Zlob Trojan Distributing sites
Site Name: Swfinstrument.com
IP Address: 85.255.120.109
Site Name: Flwsolution.com
IP Address: 85.255.118.180
IP Address: 85.255.120.109
Site Name: Flwsolution.com
IP Address: 85.255.118.180
As usual the site registrants for both the sites are ESTDOMAINS, INC. The installers from these sites were scanned and here are the results:
VirusTotal Scan Result: 9/32 (28.13%)
AntiVir 7.6.0.81 2008.04.08 TR/Zlob.iyh
Authentium 4.93.8 2008.04.09 W32/Downldr2.BMKO
eSafe 7.0.15.0 2008.04.01 suspicious Trojan/Worm
F-Prot 4.4.2.54 2008.04.08 W32/Downldr2.BMKO
Microsoft 1.3408 2008.04.06 TrojanDownloader:Win32/Zlob.gen!AW
Prevx1 V2 2008.04.09 Generic.Malware
VBA32 3.12.6.4 2008.04.06 suspected of Downloader.Zlob.3
VirusBuster 4.3.26:9 2008.04.08 Trojan.DL.Zlob.Gen.47
Webwasher-Gateway 6.6.2 2008.04.08 Trojan.Zlob.iyh
VirusTotal Scan Result: 9/32 (28.13%)
AntiVir 7.6.0.81 2008.04.08 TR/Zlob.iyh
Authentium 4.93.8 2008.04.09 W32/Downldr2.BMKO
eSafe 7.0.15.0 2008.04.01 suspicious Trojan/Worm
F-Prot 4.4.2.54 2008.04.08 W32/Downldr2.BMKO
Microsoft 1.3408 2008.04.06 TrojanDownloader:Win32/Zlob.gen!AW
Prevx1 V2 2008.04.09 Generic.Malware
VBA32 3.12.6.4 2008.04.06 suspected of Downloader.Zlob.3
VirusBuster 4.3.26:9 2008.04.08 Trojan.DL.Zlob.Gen.47
Webwasher-Gateway 6.6.2 2008.04.08 Trojan.Zlob.iyh
Stay away from these sites.
Bharath M N
Bharath M N
