Author Topic: New Trojan not detected by avast (Read 3254 times)

tincho365 · « **on:** August 11, 2010, 08:56:32 PM »

New Page infected with a Trojan not detected by avast
www.nuevaq .fm
Trojan detected by Kaspersky 2011. I hope it can also detect avast
Thanks

Lisandro · « **Reply #1 on:** August 11, 2010, 09:28:19 PM »

Please, edit the links to not-live ones (change http for hxxp, for instance or add spaces between the url).
VT does not detect it yet.

Pondus · « **Reply #2 on:** August 11, 2010, 10:26:23 PM »

VirusTotal - nuevaq.fm.htm - 0/42
http://www.virustotal.com/file-scan/report.html?id=8393804b010e3a458199a4db667c01fcd60538159daf73d3eec6f8d7d9c97f7c-1281559511

Anubis url scan
http://anubis.iseclab.org/?action=result&task_id=17ee02a0259f16a44e9b7c1e05e4cc243&format=html

URLVoid scan

Report   2010-05-31 21:41:59 (GMT 1)
Website   nuevaq.fm
Domain Hash   c75a86db12cc5ce7e0808e6b13a7fa97
IP Address   74.55.58.171 [SCAN]
IP Hostname   ab.3a.374a.static.theplanet.com
IP Country    US (United States)
AS Number   21844
AS Name   THEPLANET-AS - ThePlanet.com Internet Service...
Detections   2 / 20 (10 %)
Status   SUSPICIOUS

Scanning site with:   BrowserDefender     CLEAN
Scanning site with:   Google Diagnostic     CLEAN
Scanning site with:   hpHosts     CLEAN
Scanning site with:   Malware Center     CLEAN
Scanning site with:   Malware Patrol     CLEAN
Scanning site with:   MalwareDomainList     CLEAN
Scanning site with:   McAfee SiteAdvisor     CLEAN
Scanning site with:   McAfee Trusted Source     CLEAN
Scanning site with:   MyWOT     DETECTED
Scanning site with:   Norton SafeWeb     CLEAN
Scanning site with:   ParetoLogic URL Clearing House     CLEAN
Scanning site with:   PhishTank     CLEAN
Scanning site with:   Project Honey Pot     CLEAN
Scanning site with:   SpamCop     CLEAN
Scanning site with:   Spamhaus     CLEAN
Scanning site with:   SURBL     CLEAN
Scanning site with:   TrendMicro Web Reputation     CLEAN
Scanning site with:   URIBL     CLEAN
Scanning site with:   Web Security Guard     DETECTED
Scanning site with:   ZeuS Tracker     CLEAN

tincho365 · « **Reply #3 on:** August 11, 2010, 10:50:18 PM »

Uploaded with ImageShack.us

Pondus · « **Reply #4 on:** August 11, 2010, 10:53:43 PM »

Do you have avast and kaspersky installed ?

tincho365 · « **Reply #5 on:** August 11, 2010, 11:01:26 PM »

I have two computers, one I have the kaspersky internet security 2011 and the other I have the avast! free 5

Yanto.Chiang · « **Reply #6 on:** August 12, 2010, 06:21:12 AM »

Hi,

It's look that this website was infected with malicious code which automatically will downloaded when the user open this website.

Quote

Of the 2 pages we tested on the site over the past 90 days, 0 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2010-08-10, and the last time suspicious content was found on this site was on 2010-08-05.
Malicious software includes 3 exploit(s).

This site was hosted on 1 network(s) including AS21844 (THEPLANET).

reference information :
http://www.unmaskparasites.com/security-report/
http://www.google.com/safebrowsing/diagnostic?site=www.nuevaq.fm

cheers,

Author Topic: New Trojan not detected by avast (Read 3254 times)

tincho365

New Trojan not detected by avast

Lisandro

Re: New Trojan not detected by avast

Pondus

Re: New Trojan not detected by avast

tincho365

Re: New Trojan not detected by avast

Pondus

Re: New Trojan not detected by avast

tincho365

Re: New Trojan not detected by avast

Yanto.Chiang

Re: New Trojan not detected by avast