サーチ
キーワードURL
TSPY_ZBOT.SMMY connects to thus URL to download its configuration file.
BKDR_CYCBOT.EI connects to this URL to download possibly malicious files.
BKDR_CYCBOT.EI connects to this URL to download possibly malicious files.
This URL is malicious due to its Trojan redirection routines.
BKDR_CYCBOT.EI connects to this URL to download possibly malicious files.
BKDR_CYCBOT.EI connects to this URL to download possibly malicious files.
HTML_HTAPORN connects to this malicious URL which contains pornographic content.
HTML_PORNY connects to this malicious URL which contains pornographic content.
http://c1.{BLOCKED}oaddatamy.info/?step_id=10&installer_id={Installer ID}&publisher_id=625&source_id=0&page_id=0&affiliate_id=0&country_code={Country code}&locale={Language}&browser_id=4&download_id={}&external_id={}&session_id={}&hardware_id={}&q={file to be downloaded}&q={file to be downloaded}&product_name={file to be downloaded}&installer_file_name={file to be downloaded}&external_id={}&self_redirect=0&filesize=
ADW_INSTALLREX connects to this URL to download its component files.
http://{BLOCKED}wnloadscan.info/get/?data=e4LnkKKE798SslWEefoj6kxjkQ18HZq2QmfFBJ0wIHPJxpfOOzUQ7tO3/ZpctZYbztmoXLhN8rsazOhemUexo2O2Vs2okyCSjLTLdhKDXIIS6JDiJq8LwMhHsE0CmBwAXhC36SLE%2BiRYF5K5%2BhAibG3xlKyXZzrFiRAWuq0Wyg/mwJjeUIH5DsgNZ3z96PlJcGQpBzg3qhmY5QlGd00RR20cBq68WLP%2B1a0EI2NtjJOI1toOTAX4VinzuaaJic1iboBlipy%2BoAOCfXRBQKEd1ESdAup77razpFyArWAhYrjodGyjCq1XeY5fIP77nxd3j9fCA3HlXSKIo%2BGdnybJOeVOmq0sJFCCU7VifIPvBnaF6YvTPt%2BPrd/FcEGt/s/5QHtkwSBxdBCiGXEViLagZALGNYMdqh4b671kiNO5UK17GKywkAC8C/YOTFWTwiHhMcJPcs5k5PuBWIKUtemvlWv%2BmcbevAIJW603wLWocBmlxO7LwndKho%2BTEAS1kcEmDK&version=4
ADW_INSTALLREX connects to this URL to download its component files.
http://{BLOCKED}adcardd.info/?e=bsp&publisher=625&country={Country code}&dd=5&cid=519&vn=114&ind={}&exid={}&ssd={}&hid={}&osid=501&channel=0&sfx=1&jc=1&category_name=&install_date={Installation date}
ADW_INSTALLREX connects to this URL to download its component files.
ADW_INSTALLREX connects to this URL to download its component files.
ADW_INSTALLREX connects to this URL to download its component files.
ADW_INSTALLREX connects to this URL to download its component files.
ADW_INSTALLREX connects to this URL to download its component files.
TSPY_ZBOT.DOCM connects to this URL to download its configuration file.
TROJ_UPATRE.YQU connects to this URL to download its component file.
This URL contains a malicious script, which is detected as HTML_SHELLLOAD.B.
The url downloads the .gif file that was infected with PE_SALITY.RL.
TSPY_ZBOT.WTQ sends the stolen information to this URL via HTTP POST.