Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss
Malware Patrol
49 views
Skip to first unread message
~BD~
May 11, 2013, 5:02:08 AM5/11/13
to
Malware Patrol is a free, automated and user contributed system that
verifies URLs for the presence of Viruses, Trojans, Worms or any other
software considered Malware. Lists containing these malicious addresses
are available in several formats to help protect Internet users.
*
Why use a block list of URLs?
People frequently ask: "We have a firewall, anti-virus, anti-malware,
IDS/IPS, etc - Why do we need a block list of URLs in our proxy or router?"
That is a great question. First of all, it is certainly very important
to have multiple trusted sources of intelligence and protection when it
comes to Internet security. No single vendor can protect you from all
current security threats.
Fraudsters are moving from attacks where spam messages include links to
malware or the binaries themselves to more advanced threats. These
include the usage of exploit kits that, as the name suggests, try to
exploit various vulnerabilities in the victim's machine to download
malware. Links to exploit kits can be distributed on spam messages but
were also found lately on legitimate hacked web sites.
Attackers are also heavily using "downloaders". It's only intent is to
download another binary that happens to be a malware.
The usage of our block lists is very important because we collect and
track URLs that point to malware, including the ones used by exploit
kits and downloaders. It is common to find malware that is unknown by
most, if not all, anti-virus vendors. This results in low detection
rates and greater chances of user infections.
So, why take chances when you can have extra protection? Waste no more
time and start protecting your network with the data provided by the
Malware Patrol. You can find all the block lists available, here ....
http://www.malwarepatrol.net/index.shtml
--
Dave
verifies URLs for the presence of Viruses, Trojans, Worms or any other
software considered Malware. Lists containing these malicious addresses
are available in several formats to help protect Internet users.
*
Why use a block list of URLs?
People frequently ask: "We have a firewall, anti-virus, anti-malware,
IDS/IPS, etc - Why do we need a block list of URLs in our proxy or router?"
That is a great question. First of all, it is certainly very important
to have multiple trusted sources of intelligence and protection when it
comes to Internet security. No single vendor can protect you from all
current security threats.
Fraudsters are moving from attacks where spam messages include links to
malware or the binaries themselves to more advanced threats. These
include the usage of exploit kits that, as the name suggests, try to
exploit various vulnerabilities in the victim's machine to download
malware. Links to exploit kits can be distributed on spam messages but
were also found lately on legitimate hacked web sites.
Attackers are also heavily using "downloaders". It's only intent is to
download another binary that happens to be a malware.
The usage of our block lists is very important because we collect and
track URLs that point to malware, including the ones used by exploit
kits and downloaders. It is common to find malware that is unknown by
most, if not all, anti-virus vendors. This results in low detection
rates and greater chances of user infections.
So, why take chances when you can have extra protection? Waste no more
time and start protecting your network with the data provided by the
Malware Patrol. You can find all the block lists available, here ....
http://www.malwarepatrol.net/index.shtml
--
Dave
~BD~
May 12, 2013, 3:27:43 AM5/12/13
to
ClamAV Virus DB (basic)
ClamAV Virus DB (ext)
DansGuardian
Firekeeper 0.2.9 or newer
Hosts file - 127.0.0.1
Hosts file - 127.0.0.3
Hosts file - 0.0.0.0
Hosts file - MacOS pre OS-X
MailWasher block filters
MaraDNS - CVS2
MD5/SHA-1 hashes
Microsoft DNS Server
Mozilla cookie filtering
Mozilla Firefox AdBlock
Plain text
Postfix MTA
SmoothWall
SpamAssassin
Squid Web Proxy ACL
SquidGuard
Symantec Security for SMTP
Symantec WebSecurity
XML
--
Does anyone reading use any of these 'Hosts' (?) files?
--
0 new messages