Malware Domain List

Malware Related => Malicious Domains => Topic started by: parici.lapoulette on March 11, 2010, 08:05:20 pm

Title: Targeted Internet Explorer Zero-Day Attack
Post by: parici.lapoulette on March 11, 2010, 08:05:20 pm
Hey guys !

This is my first report, for a domain name I did not see a report on your forum.

http://topix21century.com
https://topix21century.com

I don't know how to classify this kind of attack, but according to McAfee Labs, "in this attack, vulnerable users are directed to a malicious webpage that downloads and executes a file named notes.exe or svohost.exe (classified as BackDoor-EMN) in drive-by download fashion (visiting the page is enough to get infected)."

I already added those two domains in my personnal blocked hosts file.

I don't know this domain's exact IP Adress, because I don't want to infect my own pc looking for this information.

Source : http://www.avertlabs.com/research/blog/index.php/2010/03/09/targeted-internet-explorer-0day-attack-announced-cve-2010-0806/

Thank you for your hard work !
Title: Re: Targeted Internet Explorer Zero-Day Attack
Post by: SysAdMini on March 11, 2010, 08:14:15 pm
Thread is there  ;)

http://www.malwaredomainlist.com/forums/index.php?topic=3824.0
Title: Re: Targeted Internet Explorer Zero-Day Attack
Post by: parici.lapoulette on March 11, 2010, 10:43:42 pm
Wow !

Seems I'm late !

Thank you for your response, and thanks again for your excellent job every day !
Title: Re: Targeted Internet Explorer Zero-Day Attack
Post by: redwolfe_98 on March 13, 2010, 11:20:26 am
as far as i can tell, "topix21century.com" never was added to the "MDL"..