Results 1 to 4 of 4

Thread: Unmask Parasites > upload to www.virustotal.com

  1. #1
    Charles_B Guest

    Default Unmask Parasites > upload to www.virustotal.com

    Charles_B wrote:
    Oldsod, When to this link and I get a caution flag by ZAFF.Please advice.
    See "CustomizeGoogle" at http://www.customizegoogle.com/en-US/ for the Firefox browser.
    __________________________________________________ _____________________________

    Guru Oldsod ,Thanks for the link :

    http://unmaskparasites.com/
    __________________________________________________ ______________________________

    Unmask Parasites beta :

    Hackers exploit security vulnerabilities in popular web software such as blogs, forums, CMS, image
    galleries and wikis to insert hidden illicit content into web pages of innocent third-party web sites.
    Thousands of web site owners are unaware that their sites are hacked and infected with parasites.

  2. #2
    Join Date
    Dec 2005
    Posts
    9,056

    Default Re: Unmask Parasites


    <blockquote><hr>Charles_B wrote:
    Charles_B wrote:
    Oldsod, When to this link and I get a caution flag by ZAFF.Please advice.
    See "CustomizeGoogle" at http://www.customizegoogle.com/en-US/ for the Firefox browser.
    __________________________________________________ _____________________________

    Guru Oldsod ,Thanks for the link :

    http://unmaskparasites.com/
    __________________________________________________ ______________________________

    Unmask Parasites beta :

    Hackers exploit security vulnerabilities in popular web software such as blogs, forums, CMS, image
    galleries and wikis to insert hidden illicit content into web pages of innocent third-party web sites.
    Thousands of web site owners are unaware that their sites are hacked and infected with parasites.
    <hr></blockquote>


    Also since you express and interest.....<hr>

    Upload suspicious files to determine if the files are malicious and if so then why:

    http://www.virustotal.com/

    or

    http://virusscan.jotti.org/


    Dw Web Link scanner for browsers:

    For Internet Explorer:
    http://www.freedrweb.com/browser/internet+explorer/

    For Firefox:
    http://www.freedrweb.com/browser/mozilla+firefox/

    For Opera:
    http://www.freedrweb.com/browser/opera/

    DR Web link online scanner:

    http://online.drweb.com/

    Also see exploitlabs online link scanner:
    http://linkscanner.explabs.com/linkscanner/default.aspx



    Site to read that's sites html files to determine if the site is 'clean' or infected (handy little tool is already mentioned in opening post):

    http://unmaskparasites.com/


    Site to read javascript and flash files to determine whether they are malicous or safe:

    http://wepawet.iseclab.org/index.php


    Also, iseclab.org does both file and url analysis (extensive):

    http://anubis.iseclab.org/?action=home

    Also:
    http://www.systemlookup.com/

    Also known malware files can be uploaded and 'run' in a virtual envioroment with results given:
    http://www.securiteam.com/tools/6M00V00NFK.html



    Packed scripts are used to save space and can include obfuscation - but not neccessarily.
    Obfuscated scripts are often used to keep things to the author without letting any secrets out of that authors code - he wants to keep it non public.
    But often malware writers will use obfuscated javascripts to 'hide' their malicious intenttions.
    Site to translate the obfuscate javascripts or to decipher obfuscated javascripts:

    http://dean.edwards.name/packer/

    or this (note these use 'packer' as the key word):

    http://matthewfl.com/unPacker.html

    (the first link maybe able to translate obfuscated while the second one may not be able to)





    Another tool - to get a site's content or html source and some details of the site without actually going there - instead it goes there for you and just gives you the information:

    http://web-sniffer.net/

    also see

    http://vurl.mysteryfcm.co.uk/

    and see

    http://malzilla.sourceforge.net/


    A couple of desktop handy tools are reshacker, dllexp. process explorer, tiny watcher, file shredder, wireshark, heidi eraser, and exeinfo... just from the top of my head at this moment.
    I got more bookmarked but that would require some time spent digging these out.

    Oldsod.
    Best regards.
    oldsod

  3. #3
    Charles_B Guest

    Default Re: Unmask Parasites

    Guru Oldsod,Thanks for the tons of info.Extremely appreciated.

  4. #4
    Join Date
    Dec 2005
    Posts
    9,056

    Default Re: Unmask Parasites

    You are welcome Charles_B.
    Oldsod.
    Best regards.
    oldsod

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. VirusTotal.Com does not show ZoneAlarm on list
    By spudly in forum ZoneAlarm Anti-virus & Anti-spyware
    Replies: 2
    Last Post: September 14th, 2010, 02:35 PM
  2. I need help understanding results from www.virustotal.com.
    By dannyeluciane in forum Malware Discussion
    Replies: 6
    Last Post: May 9th, 2008, 07:28 PM
  3. Question about submitting a possible virus file to VirusTotal.com
    By technoweary in forum ZoneAlarm Anti-virus & Anti-spyware
    Replies: 1
    Last Post: March 26th, 2008, 08:58 PM
  4. Blocking Unwanted Parasites with a Hosts File
    By SlyFox in forum Off-Topic
    Replies: 0
    Last Post: December 30th, 2007, 07:15 AM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •