Help!

Sandbox report for latest on-line virus scan malware

  
Post new topic   General Reply to Topic (not reply to a specific post)    Forums Home -> General Discussions RSS
Next:  AntiVir wont update?  
Author Message
Virus Guy
External


Since: Aug 05, 2005
Posts: 452
PostPosted: Mon Sep 07, 2009 12:14 pm    Post subject: Sandbox report for latest on-line virus scan malware
Archived from groups: alt>comp>virus (more info?)
In case you have to deal with the aftermath of someone that agrees to
download and run a copy of the scam anti-virus application that forces
it's way in front of the user (usually as a result of clicking on an
infected google search result) you might want to look at this:

http://anubis.iseclab.org/?action=result&task_id=1f384edd94763bb74e55c...c41bcd9

The domains that are generating the fake http scanner page and serving
up the malware are:

gotomyprotectedzone.com
limestee.net
windows-protectonline.net
onlinesecurescan.com
(and no doubt others)

An example file that I grabbed (setup_build7_195.exe) naturally turns up
no hits at virustotal (that's the file that was sandboxed above at
anubis).
Back to top
Display posts from previous:   
Post new topic   General Reply to Topic (not reply to a specific post)    Forums Home -> General Discussions All times are: Eastern Time (US & Canada)
Page 1 of 1

 
 You can post new topics in this forum
You can reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum