Search
Keyword: URL
software, it connects to the following URL to continue the purchase: http://{BLOCKED}ygateway.com/support.php http://{BLOCKED}ce24online.com/activate/activate.php http://{BLOCKED}tection.com/buy-now.php
}fc.{BLOCKED}a.pl/showthread.php?t=142286 http://bsfgbvsfc.osa.pl/showthread.php?t=142286 --> The said URL redirects to: http://www.{BLOCKED}e.pl/index.html http://www.bee.pl/index.html --> It then
This Trojan may arrive on a system as a fake plugin for Google Chrome or Mozilla Firefox . The URL redirections may then lead to advertisements or scam surveys that may ask for the user's mobile
downloads the file from the following URL and renames the file when stored in the affected system: http://{BLOCKED}83.219/gb05.zip - saved as %System Root%\Documments and Settings\All Users\Application Data
command shell (cmd.exe) kill process It connects to the following websites to send and receive information: *.dyndns.org NOTES: It also connects to the mentioned URL to report system infection and send
The URL where this malware downloads the said file depends on the parameter passed on to it by its components. The downloaded file is usually saved as %User Temp%\{Random characters}.exe . (Note: %User
URL where this malware downloads the said file depends on the parameter "attnf". It then saves the downloaded file as %User Temp%\qaa.exe . It executes the downloaded file. (Note: %User Temp% is the
possibly malicious file into the system. It saves the downloaded file as %User Temp%\best.exe . However, the URL where the file is downloaded is not found in the code of the malicious Java class file. (Note:
which attempts to access the url http://{BLOCKED}er.{BLOCKED}a.pl to download and execute possibly malicious file. The downloaded file is usually saved as %User Temp%\add.exe. As a a result, routines of
URL: http://www.{BLOCKED}rm.com/wzandoom.php?tp=4a5accc3be44aa74 Currently, the above-mentioned URL is inaccessible.
which attempts to access the url http://{BLOCKED}er.{BLOCKED}a.pl to download and execute possibly malicious file. The downloaded file is usually saved as %User Temp%\{random characters}.exe. As a a
possibly malicious file from a certain URL. The URL where this malware downloads the said file depends on the parameter passed on to it by its components. The downloaded file is usually saved as follows:
exhibited on the affected system. NOTES: It downloads from the URL specified it the parameter kb .
downloads from the URL specified in the parameter kpv and saves it as any of the following: %User Temp%\mtsopeqtwy.exe %User Temp%\nkvowpglfkcyhbhmzkkhmzkkhctcmi.exe %User Temp%\iqiytskokmsfneyainemv.exe
collect device information get GPS coordinates get the list of contacts open a URL send an SMS to specified number send an email Steals information
archive file (.JAR) which attempts to download and execute a possibly malicious file from a certain website. The URL where this malware downloads the said file depends on the parameter passed on to it by
user accesses the said website. NOTES: This is the Trend Micro detection for Java files used as a component of another malware. It is used to download files. A URL where a possible malicious file is
routine. NOTES: This is a .class component of a malicious Java archive file (.JAR), which attempts to download and execute possibly malicious file from a certain website. The URL where this malware downloads
vulnerability, this malware connects to a certain URL to possibly download other malicious files. This Trojan takes advantage of certain vulnerabilities. Arrival Details This Trojan may be downloaded from the
The URL where this malware downloads the said file depends on the parameter passed on to it by its components. The downloaded file is usually saved as %User Temp%\{Random characters}.exe . As a a