Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

HTTP Neosploit Toolkit


  • Please log in to reply
2 replies to this topic

#1 TJX

TJX

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:08:28 AM

Posted 19 June 2010 - 04:28 PM

I was browsing a forum on IE8 when I got an intrusion attempt alert for something called "HTTP Neosploit Toolkit Activity". It shows my computer as the the Attacking Computer and the source address to that of my internal I.P. (192.168.199). The Attacker URL and destination address was something completely different from the website I was browsing - kasefe.info/page/best.php (74.118.192.209, 80).

Norton 360 was able to block it and said I required no further actions. But should I be concerned that it shows myself as the attacking computer?

I was told by someone on the Symantec forum to post here. Am also running Malware Bytes as we speak.


Thanks.

BC AdBot (Login to Remove)

 


#2 TJX

TJX
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:08:28 AM

Posted 19 June 2010 - 05:00 PM

Okay, malware scan done. Didnt find anything -

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Database version: 4216

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

6/19/2010 5:49:17 PM
mbam-log-2010-06-19 (17-49-17).txt

Scan type: Quick scan
Objects scanned: 135832
Time elapsed: 15 minute(s), 54 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Am I safe?

One other thing I'd like to note, so fare there has been no performance problems with my computer nor am I being redirected to malicious websites when clicking on search engine links like Google.

Edited by Orange Blossom, 20 June 2010 - 12:42 AM.
Move to AII as prep. guide not followed and log is but an MBAM log. ~ OB


#3 rychebabe

rychebabe

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:02:28 PM

Posted 24 July 2010 - 05:58 PM

I've had several warnings today with the exact same message: "HTTP Neosploit Toolkit Activity". I have absolutely no idea what to do about it if anything. Any help would be appreciated.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users