Avast community forum
Home
Help
Search
Login
Register
Avast WEBforum
»
Other
»
Viruses and worms
(Moderators:
Maxx_original
,
misak
) »
Another malware up or already dead?
« previous
next »
Print
Pages: [
1
]
Go Down
Author
Topic: Another malware up or already dead? (Read 1106 times)
0 Members and 1 Guest are viewing this topic.
polonus
Avast Überevangelist
Probably Bot
Posts: 34054
malware fighter
Another malware up or already dead?
«
on:
January 15, 2014, 10:21:18 AM »
See:
https://www.virustotal.com/nl/url/7fe60dedb5402727f64567f77af7d1160d0a3451924b459d516351406965225d/analysis/1389776688/
http://support.clean-mx.de/clean-mx/viruses?id=14954268
Given now there: JS_REDIREC.SMZ
Given as 100/100% malicious here:
http://zulu.zscaler.com/submission/show/f42acabcd2846f2d32d9d0117a0eaa9e-1389776849
blacklisted:
http://sitecheck.sucuri.net/results/zucaidayingjia.com/dayingjiajishibifen/index_5.html
Javascript included from a blacklisted domain.
Details:
http://sucuri.net/malware/entry/MW:BLK:2
Javascript: web.nba1001 dot net Read on the malware cross-contamination:
http://www.strazzere.com/blog/2013/02/javascript-malware-cross-contamination-in-android-apks/
link article author = Tim
Insecurities on site, pages cannot be found:
https://asafaweb.com/Scan?Url=zucaidayingjia.com%2Fdayingjiajishibifen%2Findex_5.html
See scan:
http://jsunpack.jeek.org/?report=a486a4adfaf6f77823e6ec2cb1a64466540e3d89
Going to a malware site: htxp://web.nba1001.net:8888/tj/tongji.js blocked by Google Safebrowsing and 500 Can't connect to web.nba1001.net:8888 (Bad hostname)
polonus
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.
Use NoScript, a limited user account and a virtual machine and be safe(r)!
polonus
Avast Überevangelist
Probably Bot
Posts: 34054
malware fighter
Re: Another malware up or already dead?
«
Reply #1 on:
January 15, 2014, 10:32:12 AM »
See how we are/were being protected here:
http://support.clean-mx.de/clean-mx/viruses.php?virusname=JS_REDIREC.SMZ&sort=id%20DESC
avast! detects as JS:Agent-AOH [Trj],
pol
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.
Use NoScript, a limited user account and a virtual machine and be safe(r)!
Print
Pages: [
1
]
Go Up
« previous
next »
Avast WEBforum
»
Other
»
Viruses and worms
(Moderators:
Maxx_original
,
misak
) »
Another malware up or already dead?