http://{BLOCKED}ndart.com/f2kr.exe

 Analysis by: Clarisa Joyce Velasco

 URL BLOCKING DATE/TIME: 26 Jul 2013 09:10:00 AM GMT-8
 RATING: HIGH
 DOMAIN: legodendart.com
 CATEGORY: Disease Vector
 DESCRIPTION:

TSPY_FAREIT.AFM accesses this site to download files. This FARFEIT variant is the final payload of a Blackhole Exploit Kit related spam run. This spyware attempts to steal stored account information and other sensitive information.