Only suspicious or a real threat? Avast detects Win32:Evo-gen [Susp]

See: http://urlquery.net/report.php?id=1435328366075
See: https://www.virustotal.com/en-gb/url/1c024c21cfcf858f387c445c32cc9a9d5c05bef5c8883d44894384a5c05f46bd/analysis/1435328319/
See: https://www.virustotal.com/en-gb/file/26e2d2a3ebe434f5572962b785d510a9a4a79bc457765cf2b338a0ce73086832/analysis/1435324014/
Re: http://linkeddata.informatik.hu-berlin.de/uridbg/index.php?url=pentest.fr%2Ftmp%2Fprout2.exe&useragentheader=&acceptheader=

polonus

IP also suspicious of spam-abuse: http://www.projecthoneypot.org/ip_213.215.18.18
SOPHOS detection: https://www.sophos.com/fr-fr/threat-center/threat-analyses/viruses-and-spyware/Troj~DwnLdr-LDP/detailed-analysis.aspx
DNS: http://bgp.he.net/dns/pentest.fr → OK. No private IPs found for www.pentest.fr… Web servers using private IPs can’t be reached from the Internet.
Considerable risk - 6 red out of 10: http://toolbar.netcraft.com/site_report?url=http://213.215.18.18
Gzip HTTP Compression protocol found there.

pol