http: //tubezz. org/ produces new malware evryday in the name of ActiveX. I reported a few and they are now detected. Is it possible to monitor the site, so that new malwares can be detected as they are produced? Also block the webpage please.
Hi sg09,
This site is suspicious:
This page seems to be
3 hidden external links found.
Don’t panic. This test is not 100% accurate. Check the detailed report below to find out what’s wrong with the page. If you see actual evidence of parasites, please take action to eradicate them.
For more comprehensive diagnostics consider the following additional tests.
Check Unmask Parasites blog for information about the latest website exploits.
Website security is an ongoing process. Bookmark this service and check your web pages regularly.
Report
General
Title: tubezz - Best Videos Funny Movies
URL: hxtp://tubezz.org
Google: not currently listed as suspicious* (details)
Last checked: 0 minutes ago (results are cached for 1 hour)
This report:
External References
-
click.hotlog.ru safe? - displaying 1 of 1
hidden link - hxtp://click.hotlog.ru/?639897 -
u10955.08.spylog.com safe? - displaying 1 of 1
hidden link - hxtp://u10955.08.spylog.com/cnt?cid=1095508&f=3&p=0 -
update-center.net safe? - displaying 1 of 1
Similar report in malwarebyte forum
http://forums.malwarebytes.org/index.php?showtopic=43747
@polonus: Actually I am not infected. I was redirected to the site by some means and while tried to load the video it asked me to install an activeX named
Activex_Setup.45158.exe
I scanned this in virustotal and few AV detected this, then I manually quarantine it and send it to Avast for analysis and later found to be virus. Next day intensionally I went to that site and found that new virus is their with the same name.
Thanks for your help polonus…
Hi sg09,
Knew you were not personally infected with this, and thanks for reporting, but I gave that for people that were and were looking for additional info on this malware. Your behavior is very responsible behavior, thanks again, forewarned is forearmed,
polonus
I knew and I should thank u for that…
thanks…
True…
I tested the site today, Avast blocked a url in it
boobtubepro.com/xplays.php?id=45158
But the activeX still there, a new one ab course.
http://www.virustotal.com/analisis/c81b533a387fcd08f25cf041fabf3af1f209638d886f877653363bcc823d542e-1269720204