The site is blocked in the browser I get a Google warning: This site can harm your computer.
Unmasked parasites gives it as clean: Last time malware was seen to be on the site was on 2011-02-19.
Malicious software includes 5 scripting exploits, 1 trojan. Successful infection resulted in an average of 3 new process(es) on the target machine.
Here only google flags the site: http://www.urlvoid.com/scan/lasercafe.com
But here it is given as malware site:
Firefox Malware site
G-Data Malware site
Google Safebrowsing Malware site
Here malware is coming from that url:
http://support.clean-mx.de/clean-mx/viruses.php?sort=firstseen%20desc&review=208.109.181.162
htxp://alona-kew.com/
not detected by avast: http://www.virustotal.com/file-scan/report.html?id=977867745eefe251f7705c07fbcc1bb92b195d6a8f38bfa5014167d375cee897-1298672395
malware URL directs to exploit kit
htxp://www.alona-kew.com/ has JS:Illredir-AO
if we follow up avast for this: http://support.clean-mx.de/clean-mx/md5.php?Avast=JS:Illredir-AO
it should have been detected if it was up?
given as clean site:http://www.virustotal.com/url-scan/report.html?id=5fcb36d18b2ccdec325647ff888b782d-1298668971
and here:
http://www.virustotal.com/file-scan/report.html?id=977867745eefe251f7705c07fbcc1bb92b195d6a8f38bfa5014167d375cee897-1298672706
~
polonus
This is soon one year old
http://support.clean-mx.de/clean-mx/viruses.php?sort=firstseen%20desc&review=208.109.181.162
Hi Pondus, you are right, says As of 2011-02-25 23:48:47 CET
But detection date says: 2010-04-04 18:45:36 2010-05-07 06:05:17 779.3
That is an eternity in malware terms, so why the Google warning is there still for the first mentioned site,
that is also apparently clean, can you check that for: lasercafe dot com?
So I have adopted the thread subject accordingly as you have seen,
polonus
Blacklisted
http://www.virustotal.com/url-scan/report.html?id=f4bf2aea57c9dcebfe4cdf0dc1c0560f-1298672133
This page seems to be
http://www.UnmaskParasites.com/security-report/?page=www.lasercafe.com
Wepawet gives it as benign: http://wepawet.iseclab.org/view.php?hash=3963427e49b58bb224029cbea754ff27&t=1298677814&type=js
webutation gives it a 80 out of 100 rating: http://www.webutation.net/en/review/laserweb.com
DrWeb gives it as clean: Checking: htxp://laserweb.com/
Engine version: 5.0.2.3300
Total virus-finding records: 1911607
File size: 7378 bytes
File MD5: f91a9ec786d8685293b377f9d58d8a5e
hxtp://laserweb.com/ - Ok
finjan says safe for browsing WOT has no results for it
TrendMicro gives it: This URL is not currently listed as malicious.
Here also clean: http://www.urlvoid.com/scan/laserweb.com
So the only instance blocking the site as dangerous is Google Safebrowsing aka unmasked parasites,
so what is the current status of this site to be?
polonus