Malware Related > Zlkon.lv

hs.2-215.zlkon.lv -(94.247.2.215)

<< < (4/4)

SysAdMini:
Fake AV

--- Code: ---ascertaindiseasepro.cn/?wm=70100
ascertaindiseasepro.cn/installer_70100.exe
--- End code ---
http://www.virustotal.com/analisis/6a7fa1578f1a8374220f0366f10a98e7 19/40

Malware-Web-Threats:
Fake error page:

--- Code: ---hxxp://countedantiviruspro.com

--- End code ---

Trojan Fake AV:

--- Code: ---hxxp://addedantivirusonline.com/setup.exe
hxxp://addedantivirusonline.com/se.exe (InternetAntivirusPro.exe)
hxxp://addedantivirusonline.com/install/AntivirusPlus_ba.exe
hxxp://addedantivirusonline.com/install/AntivirusPlus.exe

--- End code ---

VirusTotal: Trojan - 10/40 (25%)
VirusTotal: Trojan - 18/40 (45%)
VirusTotal: Trojan - 10/40 (25%)
VirusTotal: Trojan - 9/40 (22.5%)

Anubis Report
Anubis Report
Anubis Report
Anubis Report

Anubis Report for se.exe (InternetAntivirusPro.exe)


--- Quote ---From ANUBIS:1037 to 94.247.2.216:80 - [searchopt7.com] 
Request: GET /cmd.php 
Response: 200 "OK" 

--- End quote ---

Anubis Report for AntivirusPlus.exe


--- Quote ---TCP Connection Attempts:   
from ANUBIS:1740 to 220.175.36.102:139 

TCP Scans:   
50 IPs on Port 445
220.175.0.0/16

--- End quote ---

Malware-Web-Threats:
Fake error page:

--- Code: ---hxxp://bestcountedantivirus.com
--- End code ---

CkreM:
fake AV:

--- Code: ---freecoveronline.cn
freedefense2u.cn
--- End code ---

and the fake payment site:
https://secure-plus-payments.com/cgi-bin/nph-pr/pandora/softcore/buy_soft.php?productid=avplus3&advert=1

Navigation

[0] Message Index

[*] Previous page

Go to full version