Saturday, March 15, 2008

Malicious sites:

Malicious sites

The following web sites contain Malware payloads:

1. 5yearscontract(dot)com
2. Bulletproofstuff(dot)com
3. Deluxenote(dot)com
4. Digitsdndletters(dot)com
5. Faxmonitoring(dot)com
6. Fklgjslkj(dot)com
7. Itsnotjoke(dot)com
8. Medicasntred(dot)com
9. Mynameisseller(dot)com
10. Polanddreams(dot)com
11. Toneandpulse(dot)com
12. Tredinsa(dot)com
13. Vertuslkj(dot)com
14. Warinmyarms(dot)com

All these sites share the same IP address please make sure not to visit any of the sites as they uses Iframe and java scripts to push malwares on to your system.

Also reported by SecuBox Labs:

Also these sites were involved in the attack: -> the site dropped “ieupdater.exe” file -> the site instructs the infected machine to download various files from the IP -> downloads the following file
alexey.exe -> instructs to download files from > drops “wssl54.exe

The malware does lots of damages to your system downloads zlob,vundo, rogue security applications, changes registry keys, changes host files and does many nasty things.

Please stay away from these sites.

Bharath M N

blog comments powered by Disqus