Author Topic: Malware status on this suspicious site? (Read 1708 times)

polonus · « **on:** April 22, 2012, 10:46:36 PM »

See: htxp://zulu.zscaler.com/submission/show/11da9d4275d363861e1f6b95ad72434e-1335112600
VT gives it as clean: htxps://www.virustotal.com/file/ac86408d89840681f83bd22b73bba27e2dd9dc0db25cac3c065ce0c48b0d487a/analysis/
found blacklisted: hxtp://siteinspector.comodo.com/public/reports/show_log?id=745923
Malware response was closed no alerts detected, but according this recent anubis analysis: htxp://anubis.iseclab.org/?action=result&task_id=14a05c97974c5d524c1d04b836abaafb3&format=html
the executable issues HTTP Requests and downloads potential malicious executable code, bot?

polonus

Pondus · « **Reply #1 on:** April 22, 2012, 11:16:14 PM »

not detected by Malwarebytes

First seen by VirusTotal
2012-01-22 07:41:13 UTC ( 3 måneder ago )

and as you say, VT report it clean.....and 3months old

polonus · « **Reply #2 on:** April 22, 2012, 11:24:42 PM »

Hi Pondus,

Why then, Pondus, is it still reported on VrusWatch list and blacklisted somewhere else?
Sometimes the malware has long been cleansed, closed or response is dead before it is being blacklisted.
So I always have to evaluate and scan for real time results to check.
It is a good thing we check all we do here vice versa,

polonus

Pondus · « **Reply #3 on:** April 23, 2012, 12:05:40 AM »

Quote

It is a good thing we check all we do here vice versa,

never trust anything on internet

Author Topic: Malware status on this suspicious site? (Read 1708 times)

polonus

Malware status on this suspicious site?

Pondus

Re: Malware status on this suspicious site?

polonus

Re: Malware status on this suspicious site?

Pondus

Re: Malware status on this suspicious site?