Author Topic: What is possible JKDDOS download b.ex-?  (Read 1452 times)

0 Members and 1 Guest are viewing this topic.

Offline polonus

  • Avast √úberevangelist
  • Probably Bot
  • *****
  • Posts: 33929
  • malware fighter
What is possible JKDDOS download b.ex-?
« on: June 17, 2012, 05:33:56 PM »
Avast detects, see:
as Win32:Malware-gen - we are being protected
Detected: BDS/IRCBot.FY.268 alive since: 2012-06-17 11:20:26
Now on the IDS detection:
IDS flag, see: ET CURRENT_EVENTS Possible JKDDOS download b.exe
What is the meaning of this IDS alert?
From a technical point of view, the JKDDOS family appears quite unremarkable and shares many characteristics common to other Chinese DDoS malware such as YoyoDDoS, Avzhan, Chcod, and Darkshell. What do we have here?
Fakee AV also found for that IP, also active in e-mail scams,

Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!