Recent Posts

Pages: [1] 2 3 ... 10
1
I can confirm the alerts are now working.

Thank You
2
Seems a bug.
Any one else with same problem?
Nope, neither my pc or the home theater pc dont have that bug.
3
Trojan.Variant.Kryptik - Certificate "issued" by Comodo

Valkyrie is currently not able to receive files ! So please download the Sample from here >>> http://www33.zippyshare.com/v/94Wu4fi5/file.html ( NO PW - Upload is set to private )

https://www.virustotal.com/de/file/937bad14675217e0527a8c03194f6c976d05f8756f788ae955feae4ae193079b/analysis/

Some suspicious/malicious Indicators : Matched Compiler/Packer signature ( Borland Delphi 6.0 ) , The first section (.text) is writable ,  File calls a TLS callback at "0x449020" , File Code is obfuscated and packed  , File Code is self modifying , Reads the active computer name , Reads the cryptographic machine GUID , Interacts with the primary disk partition , Queries kernel debugger information , Opens the Kernel Security Device Driver , Modifies proxy settings , Queries sensitive IE security settings , Runs shell commands ( "/C timeout 3 > Nul & Del "C:\937bad14675217e0527a8c03194f6c976d05f8756f788ae955feae4ae193079b.exe ) , Contacts 2 domains and 2 hosts , HTTP request contains Base64 encoded artifacts , Found malicious artifacts related to "34.225.189.247" & Found malicious artifacts related to "91.217.84.57" (ASN: 49313, Owner: Seva-Host Ltd)

Certificate Details :

Algorithm:                  rsaEncryption
Version:                     3
Issuer:                      /C=GB/ST=Greater Manchester/L=Salford/O=COMODO CA Limited/CN=COMODO RSA Code Signing CA
Serial:                       188410496326828071096717434424973797041
Serial (Hex):            8dbe8aaaf7e59d54b14c3dd2a21326b1

Valid from:                 Jun 13 00:00:00 2017 GMT
Valid until:                  Jun 13 23:59:59 2018 GMT

C (countryName):                RU [5255]
CN (commonName):             RILAIN, OOO [52494C41494E2C204F4F4F]
L (localityName):                  Ivanovo [4976616E6F766F]
O (organizationName):         RILAIN, OOO [52494C41494E2C204F4F4F]
ST (stateOrProvinceName):  RU [5255]
postalCode (postalCode):    153006 [313533303036]
street (streetAddress):        4 proezd 15-I [342070726F657A642031352D49]
4
Firewall Help - CIS / Re: Firewall blocking TP-Link Print Server Utility
« Last post by j231454 on Today at 05:41:41 PM »
Ok, i will try it.
5
Firewall Help - CIS / Re: Firewall blocking TP-Link Print Server Utility
« Last post by Ploget on Today at 05:35:20 PM »
To be honest, I have no idea on that! The Firewall should have no effect on the Printer at all . . it's hard-wired to the Router

http://www.tp-link.com/lk/faq-779.html

http://www.tp-link.com/us/faq-415.html

I would remove any particular Firewall rules, or set to default and try a re-install as above

6
Firewall Help - CIS / Re: Firewall blocking TP-Link Print Server Utility
« Last post by j231454 on Today at 05:04:52 PM »
Yes same setup, but if I turn off just the firewall portion of CIS the utility sees the printer, if it is on the utility is blank.
7
Seems a bug.
Any one else with same problem?

Is it normal that the Valkyrie screen shows another amount of files being analyzed (28 vs 1) than the main window? (see screenshot)
8
Is it normal that the Valkyrie screen shows another amount of files being analyzed (28 vs 1) than the main window? (see screenshot)
9
affirmative ....  :-TU  ;)
Pages: [1] 2 3 ... 10
Seo4Smf 2.0 © SmfMod.Com Smf Destek