It is not here: http://quttera.com/#online url malware scanner nor here: http://zulu.zscaler.com/submission/show/126db70fecf06a5000bb56441fa56b25-1383166767 IDS alerts here: http://urlquery.net/report.php?id=7319958 for ET TROJAN WEBC2-QBP Checkin Response 1 - Embedded CnC APT1 Related and MALWARE-CNC Win.Trojan.Tartober variant connection See: http://jsunpack.jeek.org/?report=a5d33c10360e1135f97d4d739da75104d6de7ba8 Most malware from IP closed: http://support.clean-mx.de/clean-mx/viruses.php?ip=12.38.236.32&sort=first%20desc malware in offending raw content: see image attached → http://www.siteadvisor.com/sites/12.38.236.32 See: https://www.virustotal.com/nl/ip-address/12.38.236.32/information/ Last communication detection: https://www.virustotal.com/nl/file/de750c840a4140d3c980c9a0c6d34e12498f13b9a690d5d0e09037c7bedf00c5/analysis/ avast did not flag this…http://whois.domaintools.com/12.38.236.32 and http://reverseip.domaintools.com/search/?q=cvarp.org see: http://zulu.zscaler.com/submission/show/6053c1869e1594bb576a2e2f2c8257ed-1383168272 insecurities → https://asafaweb.com/Scan?Url=cvarp.org and this one was 100/100% malicious with Botnet on 03/20/2013 at 19:57 GMT, now green: http://zulu.zscaler.com/submission/show/010bf35f34b0a7f2a1c3ff446eef9b97-1383168425 https://asafaweb.com/Scan?Url=cvarp.com
polonus