« previous next »
Pages: [1]   Go Down

Author Topic: malacious url detected: danbooru ?  (Read 4661 times)

0 Members and 1 Guest are viewing this topic.

technotron

  • Guest
malacious url detected: danbooru ?
« on: January 26, 2013, 04:03:42 PM »


Danbooru is blocked for me currently. Is it a false positive or did it get infected recently?
Logged

Offline mikaelrask

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1556
Re: malacious url detected: danbooru ?
« Reply #1 on: January 26, 2013, 04:30:44 PM »
hey and welcome to the forum.

according the link it say the url to be risky.

http://zulu.zscaler.com/submission/show/8ecad71f78a2fd4bdad4131f58d4eefa-1359214077
Logged
Windows 8.1 amd a10-5700 64 bit
12 GB ram 1 tb hard drive. Avast 18, MBAM

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37527
  • Not a avast user
Re: malacious url detected: danbooru ?
« Reply #2 on: January 26, 2013, 11:11:55 PM »
« Last Edit: January 26, 2013, 11:19:38 PM by Pondus »
Logged

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33897
  • malware fighter
Re: malacious url detected: danbooru ?
« Reply #3 on: January 26, 2013, 11:35:37 PM »
See: http://www.mywot.com/en/scorecard/danbooru.donmai.us  webrep alert for explicit adult content
Decoded uri component on line 43 see attached image
Compromised read: http://wordpress.org/support/topic/site-security-issue
Obfuscated translates to: text/javascript"> eval(decodeURIComponent('document.write('<a href=\"mailto:webmasterATdanbooru.donmai.us\">Contact<\/a>');'))
So could be benign...

polonus
« Last Edit: January 26, 2013, 11:44:16 PM by polonus »
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!
Pages: [1]   Go Up
« previous next »