Translate

12/29/2013

Malicious Turkish Website: medilaser.org infected with: HEUR:Trojan.Script.Generic

medilaser.org
  • https://www.virustotal.com/de/url/f68ca318085a5db3505ddbe6111aaafa15af96b95eb1466e9d432cba5535d745/analysis/1388297894/
HEUR:Trojan.Script.Generic
  • https://www.virustotal.com/de/file/bb9506821f093531d4db7a6dbbf510cdf98ac7c57089b333342584a39d0cec39/analysis/1388298280/
medilaser.org/AC_ActiveX.js
  • https://www.virustotal.com/de/url/30fbfb0b63394f8da71cbb20fc75e8dc555d6e0eaad7d95c63052eaa87e6d33b/analysis/1388298485/
HEUR:Trojan.Script.Generic
  • https://www.virustotal.com/de/file/815c8216d0ab7ed84f3a4a04f648109f33157dcd88ba7069c2bbe8bbc388f01e/analysis/1388298260/
medilaser.org/AC_RunActiveContent.js
  • https://www.virustotal.com/de/url/ba4562332dd87c7dfdfedc0b3d91f74462d6d063f669c93301e8ea19f07548e2/analysis/1388298622/
HEUR:Trojan.Script.Generic
  • https://www.virustotal.com/de/file/c2c5b8bc509f695e0fbd1402968a030769584c1e5efc6814ca0faa842ca6d096/analysis/1388298251/
medilaser.org/urchin.js
  • https://www.virustotal.com/de/url/3b79f26b13157719bb53294615f8e683c80cfa8a20631902916be76ae1b201c1/analysis/1388298703/
HEUR:Trojan.Script.Generic
  • https://www.virustotal.com/de/file/0d19d9edbdb536533291af1aaf51dddbaed0692deba30210c1200e2ce7cfa24b/analysis/1388298274/
---> REMOTE
creativewebsols.com
  • https://www.virustotal.com/de/url/059a31af6cd63eb0f64b8a0c5d65fcf35759f98fbef2fc3343954154be749d88/analysis/1388298933/
creativewebsols.com/directory/paymentc.php
  • https://www.virustotal.com/de/url/a3126321f8bc71e2105417ce32615ad015c499e11cca86655e11090c48c319d0/analysis/1388298879/

IP 94.138.200.10 is listed @ SORBS
  • http://www.sorbs.net/lookup.shtml
  • https://www.virustotal.com/de/ip-address/94.138.200.10/information/
Eingestellt von um
Labels: , , , , , ,

Keine Kommentare:

Kommentar veröffentlichen

Abonnieren Kommentare zum Post (Atom)