ESET Insiders Trooper 39 Posted February 15, 2022 ESET Insiders Share Posted February 15, 2022 Just had this appear on one of my endpoints. FP or should I report this and take further action? Link to comment Share on other sites More sharing options...
itman 1,538 Posted February 16, 2022 Share Posted February 16, 2022 (edited) IP address, 162.210.199.65, is suspicious. Two sources at VT, Comodo and Webroot, flag it as malicious. Also, another source that tracks coin mining sites flagged it. Upon access to hxxps://162.210.199.65/, Eset immediately throws the botnet alert. As such, Eset has blacklisted the IP address. Edited February 16, 2022 by itman Trooper 1 Link to comment Share on other sites More sharing options...
ESET Insiders Trooper 39 Posted February 16, 2022 Author ESET Insiders Share Posted February 16, 2022 3 hours ago, itman said: IP address, 162.210.199.65, is suspicious. Two sources at VT, Comodo and Webroot, flag it as malicious. Also, another source that tracks coin mining sites flagged it. Upon access to hxxps://162.210.199.65/, Eset immediately throws the botnet alert. As such, Eset has blacklisted the IP address. Thanks very much for looking into this. I am super glad that ESET blocked it. Link to comment Share on other sites More sharing options...
Recommended Posts