FP Domain binaerkombinat.com

Hi,

the domain is detected als malware domain, which is not true. (there was freeware download tool which contains an optional toolbar installer, which may triggered the false positive)

see http://amada.abuse.ch/?search=www.binaerkombinat.com for more details

thanks,

stefan

VirusTotal - skypelauncher-setup.exe - 8/41 - MD5: e786a55cec454c7274a2f29af6e2f279
http://www.virustotal.com/file-scan/report.html?id=cecee2638aae7c32669a4a2f30427bb1fdd50d9fc84dee09ba787bbcb174f46c-1307900164

VirusTotal - SkypeLauncher-setup.exe - 0/41 - MD5: c60ce98285e11ff060a0eea09c898415
http://www.virustotal.com/file-scan/report.html?id=476c8af71d411e730ce8d9d7f5a9ea41d2db8777452ae3b47a4f9faa153a1336-1308242181

not-a-virus:WebToolbar.Win32.Searchbar

refer to first post:

there was freeware tool which contains an optional toolbar installer, which may triggered the false positive ← file removed

there is no reason to block the domain any longer (beside there never really was a reason, because the installation was optional)

thanks,

stefan

URLVoid

Report 2011-03-29 16:03:59 (GMT 1)
Website binaerkombinat.com
Domain Hash 5d79674a236c99c536425431b723d604
IP Address 188.40.106.165 [SCAN]
IP Hostname ns1.binaerkombinat.com
IP Country DE (Germany)
AS Number 24940
AS Name HETZNER-AS Hetzner Online AG RZ
Detections 3 / 21 (14 %)
Status DANGEROUS

Scanning site with: AMaDa CLEAN
Scanning site with: BrowserDefender CLEAN
Scanning site with: DNS-BH CLEAN
Scanning site with: DShield SDL CLEAN
Scanning site with: Google Diagnostic CLEAN
Scanning site with: hpHosts UNRATED
Scanning site with: joewein.de LLC CLEAN
Scanning site with: Malware Domain List CLEAN
Scanning site with: Malware Patrol DETECTED
Scanning site with: MyWOT DETECTED
Scanning site with: Norton SafeWeb CLEAN
Scanning site with: ParetoLogic URL Clearing House CLEAN
Scanning site with: PhishTank CLEAN
Scanning site with: SCUMWARE CLEAN
Scanning site with: SpamhausDBL CLEAN
Scanning site with: SURBL DETECTED
Scanning site with: Threat Log CLEAN
Scanning site with: TrendMicro Web Reputation CLEAN
Scanning site with: URIBL CLEAN
Scanning site with: Web Security Guard UNRATED
Scanning site with: ZeuS Tracker CLEAN

yeah thats the problem… one flags you, and offers no contact for removing a false positive (like Malware Patrol), others copy it and tell me “but the other flagged you…”…

(just look at the “source” http://www.mywot.com/en/scorecard/binaerkombinat.com)

or check by yourself: http://www.surbl.org/surbl-analysis , enter “binaerkombinat.com” and the result is: “binaerkombinat.com is not blacklisted.”

thanks,

stefan

Oh, and the report at URLVOID was from 29. March…

Currently myWOT and Trend Micro are listing it… I’m in contact with them to fix this…

Report 2011-06-16 22:46:18 (GMT 1)
IP Address 188.40.106.165
IP Hostname ns1.binaerkombinat.com
IP Country DE
AS Number N/A
AS Name N/A
Detections 1 / 26 (4 %)
Status SUSPICIOUS

http://www.mywot.com/en/scorecard/188.40.106.165

The site is also being flagged by http://global.sitesafety.trendmicro.com/result.php
http://www.webutation.net/go/review/binaerkombinat.com gives it 80 points,
the site is secure seen from Spam Check and
Sucuri says:
web site:
http://www.binaerkombinat.com
status:
Site verified to be secure and free of malware.
web trust:
Site not blacklisted,

polonus