virus logo Intrusion Prevention

Malware.Sinkhole

description-logoDescription

This indicates an attempt to connect to a malware sinkhole server.
Government agencies and researchers sometimes sinkhole malware DNS addresses to prevent connection to C&C servers. If a computer attempts to connect to a sinkhole server, it's most likely infected with malware.

affected-products-logoAffected Products

Any unprotected system is vulnerable.

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Please use Anti-Virus software to scan and clean the infected device.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2024-04-01 27.758 Sig Added
2018-11-21 13.495 Sig Added
ID 46581
Created Aug 28, 2018
Updated Apr 01, 2024
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Default Action drop
Active
Affected OS All
Affected App Other