonus »

Logged

Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Print

Pages: [1] Go Up

« previous next »

Avast WEBforum »
Other »
Viruses and worms (Moderators: Maxx_original, misak) »
Why this search.exe IP is flagged by AbuseIPDB?

SMF 2.0.18 | SMF © 2015, Simple Machines
XHTML
RSS
WAP2

Page created in 0.051 seconds with 20 queries.