Avast community forum
Home
Help
Search
Login
Register
Avast WEBforum
»
Other
»
Viruses and worms
(Moderators:
Maxx_original
,
misak
) »
Suspicious pages on website detected...
« previous
next »
Print
Pages: [
1
]
Go Down
Author
Topic: Suspicious pages on website detected... (Read 1290 times)
0 Members and 1 Guest are viewing this topic.
polonus
Avast Überevangelist
Probably Bot
Posts: 34065
malware fighter
Suspicious pages on website detected...
«
on:
September 27, 2015, 06:10:33 PM »
See:
http://killmalware.com/tuchambelan.com/
See:
http://www.domxssscanner.com/scan?url=http%3A%2F%2Ftuchambelan.com
WordPress Plugins
The following plugins were detected by reading the HTML source of the WordPress sites front page.
google-analyticator 6.4.9.6 latest release (6.4.9.6)
http://www.videousermanuals.com/google-analyticator/
WordPress Theme
The theme has been found by examining the path /wp-content/themes/ *theme name* /
Canvas 5.1.3http://www.woothemes.com/
Warning User Enumeration is possible
The first two user ID's were tested to determine if user enumeration is possible.
ID User Login
1 None
2 wp_enftcn wp_enftcn
Warning Directory Indexing Enabled Web Server Feature.
Obfuscated iFrame malcode detected. infection campaign is 11/12 hours old, see similar code:
https://urlquery.net/report.php?id=1443326805489
&
http://urlquery.net/report.php?id=1443242480048
for instance.
Moreover uMatrix has prevented the following page from loading:
-http://load.sumome.com/ * the only widget shown in the tracker tracker report attached.
Nothing detected here:
https://sitecheck.sucuri.net/results/tuchambelan.com
Added a tracker tracker report results on the wp include scripts.
google-analyticator/external-tracking.min.js has analyticsFileTypes' undefined & interferes with some themes, also: JS-error.
Americans are starting to learn now how vulnerable these are to Cyber-attack.
2015-09-26 2 -(
www.glowconstruction.net
)/wp-content/plugins/google-analyticator/external-tracking.min.js?ver=6.4.9 Malware
polonus (volunteer website security analyst and website error-hunter)
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.
Use NoScript, a limited user account and a virtual machine and be safe(r)!
Print
Pages: [
1
]
Go Up
« previous
next »
Avast WEBforum
»
Other
»
Viruses and worms
(Moderators:
Maxx_original
,
misak
) »
Suspicious pages on website detected...