Recent Posts

Pages: 1 2 [3] 4 5 ... 10
21
Hello!

Please remove www.hausnet.ru from the list. Cause: The data is irrelevant, this site is safe.

It is the site of a small communication operator (ISP). Secure site, nothing malicious there!

P.S. http://www.hausnet.ru/about/contacts/
22
Malicious Domains / bassco.com
« Last post by semiliterate on November 28, 2016, 06:22:01 am »
A while back a plumber looking for shower door specs blithely took a relative's browser here. It's more likely aimed to get traffic from "basco.com" (single 's'), Briggs and Stratton, or looking again, maybe this aviation corp. bassco.

Anyway, symptoms were: claiming the ISP had blocked our IP address (No), locking up the immediate browser window (chrome), generally complaining and fishing for information. That's all. Hoped this was the right place!
23
Malicious Domains / Fake Chrome "urgent update!" page
« Last post by molan1998oif on October 29, 2016, 08:00:05 pm »
kookefinavia.net
The above is the domain of a fake update page.  After the .net was a series of random junk (or seemingly random), which I failed to copy/paste, but I was just focusing on the root part... Brain not functional today, busy with other stuff.
24
Site / Forum Discussion / Re: PREVENT RANSOMWARE WITH THIS FREE OUTLOOK ADDIN
« Last post by dlipman on October 24, 2016, 05:06:29 pm »
Email associated with ransomware is not "infected".

To be infected one would have to have a legitimate email that, at some point, malware has been injected into it.

Email associated with ransomware is designed to be malicious from its origins.  It use a Social Engineering ploy and an attachment that downloads and executes a crypto trojan.
25
Malware Analysis / Banking trojan
« Last post by emmyslim on October 24, 2016, 05:27:39 am »
Hello please can some help me here i need a banking trojan thanks
26
Site / Forum Discussion / PREVENT RANSOMWARE WITH THIS FREE OUTLOOK ADDIN
« Last post by RansomSaver on October 20, 2016, 05:33:50 pm »
Hi everyone!

Out of necessity to cover our own needs and protect our clients we created an application called RansomSaver, it is an Outlook add-in and basically what it does is moves new incoming infected email to a folder under the deleted items called RansomSaver. We provide this software for free and with no strings attached.

RansomSaver has been tested by KASPERSKY LAB using several industry-leading security solutions and found to be completely clean of adware/spyware components, also SOFTPEDIA has branded our application as trusted.
To download or see further information regarding RansomSaver please visit

http://synergy-usa-llc.com/ransomsaver-overview.html
27
Malicious Domains / Malfunction scare attempt - fake tech support
« Last post by molan1998oif on October 11, 2016, 06:05:20 am »
Found this gem, forwarded to me today.
Link begins with the following domain:
virus-crash-i8m8yf.tech
The rest of the link can be seen in the screenshot I'm attaching.

Only things I blacked out was our IP address.

Quite glad our users are not falling for these lame attempts, but I'm making sure they are aware of these.
28
Tools of the trade / Internet News / Load malware domains easy
« Last post by camp0 on October 08, 2016, 08:34:52 pm »
Hi All,

Here is a small script in python for detect malware domains
Hope will be usefull

L
29
Hi,

Do you have FP/FN results for that ip lists? I was wondering if some of them are part of amazonws or other cloud services, so the IP aproach will be weak.
Anyway, good job! ;)

L
30
Malicious Domains / Re: MSE-looking Talking Malicious Fake Scan Site
« Last post by molan1998oif on October 07, 2016, 11:45:47 pm »
I apologize for not deactivating the links to begin this thread... I've fixed it though.
Pages: 1 2 [3] 4 5 ... 10