What has been hiding behind this link?

Viruses and worms
1

Hi malware fighters,

Someone asked what was behind this link: hxtp://iohjk2h4jkdsdfs/yutube/
It opens up for a blackholed 0.0.0.0.
Is this malcious. Can anyone comment on this?

polonus

2

Since the link has no domain type, .com, .net, etc. etc. how can an IP be retrieved from a DNS lookup, so that may well be why you get the blackhole 0.0.0.0. no IP exists presumably.

If I try to connect OpenDNS would cover non-existent domains by redirecting to its page not found, etc. See image where RequestPolicy intercepts the redirect.

3

Hi DavidR,

Thanks for the reply, I already found this a weird question on the InformAction forums, gonna comment there following your reaction. Again thanks for clarifying this,

Damian

4

No problem.