What malware is here?

Viruses and worms
1

See: https://www.virustotal.com/nl/url/fddf849fb1c3b8affff0588010bbb72981138189e38a5268402e928e9caa5d06/analysis/1387046006/
see: http://quttera.com/detailed_report/ymlp261.net
Nothing here: http://urlquery.net/report.php?id=8391791
Flagged is this: http://urlquery.net/report.php?id=7617583

polonus

2

hello certainly False postive from Bitdefender

I tried here too http://sitecheck.sucuri.net/results/ymlp.com/zp9mmr
http://www.phishtank.com/

3

Hi g3n-h@ckm@n,

What about this report with several instances of PHISHING up and alive: http://support.clean-mx.de/clean-mx/phishing.php?as=AS8368&sort=lastseen%20ASC&response=alive
The safe phish report on one of these: http://support.clean-mx.de/clean-mx/view_phishcontent.php?id=3874319&url=http%3A%2F%2Ft.ymlp207.net%2Fjhbbaiaueewqalaembavamyhbbw%2Fclick.php

1 FP OK, but 5 in a row?

pol

4

The 5 false positives in a row are possible, you need a ton of coincidence for that. :smiley:

5

Hi Steven Winderlich,

Do not wanna go with you to a casino, you take high stakes at a high bet.
Trust no one and doubt all info at first sight is a good way to go for a website analyst,
until not proven for 100% we do not give any verdict.

pol

6

I 'm gone to this site and MAlwarebytes Pro didn’t block it

7

virustotal
https://www.virustotal.com/en/file/86253415abac85d61f012848321a8ffba20e760c47f2fa49b8439dd67ab38e6d/analysis/1387061452/
https://www.virustotal.com/en/file/6e90dcccbd45187660d3eae5cd8cdfd72533014f023158f0990bfbff0d2690e7/analysis/1387061481/

8

Hi Pondus,

There is a winning bet then ;D VT results we can rely on (not always), but very often these come solid as a rock.
Game over: scanning results 5 meagre ones for MX and 0 decidedly for VT :smiley:
And g3n-h@ckm@n is right where he says that BitDefender’s is kind of “shoot first and ask later” with their detections. ;D

Pondus, my friend, do you realize now what a tricky business it is to decide between real malcode or a false positive?

polonus